from:
http://www.spywarewarrior.com/uiuc/soft5.htm#rootkit
I also use Icesword, Blacklight, and Russinovich's (sp?) . I may check out
some of the other ones, too. Unfortunately, Bitdefender's only works for
Vista-but it is only beta.
--
Let the unseen day be. Today is more than enough.
___Sador the carpenter to Turin
Tolkien, The Unfinished Tales
Ellis_Jay
>http://www.resplendence.com/hookanalyzer
>
>from:
>
>http://www.spywarewarrior.com/uiuc/soft5.htm#rootkit
>
>I also use Icesword, Blacklight, and Russinovich's (sp?) . I may check out
>some of the other ones, too. Unfortunately, Bitdefender's only works for
>Vista-but it is only beta.
I agree that hookanalyzer is a "nice" tool. I had some fun yesterday
tracking down a few .SYS drivers it revealed which I hadn't either
noticed before or paid any attention to. It was educational to see
how some previously installed software leaves old drivers with
their hooks in place, in spite of my use of registry cleaners. In one
case, searching the file name on the internet didn't turn up
anything, but the software vendor's name led me to what
must have been the old uninstalled software source of the
driver. In most cases though, you can search the file name
and find sufficient info to satisfy yourself that the driver is
probably legit. Furthermore, you can upload the file for scanning
by many av products.
So I found uses for the utility which go beyond just a search for
root kits. It's a "keeper".