The antivirus engine I heared it's a new one but was something new added to increase detectin rates? Additional definitions not included in the regular updates of v. 2.7 ? New heuristic engine? New packers support?

Thank you1

Eager to know. And how about getting rid of the nasty hangers that reoccur upon system reboot? Would appreciate if anyone sheds light on this.

Both v2 and v3 use the same archive and advanced heuristics modules.

thank you Marcos... so basically no major improvement to it.

We'll keep on improving Advanced heuristics so it will keep getting better for both v2 and v3 versions.

{QUOTE-> We'll keep on improving Advanced heuristics so it will keep getting better for both v2 and v3 versions. <-QUOTE}
It's a nice thing to improve heuristics even more, but isn't it a good ideea to add more definitions also? ...just a thought. :)

Note that the Suit has two-way firewall and all modules are controlled by one place work.The firewall can decide and find suspicious programs and block trojans (for example) go out which makes them useless (read more about this in ESS's help section) . All these add-ons will increase overall detection rate.

{QUOTE-> It's a nice thing to improve heuristics even more, but isn't it a good ideea to add more definitions also? ...just a thought. :) <-QUOTE}

I didn't say we'd stop adding definitions and work on improving AH only :)

Does v3 engine have any feature that v2 engine don't have?

to quote from the Help file, if i may:

ESET NOD32 Antivirus + Antispyware:

This component is in fact an improved version of the award-winning scanning engine of NOD32 Antivirus v2.7. With respect to program's unprecedented scanning speed, the following improvements have been made:


Improved system of cleaning and deleting infiltrations. The antivirus system now intelligently cleans and deletes infiltrations with no need for user interaction.

Computer scan can be run in background in order to use only a part of system resources. Thus scanning will not affect the performance of your computer and you will be able to work on it as usual.

The resident protection supports archive scanning.

Update optimization, smaller update package size than in version 2.7, more effective management and protection of update files against damage.

Email protection for users of Outlook Express.

Well, it seems that ESET is confident in their current engine. Those "new features" are mostly cosmetic/functionality changes (background scanning, scanning of archives in real-time, better updating).
However, the new "cleaning" module seems interesting. Probably, it'll support raw disk scanning and registry scanning/cleaning.
Apparently, ESET has high hopes for their firewall: Kerio-like rule making, primitive (?) IDS, good leaktest interception (?) and web scanning.
The antispam will be very good. I'm guessing this based on the performance of AVG Antimalware's spam module which is licensed from the same vendor.

i like the sound of better cleaning and removal since they is one of nod32' s weakness.
lodore

In this new version some nice features was added, so now the protection, detection and removal are even better... :)

Why Web access protection only works when Firewall is enabled?
The standalone AV version will not have the Web access protection feature?

The AV still not support IMAP! :(

When run a Computer scan, how can I see the results, with or without cleaning?

SUGGESTION:
Why not the ThreatSense engine parameter setup aren't always showing, when we select some profile, instead of have to click on button?

BUG:
When add a new on-demand profile, after I can't remove it.

i still like option action to do on on-demand scanner in version 2.X. in ess sometimes on-demand scanner asking for action(delete or skip). i just like silent on-demand scanner like version 2.x

{QUOTE-> i still like option action to do on on-demand scanner in version 2.X. in ess sometimes on-demand scanner asking for action(delete or skip). i just like silent on-demand scanner like version 2.x <-QUOTE}
Me too... ;)

maybe ESET should enable Advanced Heuristic on-execute :D because in 2.x AH doesnt enabled in on-execute(because emulation can slowdown the execution but could it be optimized ?!)

I tested ESSSS with eicar test strings. All detected except the one with the .txt extension - what should have happened - if anything?

Tags are not appended in received or sent mail when using Outlook.

{QUOTE-> maybe ESET should enable Advanced Heuristic on-execute :D because in 2.x AH doesnt enabled in on-execute(because emulation can slowdown the execution but could it be optimized ?!) <-QUOTE}

I have already found this option in settings... Have a deeper look:)

where ? i cant find it

I understand from these posts that there is a version 3 engine out. I currently have version 2.7 with license. Where does one check for new versions, link please. :) I assume that the 2.7 version needs to be uninstalled first. Is the version 3 final release or Beta?

{QUOTE-> I tested ESSSS with eicar test strings. All detected except the one with the .txt extension - what should have happened - if anything? <-QUOTE}


Same here.I tested ess with eicar files.When I tested the .txt one the page loaded the text showed and after few secs a msg popped up saying it was cleaned (quarantined). Wasn't the page supposed to be blocked to begin with ? I also tested the very same file when I was trialing Kis and it was blocked right away:blink:

{QUOTE-> I understand from these posts that there is a version 3 engine out. I currently have version 2.7 with license. Where does one check for new versions, link please. :) I assume that the 2.7 version needs to be uninstalled first. Is the version 3 final release or Beta? <-QUOTE}

Beta. http://www.eset.com/beta/

{QUOTE-> Well, it seems that ESET is confident in their current engine. Those "new features" are mostly cosmetic/functionality changes (background scanning, scanning of archives in real-time, better updating).
However, the new "cleaning" module seems interesting. Probably, it'll support raw disk scanning and registry scanning/cleaning.
Apparently, ESET has high hopes for their firewall: Kerio-like rule making, primitive (?) IDS, good leaktest interception (?) and web scanning.
The antispam will be very good. I'm guessing this based on the performance of AVG Antimalware's spam module which is licensed from the same vendor. <-QUOTE}
The "cleaning" feature will become significant in future versions. I was told in brief about this back in 2005, and it looks very good on paper. :)

{QUOTE-> Beta. http://www.eset.com/beta/ <-QUOTE}
http://download1.eset.com/special/essbeta/ess_nt32_enu.msi

{QUOTE-> where ? i cant find it <-QUOTE}

Settings -> Antivirus protection -> Resident protection -> Run editor of extensions -> And Metods..

But I use Slovak version so the translation doesn't have to be the same..

Thanks for the link to Beta MNKid.

The anti-virus failed to detect this Eicar test file, sent as an attachment to an email from Panda. The event did not appear in the log files either.
Here is`a screen shot pf part of Panda's email to me, showing the test as a Word document as the attachment. When executed , Word opens & shows a small picture labeled "Eicar"
http://i115.photobucket.com/albums/n297/penfro/EicarTest.jpg

{QUOTE-> Settings -> Antivirus protection -> Resident protection -> Run editor of extensions -> And Metods..

But I use Slovak version so the translation doesn't have to be the same.. <-QUOTE}
that not what i mean. in version 2.x even you activated Advanced Heuristic it wont scan file on-execution. what im asking is AH enabled on-execution not only on-create and on-modification :D

{QUOTE-> The anti-virus failed to detect this Eicar test file, sent as an attachment to an email from Panda. The event did not appear in the log files either.
Here is`a screen shot pf part of Panda's email to me, showing the test as a Word document as the attachment. When executed , Word opens & shows a small picture labeled "Eicar"
http://i115.photobucket.com/albums/n297/penfro/EicarTest.jpg <-QUOTE}
Strange it was detected over here.
Can't confirm

{QUOTE-> The "cleaning" feature will become significant in future versions. I was told in brief about this back in 2005, and it looks very good on paper. :) <-QUOTE}
Are you allowed to share more info about this with us?
Thanks for this feedback ;)

{QUOTE-> The anti-virus failed to detect this Eicar test file, sent as an attachment to an email from Panda. The event did not appear in the log files either.
Here is`a screen shot pf part of Panda's email to me, showing the test as a Word document as the attachment. When executed , Word opens & shows a small picture labeled "Eicar" <-QUOTE}
Panda sends a doc file and if you take a look inside, the eicar code actually changes and so does the file size.
I've never been able to detect anything sent from Panda myself while using NOD32.
You need either a txt, com or an archive. You can also try this one instead: http://nod32sse.com/avtest.php

{QUOTE-> Are you allowed to share more info about this with us?
Thanks for this feedback ;) <-QUOTE}
I wasn't told too much about it anyway, but there was talk about a "special cleaning" mechanism, which would be able to at least partially remove even unknown malware (i.e. heuristic detections). Registry entries of even heuristic detections may be cleaned and perhaps other leftovers too. :)

Thanks Firecat :)

{QUOTE-> I've never been able to detect anything sent from Panda myself while using NOD32 <-QUOTE}

Oh , no , I tried this test of theirs while I was using their products (Titanium and Platinum 2005/2006) . I always received the email and it never got detected by Panda . Which is very silly because they say "if your securiry products misses it then buy our products" ... ;D and a loopback ... Tests on eicar.org always work with all AVs but in a DOC , the strings gets changed , I think

{QUOTE-> Panda sends a doc file and if you take a look inside, the eicar code actually changes and so does the file size.
I've never been able to detect anything sent from Panda myself while using NOD32.
You need either a txt, com or an archive. You can also try this one instead: http://nod32sse.com/avtest.php <-QUOTE}

This could definitely mess with my serenity. If I unserstand you correctly, the av I'm using and really like has not been able to deal w/Panda's tests.
I'm suddenly feeling more than a little concerned.
Doc

{QUOTE-> This could definitely mess with my serenity. If I unserstand you correctly, the av I'm using and really like has not been able to deal w/Panda's tests.
I'm suddenly feeling more than a little concerned.
Doc <-QUOTE}
It won't detect it because it's not an eicar test after it's been altered by the doc. If they made regular txt or archives, there wouldn't be a problem with their tests.

And there's no need to worry really - Normal eicar tests are detected by NOD32 just fine.

Thank you.
All better now.
Doc

I re-loaded AVG anti spyware and on a scan it found this:- Win32.Worm.Luder.
This had not been found by either ESS or KIS on regular scans.
Could it have been lurking in Sys Restore? Can ESS scan there?
Or is it a "falsie"?

{QUOTE->
Could it have been lurking in Sys Restore? Can ESS scan there? <-QUOTE}
Don't know where it is , you only know . Yes , ESS can scan there.


{QUOTE-> Or is it a "falsie"? <-QUOTE}
Have no idea , may be . VirusTotal knows more for sure . If it appears to real malware , send a copy of it to ESET Virus Lab to email samples @ eset . com