Good anti-rootkits for Win 7

Just noticed that gmer doesn,t yet support Win 7. What else can be used?
Also are there any standalone MBR rootkit detectors?

Thanks

 

Re: Goot anti-rootkits for Win 7

I believe Prevx has one, if im not mistaken.

 

Re: Goot anti-rootkits for Win 7

This is one of the only infections the free version of Prevx will clean and it does so pretty good. Also RkU, Kernel Detective but they are not just for MBR

 

Drwebs CureIt doesnt need installing, great anti-rootkit.

 

I prefer something non signature based. Strange that root repeal also not supporting win 7.
Cure it or any signature based anti root kits are extremely poor.

 

I think Trendmicro Rootkit Buster and maybe Rootkit Unhooker?

 

RkU 3.8.386.589 works with Windows 7.

Seems like it's currently the only one.
Gmer, Radix, RootRepeal don't work, Kernel Detective offered only a BS.

Cheers

 

I can't find a link to this.
Please post it.
Thanks.
Hugger

 

Did a search and found these are ARK's listed as W7 compliant.

SanityCheck http://www.resplendence.com/sanity New: version 2.00 now supports Windows 7 and latest service packs.

# Windows 7
# Windows 7 x64 editions
# Windows 2008 Server
# Windows 2008 Server x64 editions
# Windows Vista
# Windows Vista x64 editions
# Windows XP (Service Pack 2 or greater)
# Windows XP x64 edition (all service packs)
# Windows Server 2003 (all service packs)
# Windows Server 2003 x64 editions (all service packs)
# Windows Server 2000 (with Update Rollup 1 and Service Pack 4)

UnHackMe http://www.greatis.com/unhackme Supported Windows NT4/2000/XP/2003/Vista/Seven.

Sophos Anti-Rootkit http://www.sophos.com/products/free-tools/sophos-anti-rootkit.html

* Windows 2000
* Windows XP
* Windows Vista
* Windows 7
* Windows Server 2003
* Windows Server 2008
* 64-bit platforms

 

how good is it?

 

@Hugger

Link for RkU 3.8.386.589 https://www.rootkit.com/blog.php?user=DiabloNova

No mention of W7 though.

 

Edit... a little bit too slow makes same posts in a row.

Cheers

 

Tizer Rootkit Razor free

Can't say whether it is good or not, havn't installed it. But it's quoted as working on Vista and W7 along with XP.



http://www.tizersecure.com/about_tizer_rootkit_removal.php

http://www.tizersecure.com/tizer_rootkit_remover_features.php

http://www.tizersecure.com/using_tizer_rootkit_razor_detect_hidden_rootkits.php

 

What itw rootkits does razor detect

It can't detect modern rootkits as it hasn't the means to. Razor is instanly out of date.

Tizer Secure will not even reply to email and are totally unprofessional.

edit : Tizer Secure replied in this thread to my initial comments.

 

which one is the best?

 

Meriadoc

This is a new version of Tizer Secure i posted. Have you tried it, or just the previous one, if at all ?

I agree, no replies to emails doesn't sound very professional.

jmonge

Try 'em and give us your opinions

 

thanks clone

 

Hi CloneRanger, I tried the previous version and noticed the update. Rest assured I wouldn't post such a comment without looking at it.

example of hot samples that razor didn't detect.

TDSS
TDL
Rustock
4DW4R3

 

There is no best antirootkit, only up to date tools.

 

GMer actually works for Windows 7 .

You have to do a slight change to make it work without problem . Here it is :


Delete this with the "Delete" option.Otherwise you might get a BSOD

 

My VM almost freezes.

 

thanks meriadoc

 

Hi Meriadoc,

Thank you for letting us know this issue in Tizer Rootkit Razor.

Could you just provide us the samples of rootkits you tested Rootkit Razor on, so that we can test it personally.

Once again thank you for testing it out.

Regards
Tizer Secure Support Team

 

Hi pradeepschandra,

I emailed Tizer Secure a couple of times awhile ago now but received no reply, so I'm glad the post tweaked an interest and you've responded here .

I would be happy to supply you with the samples away from Wilderssecurity and will private message you with the details.

Trying not to come over as presumptuous, but if the developers would like to discuss ways of detecting any of the malware I would be glad to help out.

 

Hi, Thanks for your quick response.. I really appreciate your help..

Pls send me your messenger id as well.. so we can take the discussion forward

Once again thank you for all your co-operation.

Regards
Pradeep