SomarSoft has granted SystemTools.com distribution rights for SomarSoft’s DumpSec (formerly known as DumpAcl), DumpReg, and DumpEvt programs. As last released by SomarSoft, these utilities are now offered as FREE utilities for reporting of security, directory, registry, and event information under Windows NT/200x. http://www.systemtools.com/somarsoft/?somarsoft.com
Category: Anti Rootkits
Permanent link to this article: https://www.darknessgate.com/2015/03/09/somarsoft-utilities/
ThreatFire
ThreatFire is zero-day security software designed for the average consumer. ThreatFire protects in real-time against viruses, worms, trojans, spyware, adware, rootkits, keyloggers, and buffer overflows. It is designed to be used alongside your current antivirus to protect you between antivirus updates. Because it is behavior-based and not signature-based, ThreatFire protects against both known and unknown, …
Permanent link to this article: https://www.darknessgate.com/2012/06/04/threatfire/
Permanent link to this article: https://www.darknessgate.com/2012/05/27/anti-rootkit-utility-tdsskiller/
HiddenFinder [Commercial App]
HiddenFinder is a highly advanced security software which can detect and kill hidden processes and drivers. Hidden process and driver usually are the result of sophisticated virus or spyware attack. Recent research shows more and more spyware, virus, rootkit and backdoor attacks are being facilitated by these hidden viral and Trojan processes which can hijack …
Permanent link to this article: https://www.darknessgate.com/2012/05/25/hiddenfinder-commercial-app/
SAMHAIN file integrity / host-based intrusion detection system
The Samhain host-based intrusion detection system (HIDS) provides file integrity checking and log file monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes. Samhain been designed to monitor multiple hosts with potentially different operating systems, providing centralized logging and maintenance, although it can also be used as standalone …
Permanent link to this article: https://www.darknessgate.com/2012/05/24/samhain-file-integrity-host-based-intrusion-detection-system/
IceSword
IceSword has a Windows Explorer-like interface but displays hidden processes and resources that Windows Explorer would never show. It isn’t a “click-here-to-delete-rootkits” product but a sophisticated discovery tool that can protect against sinister rootkits if used before they infect a machine.
Permanent link to this article: https://www.darknessgate.com/2012/05/20/icesword/
Helios Lite
Helios Lite is a rootkit detection product based on some of the components of the Helios rootkit detection technologies. It is an implementation of the idea of Cross View Detection for the detection of persistent and non-persistent rootkits. It successfully detects a large number of user mode and kernel mode rootkits Download Helios
Permanent link to this article: https://www.darknessgate.com/2012/05/20/helios-lite/
Panda Anti-Rootkit
Panda Anti-Rootkit scans computers for hidden items in running processes, the Windows registry, and local hard disks. On detecting a malicious rootkit, Panda Anti-Rootkit completely eliminates it along with all of the programs it could be hiding, including files, processes, registry entries and the ADSs associated to the rootkits.
Permanent link to this article: https://www.darknessgate.com/2012/05/20/panda-anti-rootkit/
RootkitRemover
McAfee Rootkit Remover is a stand-alone utility used to detect and remove complex rootkits and associated malware. Currently it can detect and remove ZeroAccess and TDSS family of rootkits. McAfee Labs plans to add coverage for more rootkit families in future versions of the tool.
Permanent link to this article: https://www.darknessgate.com/2012/05/20/rootkitremover/
RootKit Hook Analyzer
RootKit Hook Analyzer is a security tool which will check if there are any rootkits installed on your computer which hook the kernel system services.
Permanent link to this article: https://www.darknessgate.com/2012/05/20/rootkit-hook-analyzer/
RootkitRevealer v1.71
RootkitRevealer is an advanced rootkit detection utility. It runs on Windows XP (32-bit) and Windows Server 2003 (32-bit), and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. RootkitRevealer successfully detects many persistent rootkits including AFX, Vanquish and HackerDefender (note: RootkitRevealer is not intended …
Permanent link to this article: https://www.darknessgate.com/2012/05/20/rootkitrevealer-v1-71/
Data Hiding Techniques in Windows OS
Hands-on guide to understanding, detecting and using today’s most popular techniques in digital data hiding and exploring hidden data under the Windows® OS
Subscribe By Email
Get the news by Email