Posted 05 March 2009 - 10:28 AM
I have been using various Antiviruses for years and have always been sure that my PC is secure. But recently, while reading this and some other security-related forums I've realised that antivirus is not enough, because it can't protect computer of zero-day attacks. If there is no information about new malware or virus in the signature database of the AV, it will penetrate the computer and infect it.
As far as I understand, for protection of zero-day attacks there is so-called Proactive Defence software, which tracks and blocks "suspicious" behaviour of applications, such as attempts to write itself into autorun, or modify the registry and so on. I know that Comodo and Outpost provide such kind of defense, maybe some other software too, but i don't know yet.
How do you think, is such kind of approach to computer defense promising in long-term or not, and does it worth to use such software in combination with usual antivirus? Or maybe, i don't need antivirus at all if i use decent and well-adjusted proactive defence software?
Please share your experience, if you use such kind of software: does it really protect the PC, is it comfortable to work with etc. What exactly proactive defense software do you use? Does it worth attention overall?