-
Posts
165 -
Joined
-
Last visited
-
Days Won
5
Everything posted by toxinon12345
-
Scheduled Scans
toxinon12345 replied to Aryeh Goretsky's topic in ESET Internet Security & ESET Smart Security Premium
On execution emulation for files bigger than aprox. 4 MB..etc + Mapping <big+upx> executables ---> on-access LiveGrid whitelisting ! file skipping ! local cache similar to PrevX º Webroot fastest lookups ---- speeds between those of code analysis and code emulation -
Good, now switch back to Core Performance of the product (e.g. v5) To what degree of security can be reduced the product by disabling "Advanced heuristics On EXECUTION" but leaving the work in Memory Level to "HIPS Advanced Memory Scanner" Next Performance Test for Security Suites is about to Start, ESET should recover their lightest performance
-
PROOF that NOD32 v7 is a resource hog
toxinon12345 replied to Super_Spartan's topic in ESET NOD32 Antivirus
The most noticeable change in Performance with respect to previous versions is the AdvHeuristics option turned on for File Execution However, even if you tell the program should enable adv heuristic when a file execution occurrs, it seems to me both options in RealTime protection Advanced setup --> Scan on File Open --> Scan on File Execution Are scanned based on a opened file handle, other AVs use File Mapping to intercept the Execution Obviously this doesnt occurs for write operations as files are scanned upon close -
Scheduled Scans
toxinon12345 replied to Aryeh Goretsky's topic in ESET Internet Security & ESET Smart Security Premium
Does ESET SysInspector | ESETOnlineScanner have these features for better LiveGrid tracking? -
This is true but I think there is a potential internall bug in the scanner modulle Malware is detected without need of executing it-----even if you uncheck FileOpen scanning-
-
HIPS Questions
toxinon12345 replied to effi74's topic in ESET Internet Security & ESET Smart Security Premium
Dont know what that means with predefined rules But you can count Self-Defense as a set of predefined rules for sure -
wow, ESET stepping into script malware It happened to me sòme LockScreens compiled/embedded in AutoIt bypassed some protection layers
-
ESET and Keyloggers
toxinon12345 replied to poopypants's topic in ESET Internet Security & ESET Smart Security Premium
-
Can we ever dream of a light NOD32?
toxinon12345 replied to Super_Spartan's topic in ESET NOD32 Antivirus
I dont know but those products seems to use some type of logon persistent cache locally stored for objects that are present in cloud whitelists, That could explain the additional speedup,,,, -
Malwarebytes no longer runs scheduled scans
toxinon12345 replied to Neilyum's topic in ESET NOD32 Antivirus
@Neilyum Are you positive in that files scanned/accesed by MalwareBytes will be scanned/accesed by ESET then anyway? You are only telling ESET to ignore scanning of MBAM files -
No problems with my USB hard drives here; Also the new added Advanced Memory Scanner (current version) is the most notable of all core features I´ve seen since v2.7
-
Scheduled Scans
toxinon12345 replied to Aryeh Goretsky's topic in ESET Internet Security & ESET Smart Security Premium
Low prevalent and rare files with suspicious packed PE --> Query reputation data after successfully downloaded such file Also, I think AMS possibly could benefit speed from the whitelist -
Environment variable exclusions
toxinon12345 replied to bot's topic in ESET PROTECT On-prem (Remote Management)
S0, That is the reasn why %temp% cannt be used in exclusins -
If y0u are unsure, An additi0nal Rgularly check f0r Pr0gram C0mp0nents task can be added in the Scheduler Seems t0 me the Standard scheduled task f0r Update already check f0r PCU
-
HIPS Questions
toxinon12345 replied to effi74's topic in ESET Internet Security & ESET Smart Security Premium
Just switch t0 Aut0matic M0de, Checksums/Digital Signatures are n0t supp0rted Thats why I have created s0me few "Ask" - Rules similar t0 Wind0ws UAC -
Mini-Bugs
toxinon12345 replied to Gualano Marco's topic in ESET Internet Security & ESET Smart Security Premium
In additin t0 Marc0s excellent reply, the "L0g all 0bjects" 0pti0n apply t0 infected archives in the realtime pr0tecti0n D0uble clicking a archive l0g in the detected threats page will 0pen a wind0w with all files inside -
Virus signature updates
toxinon12345 replied to chrlshlmn's topic in ESET Internet Security & ESET Smart Security Premium
I know the update mechanism could be smart on the server side, but on the client side there are many scenarios which possibly couldnt be tested thoroughly Once the update mechanism is stuck into errors like "Update database is not needed" or "Activation error" or "Invalid username/password" or invalid data in Nup/ver files, the way to solve the problem is probably the cause of the problem, too. (Changing Update settings mainly | Internet connection interrupted unexpectedly) -
HIPS Questions
toxinon12345 replied to effi74's topic in ESET Internet Security & ESET Smart Security Premium
I would feel completely safe only to have enabled Advanced Memory Scanner Now if you decide to use the filtering rules you ought to make you think any rule with the action "Ask" ----- leaving the mode to "Automatic" Full documentation here hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN2908 -
Scheduled Scans
toxinon12345 replied to Aryeh Goretsky's topic in ESET Internet Security & ESET Smart Security Premium
Turn On the new HIPS Advanced Memory Scanner, it is a post-execution detection layer It is available in version 7 -
New module?
toxinon12345 replied to User's topic in ESET Internet Security & ESET Smart Security Premium
From hxxp://www.eset.com/int/about/technology/#anti-phishing and hxxp://www.eset.com/int/about/technology/#livegrid Such Rapid Response database would be a complement to Reputation System -
Install ESET EndPoint in D:\ Directory
toxinon12345 replied to CallumD's topic in ESET Endpoint Products
Local setup installed the Endpoint Client with some errors in components ADMINCFG propertty was ignored or ???? This under Windows 8