The gang over at

Have just whipped out another excellent utility to add to your war chest of tools. Check out RootkitRevealer when you get a chance. Not only do they provide an awesome tool, but there's a nice overview on root kits and how they work. Interesting reading if you are into that kind of thing...

RootkitRevealer is an advanced root kit detection utility. It runs on Windows NT 4 and higher and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. RootkitRevealer successfully detects all persistent rootkits published at, including AFX, Vanquish and HackerDefender (note: RootkitRevealer is not intended to detect memory-based rootkits like Fu that don't survive reboots).


[Listening to: Devils Haircut - Beck - Odelay (03:14)]