Antivirus

Antivirus

 

Antivirus software was originally developed to detect and remove viruses. However, with the proliferation of other kinds of malware, antivirus software provides protection from other computer threats. In particular, modern antivirus software can protect from: malicious Browser Helper Objects (BHOs), browser hijackers, ransomware, key loggers, backdoors, rootkits, Trojan, worms, malicious LSPs, dialers, fraud tools, adware and spyware. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity (privacy), online banking attacks, social engineering techniques, Advanced Persistent Threat (APT), botnets.

 

Identification methods

There are several methods which antivirus engine can use to identify malware:

  • Signature-based detection: is the most common method. To identify viruses and other malware, the antivirus engine compares the contents of a file to its database of known malware signatures.
  • Heuristic-based detection: is generally used together with signature-based detection. It detects malware based on characteristics typically used in known malware code.
  • Behavioral-based detection: is similar to heuristic-based detection and used also in Intrusion Detection System. The main difference is that, instead of characteristics hardcoded in the malware code itself, it is based on the behavioral fingerprint of the malware at run-time. Clearly, this technique is able to detect (known or unknown) malware only after they have starting doing their malicious actions.
  • Sandbox detection: is a particular Behavioral-based detection techniques that, instead of detecting the behavioral fingerprint at run time, it executes the programs in a virtual environment, logging what actions the program performs. Depending on the actions logged, the antivirus engine can determine if the program is malicious or not. If not, then, the program is executed in the real environment.
  • Data mining techniques: are one of the latest approach applied in malware detection. Data mining and machine learning algorithms are used to try to classify the behavior of a file (as either malicious or benign) given a series of file features that are extracted from the file itself.

 

Nivan offers below Solutions:

-          Kaspersky

-          Eset

-          Bitdefender

-          Avira