Sysinternals Releases RootkitRevealer
Thursday, 24 February 2005 by Michel Roth
Rootkit-based malware is becoming a growing security concern because this class of software can hide from most antivirus, antispyware, and system management utitilities. RootkitRevealer is a utility that scans a system's Registry and file systems using sophisitcated techniques to look for clues that indicate the presence of rootkits.

RootkitRevealer is an advanced root kit detection utility. It runs on Windows NT4 and higher and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. RootkitRevealer successfully detects all persistent rootkits published at www.rootkit.com, including AFX, Vanquish and HackerDefender (note: RootkitRevealer is not intended to detect rootkits like Fu that don't attempt to hide their files or registry keys).

Go to the download here.

Related Items:

Sysinternals RootkitRevealer Updated To Version 1.20 (10 March 2005)
RootkitRevealer v1.7 (3 February 2006)
VM Rootkits: The Next Big Threat? (13 March 2006)
TechNet Webcast: Rootkits In Windows (Level 300) (29 August 2005)
Virtual Rootkit Targets OS, Not Virtual Machines (17 March 2006)
Several Sysinternals Tools Updated (22 March 2005)
Sysinterals Tools Updated (30 June 2005)
Rootkits Operating From BIOS (27 January 2006)
Sony, Rootkits And Digital Rights Management Gone WAY Too Far (1 November 2005)
Sysinternals Tools Updated (8 December 2005)
Comments (0)add feed
Show/Hide comment formtoggle
password
 

busy