ESET Cyber Security Pro

: OS X ( 6.0 )

ESET, spol. s r.o. ESET Cyber Security Pro ESET, spol. s r.o. www.eset.com All rights reserved.,,,,, ESET, spol. s r.o. : www.eset.com/support REV. 6/16/2016

1. ESET...4 Cyber Security Pro 1.1 1.2 6...4...4 2....4 2.1 2.2...4...5 3....5 4....5 5....6 5.1 5.2 5.3...6...6...6 6....6 6.1,...7 6.1.1...7 6.1.1.1...7 6.1.2...7 6.1.3...7 6.1.3.1...8 6.1.3.2...8 6.1.3.3...8 6.1.3.4...8 6.1.4...8 6.1.4.1...9 6.1.4.1.1...9 6.1.4.1.2...9 6.1.4.2...9 6.1.4.3...9 6.1.5...10 Threat Sense 6.1.5.1...10 6.1.5.2...10 6.1.5.3...10 6.1.5.4...11 6.1.5.5...11 6.1.5.6...11 6.1.6...11 6.2...12 7....12 8....12 8.1...12 8.2...13 8.2.1...13 8.3...13 8.4...13 8.5...13 9....14 9.1...14 9.1.1...14 9.1.2...14 URL 9.2...14 9.2.1...15 POP3 9.2.2...15 IMAP 10....15 11....15 11.1...16...16 11.1.1 11.2...16 11.3 ESET...16 Cyber Securit y Pro 11.4...16 12....17 12.1...17...17 12.1.1...18 12.1.2 12.2...18...18 12.2.1...18 12.2.2 12.3...19...19 12.3.1...19 12.3.2...19 12.3.3 12.4...19 12.5Live...20 Grid...20 12.5.1 Live Grid 13....20 13.1...21...21 13.1.1...21 13.1.2 13.2...21 13.3...21 14....21 14.1...21 14.2...22 15....22 15.1...22...22 15.1.1...22 15.1.2...22 15.1.3...23 15.1.4...23 15.1.5...23 15.1.6...23 15.1.7...24 15.1.8 15.2...24...24 15.2.1 DoS...24 15.2.2 DNS...24 15.2.3...24 15.2.4 TCP...24 15.2.5 SMB...25 15.2.6 ICMP 15.3...25...25 15.3.1...25 15.3.2...26 15.3.3...26 15.3.4

1. ESET Cyber Security Pro ESET Cyber Security Pro, ThreatSense CD/DVD CD/DVD Finder ESET ESET Cyber Security Pro ESET Cyber Security Pro,,,,, 1.1 6 ESET Cyber Security Pro 6 - - ESET Cyber Security Pro 6 16 - ( : ). - (,, ). 4 5 2.1 1.2 ESET Cyber Security Pro, 4 2. Intel 32, 64 OS X 10.6 300MB 200MB ESET Cyber Security Pro ESET Live Grid Live Grid ESET ESET, DB ESET Live Grid ().. Live Grid 20

ESET Cyber Security Pro 8 2.2 12 ESET Cyber Security Pro 8 3. IP URL ( 3128) (), ESET Live Grid Live Grid ESET ESET, DB ESET Live Grid ().. Live Grid 20 OS X ESET Cyber Security Pro.. - XXXX-XXXX-XXXX-XXXX-XXXX XXXX-XXXXXXXX, - ESET Cyber Security Pro,? my.eset.com - ESET Cyber Security Pro ESET Cyber Security Pro - [ ] ESET - 4. ESET Cyber Security Pro ESET Cyber Security Pro CD/DVD Finder ESET Cyber Security Pro (.dmg) Finder Ctrl ESET Cyber Security Pro Contents > Helpers Uninstaller 5

5. ESET Cyber Security Pro 5.2 ESET Cyber Security Pro -,, - 8 - DB - - 17, 18, 19, 19 -,, 5.1 ESET Cyber Security Pro cmd+, - ESET Cyber Security Pro cmd+o - ESET Cyber Security Pro GUI cmd+q - ESET Cyber Security Pro GUI OS X ( )ESET Cyber Security Pro cmd+w - ESET Cyber Security Pro GUI 5.3 ESET ESET ESET Cyber Security Pro >.. > cmd+alt+l - cmd+alt+s - cmd+alt+q - 6. >.. 6

6.1, 6.1.1 (>.. > ) -,,,, -, - UPX, PE_Compact, PKLite ASPack " " / 7.. 6.1.1.1 /, IP/IPv6,, ( ) - - - (*? ) - - IP/IPv6 6.1.2 DB ThreatSense.. 10 ThreatSense 6.1.3 ThreatSense (ThreatSense 10,, ESET Cyber Security Pro, (> ). 7

Real-time - - CD, DVD, USB, Bluetooth - >.. (cmd+, ) > ( 8 ).. 6.1.3.1 ThreatSense, ThreatSense 10, ThreatSense - ESET Live Grid - OS X 10.10 Microsoft Word 2011 Word 2016 6.1.3.2 ESET Cyber Security Pro 6.1.3.3 eicar.com ESET Cyber Security Pro, EICAR (European Institute for Computer Antivirus Research) 6.1.3.4 > ESET 6.1.4 DB ESET Cyber Security Pro ( >.. > ). 8

> >.. > : 6.1.4.2 > Finder ESET Cyber Security Pro, Dock, ( ) (/ Applications ) 6.1.4.1 6.1.4.1.1, 10 6.1.4.3 (, ) >.. (cmd+, ) >.. 6.1.4.1.2 ThreatSense 10 9

: ThreatSense 6.1.5 ThreatSense ThreatSense ESET,,,, ThreatSense ThreatSense >..(cmd+, ),, ThreatSense.. (ThreatSense ( )). ThreatSense - - - 6.1.5.1 - ( ). - ( ). - ( ). - (.rar,.zip,.arj,.tar ) ( ). - ( ). - ( : UPX, yoda, ASPack, FGS) 6.1.5.2 - ( DB) -, ESET 6.1.5.3 ThreatSense ThreatSense - 10

-, -, : 10 : ( ) : 6.1.5.4, ThreatSense log, cfg tmp log cfg tmp 6.1.5.5 : : 6.1.5.6 ESET, ESET Cyber Security Pro ThreatSense ADS( ) ( ) ADS( ) ( / ) 6.1.6,, (USB,, CD, DVD ) ( : ) 1. 2. ( 9 ) 3., ESET Cyber Security Pro, 11

., -, ( ), >.. > : USB CD-ROM CD-ROM 7.,, PIN -,,, 6.2 ESET Cyber Security Pro (CD, DVD, USB, ios ) (>.. > ) ESET DB, 8. HTTP, POP3 IMAP >,, : 8.1 ESET Cyber Security Pro 3 ESET Cyber Security Pro (cmd+, ) > - 12

- 8.2.1 -,.... /Applications ( ) (, ) ESET Cyber Security Pro > / (TCP UDP ) > 8.2 (IP,,, ) 8.3,.. () IPv4/IPv6,,, Wi-Fi 8.4 ESET Cyber Security Pro ( ) 8.5 ESET Cyber Security Pro > 13

ESET,,, 9. >.. - HTTP - POP3 IMAP - ESET DB 9.1 HTTP(Hypertext Transfer Protocol) HTTP 14 /URL 14 9.1.1 HTTP 80, 8080 3128 9.1.2 URL URL HTTP URL URL URL *()?( ) *? 9.2 POP3 IMAP ThreatSense, DB POP3 IMAP ThreatSense : -, - HTML - - - -, - 14

POP3 IMAP POP3 15 IMAP 15 9.2.1 POP3 POP3 ESET Cyber Security Pro POP3 110 POP3 POP3 (>.. > ).... OS X.. http:// (*) google.com ( mail.google.com, news.google.com, maps.google.com ) 9.2.2 I MAP IMAP(Internet Message Access Protocol) IMAP, POP3 ESET Cyber Security Pro : 11. ESET Cyber Security Pro DB IMAP IMAP 143 IMAP IMAP 10. 27 / ESET Cyber Security Pro DB DB DB 16 ( ) 22 DB ESET 15

11.1 ESET 18 11.1.1 ESET Cyber Security Pro DB ESET Cyber Security Pro DB / 11.3 ESET Cyber Security Pro ESET Cyber Security Pro.. (CD DVD ESET Cyber Security Pro ). 11.4 OS X ESET Cyber Security Pro >..(cmd+, ) > >.. DB - DB ( ) 7 11.2 DB > ESET Cyber Security Pro - - OS X OS X - ESET Cyber Security Pro 16

,,, ( ) [] - [] - [] - 'softwareupdate' ' ' ' ' ' ' 'softwareupdate' man softwareupdate 'softwareupdate' 12. 12.1,, ESET Cyber Security Pro ESET Cyber Security Pro > 1. - 2. - ESET Cyber Security Pro 3. - 4. - 5. - 6. -,, IP,, URL 12.1.1 ESET Cyber Security Pro >..(cmd+, ) > - ( ) (90 ). - (25%)., ( CSV((Comma-separated values))) :, DB eventslog.txt, threatslog.txt scanlog.number.txt firewalllog. txt 18 17

12.1.2 - - " " - -, - 12.2 ESET Cyber Security Pro ( :, ) ( ) DB ( ) Ctrl.... 12.2.1.. Ctrl.. : "nobody" OS X 1. 2. 3. cron / ( 18 ). 4. 5. ESET Cyber Security Pro, >..(cmd+, ) > 12.2.2 cron ( 6 ) ( 0-59) ( 0-23) ( 1-31) ( 1-12) ( 1970-2099) ( 0-7) ( = 0 7) : 30 6 22 3 2012 4 18

cron (*) - ( ( ) 1~31 ) (-) - ( : 3-9 (,) - ( : 1,3,7,8 (/) - ( ( ) 3-28/5 5 ). (Monday-Sunday) (January-December) : 12.3, ESET Cyber Security Pro ESET,, ( ), ( : ) ( : ) (/Library/ Application Support/Eset/esets/cache/quarantine) ESET Cyber Security Pro ESET Cyber Security Pro 12.3.1 ESET Cyber Security Pro ( ).... Ctrl 12.3.2 Ctrl.. 12.3.3 ESET Ctrl 12.4 ESET Cyber Security Pro ESET Live Grid - (/Applications/Utilities ) - ESET Cyber Security Pro ESET Live Grid (, ) ( ) ( ) ESET - ESET Live Grid - ESET Live Grid ID - - - - ID - - - / 19

12.5 Live Grid 1. Live Grid, ESET 2. Live Grid ESET ESET DB Live Grid,,,,, ( ) ESET Live Grid >..(cmd+, ) > Live Grid Live Grid Live Grid.. 12.5.1 Live Grid ESET Cyber Security Pro ESET > DB - ESET Live Grid,, ESET, ESET Live Grid ESET Live Grid, ESET ESET "" # utc_time=2005-04-14 07:21:28 # country="slovakia" # language="english" # osver=9.5.0 # engine=5417 # components=2.50.2 # moduleid=0x4e4f4d41 # filesize=28368 # filename=users/userone/documents/incoming/ rdgfr1463[1].zip -, (.doc,.rtf ) () - ESET 13. >..( cmd+, ) > ESET Cyber Security Pro Dock OS X Dock ESET Cyber Security Pro cmd+tab ESET Cyber Security Pro ESET Cyber Security Pro ( ) ( ). ( 6 ) OS X ( ) (, ) ESET Cyber Security Pro 20

13.1 13.2 ESET Cyber Security Pro ( ) 21 ( ) ( 4 ). ESET Cyber Security Pro 6.2 ( ) 21 13.1.1 ESET Cyber Security Pro,,, (>.. > >..)ESET Cyber Security Pro 13.1.2 ESET Cyber Security Pro >.. > > : ESET Cyber Security Pro ( ) ESET Cyber Security Pro >..(cmd+, ) > : 13.3 >..(cmd+, ) > Finder Ctrl 14. 14.1 ESET Cyber Security Pro > ESET Cyber Security Pro ESET Cyber Security Pro 21

" " " "( ) 14.2 >..(cmd+, ) > ESET Cyber Security Pro ESET Cyber Security Pro NTLM(NT LAN Manager) URL IP (3128) 15. 15.1 15.1.1, " " 22 15.1.2 ( ),,, " " 15.1.3 " "

- - - - - 15.1.4 15.1.5 (Adware) (advertisingsupported software) ( ), " " 15.1.6,, PIN, P2P( ) Spyfalcon Spy Sheriff( ) 15.1.7 ESET Cyber Security Pro,, ( ) 23

15.1.8 15.2 15.2.1 DoS DoS( ) DoS 15.2.2 DNS DNS( ) DNS IP DNS 15.2.3, 15.2.4 TCP TCP TCP TCP TCP - TCP 15.2.5 SMB SMBRelay SMBRelay2 NetBIOS LAN SMBRelay UDP 139 445, SMBRelay IP SMBRelay SMB IP 24

SMBRelay2 SMBRelay,, IP NetBIOS SMBRelay SMBRelay2,, " " ( :, ). 15.3.1 15.2.6 I CMP ICMP(Internet Control Message Protocol) ICMP ICMP DoS( ) ICMP Ping, ICMP_ECHO, Smurf ICMP ( ) 15.3, 1990, 15.3.2 ICQ, Skype FUD(Fear, Uncertainty and Doubt) " ",,, ( ) DB 25

15.3.3 ( ), PIN ( :, ) (, ),, 15.3.4 ( ) (, ), ( : viagra vaigra ) 26