hqsec

Description: add read file option to available HIPS target files operations Detail: right now HIPS allows to control delete file and write to file operations. It would be great to have an option to control read file also. Some malware might not try to encrypt or destroy data. Sometimes stealing it might be even more dangerous.

I like new GUI. It looks minimal and polished SSL checking is ON by default and ESET's certificate is installed in Trusted root CA... I reported one minor bug when creating HIPS rules. Good job ESET.

Great, nice to hear. Can't wait to test it

Today I got an email about new beta version coming out in a few days. Anybody got something similar or is this phishing atempt?

Thank you rugk. I totally missed that Startup scan section in Advanced settings.

Hello to all! I have few questions about Automatic startup file check (default scheduled tasks performed after user logon and successful update). How does ESET handle any threats that it finds during this scans? Does it ask user what to do or does it automatically remove (quarantine) them? Can the behavior be configured? If yes, where? Thnx for your help.

You can also try to disable UAC for a while and see if you can change settings.

This might be a problem with ESET's HIPS. Try disabling it and see if that helps.

Which version do you have installed? And which OS do you use?

Which version do you have installed? I have had the same problem in older version before they fixed it. The problem was that ESET showed warnings in new Windows 8 notifications, which I have disabled. Update to latest version solved my problem.

Congrats for great result.

If people don't want to check about new releases on website they can use RSS to get info about new releases. Here are some feeds: hxxp://www.eset.com/us/rss/ You can subscribe to support news channel and get the info...

Thnx for tip.

AFAIK it protects all browsers. It scans all http traffic and it doesn't need any special integration.

Congrats from me also!

I wouldn't like to see sandbox added to ESS. The product would become too bloated. Some applications (Chrome...) already have their own sandbox so another sandbox from Av would be unnecessary.

Thank you for sharing rugk.

Thank you for your response Marcos. I just wanted to know if ESET is using this new mechanism that is available in Windows 8. You've answered my original question. I don't question ESET's ability to deal with malware.

Until we get official response from developer I've made some tests and posted results here: https://www.wilderssecurity.com/threads/elam-early-launch-antimalware-and-avs-supporting-it.369386/#post-2421230

Thanks @rugk. You also have a nice day. And weekend

Thank you Javier. I'm not in a hurry and I'll wait till you get the answers.

I searched this forum and web but couldn't find an answer to my question. I would like to know if ESET's products are compatible and if they are using Windows 8 ELAM (Early-Launch Anti Malware)? I would also like to know if anybody configured ELAM and what was their experience? Thanks.

OK, thank you @rugk for explanation.

I see that there is no more Mozilla Thunderbird support in email clients integration section. Is this temporary or is ESET dropping support for this client?

Hi Swex. I agree with you about changing numbering. We can't be sure how many definitions updates was released. The link that you posted (hxxp://www.eset.com/us/threat-center/threatsense-updates/page/1628) has changed from this morning. I guess they are fixing version numbering. As I described in post #17 there was jump from 1.1859 to 1860 (without 1.). In between there were listed updates from yesterday and today (10000 - 10004). I guess that they tried to fix this and somehow "removed" updates for whole year (from 1.1188 to 1860 there is 671 numbers missing). About the oldest update - version 1281 was the oldest that I found. It is from year 2002 which is 4 years before all that numbering change happened. But there might be some other changes also, so I can't be sure how to get to the oldest VDF.