Cloud-based protection
ESET LiveGrid® (built on the ESET ThreatSense.Net advanced early warning system) utilizes data that ESET users have submitted worldwide and sends it to the ESET Research Lab. By providing suspicious samples and metadata, ESET LiveGrid® enables us to react immediately to the needs of our customers and keep ESET responsive to the latest threats.
ESET LiveGuard is a feature that adds a layer of protection specifically designed to mitigate never-before-seen threats. When enabled, suspicious samples that are not yet confirmed as malicious and may potentially carry malware are automatically submitted to the ESET cloud.
The following options are available:
Enable ESET LiveGrid® reputation system, ESET LiveGrid® feedback system and ESET LiveGuard
The ESET LiveGrid® reputation system provides cloud-based whitelisting and blacklisting. The ESET LiveGrid® feedback system will collect information about your computer related to newly detected threats. The ESET LiveGuard feature detects new, never-before-seen threats by analyzing their behavior in a sandbox.
You can check the reputation of Running processes and files directly from the program's interface or contextual menu with additional information available from ESET LiveGrid®. With the ESET LiveGuard proactive protection, new files are blocked from execution until receiving the analysis result.
Enable ESET LiveGrid® reputation system
The ESET LiveGrid® reputation system provides cloud-based whitelisting and blacklisting.
You can check the reputation of Running processes and files directly from the program's interface or contextual menu with additional information available from ESET LiveGrid®.
Enable ESET LiveGrid® feedback system
In addition to the ESET LiveGrid® reputation system, ESET LiveGrid® feedback system will collect information about your computer related to newly detected threats. This information may include:
•Sample or copy of the file in which the threat appeared
•Path to the file
•Filename
•Date and time
•The process by which the threat appeared on your computer
•Information about your computer's operating system
By default, ESET Smart Security Premium is configured to submit suspicious files to the ESET Virus Lab for detailed analysis. Files with specific extensions such as .doc or .xls are always excluded. You can also add other extensions if there are specific files that you or your organization want to avoid sending.
|
Read more about sending the relevant data in the Privacy Policy. |
You can choose not to enable ESET LiveGrid®
You will not lose any functionality in the software, but in some cases, ESET Smart Security Premium may respond faster to new threats when ESET LiveGrid® is enabled. If you have used ESET LiveGrid® before and have disabled it, there may still be data packages to send. Even after deactivating, such packages will be sent to ESET. When all current information is sent, no further packages will be created.
|
Read more about ESET LiveGrid® in the Glossary. See our illustrated instructions available in English and several other languages for enabling or disabling ESET LiveGrid® in ESET Smart Security Premium. |
Cloud-based protection configuration in Advanced setup
To access settings for ESET LiveGrid® and ESET LiveGuard, open Advanced setup > Detection Engine > Cloud-based Protection.
•Enable ESET LiveGrid® reputation system (recommended)—The ESET LiveGrid® reputation system improves the efficiency of ESET anti-malware solutions by comparing scanned files to a database of whitelisted and blacklisted items in the cloud.
•Enable ESET LiveGrid® feedback system—Sends the relevant submission data (described in the Submission of samples section below) along with crash reports and statistics to the ESET Research lab for further analysis.
•Enable ESET LiveGuard—The ESET LiveGuard feature detects new, never-before-seen threats by analyzing their behavior in a sandbox. ESET LiveGuard can be enabled only if ESET LiveGrid® is enabled.
•Submit crash reports and diagnostics data—Submit ESET LiveGrid® related diagnostics data such as crash reports and modules memory dumps. We recommend keeping it enabled to help ESET diagnose problems, improve products, and ensure better end-user protection.
•Submit anonymous statistics—Allow ESET to collect information about newly detected threats such as the threat name, date and time of detection, detection method and associated metadata, product version, and configuration, including information about your system.
•Contact email (optional)—Your contact email can be included with any suspicious files and may be used to contact you if further information is required for analysis. You will not receive a response from ESET unless more information is needed.
Submission of samples
Manual submission of samples—Enables you to manually submit samples to ESET from the context menu, Quarantine or Tools.
Automatic submission of detected samples
Select what kind of samples will be submitted to ESET for analysis and to improve future detection (the default maximum sample size is 64MB). The following options are available:
•All detected samples—All objects detected by the Detection engine (including potentially unwanted applications when enabled in the scanner settings).
•All samples except documents—All detected objects except Documents (see below).
•Do not submit—Detected objects will not be sent to ESET.
Automatic submission of suspicious samples
These samples will also be sent to ESET if the detection engine does not detect them. For example, samples that nearly missed the detection or one of the ESET Smart Security Premium protection modules consider these samples suspicious or behaving unclear (the default maximum sample size is 64MB).
•Executables—Includes executable files like .exe, .dll, .sys.
•Archives—Includes archive filetypes like .zip, .rar, .7z, .arch, .arj, .bzip, .gzip, .ace, .arc, .cab.
•Scripts—Includes script filetypes like .bat, .cmd, .hta, .js, .vbs, .ps1.
•Other—Includes filetypes like .jar, .reg, .msi, .sfw, .lnk.
•Possible Spam emails—enables sending possible spam parts or whole possible spam emails with attachments to ESET for further analysis. Enabling this option improves global spam detection, including improvements to future spam detection.
•Delete executables, archives, scripts, other samples and possible spam emails from ESET's servers—Defines when to delete samples submitted for analysis by ESET LiveGuard.
•Documents—Includes Microsoft Office or PDF documents with or without active content.
•Delete documents from ESET's servers—Defines when to delete documents submitted for analysis by ESET LiveGuard.
Expand for a list of all included document file types
Exclusions
The Exclusion filter enables you to exclude files/folders from submission (for example, it may be useful to exclude files that may carry confidential information, such as documents or spreadsheets). The files listed will never be sent to ESET labs for analysis, even if they contain suspicious code. The most common file types are excluded by default (.doc, etc.). You can add to the list of excluded files if desired.
|
To exclude files downloaded from download.domain.com, open Advanced setup > Detection Engine > Cloud-based protection > Submission of samples and click Edit next to Exclusions. Add the exclusion .download.domain.com. |
Maximum size of samples (MB)—Defines the maximum size of automatically submitted samples (1-64 MB).