Discussion in 'NOD32 version 2 Forum' started by Triple Helix, Nov 20, 2004.
Is NOD32 as good as they say? For trogens, Worms, Viruses and others??
Wouldn't Have It Any Other Way
there is no perfect AV, but NOD32 offers a exdellent balance between resorce usage and virus detection. it is extremely configurable and it has possibly the best VB100 record. u simply cant go wrong with NOD32. if you dont believe me on how good NOD32 is, then try it urself. post back on ur experience, n if u dont like it tell us why.
One word ....YES !!!
you no it's funny i own a license for kav 5.0 personal and 5.0 personal pro and for some reason i always go back to nod there's somthing about this program that hooks you and you just can't stay away. lol
I use KAV 4.5 and am evaluating NOD32. NOD32 is very clean and I like the idea of its heuristics engine, but KAV still finds more "stuff" when I use its extended database. Nothing tremendous, but it does find some spies that NOD32 may miss. If you decide to use NOD32, I would complement it with an additional on-demand scanner like KAV or Giant AS.
Ladies and gents,
Just for the record: in case this thread turns into sort of a "comparison" thread, it will be moved to "Other Antiviruses"
How good do they say is NOD? I think this is an understatements...NOD is MUCH MUCH Better than what they say
It's a good Anti-Virus but it's as good as any. It finds what it needs to find but it's not STELLAR THE ONLY ONE YOU NEED type of anti-virus. When compared to McAffe or KAV(Extended, Xbases), NOD32 pales in detection rates. Nod32 trojan database has expanded but it still misses a lot of infiltriations, or it detects them a few weeks after they gone wild and at that time they are too embeded into your OS that you can't clean them fully with NOD32 alone.
It's scanning speed and resource usage (impact on OS and pefromance) is great only when NO ADVANCED HEURITICS, RUNTIME PACKERS AND SCANN ALL FILES IS CHECKED. But when those things are not checked then the detection rate of NOD32 falls a few notches to the point that compareing it with KAV or McAFFE is useless. But when they are checked then the comparison can be made (but still those other two reign supreme). Also, when the AdvHeur, Runtime Packers and Scann Allfiles is checked then all the peformance claims along with low resource usage (Not just MEmory but the IOpageing and overall system slowdown) gets noticable, almost as noticable as KAV, Especially when you play any games.
So in Conclusion, NOD32 is a GOOD but NOT GREAT AV, it can stand on it's own but if you want a good combo you can either go NOD32 ALONG WITH BoClean or TDS3....OR KAV 5 with XBASES.
is your statement valid even after the latest update of the advanced heuristic module update issued on Friday? It would be good if someone could post here their experience.
I use NOD on a P4 2.8 gaming machine. Also a KAV AV on two other machines and a free AV on a fourth machine. I find that the NOD AMON resident scanner with AH, All Files, and Runtime Packers marked does not cause any detectible performance hit like some other AV resident scanners do when they are marked the same. Plus the IMON HTTP scanner with AH has stopped a number of infections from ever downloading to that machine used by a bunch of teens. So for this specific game machine NOD is very good. We also have BOClean running and some antispyware apps like Ad-aware and Giant using the On Demand scanning for those only.
So, from my end, we are not seeing a performance hit with NOD's AMON marked for AH, All Files and Runtime Packers that we do when trying some other AVs.
As with any AV the results may be different for a specific platform, applications loaded, type of connection, etc..
first off, i agree that NOD32 is not a "STELLAR THE ONLY ONE YOU NEED type of anti-virus" but even KAV isnt perfect. no AV is. secondly AVs like KAV and mcafee achieve their high detection rates at the expense of pc performance. third, NOD32 is first and foremost an AV, i dont care if it doesnt offer the best detection of trojans and malware (thats just a bonus) i have ewido and a-squared for that. and lastly i use NOD32 with all the options checked and it runs fast. it has the least performance hit of any AV i have tried. to compare it to KAV is WRONG! there is a rele clear difference in resorce usage.
You say that KAV takes a performance hit, then you say that you run NOD32 and Ewido and/or a-squared. And that doesn't cause a performance hit?
Or, if you don't run Ewido or a-squared on a real-time basis, then they're not of much use if you happen to activate a trojan. Either you take trojan detection seriously, or you don't. And given the nature of the threat (i.e. your passwords and private information, out the window, now), I'd think that anyone concerned about it would run strong real-time protection.
Of, if you do run Ewido or a-squared on a real-time basis, then why not prefer strong trojan detection in one package? The time for holding an "Anti-virus is not the same genre as anti-trojan, and no application should try to do both" stance is long gone. It just doesn't make sense anymore, and I'm sick of hearing it as an excuse for what is perceived as poor malware detection in a world of blended threats, where trojans have become the prevalent and most-dangerous threat.
The only reason that most "anti-virus" packages still cling to the label "anti-virus" is because the term "virus" has become a generic term for "malware". That, and so they can fall back on the "We don't really do trojans" when their software drops the ball and leaves their users' asses hanging out.
Anyone who would argue with this, and thinks they have a leg to stand on, needs to carefully review the NOD32 signature update page first. See how incredibly often signatures for trojans are added? So what is a NOD32 user to think--they "sort of" handle trojans, but only kinda, sorta, not really?
If anyone thinks this has been a slam on NOD32, they need to read it again, and preferably with greater care.
I got it and I like it!!
The new heuristic module is able to detect a lot of more trojans and backdoors heuristically, right? I noticied it and I really liked it. Well done.
When I first got nod I had some scanning speed problems. But with the help of some very good help on the forum here I got that problem worked out and nod is here on my machine to stay. and as fas as a performance hit with nod is concerned besides it working I can't tell it is even on here.
Correct IBK, as Marcos stated: A newer update to the advanced heuristics module has been released.
Detection of Trojans and Backdoors has been greatly improved, as well, support for Morphine runtime packers has been added...
It would be nice if we can have someone with their own personal Trojan collection retry Nod32 and let us know.
@nameless - i truly understand ur argument and this is wut i have to say: 1) i rele dont experience any performance hit w/ nod32, ewido, and a-squared all running realtime compared to KAV. it renders my comp barely usable. and the pro version is the worst. this is just wut i experienced. other ppl may get diff performance hits on their comp. 2) a software package that offers both great virus and trojan detection would be ideal. but that title belongs to KAV, an AV i wont use til i get a new comp. NOD32 has some malware detection, but it isnt enough. a good standalone AT is also necessary for good security.
@any brave tester - i found a thread with a ed2k link to an archive of virii. im hoping someone will test nod32 against it
<snip> Please don't post links to viruses here. Ron
Whether you NEED an AT really depends on how safe your browsing habits are. If you're a low risk user, you probably won't see anything slip by NOD anyway. Despite the KAV fans' banter, NOD32 still has higher detection rates than most. That's how I found NOD32 - when I got a trojan that none of the others (including McAfee) could detect.. guess which two AVs were the only ones that knew about it? I've turned others on to NOD that were in the same situation, with the same results.
I'm very happy that they are continually improving the heuristics, but not because NOD "sucks" at trojan detection as it is now.
You're right nameless, there should be an all powerful anti-malware program that could do everything, but we live in the real world, where even specialized programs can't do what they're designed to do. Such as is the situation with the Flux trojan and also referrance to Eric Howes' recent anti-spyware comparison. That's why we need specialized tools that target only specific malwares like CWShredder and Haak's Flux remover. I would prefer to use an AV that ONLY targets viruses and/or an AT that ONLY targets trojans if knew I knew for a fact that I would be safe, but that's unrealistic. Reminiscent of a great man's words... "the best anti-malware tool is between your ears". This isn't a bash on you or any of the programs mentioned herein, just some information I thought would be useful to include.
Guys, to present you with how the heuristic trojans' detection has been improved, I suggest you go to Jotti's online scanner at http://virusscan.jotti.dhs.org. A big portion of submitted samples is now detected as a probable NewHeur_PE virus.
Of course, not every single trojan will be detected by AH plus there is couple of samples submitted which are corrupted but other AV detect them anyway.
We were so impressed with the resource-friendly side of it, plus the constant stream of VB100 awards, and more importantly, the remote administration functionality, that we became resellers for it!
Check this: http://www.av-comparatives.org/seiten/ergebnisse/report04.pdf
I have NOD 32 and Kaspersky and I used NOD 32 instead of Kaspersky and both of them are top rated.
I'm in the process of setting up a company network (Lan/Wan) with 3 Microsoft 2003 servers and and Exchange server with approx 30 users. I need a good antivirus and frankly Norton (consumer verisons) has been horrible resource drain and I'm considering something else.
Is Nod32 something that I can use in my "Enterprise" type network? Does it run directly (as a separate install) on each server and workstation or is it centrally based?
Is Nod32 powerfull enough to protect my critical data and server files?
Anyone use it in this way?
Separate names with a comma.