Justy one example - NOD32 detects it as *Probably unknown NewHeur_PE virus* and says that *File is probably infected with an unknown virus*. Actually it is *Trojan-Spy.Win32.Agent.ji* in Kaspersky classification and added to database on 01.01.2006. I can hardly believe that it is still really unknown to Eset virus analyzers. So, to whom it is still unknown? Of course, there may be no reason to bloat database with less important signatures, if they are detected heuristically (except that quite a few users might have disabled heuristics due to NOD behaviour, mentioned in the thread that didn't go anywhere). But then again, if it is the case, there is no need to call them *unknown*. Could be *heuristically detected*, *not listed in the database* or anything similar. Otherwise, one might think that there is some shortage of knowledge at Eset.