Author Topic: Antirookit Tool  (Read 3757 times)

0 Members and 1 Guest are viewing this topic.

ONT

  • Guest
Antirookit Tool
« on: March 18, 2010, 07:31:23 AM »
Hi

I need Avast Antirootkit Tool download link.Does anyone have?


Regards

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37183
Re: Antirookit Tool
« Reply #1 on: March 18, 2010, 07:42:40 AM »

ONT

  • Guest
Re: Antirookit Tool
« Reply #2 on: March 18, 2010, 07:59:55 AM »
Oh, there are lots of antirootkit tools, but which of them have

1)Best detection rate
2)Detects rootkits on all partitions (Some of them scan only System Drive e.g Avast)
3)Less Scan Time


Offline Tarq57

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3695
  • If at first you don’t succeed; call it version 1.0
Re: Antirookit Tool
« Reply #3 on: March 18, 2010, 08:28:42 AM »
You should also be concerned with false positives.
This is a bit of a misnomer (not really a false positive) because many valid applications might have components which some anti-rootkits will detect.
What ever you use, check with someone who knows how to interpret the result before removing anything.
 
Windows 10,Windows Firewall,Firefox w/Adblock.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76239
  • Urlaub/Vacation
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Antirookit Tool
« Reply #4 on: March 18, 2010, 11:50:46 AM »
Hi

I need Avast Antirootkit Tool download link.Does anyone have?


Regards

i think some kind of antirootkit is implemented in avast.
am i wrong?
W8.1 [x64] - Avast PremSec 22.7.7366.BC [UI.713] - Firefox ESR 91.11 [NS/uBO/PB] - Thunderbird 91.11
Avast-Tools: Secure Browser 103.0 - Cleanup 22.2 - SecureLine 5.18 - DriverUpdater 22.2 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

ONT

  • Guest
Re: Antirookit Tool
« Reply #5 on: March 19, 2010, 08:58:45 AM »
I've used Avast antirootkit tool, but I am facing a problems

1)When I select "Hidden Registry Keys and Values" option and when the tool starts scanning registry values, it crashes and stopped. The crash text file is attached.If I uncheck "Hidden Registry Keys and Values"


2)Also how do I scan partitions other than C Drive from this tool?

Offline Tarq57

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3695
  • If at first you don’t succeed; call it version 1.0
Re: Antirookit Tool
« Reply #6 on: March 19, 2010, 10:00:00 AM »
I can't say why the tool crashes, nor make any sense of the txt file.
Dark and mysterious are the ways of the Alternate Data Stream.
The fact that rootkits make use of the ADS - which is part of the OS, may be the reason other partitions that do not have an OS running on them can not be scanned: they do not need to be.
If the OS has access to the other partition or drive, any rootkit files present on that partition or drive that are able to be detected will be detected as part of the OS process. Does that make sense?
I can't explain it much better/deeper than that, because I lack the detailed knowledge to, sorry.

Why don't you try one of the other rootkit tools, like TM Rootkit buster, or Darkspy (mcafee), or the Prevx Gromozon (specialist group of infections)
More links here.
Windows 10,Windows Firewall,Firefox w/Adblock.