UnHackMe
•  Greatis •  AppDatabase •  Utilities •  Delphi/CB •  Visual Basic • .NET •  Outsourcing

UnHackMe - First BootWatch AntiRootkit
 UnHackMe     Entire site
Choose one
For home users

Professional - for anticrime squad

Roaming - for admins

Corporative - for small and large business

Education

Info
Benefits

ScreenShots

How it works

Download

Rootkit Testing

FAQ

UnHackMe for beginners...

One-click purchase
UnHackMe Single

UnHackMe Family

UnHackMe Business

UnHackMe Family+Business

UnHackMe Roaming

UnHackMe Pro

Download trial
UnHackMe
Forums
Greatis Forum

Home Download Order Support Press Room   Newsletter Your shopping cart ?

UnHackMe Technical Details

UnHackMe= UnHackMe4+Partizan+Reanimator

  1. UnHackMe4 detects hidden services registry keys, processes, services, drivers.
    It uses UnHackMedrv.sys kernel driver.
  2. Partizan watches the Windows boot process.
  3. Reanimator detects and remove Trojans/Spyware/Adware using signature database (Greatis Application Database).

Take a look at the: Rootkit Removal using UnHackMe - Master Class

Detecting hidden rootkits using Partizan

Looking to the progress of rootkit development since last year we have the opinion that the rootkit detection on the working computer is not real. We can not get you the 100% guarantee free of rootkits on the working computer connected to network.

Partizan is a boot watch anti-rootkit.

Rootkits authors like to play games.

"We hide rootkit files/drivers/registry keys and after that try to find us they said.

We didn't play the games.
Our strategy is different:
You hide yourself while we're watching how you do it.

Each rootkit need a way to automatically start after computer reboot.

We can detect it and remove a rootkit from auto start.
What are the user benefits?

  1. Detecting kernel rootkits without a lot of BSOD.
  2. Partizan checks the computer automatically during every Windows boot.
  3. Partizan uses small number of computer resources.
  4. Partizan takes only a couple seconds for checking. Compare it with full disk scan.
  5. Partizan is a powerful. It can detect a remove any kernel/usermode rootkit, Trojan/Spyware/Adware components.
  6. You can use other anti-rootkit software in addition to Partizan as well.
How does the Partizan work?

Partizan activates several agents for monitoring the Windows boot process.

  • Anti-Bootkit. Used against Bootkit rootkits located in the boot sectors (in development).
  • Partizan boot driver. Used against Rustock clone rootkits. It can trace registry services and delete a service. Partizan driver starts on the early stage of the Windows boot process. Partizan driver has additional "safe" mode allows to skip processing of the Winlogon and similar registry keys by Windows operation system to avoid infection and for easy removing infection.
  • Partizan Native application. It is started from the BootExecute registry key. Partizan deletes files/streams and service keys.
  • Secure Start. It starts before Windows shell starts using RunOnceEx key.
    Secure Start executes UnHackMe application for rootkits testing using information from the Partizan boot driver. Secure Start can remove Trojans/usermode rootkits/spyware/adware using RegRun Reanimator with Application Database.

    In addition

    1. WMI tracing opening file images during Windows boot. WMI logging is the great feature added to all versions since Windows XP. It allows to start Windows in the logged mode. We can detect all files used during Windows boot by analyzing the log. Feature is available in the UnHackme Pro.
    2. Registry boot logger. RegRunRM boot driver collects full information about registry keys used during Windows boot. Feature is available in the UnHackme Pro.
    Does Partizan is a panacea?

    Hackers use a lot of rootkit modification combining with spyware components.
    RegRun Platinum guarantees that you can clean your computer from a deep hidden rootkits and from common spyware.

    Does it clean rootkits in the auto mode?

    No. It uses Greatis Application Database for detecting known rootkits/viruses/spyware. We suggest you to update the database.

    But some of the software will be detected as unknown ("suspicious").
    What you need to do in this case?
    If you have enough computer skill to use professional tools included to the RegRun Platinum ¢_" OK, you can do it.
    If not, you can send detailed system report to the Greatis Support center: http://greatis.com/support and we will send the special file for auto cleaning your computer. The service is free for RegRun's users.

    What's about self-protection?

    You can specify the own file name for Partizan executable.

    How to start rootkit detection using Partizan?

    1. Open RegRun Control Center.
    2. Open Options.
    3. Set up the Partizan checkbox.

    How to uninstall Partizan?

    Uninstall UnHackMe.

    Manually

    1. Delete UnHackMe from %SysDir%\Partizan.exe;
    2. Open regedit.exe.
      Go to the:
      HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager
      Set up the value name BootExecute to:
      autocheck autochk *

    • What's new?
    December 23 2009

    Try UnHackMe 5.7 release

    New! RegRun Warrior!

    November 18 2009

    Try UnHackMe 5.5 release

    Resolving problem with Google redirect MAX++/TDSS rootkit (win32k.sys:1, win3k.sys:2).

    Bagle Virus Removal Video

    Malware Removal Blog

    October 28 2009

    Try UnHackMe 5.5 beta 3

    September 21 2009

    Braviax Rootkit Removal Video

    September 11 2009

    Try UnHackMe 5.5 beta 2

    July 20 2009

    Try UnHackMe 5.5 beta

    December 25 2008
    Released UnHackMe 5.0 Russian Edition
    Free for non-commercial use! Download

    December 22 2008

    Try UnHackMe 5.0 release

    Testimonial:

    Your product is the only one on the market that has found and removed rootkits from my system, three rootkits to be precise. I have used other products but they don't measure up to UnHackMe.

    Again, thank you.
    Joseph Keeney

    August 28 2008
    Released UnHackMe 4.8 Russian Edition
    Free for non-commercial use! Download

    October 17 2007
    UnHack your computer!

    October 8 2007
    Rootkit Removal using UnHackMe - Master Class

    September 19 2007
    UnHackMe Russian Edition 4.5 released for free

    See the rootkit tests

    Educational discount...

    Rootkit Tests
    Spooldr rootkit is No 1 in August

    See more...

    Send us a rookit
    Rename your file to the "txt" extension.

    File Search

    They say
    If your tool had not worked, I was going to rebuild my disk from scratch, loading all my apps, downloads, etc. This would have cost me probably 2 days of work.

    Great news! What I did last night with UnHackMe just stumbling around the system has cleared the problem!!

    I can't tell you how delighted I am.

    All the best... Dave Gardner

    Testimonials
    Bob Schmulian:
    Absolutely love it and have recommended to many people!

    Ian Robinson:
    It is FANTASTIC! It has saved my life on more than one occasion since I purchased it less than 6 months ago. I now would not run my system without it... it's worth many times the cost! The service and support are terrific. Helpful - friendly - and accommodating; and generally a reply is received within 12 hours. Just great.

    Theodore Soucie:
    Since RegRun was installed my system is more stable. I use to experience freezeup daily. I have not had a crash.

    Awards
    Paul's Picks Shareware Winner  

    More...


    Greatis Software Greatis | Security | AppDatabase | Utilities | Delphi/CB | Visual Basic | .NET | Outsourcing

    Contacts | Add to Favorites | Recommend to a Friend | Privacy Policy | Copyright © 1998-2009 Greatis Software

    		eXTReMe Tracker