| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 55516 | 2005-03-12 09:15:00 | What is a rootkit? | zqwerty (97) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 333432 | 2005-03-12 09:15:00 | You can find out here and download the beta version for free, I have tried it on my Win2K system and I don't seem to have a problem. www.f-secure.com |
zqwerty (97) | ||
| 333433 | 2005-03-12 09:22:00 | From the same site, Free Virus Removal Tools: www.f-secure.com |
zqwerty (97) | ||
| 333434 | 2005-03-12 09:30:00 | in my day a bottle of cheap white wine (fizzy) a box of chocolates and a single red rose. | theother1 (3573) | ||
| 333435 | 2005-03-12 21:00:00 | Ahhhh theother1. It still works today :D |
Valerie (4740) | ||
| 333436 | 2005-03-12 21:34:00 | Another company has also written a free rootkit detection program for Windows which you may wish to look at as well for comparision - RootkitRevealer (www.sysinternals.com) Bearing in mind, these programs attempt to detect rootkits (nothing is 100% yet) and cannot remove them if found. quote: Is there a sure-fire way to know of a rootkit's presence? In general, not from within a running system. A kernel-mode rootkit can control any aspect of a system's behavior so information returned by any API, including the raw reads of Registry hive and file system data performed by RootkitRevealer, can be compromised. While comparing an on-line scan of a system and an off-line scan from a secure environment such as a boot into an CD-based operating system installation is more reliable, rootkits can target such tools to evade detection by even them. The bottom line is that there will never be a universal rootkit scanner, but the most powerful scanners will be on-line/off-line comparison scanners that integrate with antivirus. |
Jen (38) | ||
| 1 | |||||