expand for answer
Signature-Based Detection
The process used by antivirus software to identify potential virus infections on a system.
Similar items:
A file of virus patterns that are compared with existing files to determine if they are infected with a virus. The vendor of the antivirus software updates the signatures frequently and makes the available to customers via the Web.
[view]
[view]
A virus that modifies its own code as it travels from system to system. The virus’s propagation and destruction techniques remain the same, but the signature of the virus is somewhat different each time it infects a new system.
[view]
[view]
A virus that hides itself by tampering with the operating system to fool antivirus packages into thinking that everything is functioning normally.
[view]
[view]
Virus that attacks the MBR. When the system reads the infected MBR, the virus instructs it to read and execute the code stored in an alternate location, thereby loading the entire virus into memory and potentially triggering the delivery of the virus’s payload.
[view]
[view]
A virus that uses cryptographic techniques to avoid detection. In their outward appearance, they are quite similar to polymorphic viruses—each infected system has a virus with a different signature. However, they do not generate these modified signatures by changing their code; instead, they alter the way they are stored on the disk.
[view]
[view]
There are no comments yet.