antivirus program

(redirected from antivirus scanner)

antivirus program

[‚an·tē′vī·rəs ‚prō·grəm] antivirus software

antivirus program

antivirus program

Software that searches for viruses. Also known as a "virus scanner." As new viruses are discovered by the antivirus vendor, their binary patterns and behaviors are added to a database that is downloaded periodically to the user's antivirus program via the Web. Popular antivirus programs are Norton, McAfee, Sophos, Bitdefender, AVG and Kaspersky. Windows Defender is Microsoft's own antivirus software that comes with Windows, starting with Windows 8.

Antivirus programs are used on all Windows machines, but most Mac users do not install them. However, as more Macs are acquired, the Mac has slowly but surely become a target of attacks, and Mac antivirus programs are being installed at a more rapid rate than in the past. See virus, quarantine, disinfect and scareware.

Multiple Detection Approaches
Early antivirus scanning matched the binary signature (pattern) of executable files against a database of known malware signatures before they were allowed to run. This "scanning" process was vastly speeded up by doing a one-time scan of all the executables in the computer and also when a new one is installed. If the executable is virus free, a checksum (hash) of its binary pattern is computed and stored in a checksum database. The next time the executable is launched by the user, its checksum is recomputed and compared with the virus-free checksum. If they match, the file was not adulterated.

Because malware may generate a unique signature each time it is downloaded to an unsuspecting user, antivirus programs also use behavior detection, which looks for suspicious activities such as copying and deleting files when launched (see behavior detection). See Symantec, McAfee, Sophos, Bitdefender, AVG, checksum, virus, polymorphic virus and Reputation-based Security.


Scan and Create a Checksum (Hash)
This is commonly used to speed up antivirus scanning, because computing and comparing an executable's checksum is considerably faster than analyzing the file each time it is loaded.
References in periodicals archive ?
The antivirus scanner, heuristic analyzer, application control system and isolated 'sandbox' environment for launching suspicious files enable the detection and blocking of both known and new malicious programs before they can inflict any damage.
Bluefly's anti-malware features, including its read-only mode of operation, protect the Stealth HD Series from all attackers, while its optional ACCESS Antivirus Scanner shields user data and host systems from all forms of malware, the company said.
According to the company, BitDefender Mobile Antivirus v2 is an antivirus scanner designed to protect mobile devices, including PDAs and smartphones, which run on Symbian 60, Symbian 80 or Windows Mobile operating systems.
At Linux World San Francisco 2006 (Aug 14-17, 2006; Booth # 1835), BitDefender(R), an award-winning provider of antivirus software and data security solutions, will be showcasing its new family of anti-malware products for mixed Windows and Linux enterprise environments, including BitDefender Mail Protection for Enterprise, Mail Protection for SMB and BitDefender Antivirus Scanner for Unices.
Similarly, the company's free cloud-based antivirus scanner, Panda Cloud Antivirus, also works with Windows 8.
Also worth mentioning was that the antivirus scan of BitDefender is one of the few antivirus scanner within the IT security market which does not have any difficulties with "Zip of Death" archives.
Use an antivirus scanner with an updated signature data base and you've done your best to protect your computer against malicious mobile code.
BitDefender(R), an award-winning provider of antivirus software and data security solutions, today announced the release of BitDefender Antivirus Scanner for Unices, the latest version of BitDefender Linux Edition.
Stateful Virus Protection -- High-throughput network based antivirus scanner for email, Web, file downloads or any other user defined port.
Furthermore, researchers are able to aim an antivirus scanner at specific regions of each file for inspection, rather that having to scan larger regions of files and slowing down the operation of a computer.
Ideal for Gigabit appliances and gateway security products, ncKAV is a high-performance antivirus scanner that utilizes antivirus detection technology by Kaspersky Lab and content scanning acceleration technology by Sensory to detect the most widespread and dangerous viruses.
Viruses like Sasser, myDoom and Bagle were able to contaminate millions of computers in a few days though most of them were "protected" by an antivirus scanner.