Does KAV has Virtual PC tecnology?

Discussion in 'other anti-virus software' started by Unep, Nov 24, 2005.

Thread Status:
Not open for further replies.
  1. Unep

    Unep Guest

    Does KAV has Virtual PC tecnology, like NOD32, bitdefender and Norman?
     
  2. Brian N

    Brian N Registered Member

    Joined:
    Jul 7, 2005
    Posts:
    2,148
    Location:
    Denmark
    No, it is only using signatures.
     
  3. TeknO

    TeknO Registered Member

    Joined:
    Feb 18, 2005
    Posts:
    147
    Location:
    Istanbul, TURKEY
    What is Virtual PC technology for A/V software? Could you explain?
     
  4. Unep

    Unep Guest

    Only signatures? But KAV has heuristics too...
     
  5. Unep

    Unep Guest

    This one: http://www.securitypipeline.com/network/18900335

    "Zajac: We have basically two general methods of heuristic technology. The first one is active, and the second is passive. The passive algorithm is based on analysis of the instructions in a particular file or in a particular piece of code. An expert system performs analysis of certain characteristic sequences of the code instructions. If the instructions have a virus- or worm-like nature, an alert is triggered. The second is even more sophisticated. It's based on virtual PC technology. We throw a file into a confined section of the memory where the entire computer is simulated with all its devices, memory, drivers, etc. Then we let the file--which arrives through e-mail--run in this confined, virtual PC environment. In this confined environment, our system can make a very good, educated guess regarding the malicious nature of a file. The trick is to have an algorithm which works in real time, does not trigger false alarms and works with a high degree of precision. In general, we're two to 50 times faster than any competing system. We have the only system in the world that not only detects all existing viruses in the world, but does it in record time."
     
  6. Don Pelotas

    Don Pelotas Registered Member

    Joined:
    Jun 29, 2004
    Posts:
    2,257
    Yes, it does also use heuristics, but the fast updating of signatures means that you will rarely see a heuristic detection. I have only had one or two.

    Anyway Kav 2006 will also add a proactive module consisting of these:
    http://img459.imageshack.us/img459/4461/kavproactive5zi.png
     
  7. Unep

    Unep Guest

    But you havan´t answered my question... :))

    Does KAV use virtual PC technology?
     
  8. Don Pelotas

    Don Pelotas Registered Member

    Joined:
    Jun 29, 2004
    Posts:
    2,257
    I didn't answer it because i didn't know what you meant by virtual PC technology, but if you mean sandbox, then no, it doesn't.:)
     
  9. Unep

    Unep Guest

    Hehehe... thanks Don Pelotas
     
  10. TeknO

    TeknO Registered Member

    Joined:
    Feb 18, 2005
    Posts:
    147
    Location:
    Istanbul, TURKEY
    I think there is a terminology confusion about Virtual PC Technology.

    Microsoft defines this technology as follows;

    "Virtual machine technology applies to both server and client hardware. Virtual machine technology allows multiple operating systems to run concurrently on a single machine. In particular, the Virtual PC and Virtual Server products allow one or more legacy operating systems to run on the same computer system as the current Windows operating system. Today, many older x86-based operating systems are supported by Virtual PC and Virtual Server. Virtual PC for Mac allows for one or more Windows operating systems to run on the Macintosh operating system, allowing users to run a Windows operating system and Windows applications on a Mac."

    Perhaps, we must talk about "Proactive Defense". It will be better. :) :)
     
  11. ()ne()n

    ()ne()n Guest

    Site Kaspersky:

    "And further back

    * First renewable antivirus databases released: viruses appeared so rarely that weekly updates were sufficient
    * First external antivirus databases developed: increasing antivirus engine capabilities and significantly decreasing update file size
    <b> * A processor emulator served as the basis for a heuristic analysor: unknown viruses were detected including polymorphic viruses"</b>

    Font:
    http://www.kaspersky.com/technologies
     
  12. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    I'd replace "Virtual PC" term with "Virtual Environment"...
    Also KAV2006 and Panda use host PC as "virtual environment". Only drawback is that you can't use such heuristics for On-Create/On-Copy events, but just for On-Execute...
     
  13. Atomic_Ed

    Atomic_Ed Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    389
    Does anyone know if the KAV 2006 beta will run under x64 xp?
     
Loading...
Similar Threads
  1. chabbo
    Replies:
    10
    Views:
    1,084
Thread Status:
Not open for further replies.