Nice! Our first post regarding the Microsoft Enhanced Mitigation Evaluation Toolkit or EMET can be found here. Now, Microsoft has released the EMET v2!
“EMET provides users with the ability to deploy security mitigation technologies to arbitrary applications. This helps prevent vulnerabilities in those applications (especially line of business and 3rd party apps) from successfully being exploited. By deploying these mitigation technologies on legacy products, the tool can also help customers manage risk while they are in the process of transitioning over to modern, more secure products. In addition, it makes it easy for customers to test mitigations against any software and provide feedback on their experience to the vendor.“
This version sports a brand new GUI. In addition to SEHOP (Structured Error Handling Overwrite Protection), Dynamic DEP (Dynamic Data Execution Prevention), NULL page allocation, Heap Spray Allocation, this tool adds support for Export Address Table Access Filtering and the Mandatory Address Space Layout Randomization (ASLR)!
Download the EMET v2 here.
Tagged as: Enhanced Mitigation Evaluation Toolkit, Microsoft, Windows
Whoa! It sure has been a long time since we updated information about ProcNetMonitor. We had mentioned about it in our first post here. Now, the author has released an update – ProcNetMonitor version 2.7.
“ProcNetMonitor is the free tool to monitor the network activity of all running process in the system. It displays all open network ports (TCP/UDP) and active network connections for each process. It has advanced color based auto analysis system to make it easy to distinguish network oriented processes from others with just one glance at the list.“
Since we last wrote about it, this tool can now display process information on 64 bit systems too. False positives from Antivirus have also been removed and support for Windows 7 with GUI related enhancements.
Download ProcNetMonitor v2.7 here
Tagged as: Malware Analysis, ProcNetMonitor, Rootkit, system auditing tool, Windows
In earliest deployments, hackers used rootkits to gain unauthorized access to Unix-based systems. Today, it is more sophisticated rootkits are everywhere in the form of trojans that are ready to seize control of unsuspecting Windows-based platforms.
Rootkits find the processes that are in place to prevent illicit entry into your system. They then modify these processes to give attackers a remote pathway by which they can open a secret backdoor. Once this happens, attackers can use rootkits to secretly alter files, change processes, distribute spam, and use data mining tools to steal login IDs and passwords.
Since rootkits carry out these malicious activities underground, normal antivirus software cannot locate or remove them. Even if rootkit detection were easy, once the rootkit compromised your system, ripping it out may cause you to permanently lose hidden files, network connections, blocks of memory or registry entries.
Comparing Rootkit Removers:
The fact is, rootkits can be detected and effectively removed without damaging your system, but it has to be done properly. Although there are many anti rootkit tools on the market, very few can detect and safely remove as many hidden rootkits as Tizer Secure’s™ rootkit tool.
Below is a comparison chart:
How do rootkit removal tools stack up to Rootkit Razor?
| Major rootkits | Ice Sword | Backlight (FSecure) | Rootkit Unhooker | Root Analyzer | Quick Heal | Norton | McAfee | AVG AntiRootkit | Kaspersky | Rootkit Razor™ |
| Futo | Yes | No | Yes | No | No | No | No | Yes | No | Yes |
| FUTo_enhanced | Yes | No | Yes | No | No | No | No | Yes | No | Yes |
| AfxRootkit2005 (root.exe) | Yes | No | Yes | No | No | No | No | Yes | No | Yes |
| AFX Windows Rootkit 2003 (rootkit.exe) | No | No | No | No | No | No | No | Yes | No | Yes |
| Aphex_Rootkit (example.exe) | No | No | No | No | No | No | No | No | No | Yes |
| HideToolzv2.1.exe | Yes | Yes | Yes | Yes | Yes | Yes | No | Yes | No | Yes |
Operating Systems supported:
Processor: Pentium III 600MHz or faster
Operating Systems: Windows XP (32 bit)
Windows Server 2003
Windows 2000 (Pro and Server)
Windows Vista Home Basic,
Windows Vista Home Premium,
Windows Vista Business
RAM: 256 MB Available
Available Hard Disk Space: 150 MB (Recommended)
Download Rootkit Razor version 2.0.0.1 here
Searches leading to this post:
rootkit remover,
free rootkit remover,
razor rootkit,
rootkit cleaner windows 7,
rootkit detection windows 7,
rootkit removal 2010,
rootkit removal 64bit,
rootkit remover for windows 7,
rootkit unhooker 64 bit,
rootkit 64 detector,
64-bit rootkit remover,
McAfee free rootkit vista 64,
how to remove subseven trojan from 64 bit windows,
hidden rootkits process 64,
free rootkit software 64-bit,
free rootkit live cd,
avg anti rootkit 64 bit,
64bit rootkit tool,
Tizer Rootkit Razor windows 7 64-bit
Tagged as: anti rootkit, Rootkit, Rootkit Razor, Windows
