| author | Oleksandr Gavenko <gavenkoa@gmail.com> |
| Fri, 15 Oct 2010 14:04:05 +0300 | |
| changeset 605 | 639aaf15fe93 |
| parent 602 | fc01fedc5b17 |
| child 703 | 8860b7ae6253 |
| permissions | -rw-r--r-- |
|
119
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
1 |
-*- mode: outline; coding: utf-8 -*- |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
2 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
3 |
* Rootkit. |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
4 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
5 |
** Debian. |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
6 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
7 |
$ sudo apt-get install rkhunter chkrootkit |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
8 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
9 |
*** rkhunter. |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
10 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
11 |
$ sudo rkhunter -c |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
12 |
... |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
13 |
|
| 120 | 14 |
http://www.rootkit.nl/projects/rootkit_hunter.html |
15 |
||
|
119
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
16 |
*** |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
17 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
18 |
$ sudo chkrootkit |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
19 |
... |
| 121 | 20 |
|
|
602
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
21 |
* Debian. |
| 121 | 22 |
|
|
602
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
23 |
** ClamAV. |
| 121 | 24 |
|
25 |
anti-virus utility for Unix. |
|
26 |
||
27 |
$ sudo apt-get install clamav |
|
| 466 | 28 |
|
|
602
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
29 |
* Windows. |
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
30 |
|
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
31 |
** Free. |
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
32 |
|
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
33 |
*** Microsoft Security Essentials. |
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
34 |
|
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
35 |
http://en.wikipedia.org/wiki/Microsoft_Security_Essentials |
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
36 |
|
|
fc01fedc5b17
Microsoft Security Essentials.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
466
diff
changeset
|
37 |
** Non free. |
| 466 | 38 |
|
39 |
*** Nod32. |
|
40 |
||
41 |
**** Nod32 removal. |
|
42 |
||
43 |
Disable nod32 services by 'msconfig' utility. |
|
44 |
||
45 |
Remove such keys from registry by 'regedit': |
|
46 |
||
47 |
HKEY_LOCAL_MACHINE\SOFTWARE\ESET |
|
48 |
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_NOD32DRV |
|
49 |
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eamon ==> |
|
50 |
... easdrv easdrv EhttpSrv ekrn epfw Epfwndis epfwtdi |
|
51 |
||
52 |
* Free online virus scaner. |
|
53 |
||
54 |
http://virscan.org |
|
55 |
http://virusscan.jotti.org/ru |
|
56 |
http://www.virustotal.com |