Jump to content

Search the Community

Showing results for tags 'exclusions'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • ESET General Forums
    • ESET Announcements
    • General Discussion
    • Forum FAQ's and Rules
    • Submit a virus, website or potential false positive sample to the ESET lab
  • ESET Home User Products
    • ESET Internet Security & ESET Smart Security Premium
    • ESET NOD32 Antivirus
    • ESET Cyber Security (for Mac)
    • ESET Cyber Security Pro (for Mac)
    • ESET NOD32 Antivirus for Linux Desktop
    • ESET Products for Mobile Devices
    • Web portals
  • Malware Detection and Cleaning
    • Malware Finding and Cleaning
    • ESET Standalone Malware Removal Tools
  • ESET Business User Products
    • ESET Cloud solutions
    • ESET Endpoint Products
    • ESET Products for Windows Servers
    • ESET Products for Linux Servers
    • ESET Products for Mobile Devices
    • Remote Management
    • ESET Enterprise Inspector (EDR)
    • ESET Products for Virtualized Environments
    • Encryption
    • ESET Licensing for Business
  • ESET Beta Products
    • ESET Beta Products for Home Users
    • ESET Beta Products for Business Users
  • Slovak and Czech forums
    • ESET NOD32 Antivirus, ESET Internet Security a ESET Smart Security Premium
    • Produkty pre mobilné zariadenia
    • Vírusy a iné hrozby
    • Ostatné

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Interests

  1. I'm trying to create a policy to exclude by threat name, regardless of file location. Let's say that the threat I want to exclude from detection is Win32/uTorrent.C 1) In the ESMC policy for Endpoint security, I understand that one should modify Settings -> Detection Engine -> Basic -> Exclusions, is that correct? 2) Assuming that it is, I presume that I should select "Exclude threat" here. Exactly how do I specify the threat? I would expect that one should enter the exact threat name, ie Win32/uTorrent.C, however if one presses the question mark on this dialog box he/she is
  2. Hi all, I want to exclude a file (over ERA) from the Windows user profile. ESET shows this file as an unwanted application, but my chinese colleague told me, that the file is safe, so I want to tell ESET (in ERA), that the file is safe, and exclude it. The problem is, that the folder name is (for every user) different. I.e. C:\users\username1\AppData\Local\......\filename. C:\users\username2\AppData\Local\......\filename. C:\users\username3\AppData\Local\......\filename. How can do this? Thanks for the help! Best regards
  3. My company recently bought ScreenConnect to remotely assist our clients. Problem is, ESET products see it as a threat. Because we are an ESET Reseller, we, and many of our clients are running ESET products ... which makes this this a bigger problem. And because there are several forms of ScreenConnect (Java host, EXE host, EXE client), there is more than one thing to create an exception for. Can you please either give me some instructions around fixing this, or work with ScreenConnect to allow their programs/services to run?
  4. Hi All, I was wondering if anyone here has been having issues with protocol filtering interfering with browsing, specifically corrupting images and causing page rendering issues? (source text, blank pages, multiple refreshes to correctly render). I have raised the issues to ESET and currently they have me ignoring my browser (chrome) in the list of SSL filtered application. This seems to solve this issues with SSL based pages, but does nothing for non- SSL pages. Originally they had me disable protocol filtering all together but I did not like having a gap in my protection (temporarily wa
  5. The short version: 1. It seems that managed Mac clients are only partially honoring exclusions. a. Eicar test files placed in excluded directories are being ignored, as expected. b. Files in excluded directories are still being scanned on access, which is not as expected. 2. Unmanaged Mac clients appear to be honoring exclusions correctly. The long version: My MacBook Pro is affectionately referred to by my colleagues as the "Wind Tunnel" because its fans are constantly going at high speed. And its fans are constantly going at high speed because my managed ESET client is constantly sc
  6. Hi Guys, I am having some issues at the moment with some of my clients with ports and applications being blocked even though their subnets are within the trusted zones. Trusted zones are as follows: 10.0.0.0/255.0.0.0 172.16.0.0/255.255.0.0 192.168.0.0/255.255.0.0 ::1 FE80::/64 Even though these are trusted I still seem to need to put exceptions in the firewalls when I shouldn't need to. Any help will be appreciated.
  7. Hello. I read topic about StartCom and Wo-Sign Root CA https://www.scribd.com/document/325417135/Wo-Sign-and-Start-Com After this i checked site with startcom certificate. Eset SSL inspection rewrite original certificate. After disabling inspection on target url eset sill rewriting original certificate. A there any ways to block root CA in Eset Smart security? How to exclude some host from ssl inspection and certificate rewriting
  8. I am excluding and restoring from quarantine via ERA and the local ESET client (6.4.2014.0) tftpd32.exe but as soon as it is restored and excluded either via ERA or the local client, ESET pops it again and sends it back to quarantine. This is also happening on ESET File Security for Windows Servers.
  9. This has come up before but I am bringing it up again because it is an important topic. Is there a way to exclude detected hashes in endpoint products either directly in the endpoint or via remote administrator? We have some code and programs being popped as malware that does not live in one specific directory. ERA detects all of the hits as the same hash. We would like to exclude the hash as a false positive.
  10. I am increasingly getting privacy errors when using public networks which mean that quite a lot of sites are blocked, even when I click to "continue". Is this down to Smart Security and if so, what can I do to avoid it? Or any other things I need to look at?
  11. I'm using ESS 9.0.381 on win 8.1 64bit with firefox browser. I'm having trouble accessing secure sites (https) that gives a firefox error page "Secure Connection Failed" when using vpn/proxy applications. At first I thought this was caused by firefox's vpn addon, so i tried using another vpn addon from firefox's official addon site (e.g. hoxx, zenmate) and another that is non-addon (e.g. betternet, zenmate windows version) but still unsuccessful. However, fortunately non-secure (http) sites can be accessed whether using the vpn application or not. After days of web searching, I came upon this
  12. Hello, I'm just wondering if someone can help me get the correct settings and exclusions in place so that SAS 9.4 can function correctly for our end users. We have about a dozen users who use it. We're using version 6.3.2016.0 of the ESET Endpoint Antivirus client on Windows 7 Enterprise x64 with a current set of Windows Updates applied. Here's a link to what SAS recommends and here are the exclusions I've got entered in.... ​ hxxp://support.sas.com/kb/44/390.html Exclusions in place... *.scr *.sd7 *.sc7 *.sas7b??? *.lck *.sd2 *.sc2 *.SPDS *.sas* *.utl %u
  13. Related to this thread: https://forum.eset.com/topic/7611-eset-endpoint-security-web-control-category-lookups/?hl=web+control For security purposes, we are restricting (or have begun restricting) outbound DNS queries that exit our infrastructure to only go to OpenDNS' global DNS server fleet. The thread I referenced above stated that queries for Web Control hit off of ESET's DNS servers for name resolution. Can somebody provide the IPs or CIDR blocks for this functionality?
  14. I have recently installed Eset Smart Security and now a program (Cycling '74 Max/MSP) intermittently fails to load reference documentation. I have added the folders containing the the program and associated documents to the exclusions. Is this a common problem? It seems like if I open Eset and then switch a setting (e.g. change from automatic to interactive mode, or vice versa), sometimes the program can then access the help files. Seems like a bug to me. Anyone?
  15. Eset FileSecurity V6.2.1.2007.1 detects a suspicious file. When asked for action on this file, i select to ignore this file and select no action. But the file is shown as potentially unsafe again and the checkbox to ignore the file is unchecked again. How to exclude a potential unsafe file when it is a false alarm?
  16. I have live grid enabled with submit statistics and files disabled. Does this lower detection via reputation significantly or at all? If I enable submission of files, is there any way to exclude my development project executables from being submitted. I would prefer that they not be submitted. Every time I compile a project with some modifications, would there the possibility of many variants of the same file being submitted?
  17. Hello, I would like to know which windows processes and their ports are secure. Today I opened the Zone & Rule Editor and there were way too many entries, some programs that are no longer installed, duplicates, etc. So I cleaned up the list and set up Zones and Rules for my browsers, mail client and various programs. My firewall is in interactive mode, thus ESS reports any new/unknown communication. So far the only process I have been asked for while browsing is SVCHOST Since this is a very generic service that includes many processes and protocols I don't exactly know to dea
  18. Some clients with Eset Endpoint AV 6 are managed by ERA 6 an there is a policy with path exclusions for the realtime scanner. The exclusions are set via policy and working as expected. At last we installed new software on one of the clients and wanted to set another path exclusion manually on this single client. But in the endpoint Av Window the option to set path exclusions is greyed out. Is there a way to set path exclusions via policy and set some exclusions on the client manually? Thanks in advance Thomas
  19. Hi, I'm playing League of Legends (LoL) and using Smart Security in interactive mode. I have had Nod32 for decades now. LoL has a really annoying application directory that changes along their updates i.e: C:\Riot\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.95\deploy In the firewall exceptions I can only set the exception based on the application and not the root directory or a regular expression that would be really convenient here. Am I missing something? Right now I can only add the exception until next patch but it will trigger 3 popups. 2 at startup
  20. Hello, This is a follow up on this thread: https://forum.eset.com/topic/753-eset-file-security-backup-processes/ Our backup is slowed down to a point where people start arriving in the office before the backup is finished. The only solution I have found to work is by setting: Real-time file system protection > Scan On > File Open to disabled I would rather have exclusions in place, but excluding the Symantec programs path: E:\Program Files\Symantec\Backup Exec\ didn't work Has anyone found a solution for this? Many thanks Jean-Philippe P.S.: Our system i
  21. Hi, We use a windows based softphone called 3CX Phone for Windows at the office. I've recently changed malware protection on a Windows 8.1 laptop to Eset Smart Security V8. Since doing so the 3CX Phone program can no longer communicate with the 3CX phone system. To date I have tried the following: 1. Added the program's folder to the Realtime scanning exclusion list 2. Turned off/disabled every single Eset module in its Setup section. This had no effect, even after a reboot. 3. Uninstalled Eset. After doing so and performing a reboot the 3CX Phone program worked fine. I reinstalled E
  22. Hello My network upnp is no longer accessible since installing eset smart security. I enabled the option "Allow UPNP for system services in the trusted zone". before I was using another firewall with nod32 before you buy "eset smart security," I had not had that problem. the box of my internet access provider , I see more my upnp network, I use "FreeMi UPnP Media Server" on my computer. sorry my english is bad, im speak french only
  23. I'd like to access my desktop pc with my laptop using Remote Desktop from anywhere. With anywhere I mean: work, university, girlfriend house, etc. The problem I have is that firewall is preventing this incoming connection, if I disable firewall there is no problem and I'm able to access my desktop pc. With firewall activated I get this event in the log: 15/10/2013 07:07:46 a.m. No usable rule found xxx.xxx.xxx.xxx:49204 192.168.1.102:3389 TCP System where xxx is IP adress of my laptop. I can't create a rule to allow a connection from an IP that I don't know in advance. I was
  24. With reference to this screenshot, I want your kind attention, that my ESS8 is constantly flagging Adguard and Hitman pro / hitman pro alert 3 as PUP but Adguard support team has confirmed me to made an exclusion and its a false positive warning. I've contacted Ess support but I got no reply. Any solution? suggestion/feedback ! Thanks and Best Regards, Sadashiva.
  25. Hi, When you define any exlusions in ESET Smart Security, you can add a complete drive, a compete folder, or just one particular file / program. If you for example create an exclusion for C:\Program files\Program.exe will then all files which this program is reading / writing, also be excluded from scanning by ESET, or does the exclusion settings only mean that the file Program.exe will not be scanned on ESET On-Demand scans?
×
×
  • Create New...