Why is there a difference between the real-time scanner and the on-demand scanner? I've downloaded the Ardamax keylogger as a test. The real-time scanner detected it correctly, I choose to leave it on my disk. Then I right-click the file, select Scan with Eset and it doesn't detect it. Finally, I rename the file and the online scanner detects it again... So I have to enable all options for the real-time scanner to be sure it detects everything (and thus slowing down my machine) because the on-demand scanner will not find it? The reason I did this test is that I've seen a lot of trojans and other malware lately that are all not detected by Eset, while the competition detects them. The easiest way to check this is to submit a suspicious file to the VirusTotal.com website, where you can directly see the result of most scanners. Any thoughts?