 |
||
MBR Protectors & RB Rx
|
||
|
|||||||
This is a discussion on MBR Protectors & RB Rx within the RollBack Rx forums, part of the Disaster Recovery Programs category; Hi Graham Nice one. Think that your translations match up with what I have come across on the nProtect Offical ...
 |
|
|
LinkBack | Thread Tools | Display Modes |
12-29-2011, 11:45 AM
|
|||
|
|||
Hi Graham
Nice one. Think that your translations match up with what I have come across on the nProtect Offical Blog Site (as it is called  ):INCA Internet's Emergency Response Team's official blog.: Get our nProtect MBR Guard for free. where they say: "[MBR 보호][MBR Protection] is set by default and will protect from malicious access. [자동시작][Auto Start] function is also set by default and will run on booting automatically. When [MBR 보호][MBR Protection] is activated, our "nProtect MBR Guard" will protect all of attempts accessing MBR sector." Might well give it a whirl over the weekend (following taking of full image/back up of MBR, etc.)...but I suppose that unless one has & runs an app that one knows will modify the MBR (which it should prevent), there is no way of testing it's operastion without throwing some malware at it (not advised of course without the propoer precautions). Regards Balders 
|
|
12-29-2011, 11:53 AM
|
|||
|
|||
|
I'm impressed at my grasp of Korean
 .I do know of some software which modifies the MBR and which we hope is not malware  . So, I guess a good test is to run MBRGuard on a non-RB system and try and install RB which will fail if it is doing its job!Graham
|
|
12-29-2011, 12:02 PM
|
|||
|
|||
|
Others that I can think of are Truecrypt & ATI Home for starters, which should fail to install if MBRGuard is doing its job but if one wants to install legitimately then one would need to disable MBRGuard to allow that to happen...or the same in the cas eof wantingto uninstall them.
Balders
|
|
12-29-2011, 12:18 PM
|
|||
|
|||
|
Well, I've just tried it with RB which didn't seem to quite know what to do with it. It hung on the copying files screen for a while before the machine locked up solid
 .However, after a forced power off, there was no evidence of RB having installed in the MBR. So I guess that's a definite plus for MBRGuard .Graham
|
|
12-30-2011, 11:04 AM
|
|||
|
|||
|
I can tell you that AppGuard is not compatible on my Vista Business. The program was running but I encoutered a trouble with the shutdown process. I had to force manually the OFF button to shutdown my computer.
Another thing, is that TDS Killer detected on my computer 66 suspiscious files. Most of them are system files with a bad MD5 hash files. I can consider these suspicious files as false alerts. RB Rx probably modify the hash files to protect those system files. Last edited by ramaflore; 12-30-2011 at 11:09 AM.
|
|
01-12-2012, 03:37 PM
|
|||
|
|||
|
Here's some FREEWARE stuff to copy/restore/backup MBR ..
As mentioned earlier, MBRWizard Command Line and here's 3rd party MbrWhisky which is Graphical User Interface for the MbrWizard command line tools. Then we have DIY DataRecovery MBRtool which includes boot diskette builder that will assist you in creating a diskette or bootable CD/DVD. HDHacker is a stand-alone micro-utility that saves, visualizes, and restores the MBR (from a physical drive), the BootSector (from a logical drive) or any specified sector from any disk (even removable disks). MbrFix - Perform several Master Boot Record (MBR) tasks, like backing up, restoring, fixing the boot code in the MBR, etc. The utility should not be used for GUID Partition Table (GPT) disks. The utility now, by popular demand, also come in a x64-version running unde x64-editions of Windows and PE. Finally,Here's a very detailed information page by The Starman, with some download links also to freeware utilies,which some of them I already mentioned in this post.Certainly worth the reading. Hope this helps..
|
|
01-12-2012, 04:45 PM
|
|||
|
|||
|
Quote:
Since it's a freeware program,and does not come with any EULA to accept on, I decided to modify the system tray menu text into ENGLISH.. You can download it at: English_file.zip - 228.2 Kb Click here to visit the download site! (Oron.com) unzip the package,and replace the modified exe with the original file in the installation directory! Virustotal.com report: https://www.virustotal.com/file/59c7...is/1334491935/ IT GIVES THE SAME FALSE-POSITIVE ALERT ON THE ORIGINAL EXE ASWELL,TRY IT YOURSELF! Sorry to MODS/STAFF if this is against the rules to post this in here. Delete it and warn me. :O Last edited by Harakka; 04-15-2012 at 04:14 AM.
|
|
01-12-2012, 07:10 PM
|
|||
|
|||
|
Quote:
.I've been using it on two pc's for the past two weeks without any issues at all but I guess it is how it deals with an attack on the mbr which is most important! Graham
|
|
04-15-2012, 04:19 AM
|
|||
|
|||
|
Re-modified the translations, and also updated the download link+virustotal report link,since the old download link was dead.
Look at my post above. It's a bit odd the authors do not want to translate it into english, eventho it is requested by users on their page.. Edit: Would be nice if the coming new version of Rollback RX would have somekinda self-protection possibility turned on/off, to protect the Rollback RX pre-windows loader being over-written by some malicious virus, so this kinda 3rd party software would not be needed.. Last edited by Harakka; 04-15-2012 at 04:23 AM.
|
|
04-15-2012, 02:38 PM
|
|||
|
|||
|
Quote:
. I've been using it for nearly 4 months now with no problems at all and I still tend to forget it is running until I go to uninstall RollBack and find it can't update the MBR! It does seem a bit odd not to do an english version as I guess it would give it a much wider user base and so potentially bring them more custom. Especially odd as the nProtect site and blog are all in english. Quote:
.Thanks again. Graham
|
|
| Thread Tools | |
| Display Modes | |
|
|
Linear Mode
