NT Internals


Hidden Data Detection Softwares

In this table you can find actual anti rootkit software and non anti rootkit software which has an ability for detection of hidden things. I try to update this table as often as is possible, but without your help I can't following all improvements. So, please let me know about all improvements.

Regards,
Alex

If you can't download any of listed software, try to visit www.kernelmode.info, there is similar anti rootkit software list with mirrored download.


Anti Rootkit Softwares
Software Version Process Module Registry File
ARK2007 1.0 + + - -
ATool 1.0021 + + + +
Avast! Antirootkit 1.0.0.1 + + + +
AVG Anti-Rootkit 1.1.0.42 ? ? ? +
Avira AntiRootkit Tool 1.1.0.1 ? ? ? ?
BitDefender Rootkit Uncover 1.0 + - - +
CMC CodeWalker 0.2.4.500 + + - +
CsrWalker 1.0.0.600 + - - -
DarkSpy Anti-Rootkit 1.0.5 + + + +
DeepMonitor 1.8 + - - -
DiamondCS Deep System Explorer 1.0.406 + + ? ?
Dr.Web DwShark 1.0.0.11140 + + - -
F-Secure BlackLight 2.2.1092.0 + - - +
GMER 1.0.15.15507 + + + +
Helios 1.1 + + - -
Helios Lite 1.0 + - + +
Hidden Finder 1.5.6.7 + + - -
IceSword 1.2.2 + + + +
Kernel Detective 1.4.1 + + - -
KLISTER 0.4 + - - -
KsBinSword 1.0.0.1 + + + +
kX-Ray 1.0.0.102 XP32 beta + + - +
Lavasoft ARIES Rootkit Remover 1.0 ? ? ? ?
McAfee Rootkit Detective 1.1.0.1 + - + +
modGREPER 0.3 - + - -
NIAP Rootkit Detect Tools 1.02 + + + +
NoVirusThanks Anti-Rootkit 1.0 + + - -
Panda Anti-Rootkit 1.08.00 + + + +
Process Hunter 1.0 + - - -
Process Walker (EP_X0FF & MP_ART) 1.0.8 + - - -
RegHive 1.02 - - + -
RegReveal 1.0 beta 3 - - + -
RKDetector 2.2 beta - - + +
RootAlyzer 0.3.4.47 ? ? ? ?
RootKit Hook Analyzer 3.02 + ? + +
Rootkit Razor 2.0.0.1 ? ? ? ?
TDSS Remover 1.8 - + + +
Rootkit Unhooker LE 3.8.388.590 SR2 + + - +
RootkitRevealer 1.71 - - + +
RootQuest 1.3.15 ? ? ? ?
RootRepeal 1.3.5 + + - +
Safe'n'Sec Rootkit Detector 1.0.0.2 + + - -
SafetyCheck 1.7 + + + +
SanityCheck 2.01 + + - -
SnipeSword 1.0.2.2 + + + +
Sophos Anti-Rootkit 1.5.4 + - + +
SysProt AntiRootkit 1.0.1.0 + + - +
SysReveal 1.0.0.68 + + + +
System Eyes & Ears Monitor 4.5 + + - -
Trend Micro RootkitBuster 2.80.1077 + + + +
Tuluka kernel inspector v1.0.394.77 beta + + - -
UnHackMe 5.99 Build:351 ? ? ? ?
USEC Radix 1.0.0.12 + + + +
Vba32 AntiRootkit 3.12.5.1 + + - +
Wsyscheck 1.68.33 + + + +
XueTr 0.38 + + + +

Other Softwares
Software Version Process Module Registry File
AdvancedWinServiceManager 2.0.1 - - - -
AVZ 4.32 + + ? ?
ESET SysInspector 1.2.21.0 + + - -
HookShark 0.9 - + - -
Interactive Cleaner 1.0.0.135 + - - -
Malware Defender 2.6.0 + + + +
NhsScan 0.9.4 + - - -
Online Solutions Autorun Manager 5.0 - - + +
Power Process Controller 5.0.0.2 + - - -
Process Master 1.1 + - - -
Process Revealer 1.0 + - - -
ProcessWalker Express 5.4.1000.10 + - - -
PScanner++ 1.9.0.2 + - + +
RemoveAny 2.8.18 ? ? ? +
SpyDLLRemover 3.2 + - - -
Spyware Process Detector 3.20 + - - -
StreamArmor 1.0 - - - +
Suspicious Process Behavior Analysis Tool 1.0.0.1 + - - -
System Repair Engineer 2.7.1.1261 + - - -

TDSS/TDL Removal Softwares - ( Link to a technical discussion about TDL3 rootkit )
Software Version More information
Kaspersky Lab TDSSKiller 2.4.6.0 How to remove malware belonging to the family Rootkit.Win32.TDSS
eSage Lab TDSS Remover 1.8 TDSS Remover
Microsoft Security Essentials 1.0.2498.0 Win32/Alureon
Norman TDSS Cleaner 1.9.3.0 Norman TDSS
TDL3+ Cleaner 1.1 Final TDL3+ Cleaner
Hitman Pro 3.5.7 Build 116 Release History
Dr.WEB CureIt! 6.00.5 [05.11.2010] BackDoor.Tdss.565
Tizer TDL3 Razor 1.0.0.1 About Tizer TDL3 Razor

Legend
- this icon means that this software is still "alive"
- this icon means that this software is currently "dead"
- this icon means you can download this software from trusted source (author's site)
Copyright © 2oo8-2o1o NT Internals. All rights reserved.