How Does The Antivirus Software Works In All Devices?

Antivirus software has a healthy list of current virus definition files while analysing program files if he finds any program that matches a definition file it will be treated as suspicious and harmful and will be either deleted or quarantined. Program files before entering the computer go through the antivirus scan, while scanning those who matches the definition are classified as a virus and stopped from entering the system and are blacklisted. 



The other files that passed through this scan are considered as safe and will be allowed to enter and run in the system. However, if the user feels that some of the program files that are blacklisted by the antivirus program are good and will not cause any harm to the computer, then he can move them back in the whitelist. Once the application file comes in the whitelist, it will function and can enter in every program and data if necessary without any interruptions by antivirus program.

How Antivirus protects from the virus?

An antivirus can use following forms of virus detection to protect computer from getting affected by virus-
·   Heuristic-based detection- It is used in combination with signature based detection. Even in the absence of latest virus definitions, it helps to detect new or variant version of malware quickly. If a program running on your system is trying to open every EXE file and infecting it by writing a copy of it, then it will be detected by it and will be blacklisted.

·  Signature based or virus dictionary detection- It is the most traditional antivirus software. It compares all EXE files on the computer with its known list of illnesses. If any of the EXE file match with its schedule it will be considered as a virus. Once an executable file is downloaded, it is scanned instantly.
·        Behaviour based detection- If a file is changing settings of other programs working on your computer or deleting some of the files, then it will be detected by it and moved to the blacklist.

·  Sandbox detection- It creates an emulated environment for any program if found suspicious and makes it run in that environment and if that program shows some abnormal behaviour in that environment then it will alert the user first.
·   Cloud antivirus detection- It is an anti-malware technology that analyses data from protected computers by examining it on provider’s infrastructure by lightweight agent software.

·    Full system scan- This type of scan is done manually by the user. He can open the antivirus program and select the option of full system scan. He can also right click on the particular file that he wants to examine. A full system scan is not necessary as you are already running an antivirus program and it will keep on working in the background without any interruptions.

Top 5 best antivirus in the market:
  • 1.     Bit Defender Antivirus Plus.
  • 2.     F-Secure Antivirus.
  • 3.     Kaspersky Antivirus.
  • 4.     Norton Security Standard.
  • 5.     Panda Antivirus.






Comments