Website | http://www.7-zip.org/ |
Documentation/Instructions | http://www.7-zip.org/faq.html |
Download | http://www.7-zip.org/download.html |
Utilities used for troubleshooting
Last Modified: 2022-11-21 21:55:06 Etc/GMT
Environment
Summary
Website | http://msdn.microsoft.com/en-us/windows/hardware/gg463009.aspx |
Documentation/Instructions | http://support.microsoft.com/kb/286350 |
Download | http://msdn.microsoft.com/en-us/windows/hardware/hh852363 |
Website | http://technet.microsoft.com/en-us/sysinternals/bb963902 |
Documentation/Instructions | http://technet.microsoft.com/en-us/sysinternals/bb963902 |
Download | http://technet.microsoft.com/en-us/sysinternals/bb963902 |
Website | http://www.eicar.org |
Documentation/Instructions | http://www.eicar.org/86-0-Intended-use.html |
Download | http://www.eicar.org/85-0-Download.html |
Website | http://fiddler2.com/ |
Documentation/Instructions | http://fiddler2.com/get-fiddler |
Download | http://fiddler2.com/get-fiddler |
Website | https://www.trellix.com/en-us/downloads/free-tools.html |
Documentation/Instructions | See Downloaded files |
Download | https://www.trellix.com/en-us/downloads/free-tools.html |
Downloaded files | Fport.exe md5: dbb75488aa2fa22ba6950aead1ef30d5 readme.txt contains basic usage instructions Change the file name for fport.exe to any other name. This will trigger detection on the file when you scan or run it. |
Website | http://www.gmer.net/ |
Documentation/Instructions | http://www.gmer.net/#faq |
Download | http://www.gmer.net/#files |
Website | http://www.softpedia.com/progDownload/IceSword-Download-79326.html |
Documentation/Instructions | http://www.softpedia.com/progDownload/IceSword-Download-79326.html |
Download (version 1.22) | http://www.softpedia.com/progDownload/IceSword-Download-79326.html |
IMPORTANT: Ensure that you use this utility only for logging purposes, and use Trellix products only for cleaning/deleting infected files.
ProcDump also includes unresponsive Window monitoring (using the same definition that Windows and Task Manager use) and unhandled exception monitoring, and can generate dumps based on the values of system performance counters. ProcDump can also serve as a general process dump utility that you can embed in other scripts.
Website | http://technet.microsoft.com/en-us/sysinternals/dd996900 |
Documentation/Instructions | Refer to the website link above. |
Download | Refer to the website link above. |
Website | http://technet.microsoft.com/en-us/sysinternals/bb896653 |
Documentation/Instructions | Refer to the website link above. |
Download | Refer to the website link above. |
Website | http://technet.microsoft.com/en-us/sysinternals/bb897445 |
Documentation/Instructions | Refer to the website link above. |
Download | Refer to the website link above. |
IMPORTANT: RootkitRevealer is not intended to detect rootkits that do not attempt to hide their files or registry keys.
Website | http://sites.google.com/site/rootrepeal |
Documentation/Instructions | Refer to the website link above. |
Download | http://ad13.geekstogo.com/RootRepeal.rar |
IMPORTANT: RootkitRevealer is not intended to detect rootkits that do not attempt to hide their files or registry keys.
Website | https://www.trellix.com/en-us/downloads/free-tools.html |
Documentation/Instructions | Refer to the website link above. |
Download | Refer to the website link above. |
Website | http://www.tcpdump.org/ |
Documentation/Instructions | http://www.tcpdump.org/#documentation |
Download | http://www.tcpdump.org/#latest-release |
TCPView (for Windows) is a Microsoft program that provides detailed listings of all TCP and UDP endpoints on your system, including the local and remote addresses and state of TCP connections.
On Windows Server 2008, Vista, and XP, TCPView also reports the name of the process that owns the endpoint. TCPView provides a better subset of the Microsoft Windows Netstat program.
The TCPView download includes Tcpvcon, a command-line version with the same functionality.
Website | http://technet.microsoft.com/en-us/sysinternals/bb897437 |
Documentation/Instructions Windows Netstat instructions |
http://technet.microsoft.com/en-us/sysinternals/bb897437 http://technet.microsoft.com/en-us/library/bb490947.aspx |
Download | Refer to the website link above. |
Website | https://www.trellix.com/en-us/downloads/free-tools.html |
Documentation/Instructions | Refer to the website link above. |
Download | Refer to the website link above. |
Website | http://www.winpcap.org/ |
Documentation/Instructions | http://www.winpcap.org/docs/default.htm |
Download | http://www.winpcap.org/install/default.htm |
Website | http://www.win-rar.com |
Documentation/Instructions | http://www.win-rar.com/website/index.php?id=features&L=0 |
Download | http://www.win-rar.com/download.html |
WinZip is a utility for file compression, file sharing, file encryption, and data backup. Several operating systems are supported.
Website | http://www.winzip.com |
Documentation/Instructions | http://kb.winzip.com/kb/ |
Download | http://www.winzip.com/prod_down.htm |
Wireshark is a third-party network protocol analyzer that lets you capture and interactively browse running traffic on a computer network. It is available for free as open source, and is released under the GNU General Public License version 2. Wireshark was formerly known as Ethereal.
Website | http://www.wireshark.org |
Documentation/Instructions | http://www.wireshark.org/docs/ |
Download | http://www.wireshark.org/download.html |
Related Information
Trellix Free Tools | https://www.trellix.com/en-us/downloads/free-tools.html |
Microsoft Windows Sysinternals | http://technet.microsoft.com/en-us/sysinternals/default |
Affected Products
Languages:
This article is available in the following languages: