ESET Windows home products version 13

Discussion in 'other anti-virus software' started by FanJ, Oct 21, 2019.

  1. feerf56

    feerf56 Registered Member

    Joined:
    Feb 24, 2015
    Posts:
    324
    After exclude, yes.

    Try it yourself.
     
  2. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    Problem solved then.
     
  3. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    Some additional comments on what KVRT.exe does.

    It updates a RunOnce reg. key which I monitor via HIPS rules. I assume what it was doing in the temp directory was creating a kernel mode driver on the fly similar to that done by Process Explorer. And more what would be considered suspect activities. All this was enough for Augur to flag its activities.
     
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Yes it performs both actions that you've mentioned.
    It loads driver so it can perform scan. To unload it, you have to restart your system.
    It also adds runonce regkey that is deleted after you close an app after the scan is finished. If scan crashes for whatever reason that regkey will instruct KVRT to delete it's data after next reboot.
     
  5. feerf56

    feerf56 Registered Member

    Joined:
    Feb 24, 2015
    Posts:
    324
    Not, no and no! The solution is never the exception, as the program may be infected in the future. With exceptions, I always punch a hole in my defense system. The exception is a hole in the defense.
     
    Last edited: Dec 14, 2019
  6. feerf56

    feerf56 Registered Member

    Joined:
    Feb 24, 2015
    Posts:
    324
    The exception is only a temporary solution.
     
  7. feerf56

    feerf56 Registered Member

    Joined:
    Feb 24, 2015
    Posts:
    324
    The error seems to have been corrected.
     
  8. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    4,638
    I found some strange thing with respect to the "Banking & Payment Protection" (BPP) and renewing your licence at ESET NL.
    This is on Win 7 Dutch, using IE11, and the English version of Eset Internet Security (EIS).

    At some moment EIS is giving a warning that the licence is going to expire in 14 days.
    You click on that warning from EIS to renew the licence.
    You get then to https://nl.store.eset.com/onepagecheckout for the renewal.
    If you want to go further to pay via creditcard, you get the Buckaroo site:
    https://checkout.buckaroo.nl/html/pay.aspx
    At least at that moment (if not earlier) you would expect that Eset's BPP would have jumped in. But no, nada ...

    In the past I had already seen that BPP would not jump in at the Buckaroo site. So I had already manually added (via advanced setup) in the BPP list:
    https://checkout.buckaroo.nl
    Whatever, it doesn't work. So, I ended it all and closed IE11. Cleaned caches, rebooted. Now added manually:
    https://checkout.buckaroo.nl/html/pay.aspx
    Rebooted. Tried the renewal again. Still no BPP. Cleaned caches again, rebooted.
    Now added manually (via advanced setup) in the BPP list:
    https://nl.store.eset.com/onepagecheckout
    https://nl.store.eset.com
    (and rebooted again).

    Now finally that last added site did the trick. Finally the BPP was working and also at the Buckaroo site to which you get redirected.

    Some final notes:
    I expect that, when you want to buy from ESET, Eset's own BPP is automatically working and "protecting". It didn't and I had to jump through some hoops to get it working. I had to find out those hoops myself.
    A support ticket with ESET NL was yesterday started (also about another wrong part in their email earlier from them, but that doesn't matter now).
    Initially I was told that the Buckaroo site doesn't need BPP. Well, if that is true, then for example the connection with your bank doesn't need it too. The BPP is there for a reason, isn't it?
    I told them what I did to get the BPP working when buying from them. They told me that they would consider whether BPP needs improvement in this respect.
     
  9. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,456
    Please report any issues to your local ESET distributor and ESET's official forum at https://forum.eset.com where it can get better attention by ESET staff.
    Regarding your question, buckaroo.nl is not known to us. To me it looks like a payment provider so automatically redirecting the communication to a secure browser could do more harm than good if the user is supposed to be redirected back to the e-shop after the payment. Therefore we do not support payment gateways in BPP and do not redirect the user in such case. What the user can do is open an e-shop website in a secure browser and the whole subsequent communication will be secured; another thing is that it would not be safe if the e-shop website was compromised or malicious intentionally.
     
  10. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    4,638
    It was reported to local ESET distributor. I did write that there was contact with ESET NL and that were was a support ticket.

    If Buckaroo is not known to "us" (I suppose that "us" means ESET Headquarters), then you should get in contact with ESET NL.

    With respect to e-shop:
    That's exactly what I did: making sure that https://nl.store.eset.com is in the BPP list because the program EIS itself didn't do it.

    The whole point is:
    If a person wants to buy from ESET via the renewal link in EIS itself, then ESET has to make sure that it is via secured browser (BPP !).
    Whether the issue is showing in other countries, I don't know.

    And further I would suggest that you get in contact with ESET NL.
     
  11. guest

    guest Guest

    ESET Uninstall tool v9.0.1.0 (February 2020)
    https://support.eset.com/en/kb2289-uninstall-eset-manually-using-the-eset-uninstaller-tool
    Download: https://download.eset.com/com/eset/tools/installers/eset_apps_remover/latest/esetuninstaller.exe
    or via Majorgeeks
     
  12. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    Just got upgraded to ver. 13.1.16.0. The big change:

    Eset_Aggressive.png
     
  13. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    Upgraded here as well. TY for that heads up, itman :thumb:. For right now I'm staying with the default 'Balanced' setting until I learn more. Hovering over the setting for more info isn't clearing up my confusion. Maybe I'll find more on the ESET site or the forum.
     
  14. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    5,507
    Looks like what I have at work. Just checked my home PC and I was not offered the update. You guys using just the AV or Internet Security?
     
  15. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    ESET NOD32 Antivirus, Trooper.
     
  16. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    5,507
    Got it. Thanks.

    Though it looks like @itman is running Internet Security
     
  17. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    I'm on pre-release updating.
     
  18. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    8,625
    Location:
    USA
    Me too, probably released to pre-release first. I like the changes so far.
     
  19. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    5,507
    Ahh that's why. Thanks man.
     
  20. Spartan

    Spartan Registered Member

    Joined:
    Jun 21, 2016
    Posts:
    1,424
    Location:
    Dubai
    What's the difference between reporting and protection?
     
  21. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    8,625
    Location:
    USA
    I'm going with the idea that reporting tells you about it and protection does something about it.
     
  22. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    Per Eset GUI option information:

    Reporting

    Eset_Reporting.png

    Protection

    Eset_Protection.png
     
  23. qwer1304

    qwer1304 Registered Member

    Joined:
    Jun 24, 2005
    Posts:
    18
    Major issue with Eset NOD AV 13.0.24 and Chrome:
    Since Chrome update to 82.0.4083 (and later 82.0.4085.4 being the latest) both on Canary and Dev channels, there's a HUGE memory consumption issue in Chrome on (almost) all sites (especially gmail) that cause tabs to crash. Removing NOD resolves the issue, reinstalling it back recreates it and so forth.
    PS Same problem with 13.1.16
     
    Last edited: Mar 14, 2020
  24. Spartan

    Spartan Registered Member

    Joined:
    Jun 21, 2016
    Posts:
    1,424
    Location:
    Dubai
  25. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    There is something similar reported here: https://forum.eset.com/topic/22902-eset-slows-down-chrome-every-time-i-start-it/
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.