查看: 2361|回复: 16
收起左侧

[软件分享] SpyDLLRemover v3 推荐给各位~

[复制链接]
小小梦
发表于 2010-11-30 18:28:22 | 显示全部楼层 |阅读模式
本帖最后由 小小梦 于 2010-11-30 18:33 编辑

SpyDLLRemover is the standalone tool to effectively detect and delete spywares from the system. It comes with advanced spyware scanner which quickly discovers hidden Rootkit processes as well suspcious/injected DLLs within all running processes. It not only performs sophisticated auto analysis on process DLLs but also displays them with various threatlevels, which greatly helps in quick identification of malicious DLLs. The DLL search feature helps in finding DLL within all running processes using just partial or full name. Then user can choose to remove the dll from single process or from all loaded processes with just one click.

One of the unique feature of SpyDLLRemover is its capability to free the DLL from remote process using advanced DLL injection method which can defeat any existing Rootkit tricks. It also uses sophisticated low level anti-rootkit techniques to uncover hidden userland Rootkit processes as well as to terminate them.

SpyDLLRemover comes with support for Microsoft's latest operating system, Windows 7. Apart from this, it introduces new 'Scan Settings' option to allow the user to fine tune the scanning operation. Also it features improved heurestic analysis, enriched user interface, Intelli-Refresh of 'Process Viewer' and more. Current version provides support for malicious DLL removal from system processes across session boundaries breaking the limitations imposed in Vista/Win7.











以下是特点:

Advanced Spyware Scanner which efficiently discovers hidden Rootkit processes as well as suspicious/injected DLLs within all running processes in the system.

Detection and removal of hidden userland Rootkit processes using sophisticated techniques such as
- Direct NT System Call Implementation
- Process ID Bruteforce Method (PIDB) as first used by BlackLight
- CSRSS Process Handle Enumeration Method

State of art technique for completely freeing the injected DLL from remote process based on advanced DLL injection method using low level implementation which defeats any blocking attempts by Rootkits. This is one of those unique features found only in SpyDLLRemover.

Sophisticated DLL auto analysis which helps in seperating out the legitimate modules/DLLs from the malicious ones. Such DLLs are displayed using different colors representing various threat levels for quicker and easier identification.

'Scan Settings' option to fine tune the scanning operation based on user needs.

Inteli-Refresh of 'Process Viewer' leading to flicker free user experience.

Integrated online verification mechanism through ProcessLibrary.com to validate any suspcious DLLs. This makes it easy to differentiate between the spyware & legitimate DLLs.

DLL Tracer feature to search for dll within the running processes using partial or full name. Then user can choose to remove the dll from single process or from all loaded processes with just one click.

Sort the process/DLL in the list based on various parameters for easier and quicker analysis.

Detailed report generation of Spyware scanning result as well as process/DLL list in standard HTML format for offline investigation.

View the process/DLL properties for more information by just double clicking on the process/DLL entry in the list.

Feature to show all running processes in the system which has loaded the selected DLL. Also user can click on "Remove DLL from ALL' button to quickly remove any such malicious DLL from all loaded processes.

Termination of suspicious or hidden process based on low level implementation which makes it very effective against any Rootkit techniques.

Support for malicious DLL removal from system processes across session boundaries breaking the limitations imposed in Vista/Win7.

Displays detailed information about all running processes on the system
- Process name
- Process Id
- Session Id
- Company Name
- Product Name
- Process Description
- Memory Utilization
- Process Binary Path
- Process File Size
- File Install Date

Shows detailed information about each loaded DLLs within process to make it easier for manual analysis.
- DLL Name
- Company Name
- Description
- Comment about type of DLL (System, Hidden, Suspicious)
- Load/reference count of DLL
- Loading Type (static/dynamic)
- DLL File Size
- File Install Date
- Base Address of DLL
- Entry point of DLL
- Full DLL File Path

It is standalone tool which does not require any installation and can be executed directly.
Enriched user interface along with more user friendly options makes it the cool tool.


软件的官网:
http://www.rootkitanalytics.com/userland/spy-dll-remover.php


来自谷歌翻译..
SpyDLLRemover是独立的工具来有效地检测并从系统中删除间谍。 它配备了先进的间谍软件扫描仪可快速发现隐藏的Rootkit进程以及suspcious /内所有正在运行的进程注入的DLL。 它不仅在执行过程中的DLL先进的自动分析,而且还可以显示各种threatlevels,极大的恶意DLL的快速识别帮助他们。 DLL的搜索功能,可以帮助过程只用局部或全名之内找到所有正在运行的DLL。 然后用户可以选择删除或从单一进程,只要按一下所有加载DLL的进程。

对SpyDLLRemover独特的特点之一是它有能力释放的DLL从远程进程中采用先进的DLL注入方法,能够打败任何现有的Rootkit的技巧。 它还采用先进的低级别的反rootkit技术来发现隐藏的用户级的Rootkit进程以及终止它们。

SpyDLLRemover配备了微软的最新作业系统Windows 7支持。 此外,它引入了新的'扫描设置'选项允许微调扫描操作的用户。 同时它具有改善heurestic分析,丰富的用户界面,智库刷新'进程查看器'等等。 当前版本为来自全国各地会议恶意打破国界的限制Vista/Win7系统进程的DLL搬迁的支持。


永远0不再犹豫
发表于 2010-11-30 18:37:24 | 显示全部楼层
这是??  看不懂
lmf418482682
发表于 2010-11-30 19:59:01 | 显示全部楼层
这是??  看不懂
风《》格
发表于 2010-11-30 20:05:58 | 显示全部楼层
谢谢分享!期待小白鼠
1e3e
头像被屏蔽
发表于 2010-11-30 21:08:26 | 显示全部楼层
谢谢分享呀
败亦枭雄
发表于 2010-11-30 21:26:03 | 显示全部楼层
这个有没有汉化版的?
CiX
发表于 2010-11-30 21:31:12 | 显示全部楼层
小小梦
 楼主| 发表于 2010-11-30 21:36:01 | 显示全部楼层
本帖最后由 小小梦 于 2010-11-30 21:36 编辑
CiX 发表于 2010-11-30 21:31
回复 1楼 小小梦 的帖子

SpyDLLRemover绿色版, Just a FYI

[:27:]官方网下载后就是绿色版
那是什么网站? 貌似都是开源的?
CiX
发表于 2010-11-30 21:38:35 | 显示全部楼层
本帖最后由 CiX 于 2010-11-30 21:40 编辑

回复 8楼 小小梦 的帖子

Portableapps里的软件都是绿色版(开源)的
小小梦
 楼主| 发表于 2010-11-30 21:39:06 | 显示全部楼层
本帖最后由 小小梦 于 2010-11-30 21:39 编辑
CiX 发表于 2010-11-30 21:38
回复 8楼 小小梦 的帖子

都是绿色版(开源)的软件

确认可靠嘛?
绿色软件我一般在绿盟下的
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-25 12:49 , Processed in 0.147336 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表