Saturday, 26 February 2011

Antivirus: How it works?

Yesterday just installed a new antivirus Total Internet Security 2010 Quick Heal to prevent viruses on computer. I thought how many people know how it works? So I decided to write an article on this methods of work and it is here. Antivirus software can be defined as software that we use to remove computer viruses and malicious code from the computer. There are basically two approaches when the operation of an antivirus program:
  • 1. Virus Directory
  • 2. Suspicious Behaviour


Virus Directory:


In this method, files are scanned when the virus refers to a dictionary containing a list of known virus definitions. If the code matches one of these definitions, then either the file is deleted or moved to quarantine the virus, so that other programs can not access the code.

Because of this reason alone you need to update the virus definitions of your antivirus software regularly. This method is said to be effective, but the developers of viruses are one step ahead. They have developed polymorphic viruses that can encypt its malicious code or modify its code to look like a valid software.

2. Suspicious Behaviour


In this approach, to monitor the behavior of various antivirus programs and whether the software can be found trying to write an executable file is declared as suspect. In this case, the user has called for further action. This approach is very developed compared to the method of the dictionary, because it offers some protection against brand new viruses

But since this gives a lot of virus warnings, the user gets irritated and then accept, in any case. Therefore, this approach has little application. Some other approaches are emulation code at the beginning of each new executable file before running it. If the file is the property of self-change as it is supposed to be a virus.

Issues:


Method to encrypt the malicious softare struck antivirus market dramatically by using it you can easily spread.The viruses known solution is to educate people about the safe use and practices that carry unknown software to control. Sometimes, I doubt that these antivirus companies have even spread of the virus and find solutions. Do not you think? Anyway keep your computer and a final question: Would you still buy an antivirus?

Thanks & Regards,

"Remember Me When You Raise Your Hand For Dua"
Raheel Ahmed Khan
System Engineer
send2raheel@engineer.com
sirraheel@gmail.com

http://raheel-mydreamz.blogspot.com/
http://raheeldreamz.wordpress.com/ 

No comments:

Post a Comment

what is Juice Jacking SCAM

  Juice Jacking is a cybersecurity threat that occurs when cybercriminals manipulate public charging stations, such as USB charging ports in...