I downloaded the Trojan simulator file today to test some anti Trojan programs. I won’t post a link unless the mods say it’s all right. It’s a file like the eicar test file but for Trojan software testing. I was impressed with TDS3 as it easily found it in the zipped file. Ewido did not find it in the zip file. Although BoClean did not find it while it was being downloaded upon execution BoClean jumped into action and deleted the executable.

Try submitting the file to ewido (submit a suspicious file in the ewido main menu).

Did you submit this file to ewido because if I right click and choose 'scan with Ewido' Ewido alerts me about the 2 infected files contained in the .zip.

Thanks,

Chris

Hi divedog,
{QUOTE-> I won’t post a link unless the mods say it’s all right. <-QUOTE}It's alright, and thank you for asking first. ;)

Trojan Simulator was created by Magnus, creator of Trojan Hunter, as a risk-free way to test a trojan scanner. Here is the webpage with more details: http://www.misec.net/trojansimulator/

Also, see these discussion threads:
Just Released: Trojan Simulator 1.0 (http://www.wilderssecurity.com/showthread.php?t=5879)
Trojan Simulator (http://www.wilderssecurity.com/showthread.php?t=61879)

As explained by LowWaterMark in the last link above, not all vendors have included it in their detection.

Regards,

snap

ewido was one of the first scanners to detect the trojansimulator...

{QUOTE-> Ewido did not find it in the zip file. <-QUOTE}

have you got the archives support turned on?

running the free version for testing.

... which lacks the support for archives, therefore it's normal that it doesn't detect trojansimulator inside an archive... ;)