![]() ![]() Such program shall employ several detection methods, and therefore would defeat programs concealed from one certain method. The only solution is creation free-of-charge Opensource program for detection of hidden processes. Therefore the latter method is used in commercial rootkits (for example hxdef Golden edition). The user who bought the commercial program cannot change it, and therefore the binding to the concrete program works reliably enough. * think up a method of concealment from a certain program, which is much easier. * think up a method of concealment from a certain principle of detection, Furthermore, all these utilities can be easily avoided.Īll programs available now, use one method for hidden process detection, therefore we have 2 choices: All other companies demand considerable money (kao - not true. For this purpose there are only a few utilities from which free-of-charge is only Klister (works only on Windows 2000). Manufacturers of antiviruses and firewals lagging behind as their products are not able to find hidden processes. Naturally, it is necessary to have protection against hidden processes. ![]() Therefore we should expect hidden trojan processes in a near future. I think that trojan authors are lazy, since it requires extra work to hide the process and it is always easier to use ready-made sources and copy-paste them. Literally only 1 trojan from a 1000 is hidden. It still amazes me that there are only a few trojans using these methods. There are lots of methods available for such a purpose and there are source codes available. ![]() Actually, process hiding is incredibly simple. Many users have got used that Windows NT Task Manager shows all processes, and many consider that it is impossible to hide a process from Task Manager. © 2002-2005 - all rights reserved and reversed If anyone wishes to correct some grammatical or factual mistakes, he is welcome to do so. My apologies for rather crude English language, both English and Russian are not my native languages. If admins of or author feels that some rights were violated, please let me or board admins know and this translation will be removed promptly. Translation of hxxp:///article.php?article=hiddndt I was unable to find any policy about article translations on. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |