@Brummelchen If a machine was infected with powerful malware that can block access of antimalware solution to the file system, no other solution will be able to detect it. You can only reformat the machine. But afterwards, how can you ensure that you will not get infected again afterwards? With traditional antivirus, you are depending on the detection of one single antivirus engine (some of them two or probably three). And to make it worse, this solution will not notify you when something new (without you knowing) trying to execute in your machine. With SecureAPlus all new application trying to run will need to get your approval. If you do not run any application and suddenly there is a notification that a new application trying to run, you will need to be on guard and probably just prevent them to run. And based on Imperva study (http://www.imperva.com/docs/HII_Assessing_the_Effectiveness_of_Antivirus_Solutions.pdf), only less than 10% of malware get classified on the first week of finding. This finding might be old, but with current rate of new malware found on the wild, I believe the number is even worst now.