GRISOFT Launches Free AVG Anti-Rootkit

Jimmy 2004 · Apr 10, 2007, 05:44 PM

Popular free antivirus provider GRISOFT has today launched the first non-beta version of its AVG Anti-Rootkit software, which is free to all home users. Unfortunately GRISOFT does not offer support for this new product so you’ll have to rely on their forums if you run into any problems, but you should certainly consider adding this software to your PC security arsenal. Rootkits are among the newest and most difficult to detect forms of malware being circulated at present, and most standard virus scanners will have either no rootkit detecting abilities or be very limited in their effectiveness, so at present the best way to combat them is by using these standalone rootkit-detectors. Other free anti-rootkit software to look at includes RootkitRevealer, Rootkit Unhooker, Rootkit Buster, IceSword and Sophos Anti-Rootkit, although some are difficult to use and may not remove the rootkits for you - as rootkits are still relatively new and different software will be better at detecting different exploits, it is a good idea to use multiple scanners to complement each other. AVG Anti-Rootkit will work on the 32-bit versions of both Windows 2000 and Windows XP, although Windows Vista support is not mentioned.

Source: GRISOFT

Easy Rhino · Apr 10, 2007, 05:49 PM

grisoft is my hero!

jurrasstoil · Apr 10, 2007, 08:06 PM

Just out of curiosity:
can someone explain in a few words what these "rootkits" do?

Jimmy 2004 · Apr 10, 2007, 08:24 PM

I'm not an expert on what they do/how they work, but the basic idea behind them is that the rootkit will hide the malware (which could do whatever any normal virus does) so that it is very difficult to detect - the virus can be running in the background without the user having any idea, which is why these rootkit scanners are good. Wikipedia probably can explain it better than me.

Sasqui · Apr 10, 2007, 09:05 PM

Quote:

Originally Posted by Jimmy 2004

I'm not an expert on what they do/how they work, but the basic idea behind them is that the rootkit will hide the malware (which could do whatever any normal virus does) so that it is very difficult to detect - the virus can be running in the background without the user having any idea, which is why these rootkit scanners are good. Wikipedia probably can explain it better than me.

Yep Wikki...

http://en.wikipedia.org/wiki/Rootkit

"From Wikipedia, the free encyclopedia

A rootkit is a set of software tools intended to conceal running processes, files or system data from the operating system. Rootkits have their origin in relatively benign applications, but in recent years have been used increasingly by malware to help intruders maintain access to systems while avoiding detection. Rootkits exist for a variety of operating systems, such as Linux, Solaris and versions of Microsoft Windows. Rootkits often modify parts of the operating system or install themselves as drivers or kernel modules.

The word "rootkit" came to general public awareness in the 2005 Sony BMG CD copy protection scandal, in which Sony BMG music CDs surreptitiously placed a rootkit on Microsoft Windows PCs when the CD was played on the computer. Sony provided no mention of this on the CD or its packaging, referring only to security rights management measures."

"A rootkit can take full control of a system. A rootkit's only purpose is to hide files, network connections, memory addresses, or registry entries from other programs used by system administrators to detect intended/ unintended special privilege accesses to the computer resources. However, a rootkit may be incorporated with other files which have other purposes. It is important to note that the utilities bundled with the rootkit may be malicious in intent, but a rootkit is essentially a technology; it may be used for both productive and destructive purposes.

A rootkit is often used to hide utilities. These are often used to abuse a compromised system, include so-called "backdoors" to help the attacker subsequently access the system more easily. For example, the rootkit may hide an application that spawns a shell when the attacker connects to a particular network port on the system. Kernel rootkits may include similar functionality. A backdoor may also allow processes started by a non-privileged user to execute functions normally reserved for the superuser."

Jimmy 2004 · Apr 10, 2007, 09:15 PM

Good old Sony, they know how to get consumers to like them

They've lost me as a Playstation fan, but I am buying a new Hi-Fi from them so I haven't learned yet... I'm sure it will explode and teach me a lesson!

WarEagleAU · Apr 10, 2007, 09:35 PM

Yeah, Sony got smacked really really hard with that one. Damn rootkit software.

Apr 10, 2007, 05:44 PM	#1
Jimmy 2004 Eligible for custom title Join Date: Jan 2005 Location: England Posts: 5,047 (1.66/day) Thanks: 134 Thanked 276 Times in 185 Posts System Specs	GRISOFT Launches Free AVG Anti-Rootkit Popular free antivirus provider GRISOFT has today launched the first non-beta version of its AVG Anti-Rootkit software, which is free to all home users. Unfortunately GRISOFT does not offer support for this new product so you’ll have to rely on their forums if you run into any problems, but you should certainly consider adding this software to your PC security arsenal. Rootkits are among the newest and most difficult to detect forms of malware being circulated at present, and most standard virus scanners will have either no rootkit detecting abilities or be very limited in their effectiveness, so at present the best way to combat them is by using these standalone rootkit-detectors. Other free anti-rootkit software to look at includes RootkitRevealer, Rootkit Unhooker, Rootkit Buster, IceSword and Sophos Anti-Rootkit, although some are difficult to use and may not remove the rootkits for you - as rootkits are still relatively new and different software will be better at detecting different exploits, it is a good idea to use multiple scanners to complement each other. AVG Anti-Rootkit will work on the 32-bit versions of both Windows 2000 and Windows XP, although Windows Vista support is not mentioned. Source: GRISOFT

System Name:	Jimmy 2004's PC
Processor:	S754 AMD Athlon64 3200+ @ 2640MHz
Motherboard:	ASUS K8N
Cooling:	AC Freezer 64 Pro + Zalman VF1000 + 5x120mm Antec TriCool Case Fans
Memory:	1GB Kingston PC3200 (2x512MB)
Video Card:	Saphire 256MB X800 GTO @ 450MHz/560MHz (Core/Memory)
Hard Disk:	500GB Western Digital SATA II + 80GB Maxtor DiamondMax SATA
Optical Drive:	LiteOn DVD & NEC DVD+/-RW DL
CRT/LCD Model:	Digimate 17" TFT (1280x1024)
Case:	Antec P182
Sound Card:	Audigy 4 + Creative Inspire T7900 7.1 Speakers
PSU:	Corsair HX520W
Software:	Windows XP Home

System Name:	The Rhinoceros
Processor:	Intel i7 980x @ 3.5 ghz
Motherboard:	Gigabyte EX-58 Extreme
Cooling:	Swiftech Polaris 120
Memory:	6 x 4 GB Corsair Vengence @ 1333mhz
Video Card:	EVGA GTX 570 @ 800/2000
Hard Disk:	3x 320GB SATA Software RAID 5 + 4x 1TB SAS Hardware RAID 5 LSI 512mb
Optical Drive:	LG DVD-RW
CRT/LCD Model:	Samsung 2494 HM 24" 1920x1080
Case:	Lancool PC-K60
Sound Card:	Onboard
PSU:	Seasonic X Series 750 Watt Gold
Software:	CentOS 6.4 + libvirtd(CentOS 6.4,CentOS 6.4,OEL 6,OEL 6,Windows 7)

System Name:	Jimmy 2004's PC
Processor:	S754 AMD Athlon64 3200+ @ 2640MHz
Motherboard:	ASUS K8N
Cooling:	AC Freezer 64 Pro + Zalman VF1000 + 5x120mm Antec TriCool Case Fans
Memory:	1GB Kingston PC3200 (2x512MB)
Video Card:	Saphire 256MB X800 GTO @ 450MHz/560MHz (Core/Memory)
Hard Disk:	500GB Western Digital SATA II + 80GB Maxtor DiamondMax SATA
Optical Drive:	LiteOn DVD & NEC DVD+/-RW DL
CRT/LCD Model:	Digimate 17" TFT (1280x1024)
Case:	Antec P182
Sound Card:	Audigy 4 + Creative Inspire T7900 7.1 Speakers
PSU:	Corsair HX520W
Software:	Windows XP Home

System Name:	"Naked Ivy"
Processor:	i7-3570k Costa (4.7 Ghz 24/7), Now de-lidded and NAKED!
Motherboard:	GA-Z77X-UD5H (rev1.1)
Cooling:	SWTech 320 Rad, Modded 655 Pump, Koolance 345
Memory:	16GB 4x4 G.Skill CAS9 2133 Sniper
Video Card:	Powercolor HD 7870 (Core at 1200, 5% bump in voltage)
Hard Disk:	WD 320 / 500KS / 500KS / 640KS / 640LS / 640LS / 640LS / 1TBFAEX
Optical Drive:	LG DVD+-R
CRT/LCD Model:	24" DELL 2405FPW
Case:	Modded HAF 932
Sound Card:	Onboard + HD HDMI
PSU:	Corsair HX750 (love it)
Software:	Win 7 Ultimate
Benchmarks:	Almost stable @ 4.9 Ghz, working on benchies

Apr 10, 2007, 05:49 PM	#2
Easy Rhino Linux Advocate Join Date: Nov 2006 Posts: 10,218 (4.29/day) Thanks: 1,206 Thanked 2,774 Times in 1,792 Posts System Specs	grisoft is my hero!

Apr 10, 2007, 08:06 PM	#3
jurrasstoil Join Date: Mar 2007 Location: Germany, NRW Posts: 128 (0.06/day) Thanks: 2 Thanked 8 Times in 7 Posts	Just out of curiosity: can someone explain in a few words what these "rootkits" do?

Apr 10, 2007, 08:24 PM	#4
Jimmy 2004 Eligible for custom title Join Date: Jan 2005 Location: England Posts: 5,047 (1.66/day) Thanks: 134 Thanked 276 Times in 185 Posts System Specs	I'm not an expert on what they do/how they work, but the basic idea behind them is that the rootkit will hide the malware (which could do whatever any normal virus does) so that it is very difficult to detect - the virus can be running in the background without the user having any idea, which is why these rootkit scanners are good. Wikipedia probably can explain it better than me.

Apr 10, 2007, 09:15 PM	#6
Jimmy 2004 Eligible for custom title Join Date: Jan 2005 Location: England Posts: 5,047 (1.66/day) Thanks: 134 Thanked 276 Times in 185 Posts System Specs	Good old Sony, they know how to get consumers to like them They've lost me as a Playstation fan, but I am buying a new Hi-Fi from them so I haven't learned yet... I'm sure it will explode and teach me a lesson!

Apr 10, 2007, 09:35 PM	#7
WarEagleAU Bird of Prey Join Date: Jul 2006 Location: Gurley, AL Posts: 9,994 (3.99/day) Thanks: 3,810 Thanked 557 Times in 521 Posts System Specs	Yeah, Sony got smacked really really hard with that one. Damn rootkit software. __________________ =-TheEagle-= http://www.heatware.com/eval.php?id=62454 “You crazy? Surfing any website without an antivirus is like freaking with a dirty woman without protection” -OzzmanFloyd120 - Edited for content and clarity

System Name:	Boddha Getta
Processor:	AMD FX 6100 @ 4.432Ghz @1.401V
Motherboard:	ASUS M5A99X EVO AMD 990X AMD SB950
Cooling:	Custom Water. EK 240MM Kit, Supreme HSF - Runs 35C
Memory:	2 x 4GB Corsair Vengeance White LP @ 1.35V
Video Card:	XFX Radeon HD 6870 900/1050 (no OC yet)
Hard Disk:	WD Caviar Black 1.0TB, WD Caviar Green 1.0TB, WD 160GB
Optical Drive:	Samung SH22SL 22X Lightscribe DVD+/-R/RW LG BDRE Reader/Burner Lite ON Max Burner for burning Xbox
CRT/LCD Model:	Asus VH222/S 22: (21.5" Viewable) 1920x1080p HDMI LCD Monitor
Case:	NZXT White Phantom
Sound Card:	Onboard Realtek 5.1
PSU:	NZXT Hale 90 Gold Cert 750W Modular PSU
Software:	Windows 7 Pro 64 bit.
Benchmarks:	5.9 Windows Index rating 3D06 - 17472

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)