Jump to content


Most Valued Members
  • Content Count

  • Joined

  • Last visited

  • Days Won


Posts posted by SweX

  1. Description: Default Deny


    Detail: Auto block applications that are not on a white-list determined by ESET.


    Default Deny (if you meant by default) will not work as the majority of ESET's customers want (and need) a product that is easy to use with no unnecessary popups or detection notifications with questions like "allow, block, quarantine".


    I gave a suggestion myself a while ago that you may like which should work with the help of data from Livegrid.



    I am not a fan of auto block as that would automatically block everything that is not yet on the white-list. I want to control that myself, which is part of my suggestion above.

  2. In the next release of ESS (V10x I assume) I would like to see the GUI go back to something similar to v8x. The GUI is not something I normally get overly concerned with but v8 was much easier to use then v9x. Specifically the "firewall rules" screen which in v9 is just not easy to use at all.

    Also, I may be a nice pale person :rolleyes:  but I really wish there was a bit more colors in the GUI here and there. It is so white/grey/pale in its current state. Well, except the "home" screen where the ESET robot is where we have a bit blue and green. But I want nothing extreme and/or sharp color contrasts, that would be even more annoying/worse compared to its current look.


    New users first need to be manually approved by moderators.

    Why is that?

    Previously you just had to confirm your mail. Or is the mail verification still broken?


    To counter spammers is one reason. But its not 100% effective as we have seen lately when some spam slipped through, but I would say that it's better to use this method than not use anything at all.

  4. It would be nice to see Eset incorporate a Behavior Blocker into their products. If something slips through then the behavior blocker can help detect the malware when it executes. They could have the feature disabled by default if they are worried about it causing false positives when being tested by independent test organizations.



    "Advanced Memory Scanner complements Exploit Blocker, as it is also designed to strengthen protection against modern malware. In an effort to evade detection, malware writers extensively use file obfuscation and/or encryption. This causes problems with unpacking and can pose a challenge for common anti-malware techniques, such as emulation or heuristics. To tackle this problem, the Advanced Memory Scanner monitors the behavior of malicious processes and scans them once they decloaks in the memory. This allows for effective detection of even heavily obfuscated malware. Unlike Exploit Blocker, this is a post-execution method, which means that there is a risk that some malicious activity could have been performed already. However, it steps into the protection chain when everything else fails."


    I assume you had something like Emsisoft's Behavior Blocker in mind when you made this request. Just wanted to mention the purpose of AMS and what it does.



    Edit: This PDF literally explains the ins and outs of the software itself and what happens behind the scene on the back-end systems. Every customer/user that is interested in this kind of geek information (it is very informative) should take time and read through the whole PDF.

  5. RAM usage will be lower and 0-day detection will be much better? What do you think about this: Eset Cloud-Security?

    Well, it doesn't get "much better" automatically only because you put most of the software in the cloud and use a thin client on your computer, and "cloud" is only a word, what's going on in the cloud with the logics (algorithms, heuristics, behavior analysis)..and so forth is what actually matters. LiveGrid is ESET:s cloud back-end system that the software gets assistance from in real-time, and how ESET will improve LiveGrid and how the software takes advantage of LiveGrid in the future - time will tell.


    The thing is that the RAM is very fast, so having the software loaded in the RAM results in that you get better system performance, but that is not possible if prio nr1 is to keep the RAM usage as low as possible. I personally prefer to have my security sofwares run locally but like that they have in-built cloud features that takes advantage of a cloud back-end system like LiveGrid, the best of both worlds.

  6. @kakashi: With all due respect, please post reasonable suggestions.

    I reckon that all of his suggestions and ideas are perfectly realistic and reasonable to him. But I'm not worried, it's not like ESET will take notice and implement any of it, especially when 99% are nothing but made up fancy words taken out of the blue. I guess he has a wild fantasy or something that he get all funny ideas from.

  7. Try to reduce memory from 100mbs to 50 or 40mbs this can help


    Because ? And help with what exactly ? Do you even know why the RAM usage is like it is ?

    (sorry for only quoting one of your requests...I simply don't have time to ask questions about each one)


    No, rugk doesn't hate you, don't be silly kakashi. It's just that we are all concerned about what would happen with the products if you were head of development at ESET.  ;)  ESET could easily loose over 50% of their user-base if they did a 360 with their product lineup, and started to offer something totally different. If we would go over to Kaspersky's, Symantec's, Bitdefender's, Avast's, Webroot's etc etc... forum and copy your post and paste it there, do you think they would appreciate it, or not ?

    (People use their products (just like ESET) because they like them, not because they want the products to become something totally different.)


    Why do you even use ESET if you don't like it and want it to change so badly ?

    There are over a 100 other AVs you can try out if you like, maybe one of them will suit you better.

  8. Welcome Supersnake--just for fun I logged back into Wilders and see that my last post there was almost to the day, 2 years ago; time flies. 


    We've discussed porting over the experience from previous forum accounts, but this is still an ongoing topic. For the time being, everyone's posts and such are starting over when you join the new ESET Security Forum. 


    Hey foneil,


    Not that it matters for me personally. But If you go through with that, then what does that mean exactly? 


    I actually didn't even know that you had an account on Wilders.  :D

  9. There is a third way so you don't need to use the full editor or reload the whole page: you can still click on a second 'Edit' button on the right top of the post next to the number, which is a good workaround for now and works after editing the first time with the 'Edit' button on the bottom of the post.


    Ahhh now I see it, quite well hidden on the dark grey/blueish background. It becomes more visible (along with the report, edit and hide buttons at the bottom) when the cursor is placed within the post.  ^_^

  10. I have this "edit" issue too. I didn't post a thread about it because I thought that I was the only one having this issue, but it turns out others have had it for a few month as well lol!


    Why didn't you guys post about it earlier ? Why didn't I post about it earlier...it could have been solved by now  :D


    Yes Indeed, edit -> press F5 -> edit -> F5 -> edit -> F5...that's how I do it incase I need to edit a post. It works, but I rather get a working edit button again.

  11. Hello,


    1. You are not the first to want the GUI to be easier to read or similar, but I doubt a new version of the current one will be released as they are currently working on a new GUI that I assume will look different.


    2. Yeah quite many users that used that button in earlier version want that function/button to make a come back into the tray menu.


    You can actually vote for "Update now" here if you want....

    "What option do you find useful and would like to add it to the tray menu?"


  12. ESET already have a small "problem" in that too many people submit what they think is malware via the in-built submission form, but what really is no malicious files at all, it's usually just "junk".


    If they also were to include a "future changes" (purpose of this thread), in the GUI they would get loads of unnecessary suggestions all day long such as "hello, my computer is so slow, can you please add a system speedup function to make it faster ?"


    No, doing that would be a big mistake and a waste of staff resources that would need to wade through all "ideas". Many users doesn't even know what the product is and how it works, they just read in a Mag that it was good so they installed it, or it got installed on their machine by a friend, technician, or someone knowledgeable that knows it's a good bloat free product. So how would these users know what type of features that fits in the program, they could submit all sorts of irrelevant product feature suggestions. And most users don't want the product flooded with new features in every new versions, they want it to stay small and slim.


    Besides, people that actually are interested in ESET software already knows where they should go with their ideas and suggestion. 


    And yes of course, all ESET users can express their opinion freely on the Internet if they like, but not through the program itself, it's not a chat client that we are using :-P.


    Just back from around 3 different forum, which consist of Malware Expert, and Malware Hunter forum, Some of their concern about ESET is eset still lack of malware behavior detection. Maybe this still can be improved.


    In details They said ESET is the best as their respond to new malware are fast but still lack of behavior detection of the malware. Why is this important? As there's been a rumors around telling that hacker do the experiment on their created Malware on Virus total, and they will continue improving to avoid from being detected by current AV.


    But they (Malware Hunter) also understand that doing this, is a hard work. But still it worth it to make an improvement on that behavior  detection. 


    (If this not related to this topic, please inform me and suggest which topic are suitable for this kind of suggestion :) )

    Any chance you could provide links to the specific forums you quoted from?


    I would really like to read their comments and findings in their entirety.


    I know Malwaretips is one of the forums, but I would hardly call them "malware experts" even if a few members is very knowledgeable. If you have worked with malware for 10-20 years or so then you can be called an expert.


    The majority of the MT members that downloads the samples does not execute them at all, they just scan the samples. If someone wants to see AMS for example kick in and detect a sample during execution, then you actually have to execute the sample that was not detected by the right-click context menu scan, or on-demand scan. (If a sample is not detected by the scan the members on MT count it as a miss/undetected.)


    As far as I know, one cannot get any "suspicious/behavioral" detections by any AV unless the sample is executed.

    My neighbor "average Joe" would not download a file and scan it with his AV Before he executes the file, he would run it right away.


    Malware can also be detected and blocked by ESET at the originating source, and that source is not a forum on the internet where one can download collected samples.

  • Create New...