• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 711
  • Last Modified:


I do I get rid of Rootkits on my system?
  • 2
2 Solutions
Pete LongTechnical ConsultantCommented:
Scanning for Rootkits

chkrootkit Rootkit Scanner

From Above
The chkrootkit package contains seven small applications. The main progam, chkrootkit, is used to detect known rootkit signatures. In addition to searching for a rootkit's default files, it also checks core system binaries for malicious content. The remaining applications in the package are ifpromisc, which helps to find out whether a network interface is in promiscuous mode (remember you can't trust netstat), chklastlog, chkwtmp, and check_wtmpx, all of which detect deletions in various log files, chkproc, which detects Loadable Kernel Module (LKM) trojans and hidden processes, and finally strings, which is a simple implementation of the Unix strings utility.

You rebuild it.
That depends on what systems you have. are we talking windows, Linux or solaris ??

if we are talking windows you might have a real problem. Some of the windows rootkits are really kernel plugins that loads before the OS has booted and are quite hard to get rid of.

I can reccomend VICE from www.rootkit.com it will find most if not all exixting rootkits for win32.

But your real question was: How do i get rid of rootkits?

Well the best aproache is:
1. run a scanner.
2. then boot the machine with a boot CD like Knoppix
3. Delete the files
4. reboot
You will never be certain that you have removed all of it/them. Unless you are in a controlled lab environment or have 100% snapshot of the system before the rootkit/s were implemented.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now