DV Hardware software and download news

DarkVision Hardware - Daily tech news about processors, graphics cards, memory, NVIDIA, ATi, Intel, AMD, XGI


Login/sign up

Main Menu

Home
User account
Info
News archives
Links
Articles
Howto
Reviews
Member list

Who's Online

There are currently 508 people and 1 DV-member(s) online.

Latest Reviews

ATP EarthDrive 4GB USB Drive

Kingston DataTraveler 150 32GB USB drive

Super Talent Pico 8GB USB Drive

Razer Destructor mousepad

Ghost Squad for Nintendo Wii

OCZ DDR2 PC2-9200 Reaper HPC Edition

Vizo Ninja II notebook cooler

PC Power & Cooling Silencer 610 PSU

RSS

SysProt AntiRootkit 1.0.0.5 Beta

Posted on Monday, September 24 2007 @ 00:05:20 CEST by Thomas De Maesschalck

SysProt AntiRootkit v1.0.05 is out! This new version contains IRP Hooks detection feature and also various other improvements, bug fixes etc. IRP Hooks detection may come handy as some of the new Rootkits are utilizing this technique. One such example is Win32/Cutwail trojan, which hooks IRP_MJ_DEVICE_CONTROL of Tcpip.sys driver.

Here's an overview of SysProt AntiRootkit v1.0.0.5 features:
Hidden process detection and removal
Hidden drivers detection
SSDT Hooks detection and removal
Kernel Inline hooks detection and removal
IRP hooks detection
Sysenter Hook detection
TCP/UDP Ports Info
File System browser
Hidden Services Registry keys detection and removal

Program Information

Category:
Tools and Utilities
Type:
Free

Version:
1.0.0.5 Beta
Size:
0.2MB
Works on:
Windows

Product page: here

Download: SysProt AntiRootkit 1.0.0.5 Beta