PDA

Просмотр полной версии : RKdetector



HATTIFNATTOR
02.10.2006, 12:19
http://img177.imageshack.us/img177/3029/rkdetectorto4.gif

Утилита, предназначенная для поиска и удаления скрытых от пользователя ресурсов. Текущая бета - 2.0

Загрузить (http://www.rootkitdetector.com/RKDetector2.zip)

Dont.care.a.f!g
03.03.2007, 05:23
IATHooksAnalyzer (http://www.rootkitdetector.com/IATHooksAnalyzer.zip) (Iat Analyzer, Iat fixer, database scan)

IATHooksAnalyzer is an advanced rootkit detector module that includes
memory analysis to find Intercepted functions due to virus, rootkits, addware, spyware...

This module allows rkdetector to perform the following tasks:
- Running Tasks List
- Proccess in memory Import Address Table reader
- Detect Modified functions entries and the dll/proccess that modified it
- Restore Modified functions to return to the correct proccess flow

NOT INCLUDED IN THIS BETA RELEASE:
- Export results XML/HTML
- Perform recovery with modified functions.
- Search filter ( search for A/C/D/M file times)
- Load List of dlls from previous secure boots to make a diff
- Rootkits/virus/adware/spyware paterns hooking certain function (sockets, findfirstfile, etc)

Erekle
06.03.2007, 01:49
RKdetector 2 -
путь (не реестр) > TProgressBar property out of range
путь (реестр) > access violation.
Бета...

EvilPhantasy
07.03.2007, 15:48
Эта бета, бета уже много лет. Проект rkdetector сдох.