Sysinternals RootkitRevealer Updated To Version 1.20
Thursday, 10 March 2005 by Michel Roth
RootkitRevealer is an advanced patent-pending root kit detection utility. It runs on Windows NT 4 and higher and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. RootkitRevealer successfully detects all persistent rootkits published at www.rootkit.com, including AFX, Vanquish and HackerDefender (note: RootkitRevealer is not intended to detect rootkits like Fu that don't attempt to hide their files or registry keys). If you use it to identify the presence of a rootkit please let us know!

Version 1.2 minimizes false positives, and has an option to not report NTFS metadata files.

Download here.


Related Items:

Sysinternals Releases RootkitRevealer (24 February 2005)
RootkitRevealer v1.7 (3 February 2006)
Several Sysinternals Tools Updated (22 March 2005)
Virtual Rootkit Targets OS, Not Virtual Machines (17 March 2006)
VM Rootkits: The Next Big Threat? (13 March 2006)
Sysinternals Tools Updated (8 December 2005)
Sony, Rootkits And Digital Rights Management Gone WAY Too Far (1 November 2005)
TechNet Webcast: Rootkits In Windows (Level 300) (29 August 2005)
Comments (0)add feed
Show/Hide comment formtoggle
password
 

busy