
	Home > Step 1: Is there a problem

Step-by-Step Guide:

EMAIL THIS

Step 1: Is there a problem

18 Oct 2006 | Kevin Beaver, Contributor

Digg This!

StumbleUpon

Del.icio.us

Is your computer running slow or doing odd things? Have you found certain programs or data have been tampered with? Do odd windows or messages pop up during system startup or shutdown? Odd computer behavior is indeed a side effect of a rootkit infection, but strange behavior alone may not be a true indicator.

In fact, it's easy for the assumed presence of a rootkit to have a placebo effect, leading you (or a user) to believe the computer is infected. The truth is, strange behavior could just as easily be legitimate programs doing their things.

To determine if there is truly a rootkit operating behind the scenes, use a system process analyzer such as Sysinternals' ProcessExplorer or, better yet, a network analyzer. By using these tools, you'll likely be surprised to find what programs are doing and what's going in and out of your network adapter. You may also discover that you simply have an over-taxed system running with too little memory or a severely fragmented hard drive. With that in mind, I recommend checking your system configuration and defragmenting your drive(s). Remember, though, that it's be...

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Network intrusion detection and prevention and malware removal
	20 days to a more secure enterprise
	Improvements to offline file synchronization in Windows 7
	Underlying causes of inconsistent patch management
	Windows security tools for the busy desktop administrator
	Check IT List: Five steps for rootkit detection
	Top Windows client security tools for end users
	Hacking Exposed Windows: Windows security features and tools
	Tools for virus removal and detection
	Windows security testing: Five tips for the summer
	Buffer overflows can be prevented by GS cookies

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

tter to be safe than sorry, so run a rootkit scan as well. About the author:

About the author: Kevin Beaver is an independent information security consultant and expert witness with Atlanta-based Principle Logic, LLC. He has more than 18 years of experience in IT and specializes in performing information security assessments revolving around compliance and IT governance. Kevin has written six books, including Hacking For Dummies (Wiley), Hacking Wireless Networks For Dummies, and The Practical Guide to HIPAA Privacy and Security Compliance (Auerbach). He can be reached at kbeaver@principlelogic.com. Copyright 2006 TechTarget

Windows Admin Solutions - User Management, Application Management, Windows Deployments

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2008 - 2009, TechTarget \| Read our Privacy Policy