I did a simple test today by exporting my current rules and delete everything. Then set the default only rule of ESET HIPS and set it to Policy Based Mode.
What I did next was using CCleaner to scan registry and delete invalid references (in this case OLD firewall rules).
As you can see its actions were blocked.
What I didn't expect however is the actions that were partially blocked access. The actual exe was searchindexer.exe
But then the same exact process gets blocked.
Any thoughts?...
ESET - HIPS on Policy Mode - some concerns
What I did next was using CCleaner to scan registry and delete invalid references (in this case OLD firewall rules).
As you can see its actions were blocked.
What I didn't expect however is the actions that were partially blocked access. The actual exe was searchindexer.exe
But then the same exact process gets blocked.
Any thoughts?...
ESET - HIPS on Policy Mode - some concerns