Live Icons and unnecessary scan?

Discussion in 'NOD32 version 2 Forum' started by reza666, Jul 23, 2007.

Thread Status:
Not open for further replies.
  1. reza666

    reza666 Registered Member

    Joined:
    Jul 23, 2007
    Posts:
    15
    Hello,

    I'm a new user to Nod32 and evaluating this program right now. Not that many programs for Vista 64 (if you hate Norton/Mcafee hehe).
    Sorry if i ask noob questions (tried to search for some but did not get to good answers).

    Anyway i just used it for a few hours and already have some questions.

    1) Usually the icon in the taskbar changes color or something that shows the program is scanning or doing something but NOD32 do not show any sign of that. I kinda like the idea to see that something is happening in a discrete way. Like if the icon would change its color or something. Is this really not the case with NOD32 or is it me who cant find the option in the Control Center?

    2)Once i installed it, i never got a question for a full system scan or anything.
    In the AMON i can see 7057 files scanned after about 1h or so but i believe this is realtime scanning?
    I am not doing a "In-depth analysis" which i think is a full system scan?
    The names in NOD32 is not what i'm used to so i would appreciate it if someone could confirm on my statements above.

    3) During "In-depth analysis" i see lots of files with "error opening" (File locked). Most are windows files such as:
    C:\System Volume Information\{576dd931-240b-11dc-b633-e1e9b3f02585}{3808876b-c176-4e48-b7ae-04046e6cc752} - error opening (Access denied) [4]
    C:\Windows\System32\drivers\sptd.sys - error opening (File locked) [4]

    Is there any guide for removing some folders from the search? Seems each time you do a scan you will get the same result so kinda unnecessary to scan them anyway.

    So far i like the low footprint and the fact that it does not show unwanted pop-ups and add button and shizzle in windows like Norton does. Hopefully it gives a good protection as well. I read good reviews :)

    please feel free to give me some advice as well :D :shifty:
    Cheers :thumb:
    /Reza
     
  2. psych1610

    psych1610 Registered Member

    Joined:
    Jun 16, 2007
    Posts:
    62
    Location:
    Redneckville, FL .. originally Newburgh, NY!!!!
    Hi there, welcome to the forums. I just bought a license a week or two ago. For me, after trying Norton and Mcafee at one point or another this purchase was a must. I'll try and answer your questions to the best of my ability.

    I don't believe there is a way to get nod32 to change taskbar icon color when scanning. A balloon pop up does occur when nod32 updates if you have that option enabled. I forgot the way to do this, but I'm sure someone else knows. I think it is nod32 system setup/silent mode and just ensure it is off.

    AMON is real time scanning. It scans your computer for anything newly created or newly accessed. In this way you're protected from anything IMON (internet monitor) doesn't catch. There are also EMON the Microsoft Outlook scanner and DMON the Microsoft Office Document Monitor. From what I have read here, if you don't use Outlook or MS Office (no open office support :( )those two can be safely turned off without losing any protection. However, it doesn't seem to do much to the programs already low foot print so I leave them both on. In case you were wondering, if you happen to use Thunderbird or another email client IMON will scan the incoming and outgoing files. There are options to make a notification of that on your email if you use IMON. I think that is in the settins for IMON itself. Also, if you're coming from the Norton world there are no graphics to tell you that Nod32 is scanning email.That was something I looked for, however, now I just trust that IMON scans it. Also, I believe in version 3.0 the GUI for nod32 will be updated to be more user friendly and actually say what it is doing, though personally I enjoy it as it is. In depth analysis is the equivalent of a full system scan with other programs. The only differences between this and other profiles (that I know of) is that in depth analysis has a default of many of the more advance options enabled while local scan for instance does not. Having said this if you're like me and enable all the scanning options in a local profile for weekly scanning then in depth scan does not need to be used (I think).

    Those locked files are normal during scanning and do not indicate the presence of malware (in most cases). They are files currently in use by the operating system and other programs I believe. You might be able to exclude them from being scanned in the first place if they bother you or maybe an option not to show locked files at all, I'm not sure, but I don't bother. It's helpful to me to know that nod32 attempts to scan there. Also, if there is a locked file there that is not typically locked I know to look there in case my computer is acting a little funky. If you're looking for more help on locked files look for the FAQ at the top of this page.

    Hope I answered all your questions. If you need more help be sure to post here or PM me. Having just came from where you are now there are probably a bunch of questions you have. The members here are wonderful with helping out everyone, I typically got an answer within a few hours. Only advice I have would be to configure according to Blackspears settings for maximum program efficiency and minimal user involvement if you're that kind of person. Otherwise, enable his settings and then configure it so you like the amount of involvement you have. Nod32 is amazingly customizable.

    Also, if you're feeling lazy I think there is a downloadable file somewhere around here that automatically configure according to Blackspears settings. I'd recommend doing it yourself so you learn the ins and outs of nod, but it is there if you want it (sorry, I don't know where).

    Cheers and good luck,

    Psych1610
     
  3. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,772
    Location:
    Texas
  4. reza666

    reza666 Registered Member

    Joined:
    Jul 23, 2007
    Posts:
    15
    waoo that was some great help right there :)
    Actually this forum is one of the reasons i will choose Nod before Kaspersky or Avast. I like to be able to talk to people and get this sort of help :)
    Much faster and nicer then in my opinion.

    Really appreciate the in depth explanation Psych1610 and also ronjor.
    I like to play around with the programs i install and learn them so the options are all good to have. I'm also a control freak that likes to know what the application does so i dont mind the lock files and i agree with you that its good to see what it is doing.
    Its just that i never seen this in any other application but i assume these messages are suppressed normally.
    I have already looked at Blackspears guides (Starting page9) and it is great stuff with screenshots and all. Very nice guideline indeed.

    My only wishful item is to see some "live" icon + text showing what Nod is actually doing when i point my mouse on the icon but perhaps something for version3. I really like the fact that it uses so little resources. Almost as if is not even installed.
    I will look for some viruses and give it some hard time hehe (actually i tested it with http://www.eicar.org/anti_virus_test_file.htm
    and it did react instantly so it works pretty nicely.

    Another item i REALLY would like to see in NOD32 is a list of viruses (searchable virus list) it can detect and some explanation of them . Now it just show a threat without saying what sort but it is interesting to see what i am facing before it is removed.

    Any way Thanks a bunch for the help guys.

    cheers
    /Reza
     
  5. psych1610

    psych1610 Registered Member

    Joined:
    Jun 16, 2007
    Posts:
    62
    Location:
    Redneckville, FL .. originally Newburgh, NY!!!!
    Glad I could be of some assistance, I'm just starting to get to know Nod myself. One of the main reasons I chose it is because it can work completely without taking up much of my cpu power, that is, besides the amazing reviews.

    Perhaps if you post something down in the beta ESS forum right below this one about your wishes the developers will consider adding it (if it hasn't been added already). I know the program seems to be well on its way to completion but they might still consider it.

    hehe, I did the same thing before I purchased a license. Here are some of the links I was given if you haven't already seen them.

    www.misec.net/trojansimulator
    http://tav.kaspersky.fr/.

    There are also plenty of older live threats out there I'm sure you can find if you really want to. I'm pretty sure nod would stop them all. There's really no telling what your antivirus can do until you get nailed by a real zero day threat.. then you just have to hope nod is all it's cracked up to be.

    If all else fails, google usually works for me. Other antivirus vendors (and nod might to) have a list like that online somewhere. I think Norton might be one of them. But I agree, a list like that in the product or a brief description available to you when the threat pops up would be helpful, if even just for knowledge sake.

    psych1610
     
  6. De Hollander

    De Hollander Registered Member

    Joined:
    Sep 10, 2005
    Posts:
    718
    Location:
    Windmills and cows


    http://www.virus-radar.com/index_enu.html :) ;)
     
  7. reza666

    reza666 Registered Member

    Joined:
    Jul 23, 2007
    Posts:
    15
    very nice links guys.
    Tried to download the zip file with The Trojan file and NOD detected it even at download state so i guess its working :)

    Did a scan of my pc and it even detected toolbar application within my Nero installation file (i think it detects the google searchbar). Pretty nice to get this type of information i think.

    Getting more and more interested in NOD :)
    Norton and other big names are making their application so complex with to many functionality and fancy look that they forget about the basic functionality and ease of use. I hope NOD keep the simple and robust functionality in the future versions as well.
    This program reminds me of Sygate, the best firewall ever made which was bought up by Symantec and trashed (#"¤!#"!%"¤%"¤"#) damn I hate them for it.

    thanks again.
     
Thread Status:
Not open for further replies.