Trend Micro RootkitBuster 2.52.1013

Discussion in 'other anti-malware software' started by progress, Jul 19, 2009.

Thread Status:
Not open for further replies.
  1. progress

    progress Guest

    One of the few ARK tools that are still under development:

    http://www.trendmicro.com/download/rbuster.asp

     
    progress, Jul 19, 2009
    #1
  2. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    6,219
    Location:
    USA
    .
    Any idea how this one compares with other antimalware tools? There are quite a few tools that detect root kits, but aren't dedicated ARKs. Do dedicated tools such as TM RootkitBuster have better detection?
     
    Victek, Jul 19, 2009
    #2
  3. progress

    progress Guest

    I remember this test with Trend Micro RootkitBuster 1.6 :)
     
    progress, Jul 19, 2009
    #3
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    The paper Anti-Stealth Fighters: Testing for Rootkit Detection and Removal has tests using 30 rootkit samples and also 30 samples of malware hidden by rootkits. Products tested include 14 anti-rootkit programs, as well as some other security programs. The tests were done in late 2007.
     
    MrBrian, Jul 19, 2009
    #4
  5. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,294
    Location:
    USA
    G1111, Oct 14, 2009
    #5
  6. lordpake

    lordpake Registered Member

    Joined:
    Aug 7, 2004
    Posts:
    563
    Location:
    Helsinki ~ European Union
    Thx for the heads up, G1111.
     
    lordpake, Oct 14, 2009
    #6
  7. progress

    progress Guest

    Easy to use and up-to-date, thank you :)
     
    progress, Oct 16, 2009
    #7
  8. pidbo

    pidbo Registered Member

    Joined:
    Dec 25, 2006
    Posts:
    198
    I don't know how effective it is but it is blisteringly fast, I didn't find anything on my pc.
     
    pidbo, Oct 16, 2009
    #8
  9. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,294
    Location:
    USA
    G1111, Oct 18, 2009
    #9
  10. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Still very weak, what it detects very often cannot be deleted using the same tool:( RootkitBluster - boisterous with no buster.
     
    Meriadoc, Oct 18, 2009
    #10
  11. progress

    progress Guest

    Detection is more important, cleaning is often impossible and not really recommended :doubt:
     
    progress, Nov 15, 2009
    #11
  12. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,351
    Location:
    Europe, UE citizen
    Ya, prevention is the only one useful thing. I would not sure to fully remove a rootkit and repair his damages neither with a more powerful tool as GMER.
     
    blacknight, Nov 15, 2009
    #12
  13. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    For someone that removes malware, disassembles code I've totally lost the sense of your post:)

    edit : okay never mind I understand you.
     
    Meriadoc, Nov 15, 2009
    #13
  14. inka

    inka Registered Member

    Joined:
    Oct 21, 2009
    Posts:
    426
    What, if anything, has changed in terms of detection-n-removal capabilities since this TechNet article was published?

    A whole lot seems to have changed in terms of new rootkit AUTHORING strategies.
    http://rootkit.com/
    http://www.pcworld.com/businesscenter/article/149677-3/how_to_root_out_rootkits.html

    The Sysinternals RootkitRevealer doc doesn't specifically mention MBR rootkits.
    The TrendMicro doc does, it specifically claims ability to detect MBR kits.
     
    Last edited: Nov 17, 2009
    inka, Nov 16, 2009
    #14
  15. progress

    progress Guest

    progress, Dec 8, 2009
    #15
  16. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Old DarkSpy antirootkit author very busy atm.
     
    Meriadoc, Dec 8, 2009
    #16
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...