Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

heuristic analysis


  • Please log in to reply
27 replies to this topic

#1 paulos123

paulos123

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 09 November 2013 - 06:01 PM

hey guys my pc is a little bit old,and i dont want to use free antivirus cause i think its a waste of time and cant compare them to paid 

antivirus.whatever if i dont want to use internet security or antivirus are there programs for analysing bad behaviour on internet or something like that?im waiting for help and suggestions.

thanks anyway.....



BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:23 AM

Posted 09 November 2013 - 07:06 PM

The cost of the AV is not a good determining factor in how good it is, the determining factor is how good they are at applying updates. I ditched McAfee just 2 months after I renewed my subscription, and the reasoning was because it became bloated, and slowed my computer down. I switched to Microsoft Security Essentials which is great.

#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,734 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:23 AM

Posted 10 November 2013 - 07:38 AM

I would not recommend anyone to not use an Anti-virus.

Why should you use Antivirus software?

IMO, not having an anti-virus working in real-time in the background defeats much of its intended purpose...to protect a computer and prevent malware infection BEFORE it can damage your system.

Further, using unprotected computers on the Internet is a security risk to everyone as they are prone to attack from hackers, Botnets, zombie computers and malware infection. Using anti-virus software will help minimize the risk and help to prevent the computer from being used to pass on infections to other machines. When infected and compromised, malware spreads faster and more extensively, distributed denial-of-service attacks are easier to launch, spammers have more platforms from which to send e-mail and more zombies are created to perpetuate the cycle.

How do folks who claim they do not use an anti-virus and never get infected know for certain that their computer is malware free? Many of today's attackers employ advanced techniques which involve sophisticated Botnets, Backdoor Trojans and rootkits to hide their presence on a computer. Without proper security tools including an antivirus which can detect such malware, you can never be absolutely sure your computer has not been infected.

With that said, Emsisoft Anti-Malware is an excellent choice for protecting your computer. EAM uses three security levels (or layers) in order to provide protection. These layers are made up of: surf protection, a dual-engine file guard, and advanced behavioral analysis. For more information, please refer to How Emsisoft Anti-Malware works. A fully functional 30 day trial version is available for download.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,734 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:23 AM

Posted 10 November 2013 - 08:12 AM

Behavior-based analysis monitors the behaviors of a program by inspecting what it does in order to determine whether it is malicious or not.

Heuristic analysis is the ability of an anti-virus program to detect possible new variants of malware before the vendor can get samples and update the program's definitions for detection. Heuristics uses non-specific detection methods to find new or unknown malware which allows the anti-virus to detect and stop if before doing any harm to your system. Heuristic scanning methods vary depending on the vendor. Some claim to allow emulation of the file's activities in a virtual sandbox. Others scan the file more intensively, searching line by line inspecting the code in a file to see if it contains virus-like characteristics. If the number of these characteristics/instructions exceeds a pre-defined threshold, the file is flagged as a possible virus.

Eset: Heuristic AnalysisDetecting Unknown Viruses
Kaspersky: What is heuristic analysis

The disadvantage to using heuristics is that it is not as reliable as signature-based detection (blacklisting) and can potentially increase the chances that a non-malicious program is flagged as malicious. With heuristics, there is always a potential risk for a "false positive" when the heuristic analysis flags a file as suspicious or infected that contains no malware. Packed files use a specially compressed (protected) file that may have been obfuscated or encrypted in order to conceal itself and often trigger alerts by anti-virus software using heuristic detection because they are resistant to scanning (difficult to read). Sometimes lowering the program's heuristic settings and rescanning may provide more accurate results but then that increases the possibility for new malware to infect your system.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 10 November 2013 - 08:38 AM

man this was really great help.i appreciate that.you are right,

so now im using for firewall comodo and eset antivirus 7,

i hope you can provide me with other bettter options or 

some programs for scannning but not real time protection,

thanks anyway quietman7 have a good day.



#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,734 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:23 AM

Posted 10 November 2013 - 08:43 AM

Supplementing your Anti-Virus Program with Anti-Malware Tools
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 10 November 2013 - 09:01 AM

nice



#8 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 10 November 2013 - 09:03 AM

emsisoft is for supplementing my antivirus/antispyware/firewall and not real-time

or i use it for real time?



#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,734 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:23 AM

Posted 10 November 2013 - 09:14 AM

Tools to supplement your anti-virus can include both real-time and stand-alone. EAM works in real-time running in the background but leaves a light footprint...meaning it utilizes minimum system resources.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#10 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 10 November 2013 - 09:17 AM

so can i use it with my antivirus/antispyware?(eset nod 32)



#11 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,734 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:23 AM

Posted 10 November 2013 - 09:47 AM

I am currently using EAM with ESET NOD32.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#12 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 10 November 2013 - 09:52 AM

i uninstalled eset nod 32 cause i think that they are with eam in conflict.

made my pc really slow.

so now comodo firewall and eam



#13 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 10 November 2013 - 10:09 AM

even that i had uninstalled eset and let only eam as antivirus/antispyware,

it makes my pc slower and eats a lot of ram,

its heavier even than kaspersky internet security 2013 that i used to have for a year.maybe i go back for eset

i dont know.



#14 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,734 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:23 AM

Posted 10 November 2013 - 04:09 PM

I hardly know that EAM is running alongside Eset until it updates or jumps into action.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#15 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:23 AM

Posted 10 November 2013 - 04:24 PM

i really apreciate your help,thats why i heard your advice and installed eam but it makes my pc very slow,

now i have norton av 14 with comodo and my pc runs very smooth.

but i am exited that eam is very strong and can find almost everything even if its not  well known by users,

like norton kaspersky and bitdefender.

whatever i with again read carefully your posts so that i do my best for my pc protection.

thanks.

 

ps if you have to suggest anything else you are very welcome.....






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users