Trojan Faceoff 2006

Discussion in 'malware problems & news' started by Tommy, Oct 9, 2006.

Thread Status:
Not open for further replies.
  1. Tommy

    Tommy Registered Member

    Joined:
    Dec 24, 2002
    Posts:
    1,169
    Location:
    Buenos Aires - Munic
    I don't know if it was mentioned on Wilders also as the test is from June 2006.

    Further Informations
     
  2. Longboard

    Longboard Registered Member

    Joined:
    Oct 2, 2004
    Posts:
    3,187
    Location:
    Sydney, Australia
    Tommy
    Thanks fro popping this up
    That site has some interesting projects !

    Not really happy results for any vendors AFAICS.
    Not happy to see BOClean's results. :(

    No comments here from any vendors.
    I dont think anyone likes these results.
     
  3. Tommy

    Tommy Registered Member

    Joined:
    Dec 24, 2002
    Posts:
    1,169
    Location:
    Buenos Aires - Munic
    I am also supriced ther is any reaction to this test. Think you listed the reasons.
     
  4. controler

    controler Guest

    Hello

    What do the green check marks mean in the tests?

    Would THEMIDA protect current security programs you have installed?
    What is the English price for THEMIDA ?

    controler
     
    Last edited by a moderator: Oct 15, 2006
  5. Tommy

    Tommy Registered Member

    Joined:
    Dec 24, 2002
    Posts:
    1,169
    Location:
    Buenos Aires - Munic
    At the top of the page you find explanations of all checkmarks etc.
    Themida 1.8.0.0 arround U$S 149 - 188 depending on the Licenz you want.
    http://www.oreans.com/pricing.php
     
  6. controler

    controler Guest

    yes I was looking at the explanations of what the symbols mean but when i look I see for instance BoClean with 5 green check marks and no percentage for assasin
    I see Dr Web with 5 green check marks for Optix and only a 89.4 %. does green check marks mean bad?

    controler
     
  7. BlueZannetti

    BlueZannetti Administrator

    Joined:
    Oct 19, 2003
    Posts:
    6,590
    The numbers and checks are unrelated, as described in the key.

    Blue
     
  8. Tommy

    Tommy Registered Member

    Joined:
    Dec 24, 2002
    Posts:
    1,169
    Location:
    Buenos Aires - Munic
    No, green mark is good.
    The porcentage only reflects the average pass rates for the last two years (August 2004 - August 2006) at Virus Bulletin and AV-Comparitives. IMHO if there is no %, means, that the applications has not been tested there or not sufficient informations/tests.
     
  9. controler

    controler Guest

    Does P+T mean Process Explorer was packeg and protected by THEMIDA?

    If so why should a security program detect Process Explorer? Or are you saying the security program should detect the packer? BoClean only detects when unpacked in mem. Now I am confused again.

    controler
     
  10. controler

    controler Guest

    Wouldn't flex hex be better or are you talking about the resource editor?
     
  11. controler

    controler Guest

    Anybody else see this erro while using THEMIDA?
     

    Attached Files:

  12. controler

    controler Guest

    Clicking on the popup give the error.
     

    Attached Files:

  13. controler

    controler Guest

    Damn I am starting to feel lonley

    Doesn't anyone want to post after me anymore?


    con
     
  14. the Tester

    the Tester Registered Member

    Joined:
    Jul 28, 2002
    Posts:
    2,854
    Location:
    The Gateway to the Blue Hills,WI.
    These results are interesting.
    Looks like most of the programs stunk it up badly!

    I see this by a lot of the programs listed on that test
    If this is a credible test there aren't too many dependable av and at programs.
    I can understand Tauscan's poor performnace,but Kaspersky failing half?
     
  15. Longboard

    Longboard Registered Member

    Joined:
    Oct 2, 2004
    Posts:
    3,187
    Location:
    Sydney, Australia
    @The Tester: yyeess, hhmm, bit of a wake-up!

    @ Controler: lol con, not like you: you have tooomannyycofffeeess last night or not enough?

    PE is not process explorer: packer and revers engineering tool:
    http://www.heaventools.com/

    Each virus stipulated in the test was packed in various ways then let loose.

    I would have thought/hoped that BOClean would pick up if not the packed versions at least when they ran?

    The test does not seem to specify if there was a reboot and wether any trojans were picked up when attempting to "go off" with the reboot or am I missing something?

    Interesting in that the tester has actually made an effort to include BOClean when many dont
     
Loading...
Thread Status:
Not open for further replies.