Future changes to ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security Premium and ESET Ultimate Security

[Navara 2]

I would liek to be able to sort, filter, resize, export to text,... pretty much any table that Eset GUI uses. It causes me almost physical pain to use them currently with reflexes forcing me to avoid touching that at almost all costs. That might be cool way to prevent users from messing with app, but terrible for finding / verifying / reporting any apps misbehaviour.

Firewall rules being best example of terrible UX. Please hire UX specialist and fix that.

[Navara 2]

Where you show IP - and mostly in pop-up dialogs - include link to whois information. How shall I make quick semi-qualified decission to allow/deny question when I don't have tools / information for it and all I see is IP number? I can run putty to one of my servers and do Whois / GeoIP query, but that shall be available in ESET already.

[Mahoneko 2]

 

Description: [New Feature] Firewall rules last triggered/used
Detail: [Context : using Firewall in interactive mode]  Keep the last date time a firewall rules has been triggered, and display it in the rules list window, to be able to sort by this date.
Why ? Because during the computere/Windows 'life, program are installed, uninstalled, moved, and many rules become obsolete and useless. And this is more visible with windows 10 store because each new software version is a new exe and so a new rule.
If we can find easily old and not triggered rules since a while, we could delete them to clean up the rules list (and probably improve speed of FW).

 

In addition, a new related feature

 

Description: [New Feature] Delete automatically FW rules if not triggered for XX days
Detail: [Context : using Firewall in interactive mode] . Add a configuration in the FW that can be activate and set the number of days before delete automatically a rule not triggered
- Enable auto-cleanup rules : True/False
- [If enabled] Delete rules if not triggered after [  90  ]  days

 

Thank you
 

Edited October 12, 2017 by Mahoneko

[itman 1,746]

On ‎10‎/‎8‎/‎2017 at 4:31 PM, persian-boy said:

I thought I fixed it... but the same issue exists.
Example: Dw farbar recovery scan tool and run it!then you will see Hips won't alert for execution.
 

I did some of my own testing in regards to this business about the HIPS not detecting Farber activity. For starters, I set the HIPS to Interactive mode and then ran Farbar.

To begin with, Farbar will load and begin execution because you started it manually. However, the first attempt by Farbar to perform any activity the HIPS monitors for will cause an alert as shown by the below screen shot.

Now if you create a .bat script and run Farbar by execution of the script, you will receive a HIPS alert about the startup of Farbar. Likewise, malware doesn't magically run by itself. Something has to execute it. 

[persian-boy 22]

Thanks for the test  Itman:-) I guess you are right and Eset won't react on execution because of I started the file manually and I missed this part of the story.
BTW good to see hips can catch the child process
 

Edited October 11, 2017 by persian-boy

[itman 1,746]

18 minutes ago, persian-boy said:

Thanks for the test  Itman:-) I guess you are right and Eset won't react on execution because of I started the file manually and I missed this part of the story.

As far as anti-exec processing, there is a one built into Win 10 - native SmartScreen. I have tested with a couple of unknown reputation files and each time got an alert from it when they tried to run. Eset let the files run w/o issue. Neither file was malicious but I prefer an option to disallow execution in this instance.

The downside is native SmartScreen relies on "The Mark of the Web" remaining associated with the downloaded file. There are ways to "strip that off" of a download.

[persian-boy 22]

I know about SRP and smart screen also using a tool call https://github.com/AndyFul/Hard_Configurator but  I wanted to do that with Eset.
Just give a try to this tool because its unbeatable:D
 

Edited October 12, 2017 by persian-boy

[itman 1,746]

28 minutes ago, persian-boy said:

I know about SRP and smart screen also using a tool call https://github.com/AndyFul/Hard_Configurator but  I wanted to do that with Eset.
Just give a try to this tool because its unbeatable:D

Yeah, I know about this.

Just be careful with GitHub software. Being open source, it can be hacked. One of the major sources of nasty backdoors has been GitHub software.

[Janus 210]

Hi

Suggestion.......: A second Eset Theme, (that you could choose eg. under Advanced settings)

Argumentation : Beside the default color layout of the user interface it would be pleasant to have another Eset color theme layout . I have noticed that it can be a bit strenuous to the eyes to look at the white background especially when I have to navigate around the " Advance settings " . It would be pleasant with a more  calm and damped color combination. 

Regards

Janus 

[Janus 210]

Hi

Suggestion ...... : Anti-Theft included in NOD32

Argumentation : I know that the Anti theft feature/service is a selling point for some of your top tier products, but i truly think that you will gain more in sales figures and goodwill if you let the " Anti Theft " feature be something that is incorporated in all of your products. Furthermore it will introduce a feature/service, for a product line like Nod32, that no other, for a similar product, will be able to offer for their users/potential customers as to my knowledge.  

Regards

Janus 

 

[persian-boy 22]

Suggestion:
Boot time filter for the firewall to prevent data leak during the system startup.
I don't know if you have it already? but if it's not there pls consider it as an important feature thanks.

 

Edited October 19, 2017 by persian-boy

[Mahoneko 2]

On 10/10/2017 at 7:24 PM, Mahoneko said:

 

Description: [New Feature] Firewall rules last triggered/used
Detail: [Context : using Firewall in interactive mode]  Keep the last date time a firewall rules has been triggered, and display it in the rules list window, to be able to sort by this date.
Why ? Because during the computere/Windows 'life, program are installed, uninstalled, moved, and many rules become obsolete and useless. And this is more visible with windows 10 store because each new software version is a new exe and so a new rule.
If we can find easily old and not triggered rules since a while, we could delete them to clean up the rules list (and probably improve speed of FW).

 

In addition, a new related feature

 

Description: [New Feature] Delete automatically FW rules if not triggered for XX days
Detail: [Context : using Firewall in interactive mode] . Add a configuration in the FW that can be activate and set the number of days before delete automatically a rule not triggered
- Enable auto-cleanup rules : True/False
- [If enabled] Delete rules if not triggered after [  90  ]  days

 

Thank you
 

Any feedback about these requests ?

Thank you

[santoso 7]

how different scan with amsi enable or disable
is eset cannot detect windows script attact when amsi disable?

[foneil 342]

ESET Smart Security has been replaced by ESET Internet Security with version 11, for more information and to upgrade to ESET Internet Security for free, see https://www.eset.com/us/home/smart-security/#existing

[persian-boy 22]

suggestion: Separate export and import settings or Hips

[eternalromance 3]

Description: Add option to name to firewall rules created on the spot

Detail: Please add an option to name firewall rules created on the spot under "Advanced options" (for example "Weather forecast on Start menu")

Edited October 28, 2017 by eternalromance

[eternalromance 3]

Description: Add option to get useful details about the remote computer

Detail: Please add an option to get whois info and host reputation (for example via Virus Total) about the "Remote computer" when creating or editing firewall rules

Edited October 28, 2017 by eternalromance

[eternalromance 3]

Description: Add option to allow/deny subnet to which the "Remote computer" belongs to

Detail: Please add an option to allow/deny the entire subnet to which the "Remote computer" belongs to when creating firewall rules on the spot

[eternalromance 3]

Description: Add option to ESET forums to see the most requested features

Detail: Please add option to ESET forums to see the most requested features so users do not send again the same features requests and can more details to the existing ones.

Edited October 28, 2017 by eternalromance

[eternalromance 3]

Description: Add option to show more details about the threats detected by real-time scan

Detail: Please an option to show more details about the threats detected by real-time scan including:

• Show full path to malicious/infected file or registry key (Where the malware is?)
• Show file hashes (SHA-256; SHA-1; MD5) with link to Virus Total (Which mutation is this?)
• Show detection name with link to detection report in Virus Radar (To which malware family it belongs to?)
• Show if the process that tried to access the malicious/infected file or registry key was running in user or system space (Has the user tried to access the sample?)

There are detection names that cover hundreds of samples and some times it is necessary to know which is the particular sample that has been found (for example to help to determine the origin of the infection)

 

Edited November 4, 2017 by eternalromance
Explain suggestion better

[peteyt 396]

Description: More information in system cleaner

Detail: I have mentioned this previously. System cleaner is the new tool in version 11 that alerts you to system settings that have been changed from default the idea being that they could have been changed by malware.

The issue is they give no information on the actual setting just the type of setting. I tested this feature by clicking to change settings hoping I would be shown the changes and able to make a decision.

What would make more sense is having a way to see the actual changes and a way to ignore certain changes that the user wants to keep. Many people change things themselves e.g Windows tweakers and this feature could cause issues if they change things without realising. This could always be a more advanced option disabled by default.

If this cannot happen at least have a lot for this feature so that advanced users can see the changes made. If eset is changing a Windows option it shouldn't be too hard to log the change somewhere. Also an undo feature might be handy as when I tried it out hoping i would be given options eset just changed them and with no lot I have no idea what got changed 

[Biyakuga 1]

Description: Folder, USB password.

Detail: people need the ability to make folders with password in a local computer.

Moreover make a password to a USB drive so in any computer you will need to enter a password to access files on the USB

 

[Marcos 5,259]

1 hour ago, Biyakuga said:

Description: Folder, USB password.

Detail: people need the ability to make folders with password in a local computer.

Moreover make a password to a USB drive so in any computer you will need to enter a password to access files on the USB

 

For the purpose of encrypting files, folders or whole disks we offer the Secure Data module which is part of ESET Smart Security Premium.

[Biyakuga 1]

2 hours ago, Marcos said:

For the purpose of encrypting files, folders or whole disks we offer the Secure Data module which is part of ESET Smart Security Premium.

Yes I know but I do not want to encrypting my files (by the way I have ESET Smart Security Premium) I just want the ability to put a password on my folder or on my USB.

I am not sure but maybe I wrong does encrypting and password are not 2 different things ?

I am looking for something like this (Not Folder Lock):

hxxp://www.newsoftwares.net/folder-protect/

and

hxxp://www.newsoftwares.net/usb-secure/

 

 

Edited October 30, 2017 by Biyakuga

[persian-boy 22]

Suggestion: Reputation scan
A costume scan that scans the whole hard drive with live grid and gets reputations for everything(Dll, Exe,...) on the machine.