Hi,
When I have a big amount of files to be submitted, then I usually download latest version of Dr.Web CureIt and scan samples using it. I noticed that many samples undetected by CureIt are detected by Dr.Web engine at VirusTotal. Why does that happen? I receive many information about processed tickets, they sometimes said that the files are already detected and a record exists in the database. No, I don't mean tickets processed after few days (then that's normal that some file are possibly detected, the researchers could already get them from another source, not from my submission, so it was added), I mean the tickets that are processed by ticket auto resolver almost instantly, usually after few minutes. I check the suspicious files using VirusTotal, and yes, they're detected. But why CureIt doesn't detect them? Does it use another version of the engine?
Сообщение было изменено malware1: 02 Март 2014 - 17:11