Tutorial Antivirus eScan ( Bagian 1 )
Reposting by : Nathan Gusti Ryan
Posted by : Ardhiansyah Firdaus [ firstname.lastname@example.org ]
eScan is a complete AntiVirus, AntiSpam and Content Security solution that provides proactive protection against Trojan, Worm, Rootkits, Keyloggers, Malware, Spam and Offensive Content.
New User Friendly Graphical Interface
eScan Protection Center has a virus monitor that constantly keeps monitoring files accessed by the user. The new and powerful On Demand Scanner is equipped with cache technology that leads to faster scans and is light on system resources.
The virus monitor scans not only single files but also files such as archives and self-extractors like ZIP, CAB, RAR and ACE. Many malware writers today pack their harmful code with UPX and archives so that they go undetected during malware scanning. eScan provides the power to stop such files from entering your computer.
This feature is found at eScan Protection Center > Protection > File Anti – Virus.
Objects to be scanned
The Objects to be scanned section on the left hand side panel lists all the drives, removable or non-removable on the system that will be monitored or scanned.
Actions in case of virus detection
The Actions in case of virus detection section on the right hand side lists the different actions to be taken in case of virus infection. There are many more options available for scanning of drives based on the user’s requirement.
This tab helps you to set the basic setting of File Anti-Virus such as destination path of logs, destination path for Quarantined objects, defining the path of the report file (log), folder to be used in case of an infection and size limit of files for real time monitoring.
AntiSpam and Content Scanning
The Non Intrusive Learning Pattern (NILP) technology is used to filter all junk and spam mails.
This feature is found at Anti-Spam > Settings > Phrases.
This feature is found at Anti-Spam > Settings > Phrases.
Non Intrusive Learning Pattern (NILP)
MicroWorld ‘s revolutionary technology Non Intrusive Learning Patterns (NILP) works on the principles of Artificial Intelligence to create an adaptive mechanism in Spam and Phishing Control. This technology can analyze each email according to the Behavioral Pattern of the user and can take a decision there after. NILP has the capability to learn on its own and can also incorporate regular research feeds from the MicroWorld Server.
This technology checks the validity of all the headers in the mail and if any of the headers are found to be invalid, the mail will be considered as Spam.
X-Spam Rules are rules that describe certain characteristics of a mail and they are matched against the mail header, body and attachment to generate a score for each mail. If the score crosses a threshold value, then the mail is considered as Spam.
Sender Policy Framework (SPF) is a world standard that helps to prevent forgery of sender address and is a powerful mechanism to stop Phishing mails.
Unlike normal RBLs, SURBL check works by scanning for the presence of names or URLs of Spam websites in the message body.
RBL is a DNS Server that lists IP Addresses of known Spam sending machines. If the contacting IP is found to be in one of the blacklisted categories, the connection is terminated.
eScan provides you with a highly advanced feature for blocking non-business and offensive content accessed by employees in an organization. These websites are blocked based on the words and phrases appearing in such websites. Algorithms are employed to avoid any false positives in this process. This same feature is used for advanced Parental Control for safeguarding kids from accessing websites containing adult content.
Real time website scanning and blocking
eScan scans websites in real time. When offensive words that you specify are detected in a website, the site is blocked and a message is displayed giving reasons for blocking the site.
Block websites based on predefined pornographic keywords
eScan has parental control feature that allows you to control access to websites You can specify words and phrases like xxx, porn, adults only, poker, etc. that occur in porn and gambling sites. If the accessed site contains such words, it is blocked and not allowed to display on your system.
The following points are explained:
Category carries related group of websites access to all websites that are defined in a category can be either blocked or allowed. For e.g. the category ‘Pornography’ will have websites related to porn. You can block or allow access to sites that occur in this category. Categories like pornography and gambling have been created with a block status. You can create user defined categories.
You can add to the list of words that relate to a category. For e.g. for porn category, you can add words like babes, xxx, etc. If the category Pornography is blocked then eScan blocks any site that has words like babes, xxx, etc.
Some well-known sites like playboy, hustler, etc. do not change names. You can specify such sites and access to them is blocked outright.
Websites can be accessed by entering their IP (Internet Protocol) number. The software should be able to translate the IP number to its web site name and block access if it contains restricted words or is on the banned list.
eScan allows system administrators to block images, applications, audio and video files, popup ads, cookies, etc. from an accessed web site.
Restricted words like babe, sex, etc. can be found in legitimate sites. In a website, if any words from the list appear as a combination, for more times than set in the threshold value, the site is blocked. This ensures that legitimate sites are displayed and only sites related to porn are blocked.