Skip navigation.

New technology of rootkits: Unreal

Unreal rootkit hides file and driver. Works on NT-based operation systems with NTFS file systems. It doesnt have process, so it's not hides processes! It do not hide also a registry keys, so no registry keys are hidden! Make sure, that you readed this post before you start tests or write something.

Read the Forum Post from SysInternals

pretty interesting read.
it seems like no rootkit detector is able to detect this.