Members
  • Total Members: 12818
  • Latest: martin
Stats
  • Total Posts: 28535
  • Total Topics: 8240
  • Online Today: 980
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)












Author Topic: McAfee Rootkit Detective 1.0  (Read 5883 times)

0 Members and 1 Guest are viewing this topic.

Amker

  • SCF Global Moderator
  • *****
  • Posts: 1081
  • KARMA: 22
  • Gender: Male
    • SCforum.info
McAfee Rootkit Detective 1.0
« on: 29. July 2007., 19:32:33 »
McAfee Rootkit Detective Beta is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system. McAfee Rootkit Detective should only be used by knowledgeable individuals at the direction of, and with the support of, a representative from McAfee Avert Labs or McAfee Technical Support. Improper usage of this tool could result in damage to your applications or operating system.

Features:

Following are the features of this program that are designed to proactively detect and clean rootkits from the system. This program is not dependent on any signatures and can proactively detect most of the existing and upcoming rootkits and allow the user to clean them.

* Designed to proactively detect the system objects like processes, files and registry that are hidden to the user.
* Provides information about all running processes in the system.
* Provides information about various system hooks like SSDT(System Service Descriptor Table) hooks, user/kernel IAT/EAT(Import/Export Address Table) hooks.
* Allows the user to clean/remove the malicious objects from the system by renaming/deleting the hidden files/registry.
* Allows the user to terminate the malicious processes.
* Users can submit samples using the submission feature present in the tool.
* Users can also collect the samples manually after renaming them and submit to stinger@avertlabs.com for further analysis.

Supported Operating Systems

* Windows XP Home Edition with SP2, XP Professional Edition with SP2, 2000 with SP4, 2000 Server and Windows 2003 Server SP1*

 Download: McAfee Rootkit Detective 1.0 freeware

http://download.nai.com/products/mcafee-avert/McafeeRootkitDetective.zip

[attachment deleted by admin]
# Online Anti-Malware Scanners: http://scforum.info/index.php/topic,734.0.html

Samker's Computer Forum - SCforum.info

McAfee Rootkit Detective 1.0
« on: 29. July 2007., 19:32:33 »




Security l33t

  • SCF Member
  • **
  • Posts: 62
  • KARMA: 2
  • Gender: Male
  • SCforum's Security Manager o.0
    • Security Central Forum
Re: McAfee Rootkit Detective 1.0
« Reply #1 on: 29. July 2007., 19:47:15 »
Nice :D

Amker

  • SCF Global Moderator
  • *****
  • Posts: 1081
  • KARMA: 22
  • Gender: Male
    • SCforum.info
Re: McAfee Rootkit Detective 1.0
« Reply #2 on: 29. July 2007., 19:49:56 »
Thanks  :) :)
# Online Anti-Malware Scanners: http://scforum.info/index.php/topic,734.0.html

pablete

  • SCF Member
  • **
  • Posts: 13
  • KARMA: 1
Re: McAfee Rootkit Detective 1.0
« Reply #3 on: 24. March 2009., 20:46:29 »
Thanks!!!!

skitalec

  • SCF Member
  • **
  • Posts: 11
  • KARMA: 1
Re: McAfee Rootkit Detective 1.0
« Reply #4 on: 07. April 2009., 11:13:04 »
Thanks....

Zhang Fei

  • SCF Member
  • **
  • Posts: 12
  • KARMA: 2
Re: McAfee Rootkit Detective 1.0
« Reply #5 on: 07. May 2009., 17:22:08 »
This is a pretty decent tool. It detected the SDRA64.exe/lowsec rootkit and appears to have neutralized them.

chan7

  • SCF Member
  • **
  • Posts: 15
  • KARMA: 1
Re: McAfee Rootkit Detective 1.0
« Reply #6 on: 18. June 2009., 21:58:47 »
Thanks!!!!!!

perico

  • SCF Member
  • **
  • Posts: 26
  • KARMA: 1
Re: McAfee Rootkit Detective 1.0
« Reply #7 on: 02. October 2009., 07:56:00 »
good, thanks...

stations

  • SCF Member
  • **
  • Posts: 26
  • KARMA: 1
Re: McAfee Rootkit Detective 1.0
« Reply #8 on: 10. November 2009., 08:34:11 »
nice tool..

laurent

  • SCF Member
  • **
  • Posts: 28
  • KARMA: 0
Re: McAfee Rootkit Detective 1.0
« Reply #9 on: 14. March 2010., 18:56:54 »
Try GMER anti rootkit.
GMER is an application that detects and removes  rootkits .

It scans for:
# hidden processes
# hidden threads
# hidden modules
# hidden services
# hidden files
# hidden Alternate Data Streams
# hidden registry keys
# drivers hooking SSDT
# drivers hooking IDT
# drivers hooking IRP calls
# inline hooks

http://www.gmer.net/

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising