| Author |
Topic: Malwarebytes issues with virus detection on test file? |
Mitch Drumm
From:
Frostbite Falls, hard by Veronica Lake
|
Posted 11 Nov 2009 4:42 pm |
|
I am guessing some of you are familiar with the virus test files available at Eicar. They have been around a long time. For laughs, I downloaded three test files to my PC and then manually scanned them with AVG Free and Malwarebytes.
EICAR: http://www.eicar.org/anti_virus_test_file.htm
I downloaded 3 files:
eicar.com: AVG Free detected one threat; malware bytes detected 1 threat
eicar_com.zip: AVG Free detected two threats; malware bytes detected nothing
eicarcom2.zip: AVG Free detected three threats; malware bytes detected nothing.
I had to manually choose to scan these files to get a result---I wasn't prevented from downloading or saving them.
What conclusions are to be drawn from this??? |
|
|
 |
John Cipriano
From:
San Francisco
|
Posted 11 Nov 2009 8:19 pm
|
|
| MBAM isn't a virus scanner, so I think that's to be expected. There's still something of a distinction between viruses and malware. |
|
|
|
Mitch Drumm
From:
Frostbite Falls, hard by Veronica Lake
|
Posted 11 Nov 2009 9:04 pm
|
|
Any offhand opinion why MB would detect a threat in the first file, but not in the other two?
From the Eicar site:
The first, eicar.com, contains the ASCII string as described above.
The second version contains the test file inside a zip ARCHIVEe. A good anti-virus scanner will spot a 'virus' inside an ARCHIVEe.
The last version is a zip ARCHIVEes containing the third file. This file can be used to see whether the virus scanner checks ARCHIVEes more than only one level deep. |
|
|
|
Wiz Feinberg
From:
Mid-Michigan, USA
|
|
|
|
