[KB6976] Disable HIPS in ESET Windows endpoint products

Details

ESET Host-based Intrusion Prevention System (HIPS) monitors system activity and uses a pre-defined set of rules to recognize suspicious system behavior. When this type of activity is identified, the HIPS self-defense mechanism stops the offending program or process from carrying out a potentially harmful activity. Changes to the Enable HIPS and Enable Self-Defense settings to take effect after the Windows operating system is restarted.

Solution

 ESET PROTECT On-Prem users: Perform these steps in ESET PROTECT On-Prem

Advanced users only!

By default, the Host-based Intrusion Prevention System (HIPS) is pre-configured to ensure maximum protection of your system. While the creation of a HIPS rule may be needed to resolve an issue in certain infrequent cases, the manipulation of HIPS rules requires advanced knowledge of applications and operating systems and is not recommended.

  1. Open ESET Endpoint Security or ESET Endpoint Antivirus. Open my ESET product.

  2. Press the F5 key to access Advanced setup.

  3. Click Detection Engine, click HIPS, then click the toggle next to Enable HIPS to disable it.

    Figure 1-1
  4. Click OK and then restart your computer. HIPS will be completely disabled after your computer restarts.

    Figure 1-2

Re-enable HIPS

We recommend re-enabling HIPS again as soon as possible so that your machines will again be fully protected.