RootkitRevealer

Sysinternals RootkitRevealer
Developer(s)	Bryce Cogswell and Mark Russinovich
Stable release	1.7 / 1 November 2006
Written in	Microsoft C++
Operating system	Microsoft Windows XP and Server 2003
Platform	Microsoft Windows
Size	0.231
Available in	English
Type	Computer security software
License	Sysinternals EULA (Closed-source freeware)
Website	[1]

RootkitRevealer is a proprietary tool for rootkit detection on Microsoft Windows by Mark Russinovich at Sysinternals. It runs on Windows NT 4 and higher and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. It does not support 64-bit Windows systems. It was the tool that first detected Sony's XCP rootkit.

External links

Official website

This software article is a stub. You can help Wikipedia by expanding it.

v t e Microsoft security products
Numbers in brackets are the years of the initial release of the product.
For Windows	Windows Firewall [2001] Baseline Security Analyzer [2004] Malicious Software Removal Tool [2005] Microsoft Defender Antivirus [2006] Microsoft SmartScreen [2006] Microsoft Safety Scanner [2011]
For Windows Server	Exchange Online Protection [2007] System Center Data Protection Manager [2007] Identity Manager [2010]
Discontinued	MSAV [1993] Threat Management Gateway [1997] Microsoft Security Essentials [2009] OneCare Safety Scanner [2006] Unified Access Gateway [2007] Windows Live OneCare [2006] RootkitRevealer [2006] Enhanced Mitigation Experience Toolkit [2009]
Related topics	Data Execution Prevention Kernel Patch Protection Mandatory Integrity Control MS Antivirus (malware) User Account Control