SysProt AntiRootkit released into the wild: NEW version v1.0.0.8 awesome!

Discussion in 'other anti-malware software' started by PROROOTECT, Jan 12, 2009.

Thread Status:
Not open for further replies.
  1. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
  2. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    Is it Vista-compatible ? I can't make it work. It starts, launches its driver, but does nothing.
     
  3. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
    Supported operating systems: Windows 2000/XP/2003 32 bits for now:argh:
     
  4. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
  5. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Thanks Swatkat...Pro for the heads up.

    use the direct link
    some gui bugs, would also be nice to extend and maximise window
    some false positives
    ports tab is welcome
    would like registry and file explorer

    Rustock rootkit...
     

    Attached Files:

    Last edited: Mar 9, 2009
  6. pidbo

    pidbo Registered Member

    Joined:
    Dec 25, 2006
    Posts:
    198
    Immediately caused a blue screen when I clicked the kernel module tab and
    after a restart caused the computer to restart when I clicked one of the other tabs

    Windows 2000 Pro

    I use other anti-rootkits (radix etc) with no problems
     
  7. chrome_sturmen

    chrome_sturmen Registered Member

    Joined:
    Apr 29, 2006
    Posts:
    785
    Location:
    Sverige
    Caused a bluescreen here as well 2 separate instances. Windows server 2003 sp2
     
  8. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
    Caused nothing wrong on my Windows XP SP2. It works OK.

    Peacefully. And quickly, yes!:thumb:

    PROROOTECT
     
  9. swatkat

    swatkat Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2
    Location:
    India
    Thanks for the heads up PROROOTECT :) And, thanks for trying it out guys :)
    In Vista, it needs to be started with Admin privileges (right-click "Run as Admin").
    @pidbo,
    Is it Windows 2000 with SP4? I have tested SysProt AntiRootkit only on Windows 2000 SP4. Can you upload the minidump, if you have?
    @chrome_sturmen,
    Hmmm, need to check it! Can you upload the minidump if you have?
    @Meriadoc,
    Will work on those bugs! Yes, having Registry and File Explorer would be good, need to work on them as well. Currently, I am trying to improve driver disabling techniques; certain rootkits rewrite their Registry entries when the system is rebooted.
     
  10. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    5,633
    Location:
    U.S.A. (South)
    Is a little buggy yet. Needs some refinement to correct. But all in all not bad. Could become very useful indeed.

    NO BSOD on my XP Pro thank goodness. Agree with Meriadoc, those extra additions would bring this one up another whole notch in usefullness and the interest in it would rise.
     
  11. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
    Hello Swatkat from cyber - India! Welcome pleased with us, here is also your home! Thank you for your site very interesting and pleasing to the eye, thank you for your SysProt a beautiful icon, elegant GUI and especially good work! Are awaited with impatience the new version, can be colorful 'home tab' will return, maybe new Settings tab with the possibility to have Real Time Protection ...

    Yours respectfully PROROOTECT:thumb:
     
  12. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
    NEW :thumb: SysProt AntiRootkit v1.0.1.0 released! Posted by Swatkat at 11:20 PM TODAY!!!

    Look here: http://swatrant.blogspot.com/

    A W E S O M E version!:argh:

    Welcome and Thanks Swatkat from cyber-India!
     
  13. swatkat

    swatkat Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2
    Location:
    India
    Thanks for posting about the update, PROROOTECT. Glad to know that you liked it :)
    Thanks for trying it out EASTER :)
     
  14. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    5,633
    Location:
    U.S.A. (South)
    I know this is off-the-cuff and this app seems explicity concentrated on surfacing those notorious "hiding" rootkits, but with the recent developments going around that causing users with security apps to still have to wipe and reformatt their poor broken into machines in the worse possible way, i like to see VIRUT added to detections or even intercepted.

    I doubt this developer had that in mind, but it was just like i said an off-the-cuff idea. Besides if it was detected, probably wouldn't need detecting by SysProt anyway since it doesn't do much hiding but rather destruction of PE files and other vital componants that as far as i understand are unrepairable.

    With that off my chest, nice improvement and happy to see another ARK join in the search for the sneaker RK's/Drivers/Services bit as well as other stealth made wares.

    EASTER
     
  15. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Heh very nasty, reimage time!
     

    Attached Files:

Loading...
Thread Status:
Not open for further replies.