>And of course all of this is important *only if the malware gets to being executed >in the first place*. Which means that it has to pass TDS's...
Well ... this are all normal PE EXE files as far as i know. So they are scanned. ELF (the executable format of linux) are also scanned but i think...
>TDS-3 is the only anti-trojan scanner capable of detecting this trojan Sure you detect any variant?
Firewalls on a workstation are in fact placebos. There is no danger they can protect a home user for. They cannot block trojans/backdoors or...
For a normal home user? No firewall is recommended. I am strictly against the usage of firewalls on a workstation. I will say you why ... 1. As...
ACK streaming: Generate several thousand ACK packets and send them as fast as possible to a client "protected" with Outpost. The firewall driver...
>And you are an expert on Outpost because......? I am not an expert of anything. Just posted some bugs that are there since some early Outpost...
>Till yet no reply from Angelo, so I guess he is just blowing some hot >air around... ;) No, have to prepare my "Matura". Its compareable to...
Still vulnerable to ACK streaming attacks ... Nice blue screen if you flood the wall with random packets ... Still vulnerable to code injection...
>To an extent - it makes detecting the original file harder as it has >to be unpacked, but detection of the packer itself is usually very >easy...
Not realy and if it is very easy to detect using behaviour blocking and scanning methods. There are more interesting and effective ways to infect...
>TDS doesnt care about VBS worms, as it detects many generically, >and Wormguard detects them far too easily (close to if not 100% >rate) and is...
Well ... if you are using McAfee 7.0, why do you want to use a trojan scanner? McAfee has a very powerfull unpacking engine and a strong trojan...
>Don't think so. TDS-3 or TrojanHunter can do. We might agree here >that either TrojanHunter or TDS-3 are able to handle to deal with >100%...
>But of course this problem does not apply to anti-virus software at all. There are still >anti-trojan programs on the market which can't deal...
>You'll find a good few of us over there already :) You are right ... :D.
Well ... feel free to join the a² board at www.a-2.org. Everyone is welcome :D.
As far as I am informed a first preview version of the API protection layer will be released Sunday. Its compareable to the TrojanCheck guard but...
Yes, Thomas Löffler did a great job with TH 6.x ;D. But as you can read on his homepage www.trojancheck.de: Trojancheck 6 ist die letzte...
Separate names with a comma.
