toxinon12345

On execution emulation for files bigger than aprox. 4 MB..etc + Mapping <big+upx> executables ---> on-access LiveGrid whitelisting ! file skipping ! local cache similar to PrevX º Webroot fastest lookups ---- speeds between those of code analysis and code emulation

&nbsp; &nbsp;Good, now switch back to Core Performance of the product (e.g. v5) To what degree of security can be reduced the product by disabling "Advanced heuristics On EXECUTION" but leaving the work in Memory Level to "HIPS Advanced Memory Scanner" Next Performance Test for Security Suites is about to Start, ESET should recover their lightest performance

The most noticeable change in Performance with respect to previous versions is the AdvHeuristics option turned on for File Execution However, even if you tell the program should enable adv heuristic when a file execution occurrs, it seems to me both options in RealTime protection Advanced setup --> Scan on File Open --> Scan on File Execution Are scanned based on a opened file handle, other AVs use File Mapping to intercept the Execution Obviously this doesnt occurs for write operations as files are scanned upon close

Removable media insertion Add "Quick scan | Superficial scan" option in the notification prompt "Profile selector" in Advanced setup

Does ESET SysInspector | ESETOnlineScanner have these features for better LiveGrid tracking?

This is true but I think there is a potential internall bug in the scanner modulle Malware is detected without need of executing it-----even if you uncheck FileOpen scanning-

Dont know what that means with predefined rules But you can count Self-Defense as a set of predefined rules for sure

wow, ESET stepping into script malware It happened to me sòme LockScreens compiled/embedded in AutoIt bypassed some protection layers

Here a detection/removal of a Running Keylogger with Realtime Filesystem protection Disabled

I dont know but those products seems to use some type of logon persistent cache locally stored for objects that are present in cloud whitelists, That could explain the additional speedup,,,,

Usually I`ve seen WMA files downloading codecs when playing the audio file Its the first time I hear of an MP3 file with such features

@Neilyum Are you positive in that files scanned/accesed by MalwareBytes will be scanned/accesed by ESET then anyway? You are only telling ESET to ignore scanning of MBAM files

No problems with my USB hard drives here; Also the new added Advanced Memory Scanner (current version) is the most notable of all core features I´ve seen since v2.7

Low prevalent and rare files with suspicious packed PE --> Query reputation data after successfully downloaded such file Also, I think AMS possibly could benefit speed from the whitelist

S0, That is the reasn why %temp% cannt be used in exclusins

If y0u are unsure, An additi0nal Rgularly check f0r Pr0gram C0mp0nents task can be added in the Scheduler Seems t0 me the Standard scheduled task f0r Update already check f0r PCU

Just switch t0 Aut0matic M0de, Checksums/Digital Signatures are n0t supp0rted Thats why I have created s0me few "Ask" - Rules similar t0 Wind0ws UAC

In additin t0 Marc0s excellent reply, the "L0g all 0bjects" 0pti0n apply t0 infected archives in the realtime pr0tecti0n D0uble clicking a archive l0g in the detected threats page will 0pen a wind0w with all files inside

I know the update mechanism could be smart on the server side, but on the client side there are many scenarios which possibly couldnt be tested thoroughly Once the update mechanism is stuck into errors like "Update database is not needed" or "Activation error" or "Invalid username/password" or invalid data in Nup/ver files, the way to solve the problem is probably the cause of the problem, too. (Changing Update settings mainly | Internet connection interrupted unexpectedly)

I would feel completely safe only to have enabled Advanced Memory Scanner Now if you decide to use the filtering rules you ought to make you think any rule with the action "Ask" ----- leaving the mode to "Automatic" Full documentation here hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN2908

Turn On the new HIPS Advanced Memory Scanner, it is a post-execution detection layer It is available in version 7

From hxxp://www.eset.com/int/about/technology/#anti-phishing and hxxp://www.eset.com/int/about/technology/#livegrid Such Rapid Response database would be a complement to Reputation System

Local setup installed the Endpoint Client with some errors in components ADMINCFG propertty was ignored or ???? This under Windows 8

This should be the most probable cause, because installation seems to be conflicting when installing FIREWALL components and then the rollback occurs Temporary Workaround ----- Use the ESET uninstaller tool in Safe Mode Install Smart Security 7 Dont install new versions! No visible problems in EAV

Marcos, probably he refers to new TOAST notifications