|
|
Rank: Member
Groups: Member
Joined: 5/15/2009
Posts: 27
Location: US
|
Hello Forum
Please advise...
Does Mamutu offer protection against Rootkits...
Does anything offer protection against Rootkits....
May Mamutu conflict with my resident Security app that includes a Behavior Detection / Blocking engine.
Regards
bjm
|
|
Rank: Advanced Member
Groups: Member
Joined: 12/21/2007
Posts: 192
Location: Sunny England
|
Hi bjm,
(1) Googling mamutu rootkits yielded:
What does it detect?
Currently the Malware-IDS can detect the following malware types:
Email worm
Spyware/Adware
HiJackers
Backdoor trojans
Trojan downloader with reverse connection logic
Dialers
Keylogger
Rootkits
Viruses
(2) Thus the answer to your second question must be also be yes.
(3) If you use the search facility above you should find the answer
though, as I recall, it is a well behaved program and you could
always conduct your own free trial.
My regards
With triple boot of Xubuntu (since 9th April 2009) and Ubuntu (since 1st February 2009) and W98SE (since 1999)
and 2.0 GHz + 640 MB ram. In my case, advanced membership status relates to age not to computer expertise.
Note: Using the free Linux programs (Wine, default mode set to XP, and Wine-Doors) I still have a-squared Free
|
|
Rank: Administration
Groups: Administration
Joined: 1/5/2006
Posts: 2,467
Location: Austria
|
Mamutu protects against new infections of rootkits, but it is not able to find/clean already present rootkits.
Regards,
Christian Mairoll [CEO]
Emsi Software Team - www.emsisoft.com
|
|
Rank: Advanced Member
Groups: Member, Moderation
Joined: 2/24/2006
Posts: 4,495
Location: Australia
|
Thanks Christian,
I will add few links and info about compatibility
Hi bjm,
Have a look at this page in the 1st place
Quote:Invisible Rootkit processes
http://www.emsisoft.com/en/software/mamutu/
plus what Christian Mairoll clarified
As for compatibility there are 2 treadsd in Anti-Malware and Mamutu
respectively
http://forum.emsisoft.com/Default.aspx?g=posts&t=3626
and
http://forum.emsisoft.com/Default.aspx?g=posts&t=2760
Basically we don't know what system you are running and what similar Behavioural Blockers (IDS and/or HIPS) and other residents you have
If there is something new to what is written in the referred threads you may add info there from your experience.
As for the conflicts they may occur in some cases.
If that happens, the rule of thumb is – mutual exclusion.
There are no conflicts with any real-time residents here
Hope that helps
My regards
Christian Mairoll wrote:Mamutu protects against new infections of rootkits, but it is not able to find/clean already present rootkits.
XP Pro, SP3 (32-bit); a2-Free 4.5.0.21(beta); Firewall: Comodo CIS (Defense+ HIPS); Software DEP: integrated into Firewall; Anti-Malware: Mamutu 2.0.0.23 (beta); Verification Engine PlugIn (resident); AntiVirus: AVG Free (guard resident); SpyBot SD (+TeaTimer resident)
|
|
Rank: Member
Groups: Member
Joined: 5/15/2009
Posts: 27
Location: US
|
I am running notebook w Vista SP2 32bit with NIS09 and desktop w Vista SP2 32 bit with NIS10
If a conflict were to occur....might the conflict diminish the effectiveness of NIS or Mamutu to perform optimally. The scenario of two ball players chasing after the same fly ball...the fly ball is dropped?
bjm_
|
|
Rank: Advanced Member
Groups: Member, Moderation
Joined: 2/24/2006
Posts: 4,495
Location: Australia
|
Hi, bjm.
I'm not sure about “players chasing & dropping balls”  analogy, but
there is no “diminishing of the effectiveness” of two or more products themselves if they are compatible in terms of their functionality.
It is rather the performance of the system as a whole can be affected.
It always is affected as soon as new security added. The question is whether the resulting performance is acceptable and we are not overdoing with security layers based on personal level of paranoia regarding the matter.
Sometimes there is no need for mutual exclusion rules. In some circumstances that is “must do”, so there is no monitoring of each others' activities.
In both described cases the effectiveness of what they suppose to deliver security-wise is not diminished.
In case of “real clash” we simply cannot run them together – that is where basically all or some participants cannot function at all... and there is no other way as to get rid of one of them based on user's choice.
If you search, practically any security related forums and/or sites you will find the list of incompatible products.
Interestingly enough those lists are “subject to changes”. New versions can eliminate problems or introduce them.
As for a-squared, as far as I remember, there are only two products in doubt currently reported: Zone Alarm ForceField and Ashampoo Firewall.
Ashampoo in particular is a long story and there was time when it "jumped from incompatible to compatible". But it seems like the situation turned back to “normal incompatibility (see below) and two users ( siriusb88 and Dan ) chose uninstalling of Assampoo Firewall.
there are few discussions about Ashampoo Firewall
The recent case: http://forum.emsisoft.com/Default.aspx?g=posts&t=6313
and
about Zone Alarm ForceField: http://forum.emsisoft.com/Default.aspx?g=posts&t=5403
and subsequent link there – discussion in “Compatibility thread” with marinearo (started Monday, 1 June 2009)
Hope that was somehow helpful
My regards
XP Pro, SP3 (32-bit); a2-Free 4.5.0.21(beta); Firewall: Comodo CIS (Defense+ HIPS); Software DEP: integrated into Firewall; Anti-Malware: Mamutu 2.0.0.23 (beta); Verification Engine PlugIn (resident); AntiVirus: AVG Free (guard resident); SpyBot SD (+TeaTimer resident)
|
|
|
Guest User |