Trend Micro RootkitBuster 2.52.1013

Discussion in 'other anti-malware software' started by progress, Jul 19, 2009.

Thread Status:
Not open for further replies.
  1. progress

    progress Guest

    One of the few ARK tools that are still under development:

    http://www.trendmicro.com/download/rbuster.asp

     
  2. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    5,123
    Location:
    USA
    .
    Any idea how this one compares with other antimalware tools? There are quite a few tools that detect root kits, but aren't dedicated ARKs. Do dedicated tools such as TM RootkitBuster have better detection?
     
  3. progress

    progress Guest

    I remember this test with Trend Micro RootkitBuster 1.6 :)
     
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    The paper Anti-Stealth Fighters: Testing for Rootkit Detection and Removal has tests using 30 rootkit samples and also 30 samples of malware hidden by rootkits. Products tested include 14 anti-rootkit programs, as well as some other security programs. The tests were done in late 2007.
     
  5. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,127
    Location:
    USA
  6. lordpake

    lordpake Registered Member

    Joined:
    Aug 7, 2004
    Posts:
    563
    Location:
    Helsinki ~ European Union
    Thx for the heads up, G1111.
     
  7. progress

    progress Guest

    Easy to use and up-to-date, thank you :)
     
  8. pidbo

    pidbo Registered Member

    Joined:
    Dec 25, 2006
    Posts:
    198
    I don't know how effective it is but it is blisteringly fast, I didn't find anything on my pc.
     
  9. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,127
    Location:
    USA
  10. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Still very weak, what it detects very often cannot be deleted using the same tool:( RootkitBluster - boisterous with no buster.
     
  11. progress

    progress Guest

    Detection is more important, cleaning is often impossible and not really recommended :doubt:
     
  12. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    2,433
    Location:
    Europe
    Ya, prevention is the only one useful thing. I would not sure to fully remove a rootkit and repair his damages neither with a more powerful tool as GMER.
     
  13. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    For someone that removes malware, disassembles code I've totally lost the sense of your post:)

    edit : okay never mind I understand you.
     
  14. inka

    inka Registered Member

    Joined:
    Oct 21, 2009
    Posts:
    406
    What, if anything, has changed in terms of detection-n-removal capabilities since this TechNet article was published?

    A whole lot seems to have changed in terms of new rootkit AUTHORING strategies.
    http://rootkit.com/
    http://www.pcworld.com/businesscenter/article/149677-3/how_to_root_out_rootkits.html

    The Sysinternals RootkitRevealer doc doesn't specifically mention MBR rootkits.
    The TrendMicro doc does, it specifically claims ability to detect MBR kits.
     
    Last edited: Nov 17, 2009
  15. progress

    progress Guest

  16. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Old DarkSpy antirootkit author very busy atm.
     
Loading...
Thread Status:
Not open for further replies.