Security Basics mailing list archives
RE: Looking for a Trojan
From: "David Harley" <david.a.harley () gmail com>
Date: Tue, 20 Jan 2009 18:33:37 -0000
AV software can only detect the virus/trojan it has definition for. So the argument that old trojan can be detected by updated AV can be said true with an assumption that since the trojan is old its would have been sampled by AV companies and most of AV software have it in the defination database. So, if u get a new trojan which is just days old then many AV (or even none) would detect it.
This is only partly true. Modern antimalware uses a variety of techniques (heuristics, sandboxing etc) to detect new malware proactively that it hasn't seen before. What it doesn't do is detect -all- new malware... -- David Harley BA CISSP FBCS CITP Small Blue-Green World
Current thread:
- Looking for a Trojan Juan B (Jan 19)
- Re: Looking for a Trojan Rob Nelson (Jan 20)
- Re: Looking for a Trojan Uwe Thiess (Jan 20)
- RE: Looking for a Trojan Nick Vaernhoej (Jan 20)
- Re: Looking for a Trojan michael (Jan 20)
- Re: Looking for a Trojan Adam Pal (Jan 20)
- Re: Looking for a Trojan Shreyas Zare (Jan 20)
- RE: Looking for a Trojan David Harley (Jan 20)
- Message not available
- Re: Looking for a Trojan Shreyas Zare (Jan 20)
- Re: Looking for a Trojan David Maus (Jan 20)
- Re: Looking for a Trojan Wagner Brett (Jan 21)
- Re: Looking for a Trojan Javier Reyna Padilla (Jan 20)
- Re: Looking for a Trojan ArcSighter Elite (Jan 27)
- <Possible follow-ups>
- Re: Looking for a Trojan dan . crowley (Jan 22)
- Re: Looking for a Trojan Eitan Adler (Jan 22)
- Re: Looking for a Trojan Sarapan (Jan 23)