peteyt
-
Posts
2,147 -
Joined
-
Last visited
-
Days Won
41
Posts posted by peteyt
-
-
33 minutes ago, CobaltSparkz said:
I'm sorry to necro this thread, but I posted here before and exactly the same issue is still occurring even with the gaming mode disabled and all the updates released since then, it's not "as" bad, but still ~35%+ CPU usage when opening a new tab, loading a YouTube video e.t.c - Any ideas?
I persume by all updates you mean you are on version 11?
-
49 minutes ago, itman said:
In a perfect anti-malware world, I would agree with you 100%. The problem is malware is getting increasingly sophisticated in its attacks. Case in point is the hijacking of legit Windows system processes to execute their malware. Legit software updates are being hijacked to deliver backdoors. The list goes on and on. The AV vendors including Eset are doing their best to keep up with the onslaught. The problem is there are thousands of hackers but only a dozen of so AV vendors. Through in rouge nation states that have armies of skilled hackers. Latest stats I saw note millions of new malware are created on a daily basis. Granted many of those are variants. However, the odds are overwhelming that undetected malware is going to slip through your security solution standard deployed defenses.
47 minutes ago, persian-boy said:Mate, I'm an average user and I want to make the decisions by myself! I cant work with PowerShell, I don't know how to handle BSOD, I don't know much about registry! so im an average user.
The guy you mentioned is not an average user he is a novice user!even 5 years old kid can read the alerts and decide! I mean it's not that hard! would be easy with practice!I wouldn't class yourself as an average user. As far as I know most average users for example would leave HIPS alone. I don't use it as too many popups and could allow/block the wrong thing. Hell I know a decent amount of computer stuff, selt taught etc. I never get infected these days because I know what to look out for, partly due to learning for my mistakes.
My point is that what happens if something suspicious turned out to be actually safe but also an important file that caused issues by being removed.
From my experience there are lots of people who don't understand security e.g. they expect their security program to work 100 percent, they click dodgy links each time because they are protected etc. These are the people who probably would be unsure what to do if something was marked as suspicious.
I do partly agree with you, there should be a way to do what you want to do, but at the same time I get why eset are doing it.
-
I don't use HIPS manually having it set to automatic but occasionally get the error "User rules file contains invalid data" which appears to be HIPS related as its in the HIPS log. What would this mean. It's random and might not happen for ages.
-
4 hours ago, persian-boy said:
Ye, I saw that myself.
But we can have a digital Signatures list and tell the live gird if the file is from x,y,z and it has unknown level then let it run otherwise block it or ask the user? it works better. I know Eset will not do that I'm just saying its better XD.This is sad!Eset ignoring others because a novice user is also using Eset products and He/she cant handle the alerts:P
Eset sacrificing the security and others for novice users:DI've not really looked into livegrid and sysinspector and the likes so I don't know much about it. A way to get alerts would be handy but it would have to be disabled by default and I understand why Eset has done what they have done.
For example many people have gotten confused with the alerts for expired certificates appearing on certain websites which asks the user to make a decision e.g. ignore or block. The problem is the average user wants their security product to block the bad stuff and allow the good stuff. They see it the job of the software to distinguish between the two. Adding a choice could cause more issues e.g. something is seen as possibly suspicious but it isn't and the user decides to block/delete etc. The user would in turn blame the security program and as you can gather the program would suffer from more false positives. It's the tricky part of finding a balancing.
-
15 hours ago, itman said:
My favorite AV Lab is SE Labs in the U.K.. I state this because they go to lengths in their comparative tests to not only show the results but also the methods those results are based upon.
For example in their latest consumer security product test for July/Aug/Sept 2017 which can be downloaded here: https://selabs.uk/en/reports/consumers , I am posting the extract of the scoring methodology used in determining protection effectiveness. Of note is that evaluation is not a simple "pass or fall" result employed by amateur security testers. Rather a number of factors need to be evaluated in determining a product's overall effectiveness against malware. BTW - Kaspersky edged out "by a hair" Eset for first place:
Interesting criteria. Do they add any points for puas and remove any for false positives?
-
23 minutes ago, persian-boy said:
With the live grid(manually check for the reputation), the system remains safe(because the user sees the risky level )!but without the live grid(default settings and no Hips or anything)the system is infected!
Better safe than sorry:P
P.s: The good thing is the file automatically sent to Eset lab and after 2 hours ESET detected it!but pls consider I could run the file before The Eset catch it!I persume the reason is that the file is too new and unknown. People have pointed out even microsoft files can be classsed as unknown e.g. after an update. Problem is if it alerted the user by default and was actually clean it could cause more damage than good.
Eset could warn the users it is risky but from what i have seen them say in the past on here they want to avoid choices by default.
-
6 hours ago, coch said:
Hi, I initially wrote about my issue in this thread here https://forum.eset.com/topic/13311-eset-1012311-and-new-v11-startup-behaviour/ but I now believe it's a different problem, specific to me, so here goes:
My issue is that my computer becomes extremely show, mouse very choppy (cursor stalls for several seconds, then allows me to move for about a second, then stalls for several seconds again, etc...) and this continues for about 30 seconds until NOD32 loads. This behavior stops a few seconds into the NOD32 splash screen, at which point I get normal control back of my computer, which is a very fast AMD Threadripper CPU, M.2 PCIe drive, 32 GB RAM, etc...
I found the issue to be caused by the Volume2 software utility that I use. I have it to start with Windows, and it appears to load concurrently with NOD32, and this is what makes my computer slow to a crawl for 30 seconds or so after login. Now:
- It is not due to loading concurrently: If I disable Volume2 from loading at startup, NOD32 loads very quickly and no slow down is experienced. If I manually launch Volume2 afterward, the computer becomes very slow for some time, just like if volume2 was starting with Windows.
- This did not occur with NOD32 v10, with the exact same version of Volume2, and no Volume2 configuration changes.
- This also does not occur on my Laptop (Dell 7779 2-in-1) which also have both NOV32 v11.0.144 and Volume2 (same version, same configuration) also set to Autostart with Windows. This suggests a hardware and/or driver component too in addition to a weird interaction between NOD32 and Volume2.
- Volume2 is not detected by NOD32, and a manual in depth scan finds nothing either. I've been using volume2 for many years and have high confidence that it is not a malware or virus anyways.
- No issues after Volume2 is loaded, it is just loading it which is a big problem. Before V11 (and as stated above, even with V11 on my laptop) it loads almost instantly, being a small utility.
ESET, can you please download Volume2 and investigate, check why computer could become so slow when Volume2 is loading?
I'm not posting the link as I think this may be frowned upon in case I am wrong and there is some malicious code in Volume2, but you can easily find it. Google 'Volume2 irzyxa' there are links to it on Wordpress and Deviantart which appear to be the developer's (irzyxa) main homepages. Volume2 is a small utility, not widely known, that I use as a volume OSD, and also allows me to set hotkeys to quickly switch between audio output devices.
Thanks!
Hi it may also help to email eset and create a support ticket and possibly even contacting volume2
-
1 hour ago, cybot said:
EIS is only available in german atm. I live in USA and don't speak german. so EIS 10 which is available, is a downgrade.
Im sure the english version for 11 is out
-
19 hours ago, Malware Blocker said:
Several things:
1) I am not concerned with Youtube traffic & I spend my time creating these videos to inform other people.
2) Yes my methodology is flawed because I don't have the time nor resources to have fully realistic testing methodology.
3) I don't use malware from Virussign so please don't spread the word that I do...I use samples from several sources including Hybrid Analysis, Malshare, VirusShare, etc.
4) Next thing, no I don't rename files themselves, I download the samples individually or as ZIP files created by others & then change the file extensions usually from .bin to .exe.
5) On top of all the other time spent creating a video you expect me to execute every sample? I don't have the time to do that, I am not unemployed & I do have other activities going on in my life.
6) If I am downloading the samples individually I do upload them using the VirusTotal uploader to VirusTotal & check the first submission date for each sample. If I am using samples in packs provided by other people then I just have to trust that what they say is accurate as once again I don't have the time to check each .exe file.
7) That's correct I don't take the time to "learn the product" because again I don't have that time. A key thing to note is that normal users don't necessarily take the time to learn the product either - lots of users install the product & leave it alone because they just want protection. That's why I do the tests on default settings.
I agree with you that my methodology is flawed, if you think you can do better then feel free to join the Youtube community & start uploading tests yourself. I don't have the resources nor time to "test correctly" as in test with tremendous accuracy & I don't understand how you can expect someone like myself to have that much free time to spend.
Finally, as a message to the moderator reading this - none of what I have written above is intended to be offensive or insulting towards anyone on this thread, I am simply trying to correct this person's comment because he appears to have just plucked random information out of thin air (eg. that I use VirusSign for samples).
I should add that this user has said in his video that he does like Eset and while some commentators have stated it was poor he has in a way defended eset. I just commented on the video earlier mentioning the fact that actually the youtube tests are generally all flawed. I could make a video that made a specific security suite look great or one that made them look bad.
-
1 minute ago, Daedalus said:
You can enable "idle state scanning" in EIS.
I believe the issue is with scheduling a task - the user wants to schedule a task at a specific time but also scanning with administrative privileges which doesn't seem possible.
-
2 hours ago, TomFace said:
Think I'll open a ticket with US Support. I will post their reply here when received.
If it is not possible might be worth putting it in the suggestion post
-
22 minutes ago, persian-boy said:
I suggest Eset provide costume installation and let the user choose what he wants to install and what he doesn't want to install.
Some ppl don't need Anti-spam, gamer mode, Anti-theft, webcam protection and banking protection:PYeah I have suggested this in the past - One of the things I have noticed is a lot of Security Suites have became bloatware because like phones they just try and put everything into it - most security suites do this, and add a lot of unwanted stuff e.g. toolbars. The problem is that lots of people don't want this but some sadly do. I've always wondered if the idea of a truly customisable security program could work - kind of like a modular security suite where the user could choose exactly what they wanted. Probably a lot of work needed however and many would instal everything by default then wonder why it became slow.
I do find Eset is very lightweight so I'm not bothered about extra stuff as it doesn't effect the computer.
-
4 minutes ago, persian-boy said:
No, I didn't!I just enabled it manually to see how it goes!when I was in the game Eset didn't alert for anything and this is good but when I disabled the gamer mode then Hips was not working till I restarted the pc! this issue exists for both firewall(interactive mode) and Hips(interactive mode)
Sounds like one of the bugs mentioned on here
-
1 hour ago, coch said:
I'm also having startup issues. Startup of ESET is quite slow, and until it is loaded I can't effectively use my PC, as the mouse is stuttering/jerky. And jerky big time i.e. freezes for a second or two, then I can move it maybe half a second, then freeze for 1-2 second again and repeat over and over until ESET is loaded... the problem stops roughly 1 second after the splash screen comes up.
Kind of weird that " Microsoft's conditions in terms of performance " would lead to degraded performance.
And lastly, my issue is unlikely to be due to a "unhealthy system", as this happens with a stock Windows 10 Fall Creators Update install with just ESET installed and nothing else. When I say stock install I mean no tampering or any tweak applied, and even before installing any driver (not that the issue goes away if I try the same thing _after_ installing my chipset drivers), so basically, this happens even when installing ESET right after the first boot after reformatting and reinstalling Windows.
Is this with version 11?
-
I remember a few people weren't keen when eset changed the design but for me they kept the simple design eset had but modernised it. I used to use bitdefender ages ago and at one point they seemed to change the design every year. It could be interesting to see what they come up with but can confuse people as they have to learn the new layout. You also start to wonder what is new or if the new design is there to hide the fact there aren't many new changes
-
7 hours ago, csmdew said:
that was it, pointed to wrong file, thanks
solved
Did you upgrade btw it is recommended
-
Description: More information in system cleaner
Detail: I have mentioned this previously. System cleaner is the new tool in version 11 that alerts you to system settings that have been changed from default the idea being that they could have been changed by malware.
The issue is they give no information on the actual setting just the type of setting. I tested this feature by clicking to change settings hoping I would be shown the changes and able to make a decision.
What would make more sense is having a way to see the actual changes and a way to ignore certain changes that the user wants to keep. Many people change things themselves e.g Windows tweakers and this feature could cause issues if they change things without realising. This could always be a more advanced option disabled by default.
If this cannot happen at least have a lot for this feature so that advanced users can see the changes made. If eset is changing a Windows option it shouldn't be too hard to log the change somewhere. Also an undo feature might be handy as when I tried it out hoping i would be given options eset just changed them and with no lot I have no idea what got changed
-
4 hours ago, persian-boy said:
Ye me too! it's more dangerous than useful(since Eset cant provide details)
Will request it in the change area. I can see people getting annoyed because they accidentally change something they didn't want to change
-
1 hour ago, itman said:
I would stay away from this feature if you do any system customization. For example, I only create a restore point on my OS boot drive. Win's default settings are to create a restore point for all drives. Of course, System Cleaner flagged an issue w/System Restore.
It's a shame we can't see the changes and decide for ourself
-
13 hours ago, persian-boy said:
Whats the job of system cleaner?it telling me several system settings have been changed!and they are 4 changes.
But cant show me what are these changes?and I cant blindly press reset.
Can Eset provide more details?
As far as I can gather it's just settings that aren't set to their standard default setting the idea being that the system cleaner could revert changes made by malware.
Sadly there is no way to find out the exact setting. I clicked fix hoping it would bring up more details but it just changed the settings to default and there's no undo option or a lot to see changes.
I mentioned this to eset but it seems this is the way they want it and it would be too hard to show each individual changed option. I suggested a way to show more options even if disabled by default as I could imagine people changing stuff to default they had changed themselves. I also suggested a way to ignore specific changes but it appears this won't happen
-
27 minutes ago, Marcos said:
The list of available updates is provided by Windows itself. We don't use any special mechanism for that than querying Windows to get this information.
Yeah I have a printer update that comes up all the time if set to anything but critical. The other updates I was able to sort by checking all the devices in device manager for updates but it found nothing for my printer. I wondered if it was because the printer is always connected now via network rather than USB and I belive the USB lead isn't standard and I appear to have lost it. I did clear all non plugged in devices with no luck.
I even downloaded the update found manually and installed it over the top with no luck. Maybe I will completley uninstall and reinstall at some point. For now I have just changed the update settings but I don't like to be beaten ha
-
36 minutes ago, francobuona said:
I'm sorry
I'm italian
my english is a little good
... yes ... I restarted ... and tried again
I can notbest thing I can think is to go onto your local eset page and contact customer support
-
7 minutes ago, francobuona said:
sos
???????
Hi as far as I'm aware this is just an english forum and mods ask people to only post in english. I translated your text and it appears the installation was cancelled. Did you try and reinstall, possibly rebooting first?
-
39 minutes ago, jdashn said:
Might have missed this part of that article? Was updated today:
thanks for the heads up.
KC Softwares SUMo / FALSE POSITIVE
in Malware Finding and Cleaning
Posted · Edited by peteyt
Whats this? I use Sumo and it tends to find a wide range of stuff not just the main stuff and there is an option for beta versions. Although it does not tell you its beta on the program you have to click it to see.
You have to be careful though especially with devices because it may tell you that there is an update for something e.g. you have version 3 of a printer software and version 4 is out but 4 is for newer models.
It is important to note Sumo uses its users data basically its user generated. That is how it shows you there is an update. I believe so many people have to be on a version before it detects it. This means if no other users use a specific program it will not be able to alert you to updates