How does badware escape discovery from definition-based products?
Definition-base products require definitions to recognize security threats. Without definitions badware remains undiscovered. Definition-based products cannot identify new and unknown forms of badware (security threats). Some forms of badware once on your computer, are specifically designed to prevent updating the definitions of your security products. This means any new badware items will not be discovered (threats remaining in the definitions list will be found). If definitions are not up to date you may not realize you are unprotected from new threats. This is the time you are the most vulnerable. Some competing products find and clean the badware items only to later rediscover the items again and again. Generally this indicates partner processes either unknown to your security product or polymorphic in nature, are protecting and rebuilding the badware. The definition-based programs will not be able to completely remove these type of threats. Some anti-virus products use live-protec
