Ids

Why was removed from the virus proactive IDS module, and why is not available for the advanced mode of AVC, in the version of BDIS is a paranoid mode.

Comments

  • I would like to go back to my problem, I have a test virus, which bypasses the proactive defense module AVC, and the IDS successfully block the infection.

  • Here's the video.



  • The file is infected and will be detected as Trojan.MBRRansom.C


    Regarding the AVC module,the file will be further analysed.

  • Rampant
    Rampant ✭✭
    edited October 2011

    Thank you) but why IDS module was removed from the version of AV?

  • Where it is possible to find the description of technology IDS, and in what distinction with technology AVC. Thanks.

  • coolcool1227
    coolcool1227 ✭✭✭
    edited November 2011

    Just for information


    See the link and also the topic


    AVC


    BitDefender ® Active Virus Control is an innovative proactive detection technology which uses advanced heuristic methods to detect new potential threats in real time and provides a layer of protection against new threats for which signatures have not yet been released. It monitors each program running on your PC, as it executes, and notes malware-like actions. If enough such actions are detected, the program which performed them is declared harmful.


    Unlike any other heuristic technology that only checks files when they are accessed or first started, Active Virus Control monitors everything applications do as long as they are active.


    Monitoring is achieved through DLL injection at process startup - that is, each process is assigned a "watcher" which stays with it throughout the entire time the process is active, reporting certain activities to a server which in turn decides (based on how many potentially harmful activities and of what kinds a process has performed) which processes should be classified as malicious and stopped.


    IDS


    It is the heuristic monitoring of the applications trying to access network services or the Internet. Which means that application running on the computer receives a score whenever they perform a action on the computer. The software is evaluated from a malware point of view and if it reaches a certain level, then it is topped as being a malware.

  • Hi Rampant.


    Thank you for your feedback.


    Should you need further information, please do not hesitate to reply to this message.


    Have a nice day.

  • coolcool1227
    coolcool1227 ✭✭✭
    edited August 2012

    Actually the detail shown in Bitdefender in front of IDS slider settings is not whats its definition says, which doubt the user that it should be alongwith AVC as in the Advanced settings in Bitdefender 2011 version.


    Permissive: Protects against installation of malware drivers. Protects Bitdefender files from being altered unauthorized 3rd party applications. Will generate a low number of alerts.


    Normal: Blocks dll injections, installation of malware drivers. Protects Bitdefender files from being altered unauthorized 3rd party applications. Will generate a moderate number of alerts.


    Aggressive: Flags keylogging attempts, Internet Explorer leaks and attempts to change desktop background or the IE home page. Protects against dll injections, installation of malware drivers. Protects Bitdefender files from being altered unauthorized 3rd party applications. Will generate a high number of alerts.

  • rootkit
    rootkit ✭✭✭

    Hello :)


    For other questions related to IDS, please post on this area:


    http://forum.bitdefender.com/index.php?showforum=293


    Thank you!

This discussion has been closed.