Discussion in 'ESET NOD32 Antivirus' started by Blackspear, Jan 20, 2008.
What's up... they want us to Stay tuned...
Ok, so no Smart Security for me for sure, Parental Control makes it a total no go for me, actually Antispam already did that in version 4. Component based installer could fix that problem for a lot of people.
The rest of the interview doesn't state anything interesting (for example: I totally don't care about other platforms), also I do understand the predictable comments like: our product is under constant evolution and so on; about new features the interview doesn't state anything except for predictable comments like: It is a huge benefit now and with the next generation of our products it will allow us to provide further new cool features). I have already seen the video like 1.5 year ago.
So you really make me wait till the last possible day to decide whether I gonna renew my subscription or not.
Not so much that I want any specific changes but I'd really like to relate my experiences. I've been using NOD32 since around 2002 and up until about six months ago no computer that I had NOD32 installed on had ever become infected with a virus / spyware or malware. But in the last six months people I know who have been using NOD32 4.0.x and 4.2.x at my recommendation have been infected with rootkits and other malicious software. As a matter of fact just today, a friend who was running 4.2.40 the latest which I just upgraded for her last week was infected with that damn Personal Security virus and I ended up spending over two hours manually removing it and then uninstalling and reinstalling NOD32 since it had been hosed by the virus.
Also in the time that I've been using NOD32 it has always been number two or three in the anti-virus software reviews and now it has fallen to number 5:
~ Removed Link. Site Not Recommended By Wilders. ~
Also it seems to me that since version 4, it took overly long to get to version 4.2 and that many other anti-virus software vendors are outpacing NOD32 in updates and releases. While I'm certain that constant version releases don't necessarily speak to the quality and effectiveness of the software, it makes it appear that NOD32 is lagging behind other vendors. Unless ESet makes a big effort to improve the software, make it more effective and get their number 2 or 3 spot back in the anti-virus review they are going to start to see erosion of their market share.
No no no! do not belive in those tests by Toptenreviews they are Bull ****
If you should look at some test, then consider looking on test made by
www.av-comparatives.org ... www.av-test.org And similar test organizations.
But not Toptenreviews please
Look, I'm not saying that review is good or bad.. just that if you Google on anti-virus review that's one of the sites that comes up at the top and people look at those things regardless of who's doing the reviewing.
Btw, the site that you pointed me to www.av-test.org tested security suites and published the test results on PCWorld here:
and guess what, Smart Security ranked pretty close to the bottom of the pack.
Then the other place you sent me to ranks NOD32 4.0.x (not the latest 4.2.x) at number 9 pretty close to the middle of the pack. So the anti-virus review I had pointed to is not really all that off compared to these others. So my point still stands that ESet NOD32 is really falling behind (and in some cases far behind) other vendors products. And I've seen at least eight cases of 32bit operating systems (XP, Vista) getting viruses while NOD32 has been installed and running and it did not block or prevent the attack and that is just not acceptable.
I am in agreement with you.
If you look through these forums, there have been numerous discussions regarding the type of threats you mentioned in your initial post in this thread here; namely: "fake" AV trojans and the like...
There is a systemic sickness in this industry that continues to ignore, or at least downplay, the MAJOR problem that is this type of threat, and a continual repetition of the "those are techinically not virus; also, your user sucks" argument when anyone mentions getting a product to properly catch these things.
The fact is, it is a MAJOR issue, and actually trumps other virus detection in terms of damage done and system admin downtime for MOST of us. Anyone who thinks otherwise has been too long out of the game.
I would like to have the ability to stop the ESET Service, for troubleshooting performance issues. I have had several times where I have a machine not performing well and I would like to be able to stop all eset processes, while there are multiple people logged on. I can't just reboot the machine with it disabled.
Disable self-defense, change the ekrn service properties not to restart automatically and then you'll be able to kill it.
When installing if you enter first the password and then the username, the next button is not enabled.
1. Please do NOT include parental control
2. Make Eset faster as in old days
3. Focus at improveing detection, instead of including new features which nobody uses (like parental control and backup tool which dosen't belong in a security suite)
4. Do not include anti phising, as this is already included in ALL major browsers
5. Do not include anything like a link scanner og url advisor
Parental control will be included in version 5 of ESET Smart Security...
Yes, I believe that NOD32 needs to be faster than it is now and also more effective.
I can't stress enough that detection and prevention needs to be improved, not everybody has updated to 4.2.x and just in the last week seven people who have been using NOD32 4.0.x at my recommendation have been infected with fake AV torjans i.e. "Defense Center", "Privacy Center" and other similar problems. Also JeremyF stated that the industry doesn't consider these kind of things "Real Viruses" but they infect the machines, disable executables from running, install custom policies to block TaskMgr and Process Explorer from running and basically make the machine unusable. If that's not a serious threat that NOD32 should protect it's clients from, I don't know what it.
The performance has already been improved and optimizations to PE file scanning incorporated about 2 weeks ago. As a result, on my nettop the startup scan time has decreased from 1 minute to 6 seconds.
Same here, my startup time has also been decreased to 8 sec.
Marcos, So, Eset 5 has been released for internal testing?
I think Marcos means that a module update was released 2 weeks ago.
But I might be wrong though
No, the optimization was done to a standard engine update which are released several times a day.
oh dear, I hope eset dont try emulate kaspersky. keep the bloat down, I dont want anything but anti malware protection. If i want parental control I have other tools for that. all in one security apps always get bogged down.
Also isnt things like outlook 2010 support higher priority than a new major version and support for new OS.
can I ask how they got infected, its not that easy to get infected, are they downloading dodgy software or something?
What kind of release date are you aiming for? Or more important when do you expect the beta to be coming Marcos?
Have you ever tried to get a regular non-technical user to tell you exactly what happened and how they got infected? All I ever hear is: "Gee, it just popped up!", "I didn't do anything wrong!", "I didn't click on anything bad, I didn't open any attachment, I didn't go to any porno web site". You ever watch the TV show "House", "Patients Lie!" and it's useless trying to get the truth out of anyone but the fact is that I end up having to deal with the consequences of this garbage day in and day out.
Regardless of what the people did either the Real Time File System Protection or the Web Access Protection failed to do it's job or the virus used some technique to bypass both of those protections. I've read several news items on SlashDot lately about some very serious issues. First some security researcher found a technique to bypass all real time file system scanners from all vendors software and then there's that XP exploit that the Google researcher in Switzerland leaked that is now being actively used.
This whole situation is just a nightmare.
I send a lot of emails for ESET asking on version 5, but nothing yet, you always see news of other companies on new options, new versions, dates all, but of ESET is always hard.. big mistery..
Curiosity is killing me...
The thing that my mind says is essential -- why does not anti-virus monitor not only the executables being launched but also the way they are being launched.
I.e. if NOD does not detect a file as a threat, could it just notice, that the file that is started via HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell or similar might be unwanted?
I've tried putting eicar to the above mentioned reg. key and it was indeed detected.
My wishes are also keep it fast, good detection and no bloat stuff like backup/parental controls/phishingfilter/system defrag/HIPS.
New behaviour analysis/blocking technologies and improved firewall for the suite(especially in for the inbound protection like IDS instead of the outbound HIPS like protection that some people want) are my wanted improvements.