LiveGrid
ESET LiveGrid is a preventative system that gathers information about threats from users worldwide. The LiveGrid database contains reputation information about potential threats. The reputation of executables helps you to filter rule results.
Property |
Description |
Example |
---|---|---|
Age |
The number of days since the executable was first seen in LiveGrid. The number is rounded to the equivalent of the week, month, half of the year, year, etc. |
|
Reputation |
The number on the reputation scale. The higher, the more trusted |
Possible values are: •Trusted – 8, 9 •OK – 6, 7 •Risky – 4, 5 •PUA, Unknown (not seen by LiveGrid) – 3 •Malware – 1, 2 |
Popularity |
The number of computers on which LiveGrid has seen an executable. It is rounded to numbers like 10, 100, 1000, 10000, etc. Malware usually does not exceed the popularity of 1000 until it is detected. |
|
You cannot rely on LiveGrid values for new executables. Even the most popular and trusted executable (e.g., installer of a new version of Google Chrome) has low popularity and an unknown reputation for some time after its release. |
Supported Operations and their components:
|
Module |
---|---|
ModuleDrop |
X |
LoadDLL |
X |
LoadDriver |
X |
CodeInjection |
X |
WmiExecution |
X |