How reliable GMER is on Win7 64 bit OS? I have tried it and apparently it does not detect the hooks.
A forum for reverse engineering, OS internals and malware analysis
No 64 bit version = no driver = very limited user mode scan = :idea:
nullptr wrote:No 64 bit version = no driver = very limited user mode scan = :idea:Thank you. So, which is the recommended Rootkit detection tool in Win7 64 bit?
WinDBG, detects everything.
Ring0 - the source of inspiration
You may also try Wincheck (http://www.kernelmode.info/forum/viewto ... =11&t=1285). The program is able to display many interesting things of Windows kernel.
EP_X0FF wrote:WinDBG, detects everything.i wholeheartedly approve :D
everdox wrote:Yes, if you have relevant skills and kdcom.dll isn't patched :)EP_X0FF wrote:WinDBG, detects everything.i wholeheartedly approve :D
Vrtule wrote:You may also try Wincheck (http://www.kernelmode.info/forum/viewto ... =11&t=1285). The program is able to display many interesting things of Windows kernel.Thank you. This is helpful.