Download TrojanHunter Now
Free 30-day trial!
Latest TrojanHunter Version:
TrojanHunter 5.0
Order Now
License file delivered within minutes.
Welcome, Guest. Please Login or Register.
Oct 7th, 2008, 12:15pm
   Mischel Internet Security Forum
   Internet Security
   General (Moderators: Helena, Gavin_Coe, Magnus)
   16 scanners unplugged(including TH4.5)		 « Previous topic | Next topic »
Pages: 1  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print
   Author  Topic: 16 scanners unplugged(including TH4.5)  (Read 565 times)
claire
Stole All the Forum Stars
********



carpe diem

   


Gender: female
 Posts: 3478
16 scanners unplugged(including TH4.5)
« on: Aug 17th, 2006, 1:11pm »		 Quote Quote  Modify Modify
http://www.techsupportalert.com/security_scanners.htm
IP Logged
Claire
doubledown
Full Member
***





   


Posts: 146
Re: 16 scanners unplugged(including TH4.5)
« Reply #1 on: Aug 21st, 2006, 5:02am »		 Quote Quote  Modify Modify
That makes alarming reading - the content and clarity of the write-up leads one to believe that the testing is credible.
 
However, it seems odd to me that the testing was conducted on unpatched Windows, it would seem more relevant to me to test on Windows fully patched up to date at the time of testing. Especially so because the author states that the fundamental problem lies with Windows itself and not the security applications. I believe I'm correct in saying that the drive-by download exploits he mentions have long since been neutralised by Windows security patches.
 
Another point - it would presumably be easy to detect if your security applications had been terminated, thereby flagging up an obvious threat - any comments?
« Last Edit: Aug 21st, 2006, 5:03am by doubledown » IP Logged
siliconman01
Global Moderator
*****



Trojans! Chew 'em Up, Spit 'em Out...

   


Gender: male
 Posts: 5661
Re: 16 scanners unplugged(including TH4.5)
« Reply #2 on: Aug 21st, 2006, 5:18am »		 Quote Quote  Modify Modify
Have you tried killing THGuard.exe using the Task Manager when the "Protect Against Unauthorized Shutdowns" option is selected?  
 
It certainly will not kill on my XP-SP2 system using the Task Manager; however, this document says it will.
 
I stopped reading there.   Wink
IP Logged
______
TrojanHunter V5.0.962...No. 1 AT in my Book and on my Box!
doubledown
Full Member
***





   


Posts: 146
Re: 16 scanners unplugged(including TH4.5)
« Reply #3 on: Aug 21st, 2006, 11:48am »		 Quote Quote  Modify Modify
Hi siliconman01 that's a good point, I'll certainly try that on my system (also XP-SP2). That would certainly dent the whole credibility of these tests if it's entirely false that TH guard can be terminated using Task Manager.
 
I notice he was using default configurations of all the apps - just wondering if the "Protect Against Unauthorized Shutdowns" option was not enabled in his default installation?
 
Just to clarify, when I said this testing makes alarming reading I wasn't referring specifically to TH at all, just the general conclusions across all apps.
 
But you're right, one shouldn't believe everything in print - scepticism is a good security application in itself!
 
I was just applying my non-techie rule-of-thumb test to these sort of things - that being that if something is written clearly and consistently and without a lot of alarmist/sensationalist claims and exclamation marks, it's more likely to be something worth considering seriously.
IP Logged
siliconman01
Global Moderator
*****



Trojans! Chew 'em Up, Spit 'em Out...

   


Gender: male
 Posts: 5661
Re: 16 scanners unplugged(including TH4.5)
« Reply #4 on: Aug 21st, 2006, 2:27pm »		 Quote Quote  Modify Modify
Doubledown,
 
Fully understand and quite logical  Wink
 
"Protect Against Unauthorized Shutdowns" is not set active by default on THGuard.exe...very true.  However, using the "default" settings for security applications is not logical at all in my honest opinion.  I've yet to find a security program that doesn't require my personal selections of options to mate with my cadre of software.  For example, I use ProcessGuard to protect all memory resident programs, so I would not want THGuard to "protect itself"...same way with Norton Internet Security and others.  
 
The testing should have taken into account "option capabilities" before making blanket comparison statements.   It's kinda like a tester throwing up a specific rootkit or spyware that Norton or TH does not detect...and then stating that neither detect rootkits or spyware...if you get my drift  Wink
 
JMO obviously  Grin
IP Logged
______
TrojanHunter V5.0.962...No. 1 AT in my Book and on my Box!
doubledown
Full Member
***





   


Posts: 146
Re: 16 scanners unplugged(including TH4.5)
« Reply #5 on: Aug 21st, 2006, 4:44pm »		 Quote Quote  Modify Modify
Hi siliconman01, yes I quite agree, it's seems very simplistic to test a security application just using it's default settings as this does not provide a meaningful test of it's true capabilities.
 
Maybe the tester is assuming that most people will run with the default settings - and also I suppose it's kind of a level playing field if all programs are tested as installed "out of the box."
 
More cynically - it makes life easy for the tester! But, as noted, this does not make for high quality testing.
 
In any case, I have to admit to being somewhat more sceptical about these tests now.
IP Logged
Pages: 1  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print

« Previous topic | Next topic »
Search
Members
Login
Register