Results 1 to 5 of 5

Thread: GMER | Rootkit detector for Windows

  1. #1
    Moderator anon's Avatar
    Join Date
    01.02.08
    Posts
    36,176
    Activity Longevity
    15/20 19/20
    Today Posts
    3/5 ssss36176

    GMER | Rootkit detector for Windows

    GMER is an application that detects and removes rootkits.

    It scans for:
    • hidden processes
    • hidden threads
    • hidden modules
    • hidden services
    • hidden files
    • hidden disk sectors (MBR)
    • hidden Alternate Data Streams
    • hidden registry keys
    • drivers hooking SSDT
    • drivers hooking IDT
    • drivers hooking IRP calls
    • inline hooks

    GMER runs on Windows XP/VISTA/7/8/10
    http://www.gmer.net/

    I used Rootkit Unhooker and Tuluka in the past, but they don't work on 64-bit systems. This seems good enough.
    "Come visit sometime, okay? We'll always be here for you. We... we all love you."
    Reply With QuoteReply With Quote
    Thanks

  2. Who Said Thanks:

    AxiomaticDirection (20.05.20)

  3. #2
    Advanced User yoco's Avatar
    Join Date
    23.02.08
    Location
    Slovenia
    P2P Client
    Azureus
    Posts
    7,671
    Activity Longevity
    9/20 19/20
    Today Posts
    0/5 sssss7671
    I get this when click on link above
    Secure Connection Failed
    Reply With QuoteReply With Quote
    Thanks

  4. #3
    Moderator anon's Avatar
    Join Date
    01.02.08
    Posts
    36,176
    Activity Longevity
    15/20 19/20
    Today Posts
    3/5 ssss36176
    I pasted the wrong link It's fixed now.

    By the way, this isn't a "normal" antivirus or antimalware program. It just reports behavior that can be abused for malicious purposes and lets you take action if you think it's necessary. I ran it on my computer yesterday, and it correctly discovered that my Windows kernel has been patched (which I did to disable driver signature verification) as well as a few hooks from legitimate programs. Turns out a driver from a virtual CD drive I tried and uninstalled four months ago is still loaded also, maybe it's time for a reboot...
    "Come visit sometime, okay? We'll always be here for you. We... we all love you."
    Reply With QuoteReply With Quote
    Thanks

  5. #4
    Advanced User yoco's Avatar
    Join Date
    23.02.08
    Location
    Slovenia
    P2P Client
    Azureus
    Posts
    7,671
    Activity Longevity
    9/20 19/20
    Today Posts
    0/5 sssss7671
    Can you explain what options do you enable and search? or just leave it as default?
    Reply With QuoteReply With Quote
    Thanks

  6. #5
    Moderator anon's Avatar
    Join Date
    01.02.08
    Posts
    36,176
    Activity Longevity
    15/20 19/20
    Today Posts
    3/5 ssss36176
    Yes, I used the default quick scan. Since it checks the most important system directories and everything that's currently running, it should still find any "bad" stuff.
    "Come visit sometime, okay? We'll always be here for you. We... we all love you."
    Reply With QuoteReply With Quote
    Thanks

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •