IceSword

IceSword was an advanced rootkit detection and removal tool developed by a group of Chinese security researchers. It provided deep system analysis, allowing users to detect hidden processes, registry entries, and kernel-mode rootkits that traditional antivirus software could not identify. IceSword was widely used by security professionals for analyzing stealth malware.

• Detects and removes kernel-mode rootkits.
• Scans hidden processes, registry modifications, and file system hooks.
• Provides detailed system diagnostics.
• Allows manual removal of detected threats.
• Portable and does not require installation.

IceSword was compatible with:

• Windows 2000
• Windows XP
• Windows Vista (limited support)

The tool has been discontinued and does not support modern Windows versions.

1. Download IceSword from a trusted security source.
2. Run the executable as an administrator (no installation required).
3. Perform a system scan to detect hidden threats.
4. Manually review and remove detected rootkits or system modifications.
5. Restart the computer to apply changes.

Pros

• ✔ Powerful rootkit detection capabilities.
• ✔ Provides in-depth system analysis.
• ✔ Portable and does not require installation.

Cons

• ✘ Discontinued and no longer updated.
• ✘ Requires advanced knowledge to interpret results.
• ✘ Not effective against modern rootkits.

• GMER – A widely used rootkit detection and removal tool.
• TDSSKiller – Kaspersky’s rootkit removal tool.
• Malwarebytes Anti-Rootkit – A free tool for detecting and removing rootkits.

• Company: Unknown (Chinese security researchers)
• Status: Discontinued (No longer maintained)

• (No official website available)
• May be found on archived security forums (use caution when downloading).