Categories
Windows Antivirus

Mcafee Rootkit Detective Antivirus and Spyware for Windows

McAfee Rootkit Detective description

It will proactively detect and clean rootkits that are running on the system
McAfee Rootkit Detective Beta is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system.

McAfee Rootkit Detective should only be used by knowledgeable individuals at the direction of, and with the support of, a representative from McAfee Avert Labs or McAfee Technical Support. Improper usage of this tool could result in damage to your applications or operating system.

Here are some key features of “McAfee Rootkit Detective”:

· Designed to proactively detect the system objects like processes, files and registry that are hidden to the user
· Provides information about all running processes in the system
· Provides information about various system hooks like SSDT(System Service Descriptor Table) hooks, user/kernel IAT/EAT(Import/Export Address Table) hooks
· Allows the user to clean/remove the malicious objects from the system by renaming/deleting the hidden files/registry
· Allows the user to terminate the malicious processes
· Users can submit samples using the submission feature present in the tool
· Users can also collect the samples manually after renaming them and Avert Labs for further analysis

Requirements:

· Windows XP Home Edition with SP2
· Windows XP Professional Edition with SP2
· Windows 2000 with SP4
· Windows 2000 Server
· Windows 2003 Server SP1

BETA KNOWN ISSUES
· McAfee Rootkit Detective will detect registry entries pertaining to McAfee Entercept Products if installed on your system.
· McAfee Rootkit Detective will detect mfehidk.sys file pertaining to McAfee Antispyware Enterprise (Standalone) as a hooked service.
· McAfee Rootkit Detective will detect IAT/EAT hooks in Windows 2000 SP4 system pointing to shim.dll.
· McAfee Rootkit Detective will detect vsdatant.sys from Zone Alarm as hooked service for rootkit like behavior.
· McAfee Rootkit Detective will detect Goback2k.sys as hooked service on system having Go Back software installed system for rootkit like behavior.
· McAfee Rootkit Detective will detect fsndis5.sys as hooked service from F-Secure if F-Secure Internet Security Suite 2006 is installed on the system
· McAfee Rootkit Detective will detect klif.sys as hooked service from Kaspersky if Kaspersky Internet Security 2006 is installed on the system.
· McAfee Rootkit Detective will detect FireTDS.sys as hooked service from McAfee if McAfee Desktop Firewall is installed on the system.
· McAfee Rootkit Detective will detect Hidsys.sys as hooked service from McAfee if McAfee Host Intrusion Prevention is installed on the system.
· McAfee Rootkit Detective will detect Service Name ZwCreateThread when VSE product is installed on the system.
· McAfee Rootkit Detective will not run on Windows 2000 platforms when Kaspersky Internet Security 2006 is installed.
· McAfee Rootkit Detective will detect many IAT/EAT hooks and SSDT hooks of legitimate applications.

See Demo – Download – Visit Author Site

Please comments and give ratings. You may also report of broken or incorrect link using comments box below. Thanks!