| author | Oleksandr Gavenko <gavenkoa@gmail.com> |
| Sun, 01 Aug 2010 16:41:40 +0300 | |
| changeset 476 | feaa4d64ad4e |
| parent 466 | 2c0786a63050 |
| child 602 | fc01fedc5b17 |
| permissions | -rw-r--r-- |
|
119
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
1 |
-*- mode: outline; coding: utf-8 -*- |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
2 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
3 |
* Rootkit. |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
4 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
5 |
** Debian. |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
6 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
7 |
$ sudo apt-get install rkhunter chkrootkit |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
8 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
9 |
*** rkhunter. |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
10 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
11 |
$ sudo rkhunter -c |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
12 |
... |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
13 |
|
| 120 | 14 |
http://www.rootkit.nl/projects/rootkit_hunter.html |
15 |
||
|
119
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
16 |
*** |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
17 |
|
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
18 |
$ sudo chkrootkit |
|
a35784f89969
Added list of rootkit searching programm.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
diff
changeset
|
19 |
... |
| 121 | 20 |
|
21 |
* Virus. |
|
22 |
||
23 |
** Debian. |
|
24 |
||
25 |
*** ClamAV. |
|
26 |
||
27 |
anti-virus utility for Unix. |
|
28 |
||
29 |
$ sudo apt-get install clamav |
|
| 466 | 30 |
|
31 |
** Windows. |
|
32 |
||
33 |
*** Nod32. |
|
34 |
||
35 |
**** Nod32 removal. |
|
36 |
||
37 |
Disable nod32 services by 'msconfig' utility. |
|
38 |
||
39 |
Remove such keys from registry by 'regedit': |
|
40 |
||
41 |
HKEY_LOCAL_MACHINE\SOFTWARE\ESET |
|
42 |
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_NOD32DRV |
|
43 |
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eamon ==> |
|
44 |
... easdrv easdrv EhttpSrv ekrn epfw Epfwndis epfwtdi |
|
45 |
||
46 |
* Free online virus scaner. |
|
47 |
||
48 |
http://virscan.org |
|
49 |
http://virusscan.jotti.org/ru |
|
50 |
http://www.virustotal.com |