Content

Avert Tools

This collection of utilities is offered by McAfee's Avert Labs to accomplish unique tasks that are not commonly encountered during typical use of our anti-virus products.

Each tool was designed by one of the Avert team to solve problems caused by viruses or Trojans or required for data gathering for analysis of virus caused damage.

Each tool has it's use described next to them.

Latest Additions

09/10/2009: McAfee FileInsight 2.1
07/06/2009: Stinger v10.0.1.624
05/22/2009: Stinger for PWS-Banker.cz

One of our support personnel will help you select one of these that may be needed by you. Please don't use them if you are unsure of their need, misuse could cause worse damage than you are looking to fix.

These utilities have been designed to help you address various issues and should be used as recommended by your McAfee representative. All files presented within this page are not released products. They have not been approved by Quality Assurance and could cause false alarms as well as crashes on your machine(s).

Forensics Tools
Utility Description Instructions
McAfee FileInsight 2.1 posted 09/10/09 McAfee FileInsight, developed by McAfee Avert Labs, is an integrated tool environment for web site and file analysis. Its many built-in editing and analysis features can be easily extended through simple Python-based plugins.
McAfee Rootkit Detective 1.1 posted 11/05/07 McAfee Rootkit Detective is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system. Release Notes
Stinger Releases
Utility Removes Instructions
Stinger v10.0.1.624
posted 07/06/09		 Detects and removes threats identified here Release Notes
Stinger for W32/Conficker version 10.0.1.551 posted 04/09/2009 - 3:00pm CST Detects and removes all known W32/Conficker variants to date.
Stinger MD5: b123b809b6dec28856334345cbbf9ad1
Stinger for PWS-Banker.cz posted 05/22/2009 - 10:30am CST Detects and removes WS-Banker.cz.
Stinger MD5: 468207c88c4e0f08b481161e6ac66d3f
Stinger for W32/Polip version 3.0.1 posted 05/03/2006 W32/Polip Release Notes
Stinger for W32/Bacalid version 3.0.6 posted 09/19/2006 Detects and removes all known W32/Bacalid variants to date
stinger.com MD5: 0955c96cc5d1c57cfd42520ce298fbcc 		Release Notes
Stinger for W32/HLLP.Philis.bq posted 11/17/2006 Detects and removes W32/HLLP.Philis.bq and associated threats Release Notes
Beta/Emergency DATs and Command Line Scanner/DAT Packages
DAT SET Use
Beta .DAT files Latest available Beta DAT files. These are the files Avert Labs researchers use to assure they have the most current detections.
Miscellaneous Utilities & Notes
Utility Usefulness
SAVEINFO.ZIP A utility to capture possible boot sector viruses. This tool saves the MBR, the first 2 tracks of your hard disk, as well as the last track of each partition and and the last track of the physical drive.
RWFLOPPY.ZIP V1.0 Diskette IMAGE create/restore utility. Makes a file of a floppy to send via the network
READt80.ZIP Captures tracks 80 & 81 from a 1.44M diskette