Exploit Blocker
Exploit Blocker is designed to fortify commonly exploited application types such as web browsers, PDF readers, email clients and Microsoft Office components and protect against ROP Attacks. Exploit Blocker is available and enabled by default in all ESET Windows home products, ESET products for Windows Server and ESET endpoint products for Windows.
It works by monitoring the behavior of processes for suspicious activity that might indicate an exploit.
When Exploit Blocker identifies a suspicious process, it immediately stops the process and records and sends threat data to the ESET LiveGrid® cloud system. This data is processed by the ESET Research Lab and used to better protect all users from unknown threats and zero-day attacks (newly released malware without a pre-configured remedy).