File Open and File Execution Setting differences?

Discussion in 'ESET NOD32 Antivirus' started by rolarocka, Aug 19, 2010.

Thread Status:
Not open for further replies.
  1. rolarocka

    rolarocka Guest

    What are the differences between those two? Ty
     
  2. twichert

    twichert Registered Member

    Joined:
    Feb 2, 2010
    Posts:
    14
    Location:
    Lansing, MI
    "Scan on Open" specifies that files are scanned when they are opened for any reason. This setting catches malicious non-executable content, such as PHP shell scripts, trojaned PDF files, and javascript iframe injections.

    "Scan on Execution" specifies that files are scanned when they are opened for the purposes of executing machine code, such as malicious EXEs and DLLs, before they are loaded into memory.

    Someone else may have further clarification on these settings, but as far as I've been able to observe in filemon and procmon, that's pretty much how they work.
     
Thread Status:
Not open for further replies.