balakumar : think > than god | b-log : A Geek’s Tech Blog.: How Does Anti-Virus Works !!!

There are 10 types of people in the world: those who understand binary, those who don't. - Unknown

I would love to change the world, but they won't give me the source code. - Unknown

Unfortunately, no one can be told what the Matrix is. You have to see it for yourself. - Morpheus

Throughout human history, we have been dependent on machines to survive. Fate, it seems. - Morpheus

Do not try and bend the spoon. That's impossible. Instead, try to realize the truth. - Spoon boy

The Matrix is everywhere. It is all around us. Even now, in this very room. - Morpheus

Sooner you're going to realize the difference between knowing and walking the path. - Morpheus

Welcome to the real world... a world without rules or controls, borders or boundaries. - Morpheus

Have you ever had that feeling...where you're not sure if you're awake or still dreaming? - Neo

A robot may not harm a human or, by inaction, allow a human being to come to harm. - Isaac

Tell me, Mr. Anderson, what good is a phone call when you are unable to speak? - Agent Smith

Train yourself to let go of everything you fear to lose.- Yoda

The answer is out there. It's looking for you. And it will find you if you want it to. - Trinity

He tells me to do, to choose between that and the Matrix, I choose the Matrix. - Cyper

Machines didn't know what chicken tasted like, so that's why chicken tastes like everything - Mouse

Soon will I rest, yes, forever sleep. Earned it I have. Twilight is upon me. - Yoda

Hokey religions and ancient weapons are no match for a good blaster at your side, kid. - Han Solo

And I am C-3PO, human-cyborg relations. And this is my counterpart R2D2. - C-3PO

You're faster. Don't think you are, know you are. Stop trying to hit me and hit me. - Morpheus

we have no choice but to continue as planned. Deploy the sentinels. Immediately. - Agent Smith

Matrix is a computer-generated dream world built to keep us under control. - Morpheus

You have to let it all go, Neo. Fear, doubt, and disbelief. Free your mind. - Morpheus

You are the One, Neo. You see, you may have spent the last few years looking for me. - Morpheus

The circle is now complete. When I left you I was but the learner, now I am the master. - Darth

Home ↑ ↓ jump to my blog post |

/

Hello, I am Balakumar Muthu..

I am the CEO/Chief Architect and Creator of SweetCircles.com : a Social Weblogging Platform and LoveLogger.com : world's first pair-blogging platform. A strong passionate Geek, Tech junkie, Web Developer / Designer, Information Architect, Blogger, Wikipedian, Social Media Expert, Writer, SEO Analyst, Java, Open Source programmer.

I love making creative, fun, easy-to-use, pixel perfect and enjoyable web experiences.

My interests include Agile web development, Holistic User Interface and Interaction Design, Fascinated in building Innovative and Creative stuffs, Web design patterns and prototyping, Typography, Japanese culture, Kaizen, Singularity, Mobile and Futuristic technologies, Robots, Meta-Physics, Watching JDrama, Retro fashions, etc. Get to know more about me »

Wanna say Hello? Feel free to contact me at balakumar.muthu@gmail.com.

"... get up, and set your shoulder to the wheel-how long is this life for? as you have come into this world, leave some mark behind. otherwise where is the difference between you and the trees and stones? - they too come into existence, decay and die..." - Swami Vivekananda

Self-made man, the statue I greatly admire and the principle I strongly believe. "... left to his own devices, man will use his god-given talents to be creative, productive, and prosperous. Using free will, he will better his own situation and that of those around him, thereby influencing in a positive way his own destiny..."

How Does Anti-Virus Works !!!

A basic explanation of how Anti-Virus really works

Generally, the Viruses Enters our System:

Running an infected file from removable medias like floppy disk, CD or other vulnerable medium.

When Opening a web age which contains malicious code.

Opening an infected file sent over P2P Network.

When we open un-scanned attachments in e-mail our messages.

The Antivirus Software constantly checks and monitors our system, when it detects an infected file, or when it sees suspicious activity; it uses the most common 3 methods to identify the virus.

Signature Method

Just like cops trace patterns in crimes back to a criminal, the Anti-virus software reverse engineer a virus to find the signature it leaves. This signature is added to the database, which when the anti-virus performs a virus scan, each file is scanned for matches with any of the virus signatures.

Sandbox Method

The Sandbox is a method, which emulates an OS. The suspected executable file is run within the confines of a sandbox, and then the sandbox is examined to see what changes were made. These changes are used to determine which virus infected the file.

Heuristic Method

In this method, the anti-virus analyses a program for seemingly malicious behavior. Heuristic is effective against undocumented new viruses.

After the Virus is found, Antivirus software removes the infected files by:

Removal of the Virus

First the anti-virus tries to remove the viral code from the file. It is the best method and no harm is made to the infected file or the system.

Quarantine of the Infected file

The Anti-virus tries to make the file inaccessible to other programs, by moving the infected file to unreachable location in the system, without deleting it.

Deleting the Infected file

The Anti-virus deletes the file if the virus cannot be safely removed from the infected file.

Physical removal of infected file

If the infected file is in use by the Operating system, the anti-virus asks the user to delete the file and replace the file manually from a clean backup.

Seeking Help

If the virus has changed the registry and the anti-virus can't reverse the changes. The user is directed by the anti-virus to the anti-virus software's website to get an online help on what registry keys to be change or delete.

If all the methods fails to remove the virus or the infected file is critical, the anti-virus boots through the secondary OS to access files being used by the infected Operating System to remove the infected file.

6 Comments:

At 1:21 AM, Asyraf said...: Very good explaination.. The antivirus also have several problems like your computer will be slower (copy files, download files, open files) because the antivirus will keep checking your system.. Another thing is the antivirus won't recognize a new virus
until you download the update(if they update the new virus details)..
At 4:16 AM, Anonymous said...: And that is why I suggest to stop this pop-up advertisement from your blog.
At 8:12 PM, balakumar said...: thanks asyraf :) for the note... u r point is true and to mr. anonymous, the pop-up advertisement is removed :)... thanks
At 6:45 PM, Hiren said...: Very informative. Thank you
At 2:42 PM, Anshul said...: Nice and easy explanation bala. But sometimes I just wonder that the antivirus companies themselves release viruses to keep their market going.
At 6:54 PM, balakumar said...: Thank you Hiren and Anshul ... happy to find it was useful to you guys.. ya Anshul, somethimes I feel the same way .. :)