McAfee Rootkit Detective 1.0 Beta

McAfee Rootkit Detective 1.0 Beta Screenshot McAfee Rootkit Detective Beta is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system.

Developer:   McAfee Avert Labs
      software by McAfee Avert Labs →
Price:  0.00
License:   Freeware
File size:   0K
Language:   
OS:   Windows XP/Vista (?)
Rating:   0 /5 (0 votes)

McAfee Rootkit Detective Beta is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system.

McAfee Rootkit Detective should only be used by knowledgeable individuals at the direction of, and with the support of, a representative from McAfee Avert Labs or McAfee Technical Support. Improper usage of this tool could result in damage to your applications or operating system.

Here are some key features of "McAfee Rootkit Detective":

  • Designed to proactively detect the system objects like processes, files and registry that are hidden to the user
  • Provides information about all running processes in the system
  • Provides information about various system hooks like SSDT(System Service Descriptor Table) hooks, user/kernel IAT/EAT(Import/Export Address Table) hooks
  • Allows the user to clean/remove the malicious objects from the system by renaming/deleting the hidden files/registry
  • Allows the user to terminate the malicious processes
  • Users can submit samples using the submission feature present in the tool
  • Users can also collect the samples manually after renaming them and Avert Labs for further analysis

    Requirements
  • Windows XP Home Edition with SP2
  • Windows XP Professional Edition with SP2
  • Windows 2 with SP4
  • Windows 2 Server
  • Windows 2003 Server SP1

    BETA KNOWN ISSUES
  • McAfee Rootkit Detective will detect registry entries pertaining to McAfee Entercept Products if installed on your system.
  • McAfee Rootkit Detective will detect mfehidk.sys file pertaining to McAfee Antispyware Enterprise (Standalone) as a hooked service.
  • McAfee Rootkit Detective will detect IAT/EAT hooks in Windows 2 SP4 system pointing to shim.dll.
  • McAfee Rootkit Detective will detect vsdatant.sys from Zone Alarm as hooked service for rootkit like behavior.
  • McAfee Rootkit Detective will detect Goback2k.sys as hooked service on system having Go Back software installed system for rootkit like behavior.
  • McAfee Rootkit Detective will detect fsndis5.sys as hooked service from F-Secure if F-Secure Internet Security Suite 2006 is installed on the system
  • McAfee Rootkit Detective will detect klif.sys as hooked service from Kaspersky if Kaspersky Internet Security 2006 is installed on the system.
  • McAfee Rootkit Detective will detect FireTDS.sys as hooked service from McAfee if McAfee Desktop Firewall is installed on the system.
  • McAfee Rootkit Detective will detect Hidsys.sys as hooked service from McAfee if McAfee Host Intrusion Prevention is installed on the system.
  • McAfee Rootkit Detective will detect Service Name ZwCreateThread when VSE product is installed on the system.
  • McAfee Rootkit Detective will not run on Windows 2 platforms when Kaspersky Internet Security 2006 is installed.
  • McAfee Rootkit Detective will detect many IAT/EAT hooks and SSDT hooks of legitimate applications.

    tags rootkit detective  mcafee rootkit  detective will  will detect  the system  system mcafee  hooked service  service from  iat eat  the user  from mcafee  internet security  avert labs  

    McAfee Rootkit Detective 1.0 Beta screenshot


    Download McAfee Rootkit Detective 1.0 Beta

     Download McAfee Rootkit Detective 1.0 Beta


    Authors software

    McAfee Rootkit Detective 1.0 Beta McAfee Rootkit Detective 1.0 Beta
    McAfee Avert Labs

    McAfee Rootkit Detective Beta is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system.

    Similar software

    McAfee Rootkit Detective 1.0 Beta McAfee Rootkit Detective 1.0 Beta
    McAfee Avert Labs

    McAfee Rootkit Detective Beta is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system.

    RootKit Hook Analyzer 3.01 RootKit Hook Analyzer 3.01
    Resplendence Software Projects Sp

    RootKit Hook Analyzer is a security utility which will check if there are any rootkits installed on your PC which hook the kernel system services.

    Panda Anti-Rootkit 1.05.00 Panda Anti-Rootkit 1.05.00
    Panda Software

    Panda Anti-Rootkit is a small application that will use the latest generation technology to detect and remove rootkits on your system.

    Lavasoft ARIES Rootkit Remover 1.0 Lavasoft ARIES Rootkit Remover 1.0
    Lavasoft

    The ARIES Rootkit Remover was desgined to locate and permanently remove the Sony rootkit from the system and disable the rootkit's ability to run once more after reboot.

    McAfee AVERT Stinger 2.6.0 McAfee AVERT Stinger 2.6.0
    Networks Associates

    Stinger is a stand-alone utility used to detect and remove specific viruses.

    Trend Micro RootkitBuster 1.6.0.1055 Beta Trend Micro RootkitBuster 1.6.0.1055 Beta
    Trend Micro Inc

    Trend Micro RootkitBuster is a rootkit scanner that offers ability to scan for drivers, registry entries, processes, hidden files and hooked system service.

    McAfee Consumer Product Removal Tool 2.0.106.5 McAfee Consumer Product Removal Tool 2.0.106.5
    Mcafee

    Rootkit Unhooker 3.00.88.344 RC4 Rootkit Unhooker 3.00.88.344 RC4
    UG North EP_X0FF (EvilPhantasy

    Rootkit Unhooker - an advanced rootkit detection/removal utility Here are some key features of "Rootkit Unhooker": Service Descriptor Table hooks detection Includes Service Descriptor Table hooks removing (unhooking) SYSENTER/Int 2e hooks detection Detection of hooking sysenter instruction handler and system interrupt (IDT) hook SYSENTER/Int 2e hooks removing (unhooking) Restoring original instruction (interrupt) handler Hidden processes detection Detection of processes hidden from Windows API Most powerful in the world at current time Detection of processes with full path and name (unique) Hidden processes terminating Including force-kill powered by PVASE (c) PVASE Process Virtual Address Space Erasing Hidden processes dumping With ability to rebuild file for analysis Hidden drivers detection Detection of drivers hidden from Windows API combines four different methods of detection and including special five (c) Stealth Walker technology and six (c) KMSE - Kernel Memory Scanning Engine Hidden drivers dumping Unique feature that gives you ability to make dump of selected driver IRP hooks detection Look for "References" column on the Hidden Drivers Detector page Detection of API-based hooks (Code Hooks Detection) Includes most powerful at this time inline (splicing) hooks detection in drivers and libraries.

    RootkitRevealer 1.71 RootkitRevealer 1.71
    Sysinternals

    RootkitRevealer is an advanced root kit detection utility.

    McAfee Virus Definitions 5003 McAfee Virus Definitions 5003
    Network Associates

    Other software in this category




    CleanCIH 1.6 CleanCIH 1.6
    Proland

    Clean your PC from the Win95.

    Klez Removal Tool 1.0.11 Klez Removal Tool 1.0.11
    Symantec Corporation

    W32.

    WinImp 1.21 WinImp 1.21
    Technelysium

    WinImp is a new file archiver which not only recognises common archive formats, but also introduces a new, high performance archive format.

    Softpit PC Search Light 1.3 Softpit PC Search Light 1.3
    Goldmarc Technology AS

    The softpit PC search light is a useful utility for people who need to find critical information fast and precisely on their own computer.