GMER – Rootkit Detector and Remover

Rootkits is a common problem that is hard to detect and resolve. The problem with rootkit is that they are hard to be detected on the system as they are loaded in the operating system kernel or services. detection is hard and removal can be harder cause it affect the system functionality and the first choice when we see a rootkit is to ask re-imaging the system.

Sometimes rootkit can be hidden in standard operating system services and this will be skipped by security software. If you are looking to check system against rootkit you can use GMER.

GMER - Rootkit Detector and Remover

GMER – Rootkit Detector and Remover

The tool allows to detect and remove rootkits. It will scan for the following:

  • hidden processes
  • hidden threads
  • hidden modules
  • hidden services
  • hidden files
  • hidden disk sectors (MBR)
  • hidden Alternate Data Streams
  • hidden registry keys
  • drivers hooking SSDT
  • drivers hooking IDT
  • drivers hooking IRP calls
  • inline hooks

Avast! antivirus integrated with this tool and at the moment supports most of windows operating systems including NT/W2K/XP/VISTA/7/8/10. This can be as one step in your threat hunting and rootkit detection while you can have it as a tool in your anti malware pack to remove rootkits. You can download the latest version over this Link

Notify of
Inline Feedbacks
View all comments