Support Forums

Full Version: Using BlackLight to detect rootkits!
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Hey,
The first step is to download Blacklight. You can download Blacklight directly from F-Secure's web site at this link:

Blacklight Download Link: ftp://ftp.f-secure.com/anti-virus/tools/fsbl.exe

Once you click on the above link you will be presented with a prompt asking what you would like to do with the file. I suggest you save the file directly to your desktop where we will run it from there.
To start the program simply double-click on the fsbl.exe icon and you will be presented with the license agreement
[Image: agreement.jpg]
Select the option that is labeled I accept the agreement and then press the Next button. You will now be presented with a screen similar to the one shown.
[Image: beginscan.jpg]
When the scanning is done, the Next button will become available and you should click on it. If Blacklight did not find any hidden items you will see a screen showing that no hidden items were found. You can then press the Exit button to exit the program as Blacklight did not find any rootkits on your computer. If on the other hand, Blacklight did find some hidden items, you will be presented with a screen similar to Figure 5 below showing a list of the processes and files hidden on your computer.
[Image: clean.jpg]


Parts from BleepingComputer.com
Please provide a virus scan of the exe file by using www.virustotal.com.

Thanks.