|
I am not sure how the anti virus programs work but I would imagine that they search for a binary pattern that corresponds to a sequence in their data base.
This should work OK if the search looks at the whole virus but if the data base is simplified by reducing the length of the search pattern a small number of anomallies can occur. This can happen particularly with some compresion programs that end up with a binary sequence that resembles the search portion of a virus.
The simplified free programs will find the sequence and inhibit the action to be safe wheras a top notch program may look deeper if the abrieviated sequence appears and not record as a virus if the rest of the virus sequence is missing.
The biggest problems with the simplified programs is they usually wipe the (wanted) program so that you can't get around it.
Barry
PS there is a program in MinGW named elfedit.exe that has two versions one is 680KB and one that has 1.05MB. Malware bytes stops the 680KB version but not the 1.05MB version. A detailed examination of both files by Anti Virus program suppliers does not support the suspect Trojan. No harmful effects have yet been discovered by executing the suspect version of the program.
B.
|