Quantcast
Channel: ESET Security Forum (Business)
Viewing all 5405 articles
Browse latest View live

Unable to Access Cloud Administrator

December 8, 2019, 8:30 pm
$
0
0
Apologies in advanced if I have somehow missed a past post or announcements on this. For several weeks, from multiple different devices, browsers, and locations, I have been unable to log into the Cloud Administrator portal. I am using 2FA and each time I receive this error: This page isn’t working eca.eset.com redirected you too many times. Try clearing your cookies. ERR_TOO_MANY_REDIRECTS I have asked another administrator I know to try to log in and he received the same error. I have tried clearing cookies and logging in from Explorer, Chrome, Firefox, and Safari. Has anybody experienced this before and is there a known solution?
Search

all in one installer questions

December 8, 2019, 11:50 pm
$
0
0
Dear all! I recently installed the newest ESMC from the "all-in-one-installer" option. Everything went okay, but i am missing the sql settings part. I something goes wrong how can i acces the newly created database?

Installing Client Software on PC on another Domain

December 9, 2019, 6:48 am
$
0
0
We are currently moving all of our client PCs to a new domain (for the sake of this example from domain.1 to domain.2. I have just started to set up the new machines and have come to push a network install of eset endpoint encryption from the server (on domain.1) onto the clients which are on domain.2 I can;t see a way of pointing the remote install to the new domain though. If i enter CLIENTNAME.Domain.2 then I get an error saying the name is too long. However if I don't the install seems to point to CLIENTNAME.DOmain.1 Is there something that I am missing? THanks Matt

CPU Utilization 98-100% on Mac

December 9, 2019, 7:05 am
$
0
0
We've been having many complaints of slow Mac computers due to ESET. This last time I had ESETs ERAAgent running at 98-100% on my computer for quite some time. Not sure what to do to fix this.

Many TMP file ESET File Security

December 9, 2019, 8:13 pm
$
0
0
Hello pals, I want to ask about file security, cause many of our server run windows Server 2008 and 2012 with file security installed have so many temporary file on a folder C:\Windows\Installer. The file size is growing from time to time, even with deleting, it will just come back by itself. Currently i just read about this to fix on win server 2008 https://support.microsoft.com/en-us/help/2388997/temporary-files-are-left-in-the-c-windows-installer-folder-when-you-qu and tried to install the hot fix, i'll try to install the hotfix, but for windows server 2012 i have no idea. Have anyone experienced this issue, and please let me know hot to solve it. Thx in advice, cheers

Windows 7 enterprise sp1 & eset endpoint 7.2.2055.0

December 10, 2019, 2:12 am
$
0
0
Hello, Is Windows 7 enterprise sp1 and eset endpoint 7.2.2055.0 compatible? I have 3 machines and I can't install endpoint security from esmc and from exe installer. Thanks, Peter

Install of ESMCAgentInstaller.sh failed at MacOS Catalina

December 10, 2019, 3:25 am
$
0
0
Hi together. Now have a license for our company for more than 2 months but their product still does not work. Is really very unsatisfactory. First, the installation took a lot of time where I expected a docker-image. But well now the EraServer runs on a VM. There I built an installation agent (standard) and tried to install. We use more than 90% of Mac in our company but the ESMCAgent can not be installed. Here's the log: ESET Management Agent live installer script. Copyright © 1992-2019 ESET, spol. s r.o. - All rights reserved. * Hostname: eset.example.com * Port: 2222 * Installer: hxxp://repository.eset.com/v1/com/eset/apps/business/era/agent/v7/7.1.840.0/agent_macosx_x86_64.dmg Downloading installer image 'hxxp://repository.eset.com/v1/com/eset/apps/business/era/agent/v7/7.1.840.0/agent_macosx_x86_64.dmg': % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 42.3M 100 42.3M 0 0 28.5M 0 0:00:01 0:00:01 --:--:-- 28.5M Checking integrity of of downloaded package /tmp/EraAgentOnlineInstaller.dmg.V8g1sOc5: OK Mounting image '/tmp/EraAgentOnlineInstaller.dmg.V8g1sOc5': Prüfsumme für Protective Master Boot Record (MBR : 0) berechnen … Protective Master Boot Record (MBR :: Die überprüfte CRC32-Prüfsumme ist $F51392E7 Prüfsumme für GPT Header (Primary GPT Header : 1) berechnen … GPT Header (Primary GPT Header : 1): Die überprüfte CRC32-Prüfsumme ist $0CF46D0A Prüfsumme für GPT Partition Data (Primary GPT Table : 2) berechnen … GPT Partition Data (Primary GPT Tabl: Die überprüfte CRC32-Prüfsumme ist $28A6256F Prüfsumme für (Apple_Free : 3) berechnen … (Apple_Free : 3): Die überprüfte CRC32-Prüfsumme ist $00000000 Prüfsumme für disk image (Apple_HFS : 4) berechnen … ............................................................................................................................................... disk image (Apple_HFS : 4): Die überprüfte CRC32-Prüfsumme ist $B923934D Prüfsumme für (Apple_Free : 5) berechnen … (Apple_Free : 5): Die überprüfte CRC32-Prüfsumme ist $00000000 Prüfsumme für GPT Partition Data (Backup GPT Table : 6) berechnen … GPT Partition Data (Backup GPT Table: Die überprüfte CRC32-Prüfsumme ist $28A6256F Prüfsumme für GPT Header (Backup GPT Header : 7) berechnen … GPT Header (Backup GPT Header : 7): Die überprüfte CRC32-Prüfsumme ist $A31E4303 Die überprüfte CRC32-Prüfsumme ist $66FCA8EC /dev/disk3 GUID_partition_scheme /dev/disk3s1 Apple_HFS /private/tmp/EraAgentOnlineInstaller.mount.KLQUFbLx Installing package '/tmp/EraAgentOnlineInstaller.mount.KLQUFbLx/Agent-MacOSX-x86_64.pkg': installer: Package name is ESET Management Agent installer: Upgrading at base path / installer: The upgrade was successful. Cleaning up: "disk3" ejected. unlink: /tmp/postflight.plist: No such file or directory At the programs is now an "ESET Remote Administrator Agent" but this can not be started. Here is the output from "/Library/Application Support/com.eset.remoteadministrator.agent/Logs": 2019-12-10 11:20:30 Information: [Thread 0x116d08dc0]: Loading ESET modules from /Library/Application Support/com.eset.remoteadministrator.agent//Modules/ 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Local time is 2019-12-10 12:20:30 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProductLine: era 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProductVersion: 7.1.840.0 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: Locale: en_US 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProductInstanceID: f4197941-f90e-4d22-ae7e-61bc8ffb99b8 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProgramDataDirectory: /Library/Application Support/com.eset.remoteadministrator.agent// 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProductConfigurationDirectory: /Library/Application Support/com.eset.remoteadministrator.agent/ 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProgramLogsDirectory: /Library/Application Support/com.eset.remoteadministrator.agent//Logs/ 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: TempDirectory: /tmp/ 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProgramLibraryDirectory: /Applications/ESET Remote Administrator Agent.app//Contents/MacOS/ 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: ProgramEsetUpdatableModulesDirectory: /Library/Application Support/com.eset.remoteadministrator.agent//Modules/ 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: InstallConfiguration: CrashDumpsDirectory: /Library/Application Support/com.eset.remoteadministrator.agent//Dumps/ 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Hardware Fingerprint: 01009CB9-7B5E-AC18-71AB-2D7132373B3F 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loaded ESET modules: 1=1074,46=1041B,25=1053,40=1822 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Used memory before loaded module libraries is 31072 KB 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loading module library Updates 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Updates (used 588 KB) 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loading module library Symbols 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Symbols (used 432 KB) 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loading module library Database 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Database (used 532 KB) 2019-12-10 11:20:30 Information: Kernel [Thread 0x116d08dc0]: Loading module library Security 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Security (used 572 KB) 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loading module library Scheduler 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Scheduler (used 516 KB) 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loading module library NetworkGrpc 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loaded module library NetworkGrpc (used 644 KB) 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loading module library Cleanup 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Cleanup (used 524 KB) 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loading module library DataMiners 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loaded module library DataMiners (used 744 KB) 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loading module library DynamicGroups 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loaded module library DynamicGroups (used 444 KB) 2019-12-10 11:20:31 Information: Kernel [Thread 0x116d08dc0]: Loading module library Replication 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Replication (used 532 KB) 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library Automation 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Automation (used 588 KB) 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library Users 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Users (used 436 KB) 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library Policies 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Policies (used 440 KB) 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library OSConnector 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loaded module library OSConnector (used 796 KB) 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library ESSConnector 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loaded module library ESSConnector (used 848 KB) 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library PushNotifications 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loaded module library PushNotifications (used 484 KB) 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library +EVSAConnector 2019-12-10 11:20:32 Warning: Kernel [Thread 0x116d08dc0]: Module library +EVSAConnector was not loaded 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library +ESLCConnector 2019-12-10 11:20:32 Warning: Kernel [Thread 0x116d08dc0]: Module library +ESLCConnector was not loaded 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library +EFSConnector 2019-12-10 11:20:32 Warning: Kernel [Thread 0x116d08dc0]: Module library +EFSConnector was not loaded 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library +EEAConnector 2019-12-10 11:20:32 Warning: Kernel [Thread 0x116d08dc0]: Module library +EEAConnector was not loaded 2019-12-10 11:20:32 Information: Kernel [Thread 0x116d08dc0]: Loading module library +ERAG1ClientConnector 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loaded module library +ERAG1ClientConnector (used 1324 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loading module library +MDMCoreConnector 2019-12-10 11:20:33 Warning: Kernel [Thread 0x116d08dc0]: Module library +MDMCoreConnector was not loaded 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loading module library +VAHCoreConnector 2019-12-10 11:20:33 Warning: Kernel [Thread 0x116d08dc0]: Module library +VAHCoreConnector was not loaded 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loading module library +ProxyConnector 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loaded module library +ProxyConnector (used 616 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loading module library +RDSensorConnector 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loaded module library +RDSensorConnector (used 600 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loading module library +EIAgentConnector 2019-12-10 11:20:33 Warning: Kernel [Thread 0x116d08dc0]: Module library +EIAgentConnector was not loaded 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loading module library +EFDEConnector 2019-12-10 11:20:33 Warning: Kernel [Thread 0x116d08dc0]: Module library +EFDEConnector was not loaded 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loading module library Authentication 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Loaded module library Authentication (used 528 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Used memory before modules load and initialization is 43284 KB 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CUpdatesModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CUpdatesModule (used 112 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CSymbolsModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CSymbolsModule (used 1448 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CDatabaseModule 2019-12-10 11:20:33 Information: CDatabaseModule [Thread 0x116d08dc0]: Startup configuration builder builds successfully ... 2019-12-10 11:20:33 Information: CDatabaseModule [Thread 0x116d08dc0]: Startup connection pool created ... 2019-12-10 11:20:33 Information: CDatabaseModule [Thread 0x116d08dc0]: Builder rebuilds successfully ... 2019-12-10 11:20:33 Information: CDatabaseModule [Thread 0x116d08dc0]: Connection pool recreated ... 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CDatabaseModule (used 1940 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CAgentSecurityModule 2019-12-10 11:20:33 Information: CAgentSecurityModule [Thread 0x116d08dc0]: Initialized CertificationAuthorityManager with crypto library: "LibreSSL 2.2.7" 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CAgentSecurityModule (used 716 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module SchedulerModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module SchedulerModule (used 104 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CNetworkGrpcModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CNetworkGrpcModule (used 652 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CCleanupModule 2019-12-10 11:20:33 Information: CCleanupModule [Thread 0x116d08dc0]: Module initialized 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CCleanupModule (used 44 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CDataMinersModule 2019-12-10 11:20:33 Information: CDataMinersModule [Thread 0x116d08dc0]: DataMinerCompletionHandler: Starting completion handler worker thread 2019-12-10 11:20:33 Information: CDataMinersModule [Thread 0x116d08dc0]: DataMinerCompletionHandler: Starting completion handler worker thread 2019-12-10 11:20:33 Information: CDataMinersModule [Thread 0x116d08dc0]: CStatusLogDataMiner: Initializing local status log cache 2019-12-10 11:20:33 Information: CDataMinersModule [Thread 0x116d08dc0]: CStatusLogDataMiner: Finished initialization of status log cache 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CDataMinersModule (used 2764 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CDynamicGroupsModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CDynamicGroupsModule (used 76 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CReplicationModule 2019-12-10 11:20:33 Information: CReplicationModule [Thread 0x116d08dc0]: CReplicationModule: Initializing message processing 2019-12-10 11:20:33 Information: CReplicationModule [Thread 0x116d08dc0]: CReplicationModule: Module initialization done 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CReplicationModule (used 52 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module AutomationModule 2019-12-10 11:20:33 Information: AutomationModule [Thread 0x116d08dc0]: TaskResumeHandler: There are 0 pending task resume requests. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module AutomationModule (used 420 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CUsersModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CUsersModule (used 32 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CPoliciesModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CPoliciesModule (used 136 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CSystemConnectorModule 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x116d08dc0]: No installed ESET Product (EES) version was detected at start 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CSystemConnectorModule (used 120 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CEssConnectorModule 2019-12-10 11:20:33 Information: CEssConnectorModule [Thread 0x116d08dc0]: No trusted product daemon was found. 2019-12-10 11:20:33 Information: CEssConnectorModule [Thread 0x116d08dc0]: Connector was deactivated. No tasks will be processed and no logs will be produced. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CEssConnectorModule (used 60 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CPushNotificationsModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CPushNotificationsModule (used 56 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module ERAG1ClientConnector 2019-12-10 11:20:33 Information: ERAG1ClientConnector [Thread 0x116d08dc0]: <CONNECTOR_MODULE> exception N3Era10Connectors17G1ClientConnector20no_installed_productE occurred at /Users/eraautobuilds/workspace/ERA/release_7.1/397bd482/src/Products/RemoteAdministrator/Src/Connectors/ERAG1ClientConnector/Agent/ProductOfflineConfiguration/UnixProducts.cpp:170. Product not installed. 2019-12-10 11:20:33 Information: ERAG1ClientConnector [Thread 0x116d08dc0]: Connector was deactivated. No tasks will be processed and no logs will be produced. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module ERAG1ClientConnector (used 260 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module AgentToProxyConnectorModule 2019-12-10 11:20:33 Information: AgentToProxyConnectorModule [Thread 0x116d08dc0]: Connector was deactivated. No tasks will be processed and no logs will be produced. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module AgentToProxyConnectorModule (used 168 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module CRDSensorConnectorModule 2019-12-10 11:20:33 Information: CRDSensorConnectorModule [Thread 0x116d08dc0]: Connector was deactivated. No tasks will be processed and no logs will be produced. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module CRDSensorConnectorModule (used 184 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initializing module AuthenticationModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Initialized module AuthenticationModule (used 100 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Skipping crash dumps sending (disabled in configuration) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Used memory before modules start-up is 52772 KB 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CUpdatesModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CUpdatesModule (used 32 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CSymbolsModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CSymbolsModule (used 44 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CDatabaseModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CDatabaseModule (used 40 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CAgentSecurityModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CAgentSecurityModule (used 68 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module SchedulerModule 2019-12-10 11:20:33 Information: CAgentSecurityModule [Thread 0x700001915000]: Checking agent peer certificate expiration in 30 days 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterSleepEvent 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module SchedulerModule (used 72 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CNetworkGrpcModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CNetworkGrpcModule (used 68 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CCleanupModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CCleanupModule (used 92 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CDataMinersModule 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterTimeEvent 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterTimeEvent 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterTimeEvent 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterTimeEvent 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterTimeEvent 2019-12-10 11:20:33 Information: CDataMinersModule [Thread 0x700001c27000]: Active threats were published 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterSleepEvent 2019-12-10 11:20:33 Information: CDataMinersModule [Thread 0x116d08dc0]: CExclusionHitsAgregatedDataminer: TimeEvent registered with RequestId=5. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CDataMinersModule (used 384 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CDynamicGroupsModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CDynamicGroupsModule (used 80 KB) 2019-12-10 11:20:33 Information: CDynamicGroupsModule [Thread 0x700001d2d000]: Refreshing dynamic groups after replication 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CReplicationModule 2019-12-10 11:20:33 Information: CReplicationModule [Thread 0x116d08dc0]: CReplicationModule: Starting module 2019-12-10 11:20:33 Information: CReplicationModule [Thread 0x116d08dc0]: CAgentReplicationManager: Starting replication control messages processing 2019-12-10 11:20:33 Information: CDynamicGroupsModule [Thread 0x700001d2d000]: Refreshing dynamic groups templates after replication 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CReplicationModule (used 72 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module AutomationModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module AutomationModule (used 64 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CUsersModule 2019-12-10 11:20:33 Information: AutomationModule [Thread 0x700001eb6000]: Facade: Loading all enabled triggers. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CUsersModule (used 88 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CPoliciesModule 2019-12-10 11:20:33 Information: CDynamicGroupsModule [Thread 0x700001d2d000]: Refreshing static groups after replication 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CPoliciesModule (used 92 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CSystemConnectorModule 2019-12-10 11:20:33 Information: CDynamicGroupsModule [Thread 0x700001d2d000]: Evaluating dynamic groups templates 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CSystemConnectorModule (used 20 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CEssConnectorModule 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: Connecting to product 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterSleepEvent 2019-12-10 11:20:33 Information: SchedulerModule [Thread 0x700001998000]: Received message: RegisterSleepEvent 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CEssConnectorModule (used 140 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CPushNotificationsModule 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: Connected to product, processing tasks 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: Retrieving general operating system information 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CPushNotificationsModule (used 276 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module ERAG1ClientConnector 2019-12-10 11:20:33 Information: AutomationModule [Thread 0x700001eb6000]: Facade: Trigger has been created [UUID=00000000-0000-0000-7006-00000000000a, TYPE=DYNAMIC_GROUP_JOINED, CONFIG=triggerType: DYNAMIC_GROUP_JOINED]. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module ERAG1ClientConnector (used 244 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module AgentToProxyConnectorModule 2019-12-10 11:20:33 Information: CPushNotificationsModule [Thread 0x700002145000]: Configuring EPNS with timeout = 10 sec and LicenseSeat = 'Default ERAAgent' 2019-12-10 11:20:33 Information: CPushNotificationsModule [Thread 0x700002145000]: EPNS Resource available => initializing Push Notification WakeUp handler 2019-12-10 11:20:33 Information: CPushNotificationsModule [Thread 0x700002145000]: PushNotificationWakeUp: registering with EPNS 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module AgentToProxyConnectorModule (used 232 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module CRDSensorConnectorModule 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module CRDSensorConnectorModule (used 224 KB) 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Starting module AuthenticationModule 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: StatusLog_OSINFORMATION_EDITION_STATUS: "Rows":[{"symbols":[{"symbol_type":374,"symbol_data":{"val_int":[1]}},{"symbol_type":368,"symbol_data":{"val_uuid":[{"uuid":"f4197941-f90e-4d22-ae7e-61bc8ffb99b8"}]}},{"symbol_type":375,"symbol_data":{"val_time_date":[{"year":2019,"month":12,"day":10,"hour":11,"minute":20,"second":33}]}},{"symbol_type":377,"symbol_data":{"val_string":["Mac OS"]}},{"symbol_type":378,"symbol_data":{"val_string":["10.15.1"]}},{"symbol_type":379,"symbol_data":{"val_string":["macOS 10.15 (Catalina)"]}},{"symbol_type":381,"symbol_data":{"val_string":["64-bit"]}}]}] 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: StatusLog_OSINFORMATION_LOCALE_STATUS: "Rows":[{"symbols":[{"symbol_type":388,"symbol_data":{"val_int":[1]}},{"symbol_type":382,"symbol_data":{"val_uuid":[{"uuid":"f4197941-f90e-4d22-ae7e-61bc8ffb99b8"}]}},{"symbol_type":389,"symbol_data":{"val_time_date":[{"year":2019,"month":12,"day":10,"hour":11,"minute":20,"second":33}]}},{"symbol_type":391,"symbol_data":{"val_string":["de_DE"]}}]}] 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: StatusLog_OSINFORMATION_TIMEZONE_STATUS: "Rows":[{"symbols":[{"symbol_type":399,"symbol_data":{"val_int":[1]}},{"symbol_type":393,"symbol_data":{"val_uuid":[{"uuid":"f4197941-f90e-4d22-ae7e-61bc8ffb99b8"}]}},{"symbol_type":400,"symbol_data":{"val_time_date":[{"year":2019,"month":12,"day":10,"hour":11,"minute":20,"second":33}]}},{"symbol_type":402,"symbol_data":{"val_string":["CET"]}},{"symbol_type":403,"symbol_data":{"val_int":[60]}}]}] 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Started module AuthenticationModule (used 144 KB) 2019-12-10 11:20:33 Information: CDynamicGroupsModule [Thread 0x700001d2d000]: Dynamic groups templates evaluation trace: Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000001" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_string: "Microsoft Windows" } symbol_id: 377 used_operator: OP_EQUAL }' and symbols [377,val_string: "Mac OS"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000002" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_string: "Linux" } symbol_id: 377 used_operator: OP_EQUAL }' and symbols [377,val_string: "Mac OS"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000003" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_string: "Mac OS" } symbol_id: 377 used_operator: OP_EQUAL }' and symbols [377,val_string: "Mac OS"] is true Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000004" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_res_id: 301989891 val_res_id: 303104045 } symbol_id: 232 used_operator: OP_IN_EXACT }' and symbols [232,] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000005" } versionGuard: 1' with expression 'logicOperator: OR filters { operand { val_res_id: 301989909 } symbol_id: 232 used_operator: OP_EQUAL } filters { operand { val_res_id: 301989910 } symbol_id: 232 used_operator: OP_EQUAL } filters { operand { val_res_id: 301989911 } symbol_id: 232 used_operator: OP_EQUAL } filters { operand { val_res_id: 301989953 } symbol_id: 232 used_operator: OP_EQUAL }' and symbols [232,] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000006" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_res_id: 508906757892866567 } symbol_id: 466 used_operator: OP_EQUAL }' and symbols [466,] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000008" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_res_id: 508906757892866590 } symbol_id: 231 used_operator: OP_NOT_EQUAL }' and symbols [231,] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000009" } versionGuard: 1' with expression 'logicOperator: OR filters { operand { val_res_id: 301989908 } symbol_id: 232 used_operator: OP_EQUAL }' and symbols [232,] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-00000000000a" } versionGuard: 1' with expression 'logicOperator: OR filters { operand { val_string: "Android" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { val_string: "Android (Device Owner Mode)" } symbol_id: 377 used_operator: OP_EQUAL }' and symbols [377,val_string: "Mac OS"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-00000000000b" } versionGuard: 1' with expression 'logicOperator: OR filters { operand { val_string: "iOS" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { val_string: "iOS DEP" } symbol_id: 377 used_operator: OP_EQUAL }' and symbols [377,val_string: "Mac OS"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-00000000000c" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_int: 2 } symbol_id: 1874 used_operator: OP_IN_MASK }' and symbols [1874,val_int: 18014398509481984] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-00000000000d" } versionGuard: 1' with expression 'logicOperator: AND compositeFilters { logicOperator: AND filters { operand { val_string: "Microsoft Windows" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { } symbol_id: 379 used_operator: OP_HAS_SUBSTRING negation_operand { val_string: "Server" } } } compositeFilters { logicOperator: AND filters { operand { val_int: 8 } symbol_id: 1874 used_operator: OP_IN_MASK } }' and symbols [377,val_string: "Mac OS"][379,val_string: "macOS 10.15 (Catalina)"][1874,val_int: 18014398509481984] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-00000000000e" } versionGuard: 1' with expression 'logicOperator: AND compositeFilters { logicOperator: AND filters { operand { val_string: "Microsoft Windows" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { } symbol_id: 379 used_operator: OP_HAS_SUBSTRING negation_operand { val_string: "Server" } } } compositeFilters { logicOperator: AND filters { operand { } symbol_id: 1874 used_operator: OP_IN_MASK negation_operand { val_int: 8 } } }' and symbols [377,val_string: "Mac OS"][379,val_string: "macOS 10.15 (Catalina)"][1874,val_int: 18014398509481984] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-00000000000f" } versionGuard: 1' with expression 'logicOperator: AND compositeFilters { logicOperator: AND filters { operand { val_string: "Microsoft Windows" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { val_string: "Server" } symbol_id: 379 used_operator: OP_HAS_SUBSTRING } } compositeFilters { logicOperator: AND filters { operand { val_int: 8 } symbol_id: 1874 used_operator: OP_IN_MASK } }' and symbols [377,val_string: "Mac OS"][379,val_string: "macOS 10.15 (Catalina)"][1874,val_int: 18014398509481984] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000010" } versionGuard: 1' with expression 'logicOperator: AND compositeFilters { logicOperator: AND filters { operand { val_string: "Microsoft Windows" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { val_string: "Server" } symbol_id: 379 used_operator: OP_HAS_SUBSTRING } } compositeFilters { logicOperator: AND filters { operand { } symbol_id: 1874 used_operator: OP_IN_MASK negation_operand { val_int: 8 } } }' and symbols [377,val_string: "Mac OS"][379,val_string: "macOS 10.15 (Catalina)"][1874,val_int: 18014398509481984] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000011" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_string: "Microsoft Windows" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { } symbol_id: 379 used_operator: OP_HAS_SUBSTRING negation_operand { val_string: "Server" } }' and symbols [377,val_string: "Mac OS"][379,val_string: "macOS 10.15 (Catalina)"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000012" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_string: "Microsoft Windows" } symbol_id: 377 used_operator: OP_EQUAL } filters { operand { val_string: "Server" } symbol_id: 379 used_operator: OP_HAS_SUBSTRING }' and symbols [377,val_string: "Mac OS"][379,val_string: "macOS 10.15 (Catalina)"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000013" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_string: "iOS DEP" } symbol_id: 377 used_operator: OP_EQUAL }' and symbols [377,val_string: "Mac OS"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000014" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { val_string: "Android (Device Owner Mode)" } symbol_id: 377 used_operator: OP_EQUAL }' and symbols [377,val_string: "Mac OS"] is false Dynamic group template 'uuid { uuid: "00000000-0000-0000-7014-000000000015" } versionGuard: 1' with expression 'logicOperator: AND filters { operand { } symbol_id: 1874 used_operator: OP_IN_MASK negation_operand { val_int: 983055 } }' and symbols [1874,val_int: 18014398509481984] is true 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: StatusLog_DEVICEINFORMATION_DEVICE_STATUS: "Rows":[{"symbols":[{"symbol_type":139,"symbol_data":{"val_int":[1]}},{"symbol_type":133,"symbol_data":{"val_uuid":[{"uuid":"f4197941-f90e-4d22-ae7e-61bc8ffb99b8"}]}},{"symbol_type":140,"symbol_data":{"val_time_date":[{"year":2019,"month":12,"day":10,"hour":11,"minute":20,"second":33}]}},{"symbol_type":142,"symbol_data":{"val_string":["Apple Inc."]}},{"symbol_type":143,"symbol_data":{"val_string":["MacBookPro13,3"]}},{"symbol_type":4017,"symbol_data":{"val_string":["C02SX3P2GTFM"]}}]}] 2019-12-10 11:20:33 Information: CDynamicGroupsModule [Thread 0x700001d2d000]: Agent is matching 2 dynamic group templates from 20 2019-12-10 11:20:33 Information: CDynamicGroupsModule [Thread 0x700001d2d000]: Agent is matching dynamic group template 'Operating system is Mac OS' with uuid 00000000-0000-0000-7014-000000000003 and version 1 2019-12-10 11:20:33 Information: CSystemConnectorModule [Thread 0x70000203f000]: StatusLog_IDENTIFIERS_LIST_STATUS: "Rows":[{"symbols":[{"symbol_type":271,"symbol_data":{"val_int":[1]}},{"symbol_type":265,"symbol_data":{"val_uuid":[{"uuid":"f4197941-f90e-4d22-ae7e-61bc8ffb99b8"}]}},{"symbol_type":272,"symbol_data":{"val_time_date":[{"year":2019,"month":12,"day":10,"hour":11,"minute":20,"second":33}]}},{"symbol_type":274,"symbol_data":{"val_res_id":[508906757892866566]}},{"symbol_type":275,"symbol_data":{"val_string":["Paul-MacMaster.fritz.box"]}}]},{"symbols":[{"symbol_type":271,"symbol_data":{"val_int":[1]}},{"symbol_type":265,"symbol_data":{"val_uuid":[{"uuid":"f4197941-f90e-4d22-ae7e-61bc8ffb99b8"}]}},{"symbol_type":272,"symbol_data":{"val_time_date":[{"year":2019,"month":12,"day":10,"hour":11,"minute":20,"second":33}]}},{"symbol_type":274,"symbol_data":{"val_res_id":[508906757892866565]}},{"symbol_type":275,"symbol_data":{"val_string":["Paul-MacMaster"]}}]},{"symbols":[{"symbol_type":271,"symbol_data":{"val_int":[1]}},{"symbol_type":265,"symbol_data":{"val_uuid":[{"uuid":"f4197941-f90e-4d22-ae7e-61bc8ffb99b8"}]}},{"symbol_type":272,"symbol_data":{"val_time_date":[{"year":2019,"month":12,"day":10,"hour":11,"minute":20,"second":33}]}},{"symbol_type":274,"symbol_data":{"val_res_id":[508906757892866564]}},{"symbol_type":275,"symbol_data":{"val_string":["C02SX3P2GTFM"]}}]}] 2019-12-10 11:20:33 Information: AutomationModule [Thread 0x700001eb6000]: SimpleSchedulerTriggerBase: Trigger [UUID=00000000-0000-0000-7006-000000000001, TYPE=REPLICATION] registering scheduler event [StartTime { year: 2019 month: 12 day: 10 hour: 11 minute: 20 second: 33 } TimeSpecification: "R R/1 * * * ? *" UTCLocal: true]. 2019-12-10 11:20:33 Information: Kernel [Thread 0x116d08dc0]: Used memory after modules start-up is 55248 KB And also here is the output from Status.log html: Is there a solution to the problem? I do not really want to go to any of our Mac's and do something manually.

Snatch ransomware reboots PCs in Windows Safe Mode to bypass antivirus

December 10, 2019, 7:23 am
$
0
0
Hello, As I know if you run eset uninstalltool in safe mode you can uninstall agent and endpoint. If a zero day ransomware reboots the pc into safe mode is there any client settings to be enabled to prevent the ransomware from uninstalling the endpoint security? https://www.zdnet.com/article/snatch-ransomware-reboots-pcs-in-windows-safe-mode-to-bypass-antivirus-apps/ Thanks, Peter
Search

Airplay Firewall rule not working "not usable rule found"

December 10, 2019, 10:41 am
$
0
0
Hi! I added the ports as Zoom recommends for Airplay: https://support.zoom.us/hc/en-us/articles/203680359-Protocols-for-iOS-Airplay-Screen-Sharing , but it is not working. I can see the ports added to the firewall profile on the agent, but every time I try to start screen mirroring from the ipad it doesn't work unless I turn off the firewall. The message on the log is "not usable rule found" Any advise?

Proxy Error from multiple clients

December 10, 2019, 2:37 pm
$
0
0
I'm getting the following repeatedly logged on the proxy server: [proxy:error] [pid 6596:tid 10020] [client x.x.x.x:52075] AH00898: Connect to remote machine blocked returned by epns.eset.com:8883 This specific remote server is constantly blocking these connection attempts. Any idea what's going on here and how to rectify this?

Failure to load data

December 10, 2019, 7:19 pm
$
0
0
Hi, I'm just encountering a very weird error. I was just trying to create a new peer certificate when after clicking on create, the webconsole spins for a bit and then it displays "Failure to load data" and then it promptly logs me out. Now when I try to log back in, it shows a small message above the login part " Login failed: Connection has failed with state 'Not connected'. After a bit, it'll allow me to log in; but when I do, it then shows an error "Failed to load tags" and then it boots me out. Now it won't let me log in. I go onto the server's event viewer and noticed this error: The ESET Security Management Center Server service terminated unexpectedly. It has done this 3 times. So I go and restart the ESMC server and try to log in. Unfortunately, it immediately gives me a "Failed to load all tags." error and then after clicking the OK, it gives me a 2nd error: Failed to load data report resolving failed: null. I click on ok and it boots me out again. So I restart the ESMC server again... I'm feeling it might have something to do with me creating an ad hoc tag during the certificate creation stage. Not entirely sure; but I feel the database has been horked. Right now, I'm going into the database (which thankfully is MySQL based) and figure out which table his horked and hopefully fix it; otherwise, I'll need to do a complete reinstall (unless someone else has a good idea). Edmund

ESET update error: File not changed within the given time interval

December 11, 2019, 6:44 am
$
0
0
Hello, We've a customer whose VP had experienced this error: Later the problem resolved and product is updating again however he wants to know why this message can appear. It's difficult to get an ESET Log Collector and we tried from ESMC and it give us error when trying to get the log from ESMC server. Thank you.

ESET Endpoint Security 7.1 locking folder and preventing changes

December 11, 2019, 9:18 am
$
0
0
Good afternoon, We're having a problem here at our office where ESET is preventing a folder from being deleted or otherwise modified, with no logging or alerting that we're aware of. We're deploying alpha versions of some internal software to certain users in our office for testing, but the folder which contains the alpha executables is being locked from modification by ekrn.exe. This folder which we automatically delete and re-create is C:\Program Files (x86)\CompanyName\SoftwareAlpha. We have Real-Time File System Protection enabled, with the following paths excluded from our ESET Security Management Center's settings in Detection Engine > Performance Exclusions: C:\Program Files (x86)\CompanyName\SoftwareAlpha\*.*, C:\Program Files (x86)\CompanyName\SoftwareAlpha\*, C:\Program Files (x86)\CompanyName\*.*, and C:\Program Files (x86)\CompanyName* When I completely disable HIPs for these users, this automated alpha software deployment works fine. Is it HIPS that is locking this folder from being modified? How do I make sure that HIPS is not locking this folder? I've attached a screenshot from the program Process Explorer. When I search for "SoftwareAlpha" (the name of the folder which we want to delete), it shows that the process ekrn.exe is currently using this folder and keeping it from being modified.

ERA- Unable to add license

December 11, 2019, 6:56 pm
$
0
0
Howdy, Ive just installed ERA on one of my servers, Using the VHD from the webiste. Completed setup, logged ontop the web admin page, tried to add a license, and getting an error "failed to add license by license key: Failed to connect to the licensing server." Ive read through some of the fourm and found that you need to be able to get to https://edf.eset.com/edf and for it to show an XML, Which it is currently, however still can not add any licenses. Ive tried restarting the VM multiple times, checked and im pretty sure im not using a proxy. The license has been used on another ERA and worked fine, it has since been remoeved as that was for another client, only used to test. Any help would be thankful. Many Thanks, Kyle

How to specify subjectAltName when creating a certificate using ESMC

December 11, 2019, 7:28 pm
$
0
0
I'm using the ESMC webconsole and creating a peer certificate to replace the existing default ESMC Server Certificate. I would like to specify the subjectAltName rather than getting the "DNS Name=*" default one that's created by the wizard automatically. Am I able to specify the subjectAltName (as there doesn't appear to be a field for that on the form).
Search

BotNet

December 11, 2019, 7:53 pm
$
0
0
Good day. For a month now, every minute such messages arrive at the admin center. Is there a way to cure this?

ESET clients to update from the server not online

December 11, 2019, 10:55 pm
$
0
0
Hi, Recently we've deployed ERA 7.0 successfully but we found it all the clients are getting updates though we've configured to connect to the server in order for the updates, kindly advice what went wrong?

Client Task Executions results are confusing.

December 12, 2019, 8:33 pm
$
0
0
Hi, I'm finding the task executions results confusing. Note the time. 12:09. Time is 12:38. I logged onto the server and it indeed shows that there are 138 updates yet to be installed. Perhaps my understanding of how the Operating System update task works is limited (though I figured it's self-explanatory, which is to say that it tells the system in question to apply the updates). While it works on desktop systems, does it not work on servers? Have I missed something fundamental? Thanks Edmund

Some Windows Servers not auto updating ESET after last weeks windows updates

December 13, 2019, 2:54 am
$
0
0
Everything working fine on all servers (2012 R2 & 2016) except for some that received windows updates last week and were rebooted but show their last update was over 3 days ago (9 days ago that ties in when they were windows updated and rebooted). However they all show they have communicated every day, including today and have no problem being manually updated, so my question is why they haven't been able to auto update and is there something I can do to make them auto update, please? Many thanks and kind regards ESET Security Management Center (Server), Version 7.1 (7.1.503.0) ESET Security Management Center (Web Console), Version 7.1 (7.1.393.0) Copyright (c) 1992-2019 ESET, spol. s r.o. All Rights Reserved. CentOS (64-bit), Version 7.7.1908 Update module 1074.1 (20190925) Translation support module 1775 (20191107) SysInspector module 1274 (20180918) SSL module 1041B (20190913) Push Notification Service module 1055 (20191107) Configuration module 1822.1 (20191028) Database info: DB Version: MySQL 5.6.40

dynamic group to filter clients that haven't been scanned in X days

December 13, 2019, 7:02 am
$
0
0
greetings, i'm trying to set up a dynamic group which purpose it would be to trigger a scan, if the device hasn't been scanned in x days. is there a way to set this up? I've gone through all the possible dynamic group-templates, but i couldn't find a way to implement this. am i missing something?
Viewing all 5405 articles
Browse latest View live
Search