Cloud-based protection
ESET LiveGrid® is an advanced early warning system comprised of several cloud-based technologies. It helps detect emerging threats based on reputation and improves scanning performance by means of whitelisting. New threat information is streamed in real-time to the cloud, which enables the ESET Malware Research Lab to provide timely response and consistent protection at all times. Users can check the reputation of running processes and files directly from the program's interface or contextual menu with additional information available from ESET LiveGrid®.
When installing ESET Server Security, select one of the following options:
•You can decide not to enable ESET LiveGrid®. Your software will not lose any functionality, but in some cases ESET Server Security may respond slower to new threats than detection engine database update.
•You can configure ESET LiveGrid® to submit anonymous information about new threats and where the new threatening code was detected. This file can be sent to ESET for detailed analysis. Studying these threats will help ESET update its threat detection capabilities.
ESET LiveGrid® will collect information about your computer related to newly-detected threats. This information may include a sample or copy of the file in which the threat appeared, the path to that file, the filename, the date and time, the process by which the threat appeared on your computer and information about your computer‘s operating system.
By default, ESET Server Security is configured to submit suspicious files to the ESET Virus Lab for analysis. Files with certain extensions such as .docx or .xlsx are always excluded. You can also add other extensions if there are specific files that you or your organization want to avoid sending.
Enable ESET LiveGrid® reputation system (recommended)
The ESET LiveGrid® reputation system improves the efficiency of ESET anti-malware solutions by comparing scanned files to a database of whitelisted and blacklisted items in the cloud.
Enable ESET LiveGrid® feedback system
Data will be sent to the ESET Research Lab for further analysis.
Submit crash reports and diagnostic data
Submit data such as crash reports, modules or memory dumps.
Submit anonymous statistics
Allow ESET to collect information about newly detected threats such as the threat name, date and time of detection, detection method and associated metadata, scanned files (hash, filename, origin of the file, telemetry), blocked and suspicious URL's, product version and configuration, including information about your system.
Contact email (optional)
Your contact email can be included with any suspicious files and may be used to contact you if further information is required for analysis. Please note that you will not receive a response from ESET unless more information is needed.
Submission of samples
Automatic submission of infected samples
This will submit all infected samples to ESET for analysis and to improve future detection.
•All infected samples
•All samples except documents
•Do not submit
Automatic submission of suspicious samples
Suspicious samples resembling threats, and/or samples with unusual characteristics or behavior are submitted to ESET for analysis.
•Executable—Includes executable files: .exe, .dll, .sys
•Archives—Includes archive file types: .zip, .rar, .7z, .arch, .arj, .bzip2, .gzip, .ace, .arc, .cab
•Scripts—Includes script file types: .bat, .cmd, .hta, .js, .vbs, .js, .ps1
•Other—Includes file types: .jar, .reg, .msi, .swf, .lnk
•Possible Spam emails—Improves global detection of spam.
•Documents—Includes Microsoft Office documents or PDFs with active content.
Exclusions
Click Edit option next to Exclusions in ESET LiveGrid® allows you to configure how threats are submitted to ESET Virus Labs for analysis.
Maximum size of samples (MB)
Define the maximum size of samples submitted automatically.
ESET LiveGuard Advanced
ESET LiveGuard Advanced provides another layer of security by utilizing advanced ESET Cloud-based technology to detect the new, never-before-seen type of threats. ESET LiveGuard Advanced gives you the advantage of being protected against consequences caused by new threats. If ESET LiveGuard Advanced detects suspicious code or behavior, it prevents further threat activity by temporarily putting it into quarantine.
A suspicious sample (file or email message) is automatically submitted to the ESET Cloud, where the ESET LiveGuard Advanced server analyzes the sample using its cutting-edge malware detection engines. While files or emails are in the quarantine, ESET Server Security is waiting for the results from the ESET LiveGuard Advanced server.
To enable ESET LiveGuard Advanced service on a client machine use ESET PROTECT or ESET PROTECT On-Prem Web Console. Ensure you have an eligible ESET LiveGuard Advanced license. In the ESET PROTECT Web Console, create a new policy or edit an existing one and assign it to machines where you want to use the ESET LiveGuard Advanced. See <%EDTDP%> configuration for ESET Server Security.