Usec RADIX : this anti-rootkit is really awesome!

Discussion in 'other anti-malware software' started by PROROOTECT, Jan 3, 2009.

Thread Status:
Not open for further replies.
  1. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
  2. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    5,634
    Location:
    U.S.A. (South)
    EUREKA! Another update. Kool

    I recall using Radix months ago to close the handles on a hidden rootkit i deliberately planted that Ice Sword couldn't deal with & RKUnhooker needed a reboot.

    Radix killed it WITHOUT A REBOOT!

    I tested it and been using it ever since. LoL

    Thanks PROROOTECT
     
  3. fcukdat

    fcukdat Registered Member

    Joined:
    Feb 20, 2005
    Posts:
    569
    Location:
    England,UK
    Out of curiosity which rooter was it Easter ?
     
  4. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    5,634
    Location:
    U.S.A. (South)
    Greets again fcukdat

    I'll look into my archive or zoo collection as you like to call it, and find it again (i hope), since it's been awhile, but this bug was hidden and "Locked" tight but Radix uncovered it and i used that unique feature to kill the handles and the bot was nothing but a helpless loner with no clothes (Cloak) anymore, and the surprise for me was it didn't take a reboot to clear it. It was toast :D

    I'll get back to you by post reply or PM as soon as i find it because i have to run it again to make sure i got the right one. :cool:

    EASTER
     
  5. Cloudcroft

    Cloudcroft Registered Member

    Joined:
    Feb 29, 2004
    Posts:
    433
    Location:
    The Hill Country of Texas
    Doesn't work with Vista.
     
  6. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    Joined:
    Mar 3, 2006
    Posts:
    1,500
    Location:
    Germany
    Yes, I saw the potential of this tool long time ago where others still laughed.

    In Vista 64 you don´t need necessarily antirks,
    most are prevented by patchguard. Try Aswar.

    Great, that you keep all informed.
     
  7. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    Joined:
    Mar 3, 2006
    Posts:
    1,500
    Location:
    Germany
    But still buggy, it needs some more time to mature, especially because of freezes and hangs if malware is installed on a system.
     
  8. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    Unfortunately, it doesn't work with Vista 32.
     
  9. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
  10. ParadigmShift

    ParadigmShift Registered Member

    Joined:
    Aug 7, 2008
    Posts:
    203
    Ol' EP_X0FF never liked this one. But then, he never liked any other ARK tool but his own. ;)
     
  11. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    Joined:
    Mar 3, 2006
    Posts:
    1,500
    Location:
    Germany
    The author of Radix must invest much more time without a stable beta it is nonsense to test it against active infections.
     
    Last edited: Feb 6, 2009
  12. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    :) , but I do recall two that he liked one being ADs RootRepeal.

    Thanks for the heads up, I missed it.
     
  13. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    Joined:
    Mar 3, 2006
    Posts:
    1,500
    Location:
    Germany
    Yes, the first time I heard this principle must be 15 years ago.:D :thumb:
     
  14. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
    # ParadigmShift: You have very very good reasons! We're friends! OK?:argh:

    # SystemJunkie: I'm looking forward to the results of your tests!*puppy*

    PROROOTECT
     
  15. AJohn

    AJohn Registered Member

    Joined:
    Sep 29, 2004
    Posts:
    935
    He who controls is in control :D
     
  16. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    5,634
    Location:
    U.S.A. (South)
    WELL SAID AND TRUE!

    Definitely applies as much in life as computers. Trouble is money rulez our daily living but computer knowledge is a whole different entity, which also can lead right back to what else, money= PAPER, or these days numbers which can be dispense as tradeable paper.
     
  17. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    A phrase I used along time ago now for something I did on virtual infrastructures borrowed from 1984, George Orwell's book about Big Brother - War is Peace; Freedom is Slavery; Ignorance is Strength.

    But anyway SJ don't you have an ark table, what does it look like now?
     
  18. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    Joined:
    Mar 3, 2006
    Posts:
    1,500
    Location:
    Germany
    Sorry, I don´t understand what you are trying to tell me with this phrase.

    Yes but many controlers don´t see this.:D
     
    Last edited: Feb 8, 2009
  19. pidbo

    pidbo Registered Member

    Joined:
    Dec 25, 2006
    Posts:
    198
  20. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Howdy PROROOTECT, I was reading a thread over at Sys Internals Forum where you had posted in the "Z0mBiE rootkit" thread.

    Have or can you test Radix on that rootkit?
     
  21. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
  22. the Tester

    the Tester Registered Member

    Joined:
    Jul 28, 2002
    Posts:
    2,854
    Location:
    The Gateway to the Blue Hills,WI.
    Thanks for the link Pro.
    Nice scanner.:thumb:
     
  23. PROROOTECT

    PROROOTECT Registered Member

    Joined:
    May 5, 2008
    Posts:
    1,102
    Location:
    HERE ...Fort Lee, NJ
  24. progress

    progress Guest

    How effective is it compared to GMER or RootRepeal?
     
  25. tk55

    tk55 Registered Member

    Joined:
    Apr 18, 2009
    Posts:
    63
    i downloaded latest v1.0.0.9, and it crashed out half way through at "patched modules" test. it said "program fault occurred. do you want to continue execution. yes (not recommended) or no". i clicked "no" and the program closed.

    that was it for me.......
     
Loading...
Thread Status:
Not open for further replies.