General info
  Windows 95/98/ME
  Windows NT/2000/2003/XP/x64
  Enterprise Edition
   LAN Update Server
  Remote Administrator
  Linux Mail Server
  Linux File Server
  Lotus Domino
   Dell Storage Servers
  MS Exchange
  Kerio MailServer
  Kerio WinRoute Firewall 
NOD32 for Microsoft Windows NT/2000/2003/XP/x64/Vista/7
Integrated, Real-Time protection for your Microsoft® Windows workstations
Users of Microsoft® Windows® can experience the power and elegance of NOD32's ThreatSense™ Technology with ease and comfort. Our single optimized engine offers the best protection from viruses, spyware, adware, phishing attacks, and more. Keep tomorrow's threats at bay with our proactive detection technology. And it has the smallest footprint and fastest performance - bar none.
ESET's NOD32 Key Features
  • ThreatSense® technology — a single optimized Anti-Threat engine for analyzing code to identify malicious behavior, such as viruses, spyware, adware, phishing and more
  • Unprecedented heuristic analysis capable of discovering new malware threats as they emerge
  • Powerful virtual PC emulation technology enables unpacking and decryption of all types of archives and run-time packing
  • Protects at multiple infiltration points, including HTTP, POP3, SMTP and all local and removable media
  • Enhanced Rootkit Protection
  • Prevents infected files from being opened and executed, and warns on creation of infected files
  • Automatic execution on system startup
  • Supports multiple Terminal Server environments
  • Supports scanning of mapped network disks
NOD32 Control Center
This central management console provides full access to NOD32's features, tools and settings and fully integrates all installed system components. These are categorized into four different sections, each of which can be expanded into an easy-to-use directory tree style system. For increased security, the key settings can be password protected to prevent unauthorized access and modification.
Protection against threats from multiple input vectors is provided by the following modules:

Antivirus MONitor (AMON)

An on-access (memory-resident) scanner, which automatically scans files before they're accessed.


An on-demand scanner, which can be run manually on specific files or disk segments. It can also be scheduled to run during off-peak times.

Internet MONitor (IMON)

A memory-resident scanner that runs on the Winsock level to prevent infected files from reaching the computer's disks. It scans internet web-browsing traffic (HTTP) and incoming email via the POP3 protocol.

Email MONitor (EMON)

An auxilary module for scanning incoming/outgoing emails via the MAPI interface, such as Microsoft Outlook and Microsoft Exchange.

Document MONitor (DMON)

Utilizes the proprietary Microsoft API for scanning Microsoft Office documents (including Internet Explorer).

Automatic Updates
  • Supports hourly incremental updates to the ThreatSense Technology
  • Includes upgrades of the executable program components, so your NOD is never out of date
  • Most updates are performed behind the scenes and ‘on-the-fly’ without the need for a reboot.
  • Small incremental update of the virus database minimizes network congestion and download times (usually under 50kB).
  • Allows flexible scheduling of updates and selection of various update profiles.
  • Checks for updates of the system at user-defined intervals or even upon the occurrence of a predefined event.
  • Provides intelligent update options for computers on dial-up access.
  • Supports proxy-servers (Basic and NTLM authentication).
  • Provides authentication of the origin of downloaded update files using a digital signature technique.
  • Supports updating from a local site without accessing the Internet, such as from a server within a LAN.
  • The upgrade system can be configured to reflect a multi-level hierarchy and/or other needs of a large company or organization; including the ability to download updates from a local mirror server.
  • Creates updates to a floppy or CD for PCs that are not connected to the network.
  • Configuration settings can be distributed to local workstations from an administrator’s computer.
  • Provides the option to use a configuration file to set system parameters across the network during initial installation and/or subsequent updates.
  • Supports ‘silent mode’ on end-user workstations: notification messages may be forwarded to an administrator only.
  • Allows the settings to be password protected.
Centralized Logging provides information on:
  • On-demand scanner results
  • Relevant events (e.g. performed updates, executed tasks, etc.)
  • Infiltrations detected by resident modules and filters
System Requirements
  • Operating System
    • Microsoft Windows 2000 and 2003 Workstation, NT
    • Microsoft Windows XP Home and Professional, including Windows XP Professional x64 Edition, Windows Vista 32-bit and 64-bit
  • CPU 386 or higher processor (Pentium recommended)
  • 30 MB free hard disk space
  • 32 MB RAM (64 MB RAM recommended)
  • VGA or better graphic card
Changelog for 3.x Windows 2000 / 2003 / XP / Vista
December 18, 2008 - 3.0.684
  • stability and security fixes
August 22, 2008 - 3.0.672
  • Fixed problem causing instability on Microsoft Windows Vista 64-bit
  • Fixed problem in antispam module causing "Unexpected exception 003 and 007" error messages
July 7, 2008 - 3.0.669
  • Fixed tasks scheduled to be run after a successful update
June 17, 2008 - 3.0.667
  • Fixed issues in reinstallation / upgrade process
  • Improved Antistealth to detect new kinds of rootkits
  • Enhanced handle in Novell – fixed issue - long time opening files
  • Improved mechanism in case of exception during scanning
  • Fixed issue with processing HTTP reply code 302
  • Fixed incorrect date in Windows Vista
ESET Command Line Scanner
  • Fix of the console output, resp. redirection to pipe
Personal Firewall
  • Export of the list of applications excluded from checking
May 21, 2008 -3.0.657
  • Fixed problem causing system instability on Microsoft Windows Server platform
  • Improved stability for users when using Microsoft Windows Mail
  • Fixed issue with deleting emails from a server using POP3 protocol
  • Fixed incompatibility with PC Translator software
  • Fixed issue with incorrect message statistics in Antispam module
April 2, 2008 - 3.0.650
  • Fixed problem during an update from Mirror with an authentication
  • Fixed few firewall issues
  • Fixed an issue in the integration with Windows Mail
February 21, 2008 - 3.0.642
  • Fixed problem with EAV installation to machine with older version of CheckPoint
  • Fixed few firewall - related problems
    • fixed issue with false positive reports of attacks
    • fixed issue with network browsing
    • fixed issue with spurious firewall rule creation
  • Fixed issue with Web Access Protection module in Windows Vista
  • Fixed few issues in Microsoft Outlook Express and Windows Mail
    • fixed issue with disappearing user account information
    • fixed issue being unable to send receipts/delivery reports
    • fixed filtering/highlighting messages not functioning
  • Other small fixes
December 21, 2007 - 3.0.621
  • Fixed synchronization through ActiveSync while firewall is in Automatic Mode
  • Fixed Incorrect IP Packet checksum issue
  • Fixed issue with creating duplicate rules

Outlook/Outlook Express/Windows Mail

  • Improved general performance by several optimisations
  • Interactive Toolbar (turn off icons/text, large icons)
  • Possibility to rescan selected/unscanned/all messages in folder  for viruses and spam
  • Possibility to add Names instead of e-mails to blacklist
  • Possibility to turn off ESET toolbar in OE/WM
  • Added Alt+S shortcut to mark message as spam


  • Extended options available from system tray menu
  • Fixed delays when creating exclusions
  • Export logs into XML or TXT
  • Fixed problem of multiple threat notifications
  • Fixed problems saving changes of some settings
  • Fixed several minor bugs related to GUI


  • Detection of security products known to cause compatibility issues
November 6, 2007 - 3.0.563
  • Problems with the firewall on multi-core computers running Windows 2000
  • Problems with updates via Microsoft ISA Server
  • Problem with displaying images from web sites
  • Problem with scanning video streams
November 6, 2007 - 3.0.560
  • Fixes the "Outlook Express" problem reported by many users (that Outlook Express takes two or three executions to start).
November 05, 2007 - 3.0.551
  • Released
Changelog for 2.7 Windows 95 / 98 / NT / 2000 / 2003 / XP / Vista

May 18, 2007 - 2.70.39

  • Fix for a stack overflow vulnerability which could allow arbitrary code execution.
May 9, 2007 - 2.70.37
  •  Fix for a stack overflow vulnerability which could allow arbitrary code execution.
  • Added new command line option "/ALL-". When NOD32's command line scanner is
    run with the /ALL- switch, it will scan files based on their extensions, as
    opposed to scanning all files on the target.
December 20, 2006 - 2.70.23/2.70.25/2.70.26
  • Bugs fixed
November 17, 2006 - 2.70.16
  • Support for Microsoft Windows Vista (32-bit and 64-bit)
  • Enhanced rootkit detection and removal (Anti-Stealth)
  • Improved classification of spyware and adware
  • Improved removal of malware
 April 04, 2006 - Program components version 2.51.26
  • Kernel
    • fix for CVE-2006-0951 vulnerability exploitable by local users to gain escalated privileges
  • AMON
    • fix for MUI (Multilingual User Interface) on 64-bit OS
  • IMON
    • fix for .NET applications
    • fix to active mode on 64-bit OS
  • ThreatSense.Net
    • changes to the server balancing system


Jan 18, 2006 - Program components version 2.51.20
  • Kernel
    • Improved compatibility with Cisco routers
  • XMON
    • Removed duplicate detection of temporary files
    • Improved archive detection with MS Exchange Server 5.5
May 12, 2005 - Program components version 2.50.16
  • Kernel
    • Adware/Spyware/Riskware detection
    • ThreatSense.Net Early Warning System
    • License manager
  • AMON
    • Improved in-depth analysis of newly created files
    • Automatic movement of newly created files to Quarantine
  • DMON
    • Manual start of the monitor
    • Improved compatibility with Internet Explorer when DMON is disabled
  • EMON
    • Brand new module compatible with all versions of MS Outlook
  • IMON
    • Different compatibility mode for different servers
    • Access blocking for websites with malicious content
  • XMON
    • Improved algorithm for calculating the real file size
    • Option added for quick enabling/disabling rules
    • Rule added for checking file size
  • NOD32
    • Information on file from which the memory infiltration originated
    • Improved file specification by mask
    • NTFS Alternate Data Streams (ADS) check
October 15, 2004 - Program components version 2.12.3
  • IMON
    • fixed some minor problems
    • higher compatibility
July 27, 2004 - 1.018 (Archive support module version)
  • Added Virus detection in compressed or protected executable files: ExeStealth, yoda's Crypter, PECompact.
August 27, 2004 - Program components version 2.12.1
  • IMON
    • HTTP scanning
    • improved compatibility with Hyper Threaded and multiprocessor computers
    • progress window when downloading longer files/e-mails
  • AMON
    • Advanced Heuristics for newly created files
  • On-demand scanner
    • option to turn Advanced Heuristics on/off
    • added the possibility to use wildcards in the command-line
  • DMON
    • added Document MONitor, AV support for MS Office
  • Kernel
    • support for Microsoft Windows XP SP2 (Windows Security Center, Data Execution Prevention on AMD64, etc.)