Symantec is treading a new path – using virus detection technology that does not need signature files. Recently many security researchers have spoken out against the use of signature files. Ironically almost every popular anti-virus solution uses some type of signature file system.
How do signature files work?
Before a signature file can be created the antivirus company needs to know that a particular virus exists. Even thinking about this for a moment you can easily see that this is a major weakness. They create signature files by looking at honeypots, emails from users, and calls from customers. What does that mean? It means that some unlucky sucker needs to get infected with a virus before you can be protected.
In addition, another significant weakness is when a virus changes itself while propagating. If this happens, the signature becomes useless.
So you can see where the problem is. There needs to be a way to detect new viruses without needing constant updating from a central repository.
That’s what AntiBot aims to do. It looks at the behavior of programs on your system to determine if they are causing harm. Over time it can improve its detection by seeing how you normally use your computer, and it will raise a red flag when something deviates from the norm.
Keep in mind that Symantec is marketing this as something you would use in addition to a signature based anti-virus solution – so it would not be a replacement.
Here are the main features of the current beta:
-Actively and continuously monitors your PC’s applications and processes 24/7 so you’re always protected
-Thoroughly removes detected bots and malware and their related components, custom installation files and registry settings
-Strengthens any security product by providing an additional layer of protection against bots and other emerging threats
If you want to try it out, the download page can be found here
Note: This beta doesn’t seem to bog my system down like every other Symantec product 🙂
One more thing…Subscribe to my newsletter and get 11 free network administrator tools, plus a 30 page user guide so you can get the most out of them. Click Here to get your free tools