yongsua
-
Posts
122 -
Joined
-
Last visited
-
Days Won
2
Posts posted by yongsua
-
-
I would try that and let you know...Thank You.
-
I have tried to disable the protocol filtering and it seems that my network speed remains unaffected. No slowdown, no hang and no crash, but I don't understand why disabling protocol filtering would cause the web protection to become non-functional. Why can't the web protection of ESS work like EAV without protocol filtering? Besides, I also still have problem with crashing after responding to ESET interactive mode alert. I tried to delete the IE rules and open IE again to test if there was any crash. The IE did hang, not crash since I was able to exit it in the normal way, but this time the ESET interactive mode alert was hanged together and ESET GUI crashed (as shown below from the picture given). I actually had to reopen the IE and the interactive mode alert was gone, then the ESET GUI crash notification appeared. Restarted the program wouldn't work at all.
-
I would try that in my unsandboxed Chrome browser that doesn't have any third party add on at all. Thank You.
-
I am actually quite curious on how the protocol filtering works with the firewall. May I know is protocol filtering a feature of the firewall even though it is assigned to Web Protection section? If this is the case, IMHO, this will work like a double filtering which might affect the network performance significantly. First filtering is packet filtering and the second one would be protocol filtering. To filter the packet for two times prior to sending and receiving might be resulted as packet loss. This is just my opinion, I have no idea how actually the protocol filtering works.
( It is 1:30 a.m. in my home country now, I would like to say Good Night, World. Kindly feel free to post and I would come back soon)
-
No. I don't use any add on in my Chrome browser but I sandbox it with Sandboxie and surf web with it every day. I have just installed Adblocker in IE and Firefox but I don't have issue about ads block delay like him in IE. I was about to tell him that but coincidentally he said there is something wrong with the latest Adblocker. The overall problem I am facing is actually unstable network performance. Sometimes the webpages load slow, sometimes, like the FB case I mentioned above, the webpage is hanged but is not crashed but sometimes the whole program is just crashed due to fatal communication error like packet loss or delay due to filtering. I assume there must be something to do with the firewall including the protocol filtering. I would like to try to disable it but I am not able to give the difference now as I need few days inspection on the network performance.
-
Ya. Swex. I get what you mean. I would of course report the issues to ESET as an improvement for the future release. ESET will always be my top favorite. I won't just go off and whine like a baby at everywhere.
-
I would try and let you know soon. There is a user who is also facing network issue like me. Here is the post: hxxp://www.wilderssecurity.com/threads/eset-smart-security-info.373994/ (Kindly refer to post 15)
I would let you know latest by Monday. Thank You.
-
Thanks to your reply. No communications are blocked under the specification of rules except some communications specified in pre-defined rules by ESET and Apple Bonjour service are blocked. If there is any initiation of connection, ESET would report to me since I set the firewall into interactive mode. My network performance is somehow affected. Most recent case is when I was using FB and watching video, the webpage hanged totally, I coudn't click anything on the webpage but I could click other tabs that I opened and surf other webpages. The problem is either crashed or hanged or slow network speed. I did not have any of this problem prior to installation of ESS.
-
Anyway, I will continue to monitor the network performance and so far it seems stable, will report any issue encountered. Thank You.
-
Hi, guys. I have tried ESS for few days and I would like to share my little review about ESS network filter. Honestly, after installing ESS, my network speed and some programs are somehow (not highly but somehow) affected. The network performance seems to be unstable, some times my browser has some problem loading the web pages and I would actually have to reload them or it loads too slow. My programs like Nitro PDF reader and Internet Explorer were crashed suddenly after I responded to the first ESET firewall interactive mode alerts about the permission to initiate its outbound connection. However, the culprit can be also the connection setting for the programs themselves. My conclusion is ESET needs to be as fast as possible at filtering the network traffic or packets or protocol before the users feel any significant difference on the network performance. I do also believe that if more rules are created and are more specified, ESET would take more time at filtering. ESET has robust performance in its antivirus scanning and HIPS, but I hope it would improve its network filter. I am ESET fan and I do not want to get disappointed. Thank You.
-
Hi, in order to make the job easier and faster for the Geeks to Go forum helper, I would like to suggest to perform some analysis in your system prior to posting your issue at that forum.
Please download Farbar Recovery Scan Tool and save it to your Desktop
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
- Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
- Select additions at the bottom
- Press Scan button.
- It will produce a log called FRST.txt in the same directory the tool is run from.
- Please attach both logs generated.
Kindly attach your FRST.txt and Addition.txt on your post at Geeks to Go forum. Thank You.
-
Hi heba, welcome to ESET forum. I would like to suggest you to refer to Geeks to Go forum as it is specialized in helping users to remove malware and restore system. Here is the link: hxxp://www.geekstogo.com/forum/
Kindly refer to it and post your issue at the Security-Virus, Spyware, Malware removal section. Next time, in order to prevent Cryptolocker attack in the future, kindly install this CryptoPrevent (a tool that blocks cryptolocker and other similar attack by other malware). hxxp://www.foolishit.com/vb6-projects/cryptoprevent/
Trust me, this will be a tool that is recommended by the malware experts at Geeks to Go forum after they get your system cleaned. They will use also some sort of system analysis tools like Farbar Recovery to perform analysis in your system. Kindly cooperate with them. Thank You.
-
Not sure if this was mentioned: Rollback/journal feature similar to Webroot Secure Anywhere.
How it works:
-Unknown file is detected > File gets journaled after install > if file is found bad at a later date, all changes the file made are reverted back and file is deleted/quarantined OR if file is found good, it is removed from journaling and added to good list.
Well, I would prefer Active heuristic and I believe ESET has implemented it.
"Active heuristics are referred to by a variety of names by different vendors. Some call the technique “sandboxing”, others call it “virtualization” or “emulation.” In all cases the idea is to create a safe virtual environment, run the code to be inspected and watch the behaviors in order to assess risk." (Source:hxxp://static2.esetstatic.com/us/resources/white-papers/Understanding_Heuristics.pdf)
If any unknown infection is found, ESET will move or have a copy of that infected files after deletion into the quarantine. Based on what I know, ESET will rescan those infected files after every virus definition update by default. I, as a user, have my responsibility to ensure that the infected files in the quarantine are indeed infected and are not false positive detected files. If it is false positive, I could then safely restore back the file and let it execute freely, otherwise I would just delete it. Besides, I would also prefer ESET to detect the unknown infection before the infection could do any irreversible damage to my system, rather than journaling it and letting it execute freely.
-
Sounds good.... So when is the ESET 9 beta will be released?
-
Could you please post a screen shot? ESE doesn't add IP addresses to the Trusted zone, however, it creates so-called automatically generated authenticated zones.
Oh I see, I really don't understand this feature.
So may I know how does it work? How do I understand this? Thank You.
-
Now, this "Trusted Zone" is the hardest one for me to understand. May I know when my gateway IP address and my host address are displayed in "Trusted Zone", does it mean other hosts in my LAN are also in "Trusted Zone"? But, I do not want this occur. Thank You.
-
-
Hi, may I know how does ESS Network Attack Protection (IDS) feature work? Its setting sounds promising for me. "Allows you to activate a functionality from IDS and advanced options (Incoming RPC communication over SMB and Intrusion detection settings) independently from Personal firewall." (Source: ESS manual)
However, I have one question. Does it capable to detect data link layer protocol attack like ARP cache poisoning? Since firewall only filters down to transport layer protocol and this IDS or NAP that is independent from the ESS firewall and which is introduced by ESS sounds interesting and promising to me. I would like to hear some explanation for this. Thank You.
-
Ha! See... That's why I hate Windows 8. It really has a huge administrative privilege issue. I have had "Access denied" issue when installing applications. The applications that I am installing would tell me they can't access this folder, that folder...blah blah blah... Error... How ironic that an admin doesn't have admin privilege to install application.
Paskal, it seems you have some administrative privilege issue with Windows 8. Nothing to do with ESET, IMHO. I am actually struggling with this administrative privilege issue and want to get some help.
-
OK. Thanks.
-
Yeah but I was talking about the file he tried to download from uploaded.net@SweX
It's not "clean" and it's no FP. It's just a PUA...
So all explanation why it is detected are already in this thread.
"I was downloading an epub file which was NOT a threat from a good friend at uploaded.net."
Is there a PUA in that one as well ? I have no idea what file that is.
Well, when I tried to download myself, I did read that the Open Candy will be removed once a donation of at least 5€ is made to LopeSoft and LopeSoft will provide a standalone installer of this software without the Open Candy. His friend might have the standalone installer that might come from Lopsesoft or other sources.
-
Excuse me, regarding the HIPS smart mode, may I know how much user intervention is needed? Cause I would actually like to use this mode as "set it and forget it" for my family and friends who know little about security. Thank You.
For instance, it means that if an application attempts to modify hosts file, you will be prompted to allow or deny the action.
So what is the best mode for "set it and forget it"? Thanks.
-
But how about the facebook ads? How do they know my friend's trial version of ESET is going to expire soon?
-
Excuse me, regarding the HIPS smart mode, may I know how much user intervention is needed? Cause I would actually like to use this mode as "set it and forget it" for my family and friends who know little about security. Thank You.
Internet Download Manager (IDM) downloads stuck at 99%
in ESET Internet Security & ESET Smart Security Premium
Posted
IMHO, I would suggest that you just try to disable the firewall see if the problem still persists.