Sysinternals RootkitRevealer
DevelopersBryce Cogswell and Mark Russinovich
Final release
1.7 / November 1, 2006; 19 years ago (2006-11-01)
Written inMicrosoft C++[1]: 07:08 
Operating systemWindows XP and Windows Server 2003
PlatformIA-32
Size231 KB
Available inEnglish
TypeSecurity software
LicenseClosed-source freeware
Websitetechnet.microsoft.com/en-us/sysinternals/bb897445

RootkitRevealer is a proprietary freeware tool for rootkit detection on Microsoft Windows by Bryce Cogswell and Mark Russinovich.[2][3][4] It runs on Windows XP and Windows Server 2003 (32-bit-versions only). Its output lists Windows Registry and file system API discrepancies that may indicate the presence of a rootkit. It is the same tool that triggered the Sony BMG copy protection rootkit scandal.[5]

RootkitRevealer is no longer being developed.[1]: 08:16 

See also

edit

References

edit
  1. ^ a b Russinovich, Mark; Margosis, Aaron (28 July 2011). Mark Russinovich and Aaron Margosis: Introducing Windows Sysinternals Administrator's Reference. Channel 9. Microsoft Corporation. Retrieved 10 November 2011.
  2. ^ Kleiman, D.; Hunter, L.E. (2006). Winternals Defragmentation, Recovery, and Administration Field Guide. Syngress. p. 143. ISBN 978-0-08-048987-2. Retrieved 2025-02-28.
  3. ^ Pyles, J. (2009). PC Technician Street Smarts: A Real World Guide to Comptia A+ Skills. Serious skills. John Wiley & Sons, Incorporated. p. 380. ISBN 978-0-470-59351-6. Retrieved 2025-02-28.
  4. ^ Todd, A.; Benson, J.; Peterson, G.; Franz, T.; Stevens, M.; Raines, R. (2007). "Analysis of Tools for Detecting Rootkits and Hidden Processes". Advances in Digital Forensics III (PDF). Vol. 242. New York, NY: Springer New York. p. 89–105. doi:10.1007/978-0-387-73742-3_6. ISBN 978-0-387-73741-6. Retrieved 2025-02-28.
  5. ^ Russinovich, Mark (31 October 2005). "Sony, Rootkits and Digital Rights Management Gone Too Far". Mark's Blog. Retrieved 10 November 2011.


Stub icon

This Microsoft Windows software-related article is a stub. You can help Wikipedia by adding missing information.

📚 Artikel Terkait di Wikipedia

Rootkit

engineer Mark Russinovich, who created the rootkit detection tool RootkitRevealer, discovered the rootkit on one of his computers. The ensuing scandal

Sysinternals

Sysinternals claims is the most advanced manager of startup applications, RootkitRevealer, a rootkit detection utility, Contig, PageDefrag and a total of 65

Microsoft Defender Antivirus

Scanner [2006] Unified Access Gateway [2007] Windows Live OneCare [2006] RootkitRevealer [2006] Enhanced Mitigation Experience Toolkit [2009] Related topics

Malicious Software Removal Tool

Scanner [2006] Unified Access Gateway [2007] Windows Live OneCare [2006] RootkitRevealer [2006] Enhanced Mitigation Experience Toolkit [2009] Related topics

Mark Russinovich

including Autoruns, Filemon, Regmon, Process Explorer, TCPView, and RootkitRevealer. From September 1996 through September 1997, he was a consulting associate

Windows Firewall

Scanner [2006] Unified Access Gateway [2007] Windows Live OneCare [2006] RootkitRevealer [2006] Enhanced Mitigation Experience Toolkit [2009] Related topics

Microsoft Safety Scanner

Scanner [2006] Unified Access Gateway [2007] Windows Live OneCare [2006] RootkitRevealer [2006] Enhanced Mitigation Experience Toolkit [2009] Related topics

MSAV

Scanner [2006] Unified Access Gateway [2007] Windows Live OneCare [2006] RootkitRevealer [2006] Enhanced Mitigation Experience Toolkit [2009] Related topics