Mohimen 3 Posted April 2, 2015 Share Posted April 2, 2015 My friend bought a copy of ESET Endpoint Security program were later found to be counterfeit copy Activation code did not accept activation from Officaial ESET website It was activated by the fake website hxxp://eset-me.com After checking more it became clear that updates an existing package as follows hxxp://208.67.19.21:8442 Required: Please correspondent service Provider for disabled above link Best regards Link to comment Share on other sites More sharing options...
rugk 397 Posted April 2, 2015 Share Posted April 2, 2015 About the first part: Try to return your license and get the money back. If it would be a (more or less) serious vendor you can get it. So did you bought it on hxxp://eset-me.com or did you activated it there? For the second keep in mind that you have to activate the license on the official website or in the product only. The other thing with the update and IP address I don't understand. What was updated and what has this to with the IP address? The only thing I can say is that the IP address doesn't belong to ESET. Link to comment Share on other sites More sharing options...
Mohimen 3 Posted April 2, 2015 Author Share Posted April 2, 2015 @ rugk I know the IP address doesn't belong to ESET After examination found that the program does the update through this link hxxp://208.67.19.21:8442 Instead of the ESET servers Required: Please correspondent service Provider for disabled above link Link to comment Share on other sites More sharing options...
rugk 397 Posted April 2, 2015 Share Posted April 2, 2015 About... Required: Please correspondent service Provider for disabled above link there is no link enabled. You correctly "disabled" it by replacing http with hxxp, so it's all okay. As for the "wrong" update. I assume you mean the VSD update? However in any case this is most likely done because you don't have a official version of ESS installed (or "patched" it afterwards). I would strongly recommend uninstalling the current version, also using the safe mode uninstaller, and download the installer from the official ESET site and install it. BTW how did he bought it? And another time BTW: hxxp://eset-me.com/ is already blocked by ESS. Link to comment Share on other sites More sharing options...
Mohimen 3 Posted April 5, 2015 Author Share Posted April 5, 2015 (edited) @ rugk I know Server Update in ESET Programs is disable Since the version 5 But in the pirated version is enabled Like this You can download and analysis pirated version ESET Endpoint Security ( 32 Bit ) ESET Endpoint Security ( 64 Bit ) Please Please work to delete below domains hxxp://eset-me.com hxxp://208.67.19.21:8442 Best regards Edited April 6, 2015 by Marcos Links to unofficial installers removed Link to comment Share on other sites More sharing options...
rugk 397 Posted April 5, 2015 Share Posted April 5, 2015 The links you posted are still clickable... And I think ESET will do what they can. Link to comment Share on other sites More sharing options...
Mohimen 3 Posted April 5, 2015 Author Share Posted April 5, 2015 Send a message to the company hosting I am waiting any response Link to comment Share on other sites More sharing options...
Morisato 8 Posted April 8, 2015 Share Posted April 8, 2015 Funny how that site only shows a activate your key and nothing else is clickable besides the text fields alone. That is already a false-flag sign. Can't even click on the ESET icon itself nor highlight any other text. I'm also guessing your friend is a cheap person so he bought it at some site that was selling it for dirt cheap. Did the software come in a box or did he just download some .exe from said scam site? Frankly any intellectual person would get the .exe (should be .msi) from the official site but licenses on the other hand is a different story. I am also getting the feeling your friend either bought a pirated version or downloaded one... too many red flags here in this case. Link to comment Share on other sites More sharing options...
Recommended Posts