EAV 3.0 Tutorial - 15 Jan 2008

1. Click on the Radio button that says "Import settings".

2. Click on the Browse button to locate the .XML file.


.

 

1, Navigate to where you have "SAVED" the "Blackspears Settings.xml" file and click on it.

2. The File name should now appear here.

3. Click on "Open".


.

 

1. You will now see the file mentioned in the "file name" field.

2. Click on "OK".


.

 

You now need to re-enter your Username and Password, as the XML file that I have created has no Username and Password within it.

1. Click on "Setup Username and Password for update".


.

 

1. Place in the Username (UN) from your Reseller/Distributor or ESET email.

2. Place in the Password (PW) from your Reseller/Distributor or ESET email.



ONLY a Username and Password provided to you by ESET will work. These are NOT personalized entries created by you; you can NOT create your own UN and PW.



See HERE for instructions on how to enter a Username and Password correctly.



3. Click on “Next”.


.

 

1. Click on "Update".

2. When you are connected to the Internet, click on "Update virus signature database".


.

 

1. If you have entered your Username and Password correctly you will now see EAV begin updating.


.

 

1. Once the update has completed you will see the message "Update of virus signature database completed successfully".

2. Click on "OK".


.

 

[4] LOCKED FILES

[4] Locked Files are password protected or Windows System Swap Files, it is unlikely for such a file to be infected, however the possibility still remains.

Further information can be located HERE and HERE and HERE

 

MESSENGER FILE TRANSFER SCAN SETTINGS

MSN Messenger / Windows Live Messenger files can be scanned upon transfer; please take the following steps:

1. Login to Messenger.

2. Click on Tools.

3. Click on Options.

4. Click on “File Transfer”.

5. Place a tick in “Scan files for viruses using:”.

6. Paste the following (including the quotation marks):

"C:\Program Files\ESET\ESET NOD32 Antivirus\ecls.exe" /adv-heur /adware /arch /auto /boots /files /mail /no-log-all /pattern /quarantine /rtp /sfx /subdir /unsafe /unwanted

7. Click on “Apply”.

8. Click on “OK”.

 

SWITCHES

As far as I can tell the following makes use of the most available switches for an aggressive scan using commandline switches:

C:\ /adv-heur /adware /arch /auto /boots /files /mail /no-log-all /pattern /quarantine /rtp /sfx /subdir /unsafe /unwanted


/adv-heur
/adware
/arch
/auto
/boots
/files
/mail
/no-log-all
/pattern
/quarantine
/rtp
/sfx
/subdir
/unsafe
/unwanted


Options
/base-dir=FOLDER = load modules from FOLDER
/quar-dir=FOLDER = QUARANTINE folder
/exclude=FOLDER = exclude FOLDER from scanning
/subdir = scan subfolders (default)
/no-subdir = do not scan subfolders
/max-subdir-level=LEVEL = subfolder maximum nesting LEVEL (default 0 = unlimited)
/symlink = follow symbolic links (default)
/no-symlink = skip symbolic links
/log-file=FILE = log output to FILE
/log-rewrite = overwrite output file (defau lt - append)
/log-all = also log clean files
/no-log-all = do not log clean files (default)
/aind = show activity indicator
/auto = scan and automatically clean all local disks

Scanner options
/files = scan files (default)
; /no-files = do not scan files
/boots = scan boot sectors (default)
/no-boots = do not scan boot sectors
/arch = scan archives (default)
/no-arch = do not scan archives
/max-archive-level=LEVEL = maximum archive nesting LEVEL (default 0 = unlimited)
/scan-timeout=LIMIT = scan archives for LIMIT seconds at maximum
/max-arch-size=SIZE = scan only the first SIZE bytes in archives (default 0 = unlimited)
/mail = scan email files
/no-mail = do not scan email files
/sfx = scan self-extracting archives
/no-sfx = do not scan self-extracting archives
/rtp = scan runtime packers
/no-rtp = do not scan runtime packers
/adware = scan for Adware/Spyware/Riskware
/no-adware = do not scan for Adware/Spyware/Riskware
/unsafe = scan for potentially unsafe applications
/no-unsafe = do not scan for potentially unsafe applications
/unwanted = scan for potentially unwanted applications
/no-unwanted = do not scan for potentially unwanted applications
/pattern = use signatures
/no-pattern = do not use signatures
/heur = enable heuristics
/no-heur = disable heuristics
/adv-heur = enable Advanced heuristics
/no-adv-heur = disable Advanced heuristics
/ext=EXTENSIONS = scan only EXTENSIONS delimited by colon
/ext-exclude=EXTENSIONS = exclude EXTENSIONS delimited by colon from scanning
/action=ACTION = perform ACTION on infected objects. Available actions: none, clean, prompt
/quarantine = copy infected files to Quarantine (supplements ACTION)
/no-quarantine = do not copy infected files to Quarantine

General options
/help = show help and quit
/version = show version information and quit