IceSword is a tool to detect and remove the presence of rootkits on a host computer. It does a pretty good job of breaking the protection of a potent rootkit over processes, files, and register maps. For example, if a rootkit uses a filter driver to disable writing and deleting files, IceSword can detect this and clean it up.
Some of Icesword's features:
Process Viewer
Open Ports List
Kernel Module
Startup List
Win32 Services
SPI
Browser Helper Object (BHO)
Download Icesword here:
Icesword 1.18 (English)
The website is in Chinese, but downloading should be straightforward enough.
Platforms supported: Windows only.
Posts
0 comments:
Post a Comment