How Does CCAV Process Files?


For example, if I allow (trust) a file that CCAV is unaware of (which has been sandboxed), what would happen if that file is actually infected (but at the time of sandbox, wasn’t in CCAV’s signature database). Would CCAV now automatically quarantine this file (remove from trusted) or leave where it is? This file being software that I trust but not sure whether the file has actually been infected (maybe false positive) or CCAV just isn’t aware of this file yet. Hope the above makes sense.


Bump :wink: