Показано с 1 по 10 из 10.

Vba32 AntiRootkit 3.12.3 beta

  1. #1
    Expert Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    13.06.2008
    Сообщений
    241
    Вес репутации
    1187

    Vba32 AntiRootkit 3.12.3 beta

    VirusBlokAda Ltd. glads to offer you a new version of Vba32 AntiRootkit and invite you to participate in beta testing of our product.
    Links to download:

    ftp://anti-virus.by/beta/Vba32arkit_beta.rar

    ftp://anti-virus.by/beta/Vba32arkit_beta.zip

    ftp://vba.ok.by/vba/beta/Vba32arkit_beta.rar

    ftp://vba.ok.by/vba/beta/Vba32arkit_beta.zip

    The following techniques of kernel-mode rootkit detection are implemented in Vba32 AntiRootkit:
    searching for SYSENTER hooks;
    searching for hooks by replacing addresses in SSDT table;
    searching for hooks by replacing addresses in Shadow SSDT table;
    searching for hooks by modifying IDT table;
    searching for export table modifications of main kernel modules (ndis.sys, hal.dll, ntoskrnl.exe);
    searching for hooks by modifiying machine code (splicing);
    searching for hooks by replacing addresses of IRP packet handlers;
    searching for hooks by replacing addresses of FastIO request handlers;
    searching for kernel modules hidden in the memory. If an object is considered as hidden, it'll be marked as Hidden in memory;
    searching for processes hidden in memory. If an object is considered as hidden, it'll be marked as Hidden in memory;
    searching for kernel modules which image on the hard drive doesn't correspond to the image in the memory. Such objects will be marked as Modified image;
    searching for installed kernel mode notificators.

    Moreover the following additional techniques are implemented:
    scanning autoruns;
    scanning drivers and services specified in the registry;
    scanning all obtained objects (process files, autoruns, loaded drivers/services and kernel modules);
    checking digital signature of all obtained objects (process files, autoruns, loaded drivers/services and kernel modules);
    displaying additional information retrievied from file resources.

    The following features are designed for neutralizing rootkits:
    restoring hooks in SSDT table;
    restoring hooks in Shadow SSDT table;
    restoring hooks in IDT table;
    restoring hooks in main kernel modules (ndis.sys, hal.dll, ntoskrnl.exe);
    restoring hooks made by machine code modifications;
    restoring SYSENTER hooks;
    removing specified objects from autoruns;
    enabling/disabling drivers/services specified in the registry;
    copying specified files to the quarantine early in the system boot;
    deleting specified files early in the system boot;
    scanning and deleting autorun.inf files;
    removing installed kernel mode notificators.

    Vba32 AntiRootkit allows user to collect information, which may help in solving problems at user's computer.

    Vba32 AntiRootkit has English help (Vba32ArkitEN.chm file).

    You can send your feedback to beta[at]anti-virus.by or post it here.

  2. #2
    External Specialist Репутация Репутация Репутация Репутация Репутация Репутация Аватар для Naughty
    Регистрация
    25.01.2009
    Сообщений
    15
    Вес репутации
    62
    VBA does not appear correct path to the run file. Look pls on the Attach.

    Instrument will be tested and repaired the MBR sector in the future?

    Thank you for your reply

  3. #3
    Expert Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    13.06.2008
    Сообщений
    241
    Вес репутации
    1187
    Цитата Сообщение от Naughty Посмотреть сообщение
    VBA does not appear correct path to the run file. Look pls on the Attach.

    Instrument will be tested and repaired the MBR sector in the future?

    Thank you for your reply
    Now Vba32 AntiRootkit doesn't have techniques for searching processes, modules, hooks and other in ring3. We'll do it in the future (next versions).
    Product is constantly evolving. Now we are working up a low level disk access.
    Последний раз редактировалось sergey ulasen; 23.09.2009 в 11:34.

  4. #4
    External Specialist Репутация Репутация Репутация Репутация Репутация Репутация Аватар для Naughty
    Регистрация
    25.01.2009
    Сообщений
    15
    Вес репутации
    62
    Цитата Сообщение от sergey ulasen Посмотреть сообщение
    Now Vba32 AntiRootkit ......

    Thanks for the info.

  5. #5
    Junior Member Репутация
    Регистрация
    28.08.2009
    Адрес
    GeekstoGo.com
    Сообщений
    26
    Вес репутации
    54
    Hi there. Excellent job in making such a great tool. I really like how neat the log file is.

    I have one concern. I use Vista, and my monitor runs in 1280x800 resolution. The font in the program makes it so that it is virtually unreadable. Is there a problem with how the fonts adjust according to the host's resolution?

    See attached .jpg

  6. #6
    Expert Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    13.06.2008
    Сообщений
    241
    Вес репутации
    1187
    Hi, NeonFx!

    Sorry for delay.

    Цитата Сообщение от NeonFx Посмотреть сообщение
    Hi there. Excellent job in making such a great tool. I really like how neat the log file is.
    Thanks

    Цитата Сообщение от NeonFx Посмотреть сообщение
    I have one concern. I use Vista, and my monitor runs in 1280x800 resolution. The font in the program makes it so that it is virtually unreadable. Is there a problem with how the fonts adjust according to the host's resolution?

    See attached .jpg
    Do you use non-standard type or alternative theme for your Vista (as Aston for example)?

  7. #7
    Junior Member Репутация
    Регистрация
    28.08.2009
    Адрес
    GeekstoGo.com
    Сообщений
    26
    Вес репутации
    54
    Цитата Сообщение от sergey ulasen Посмотреть сообщение
    Do you use non-standard type or alternative theme for your Vista (as Aston for example)?
    Hi sergey,

    No, I do not use an alternative theme for Vista. All I did was edit the color scheme in the Windows Vista Basic theme from blue to black.

    I have used Vista for about two years now. I have not seen this problem with any other program, which is why I brought it up.

    Do you think maybe there's a setting on my computer I can change to fix this?

    I have attached Higher quality pictures so that you may see the difference more clearly. They are zipped because of the limits on size.

    Thank you

  8. #8
    Expert Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    13.06.2008
    Сообщений
    241
    Вес репутации
    1187
    Цитата Сообщение от NeonFx Посмотреть сообщение
    No, I do not use an alternative theme for Vista. All I did was edit the color scheme in the Windows Vista Basic theme from blue to black.

    I have used Vista for about two years now. I have not seen this problem with any other program, which is why I brought it up.

    Do you think maybe there's a setting on my computer I can change to fix this?

    I have attached Higher quality pictures so that you may see the difference more clearly. They are zipped because of the limits on size.
    Ok.
    I think it's our error. We'll try to reproduce problem. Thank you.
    Последний раз редактировалось sergey ulasen; 29.09.2009 в 19:58.

  9. #9
    Junior Member Репутация
    Регистрация
    28.08.2009
    Адрес
    GeekstoGo.com
    Сообщений
    26
    Вес репутации
    54
    Alright Let me know if you need any information.

  10. #10
    Junior Member Репутация
    Регистрация
    28.08.2009
    Адрес
    GeekstoGo.com
    Сообщений
    26
    Вес репутации
    54
    I am so sorry about this but it seems to actually be a problem with my system, not the program.

    I noticed the same font when using MalwareBytes AntiMalware. Most of the text is the way it should be, except for the font on the tabs at the top.

    I apologize for any inconvenience this caused. I still have no idea how to fix it on my own system though. I'll play around to see what I can find.

Похожие темы

  1. Vba32 AntiRootkit 3.12.*.* beta
    От sergey ulasen в разделе Публичное бета-тестирование
    Ответов: 175
    Последнее сообщение: 20.04.2012, 17:36
  2. How to make a log with Vba32 AntiRootkit?
    От Aleksandra в разделе FAQ
    Ответов: 0
    Последнее сообщение: 10.05.2010, 22:42
  3. Ответов: 0
    Последнее сообщение: 10.05.2010, 22:42

Свернуть/Развернуть Ваши права в разделе

  • Вы не можете создавать новые темы
  • Вы не можете отвечать в темах
  • Вы не можете прикреплять вложения
  • Вы не можете редактировать свои сообщения
  •  
Page generated in 0.00504 seconds with 19 queries