As we know, the advanced heuristics are very effective. However, I've encountered 1 virus and 1 trojan that NOD32 detects with AH, but not without. If there was a feature to include directories to enable advanced heuristics in AMON, such as the default download folder, or temp folder, I think it would be a great addition.

Hello,

AMON does not use the advanced heuristics because it significantly slows down the computer performance.

What kind of performance hit is there? Is it equivalent to NAV? KAV? Or far more than KAV so that implementation is virtually unfeasible for the PC user? Presumably such a setting wouldn't be used to scan all files. Just wondering since it is not clear how much of a performance hit is involved.

And as I previously asked here, but have yet to receive a response, why not include AH as an option within the NOD on demand scanner GUI rather than the current rather inelegant method of running it from the command line? (Which is not even documented in the Help File, by the way.)

Hi Marcos, I setup all my customers computers with "Deep Heuristics" as well as our own PC's, and haven't noticed a slow down, I gather this is only found when using Advanced Hueristics?

Cheers ;D

-{ Quote: " quoting: sig link=board=39;threadid=14829;start=0#msg93346 date=1066043940]
And as I previously asked here, but have yet to receive a response, why not include AH as an option within the NOD on demand scanner GUI rather than the current rather inelegant method of running it from the command line? (Which is not even documented in the Help File, by the way.)
" }-

I would also like to see AH added as an option in the NOD (on demand) scanner.

-{ Quote: " quoting: Stan999 link=board=39;threadid=14829;start=0#msg93392 date=1066059904] I would also like to see AH added as an option in the NOD (on demand) scanner." }-

Are you referring to an option other than the AH shell option? It's pretty useful as it's configured.

http://www.wilderssecurity.com/showthread.php?t=9776

-{ Quote: " quoting: optigrab link=board=39;threadid=14829;start=0#msg93406 date=1066065378]
-{ Quote: " quoting: Stan999 link=board=39;threadid=14829;start=0#msg93392 date=1066059904] I would also like to see AH added as an option in the NOD (on demand) scanner." }-

Are you referring to an option other than the AH shell option? It's pretty useful as it's configured.

http://www.wilderssecurity.com/showthread.php?t=9776
" }-

Hi optigrab,

I use it that way now.

http://webpages.charter.net/gunn1943/nodah.jpg

However, most folks using NOD32 are not even aware of that option because it isn't documented anywhere in the Help information?

I believe it would be beneficial to include that option in the NOD (on demand) scanner for the end user and provide some information about it in the Help section.

It doesn't seem to cause much of a slow down or FPs as shown from the link above.

-{ Quote: " quoting: Stan999 link=board=39;threadid=14829;start=0#msg93420 date=1066069174]I believe it would be beneficial to include that option in the NOD (on demand) scanner for the end user and provide some information about it in the Help section.

It doesn't seem to cause much of a slow down or FPs as shown from the link above." }-
Hi Stan999
Agreed, It would be great if it were documented and incorporated into the full install. Also agree that it doesn't cause much of a slow down - no problems here on my less-than bleeding edge setup.

Regards!

Hello, I agree with add more documentation and a option for AH to AMON, but only if is a optional option like as the "deep" heuristic, etc.
Another feature that NOD can include are:
1) A option into the quarantine for send suspicious files directly to ESET.
2) Plug-in for Microsoft Office 2000/XP for scan files with or without the monitor enabled. (Like as NAV, McAfee)
3) The ability to add new files to quarantine but manually
4) A blocker behaviour for intercept unknown scripts, i.e: It scan all scripts executed via IE, Outlook, etc and search for the tipical behaviour of script files (send via mail, delete files, etc). It same module can implemented for Office macro viruses.

It's all. The others features of NOD32 2.0 are very very excellent! ;) :D

Best Regards,