Administrators Marcos 4,704 Posted February 25, 2020 Administrators Share Posted February 25, 2020 10 minutes ago, esined said: is anyone else having some computers that will not update to 5.0.2272 even with the certfix? Please post the error you get when you attempt to run certfix for Endpoint v5 (a screen shot would be great). If the fix tool has already been run, you may need to delete HKLM\Software\ESET\Hotfix50_20200207I in safe mode to allow it to run again. Link to comment Share on other sites More sharing options...
esined 0 Posted February 25, 2020 Share Posted February 25, 2020 2 minutes ago, Marcos said: Please post the error you get when you attempt to run certfix for Endpoint v5 (a screen shot would be great). If the fix tool has already been run, you may need to delete HKLM\Software\ESET\Hotfix50_20200207I in safe mode to allow it to run again. The tool has already been run. The error happens when trying to push 5.0.2272. Some computers I was able to successfully install it and others fail with the error attached. Is there anyway to fix it without safe mode since most of the computers I am having issues with are remote? Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted February 25, 2020 Administrators Share Posted February 25, 2020 If Endpoint v5 is malfunctioning, push installation won't work. You must first run certfix on the machine which would also upgrade Endpoint to the latest version 5. Link to comment Share on other sites More sharing options...
esined 0 Posted February 25, 2020 Share Posted February 25, 2020 4 minutes ago, Marcos said: If Endpoint v5 is malfunctioning, push installation won't work. You must first run certfix on the machine which would also upgrade Endpoint to the latest version 5. I run the certfix and then I run the push installation. The certfix goes through and then the push installation fails on some. I was able to successfully do this on the majority of the computers but some have the certfix installed but still can't push the installation to them. Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted February 25, 2020 Administrators Share Posted February 25, 2020 Why did you run the push installation after running certfix? Certfix upgrades Endpoint v5 to the latest v5 version so any further push installation doesn't make sense. Link to comment Share on other sites More sharing options...
esined 0 Posted February 25, 2020 Share Posted February 25, 2020 2 minutes ago, Marcos said: Why did you run the push installation after running certfix? Certfix upgrades Endpoint v5 to the latest v5 version so any further push installation doesn't make sense. All of our computers were on 5.0.2265 and running the certfix did not upgrade them to 5.0.2272 Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted February 25, 2020 Administrators Share Posted February 25, 2020 3 minutes ago, esined said: All of our computers were on 5.0.2265 and running the certfix did not upgrade them to 5.0.2272 Then the question is why. If you have a chance to run the fix, please do so and provide the output screen, especially if an error is reported. Should it refuse to run because it has already run before, please delete the said registry value in safe mode. Link to comment Share on other sites More sharing options...
Ali Akbar 0 Posted February 27, 2020 Share Posted February 27, 2020 (edited) Hi @Marcos One of our client is currently executing the push installation task for the fix on version 5 endpoint. The State Text status is "Package installing finished with result code 0" but when checked on client PC, the version is still not updated even after PC has been restarted. Please refer attached image. Kindly please advice eea_logs.zip Edited February 27, 2020 by Ali Akbar Add ESET Log Collector Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted February 27, 2020 Administrators Share Posted February 27, 2020 On 2/25/2020 at 2:48 PM, esined said: All of our computers were on 5.0.2265 and running the certfix did not upgrade them to 5.0.2272 Please troubleshoot the issue on one machine by running certfix manually. If it refuses to run because the fix has already been run, delete HKLM\Software\ESET\Hotfix50_20200207I (or similar one) in safe mode to allow it to run again. Please provide the generated log files if running the fix fails. Link to comment Share on other sites More sharing options...
Ali Akbar 0 Posted February 27, 2020 Share Posted February 27, 2020 I've tried to run the certfix for v5 manually on of the affected machine, Please refer the image for the output. The endpoint version remain the same and not updated. Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted February 27, 2020 Administrators Share Posted February 27, 2020 As I wrote, if you get the message "Patch already applied" delete HKLM\Software\ESET\Hotfix50_20200207I (or similar ones) in safe mode and run it again. It should report an error if the fix fails to apply. Link to comment Share on other sites More sharing options...
Mohammad Musa 0 Posted February 27, 2020 Share Posted February 27, 2020 hello, i got this error: error: GetFileVersionInfoSize: 193 error: Can't get ekrn version (C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe)! someone in this group posted the same problem and pm you with logs but it seems that you answered in private please tell me how to fix it thanks Link to comment Share on other sites More sharing options...
metaladmin 0 Posted February 28, 2020 Share Posted February 28, 2020 We're now experiencing the same problem with server products aswell, and it's even a version higher than 7.0. ESET File Security 7.0.12018.0 Server: Windows Server 2012 R2 Standard (64-bit) I already tried to apply the available Certfix and I also receive the error "Can't get ekrn version (C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe)!" Can anyone confirm that this problem does now occur on server products, too? Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted February 28, 2020 Administrators Share Posted February 28, 2020 1 minute ago, metaladmin said: We're now experiencing the same problem with server products aswell, and it's even a version higher than 7.0. ESET File Security 7.0.12018.0 Server: Windows Server 2012 R2 Standard (64-bit) I already tried to apply the available Certfix and I also receive the error "Can't get ekrn version (C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe)!" Can anyone confirm that this problem does now occur on server products, too? Versions 6.6 and newer were not affected by the issue at all. Running certfix should fail in such case. What issue are you having with ESET File Security v7? If you are getting any errors, please provide a screen shot. Link to comment Share on other sites More sharing options...
metaladmin 0 Posted February 28, 2020 Share Posted February 28, 2020 1 hour ago, Marcos said: Versions 6.6 and newer were not affected by the issue at all. Running certfix should fail in such case. What issue are you having with ESET File Security v7? If you are getting any errors, please provide a screen shot. Ok, as this seems to be a different problem then and it is File Security related anyway, I opened a new topic in the proper subforum: Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted February 28, 2020 Administrators Share Posted February 28, 2020 18 hours ago, Mohammad Musa said: i got this error: error: GetFileVersionInfoSize: 193 error: Can't get ekrn version (C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe)! What version of Endpoint do you have currently installed? Is it one of the affected ones? Could you post the logs generated by the All-in-one fix tool which downloads the appropriate fix for the installed version automatically? All-in-one fixing tool If you have not data-limited internet connection, use cfd.exe (otherwise follow instructions below for specific solution). How to use cfd.exe: run Windows Command prompt in an elevated command line cfd.exe will download the proper version of the product regarding the version and language version example: cfd.exe --proxy-host 10.1.122.14 --proxy-port 3129 --proxy-username test --proxy-password test --silent Link to comment Share on other sites More sharing options...
Glitch 3 Posted March 11, 2020 Share Posted March 11, 2020 I think the fix for ESET 6.5 caused another issue: 1. Currently we see the event log of windows be flooded by : Error while updating status to SECURITY_PRODUCT_STATE_ON. which is caused by the windows security center as they don't see a registered product. 2. Registering the product using ecmd.exe /avregister will end in a : execution failed command. 3. Only way to resolve this is to reinstall the complete 6.5 version. Is there another way to force eset to register against windows ? Link to comment Share on other sites More sharing options...
Glitch 3 Posted March 23, 2020 Share Posted March 23, 2020 (edited) All people following this topic the show is not over. As per March 26th all certfix version 6.5 clients will go to yellow state that there is a new version available. All endpoints 6.5 which does not had certfix will go to status red! Welcome to ESET in quarantine times they will put us up with more work. Customer friendly as they are. Edited March 23, 2020 by Glitch Link to comment Share on other sites More sharing options...
Administrators Marcos 4,704 Posted March 23, 2020 Administrators Share Posted March 23, 2020 1 hour ago, Glitch said: All people following this topic the show is not over. As per March 26th all certfix version 6.5 clients will go to yellow state that there is a new version available. All endpoints 6.5 which does not had certfix will go to status red! Welcome to ESET in quarantine times they will put us up with more work. Customer friendly as they are. To put this right, if you have the latest v6.5 already installed, no notification will be shown by clients since they are already on the latest version that has an ultimate fix included. The notification will be shown on 6.5 clients where certfix was applied but which haven't been upgraded to the latest v6.5 containing the ultimate fix. Link to comment Share on other sites More sharing options...
Glitch 3 Posted March 23, 2020 Share Posted March 23, 2020 Correct but it will bring an additional burden. We had written consent of eset that upgrading to the latest version was not directly needed but eventually. Last week you even have updated the KB as you are still dealing with it and now eset is going to send out this notification in times that on-site hands are virtually impossible. It is so hard to convince our customers to stay with eset we have almost 8000 endpoints which will give this warning those 8000 will switch to another solution due this issue. Link to comment Share on other sites More sharing options...
ESET Moderators Peter Randziak 946 Posted March 26, 2020 ESET Moderators Share Posted March 26, 2020 Hello guys, The Antivirus and Antispyware Module 1560.3 displaying the information about outdated product has been released. @Glitch / other micro-update users we decided to delay to upgrade for you by 2 weeks so the module will be part of the packages build on April 10, please schedule the upgrades accordingly. If the product misses the deadline it will be still functional, we won't be able to guarantee functionality in the future. Please make sure to notice the vessels which won’t be able to get the upgrades before the April 10 in advance to prevent misunderstanding. Peter Link to comment Share on other sites More sharing options...
Recommended Posts