copied from help: If an infiltration is found, run the scan again by selecting the Clean button rather than Scan. In “cleaning” mode, if an infiltration is found, actions are offered to clean or neutralize the infection. In most cases, NOD32 is capable of cleaning a detected virus. Note that with most of the recent computer worms, the entire file is the worm body, so it is simply deleted. All other scanners that I have used.... mostly mcafee and mks_vir.... simply scan and if a virus is found offer an option to clean?...simple enough? So why do we have a separate scan engine verses a clean engine "so it were?" Does this feature help speed up nod32 to not be in "write mode?"... just curious why the extra hassle?.... if it helps speed its worth it..... thats the main reason I choose nod32.