Interesting: Myths about Dr.Web Anti-virus

Discussion in 'other anti-virus software' started by Miyagi, May 16, 2006.

Thread Status:
Not open for further replies.
  1. Miyagi

    Miyagi Registered Member

    Joined:
    Mar 12, 2005
    Posts:
    420
    Location:
    Honolulu, Hawaii
    Interesting myths about Dr.Web Anti-virus :doubt: :

    The quantity of unbelievable myths spread on the Internet about Dr.Web Anti-virus is a constant source of surprise for our company.
    We have decided to collect the myths we could find about Dr.Web Anti-virus and ask you too to send us myths about our product!
    - DrWeb.com

    http://support.drweb.com/faq/a15/
     
  2. Stefan Kurtzhals

    Stefan Kurtzhals AV Expert

    Joined:
    Sep 30, 2003
    Posts:
    701
    It seems not a myth that Dr.Web can't tell the difference between a behaviour blocker and heuristic detection by scanning. :rolleyes:

    Oh and they spread myths aswell:

    "In addition, there are certain algorithms in Dr.Web’s heuristic analyzer which help to detect new macro viruses – no other anti-virus has such functionality."

    Basically, every other antivirus product on this planet has macro heuristics for years. :rolleyes:
     
  3. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    This is not a myth list but a reversed FAQ and nothing else. :rolleyes:

    I could make a 30 page list of myths about avast! if i'd want.
    It's not about myths at all, but about statements of unknowledgeable people.
    I can see same number of such "myths" for any antivirus on the market, so this one from DrWeb doesn't really "surprise" me if we can even talk about surprises...
     
  4. sergeyko

    sergeyko AV Expert

    Joined:
    May 16, 2006
    Posts:
    56
    Does it really seem so? There is an option of using heuristic in Dr.Web, but what is a behaviour blocking you are talking about?
     
  5. sergeyko

    sergeyko AV Expert

    Joined:
    May 16, 2006
    Posts:
    56
    I thought a myth is a statement of unknowledgeable people...
     
  6. Miyagi

    Miyagi Registered Member

    Joined:
    Mar 12, 2005
    Posts:
    420
    Location:
    Honolulu, Hawaii
    I think the myths mentioned by Dr.Web are those that have been questioned to them many times. They are explaining, informing, and clarifying to the audience from their belief. I, highly doubt, that they are mentioning the myths to falsely accuse or dis-credit other av-vendors ;)

    As far as the technical information, I'll leave this to the experts and developers. :)
     
  7. Zveroboy

    Zveroboy Registered Member

    Joined:
    May 16, 2006
    Posts:
    4
    ...and what about Avast! ?
     
  8. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    Macro generics :p
     
  9. TAP

    TAP Registered Member

    Joined:
    Aug 17, 2004
    Posts:
    344
    As far as I've seen, avast! also has generic detections/signatures for many type of malware as the following

    Win32:Trojan-gen. {UPX!}
    Win32:Trojan-gen. {VC}
    Win32:Trojan-gen. {Delphi}
    Win32:Trojan-gen. {Other}
    VBS:Malware [Gen]
    VBS:Generic-Direct
    VBS:Malware [Encrypted]
    VBS:Malware [Script]
    Win32:Adware-gen. {Adw}
    Win32:Spyware-gen. {Trj}
    Win32: Dialer-gen. {Trj}

    and for some malware families such as

    Win32:Swizzor-gen [Trj]
    Win32:Spybot-gen [Trj]

    I've seen avast! uses its generic detection method to detect many .html files that infected by VBS:Redlof virus as VBS:Malware [Script].
     
    Last edited: May 16, 2006
  10. Zveroboy

    Zveroboy Registered Member

    Joined:
    May 16, 2006
    Posts:
    4
    Realy?
    In avast! 4 Professional Edition heuristic only mentioned in e-mail modules - not in macro.
     
  11. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    You don't exactly need heuristics to detect new stuff. Especially not for macros that can be more predictable than lets say new malware written from scratch in EXE form with it's own crypto and packer algorithm. At least to some degree.
    You'll have to ask Alwil team for more details, coz i don't know their in detail engine specs.
     
  12. Zveroboy

    Zveroboy Registered Member

    Joined:
    May 16, 2006
    Posts:
    4
    Dr.Web can detects unknown vatiants of malware not only in macro, but also in mail worm, network worms.
     
  13. TAP

    TAP Registered Member

    Joined:
    Aug 17, 2004
    Posts:
    344
    There're some Macro virus generator available, so this whole macro virus family can be likely detected by generic detections.
     
    Last edited: May 16, 2006
  14. Zveroboy

    Zveroboy Registered Member

    Joined:
    May 16, 2006
    Posts:
    4
    Very intristing :D
     
Loading...
Thread Status:
Not open for further replies.