rugk

At first of course I would recommend to upgrade to the newest ESS version. However about your issue: How do you access the rules and zones editor? At least in the new version there are two ways. One time through all settings (F5) and one time in the main GUI under "Settings" → "Network". Okay, you talk about the settings window so I assume you're using the first way. What happens if you use the other way? Additionally can you move the "advanced settings" window before you click on the button to open the rules and zones editor? If so you could move it to another place so that it won't overlap the rules and zones window. (At least in my case the rules and zones editor window is always centered on the screen after opening it) And finally does it only happen to the rules and zones editor or does it also happen when you for example open the dialog for changing the trusted zone?

Yeah, SweX, no problem. (Do you man "years of using the product"?) Sometimes there is such a simple answer behind a mystery , so it's good to know that it's so easy to explain. Edit: Okay, SweX' post is corrected now.

Ah okay. Comprehensible...

Ahh okay.

Yes, AV-Test... https://forum.eset.com/topic/4486-poor-av-test-results/ https://forum.eset.com/topic/3980-why-does-eset-always-perform-bad-in-av-tests/ It were always the same (or at least similar) answers and no one missed an information about the AV Comparatives test. And have a look who created the latest topic... And you're shocked? Really?

@yesnoo If you say it's related to HTTPS sites do you have SSL scanning enabled?

Great question, @SweX. I have never thought about it but it may be interesting to know this.

Yeah ZeusTracker actually doesn't have any IPv6 addresses, so this isn't needed there (actually). But in my tests with fake IPv6 addresses it all worked correctly.

Version 1.1 is out now. Mainly I just added IPv6 support. And I discovered that I wrote the changelog wrong in the first release. I was still in 2014 although I created it in 2015 of course. But now the changelog is correct.

AFAIK in a home/work network ESS allows incoming connections (from the trusted zone alias all local IPs). But this is only done for some known system services (like RDP and so on), because only for these are pre-defined rules created. (You can also find these rules in the rules and zones editor) Some of these can also be configured in the IDS settings. (like this e.g.)

Nice information! So ESET is on the second place worldwide... I wouldn't have believed that...

Wow great. I think this is worth a new topic. So if you want to create one...

No if ads are really malicious then driveby-downloads or similar things of these ads should be blocked by ESET correctly. HIPS, firewalls and co are other things. They are really protecting the user from threats or malware. So this is the difference not that there are many other tools for it.

Great to hear. Nice work, @Marcos...

@Marcos would had a green background in his post so... no he isn't Marcos. About the GUI: I think that's really a matter of taste. Personally I really like the actual GUI with it's simpleness and comfortability and it's still nice design. However ESET is working on a new GUI and maybe the next version will already have this new GUI. Stay curious!

You can't buy a unilicense pack. Unilicense is just the name from ESET which describes that you can switch to another device and OS. But it separates mobile (Android and co) and desktop devices (Windows, Mac OS and Linux). It's included in every license you buy. About ESS/NOD32: If you buy ESS then you can switch to NOD32. But if you buy NOD32 you can't use the license for ESS. But if you mean the multi-device pack then there you can of course use it for any OS, device and ESET product you like (but of course only the home user products - on the website is a list of all products you can use with the multi-device security license).

@LabVIEW707 Yeah, like I said... AV comparatives... and many users... say ESET is very light.

@LaiLai Okay, LAN party. I understand. (Ahh... I just read the first post of the TS again. Yeah he mentioned there that it was a LAN game, so sorry, I didn't read the post before it again...) About your guess I would think you're quite correct. But of course I don't know it for sure.

No, please no adblocker. That's not a kind of protection... It protects you from such malicious apps? There are a plenty other nice and free adblockers available online. So just choose your favourite one and use it. ESS doesn't need an adblocker. That would just bloating the product.

About the firewall... Yes it works with WFP, so it should look like this: (I already told this in this topic...) The "private/public" settings shown there should be the same as you set in ESS. Additionally you normally shouldn't be able to change them in the Windows firewall settings. About VSD pre-release updates: The procedure you described is correct. Enable them, update the VSD and check out if the issue still persists with the module Marcos mentioned (Internet protection module 1185). You can check the module list in the about box. And ESS surely don't pick the wrong IP. Of course it picks the local IP of your device and besides this in the zones editor the (automatically added) local zones of course includes other IPs of your LAN too. I would just recommend to leave the entry there and don't delete it.

I don't know exactly about the installations, but did you used the live installer or the offline installer? The offline installer has more options and it could be that such an option is there too. In automatic firewall mode this communication should automatically be allowed. As long as there is no incoming communication it should work fine. Okay, if they can verify the authenticity of the screen reader then it could be possible. Like I said I wouldn't use HIPS interactive mode. And if you exclude every EXE and DDL file then the automatic (or smart) mode without this rules may be even more secure. Personally I like the smart mode quite well. About the outpost firewall: If you'd like to use it you can do of course. However I would strongly recommend to only let 1 firewall enabled.

Maybe this also helps: hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN537

Yeah okay, I didn't thought about the URL blocking...

Yes of course if the computer is hosting a game and needs a incoming connection then some firewall rules may be have to created. If the game uses only outbound connection (so it uses a server) then this is of course not the case. So with the learning mode you could solve the problem. But of course you also have to configure your router (if you have one) to allow this communication too.

In this case ESS or NOD32 won't scan the network traffic from chrome for malware. However all files saved to disk are scanned anyway, so if you find no other (temporarily) solution you could let it this way. About the Windows firewall: ESS basically shouldn't disable the Windows firewall completely. Instead of disabling the Windows firewall ESS integrates into the Windows firewall. So if all works correctly the settings of the Windows firewall should look like this: If they doesn't look like this then maybe something went wrong at the installation.