A collection of essential tools for Security Emergency Handling --- Xiao Xia Tang's recommendations

Following the network management toolkit, hero once again launched the toolkit for handling common security incidents ..

: Http://down.51cto.com/data/532875

Powerful functions.

Autoruns.exe AutoRuns is a self-starting project produced by Sysinternals that allows you to view and delete registries and Win. ini files.
Autorunsc.exe
Hijackthis.exe HijackThis can scan the registry and specific files on the hard disk to find some malicious programs "hijack" the browser portal. The HijackThis scan is very detailed and can fix most of the content that has been maliciously modified.
IceSword120_cn.zip is a cutting-down hacker. It has powerful internal functions and is used to search for and handle behind-the-scenes Trojans and backdoors in the system.
LP_Check.exe is a GUI tool used to check whether a user is cloned.
Malware Scanner.zip is a Malware scanning and removal tool. Has a superb user interface. Supports scanning of memory, registry, cookie, browser, and system files.
PowerTool_4.2_PortableSoft.7z is a free and powerful Process Manager that supports forced Process Termination. you can Unlock the processes that occupy files, view the occupied files/folders, and view and manage kernel modules and drivers, dump and other functions of the Process Module.
PowerTool_x64_1.2_PortableSoft.rar
Procexp.exe displays information about the handles and DLL files enabled or loaded by the process.
Procmon.exe Process Monitor allows you to Monitor and record all file and registry operations in the system at the same time, and read and write changes through the registry and file, it is useful for diagnosing system faults or discovering malware, viruses, or Trojans.
PS
Sreng2.zip is mainly used to discover and discover potential system faults and most damages caused by computer viruses. It also provides a series of modification suggestions and automatic repair methods.
Tcpvcon.exe
Tcpview.exe active socket command line viewer to dynamically view the current network connection
WIN64AST_100_BETA1.rar is the world's first kernel-level advanced system tool dedicated to 64-bit systems. Thanks to the use of special kernel technologies, WIN64AST can control the system from the underlying layer and has great operation permissions, is a powerful Anti Rootkit tool.
XueTr.zip XueTr is comparable to that of the famous IceSword. XueTr is able to manage the Registry on the ice edge, that is, completely display the hidden registry key value and obtain the highest permission for any registry key value.

This article from the "Road to pick up the left-Xiao Xia Tang flying" blog, please be sure to keep this source http://xiaoxia.blog.51cto.com/23357/1019718