'heuristic analysis' on AVG

  • Thread starter Thread starter frankg
  • Start date Start date
F

frankg

Please can you explain what heuristic analysis is and what/how it works?

I have installed the free edition for a friend and have found that AVG
doesnt let them send any emails (out of Outlook Express) they all bounce
back with an AVG error message.
Even with the 'scan outgoing messages' unchecked.

However, I have found that unchecking the 'heuristic analysis' seems to
solve the problem. Why?

thanks
Frank
 
Please can you explain what heuristic analysis is and what/how it works?
Click to expand...

Most all antivirus use a blend of signature recognition and
heuristics. Heurustics look for code that is viral in nature (in the
case of viruses) or Trojan-like in nature. Basically, it's
"guesswork", and overly heavy heuristics lead to false positives.
I have installed the free edition for a friend and have found that AVG
doesnt let them send any emails (out of Outlook Express) they all bounce
back with an AVG error message.
Even with the 'scan outgoing messages' unchecked.

However, I have found that unchecking the 'heuristic analysis' seems to
solve the problem. Why?
Click to expand...

Probably because it's falsely alerting. You can check the file with
other av scanners and/or send a sample of the file to your av vendor
for analysis if you suspect that the file is actually suspicious.

Art

http://home.epix.net/~artnpeg
 
Most all antivirus use a blend of signature recognition and
heuristics. Heurustics look for code that is viral in nature (in the
case of viruses) or Trojan-like in nature. Basically, it's
"guesswork", and overly heavy heuristics lead to false positives.


Probably because it's falsely alerting. You can check the file with
other av scanners and/or send a sample of the file to your av vendor
for analysis if you suspect that the file is actually suspicious.

Art

http://home.epix.net/~artnpeg
Click to expand...

The files are not threatening . I went over there myself and tested a few
messages where there was no content, just a subject. They too were
bounced.The error isnt an alert to a virus or trojan or other malicious
activity. I forget the exact wording but to the effect that 'the message
couldn't be sent and to try and send it again'
 
frankg said:
The files are not threatening . I went over there myself and tested a few
messages where there was no content, just a subject. They too were
bounced.The error isnt an alert to a virus or trojan or other malicious
activity. I forget the exact wording but to the effect that 'the message
couldn't be sent and to try and send it again'
Click to expand...

The AVG7 Free email scanner has been problematic for many. It runs
all the mail through a proxy server, and the automatic setup doesn't
appear to be ready for prime time. Check the AVG forums at:

http://forum.grisoft.cz/freeforum/

I'm sure the proxy server settings can be set up manually, but I
won't even attempt to tell you how.

*My* advise, FWIW, is to uninstall AVG and reinstall with the Custom
Installation and do NOT chose to install the email scanner. As long
as the resident scanner is working properly, it will catch the
nasties anyway. Email scanners are (IMO) unnecessary and a waste of
resources -- more "fluff" to impress the impressionable than
anything else.
 
*My* advise, FWIW, is to uninstall AVG and reinstall with the Custom
Installation and do NOT chose to install the email scanner. As long
as the resident scanner is working properly, it will catch the
nasties anyway. Email scanners are (IMO) unnecessary and a waste of
resources -- more "fluff" to impress the impressionable than
anything else.
Click to expand...

And don't forget the infamous non-standard AVG email sig.
 
Back
Top