Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


BitDefender Roots Out Rootkits



 By: Ryan Naraine
2006-07-17
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
BitDefender has joined a growing list of security vendors testing tools for rootkit detection and cleanup.

BitDefender has joined a growing list of security vendors testing tools for rootkit detection and cleanup.

The Bucharest, Romania, anti-virus vendor on July 7 unveiled an anti-rootkit utility that promises to spot and delete stealthy software programs that are used by malicious hackers to hide malware.

BitDefenders rootkit cleaner will be available as a free stand-alone utility for registered beta testers.

Resource Library:

The companys immediate plan is to add rootkit-detection features to its product suite, starting with the next iteration of its consumer Internet security suite.

Vito Souza, North American marketing coordinator for BitDefender, said the startling rise in rootkit infections on Windows machines has made it mandatory for security products to include rootkit-detection capabilities.

According to data culled from Microsofts MSRT (Malicious Software Removal Tool), rootkits on Windows machines are a "potential emerging threat." Of the 5.7 million machines cleaned by the tool since January 2005, 14 percent were infected with a rootkit.

In 20 percent of the cases where a rootkit was found and removed, at least one back-door Trojan was also found, confirming suspicions that rootkits are being used to hide other pieces of malicious software from anti-virus scanners.

Microsoft has added detections for some types of rootkits to its Windows Defender desktop product, and several other security vendors have shipped highly rated anti-rootkit utilities.

Security researchers are continuing to push the envelope to find ways that hackers could make rootkits harder to find. Just recently, Joanna Rutkowska, a stealth-malware researcher at Singapore-based IT security company Coseinc, warned of a new "Blue Pill" concept that is capable of creating malware that remains "100 percent undetectable," even on Windows Vista x64 systems.





  Reader Comments: BitDefender Roots Out Rootkits
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Ryan Naraine
 


xr㶲0;; ʷ♵Me4%[X+eikRJEĘ"H'gy 7](ɗd8["h4Aȅ3!9)ٟ0O-Ij}ݻPAeFAUM7 JԶO7RM3i /4w7GlJ{'A :':DPL5 ΚMH}ٚ7'x2)X$8kzZC'AjZ$m(P8"X.wD~The}ǮJߣWFn3pa_ʞ0HYTb{Aq<5;n3 w2`~|!k`TxxDFkMmWW*cOfn ڭc㥨 aP`\9t} ^ Go&lw&"ScO$ӡ"̒JKA`:rm3k> NZ] z73g }KH;R@}k {>5I ib1lp2E%$7 .mqO0/`?ĶhG:]Uh?AWuomz^[uwߝ;iz]],s&"U+wS>_Bɤ:Zdq}9e,f4öCCٰ5Rkr\u\?vދ*1݇ 2+KB(U@BlݹڎжF^׵V}\\G[r ] NַRߘ`ZLTQRxf Rc@G'Y_'5}(ĭ~㖯[zISc ina[E4f™EU:2Is2hՠss}wȠsz~r!|c9̠jPEf+2hZuܞo9nWmnH{#+|v>5M0\ܱ¬:cUoq`Kk'^/3S?&:aZ+VZxCw:|!j]<螒$˷SYn_ `םBm۲ܹ*BZKEןȃ R(E34 i[2)=-8X@/@שS 4V4u{(-Mn #dh&ϭFh- @ho*K>Lr &@Sk~$GM\5ņ])!edFS۴/H*B--\Dh+ԜW7ٛ"O;zL*\RD3Al8{Ä*^뻹(4l=.k\'֛esJ֖t];7Eя1-+}י4:ǛN{W~+>cq4Y`A-. :~Stjzb:7V2TTrkTQnũl :2X jXR7XaQ/lA`:g1>QӚ#qRO#Gs>H2胎6mb8-" ,70}Hw@zqI 4o q٭mE%_¤<  FAi$nh-D@wM0Ie+!3 uO ΃droo͠A(oEnHX^0 jipHpyY?9B]uCbB=ŚuG &SsnPBxx?ɜ+) -@>HHBt"AђF )4 g X"K"''Ao$gw$]Vi+RaD4T*nOu$]wV*_*esRأXB YX/E_R23#CdɬaX91{MfT`"[ᛥLKak`F^jI$M#AIi\ZWU>5BYQ%NC׹'߄#a BӽB13 A3uOP#'4;7u9Z{;N/=\214GJ/ι7)j`~Tn^ßf1_w\ճ&VAB glCC1{ޡPXfV "f˧q4MlJB=آfmTG*+iS#SLodvXvia\;6`aPeQ@3MVRQy=:Awm0HNmt >OH) zS7HЦ0V2PaIbg`m1Jx>x# d\46L XbOF=F K~y,.,KYgyMٓZB|vN YGу:}4̄+ul4 T,q?79Hyì5ӝ5̆ՊRRՄiO9&_G5 k*S+wڶOt]QG#XZ1B.-g @QQ>5 \!EX+̂L׃RUad[s5/|VwdNp'pW["LJ}#ܑeNl*I[pfۻ(SX}`/g8HzU0ȇ tV8wV|"@? v: C\4<`S4pf mWq=[JaJw J`Z~rZYŢ&@u(DkQp?FCS؇`m/RTڞw "덿9KAG^320"#;wF\!fVS]\C܏q;|uPB&s}&nj^F[uc`ᔻ,pD{S+)C,tljy 0:g|}'YQFn[ "qS)/h{ ~:ꪦUR`|,4̩,FflĤκVus|,On?zL5sݿyjm==ݸ{r_"w~+琩osC/ ƻ~rnAf ƫ|8)F.+6,^kja;9Qo@Hms10 ZH{QOI07$pk)fS(j C VI 3FyˡYF s_3q:FUUMyU̐,+Cj]K>a51rY i&%lĦOmDoM|ݤ1p hx (uO(Ke卤j߶JZVzϢ Cz풖X2B0q܇J3ڟ5^@M|GZOT%Rq4i#⩬yF(.&skgo@̦w(@=6{]M茻h]!L~u$M<+ojMn@uz0Rlɪ+> 2PJ%I=| 2aӣ>U}?*\&Iv3ҿ﩮 BGD0|=)xT-kZb[Ԫ>"i!`\=VS=YKrvjU5d< j;!O}+tS1wOXL] tKO%EDOCVi&gX&1솿V*Uًk㘘ٿ*oSP[/I6 \S0:;_ ݘb3at -ⴔQ+Em=8?"%mSY{O0i^;x01N 0V/{Yj\00C~WοH7Wm{Q^99P K rcE1>bt߫]=/co[vt0lgAhy+ 84Q`лp.[7WKߧ ?wL.W)ޠw-< rLpBj]t?\(d0 sziDg#6b `xѤĂ\zF_}XrsdQ5hl8 Z`!w1ߐtxPvHg<ևAPc{ r H)'4 n9>̝\b/zAVB 0F_Th)4zu3xnZ)5[E_ſE}YVST t6~OWK0NvfAbQ+F+=ǭOwq@HI NAn|p_<Ġc9n1~KAZd}eԉ9%2 \ {-~=`rvGP2)Bzҙ*IZ;Ũˢ ݖ2h9 :)Oz.Op|Nik'i^VӲQ6T$4%44ALNC]F+d#g ҿn]mOp6<5ޥ]ƙWxvImc%yt2ű2kE9e85(AuMHIFiIw3DJ^KkhVˮu^4~xR̅2ODYyQ=êj^uoXu@Q$. tnt7ýԆ+*9"G,&@Q ?Y .k Cv}`>&k?7nL q;f='Əs= cm:{@FP$"BZS2'4,;멛^kͰ"K#sCӝ閃(HGzҺtnH09Js djBOH4b5~ÿ|뢧G r{k_=g䢅q+~P{20t[t_?H/Fyc(OhSi٘&BERTUjlko$+*sᔤCȌXNG&Xd17K0d&zvAK Js`̾qG7׷boᕠX}& ~W}x@%B{gQJW=(q-@kʂ%%դE(IaSDDKh#i>R?{+!bi9bzQ%Fc?YS+xϗ,t4?q2L~~+jFY:le]&lş??z9/ݓK'<||A-~OtٔsbIoxl/ϋ%d dݦ~83IR!*+. eњVI VGEqH<,h{eBmFL}%$~FםFV4] 77o9_$ՌK#”h9G{i*:E,ʊ#XaR  P:. q\ч*V`eI&X{!C"=ȉm65xiU7 7UIorA{q~q"Й{faa!"2}]̰ڈYs+ܖJ/|I'0&O75"_٘C+5X4:eI+o;In8k0' $1c!=ͭ_}Mn8ZRv&,ws- t)lKx)sߜtGrAwmJZI-k5  HP1 >+ᇗ&RDӥ[2#fLnV.d*qCquU':QmnbNDLS|vnaTUa'Q$X`CߺC[ lڵ`*rmn F ZKx _ ˼br/eKN|B8_=.}:[פ3.0<@ԍ@\"g;0mjNvB -坌m݃jU+m15֨Ĺ%.uc hK#\ñk[3y4`?FX#XIQ~@:f_ Y׺`m},NVAhbt~x%˟'Ċ<ߥ]<&+˪E|HxUt ks,GvUhv۸40mBM~֔jĪ' L܌\s+0F=џ[!0!kʜ .auITX-Ѝ0w4[uNE $< !|}=1-{ d_&HW.^>/}НIV a5}"rk1j+T)ԊtJsL5u=z==cT;g8pHxcjH_̻3-xWܛx}*_&:Ti$$) /e%kPjS8G8sN- +ϧKD]ܱ{V*Ng}w'SI/fJ7Q +O&E+͝ulE)yaН{B: |[*_ VQ jL"+lyϫff`S"46ꇠdehh֒+N%&8ǦpzьSqDgɀͯFXm~"%qk \/c >ܻF&Ղ=^_V#'>W-IO VQ Wkd=I߭E )#(hILHm(lø jc"ܵ8 e!?5݃~Oe3S9x`GQ?PT⯠œvfV6 ?=XNfTn#n$pK4&kuײE&F?z xO2lO,h6EW"f`a3ط/0I_n]ZLǔuT{k~;{ѽ٧0G^H& DcঐߏP?GoN &:vxU\*F]{N9-( Ye~P-r%8ɠabq#z@]o_P]я TmS_^|I C`waVƮ"Jfad|$ƽblE}`Lhpśx Kբh~JZ0="G@Ÿ Rxc)A+CۏAB,p}%QFpxIs-KG96qΌ"F$drk".]sI.jJ]]-O?P/ ]ZX,:Ȓ~WeL<^^A֋S+ iMG"r*ނ0H>PSq_5C UH+4h 7נ)؜>7-yM13bcC50fB{y +6/LtkS8Ow| e-JHP)%$zv/;ʘ|tP[˜zpfqO\C/Ԯ,tZhxD2$~]+jB_"|tŲfsGO<[^d3B{wYnW'b^>^sng0؞b/,9+svYZ`3+n{l+ZKɶ8+YlwAQgg)q8 @ɹ莥eCQq߶~m>9`V'MZxJU!7TP6ijJیh-;Q5&/eLW<00t+PγjNT\OpY|XC3 ñL_^ĭRv=Nm~#ůC*5;Rl9Φ![kO:e25+ St$#?))ځUޒϞܻi4<}A6ڄyiǥ4Y*gMr//Վ\ixc#Fڌk3dx rF@Yf!s;H]YʋHB0\' ~hu/U :7}ȈŔ>s2+3`#ZM^f]rߩ1u>G6RgWy0wKGE–2.LjM-l  \Q- rH8G}8;ѹ檯ԕ1"W9'ph\pr@K$7L+2&Bs8or~tNnOKZ&G6@@P0H47׷X΅ۈ\x3t߰Þ1;my^p\vGl/u zp8 zk&(?,p֏D {GLƙ;fSZ, Σ/@QR]ΰ*@[`g*o cn ~jJyI87m3 s1"(3[]ă0>]w38l,oB<ⱴP <'+Hou7@fBh),f,5=LC3ʰLXU+3? 0fU3{8~BOSz% %uW0`A i2fg4t\@%@0>6#&Twu}}nHt:zӽt{WsѻsR֊E_=Gݩ;'U{5(4,fbv>4m^+LJry:2 gWSr3\h"!wf8lx<>b+Q^e5DM@_zuL&BV}|j%om9 go:ٙ%/GN]3G MPЦ?h 1c/B&7bS߹HShF&5/m];^ ?@pj+彜r6Р)?g@|Pq}yv˜/sy9\2?/?/se*OP)s)˜r߫ʑ+A{9^~kS&?>7_?}OP)'ߧBm^9mB9_zy[9rֺƅ۩INys"[~r^<^ȬuUW5WlNA6KֈE>Y7 xЧx.؇O WY>-KbaP$ }U8#las;̞~UbxaQbl1lx6k楲pN!3J41|fZgGq`FP[tC=ӯ.ۘs~oush4HjYj ~ZV-' a،b.$&i2ZUW5rF(xeh[i2oVS yVi8n[C#Dk( }::al*V,6of!3^46T<gu~o'2Pd Sebb{ˈLbT|Jx oTq 9f,X.>&]\ʠaCoj/XbKZ;cp\;=2 gjy(}dy0\9Kh]&V=ȁF=CY%g,#[ P`t{^}̚~{B΄[4п#s%(u575t0@2u–1*F'V!]S |"9<;${F(V 1{}("0 ;Vӄ.a "hxM " n+K ?[0? x&0]$LfLe~Of@L VH֠QAi41[|n΀`Pn=,6"f>̆IW"r;7% \ؓZ_p1d`6Nώ;[9 Wuu72J,xR Hn2,)<;:aIx fB~. .'1<d⟒|e'Wb'cECq&fb P|_|a9/Ҟ='̄0Q;9L }X}T.I 5sEEבE,&Jhӄ B:̈́dX.N`'_CSh Yx N甽1¢4׌eԦu"vIߵ=8q``a?>N@>AՋpOaHz7I>GcБ_45:Z-5,⦈L ALH\=oz^DbtΖb'Oxm]szn()y+J9*مx3T*Hq&x*DKrX}P?):OOgsZ0_Hv!ߌ,c 0У,*05O{shՆGXx; [) Iy>p <Щ0 \bX%e܌uF. ѨipKN \70(|Nuuv{B7* %hw2bo _ ($3}E.tʢ^Ee鑢%!ݴ;Y B*E{nw>_zC%ȕ/2F#-<#DYfCժZ-Ni|ӷۊ#iQg8&rYOJե{7 D^4–mJHU&s)c MW\eR<>gr09d֎V&|&Z2cˤ_ l'