ByteHero Unknown-virus Detection Software

Discussion in 'other anti-malware software' started by CiX, Jun 1, 2010.

Thread Status:
Not open for further replies.
  1. CiX

    CiX Registered Member

    Joined:
    Feb 22, 2010
    Posts:
    404
  2. AvinashR

    AvinashR Registered Member

    Joined:
    Dec 26, 2009
    Posts:
    2,060
    Location:
    New Delhi Metallo β-Lactamase 1
    Chinese Vendor ? :(
     
  3. Ibrad

    Ibrad Registered Member

    Joined:
    Dec 8, 2009
    Posts:
    1,949
    It was discussed in the past, many AV vendors detect the ByteHero files because it was packed with Thermida (I think that's how you spell it) no one ever installed it so no one tested it.
     
  4. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Tried it against a microjoin exploit where it only detected 2 of 14 dropped exploits but also flagged three legit files.

    Passing.
     
  5. sg09

    sg09 Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    2,713
    Location:
    Kolkata, India
    Testing right now. Nothing to tell as the system is clean.

    1.jpg

    2.jpg

    3.jpg
     
  6. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    ByteHero Unknown-virus Detection Software(BDV)

    No install :thumb: and updated

    bdv-za.gif

    FP's from Prevx and VT due to Thermidia :D

    bdv.gif

    vt.gif

    Like the options to select Dynamic and/or Static code analysis :thumb:

    set.gif

    Detected Normandy.sys in 8 secs which is part of MBRguard by Blue Ridge Networks i've installed. This is a FP, but i think it's a useful detect actually, because it shows that some MBR manipulation etc has taken place, and if it wasn't legit as in this case, it could be very dodgy indeed. I continued the scan and it detected lots of other FP's which were unusual files such as ARK's etc, but NO OS etc files. The fact that it picks up on irregular files, even though in my case they are FP's, could be useful in detecting real malware in the right hands.

    So it would be easy to dismiss it on the grounds of FP's, but i wouldn't overlook it in possibly helping to detect out of the norm files for further investigation.

    Next post
     
  7. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    If you click on Download BSD

    bsd.gif

    You get to http://www.bytehero.com/bsd.asp

    bh.gif

    Google translation

    shield.gif

    Several shield apps listed

    Golden Shield - ByteHero System Defense Software(BSD - Sharp Shield - Rui Shield

    I'm not sure what these are, or how they differ ? I have a feeling they are maybe an AV/Hips etc ? Anyway i couldn't see any english versions of them !
     
Loading...
Thread Status:
Not open for further replies.