Logs

Discussion in 'ESET Smart Security' started by panthal, Aug 12, 2010.

Thread Status:
Not open for further replies.
  1. panthal

    panthal Registered Member

    Joined:
    Apr 12, 2010
    Posts:
    6
    1.
    I was curious as to whether this is a normal event log. I don't remember it looking like this. Maybe due to me switching to the latest version recently?

    2.
    Currently im using Bit Torrent on a different computer, yet the Eset Firewall is seeing and logging that traffic ? Both are hooked into a router. Thanks!


    (Example of question 1,also attached version info and modules.)


    4.2.58.3



    Virus signature database: 5361 (20100812)
    Update module: 1031 (20091029)
    Antivirus and antispyware scanner module: 1284 (20100729)
    Advanced heuristics module: 1110 (2010080:cool:
    Archive support module: 1120 (20100811)
    Cleaner module: 1048 (20091123)
    Anti-Stealth support module: 1021 (20100811)
    Personal firewall module: 1061 (20100607)
    Antispam module: 1014 (20100212)
    SysInspector module: 1216 (20100517)
    Self-defense support module : 1016 (20100404)
    Real-time file system protection module: 1004 (20100727)



    8/12/2010 5:00:01 PM Update Updater: retval = 0x5003, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/12/2010 4:59:58 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/12/2010 4:44:34 PM Kernel Virus signature database successfully updated to version 5361 (20100812).
    8/12/2010 4:44:31 PM Update Updater: retval = 0x0000, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/12/2010 4:43:28 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/11/2010 7:45:12 PM Kernel Selfdefense: P=1 R=1
    8/11/2010 12:18:13 PM Kernel Selfdefense: P=1 R=1
    8/11/2010 12:06:21 PM Kernel Virus signature database successfully updated to version 5358 (20100811).
    8/11/2010 12:06:15 PM Update Updater: retval = 0x0000, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/11/2010 12:05:47 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/11/2010 12:04:43 PM Kernel Selfdefense: P=1 R=1
    8/10/2010 9:04:07 PM Update Updater: retval = 0x5003, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/10/2010 9:03:59 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/10/2010 9:02:51 PM Kernel Selfdefense: P=1 R=1
    8/10/2010 7:15:20 PM Update Updater: retval = 0x5003, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/10/2010 7:14:57 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/10/2010 7:14:36 PM Kernel Selfdefense: P=1 R=1
    8/10/2010 4:02:15 PM Kernel Virus signature database successfully updated to version 5356 (20100810).
    8/10/2010 4:02:10 PM Update Updater: retval = 0x0000, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/10/2010 4:01:33 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/10/2010 4:01:14 PM Kernel Selfdefense: P=1 R=1
    8/9/2010 9:52:28 PM Update Updater: retval = 0x5003, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/9/2010 9:52:05 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/9/2010 9:51:47 PM Kernel Selfdefense: P=1 R=1
    8/9/2010 8:27:45 PM Update Updater: retval = 0x5003, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/9/2010 8:27:42 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
    8/9/2010 7:27:45 PM Kernel Virus signature database successfully updated to version 5353 (20100809).
    8/9/2010 7:27:41 PM Update Updater: retval = 0x0000, failures: 0, regretval = 0x6000, add_regretval = 0 NT AUTHORITY\SYSTEM
    8/9/2010 7:26:49 PM Update Updater: Switch DEVEL modules retval = 0x00005007 [NOT NEED] NT AUTHORITY\SYSTEM
     
  2. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    You set the logging verbosity to diagnostic level, hence the debug messages in the log.
     
  3. reevesloh

    reevesloh Registered Member

    Joined:
    Jul 6, 2009
    Posts:
    160
    from where u got this log?MY log file alway write incorrect ip packet checksum
     

    Attached Files:

  4. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    Do you have IP checksum enabled in the advanced setup of your NIC?
     
  5. reevesloh

    reevesloh Registered Member

    Joined:
    Jul 6, 2009
    Posts:
    160
    can show me a process?also wat is NIC?
     
  6. panthal

    panthal Registered Member

    Joined:
    Apr 12, 2010
    Posts:
    6
    Ahh,thanks!

    But why is the firewall seeing bit torrent traffic on a different computer?
     
Thread Status:
Not open for further replies.