Protection-functionality's Differences Of The Trafficlight's Versions And Eicar-test

TrafficLighter

Good day!

What the protection's differences between the Antivirus web filter by your TrafficLight for All browsers version and plugins' for (Chrome or Firefox or Safari) versions?

So, the picture-plate-table show only a half-protection for (Chrome or Firefox or Safari)'s functionality version.

TrafficLight for All browsers version make autoloading process. So, does any next version of browser's plug-in for (Chrome or Firefox or Safari) will has full Antivirus web filter?

What about the version for Opera browser - does it will?

Does TrafficLight has full-functional heuristic analizator through the cloud?

With conditions of upgraded Windows OS, up-to-date browser and good firewall with proactive protection: Does TrafficLight's version for All browsers give full-functional web protection from any kind of HTTP web-malwares?

I know your instruction how to test TraffiсLight through the button but I tried to download EICAR test file, but there is no any alert.

Does it normally?

What about alerts for downloading of archived files with malware? Must be?

rootkit

Hello

In that table

http://trafficlight.bitdefender.com/extensions.html

you can see that only the browsers that use extensions are affected.

It's not a half protection thing, it just that in some cases, the detection can not be delivered by the cloud(example: a page that was declared clean and in the meanwhile was infected by a Java Exploit).

In order to detected this, you need a local antivirus engine that could analyze the cache generated by the browser.

The TrafficLight module from the desktop product has a different configuration and is designed to work together with the local antivirus engine.

Take care.

TrafficLighter

Hello!

Thanks for answer!

So, does the TL plugin for browser (not TL-process with mini av-engine) is only previous-analyze-reputation service with ready-made results or it's with everytime analyzing?

Have a question again: Does TrafficLight scan static links or dynamically? For example, if there is a redirect, the TrafficLight's cloud-service will scan content not those which will receive by user's browser. Or not? If the situation is like for example, Does it will improve?

TrafficLighter

Read: http://translate.google.com/translate?sl=r...php%3Ft%3D12696

And what about your TrafficLight plugins and program? Are there some those vulnerabilities like surface static scans? What about many-dynamical-proxies-IPs protection from anti-anti-malware oriented bots (possible also BitDefender AV-laboratory's IP-oriented)?

TrafficLighter

Read: http://translate.google.com/translate?sl=r...php%3Ft%3D12696

Sorry, If some troubles with link.

Read: http://virusinfo.info/showthread.php?t=12696 throw http://translate.google.com/

zeus.bd

Hello ,

I'll try to explain in detail the differences between the extension and the full product. For that I'll be referring to TrafficLight ( the full product with av-engines ) as TL and the extenstion as TLL ( TrafficLight Lite ).

TL scans all incoming traffic HTTP in all browsers a user has , it does not install an extension in the browsers.

The main difference between TL & TLL is that , TL scans the raw traffic( data packets ) that reach the browser , thus being able to find detect exploits in web pages the engines are aware of , where as TLL only queries the cloud with the link a user visits or in the case you mentioned earlier is redirected to.

As far as protection goes TL offers a more comprehensive protection due to the AV-ENGINE scan.

For example a page that is not in our cloud database will be blocked by TL ( if found infected during the traffic scan ) but not by TLL because the cloud does not now that that particular web page is infected.

Both offer Anti-Phishing protection with cloud & signature scan , search-engine link scanning based on our cloud technology and features independent of each product.

If there are any other questions please ask them.

Best regards,

Daniel.

TrafficLighter

Daniel.M, thanks for qualitative answer.

What about Google search results' and TL's or TLL's verdicts near? Are there every time-case testing with cloud's browsing emulation Or there are Last case's reputations before this case?

zeus.bd

Didn't quite get the question straight but in the case you wanted to know whether the links are scanned on-the-fly or are reputation based( the results are already in a database ) , the answer is that Google, Bing, Yahoo results on links which are shown in the search engines come from our cloud database.

The flow is as follows :

Search engine query -> BD Cloud service query -> response to user