Antivirus programs

To date, considerable experience has been gained in the fight against computer viruses, developed antivirus programs, known measures to protect programs and data. There is a constant improvement, the development of antivirus tools, which in a short time from the moment of detection of the virus - from a week to a month - are able to cope with newly emerging viruses.

To date, considerable experience has been gained in the fight against computer viruses, developed antivirus programs, known measures to protect programs and data

The creation of anti-virus programs begins with the detection of the virus by anomalies in the operation of the computer. After that, the virus is carefully studied, its signature is identified - a sequence of bytes, which fully characterizes the virus program (the most important and characteristic parts of the code), the mechanism of the virus's work, the methods of infection. The information obtained makes it possible to develop methods for detecting a virus in computer memory and on magnetic disks, as well as algorithms for neutralizing the virus (if possible, removing the virus code from the files - "treatment").

Known antivirus programs can be divided into several types, listed below.

Detectors. The purpose of these anti-virus programs is to detect the virus. Virus detectors can compare boot sectors of diskettes with known boot sectors generated by operating systems of different versions, and thus detect boot viruses or perform file scanning on magnetic disks in order to detect signatures of known viruses. Such antivirus programs in their pure form are currently rare.

Phages are antivirus programs that can not only detect, but also destroy a virus, i.e. Remove its code from infected programs and restore their working capacity (if possible).

Antivirus programs - auditors - Controls possible paths for distributing virus programs and infecting computers. Antivirus software-auditors are the most reliable means of protection against viruses and should be included in the arsenal of each user. Auditors are the only means to monitor the integrity and changes in files and system areas of magnetic disks.

The Watchman is a resident anti-virus program permanently located in the computer's memory, controlling computer operations associated with changing information on magnetic disks and warning the user about them.

Vaccines are called antivirus programs that behave like viruses, but do not harm. Vaccines protect files from change and are able not only to detect the fact of infection, but in some cases "cure" the virus-infected files. Currently, anti-virus vaccine programs are not widely used, as in past years some incorrectly working vaccines have caused damage to many users.

Despite the apparent abundance of anti-virus programs, even all of them together do not provide complete protection of programs and data, do not give a 100-percent guarantee against the impact of virus programs.

With careless work with anti-virus programs, you can not only transfer viruses with them, but instead of treating files, it's hopeless to spoil them. It is useful to have at least a general idea of what computer viruses can and can not do, about their life cycle, about the most important methods of protection.

Tools