6. 5
ESET, spol. s r. o. ESET Cyber Secur i t y ESET, spol. s r. o. www. eset. com ESET, spol. s r. o. www. eset. com/ suppor t REV. 2017/ 10/ 13
..................................... 5 ES ET Cy ber S ec ur i t y 1................................................ 5 1. 1 6............................................... 5 1. 2..................................... 6 2................................................ 6 2. 1............................................... 7 2. 2..................................... 8 3...................................... 9 4..................................... 10 5............................................... 10 5. 1.............................................. 10 5. 2.............................................. 11 5. 3.................................... 12 6............................................... 12 6. 1.............................................................. 12 6. 1. 1.............................................................. 12 6. 1. 1. 1.............................................................. 12 6. 1. 2.............................................................. 13 6. 1. 3.............................................................. 13 6. 1. 3. 1.............................................................. 13 6. 1. 3. 2.............................................................. 13 6. 1. 3. 3.............................................................. 13 6. 1. 3. 4.............................................................. 14 6. 1. 4.............................................................. 14 6. 1. 4. 1........................................................................ 14 6. 1. 4. 1. 1........................................................................ 15 6. 1. 4. 1. 2.............................................................. 15 6. 1. 4. 2.............................................................. 15 6. 1. 4. 3.............................................................. 16 Thr eat Sens e 6. 1. 5.............................................................. 16 6. 1. 5. 1.............................................................. 16 6. 1. 5. 2.............................................................. 16 6. 1. 5. 3.............................................................. 17 6. 1. 5. 4.............................................................. 17 6. 1. 5. 5.............................................................. 17 6. 1. 5. 6.............................................................. 17 6. 1. 6.............................................. 18 6. 2.................................... 19 7..................................... 20 Web 8............................................... 20 8. 1 Web.............................................................. 20 8. 1. 1.............................................................. 20 URL 8. 1. 2.............................................. 20 8. 2.............................................................................. 21 POP3 8. 2. 1.............................................................................. 21 I MAP 8. 2. 2....................................................... 22 9............................................................................................ 22 9. 1.............................................................................. 22 9. 1. 1........................................................................................... 22 9. 2........................................................................................... 22 E S E T Cy ber S ec ur i t y 9. 3........................................................................................... 23 9. 4....................................................... 24 10............................................................................................ 24 10. 1.............................................................................. 24 10. 1. 1.............................................................................. 24 10. 1. 2........................................................................................... 25 10. 2.............................................................................. 25 10. 2. 1.............................................................................. 26 10. 2. 2........................................................................................... 26 10. 3.............................................................................. 26 10. 3. 1.............................................................................. 26 10. 3. 2.............................................................................. 27 10. 3. 3........................................................................................... 27 10. 4........................................................................................... 27 L i v e Gr i d 10. 5.............................................................................. 28 L i ve Gr i d 10. 5. 1....................................................... 29 11............................................................................................ 29 11. 1.............................................................................. 29 11. 1. 1.............................................................................. 29 11. 1. 2........................................................................................... 30 11. 2........................................................................................... 30 11. 3....................................................... 31 12............................................................................................ 31 12. 1........................................................................................... 31 12. 2....................................................... 32 13............................................................................................ 32 13. 1.............................................................................. 32 13. 1. 1.............................................................................. 32 13. 1. 2.............................................................................. 32 13. 1. 3.............................................................................. 33 Root ki t 13. 1. 4.............................................................................. 33 13. 1. 5.............................................................................. 33 13. 1. 6.............................................................................. 33 13. 1. 7.............................................................................. 33 13. 1. 8........................................................................................... 34 13. 2.............................................................................. 34 DoS 13. 2. 1.............................................................................. 34 DNS 13. 2. 2.............................................................................. 34 13. 2. 3.............................................................................. 34 TCP 13. 2. 4
........... 13.... 2... 5.... SMB.......................................... 34........... 13.... 2... 6.... I. CMP......................................... 35..... 13.... 3...................................... 35........... 13.... 3... 1.............................................. 35........... 13.... 3... 2.............................................. 35........... 13.... 3... 3.............................................. 36.............................................................. 36 13. 3. 4
1. ESET Cyber Sec ur i t y ESET Cyber Security ThreatSense ESET Cyber Security ESET Cyber Security rootkit Internet 1. 1 6 ESET Cyber Security 6 - - ESET Cyber Security 6 23 - - 1. 2 ESET Cyber Security Intel 32 64 macos 10.6 300 MB 200 MB 5
2. ESET Cyber Security ESET CD/DVD Finder ESET 6 7 2. 1 ESET Live Grid Live Grid ESET ESET ESET Live Grid( ) Live Grid 27 ESET Cyber Security 14 6
2. 2 IP URL 3128 ( ) ESET Live Grid Live Grid ESET ESET ESET Live Grid( ) Live Grid 27 ESET Cyber Security 14 7
3. macos ESET Cyber Security - XXXX-XXXX-XXXX-XXXX-XXXX XXXX-XXXXXXXX - ESET Cyber Security my.eset.com BETA - ESET Cyber Security ESET Cyber Security - ESET - 8
4. ESET Cyber Security ESET Cyber Security CD/DVD Finder ESET Cyber Security (.dmg ) Finder Ctrl ESET Cyber Security Contents > Helpers Uninstaller 9
5. ESET Cyber Security - Web - 14 - - - 24 25 26 27 - Internet 5. 1 ESET Cyber Security cmd+, - ESET Cyber Security cmd+o - ESET Cyber Security GUI cmd+q - ESET Cyber Security GUI macos ESET Cyber Security cmd+w - ESET Cyber Security GUI > > cmd+alt+l - cmd+alt+s - cmd+alt+q - 5. 2 ESET Cyber Security 10
5. 3 ESET ESET ESET Cyber Security 11
6. > 6. 1 6. 1. 1 > > - - - UPX PE_Compact PKLite ASPack Web 12 6. 1. 1. 1 IP/IPv6 - - -? - - Web IP/IPv6 6. 1. 2 ThreatSense 16 ThreatSense 12
6. 1. 3 ThreatSense ThreatSense 16 ESET Cyber Security > Real-time - - CD DVD USB - > cmd+, > 13 6. 1. 3. 1 ThreatSense ThreatSense 16 ThreatSense - ESET Live Grid - macos 10.10 Microsoft Word 2011 Word 2016 6. 1. 3. 2 ESET Cyber Security ESET Cyber Security > > 6. 1. 3. 3 eicar.com ESET Cyber Security EICAR 6. 1. 3. 4 > 13
ESET 6. 1. 4 > > Finder ESET Cyber Security /Applications 6. 1. 4. 1 6. 1. 4. 1. 1 16 14
6. 1. 4. 1. 2 > > 6. 1. 4. 2 6. 1. 4. 3 > cmd+, > ThreatSense 16 ThreatSense 15
6. 1. 5 Thr eat Sens e ThreatSense ESET ThreatSense Rootkit ThreatSense > cmd+, ThreatSense ThreatSense ThreatSense - - - Web ThreatSense ThreatSense 6. 1. 5. 1 - - - - rar zip arj tar - - UPX yoda ASPack FGS 6. 1. 5. 2 - - ESET 6. 1. 5. 3 3 - - - 16
6. 1. 5. 4 ThreatSense log cfg tmp log cfg tmp 6. 1. 5. 5 : : : 10 : 6. 1. 5. 6 ESET ESET Cyber Security ThreatSense 6. 1. 6 USB CD DVD 1. 2. 14 3. ESET Cyber Security - 17
- - 6. 2 ESET Cyber Security CD DVD USB ios > > USB CD-ROM CD-ROM 18
7. PIN > > ESET 19
8. Web Web > Web Web - Web HTTP - POP3 IMAP - ESET 8. 1 Web Web Web HTTP Web HTTP 20 URL 20 8. 1. 1 HTTP 80 8080 3128 8. 1. 2 URL URL HTTP URL URL URL *?? 8. 2 POP3 IMAP ThreatSense POP3 IMAP ThreatSense - - HTML - - - - - POP3 IMAP POP3 21 IMAP 21 20
8. 2. 1 POP3 POP3 ESET Cyber Security POP3 110 POP3 POP3 8. 2. 2 I MAP Internet (IMAP) Internet IMAP POP3 ESET Cyber Security IMAP IMAP 143 IMAP IMAP 21
9. ESET Cyber Security ESET Cyber Security 22-31 ESET 9. 1 9. 1. 1 ESET Cyber Security ESET Cyber Security - 7 9. 2 > ESET Cyber Security 25 9. 3 ESET Cyber Sec ur i t y ESET Cyber Security CD DVD ESET Cyber Security 22
9. 4 macos ESET Cyber Security > cmd+, > > - - macos macos ESET Cyber Security [ ] - [ ] - [ ] - softwareupdate softwareupdate man softwareupdate softwareupdate 23
10. 10. 1 ESET Cyber Security ESET Cyber Security > 1. - 2. - ESET Cyber Security 3. - 4. - Web URL IP 10. 1. 1 ESET Cyber Security > cmd+, > - 90-25% CSV (Comma-separated values) : eventslog.txt threatslog.txt scanlog.number.txt 24 10. 1. 2 - - - - - 24
10. 2 ESET Cyber Security CTRL 10. 2. 1 CTRL... 5 nobody macos 25
1. 2. 3. cron 26 4. 5. ESET Cyber Security > cmd+, > 10. 2. 2 cron 6 (0-59) (0-23) (1-31) (1-12) (1970-2099) (0-7)( = 0 7) 30 6 22 3 2012 4 cron (*) - 3 (-) - 3-9 (,) - 1,3,7,8 (/) - 3-28/5 3 3 5 (Monday-Sunday) (January-December) 10. 3 ESET Cyber Security ESET (/Library/Application Support/Eset/esets/cache/quarantine ) ESET Cyber Security ESET Cyber Security 10. 3. 1 ESET Cyber Security Ctrl 10. 3. 2 Ctrl 26
10. 3. 3 ESET Ctrl 10. 4 ESET Cyber Security ESET Live Grid - /Applications/Utilities - ESET Cyber Security ESET Live Grid ESET - ESET Live Grid - ESET Live Grid ID - - - - ID - - - 10. 5 L i ve Gr i d Live Grid ESET Live Grid 1. Live Grid 2. Live Grid ESET ESET Live Grid ESET Live Grid > cmd+, > Live Grid Live Grid Live Grid 27
10. 5. 1 L i ve Gr i d ESET Cyber Security ESET > - ESET Live Grid ESET ESET # utc_time=2005-04-14 07:21:28 # country= Slovakia # language= ENGLISH # osver=9.5.0 # engine=5417 # components=2.50.2 # moduleid=0x4e4f4d41 # filesize=28368 # filename=users/userone/documents/incoming/rdgfr1463[1].zip - doc rtf ( ) - ESET 28
11. > cmd+, > ESET Cyber Security macos ESET Cyber Security cmd+tab ESET Cyber Security ESET Cyber Security 10 macos ESET Cyber Security ESET Cyber Security macos ESET Cyber Security 11. 1 ESET Cyber Security 29 X 5 ESET Cyber Security 6.2 29 11. 1. 1 ESET Cyber Security > > > ESET Cyber Security 11. 1. 2 ESET Cyber Security > > > : ESET Cyber Security Web 29
11. 2 ESET Cyber Security > cmd+, > 11. 3 > cmd+, > CTRL Finder 30
12. 12. 1 ESET Cyber Security > ESET Cyber Security ESET Cyber Security 12. 2 > cmd+, > ESET Cyber Security Internet ESET Cyber Security Basic Access NTLM (NT LAN Manager) IP URL 3128 31
13. 13. 1 13. 1. 1 13. 1. 2 Internet 13. 1. 3 Downloader Internet Dropper Backdoor - Keylogger Dialer - Dialer 32
13. 1. 4 Root ki t Rootkit Internet Rootkit 13. 1. 5 Internet 13. 1. 6 PIN P2P Spyfalcon Spy Sheriff 13. 1. 7 ESET Cyber Security 13. 1. 8 33
13. 2 13. 2. 1 DoS DoS Dos Dos Web 13. 2. 2 DNS DNS DNS IP DNS Internet 13. 2. 3 13. 2. 4 TCP TCP TCP TCP TCP 13. 2. 5 SMB SMBRelay SMBRelay2 NetBIOS LAN SMBRelay UDP 139 445 SMBRelay IP SMBRelay SMB IP SMBRelay2 SMBRelay SMBRelay2 NetBIOS IP 34
13. 2. 6 I CMP ICMP Internet Internet ICMP ICMP DoS ICMP ping flood ICMP_ECHO flood Smurf ICMP Internet Internet 13. 3 90 Internet Internet Internet Internet 13. 3. 1 Internet 13. 3. 2 Internet ICQ Skype (FUD) Internet Internet 35
13. 3. 3 PIN 13. 3. 4 vaigra viagra 36