Sorry mate. I was up to my eyeballs. Thanks for the comment.

First of all, it is very important to understand that current anti-virus scanners are working with already known malware. But, if malware module is caught, the revenue rate for “bad guys” is getting down, that is why it is very important for them to do not allow AVers to be up-to-date. There are many methods to do that- constant module updation, rootkits, DDOS of the anti-virus labs with the thousands of the samples per day. Heuristic mechanisms are working good for already known bypass methods of it, but a new one comes every single day. That is why you think that scanners are getting dumber. It is more and more obvious that those blacklisting technologies are out-to-date, they are more and more useless.

Behavioural technologies can’t cure malware in common case (yes, there are some blacklisting HIPS like AntiBot, but I see no difference if some tool is using code or behavioural signatures- false positives and false negatives is their destiny), but may gives you a really high, honest 90-95% of malware prevention against any kind of it, known and unknown, with no misses. So, why to loose couple of hours with HijackThis, AVZ and anti-rootkit tools if malware prevention is much more obvious and simple thing? Yes, right now it is “out of box”, not something you used to use, but its time is coming… Resistance is useless, join people who already lives with only behavioural protections and never being infected!

Ha! Yes, I know. As long as you add a disclaimer its all good.

Fair point. Care to elaborate?