Rootkit Revealer is an advanced free rootkit detection software that operates on Windows NT 4 and higher. This rootkit detection freeware roots out and lists registry and file discrepancies that would otherwise go unnoticed. These API discrepancies may indicate the presence of a user-mode or kernel-mode rootkit.
Rootkit Revealer has successfully detected many persistent rootkits including AFX, Vanquish and HackerDefender. It is important to remember that Rootkit Revealer has not been designed to detect such rootkits as Fu, which make no attempt to hidden its files or registry keys.
Sponsored Links
This rootkit scanner is an amazing piece of software, so much so that various malware authors have begun targeting Rootkit Revealer’s scanning system by using its executable name. The engineers and designers of this rootkit detection application have therefore been forced to update this utility so that it begins its scan from a randomly named copy of itself that runs as a Windows service. This confuses any would-be hackers and malware authors and keeps the user’s computer safe.
Rootkit Revealer is also obtained as a part of Sysinternals suite from Microsoft.
Programs like this rootkit detection software enable users to know if their machine is infected with one or more of the following, a virus, malware, spyware,and a trojan that may be present in the system. Basically the aforementioned computer dangers are able to hide themselves from antivirus programs, anti-spyware, anti-malware, etc and are sometimes latent in the computer for a time before being activated. There are various rootkit classifications and these depend on whether the malware survives a reboot or whether it executes in user mode or kernel mode. Read more about rootkits.
Types of Rootkits:
Persistent rootkits are generally associated with malware that activates each time the computer is started. These types of rootkits are usually executed by a code which is may be hidden in the registry or file system. When the user starts his or her computer, the malware program, uses this code to activate itself. it does not want or need the user’s intervention. Rootkit Revealer is able to detect rootkits as well as hidden codes in the registry or file system and notify the user.
Memory-based rootkits are malware without hidden codes and thus cannot survive a computer reboot. Rootkit Revealer is able to recognize these types of malware and will recommend rebooting the system.
There are many methods by which a rootkit may try to avoid detection. For example, a user-mode may try to intercept all calls to the Windows program, effectively shutting down the system. The ‘Find First file’ and the ‘Find Next File’ which are used by file system exploration utilities, including Explorer and the command prompt, may be compromised. Rootkits intercept this data, modify it and may divert it to a different destination. Rootkit Revealer, however knows most of the “hiding places” and “tricks” that hackers and malware authors do with their malware programs and detects it prior to the rootkit causing any trouble.
Also check out other rootkit removers we covered earlier, including: Trend Micro Rootkit Buster, and Sophos Anti-Rootkit.
How does Rootkit Revealer work?
As is written above, persistent rootkits hide in the registry and work by changing the API results so that the system view using APIs differs from the actual view in storage. Rootkit Revealer, compares the results of a system scan at the highest level with that of another level, usually the lowest. The highest level is the Windows API and the lowest is the raw contents of a file system or registry. Once compared, Rootkit Revealer is able to ascertain which of the data is true and which is fake or has been changed by a rootkit.
With the Internet spreading across the globe like some sort of modern-day plague it is becoming more and more important to have security on your computer system. Indeed we all know the dangers of viruses and the like, therefore having simple programs that detect rootkits or rootkit detection, rootkit scanners, etc are very important. Rootkit Revealer is one of the leaders in helping users keep rootkit penetration out of their computer. Keep you system safe from the nefarious people in this world by installing Rootkit Revealer to perform a rootkit scan on your hard disk today.
Download Rootkit Revealer.
Link to This Page:
Be the first to know about Latest Free Software: |
