Future Changes to EAV

Discussion in 'ESET NOD32 Antivirus' started by Blackspear, Jan 20, 2008.

  1. curiousmicrobe

    curiousmicrobe Registered Member

    Joined:
    Feb 17, 2008
    Posts:
    32
    Re: Future Changes to EAV 3.0

    A simpler and more effective icon for the splash screen. I googled and found this:

    Nod32_Dock_Icon_by_AlperEsin.jpg
     
  2. piranha

    piranha Registered Member

    Joined:
    Mar 21, 2005
    Posts:
    623
    Location:
    Laval, Qu?bec, Canada
    Re: Future Changes to EAV 3.0

    yeurrkkkkkk :gack: :thumbd:
     
  3. nodyforever

    nodyforever Registered Member

    Joined:
    Oct 30, 2007
    Posts:
    549
    Location:
    PT / Lisbon
    Re: Future Changes to EAV 3.0


    +1:thumbd:


    picture no static

    not attractive user
     
  4. ASpace

    ASpace Guest

    Re: Future Changes to EAV 3.0

    I don't like this eye , too :thumbd:

    Very nasty and scary for any user . The android conception is excellent , IMO , just the tray icon (but it seems they wouldn't change it)
     
  5. ok33

    ok33 Registered Member

    Joined:
    Mar 21, 2008
    Posts:
    12
    Re: Future Changes to EAV 3.0

    Looking forward to a fix on ekrn.exe when everything is off from real-time, web protection, and etc... And ekrn.exe still running at 32k to 42k. I'm only running nod32 on demand scanner and ekrn.exe is still running high. I use outpost and i check it regularly and it's connecting to local port 30606. I don't get how this could be happening when everything is turn off...Hope they will fix this soon.
     
  6. ASpace

    ASpace Guest

    Re: Future Changes to EAV 3.0


    There is nothing to be fixed . You can make sure that "Protocol filtering" is set to "Applications marked as web browsers and mail clients" and that no application is checked as browser / pop3 client.

    Then you should make sure that you DO NOT stop the protections from the Setup section but from the Advanced Setup tree . There is big differences between these.

    Moreover , if you want to keep ESET NOD32 as on-demand scanner only with not active scanning - the solution is very simple . When you don't need it , simply set ESET's Service to "Disabled" and disable the UI from auto-running on start-up . When you think you need NOD32 to make scans , you simply Set its Service to "Automatic" and Start the service . Start egui.exe from Start - Programs -> ESET - ESET NOD32 Antivirus
     
  7. ok33

    ok33 Registered Member

    Joined:
    Mar 21, 2008
    Posts:
    12
    Re: Future Changes to EAV 3.0

    I assure you all that is turn off. And ekrn.exe is still running in the background.
     
  8. ASpace

    ASpace Guest

    Re: Future Changes to EAV 3.0

    Let's try again:

    If you use the disable option , this will NOT stop the NOD32 processes and modules - they will remain active . They will not perform scanning/removing of malware (but will remain loaded in memory!) .
    If web-access protection is disabled , protocol filtering remains ACTIVE , the traffic is still proxied but the traffic is not scanned for threats (or if scanned no actions is taken)

    However , if you don't want ESET modules running in background , you need to unload them from memory . Unlikely other vendors , ESET products have one proccess only - everything done by ONE KERNEL . So you need to stop the kernel .

    The kernel can be stopped if you *first* disable the ESET service from Control Panel -> Administrative options -> Services and *second* stop the service

    In addition you will also need to make the user interface not load on Windows start-up unless you want it hung.

    There we are - everything is stopped . You want on-demand scans only . So , when you want to perform scans :
    1) You set the ESET service to Automatic
    2) Right click the service and Start it
    3) Start ESET's UI from Start->Programs->ESET->ESET NOD32 Antivirus
    4) Update the program
    5) Perform scan

    After scan is finished , close the EGUI . Then disable+stop the ESET service.

    You got it now ? :thumb:
     
    Last edited by a moderator: Mar 25, 2008
  9. ok33

    ok33 Registered Member

    Joined:
    Mar 21, 2008
    Posts:
    12
    Re: Future Changes to EAV 3.0

    Alright thanks.
     
  10. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,538
    Location:
    Sweden
    Re: Future Changes to EAV 3.0

    IMAP-scanning and full support for Mozilla Thunderbird.
     
  11. ASpace

    ASpace Guest

    Re: Future Changes to EAV 3.0

    Currently supported only in Outlook Express , Windows Mail and Microsoft Office Outlook thanks to the plug-in EAV/ESS offer. The more email clients are supported , the higher chance you'll have to get IMAP supported.

    I don't know of an antivirus which supports IMAP scanning on traffic level.

    ESET are working on this.
     
  12. solcroft

    solcroft Registered Member

    Joined:
    Jun 1, 2006
    Posts:
    1,639
    Re: Future Changes to EAV 3.0

    Since I can't find it via a cursory inspection of this thread: Game Mode

    Stop EAV from popping up alerts when fullscreen programs are running. I lost two games in a row last night because EAV first popped up a message prompting me to submit suspicious files, and then a notification that it'd updated itself.
     
  13. ASpace

    ASpace Guest

    Re: Future Changes to EAV 3.0

    @solcroft

    As a temporary solution until ESET implement such an option you can set the program not to display alerts and notifications while you are playing games . After the game is finished , you can again check the options .

    temp_sol_SM.png

    Another temporary solutions -> while you play games , just end the egui.exe process . After the game is over , you simply start the egui.exe again
     
  14. MarcR

    MarcR Registered Member

    Joined:
    Nov 3, 2006
    Posts:
    60
    Re: Future Changes to EAV 3.0

    When a detection warning pops up, the ability to "Add item to Exclusions" with one click - like Kaspersky.

    It's annoying to manually add items to Exclusions.
     
  15. ASpace

    ASpace Guest

    Re: Future Changes to EAV 3.0

    @MarcR

    Such an option is existing in Kaspersky products because of their HIPS which can easily produce false positive . When ESET product displays detection warning , in 99% of the cases it is really something to worry about ( I mean real threat) . Additing such a thing in the Exclusions is BAD idea.
     
  16. sangam

    sangam Registered Member

    Joined:
    Jan 26, 2007
    Posts:
    49
    Location:
    ahmedabad, india
    Re: Future Changes to EAV 3.0

    wish that download page shows the date of last updated files. it helps, and sometimes, one may not need to check the version number then.
     
  17. Defenestration

    Defenestration Registered Member

    Joined:
    Jul 17, 2004
    Posts:
    1,111
    Re: Future Changes to EAV 3.0

    Ability to add to exclusions from Alert dialog.
     
  18. ASpace

    ASpace Guest

    Re: Future Changes to EAV 3.0

    It isn't a problem for me personally but some may not like something in the current version
     

    Attached Files:

  19. Spasserfan

    Spasserfan Registered Member

    Joined:
    Jan 7, 2008
    Posts:
    9
    Re: Future Changes to EAV 3.0

    1.
    An option to let the the on-demand scan finish and then ask for actions or just let the scan continue while the popup(s) requiring userintervention remains on screen for the user to take action the moment he returns to the computer:
    When running an on-demand scan and a popup requiring user intervention appears the scan stops. If the user is away from the computer this would leave it doing nothing until he returns. This would leave the user with fewer system resources compared to if the scan had continued (shorter "slow down period") or finished.
    2.
    Excluxion rules:
    The possibility to exclude files from certain scan methods like unwanted/ unsafe applications or Advanced heuristics. Because these might cause false positives, it would be nice to exclude a "false positive" but still get protection against malware.​

    3.
    An option in the scheduler to rerun a scheduled scan if the scan has not completed within XX hours:
    This would be useful for admins scheduling scans on computers where users might log in/out turn on/off the system thus preventing a scheduled scan to complete.​

    I second that

    Further explanation:
    This is also discussed in this thread: https://www.wilderssecurity.com/showthread.php?t=196797

    By the way, if you want that feature, you might drop a comment in the above thread:
     
  20. kevin009

    kevin009 Registered Member

    Joined:
    Sep 11, 2007
    Posts:
    32
    Re: Future Changes to EAV 3.0

    1. I would like to suggest that NOD32 have a small new addition:

    NOD32 V.3 should have a new option to use Advanced Heuristics on all files in removable media (Floppy / CD / DVD / USB Flash Drive and Mobile phone memory sticks etc.)

    Actually what happened was that once I double-clicked on a file in a CD-ROM which was malware (detectable only by NOD32’s AH)
    Since AH is used only on newly created and modified files, NOD32 failed to alert me of the threat in the CD and my system got attacked unknowingly.

    I do not use AH in real-time protection (Advanced Setup > Real time file system protection > Setup > Options > Advanced Heuristics) because it reduced my system’s performance.

    So I think it would be better to add a new option that the Real time protection uses AH on files in all removable media even if they have not been newly created or modified. This would be safer.

    Please tell me if this feature can be implemented in a future build of NOD32 3.0 ?

    Second Question:
    2. If AH is enabled in the real time protection, is it safe to disable AH in the Additional threatsense parameters for newly created and modified files ?
     
  21. Chai

    Chai Registered Member

    Joined:
    Apr 3, 2008
    Posts:
    7
    Re: Future Changes to EAV 3.0

    1. Add a check box in all ThreatSense screens in Setup to "Apply these settings universally" so I don't have to manually set the settings five times.

    2. Add an optional check box in Setup (off by default) asking whether to enable automatic notification of all new product component updates (not just major ones). This way, Average Joe will not be bothered, and advanced users will know enough to find the option and check it on.

    3. Mozilla Thunderbird support.

    4. Automatic full scans by default for (let's say) 3 or 4am daily, or at least weekly.

    5. A (free?) download allowing one to burn a bootable CD containing an on-demand only scanner, perhaps a command line scanner even... something to use for really badly infested machines that won't even boot into Safe Mode.
     
  22. krypton_harsh

    krypton_harsh Registered Member

    Joined:
    Apr 14, 2008
    Posts:
    84
    Re: Future Changes to EAV 3.0

    1. this would be really appreciated. if u can provide with offline update.

    2. Better response from the virus lab and faster response too. The major requirement is a reciept of delivery of virus samples. from labs.
    even today i upload new virus samples. from 3 email ids.
    and i am not sure which one reached the eset labs

    i am not sure bout this one. but some times i have observed that the avs boots up quickly on the same pc it takes ages to loads up. i mean the splash screen on the desktop just stays there. and goes to system tray after so much time... kindly have a look on that.
    ..

    3. and the installation package . its not a smooth installions.... it hangs and moves to next steps...
    kindly use a other installer if possible.
    this happens espcially when installing from a network path....and its not related with the network bottleneck.its a perfect 1Giga network


    thankz
     
  23. lamaslany

    lamaslany Registered Member

    Joined:
    Feb 24, 2006
    Posts:
    5
    Re: Future Changes to EAV 3.0

    As I cannot think of any functional changes I thought I'd offer some highly-subjective style requests instead... :)

    It'd be nice if you could click on the Number of blocked attacks in the Protection Status pane and it show a log of the blocked attacks - maybe just get it to open the Log Files in the Tools pane (or Detected Threats pane directly)?

    A casual user is more likely to click a link here than look in the Tools pane for the logs (are 'logs' tools?)

    From the Detected Threats pane I'd like to see the ability to find more information about the nature of the threat. Maybe have a button or contextual menu item that opens the default client browser and submits the threat description the Nod32 Virus Encyclopedia?

    While a user can copy the threat information into a browser a more seamless experience would be nice.

    A (very!) minor aesthetic change - if Show can with log in new window is selected during a scanan active scan it would, to my mind, look a little tidier if the Move to background link was on the next line rather than word-wrapped. (told you it was a petty change!)

    Also if you choose to Show scan with log in new window and then close the new window, either by closing the window or clicking on Move to background, the text in the Running Scans section in the On-demand computer scan is updated to say Bring to foreground but clicking on this resets the interface to defaults rather than opening the new window in the foreground. (I appreciate I may have misunderstood the working here and it may actually be working as intended)


    It'd be nice to be able to filter the results of an On-demand computer scan - I know I have dozens of pages of '- error opening [4]' and 'MIME - is OK (internal scanning not performed)' entries that I'd like to be able to filter out of the result with just a click. Maybe a checkbox on the On-demand computer scan dialog for this purpose?

    PS: The GUI has massively improved since I first started using Nod32. Keep up the good work! ;)

    Another PS: Just wanted to add my support for Solcroft's suggestion of a 'Game Mode' (or equivalent) that could be used to temporaily suppress popup dialogs, either manually or by specifying a time window, via a dropdown list of common blocks of time or exact time schedules. Ideally there should also be a granularity - disable the informational dialogs but not the critical warnings for example.
     
    Last edited: Apr 17, 2008
  24. Raytoo

    Raytoo Guest

    Re: Future Changes to EAV 3.0

    Simpler license update.

    The user receives a text file, license.nod32. The nod32 file extension is registered, so when the user double-clicks the license file, NOD32 is invoked, or a license entry part, which then asks for confirmation from the user, after verifying that the information is correct, which it should be most of the time, because the file should come from ESET's web site to begin with.

    See this thread for issues already discussed:
    https://www.wilderssecurity.com/showthread.php?p=1202278#post1202278
     
  25. steveshank

    steveshank Registered Member

    Joined:
    Apr 21, 2008
    Posts:
    8
    Re: Future Changes to EAV 3.0

    Test button for notifications

    If I have a client send me notification of problems, entering the client's smtp server, username, password, and whether they require authentication. Then I'd like to be able to send a test email and have nod32 report whether the test seemed to send properly.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.