Log in or Sign up

Spybot-S&D new tools

Discussion in 'other anti-malware software' started by Meriadoc, Mar 19, 2008.

Thread Status:: Not open for further replies.

Meriadoc Registered Member

Joined:

Mar 28, 2006

Posts:

2,642

Location:

Cymru

Spybot-S&D has a new plug-in that checks for rootkits.

Beginning with the first updates in march we have added new anti rootkit plugins for Spybot - Search & Destroy.
Click to expand...

Also RootAlyzer

The RootAlyzer is a single tool which goes through the file system, the registry and process related lists.
Click to expand...

Meriadoc, Mar 19, 2008

#1
Ilya Rabinovich Developer

Joined:

Sep 13, 2005

Posts:

1,543

Hm, looks like this tool tries to collect all the handles into your system and analyze it. If malware blocks it- this RootAlyzer just hangs and no more. I'm just curious, who was the programmer of this "anti-rootkit"?

Ilya Rabinovich, Mar 19, 2008

#2
Hermescomputers Registered Member

Joined:

Jan 9, 2006

Posts:

1,069

Location:

Toronto, Ontario, Canada, eh?

Ilya Rabinovich said:

Hm, looks like this tool tries to collect all the handles into your system and analyze it. If malware blocks it- this RootAlyzer just hangs and no more. I'm just curious, who was the programmer of this "anti-rootkit"?
Click to expand...

Hello Ilya,

Did you test it with real samples or is this an educated guess?

Hermescomputers, Mar 20, 2008

#3
Ilya Rabinovich Developer

Joined:

Sep 13, 2005

Posts:

1,543

I just runned it as untrusted and looked throught the block log events. This thing simply hangs. Also, if to take into account the way it works, it can be bypassed easy way.

Ilya Rabinovich, Mar 21, 2008

#4

Thread Status:: Not open for further replies.

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn More...