republican-creole
Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » RootKit Detectors - Not all = !
Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Fun with ( ÿþ ) well sort of ? »
« Selling through FUD and severity ratings  

phoneboy2

@shawcable.net

Re: RootKit Detectors - Not all = !

If a Rootkit detector does not boot from it's own CD it will NEVER be trustworthy. Having said that, for a basic perliminary test, I like the no nonsense raw design of sysinternals rootkit revealer. They like to try keep it simple which is usually the best approach.
permalink · 2006-08-28 13:23:50 · Reply to this

EP_X0FF

@rol.ru

Re: RootKit Detectors - Not all = !

that is very disputable words

fyi next generation of hardwired rootkits will be not detected even from external scanning like boot cd.
permalink · 2006-08-28 14:30:25 · Reply to this

2kmaro
Think
Premium,ExMod 1 BC
join:2000-07-11
ColossalCave
clubs:
said by phoneboy2 :

If a Rootkit detector does not boot from it's own CD it will NEVER be trustworthy. Having said that, for a basic perliminary test, I like the no nonsense raw design of sysinternals rootkit revealer. They like to try keep it simple which is usually the best approach.
MY opinion is that once you've been rootkit'd, best thing to do is scrub and rebuild from ground up. I know of no sure and certain way to absolutely assure that things are as they should be once it's happened. You might find one piece of it, or one of several - but how do you KNOW that things are all well again.

Personally, I'd be satisfied with a product that simply provided no-false-positive indication that you'd been rooted and give you an indication of the source/name of the rootkit.
--
...then THINK! again!!
permalink · 2006-08-29 22:18:33 · Print · Reply to this
Forums » Up and Running » Security » SecurityFun with ( ÿþ ) well sort of ? »
« Selling through FUD and severity ratings  

Friday, 27-Nov 23:37:42 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [121] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [95] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [70] TiVo Sees Record Customer Losses
· [68] In-Flight Internet Headed For Bumpy Landing?
· [63] Verizon CEO: Hulu Will Be Dead Soon
· [61] Thanksgiving Open Thread
· [39] EFF Wages War On Fine Print
· [38] ICANN Slams DNS Redirection
Most people now reading
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Windows 7 boot manager editing questions [Microsoft Help]
· 5 hour energy for diabetic [General Questions]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]
· So! We've been busy the past few... months. [Home Repair & Improvement]
· [Vista] Why is HD So Full? [Microsoft Help]
· What to use while demonoid is down? [Filesharing Software]
· [ PVP] 3.2 DK PvP D/W Spec... [World of Warcraft]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]