Resource icon

PowerTool Rootkit Detection Tool x86 4.7 & x64 1.8

Hexui Undetected CSGO Cheats PUBG Accounts
PowerTool is a free anti-virus&rootkit utility.It offers you the ability to detect,
analyze and fix various kernel structure modifications and gives you a wide scope of the kernel.
With its help,you can easily spot and remove malwares hidden from normal software.

PowerTool currently supports the following Windows 32-bit versions:
for Windows PE/Safe Mode/Windows XP/Windows 2003 Server/Vista/Windows 2008 Server/Windows7 SP1/Windows8/Windows8.1/Windows 10 build 10586


2015-12-09 PowerTool x64 V1.8
1.Integrated delete file && Online scan virus to right-click menu.
2. Add detect Code Inject.(When detect it, suspend the thread)

1. Modify kill process Bug.
2. Modify suspend thread Bug.

PowerTool V4.7&&V1.7 2015-12-07
1. support Windows 10 Build 10586(32/64bit)
2. Add view process commandline and process type (distinguishing normal process and service process).(64bit)
3. Add disable/enable task scheduler.(32/64bit)
4. Enhanced selfprotect.(64bit)
5. Change ico.(32/64bit)

2014-02-08 PowerTool x86 V4.6
1. Add view process commandline and process type (distinguishing normal process and service process)
2. Check whether you need to restart after Windows Update

1. Improved support for win8.1 (including process timers, detection kernel entry point, etc.)
2. can parse multiple ADS stream files of one file.
3. Improved delete directory (recursively delete).
4. Modify the view WFP network filtering crash BUG.
5. Remove the self-protection warning dialog when start PowerTool.
6. Restore the online update feature.

2013-12-08 PowerTool V4.5(twitter : powertool (@ithurricanept) | Twitter && google+ :
1. Support Windows8.1
2. Add view and remove WFP Filter
3. Add view NDIS MiniDriver and MiniPort

1. Fix bug of enum process on windows2003.
2. Fix bug of view task scheduler.
3. Replace Filterbit to Jotti as online scan engine.

2012-10-27 PowerTool V4.3(twitter : powertool (@ithurricanept) | Twitter && google+ :
1. Support Windows8 build 9200

1. Enhance progress bar, prevent wrong operation.
2. Enhance View Service.
3. Fix some small BUGs.

2011-12-24 PowerTool V4.2(twitter : ithurricane (@ithurricane) | Twitter && google+ :
1. Detect VBR Bootkit(such as Rootkit.Win32.Cidox)
2. Detecting/Memory Forging Attempt by a Rootkit(such as TDL4 variants)

1. Enhance Detect IDT Hook
2. Analyze Disk/Register File without load Driver
3. Fix some Offline Analyze BUG.

2011-10-01 PowerTool V4.1
1. Detect Mebromi Bios Rootkit.

1. Modified some the program crash BUG
2. Modified could not load the driver after program crash.
3. Fix some Offline Analyze BUG.

2011-09-02 PowerTool V4.0.2
1. Detect Infected System Drivers.

1. Some Improvements For ZeroAccess Rootkit.

2011-08-13 PowerTool V4.0
1. Detect Debug Registers Hook.
1. Detect Sysenter Hook(inline hook).

1. Improve enum kernel module speed
2. Fix Disassembly of the MBR Code

2011-07-17 PowerTool V3.9
1.Detect TDSS/TDL4 without unhook anything
2. Detection kernel callback table hook
3. Add splash screen
4. Add Disk Trace

1. Can detect multi-level jump Hook
2. Enhance the detection of hidden module
3. Enhance the detection of Kernel Modules

2011-06-23 PowerTool V3.8
1. Manager the hidden account and the clone account
2. Enhance detection mbr code

1. Can enumerate <without HOOK, let the Task Manager, XueTr, 360 Process Manager can not kill the process> hidden thread in the text
2. Enhanced self-protection, and is set to reminding at start
3. Load drivers by random driver Name, prevent the virus stop to load
4. Improve the stability of kill process
5. Can rename the deformity directory
6. Modify some process can not display the username BUG
7. Can use the keyboard line, Refresh module list
8. Enhance the detection of Object Hook
9. Increase rogue shortcuts detect items
10. When MBR normal, prompts the user to back up the MBR
11. Online update, unload the driver and close the program, to avoid the mix of old and new versions

2011-06-09 PowerTool V3.7.2
1. Fixed part of the machine Blue Screen BUG
2. Enhance Strength of File Rename (Can be directly rename the file be opened by another process)
3. Add rename the folder
4. Fix the suspension of the thread
5. can not load the driver can also be part of the operation of the process

2011-06-06 PowerTool V3.7.1 Dragon Boat Festival Version
1. Fixed a bug that causes blue screen
2. Change View Network Connection Speed

1. View Network Connection
2. Detection of the Kernel IAT/EAT Hook
3. File Rename

1. Fix Enumerate Kernel Module BUG
2. Enhance the file unlock
3. Enhance the Detection of Startup
4. Fix pause and resume the thread BUG
5. Fix Multi-Disk restore MBR BUG
6. Fix Display Ghost3 Virus Process Path BUG
  • Like
Reactions: FrostyFox1418
First release
Last update
0.00 star(s) 0 ratings

More resources from Rake

Community Mods