-
Top Categories
-
Category Cloud
-
Tag Cloud
-
Latest links
-
Bookmark Me
|
PR: 5
| AVG Anti-Rootkit http://free.grisoft.com/doc/download-free-anti-rootkit/ AVG Anti-Rootkit Free is a powerful tool with state-of-the-art technology for the detection and removal of rootkits. |
|
PR: 6
| F-Secure Blacklight http://www.f-secure.com/blacklight/ F-Secure BlackLight Rootkit Elimination Technology detects objects that are hidden from users and security tools and offers the user an option to remove them. The main purpose is to fight rootkits and all kinds of malware that use rootkits. The F-Secure BlackLight Rootkit Elimination Technology works by examining the system at a deep level. This enables BlackLight to detect objects that are hidden from the user and security software. |
|
PR: 5
| GMER http://www.gmer.net GMER is an application that detects and removes rootkits. |
|
PR: 4
| Helios http://helios.miel-labs.com/ Helios has been designed to detect, remove and innoculate against modern rootkits. What makes it different from conventional antivirus / antispyware products is that it does not rely on a database of known signatures. We believe that malware, by definition, has to perform malicious actions on your system. By observing which software performs malicious behaviour, you can better detect malware. Thus Helios uses a 'behavioural' analysis engine as opposed to signatures. |
|
PR: 4
| Hook Explorer http://labs.idefense.com/files/labs/releases/previews/HookExplorer/ This is a small application designed to scan a process looking for IAT or detours style hooks. |
|
PR: 6
| RootkitRevealer http://technet.microsoft.com/en-us/sysinternals/bb897445.aspx RootkitRevealer is an advanced rootkit detection utility. It runs on Windows NT 4 and higher and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. |
|
PR: 4
| RootRepeal - Rootkit Detector http://sites.google.com/site/rootrepeal/ RootRepeal is a new rootkit detector currently in public beta. It is designed with the following goals in mind: Easy to use - a user with little to no computer experience should be able to use it. Powerful - it should be able to detect all publicly available rootkits. Stable - it should work on as many different system configurations as possible, and, in the event of an incompatibility, not crash the host computer. Safe - it will not use any rootkit-like techniques (hooking, etc.) to protect itself. Currently, RootRepeal includes the following features: Driver Scan - scans the system for kernel-mode drivers. Displays all drivers currently loaded, and shows if a driver has been hidden, and whether the driver's file is visible on-disk. Files Scan - scans any fixed drive on the system for hidden, locked or falsified* files. Processes Scan - scans the system for processes. Displays all processes currently running, and shows if a processes is hidden or locked. SSDT Scan - shows whether any of the functions in the System Service Descriptor Table (SSDT) are hooked. Stealth Objects Scan - attempts to determine if any rootkits are active by looking for typical symptoms. Hidden Services Scan - scans for hidden system services. Shadow SSDT Scan - counterpart to the SSDT Scan, but deals mostly with graphics and window-related functions. * - falsified files are files which have their size mis-reported to the Windows API. Some rootkits use this to hide data. |
|
PR: 7
| Sophos Anti-Rootkit http://www.sophos.com/products/free-tools/sophos-anti-rootkit.html Sophos Anti-Rootkit, finds and removes any rootkit that is hidden on your computer using advanced rootkit detection technology. |