question about antispyware and antivirus

Discussion in 'Technicians Lab' started by donetus, May 15, 2007.


  1. donetus

    donetus Member




    why is it that sometimes one AV program (or antispyware program) detects a virus/spyware while the other AV/AS doesn't detect it?
     
  2. AaronICK

    AaronICK Member




    1. For obvious reasons, iba-iba ang developer ng mga antivirus. At may sarili rin silang virus definitions.

    2. Iba-iba rin ang pagkaka-program sa kanila. That is why, there is no such thing as pare-parehong AV software. May isa or dalawa talaga na magii-stand out. Kaya always be careful and choose your AV software wisely (parang eleksyon).

    3. Posibleng at a given point in time, mas updated ang virus definitions ng isang AV software kaysa sa isa pang AV software. Kaya siguro hindi agad na-detect ng AV software na kulang sa data ang virus definitions.

    4. Although highly unlikely, there is a very small posibility na iba ang name ng virus ng isang AV software kaysa sa isa pang AV software.

    My $0.02
     
  3. dyoddyowel

    dyoddyowel Member




    1. signature definitions... a good example is kaspersky, they update rapidly, almost every 3 hour (sometimes every hour) while other AVs update once a day or sometimes a few days in between...

    2. heuristic... an AV with a good heuristic detection capabilities does not need a signature definition to detect a potential malware... it does it by studying and knowing a common malware behavior... it is also the main reason why there are some AVs that can detect and stop a newly released in the wild malware even without a proper signature updates...

    3. scan engine... aside from signature, scan engine needs to be updated too in order to properly detect and remove new threats... an outdated scan engine even with updated definitions may have a hard time detecting and removing new malware... different AVs update their scan engine differently... some are transparent to the user, some you have to do manually...

    4. your settings... AVs uses different terms for this but in general there are settings like low, medium, high...

    5. blame the lazy update teams...

    6. not all AVs are created equal...
     
  4. donetus

    donetus Member




    thanks guys .. :D
     
  5. dyoddyowel

    dyoddyowel Member




    i know there are more pero wala na ako maisip eh...
     
                                 

Share This Page