whats the best rootkit and trojan finder

Discussion in 'other anti-trojan software' started by winterlord, Jan 27, 2011.

Thread Status:
Not open for further replies.
  1. winterlord

    winterlord Registered Member

    Joined:
    Aug 23, 2009
    Posts:
    175
    hi i am looking for a good rootkit finder preferably one that is easy to use but if not thats ok to.

    thanks
    winter
     
  2. adam993

    adam993 Registered Member

    Joined:
    Jul 22, 2009
    Posts:
    200
    Location:
    Poland
    Gmer :thumb:or Sophos Antirootkit
     
  3. Kernelwars

    Kernelwars Registered Member

    Joined:
    Aug 12, 2010
    Posts:
    2,155
    Location:
    TX
    prevx, hitman pro, dr. web cureit:D :D
     
  4. PJC

    PJC Very Frequent Poster

    Joined:
    Feb 17, 2010
    Posts:
    2,959
    Location:
    Internet
    Rootkits
    -GMER, UnHackMe, Teazer Rootkit Razor, and for TDSS (Kaspersky).
    -Prevx, HMP, EAM, and Dr.Web CureIt!

    Trojans
    MBAM, SAS, EAM, Dr.Web CureIt!, HMP etc.
     
    Last edited: Jan 27, 2011
  5. winterlord

    winterlord Registered Member

    Joined:
    Aug 23, 2009
    Posts:
    175
    ok i used gmer and noticed that most of the upper check boxes on right hand side are greyed out. is there a payed version of this or?
     
  6. Searching_ _ _

    Searching_ _ _ Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    1,988
    Location:
    iAnywhere
    Depends on skills, some peeps at this forum don't need to use an ARK to find RK's, they use debuggers to analyze code and are familiar with all of the tricks used by malwares.
    Others are Tool Operators, like myself, less skilled relying on the data we are given by the tool to determine our direction.

    GMER is so often used that malware authors have designed around it.
    When something is active on the system there will sometimes be a lack of information, crashing, or non working features of the tool. It's a clue that something is not right and requires further attention.
    At GMER's default settings, after it completes it's preliminary scan, all check boxes on the right should be accessible. If not, then something is wrong.

    There are many ARK's available, check out kernelmode.info forum for a very thorough list.
     
  7. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    4,140
    Location:
    USA
    For rootkits: GMER, Sophos Antirootkit, MBAM, Prevx, & HMP. I believe GMER is the best though. I've also heard that Combo fix is great, but i've never used it myself and it can be dangerous to use if you don't know what your doing.

    Trojans: Avira, Gdata, Kasparsky, HMP, & Hijack This.
     
  8. cm1971

    cm1971 Registered Member

    Joined:
    Oct 22, 2010
    Posts:
    727
    I second this. If you use Combo Fix be careful as you can mess your PC up if you don't know what you are doing with it.
     
  9. sweater

    sweater Registered Member

    Joined:
    Jun 24, 2005
    Posts:
    1,636
    Location:
    Philippines, the Political Dynasty Capital of the
    Are GMER "safe" to use, I mean will it not make any problems in your pc after it disabled and deleted what it finds?
     
  10. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,464
    EAM is a great tool.
    As others mentioned: HMP, GMER, Combofix (Although i've never used it, lots of people recommend it)
     
  11. gerardwil

    gerardwil Registered Member

    Joined:
    Jan 17, 2004
    Posts:
    4,713
    Location:
    NL
    Trojans: MBAM
     
  12. sm1

    sm1 Registered Member

    Joined:
    Jan 1, 2011
    Posts:
    498
    Trend Micro Rootkit Buster is easier to use. But like any other anti rootkit it is important to analyse the results.
     
  13. tipo

    tipo Registered Member

    Joined:
    Dec 29, 2008
    Posts:
    408
    Location:
    romania
    tizer rootkit razor looks good and doing a great job. :thumb:
     
  14. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    4,140
    Location:
    USA
    I have used GMER to remove rootkits before with no problems. If you mistakenly remove any important system files then you will definitely have serious problems. So if your not sure then always seek guidance from a professional before removing anything.
     
  15. PJC

    PJC Very Frequent Poster

    Joined:
    Feb 17, 2010
    Posts:
    2,959
    Location:
    Internet
    Oh, yes! :thumb:
     
  16. zip

    zip Registered Member

    Joined:
    Apr 19, 2007
    Posts:
    359
    Location:
    Mars
    Gmer is built into avast!, Gmer is now owned by avast!.

    The developer of Gmer now works for avast!.

    IMHO, Gmer is the best rootkit finder.

    I like MalwareBytes Antimalware Free for scanning for trojans.
     
  17. dr pan k

    dr pan k Registered Member

    Joined:
    Nov 22, 2007
    Posts:
    204
    this is the complete list of anti-rootkits here

    besides gmer concider RKU, comes in free and "microsoft" flavour
     
  18. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  19. AssassinKID

    AssassinKID Registered Member

    Joined:
    Jun 30, 2011
    Posts:
    27
    Location:
    Australia
    I'm a total noob @ rootkit detecting/removing. So what is the easiest rootkit finder to use? thanks
     
  20. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,047
    Hitman Pro or an AV Rescue CD like Dr.Web.
     
  21. AssassinKID

    AssassinKID Registered Member

    Joined:
    Jun 30, 2011
    Posts:
    27
    Location:
    Australia
    K, thanks, I've got them both! :thumb:
     
  22. 031

    031 Registered Member

    Joined:
    Sep 5, 2007
    Posts:
    184
    Location:
    Bangladesh
    First try the scanners provided by various antivirus vendors. If that doesn't work then go for complex tools like Gmer. Here are some good scanners:
    1. Dr. web cure it

    2. Kaspersky AVP tool.

    3.Microsoft Safety Scanner

    4.Fsecure Easy clean.

    good luck.
     
  23. EboO

    EboO Registered Member

    Joined:
    Mar 12, 2011
    Posts:
    287
    Better than Gmer (include in avast and Mbam) you can use Icesword, but it's not designed for vista and 7.
     
  24. Spooony

    Spooony Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    514
  25. AssassinKID

    AssassinKID Registered Member

    Joined:
    Jun 30, 2011
    Posts:
    27
    Location:
    Australia
    Good threads with good suggestions. Thanks all! :thumb:
     
Thread Status:
Not open for further replies.