GMER runs only on Windows NT/W2K/XP
| GMER application: |
gmer.zip |
( 300kB ) |
| |
| IceSword + DarkSpy + GMER + pe386 rootkit : |
pe386.wmv |
( 0,5MB Windows Media Video 9 codec ) |
| |
| KAV6 PDM vs very_bad_rootkit : |
kav6.wmv |
( 1,4MB Windows Media Video 9 codec ) |
| |
| Example of GMER system protection : |
gmer.avi |
( 4,5MB DivX avi file) |
| |
| Example of rootkit scanning: |
sysbus32.avi |
( 3,8MB DivX avi file) |
Thanks to: Picasso, Vilkatla, Layzer, Auriell, 99none, Phancy, Krzysieq ...
Version History:
This is list of changes for each release of GMER:
1.0.11
- Added "Simple mode"
- Added threads tab
- Added hidden Alternate Data Stream ( NFTS Stream ) scanning
- Added hidden threads scanning
- Improved hidden process scanning
- Improved hidden modules scanning
- Improved hidden files scanning
- Fixed devices scanning
1.0.10
- English version
- Improved process monitoring
- Added Autostart tab
- Added "GMER Safe Mode"
- Added "Files" window
- Added full path of process
- Added loaded libraries
- Added hidden libraries scanning
1.0.9
- Improved hidden services scanning.
- Improved ROOTKIT scanning.
- Improved "Kill all" and "Restart".
1.0.8
- Added hidden services scanning.
- Added hidden services deletion.
- Added hidden files deletion.
- Added restoring SSDT table.
- Added Interpretation of the rootkit scanning.
- Addes CMD tab - executing shell commands
- Fixed showning registry keys
- Fixed tracing library loading.
1.0.7
- Improved hidden files scanning.
- Added "Services" tab.
1.0.6
- Fixed hidden registry keys scanning.
1.0.5
- Added online antivirus scanning.
- Fixed scanning of rootkits that hooks devices' IRP calling
1.0.4
- Added rootkit scanning.
- Added loading devices monitoring.
1.0.3
- Added log.
- Fixed NTVDM.EXE tracing.
1.0.2
- Added processes tab
- Added "Kill all" function.
- Added "Shell" option in the "Process" section, that executes other application instead of Explorer.exe
[Process]
Shell=gmer.exe
1.0.1
- First release.
