beware === Behavior Shield

For general computer discussion & help, come here

Moderators: Bakhtosh, EvilHomer3k

Post Reply
User avatar
Dave Allen
Posts: 934
Joined: Wed Oct 13, 2004 2:12 am
Location: New London, CT

beware === Behavior Shield

Post by Dave Allen »

Lately my Firefox has stopped connecting quite often, along with Steam, Gog Galaxy, etc.
The only thing solving the problem (temporarily) is a Windows restart, but the (SSD) shutdowns are taking 5 minutes instead of the normal 10 seconds.
So... i learned how to enable verbose shutdowns and i discovered the culprit is the aswibIDSAgent service. It's a new feature of Avast.

And from their Blog:
Behavior Shield can be compared to real-life security that is on patrol duty at a major event. As real-life security would observe a crowd for suspicious or dangerous behavior, Behavior Shield monitors all the programs running on your PC that have passed through initial security checks. It carefully observes program behavior and if it notices something uncharacteristic, it starts looking even closer. Once it identifies something really fishy, it stops the action and reports the behavior to you, before any damage can be done. So, if for example, your mail client starts a javascript interpreter connecting to the internet, Behavior Shield will step in, as this isn’t normal behavior for a mail client and could lead to a malicious download.

This may sound relatively easy to do, but in fact, Behavior Shield is very complex under the hood. At the heart of it is a real-time graph that describes all the actions that the individual processes in the operating system are doing, including their relations, code injections, etc. On top of that, there is a lot of logic that allows us to distinguish good from bad – and for that, we rely on artifical intelligence, namely neural networks. And finally, there’s the powerful Avast cloud that puts all the actions in a global context and allows for ultra-fast reactions across all the protected endpoints.

With Behavior Shield we can protect against zero-second threats, malicious programs and cyber spying on passwords and bank account details that would normally not be possible using traditional detection methods. But the best thing about it is that it has proven to be especially powerful against ransomware. Although ransomware samples evolve and morph rapidly, they still exhibit specific behaviors that can be identified. Behavior Shield is capable of detecting and stopping new ransowmare variants that haven’t been seen before – something that’s been inherently difficult using other protection mechanisms.

While powerful, one would suspect Behavior Shield has a greater chance to report false positives. However, using a huge cloud-based database, we can filter these out as well. If there’s a program you absolutely trust, you can easily add it to exclusions and Behavior Shield will leave it unsupervised. Additionally, a copy of all reported files get sent to Avast for manual inspection, so any false positives won’t happen more than once.

Behavior Shield comes standards in all versions of Avast, including Avast Free Antivirus, and doesn’t need to be activated or set-up to start protecting you. It is yet another innovation brought to you by Avast to deliver on its mission of protecting you online, because we know you have better things to do.
I think I need to find another AV :(
Jesus said, "Do not be afraid of those who kill the body but cannot kill the soul. Rather, be afraid of the One who can destroy both soul and body."[Matt 10:28] God can totally destroy us.

Jesus also said, "For my Father's will is that everyone who looks to the Son and believes in him shall have eternal life, and I will raise them up at the last day.”[John 6:40] Eternal life is conditional.

His disciple John wrote, "Whoever has the Son has eternal life; whoever does not have the Son of God does not have eternal life. [1 John 5:12] Eternal life is optional.
User avatar
FishPants
Server WhOOre
Posts: 4658
Joined: Fri Oct 15, 2004 1:38 pm
Location: Canada

Re: beware === Behavior Shield

Post by FishPants »

Sophos home is free, and in my humble opinion superior.
No.
User avatar
Dave Allen
Posts: 934
Joined: Wed Oct 13, 2004 2:12 am
Location: New London, CT

Re: beware === Behavior Shield

Post by Dave Allen »

Those parental controls in Sophos look pretty sweet. My wife's been reminding me that our grand kids are visiting again this summer and I have to do something to monitor the computer in the spare room.
How obnoxious it is pop-up-ad-wise? And do they make it easy to turn it off and on?
Jesus said, "Do not be afraid of those who kill the body but cannot kill the soul. Rather, be afraid of the One who can destroy both soul and body."[Matt 10:28] God can totally destroy us.

Jesus also said, "For my Father's will is that everyone who looks to the Son and believes in him shall have eternal life, and I will raise them up at the last day.”[John 6:40] Eternal life is conditional.

His disciple John wrote, "Whoever has the Son has eternal life; whoever does not have the Son of God does not have eternal life. [1 John 5:12] Eternal life is optional.
Post Reply