Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Consumer Products
»
Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier)
(Moderators:
hectic-mmv
,
LudekS
,
chytil2
) »
memory scanning or dump
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: memory scanning or dump (Read 1509 times)
0 Members and 1 Guest are viewing this topic.
victor43
Guest
memory scanning or dump
«
on:
April 18, 2011, 10:57:18 PM »
Does anyone know of a good resource on how AV software go about performing a memory scan ? I would like to find out how they enumerate all running processes and whether kernel objects are scanned ?
Logged
igor
Avast team
Serious Graphoman
Posts: 11849
Re: memory scanning or dump
«
Reply #1 on:
April 18, 2011, 11:01:19 PM »
I'd say the focus of most AVs (well, I probably shouldn't speak for other products, but it is the case of avast!) is scanning files.
After all, when the malware is in memory, it's already too late...
Logged
Lisandro
Avast team
Certainly Bot
Posts: 67194
Re: memory scanning or dump
«
Reply #2 on:
April 18, 2011, 11:38:05 PM »
Anyway, you could use KillSwitch (Comodo) to scan all the process in memory on demand.
Logged
The best things in life are free.
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Consumer Products
»
Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier)
(Moderators:
hectic-mmv
,
LudekS
,
chytil2
) »
memory scanning or dump