找回密码
 立即注册
检测detectionXueTrand | 企业管理 2022-09-12 117 0star收藏 版权: . 保留作者信息 . 禁止商业使用 . 禁止修改作品
XueTr的主要功能1.进程、线程、进程模块、进程窗口、进程内存、定时器、热键信息检测,杀进程、杀线程、卸载模块等功能2.内核驱动模块检测,支持内核驱动模块的内存复制3.SSDT、ShadowSSDT、FSD、Keyboard、TCPIP、Classpnp、Atapi、Acpi、SCSI、Mouse、IDT、GDT信息检测,并能检测和恢复ssdthook和inlinehook4.CreateProcess、CreateThread、LoadImage、CmpCallback、BugCheckCallback、Shutdown、Lego等NotifyRoutine信息检测,并支持对这些NotifyRoutine的删去5.端口信息检测,现在不支持2000系统6.检测消息钩子7.内核模块的iat、eat、inlinehook、patches检测和恢复8.磁盘、卷、键盘、网络层等过滤驱动检测,并支持删去9.注册表修改10.进程iat、eat、inlinehook、patches检测和恢复11.文件系统检测,支持基本的文件操作12.检测(修改)IE插件、SPI、启动项、服务、H/OST文件、映像劫持、文件相关、系统防火墙规则、IME13.ObjectTypeHook检测和恢复14.DPC定时器检测和删去15.MBRRootkit检测和修改16.内核目标劫持检测17.其它一些手工杀毒时需求用到的功能,如修改LSP、修改安全模式等
_rels\.rels
readme.txt
XueTr.config
XueTr.exe
XueTr使用手册.chm
说明.txt
.....太多文件了略.....

(The main functions of XueTr 1. Process, thread, process module, process window, process memory, timer, hotkey information detection, killing process, killing thread, uninstalling module and other functions 2. Kernel driver module detection, supporting the memory of the kernel driver module Copy 3.SSDT, ShadowSSDT, FSD, Keyboard, TCPIP, Classpnp, Atapi, Acpi, SCSI, Mouse, IDT, GDT information detection, and can detect and restore ssdthook and inlinehook4.CreateProcess, CreateThread, LoadImage, CmpCallback, BugCheckCallback, Shutdown, Lego and other NotifyRoutine information detection, and support the deletion of these NotifyRoutines 5. Port information detection, now does not support 2000 systems , keyboard, network layer and other filter driver detection, and support deletion 9. Registry modification 10. Process iat, eat, inlinehook, patches detection and recovery 11. File system detection, support basic file operations Plugins, SPI, startup items, services, H/OST files, image hijacking, file correlation, system firewall rules, IME13.ObjectTypeHook detection and recovery 14.DPC timer detection and deletion 15.MBRRootkit detection and modification 16.Kernel target hijacking Detect 17. Other functions required for manual antivirus, such as modifying LSP, modifying security mode, etc.
_rels\.rels
readme.txt
XueTr.config
XueTr.exe
XueTr User Manual.chm
description.txt
.....too many files .....)

[下载]09361853628.rar




上一篇:周界报警系统方案
下一篇:Windows平台下的免费SSH软件