ESET Online Help

Search English
Select the topic

HIPS rule management

This is a list of user-defined and automatically-added rules in the HIPS system. More details about rule creation and HIPS operations can be found in the HIPS rules settings chapter. See also General principle of HIPS.


Rule – User-defined or automatically chosen rule name.

Enabled – Deactivate this option if you want to keep the rule in the list but do not want to use it.

Action – The rule specifies an action – Allow, Block or Ask – that should be performed when the conditions are met.

Sources – The rule will be used only if the event is triggered by an application(s).

Targets – The rule will be used only if the operation is related to a specific file, application or registry entry.

Logging severity – If you activate this option, information about this rule will be written to the HIPS log.

Notify – A small pop-up notification appears in the lower-right corner if an event is triggered.

Control elements

Add – Creates a new rule.

Edit – Enables you to edit selected entries.

Delete – Removes selected entries.

Priority for HIPS rules

There are no options to adjust the priority level of HIPS rules using the top/bottom buttons (as for Firewall rules where rules are executed from top to bottom).

  • All rules that you create have the same priority
  • The more specific the rule, the higher the priority (for example, the rule for a specific application has higher priority than the rule for all applications)
  • Internally, HIPS contains higher-priority rules that are not accessible to you (for example, you cannot override Self-defense defined rules)
  • A rule you create that might freeze your operating system will not be applied (will have the lowest priority)