System & Rescue Enviroment Scans are Missing a Feature
Hi!
i do not see a '' Root it scan '' feature in system scan & rescue scan even rescue scan is performed in a crucial environment specially when windows normal start up becomes impossible , why this important scan type is missing in this special environment ?
bit users can only avail this kind of scan by using a custom scan option when they can normally start the windows.
There should be an option to select or deselect root kit scan right inside the system scan along with an option to select/deselect '' scan all/new or modified files , because users have to by pas your system scan & need to create a custom scan to avail proper security.
2. Does system scan mean only the C drive which is usually the system drive ? ll it not scan the other drives ? or anything e.g. external drives ? if this is so there should be a built in scan which should scan all of the drives including recently attached any sort of new drive.
if you consider my opinion legitimate plz forward it to the devs, thx.
Comments
-
Hi @Rock.87,
There is an option for scanning only new or modified files and this only refers to on access. You can find this setting if you go to Protection → Antivirus → Advanced and scroll down the list of features.
Regarding scan drives, in theory Bitdefender scans absolutely everything, and if some drives are not scanned, they most likely have peculiarities or exceptions set.
For scanning peripherals, there is also a scan option which can be configured according to user preferences — Scan Flash Drives.
As for the first question, I need to perform some checks.
Thanks
Premium Security & Bitdefender Endpoint Security Tools user
2 -
@Alexandru_BD so what did u find?
0 -
Hi @Rock.87,
So, the rootkit only hides when it's in the Windows OS, in Rescue Enviroment it's basically useless to scan for rootkits, because they would have nowhere to hide, everything is scanned.
Premium Security & Bitdefender Endpoint Security Tools user
2 -
To add here, the rootkit removal tool by Bitdefender is called the Bitdefender Bootkit Removal Tool. Previously, Bitdefender offered this as a standalone tool, with information available at the link below. However, as rootkits are now detected by Bitdefender's mainline products, the standalone tool is no longer necessary. Additionally, its functionality has been integrated into the Bitdefender Rescue Environment.
While the Bitdefender Bootkit Removal Tool is still available for download from the same link, it is no longer actively maintained. Since the tool has reached its end of life, it may not provide protection against the latest rootkit threats.
Below are the images of the Bitdefender Bootkit Removal Tool.
NOTE: The Bitdefender Bootkit Removal Tool is no longer updated and has already reached its end of life. Hence, using it will not be effective unless the rootkit on your system is still included in the tool's signature database.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
0 -
You mean rootkits could be found without scanning them in rescue environment scan? plz explain in a bit more detail. thx
0 -
if you check rescue environment's scan log , you ll find that there is no root kit scan performed.
0 -
Bitdefender Rescue Environment runs separately from Windows, allowing it to detect malware that might otherwise hide. Rootkits are a type of malware that bury themselves deep in the system—whether by altering core system functions (kernel level), hiding within storage (file system), or even modifying hardware settings (hardware layer). When Windows is running, these rootkits can cover their tracks, making them hard to find.
However, in the Bitdefender Rescue Environment, Windows is completely offline, so rootkits can’t hide. Even though the scan log may not say "Rootkit Scan," Bitdefender can still detect them in different ways. It looks for known malware files, flags suspicious system changes, and scans the parts of the hard drive that control startup. Since the scan runs without interference, it can fully check the system and remove rootkits along with other malware.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
1 -
Then bitdefender should not highlight in the scan log that it did not scan for root kits when it is already scanning for them in an alternative ways, cuz it triggers doubts about the presence of the root kits in the systems, and it's obvious , is not it?
0 -
I am not aware of how this works, asked the team doing this and they should reply (or I will do as soon as I have the details from them).
2 -
Update from the team: yes, scan rootkits is done on System scan, and it is not configurable from the user interface. As a side note - rootkit scan is covered by other equivalent technologies.
3 -
does custom scan ( scan new and modified files only unchecked ) also scan for the root kits.
0
