Nod32 updates faltering?

Discussion in 'other anti-virus software' started by TonyKlein, May 11, 2002.

Thread Status:
Not open for further replies.
  1. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,347
    Location:
    The Netherlands
    I used to be very happy with NOD32's update frequency, but this week there's been only one, whereas there have been at least 4 or 5 NAV updates.

    I hope they keep up the good work, and don't make me long for the time I used to run NAV as my resident antivirus... :rolleyes:
     
  2. spy1

    spy1 Registered Member

    Joined:
    Dec 29, 2002
    Posts:
    3,139
    Location:
    Clover, SC
    You know, I hadn't even noticed - but you're right. Here's what I've got:

    NOD32 system information
    Version:                  1.254 (20020506)
    Installed on:            05/06/2002
    Virus database build:      2354
    Environment version:      1.047
    Last Update attempt:      05/11/02 12:19:58

    Operating system information
    Platform:      Windows ME
    Version:      4.90.3000  
    Common controls  version: 5.81.4807
    RAM:      255 MB

    Diagnostics information
    Base module build:      2271


    That is quite a while between updates, especially for them!

    Do you think they're getting ready to roll out the new version? Pete
     
  3. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,347
    Location:
    The Netherlands
    Pete,

    Yep, that's the version I have as well, and I can't help thinking they may be busy doing other, hopefully equally important things...

    I'm not following ESET very closely otherwise, so I don't know anything about a new version being imminent.

    Maybe Paul has more information on the subject.
     
  4. MickeyTheMan

    MickeyTheMan Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    1,016
    Tony, have you checked if there's anything new in NAV updates that warrants an update from Nod and not otherwise already covered?
     
  5. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,347
    Location:
    The Netherlands
    No, Mickey, I haven't,  to be honest.

    I'll see whether I can find out.

    I may just be getting paranoid, of course, but then again, that's not surprising as everyone is out to get me... :D (Yes, I know, I stole that from you... ;))
     
  6. wizard

    wizard Registered Member

    Joined:
    Feb 9, 2002
    Posts:
    818
    Location:
    Europe - Germany - Duesseldorf
    You can not compare the frequency of update between the different vendors. This does not say much about the quality of AV software. Eset will release an update when it is needed. Because of the heuristic approach of NOD32 it maybe needs less updates than other anti virus software. So no need to worry about.

    wizard
     
  7. UNICRON

    UNICRON Technical Expert

    Joined:
    Feb 14, 2002
    Posts:
    1,935
    Location:
    Nanaimo BC Canada
    These NAV updates could be already in the detection list for NOD32, perhaps NAV is playing catchup. My experience has been NOD32 being the faster updater. I don't own NAV so I can't verify that.
     
  8. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,347
    Location:
    The Netherlands
    OK:

    Here's the contents of the 5/10 NAV update:

    New virus definitions (sorted by Date added):
           
           Virus Name                Infection Type          Date added
           ----------                --------------          ----------
           IRC.Encount               File infector            05/10/02
           Nado.Rabin.753            File infector            05/10/02
           Nado.Rabin.753 (2)        File infector            05/10/02
           Pbf.993                   File infector            05/10/02
           SillyC.119                File infector            05/10/02
           SillyC.140.F              File infector            05/10/02
           SillyC.152.B              File infector            05/10/02
           SillyC.252.B              File infector            05/10/02
           SillyC.298.C              File infector            05/10/02
           SillyC.315.B              File infector            05/10/02
           SillyE.262                File infector            05/10/02
           SillyOC.167.B             File infector            05/10/02
           Simbioz.328               File infector            05/10/02
           Taz.778                   File infector            05/10/02
           Tronspy.4528              File infector            05/10/02
           V.635.B                   File infector            05/10/02
           V.662.B                   File infector            05/10/02
           W32.Bilido.Worm           File infector            05/10/02
           WitRemor.1272             File infector            05/10/02
           Antilamer.Trojan          File infector            05/09/02
           Armen.509                 File infector            05/09/02
           Bat.Comdrop               File infector            05/09/02
           Casp.268                  File infector            05/09/02
           Casp.390                  File infector            05/09/02
           Crunch.1555               File infector            05/09/02
           Deicide.327               File infector            05/09/02
           Dutch_Tiny.162            File infector            05/09/02
           Forro.412                 File infector            05/09/02
           Guerilla.1996.C           File infector            05/09/02
           HLLW.FreeMem.59691        File infector            05/09/02
           Linux.Staog               File infector            05/09/02
           Linux.Svat                File infector            05/09/02
           Nomov.387                 File infector            05/09/02
           PFS.3786                  File infector            05/09/02
           W32.Trilisa.B@mm          File infector            05/09/02
           Acurev.272                File infector            05/08/02
           Acurev.536                File infector            05/08/02
           Adios.601                 File infector            05/08/02
           Overnuke.b                File infector            05/08/02
           Quest.512                 File infector            05/08/02
           Revelat.1150              File infector            05/08/02
           Systa.232                 File infector            05/08/02
           Trojan.EraseHDD.f         File infector            05/08/02
           VBS.Morpheus              File infector            05/08/02
           IIS.Traversal-Exploit     File infector            05/07/02
           JS.Noclose                File infector            05/07/02
           VBS.Chick.D@mm            File infector            05/07/02
           VBS.Janis                 File infector            05/07/02
           W97M.Oneg                 File infector            05/07/02
           W97M.Tech.A               File infector            05/07/02
           W97M.Tips.B.Gen           File infector            05/07/02
           Boot.Stoned.family        File infector            05/06/02
           Boot.Volga.family         File infector            05/06/02
           Strategy.486              File infector            05/06/02
           VBS.Xeno                  File infector            05/06/02
           W32.Masy.Worm             File infector            05/06/02
           W32.Viset                 File infector            05/06/02
           W32.Zawex                 File infector            05/06/02
           Win.HLLP.Holcost          File infector            05/06/02
           Birgit.358                File infector            05/03/02
           DiskFiller.g              File infector            05/03/02
           Dodgy.f                   File infector            05/03/02
           Facade.d                  File infector            05/03/02
           PingPong.o                File infector            05/03/02
           PingPong.p                File infector            05/03/02
           Rave.335                  File infector            05/03/02
           SH.Coco                   File infector            05/03/02
           Anony.243                 File infector            05/02/02
           Arch.903                  File infector            05/02/02
           Baba.434                  File infector            05/02/02
           Backdoor.Bionet           File infector            05/02/02
           Ball.2245                 File infector            05/02/02
           Baphometh.1536.c          File infector            05/02/02
           Bobo.515                  File infector            05/02/02
           Boot.Falcon               File infector            05/02/02
           Boot.Gomaboot.a           File infector            05/02/02
           Boot.Gomaboot.b           File infector            05/02/02
           Boot.Kfpro.c              File infector            05/02/02
           Boot.Tumen                File infector            05/02/02
           Boot.XOR                  File infector            05/02/02
           Flex.1076                 File infector            05/02/02
           Khizhnjak.586             File infector            05/02/02
           MemLapse.331              File infector            05/02/02
           Nado.Lover.534            File infector            05/02/02
           Pixel.Hydra.344           File infector            05/02/02
           Stoned.Scrlock.a          File infector            05/02/02
           Sup.1703                  File infector            05/02/02
           Trojan.Prova              File infector            05/02/02
           VBS.Lola                  File infector            05/02/02
           VCL.Heevahava.133         File infector            05/02/02
           Virogen.Offspring.1285    File infector            05/02/02
           W32.HLLO.Progo            File infector            05/02/02
           W32.Heads                 File infector            05/02/02
           W32.Tendoolf              File infector            05/02/02
           Backdoor.Sdbot            File infector            05/01/02
           Trojan.Fatkill            File infector            05/01/02
           VBS.Fixen                 File infector            05/01/02
           W95.CIH.1049              File infector            05/01/02
           X97M.Fixen                File infector            05/01/02
           BAT.Sway@mm               File infector            04/30/02
           
     
  9. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,347
    Location:
    The Netherlands
    And here's Nod32, for all it's worth:

    NOD32 - v.1.254 (20020506)  
    Virus signature database updates:
    Brit.A, Brit.B, Brit.C, Ceyda, Ceyda.5161, Ceyda.6750, Cosol, Deij.A, Encount, Energy.F, Energy.F.Flooder, Funny.A, Funny.B, Goround, HLLC/Deadfish, HLLP/Bayx, HLLP/Delami.4701, HLLP/DH.7199, HLLP/Dxl.11296, HLLP/Hate.4836, Hotlix, I-Worm.Android.A0, Kazus.B, Kelino, Linux/Osf.8759, Menude.B, Metak.B, Moon, Netres.A, Netres.B, Netres.C, Netres.D, Netres.E, Netres.F, Netres.G, Netres.H, Netres.I, Nonu, PERL/Rans, Tiny.A, Tiny.B, Tiny.C, Tiny.D, Tiny.E, Tiny.F, Tiny.gen, Tiny.H, Tiny.I, Tiny.J, Tiny.N, Tiny.P, VBS/GaScript, VBS/Jadra.A, VBS/Sudal.A, Win32/Alma.37274.A, Win32/Belod.A, Win32/Belod.B, Win32/Dander, Win32/Fozer, Win32/HLLC.Vedex.A, Win32/HLLC.Vedex.B, Win32/HLLC.Vedex.C, Win32/HLLC.Vedex.D, Win32/HLLC.Vedex.E, Win32/HLLC.Vedex.F, Win32/HLLO.Ower, Win32/HLLW.Scareg.A, Win32/Maldal.J, Win32/Mundil.A, Win32/Newbiero.021, Win32/Newbiero.032, Win32/Newbiero.033, Win32/Newbiero.034, Win32/Newbiero.04, Win32/Shorm.314.B, Win32/Shorm.314.C, Win32/Shorm.314.D, Win32/Shorm.314.E, Win32/Urbe.B, Win95/CIH.1049.A, Wotron, Yever
     
    Don't ask me to compare the two.  

    I wouldn't know where to begin, what with identical viruses knwn by differnt names, etcetera...
     
  10. UNICRON

    UNICRON Technical Expert

    Joined:
    Feb 14, 2002
    Posts:
    1,935
    Location:
    Nanaimo BC Canada
    yes, sometimes I think they do that on purpose so obvious comparisons cannot be made. Possibly a quiet agreement between AV companies.

    Seems like it works, you are correct, we can't do much with this list. When a new virus comes out, and every AV gives it their own name, we could store that info in our own database, so we would always know who detects what, and what they call it. BUT, we would have a lot of catch-up to do, and since no one is going to pay us, we probably won't bother.
     
  11. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,347
    Location:
    The Netherlands
    Thanks guys,

    I think I just may let it rest for a while and relax.

    For all we know ESET may produce 4 updates in the course of next week, and all will be forgiven! :D
     
  12. Rickster

    Rickster Guest

    I'm certain they do that to keep other vendors in the dark and don't pirate their solution too quickly.  Your demise with the other guy's program is their potential gain.  Dog eat Dog - Dog eat Us.   Rickster  
     
  13. Paul Wilders

    Paul Wilders Administrator

    Joined:
    Jul 1, 2001
    Posts:
    12,472
    Location:
    The Netherlands
    A small additional remark:

    a) Databases are just one flip of the coin. (Strong) heuristics as IMHO equally important. The stronger the heuristic capacities, the less updates will be necessary, grosso modo.

    b) Most AV vendors do rely heavily on third parties providing them with new viruses. (As is the case with software vendors). Vast databases and newly detected viruses are exchanged between third parties and all major AV software vendors. AV vendors even do exchange their own databases and newly discovered virus samples. Sure, they are competitors - but they do work together quite a lot, especially in this regard.

    regards.

    paul
     
  14. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,347
    Location:
    The Netherlands
    Thanks, Paul.

    My trust in you is implicit!  :D

    And, moreover, the new Nod32 update has arrived!

    yippee!
     
  15. MickeyTheMan

    MickeyTheMan Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    1,016
    Nothing like a new update to up the spirit, ain't it ! :D

    NOD32 - v.1.257 (20020513)  
    Virus signature database updates:
    BAT/Silly.BA, BAT/XOP.A, HLLP/Arjinf.7598, HLLP/Irus.5333, HLLP/Kurt.10370, HLLW/Antax, HLLW/Ideom.15248, JS/Daf.Dropper, JS/JDV.C, JS/NoClose, JS/Seeker.B, JS/Vis.A, Lily.F, Linux/Rootkit.C, mIRC/Edoc.A, PHP/Qwax, Trivial.181, Win32/Nimda.X, Projax, VBS/Alcaul.P, VBS/Anjuliej, VBS/Baby, VBS/Calhob.A, VBS/Claus.A, VBS/Debor.A, VBS/EditStartPage.A, VBS/FreeLink, VBS/Hold, VBS/Krowt.A, VBS/Netlog.gen, VBS/Shakira, VBS/Small.O, Win32/Actem.A, Win32/Alcaul, Win32/Alcaul.D, Win32/Alcaul.N, Win32/Alcaul.X, Win32/Alerta, Win32/Cervivec.B, Win32/Chiton.D, Win32/DelAll.D, Win32/Enviar.K, Win32/Enviar.K.sfx, Win32/Enviar.L, Win32/Enviar.L.sfx, Win32/Flooder.MSN.Energy.A, Win32/HeadShot.A, Win32/HLLC.Winatch.A, Win32/HLLP.Semisoft.58880, Win32/HLLW.Dervice, Win32/Kaze.2056, Win32/Kaze.2056.Gener1, Win32/Matit.B, Win32/Nahata.A, Win32/Nahata.C, Win32/Negasm.A, Win32/Newbiero.01, Win32/Nimda.A, Win32/Nimda.A1, Win32/Nimda.E, Win32/Nimda.E:UPX, Win32/Nimda.L, Win32/Nimda.M, Win32/Petik, Win32/Petik.Linda, Win32/Plexis, Win32/QDel230, Win32/Trilisa.A, Win95/Spawn.4096.A
     
Loading...
Thread Status:
Not open for further replies.