Even though cyber-criminals are becoming more proficient at creating malware that is hard to detect, do not fret. While some spyware and viruses cleverly camouflage themselves under system processes names, there are specialized tools that can help you identify and eliminate them from your computer.
SpyStudio is a piece of software that enables you to analyze system processes from initialization until the end and compare traces of suspicious operations with valid ones so that you can identify potential rootkits.
Enables you to trace a process step-by-step
The advantage of the application comes from the fact that you can follow-up on any process you want at every step of its execution. Depending on the prerequisites of your project, you need to specify the function groups that you want to trace. You can easily do so by checking and unchecking the items in the Monitor menu and afterwards writing the full path for the executable you wish to examine closer.
The program automatically runs the executable as soon as you hit the Hook and Execute function and displays all the interceptions as well as the calls to the functions made for the function group you selected. You will be happy to learn that you can stop tracing just as easily manually or by accessing the Stop All function from the Analysis menu.
Compare traces to discover the differences between them
It is important to note that you can save traces you have doubts about so you can compare them and identify potential differences between them. You should keep in mind that the sooner to the startup you trace the execution of the apps in different environments, the more accurate the analysis you can obtain.
The program allows you to compare the logs and determine potential issues and errors, such as in the case when you are running the same application in different Windows versions. The report is comprehensive and includes everything from the COM objects initiated by the processes and windows created to opened files and registry accessed.
As a side note, in case you are interested in analyzing only a few parameters, then you can use the filter function and specify the entries that the app should display.
A utility that can help you discover malware
If you have serious reasons to suspect you have a rootkit infection, yet you could not detect it using any third-party software solution so far, then perhaps SpyStudio could give you a hand.







SpyStudio is the result of years of research on the most efficient and powerful anti-malware application on the market. The program has an in-depth analysis engine that goes well beyond the core detection functions. It also provides a lot of information about the potential threats that you are trying to protect your computer from. For instance, if you suspect you are infected with a rootkit, the application will help you determine if this is indeed the case.
The way SpyStudio works is that it is designed to run with the Windows services and services.exe. Once you've launched the program, the action menu will appear automatically. There you can specify the executable or DLL you want to analyze, as well as the output folder. The program will look for the file and execute it at the same time that it's loaded. After that, it will wait for the process to end and take the information displayed in the log files. You can even set an expiration time so you know that the information will expire once that time is reached. You can also review the information of the processes that were run and performed their functions in the Windows registry.
The process of watching any process execution will last as long as the process is run. If it is ended or the process is killed, then the application will automatically close the trace and save it as a log file.
SPyStudio is a very powerful and all-inclusive tool for malware analysis and it takes a full advantage of all the features which make the analysis a very complete, versatile and easy to use.
CPU: Intel or AMD Pentium II – 400 MHz;
Windows 2000, Windows XP, Windows 98, Mac OS 9;
Memory: 128 MB of memory for classic mode, 256 MB for high mode;
Please be informed that the game may cause instability and graphical glitches on slow machines. Please try to run the game at a minimum of 800×600 resolution;
PS: If your Windows features DirectX support, you will need to check your video settings and DirectX compatibility before running the game. Click here for more information on DirectX and other DirectX problems.