LowWaterMark - This thread got rather heated and included many comments that were either overly hostile or directed at posters, not the test itself. To be fair, all hostile and personally directed comments were snipped out and replaced with a simple "~~~~". A few posts that literally were nothing but hostile or personally directed remarks were deleted entirely. No words were added, only cut. No post was deleted if it had comments on the test itself, only if it was entirely personally focused. I'm sure no one will be happy as virtually everyone had something cut, but I believe I cut fairly across all posters and for the same reason. This was the only way to return this test and the basic discussion about whether these types of tests have value and if so, how much. Other than to add this section of red text, this first post by Firefighter was not otherwise altered. I don't know about you others if you are able to make a pure heuristics scan with DrWeb but I have managed to do that yesterday somehow. 1. First I had to shut down the internet connection. Removing all VDB files from DrWeb folder except the "drwrisky" one, I can get only those "risky" samples by disabling heuristics. 2. I collected those risky samples to a new "risky" folder. 3. After that I turned the heuristics scan on and scanned all the rest samples I have by drweb. 4. I replaced that "drwrisky" VDB file with "drwnasty" VDB file and scanned that new "risky" folder by Drweb with heuristics on. So I have scanned all my files by heuristics ONLY. My results with DrWeb and NOD against my 3665 infected archived samples. I don't know what does that cause when all my samples were archived ones but still. Btw, can anyone say how the heuristics ONLY tests can be allowed with BitDefender, McAfee, F-secure and Kaspersky for instance? Best regards, Firefighter!