Large Update

tis a huge update indeed. and another one coming soon according to HB

wonder why they get saved for big roll outs like this though, rather than being added as and when...

 

It is amazing what they can do when you give them some Metaxa iced coffee!

 

Seems to me this update is geared towards the AV-Comparatives on demand test coming up in a week or so. There are alot of older DOS viruses, 16 bit windows virii, detection of exploits that have been around for a year or 2, numerous Linux exploits and such. I thought Eset's philosophy was not to detect such "garbage" files and concetrate on ITW threats. Seems like they are adopting the KAV approach. On the other hand it did take quite a bit of work to add all those definitions and I applaud the research team for a job well done.

 

Its not so much KAV because they probably idnt just put any old def in it. But im sure they were trying to get in som av comparitives viruses because thats how a lot of people pick a new AV program

 

Yes, but KAV is their real "Main" competitor. I wasn't slamming Eset just making an observation. After reading my post again it seems to have a negative connotation to it and that is not my intention. I much prefer NOD to KAV. I was just trying to say that some of those that were added today should have been added long ago.

 

yeah great update.felt more protection now.thanx to eSeT Team

 

Maybe rename this discussion to GIGANTIC update , good job guys...

 

How cool is Nod32..............................

 

Thats a massive update!

But I got the updates moments before Ronjor posted about them here . It was around 5 PM IST.

Cheers

Akshay

 

Would this rank as the largest update ever?

 

Probably yes.

 

Nice update, but it includes the latest virus etc or old ones? I submitted very old ones long ago and it still haven't been added in yet. Also, this is the FIRST time speeds jumped from 10kb/sec to 100kb/sec. Wow!

 

The trial versions are yet to be updated!

 

Submitting viruses does not mean that they are living viruses. Most of the old viruses submissions what we get is just trash - dead viruses or cleaned files where one scanner produces false positives on it and someone else collects it based on this. Sad story.

 

yeah, i'd rather NOT have those sorts of things added to the database. I've read in the 'other av' forum a few times of other AVs including rubbish in their database and then claim to have a huge, comprehensive signature database - i prefer NOD's clean and lean approach

 

Yep. i repeat it just once more: Not detecting a dead virus doesn't mean that you're unable to detect the real working virus.

 

The trial version just updated!

 

Hmmmm.................could they have paid for them Just wondering.....

 

So in todays comparative tests, NOD will find this particular virus but tomorrow when the test is over, it won't find it anymore.

Argh this is so confusing..

 

All companies get after the test the missed samples according to the conditions. There are also many other companies which improved a lot their product in the last months.

Also after the test the viruses remain detected; they will not remove them from the sigs.

 

See, now I'm even more confused
After reading your post and this one

Why add them now and not 2 years ago when they were real threats?
My guess: Eset removed these old ones from their signatures, and will do so again when the test is over.
This will boost the test results to something you will only find in a test & not in real life, because the signatures just aren't there anymore when the test is over.

I could be completely wrong as I am still very confused about this..
Hmm.. Maybe I should drink more coffee

 

But why remove ? tests are performed all year long by several compagnies / organisations ...
I don't think they will remove signatures after only one test, because soon after this one, another test will be performed by someone else, and again, and again ...

 

Oh ok so if they didn't remove these old ones from the signatures, Eset are basically 2 years behind then? Interesting..

 

I am so confused with the way NOD works now I have always has anti-virus software but never as confusing as this

I didn't really notice the time it took to update as I only saw the notice that the update had taken place (I presume it was the big one shown here) last night around 6pm UK time.

I will have to read this post again but I think it indicates NOD is changing the way it works now by adding signatures for detection which I 'think' it didn't work with as much on before.
If this is the case does that not place NOD in a better postion with its heuristic detection plus a library of signatures OR are the signatures too old to mean anything?

Previously I just ran and updated my AV but NOD is keeping me on my toes as I really do not understand what is happening. Only for this post I would just have thought I had updated NOD

 

I think 99,9% of people will agree with me that it's important to add signatures and not only rely on heuristics