What are the strategies/identification methods employed by an Antivirus to identify viruses? Various methods like Signature based detection, Rootkit detection, Heuristics and Real-time Protection are deployed to identify any alteration in the system code due to the infection caused by malware.
Signature based detection involves pattern identification within a code that is capable of execution. It has got some stored patterns to identify the malware attacked. There are also chances that malware with unknown signatures could affect the system and hence in such cases Heuristics could be followed. With the help of generic signatures, a Heuristics approach new malware and new viruses can also be identified along with any slight variations in a code.
By running a file in a sandbox, Antivirus packages are capable of figuring out the actions of a file with a clear-cut identification of the malicious actions observed.
Antivirus software might also have some drawbacks for some of them can easily deteriorate the performance of a computer. Handpicked reputed antivirus software like Avira, Avast, AVG, Kaspersky, McAfee and Norton are absolutely worth a buy.