Jump to content
Posted 05 December 2006 - 08:54 PM
Posted 06 December 2006 - 12:49 PM
avast Virus detection
...it's a false positive of Panda because Panda does not encrypt its database
ClamAV Mailing List Archive
Viruses have been detected in some of the 'Panda Antivirus' files on my computer...Why is this?...When an antiviral program scans a file for viruses, it compares all the signatures (of all viruses) in the database with the signatures in that file. If the signatures match (they are the same), the file is marked as infected. For an antivirus program, it is important to hide this database of signatures somehow - e.g. by encrypting it. Panda Antivirus does not encrypt its virus database - the signatures inside are clearly "visible" to other antiviral programs, so they detect this file as infected (but there is actually no virus inside - only the signatures are the same).
The problem is that Panda still ships files that contain "plain viruscode", other vendors encrypt such files to avoid such false positives. So Clam is right somehow, it found the bytesequence of the virus in the file.
Posted 06 December 2006 - 06:11 PM
0 members, 0 guests, 0 anonymous users