Category: Anti Rootkits

SomarSoft Utilities

SomarSoft has granted SystemTools.com distribution rights for SomarSoft’s DumpSec (formerly known as DumpAcl), DumpReg, and DumpEvt programs. As last released by SomarSoft, these utilities are now offered as FREE utilities for reporting of security, directory, registry, and event information under Windows NT/200x. http://www.systemtools.com/somarsoft/?somarsoft.com

Permanent link to this article: https://www.darknessgate.com/2015/03/09/somarsoft-utilities/

ThreatFire

ThreatFire is zero-day security software designed for the average consumer. ThreatFire protects in real-time against viruses, worms, trojans, spyware, adware, rootkits, keyloggers, and buffer overflows. It is designed to be used alongside your current antivirus to protect you between antivirus updates. Because it is behavior-based and not signature-based, ThreatFire protects against both known and unknown, …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/06/04/threatfire/

Anti-rootkit utility TDSSKiller

Kaspersky Lab has developed the TDSSKiller utility that allows removing rootkits. The utility supports both 32-bit operation systems and 64-bit operation systems Download Anti-rootkit utility TDSSKiller

Permanent link to this article: https://www.darknessgate.com/2012/05/27/anti-rootkit-utility-tdsskiller/

HiddenFinder [Commercial App]

HiddenFinder is a highly advanced security software which can detect and kill hidden processes and drivers. Hidden process and driver usually are the result of sophisticated virus or spyware attack. Recent research shows more and more spyware, virus, rootkit and backdoor attacks are being facilitated by these hidden viral and Trojan processes which can hijack …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/05/25/hiddenfinder-commercial-app/

SAMHAIN file integrity / host-based intrusion detection system

The Samhain host-based intrusion detection system (HIDS) provides file integrity checking and log file monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes. Samhain been designed to monitor multiple hosts with potentially different operating systems, providing centralized logging and maintenance, although it can also be used as standalone …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/05/24/samhain-file-integrity-host-based-intrusion-detection-system/

IceSword

IceSword has a Windows Explorer-like interface but displays hidden processes and resources that Windows Explorer would never show. It isn’t a “click-here-to-delete-rootkits” product but a sophisticated discovery tool that can protect against sinister rootkits if used before they infect a machine.

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/05/20/icesword/

Helios Lite

Helios Lite is a rootkit detection product based on some of the components of the Helios rootkit detection technologies. It is an implementation of the idea of Cross View Detection for the detection of persistent and non-persistent rootkits. It successfully detects a large number of user mode and kernel mode rootkits Download Helios

Permanent link to this article: https://www.darknessgate.com/2012/05/20/helios-lite/

Panda Anti-Rootkit

Panda Anti-Rootkit scans computers for hidden items in running processes, the Windows registry, and local hard disks. On detecting a malicious rootkit, Panda Anti-Rootkit completely eliminates it along with all of the programs it could be hiding, including files, processes, registry entries and the ADSs associated to the rootkits.

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/05/20/panda-anti-rootkit/

RootkitRemover

McAfee Rootkit Remover is a stand-alone utility used to detect and remove complex rootkits and associated malware. Currently it can detect and remove ZeroAccess and TDSS family of rootkits. McAfee Labs plans to add coverage for more rootkit families in future versions of the tool.

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/05/20/rootkitremover/

RootKit Hook Analyzer

  RootKit Hook Analyzer is a security tool which will check if there are any rootkits installed on your computer which hook the kernel system services.

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/05/20/rootkit-hook-analyzer/

RootkitRevealer v1.71

RootkitRevealer is an advanced rootkit detection utility. It runs on Windows XP (32-bit) and Windows Server 2003 (32-bit), and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. RootkitRevealer successfully detects many persistent rootkits including AFX, Vanquish and HackerDefender (note: RootkitRevealer is not intended …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/05/20/rootkitrevealer-v1-71/