Panda AntiRootkit 1.06

Panda AntiRootkit is now out of Beta

http://research.pandasoftware.com/blogs/research/archive/2007/04/02/Panda-AntiRootkit-Released.aspx

Compatability is stated to be “… Windows 2000 SP4 and Windows XP and above.” I don’t know if that means Vista is included or not.

Would someone test this on a Vista box and let us know if it runs? I’m still strictly XP.

Here’s a direct link to the download

http://research.pandasoftware.com/blogs/images/AntiRootkit.zip

EDIT

So what should I make of this?

A very good and intelligent antirootkit indeed.
Despite of the bad on-line scanning (without encrypting their virus signatures), this tool of Panda is very good.
It’s a pity that Alwil never went to this way… Why not?
Vlk, can you drop a word about this, please? :-\

I think so too, though I believe the detection I posted above may be a false positive. Well, Gmer, BlackLight, and AVG Antirootkit find nothing.

Could it be part of v5 Vlk? Please say yes :slight_smile:

Yes a bit like Rootkit Revealer, which produces a lot of data and you have to decide what is harmful or not, but in this instance it seems like it believes it is a rootkit, perhaps it doesn’t like something in the Alternative Data Stream ? Probably best to export CSV, and perhaps it would nice to be able to ignore and submit it to panda for further analysis.

I’ve done that as it was the only option. Deletion failed and I saw no option to quarantine. Maybe in a few days the detection will be removed or a way to delete will be added. I’ll let you know.

Heads up!

Zone Alarm is detected as a rootkit:

http://donaldbroatch.users.btopenworld.com/panda.png

Maybe it’s not a false positive ;D ;D ;D

lol!!!

well…well i havent tested panda antirootkit but from what i’ve read above…it must be rly rly effective :stuck_out_tongue:
i will stay on avg antorootikit or blacklight… 8)

I want to be able to rely on this still. When we had that problem with that beagle root kit stopping the avast! processes it was Panda and Blacklight that solved the problems. I hope it hasn’t taken a wrong turn with this release.

Hi mauserme,

You can export the CSV log and send it to Pedro Bustamante at the Panda blog: he posted his e-mail address in a comment there and asked somebody with a similar problem to do the same.

I’m sure they’ll have plenty of people reporting the ZA FP, so I expect that’ll get fiexed pretty soon.

I’m spanish. Panda is an spanish company. But here in Spain we say Panda is the big Virus :D:D
I hate Panda products. A lot of marketing but slow down your PC and his efectiveness is…POOR.

There are some who might agree with you, I particularly don’t like the on-line scanner downloading unencrypted virus signatures into your system folder for your resident AV to trip over on future scans, I have never used any panda product other than to try the anti-rootkit tool.

So as far as the anti-rootkit tool goes the beta version did help out many forums members. Now the final release is out we will have to see if it is as effective as the beta, however as a stand alone tool it shouldn’t slow down your system, but the Jury is out on its effectiveness.

Thanks Frank.

Do you have a link for this? I can’t seem to find it.

I would for sure like to ask him about Vista compatibility too.

keith…try this forum…as i pm’ed you and told you my quad is in the process of being put on a computer desk when i get time so i can’t check to see if the panta antirootkit is able to run on vista…this forum might have an answer ???
http://www.antirootkit.com/forums/

[url=http://Do you have a link for this? I can’t seem to find it.]Do you have a link for this? I can’t seem to find it.[/url]

It’s your link from the top of the page. :wink:

duhhh ;D

just got this from panda support since i haven’t got my quad desktop on the desk YET ::slight_smile:

Dear Dan,

Unfortunately, there is no information regarding Vista support. Have a
good day.

We appreciate your business!

We are pleased to inform you that we have created a new area in our
website where you will find solutions to the most “Frequently Asked
Questions”.

Thanks,

Cuu Chung
Level 1 Support Technician
Panda Software U.S.A
Techsupport.usa@pandasoftware.com

haha…i love the mails which seem like a pc report message…haha… :smiley: