VN:F [1.7.7_1013]Rating: +1 (from 1 vote)Spyware Analytics Forum, the division of EvilFingers empire is released to public now. The main aim of this forum is to provide an interface for home & enterprise users to interact with security professionals. Most users do not really get a chance to directly interact with professionals who can really [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)The special version of SpyDLLRemover is finally launched today. This version marked as 3.0 is mainly targeted to support Microsoft’s latest operating system, Windows 7.

Along with Windows 7 support, it comes with ‘Scan Settings’ option to allow user to fine tune the scanning operation. With this user can now customize [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)Written by forensic experts from the field, this book is the finest of all in exploring the art of Malware investigation in clear and concise manner. It offers in depth coverage of tools and technique used in live as well as static Malware analysis.

Here is the table of contents of [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)ProcNetMonitor is the free tool to monitor the network activity of all running process in the system. It displays all open network ports (TCP/UDP) and active network connections for each process. It has advanced color based auto analysis system to make it easy to distinguish network oriented processes from others [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)SpyDLLRemover is the standalone tool to effectively detect and delete spywares from the system. It comes with advanced spyware scanner which quickly discovers hidden Rootkit processes as well suspicious/injected DLLs within all running processes. It not only performs sophisticated auto analysis on process DLLs but [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)SpyDLLRemover is the standalone tool to effectively detect and delete spywares from the system. Now It comes with advanced spyware scanner which can quickly discovers hidden Rootkit processes as well suspicious/injected DLLs within all running processes. It not only performs sophisticated auto analysis on process DLLs [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)BHO stands for Browser Helper Objects which are plugins written for Internet Explorer to enhance its capabilities. But this feature is being misused by spyware programs which monitor user’s browsing habits and silently steal the users credentials. Also some of the BHO’s slow down the system considerably.
BHORemover helps in quick [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)My new tool, SpyDLLRemover is released on the RootkitAnalytics website. This tool helps in detecting and deleting userland based rootkits which hide the processes and injected modules to prevent their detection from antirootkit softwares.
Here is the snapshot of SpyDLLRemover detecting the hidden process belonging to HackerDefender Rootkit.

Here is another snapshot [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)Lately I have been researching on Windows SFC (System File Checker) mechanism which is used to protect system files against accidental or deliberate modification. I have written about it in more detail as how this technique can be utilized to differentiate between system and normal components.

Today while surfing on the [...]

Read Full Post »

VN:F [1.7.7_1013]Rating: 0 (from 0 votes)Recently while working on a new tool SpyDLLRemover, I had to separate out the operating system DLLs from others.  To be precise, I needed method to reliably detect malicious DLL among all loaded DLLs of the process.  This requires cornering out the malicious DLL by eliminating legitimate DLLs from the [...]

Read Full Post »