Microsofts worm-cleansing tool has been updated to detect and remove Hacker Defender, a notorious rootkit program used by malicious virus writers. It is the first time Redmond has added rootkit detection capabilities to the free a move that underscores the increased prevalence of stealth rootkits on Windows machines. Stephen Toulouse, program manager at the Microsoft Security Response Center, told eWEEK.com that the decision to add Hacker Defender to the worm zapper was the result of feedback from users. In all, Toulouse said four child variants of the stealth rootkit will be detected. Hacker Defender (Win32/Hackdef) is a family of backdoor Trojans capable of creating, changing and hiding Windows system resources on a computer that it has infected. The program works on Windows NT 4.0, Windows 2000 and Windows XP machines. According to definitions posted by Computer Associates, Hacker Defender is a Trojan creation tool that can also be used to wrap existing Trojans to make them harder to detect.
![Andy Rootkit 4.0 Andy Rootkit 4.0](/uploads/1/2/5/3/125391867/963344708.png)
It can also hide proxy services and back-door functionality and conceal use of TCP and UDP (User Datagram Protocol) ports for receiving commands from attackers. Microsoft isnt the only software vendor flagging rootkits as a growing threat. Finnish anti-virus specialist F-Secure Corp. Recently released the BlackLight Rootkit Elimination Technology as a free beta tool through Apr. /zimages/3/28571.gif Sysinternals Freeware, a site that offers Windows utilities, also offers a tool capable of finding registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. The availability of rootkit detection tools has triggered a between security researchers and spyware writers. The latest iteration of Microsofts worm cleanser also adds detections for the Mimail family of mass-mailing and network worms and the Rbot backdoor Trojan family.
I'm not sure what kind of virus this is but my friend is IT and told me that it was most likely a Trojan rootkit virus. Symptoms: redirect to advertisements when clicking on links and ads popping.
![Andy Rootkit 4.0 Andy Rootkit 4.0](/uploads/1/2/5/3/125391867/131715088.jpg)
New new variants from the Berbew, Bropia Gaobot, MyDoom and Sober worms can also be detected. /zimages/3/28571.gifCheck out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor.
UPDATE May 10, 2015: NEW ROOT ALL APP KINGROOT SHOULD WORK ON YOUR DEVICE. EVEN WORKS ON VERIZON NOTE 4 LOLLIPOP ANROID 5.0 UPDATE: IF KINGO DOES NOT WORK FOR YOU CHANCES ARE THE NEWLY RELEASED TOWELROOT METHOD WILL WORK! Towel root should work on most devices with kernels built prior to June 3 2014. Check out my video demo and grab the download here: Download TowelRoot HERE: UPDATE: Kingo has released an official statement. According to them the accusations on XDA that this app is malicious are unfounded and no evidence has been presented.
The camera app is the exploit for root only. Twitter @DroidModderX Grab the Files needed from here: SUBSCRIBE to this channel for more coverage on the Droid DNA and other devices like the Galaxy Note II, Galaxy S III, Nexus 10, Galaxy Nexus and more! Be sure to Click the ThumbsUp Video It helps me more than you know!