Rootkit Unhooker LE 3.8.384.586 SR1
version 3.8 LE build 383/586 Service Release 1build date 02.12.2009
for changelog see help file version history
Installer file hashes
MD5 for RkU3.8.384.586.exe
b4e203594bee5eefd1f5a8443e62f4ec
SHA512 for RkU3.8.384.586.exe
afc7c370ea9a64a10c173cd38ae9cf7ef17a9c4384164cb01ded4ab74f316e18
e7de75fb8d7a1fd36486681c7f11d431b1a4e09ce1c95bb8cb2f4087a5826c90
Important:
Use random name for RKU installation directory for counteracting
sophisticated malware.
:WARNING:
To counteract user mode malware RKU uses SSDT table hooking (splicing method) while running
on Windows 2000/XP/2003/Vista (no SP).
This self-protection cannot be disabled and may cause compatibility problems with antimalware
programs, such as SSDT based hookers like most AV's / HIPS.
Note that self-protection is disabled on Vista SP1 and later versions to save overall stability.
To avoid possible problems do not start RKU together with other antirootkits.
There is only unofficial support of this tool available.
This means it may take a long time to me to response on your bugreport/question (if I even).
D/L (~600 Kb)
http://www.rootkit.com/vault/DiabloNova/RkU3.8.384.586.rar
Russian Language Local Dll
http://www.rootkit.com/vault/DiabloNova/rku_rus.rar
Language Library Project for translation
http://www.rootkit.com/vault/DiabloNova/local_dev.rar 我没空。。。 试试效果:victory: 还不知道是做什么用的。 Rootkit Unhooker是一款较新的RK检测工具,来自俄罗斯。
其检测手段比IceSword可靠得多(虽然功能还不如IceSword齐全)
Rootkit Unhooker 功能:
服务描述表钩子检测和恢复
强大的进程检测
强大的驱动检测
隐藏进程杀除
API钩子检测
驱动转储
生成报告
支持的操作系统: 好东西,支持,只是不知道我这新人能不能下 百度搜索到这儿,还是下载闻总的放心 好东东,谢谢!!
页:
[1]