So all of this afternoon i’ve been getting alerts from MSE and Bitdefender that it is detecting the EICAR test virus on my PC (In C:WindowsTEMP). Now, I am familiar with EICAR, but there is no reason it would be on this PC.Is anyone aware of any attacks or malware that masquerades as EICAR? I ask because it is continuously detected, with no action from me, i.e now browsers opened or any such thing. I may disconnect from the internet to see if it is still being affected…
I don’t suppose the machine in question is joined to a corporate network?
Occationally I.T depts will use domain credentials to put EICAR on all domain connected machine to test the A/V.
So for example – group policy pushes out the EICAR – A/V detects it, and the I.T dept corrolate the A/V results against the Domain Computers list to determine which machines either don’t have A/V on them, or it isn’t working well enough.
Viewing 3 reply threads
You must be logged in to reply to this topic.
– “TryHackMe – Behind the Curtain“ w/ Ben Spring and Ashu Savani on Thurs Aug 27 @ 1:00 PM US ET. Reg Open Soon!
– EH-Net Live! June – Video & Deck Available Now! for “CISO Underrepresented” w/ Mark Arnold and Steph Ihezukwu from June 30.