sunshine803 Posted November 22, 2007 I downloaded the zipped version of the sample virus from eicar's website. I scanned it with NOD32, AVG AS, SAS free and a-squared free. NOD32 and AVG identified it. The other two found nothing wrong with it. I am puzzled and wonder if such a well known pseudo virus is not 'captured', what about the lesser known or new REAL ones? There must be a logical explanation I hope... Share this post Link to post Share on other sites
Pandato Posted November 22, 2007 You may wish to review our Blog on detection of simulated threats or samples. https://forums.superantispyware.com/viewtopic.php?t=779 Share this post Link to post Share on other sites
SUPERAntiSpy Posted November 22, 2007 I downloaded the zipped version of the sample virus from eicar's website.I scanned it with NOD32, AVG AS, SAS free and a-squared free. NOD32 and AVG identified it. The other two found nothing wrong with it. I am puzzled and wonder if such a well known pseudo virus is not 'captured', what about the lesser known or new REAL ones? There must be a logical explanation I hope... As Pandato indicated, we don't detect the simulators as they are not threats, we focus on threats. Share this post Link to post Share on other sites
sunshine803 Posted November 22, 2007 Thanks for the explanation. I understand your points. I wish however that there was at least one malware sample that could be safely used to observe how SAS reacts and also prove that SAS is working Share this post Link to post Share on other sites
