Loading...
Menu

Installing & Running Detekt: My Experience

Installing & Running Detekt: My Experience

 

 

Richard Lighthouse

 

 

Installing & Running Detekt: My Experience

Published by Richard Lighthouse at Shakespir.com

Creative Commons License 4.0; 2016 by Richard Lighthouse.

 

ISBN: 978xxx

 

https://www.Shakespir.com/books/view/696xxx

 

 

Limit of Liability/Disclaimer of Warranty: While the author has used his best efforts in preparing this document, he makes no representations or warranties with respect to the accuracy or completeness of the contents and specifically disclaims any implied warranties or fitness for a particular purpose. No warranty may be created or extended by sales representatives or sales materials. The author shall not be liable for damages of any kind. If any reader should disagree with this limitation and disclaimer, then do not read or use this ebook.

 

 

About the Author:

Many of my books can be found for FREE at: Apple iBooks, Amazon.com, Lulu.com, Shakespir.com, BarnesandNoble, Google Play, kobo, Scribd, AngusRobertson, Rakuten.JP, Fnac, and other websites. Goodreads.com has connections to the CIA. I do not recommend that website. Baidu sometimes will perform a more thorough search than Google, for my ebooks. For a complete list of my published ebooks, see “Ebooks published on Shakespir and Lulu by Richard Lighthouse;” ISBN 9781370721948.

Original – 19 February 2017

Houston, Texas, U.S.A.

Revision 1A – 19 February 2017

 

 

 

Installing & Running Detekt: My Experience

 

 

TABLE OF CONTENTS

Chapter 1:

Introduction

 

Chapter 2:

Conclusions

 

Chapter 3:

References

 

 

Abstract

 

Detekt is a software program that is designed to detect surveillance and illegal hacking of a computer. It has been recommended by the Electronic Frontier Foundation (EFF), Amnesty International, the Privacy International, and other organizations. I attempted to download the software from the original site where it was released in November 2014. The site appears to have been blocked. I tried a number of other sites, and the links had expired or it gave me the 404 code – the web page you are looking for cannot be found. I found a recent Version 2.0 on github.com, but I don’t know the status. Upon downloading and installing this software, it was not able to successfully run it after several tries. On the second effort, it is apparent that my computer is being actively hacked to block the scan.

 

For a complete list of my published ebooks, see “Ebooks published on Shakespir and Lulu by Richard Lighthouse;” ISBN 9781370721948.

 

[]Introduction

 

The Detekt program was designed to analyze and find illegal surveillance tools on a Windows-based computer. It was announced in November 2014 on the EFF website.

 

Detekt is an open-source tool developed by security researcher Claudio Guarnieri. It was released jointly with Amnesty International, Digitale Gesellschaft, the Electronic Frontier Foundation and Privacy International.

“Detekt scans computers for infection patterns associated with several families of remote access Trojans (RATs): DarkComet RAT, XtremeRAT, BlackShades RAT, njRAT, FinFisher FinSpy, HackingTeam RCS, ShadowTech RAT and Gh0st RAT.”

 

“This is a simple tool that tries to identify potential spyware infections on your computer. When launched, it will try to look for certain indicators in memory. If you have any running applications (such as Skype, the browser, etc.) please close them in order to increase performance and decrease chances of false positives. The execution will take a few minutes, so please be patient.”

 

I checked the Task Manager to confirm that no other applications were running.

 

 

 

Figure 1. Description of Detekt.

 

 

 

This short ebook provides details of installing and running the Detekt software program on my home computer. The original site is resistsurveillance.org

but upon visiting this web site – we see it has been blocked.

 

 

 

Figure 2. Web site has been blocked or deleted. (resistsurveillance.org)

 

A number of download sites were listed in the search engines – but they had been blocked or deleted as well.

 

 

The next thing anyone would notice is the file size. This download site says the file size is 26.6 MB, but the file download is actually 27.1 MB. What has changed?

 

 

 

Figure 3. Website states that Version 2.0, of 28 July 2015; has a file size of 26.6 MB

 

 

 

Figure 4. Actual file size when downloaded is 27.1 MB. What changed? Did it change during the download, or at the website?

 

 

Figure 5. Properties view of the file. The file size has clearly been altered.

 

 

Figure 6. Properties view of details.

 

 

Results from running the software three times. Note that during the second time, something is altered WHILE THE SOFTWARE IS RUNNING.

 

 

FIRST RUN OF DETEKT

2017-02-19 08:39:17,312 – detector – INFO – Starting with process ID 4976

2017-02-19 08:39:17,328 – detector – INFO – Selected Profile Name: Win8SP1×64

2017-02-19 08:39:17,328 – detector – INFO – Selected Driver: C:\Users\CSCBO_~1\AppData\Local\Temp\_MEI41802\drivers\winpmem64.sys

2017-02-19 08:39:17,328 – detector.service – INFO – Launching service destroyer…

2017-02-19 08:39:17,328 – detector.service – DEBUG – Unable to OpenService: (1060, ‘OpenService’, ‘The specified service does not exist as an installed service.’)

2017-02-19 08:39:17,328 – detector.service – INFO – Trying to stop the winpmem service…

2017-02-19 08:39:17,328 – detector.service – INFO – Trying to delete the winpmem service…

2017-02-19 08:39:17,359 – detector.service – DEBUG – Unable to delete the service: (6, ‘DeleteService’, ‘The handle is invalid.’)

2017-02-19 08:39:17,391 – detector.service – INFO – Trying to start the winpmem service…

2017-02-19 08:39:17,421 – detector – INFO – Service started

2017-02-19 08:39:17,421 – detector – INFO – Selected Yara signature file at C:\Users\CSCBO_~1\AppData\Local\Temp\_MEI41802\rules\signatures.yar

2017-02-19 08:39:17,421 – detector – INFO – Obtaining address space and generating config for volatility

2017-02-19 08:39:22,450 – detector – INFO – Address space: , Base:

2017-02-19 08:39:22,450 – detector – INFO – Profile: , DTB: 0×1ab000

2017-02-19 08:39:22,467 – detector – INFO – Starting yara scanner…

 

 

 

SECOND RUN OF DETEKT

2017-02-19 09:08:10,683 – detector – INFO – Starting with process ID 4124

2017-02-19 09:08:10,713 – detector – INFO – Selected Profile Name: Win8SP1×64

2017-02-19 09:08:10,713 – detector – INFO – Selected Driver: C:\Users\CSCBO_~1\AppData\Local\Temp\_MEI9002\drivers\winpmem64.sys

2017-02-19 09:08:10,713 – detector.service – INFO – Launching service destroyer…

2017-02-19 09:08:10,713 – detector.service – INFO – Trying to stop the winpmem service…

2017-02-19 09:08:10,808 – detector.service – INFO – Trying to delete the winpmem service…

2017-02-19 09:08:10,808 – detector – CRITICAL – Unable to start winpmem service: Unable to create service: (1072, ‘CreateService’, ‘The specified service has been marked for deletion.’)

 

 

 

THIRD RUN OF DETEKT

2017-02-19 09:10:55,631 – detector – INFO – Starting with process ID 3844

2017-02-19 09:10:55,661 – detector – INFO – Selected Profile Name: Win8SP1×64

2017-02-19 09:10:55,661 – detector – INFO – Selected Driver: C:\Users\CSCBO_~1\AppData\Local\Temp\_MEI24002\drivers\winpmem64.sys

2017-02-19 09:10:55,661 – detector.service – INFO – Launching service destroyer…

2017-02-19 09:10:55,661 – detector.service – DEBUG – Unable to OpenService: (1060, ‘OpenService’, ‘The specified service does not exist as an installed service.’)

2017-02-19 09:10:55,661 – detector.service – INFO – Trying to stop the winpmem service…

2017-02-19 09:10:55,661 – detector.service – INFO – Trying to delete the winpmem service…

2017-02-19 09:10:55,661 – detector.service – DEBUG – Unable to delete the service: (6, ‘DeleteService’, ‘The handle is invalid.’)

2017-02-19 09:10:55,661 – detector.service – INFO – Trying to start the winpmem service…

2017-02-19 09:10:55,709 – detector – INFO – Service started

2017-02-19 09:10:55,709 – detector – INFO – Selected Yara signature file at C:\Users\CSCBO_~1\AppData\Local\Temp\_MEI24002\rules\signatures.yar

2017-02-19 09:10:55,709 – detector – INFO – Obtaining address space and generating config for volatility

2017-02-19 09:11:00,240 – detector – INFO – Address space: , Base:

2017-02-19 09:11:00,240 – detector – INFO – Profile: , DTB: 0×1ab000

2017-02-19 09:11:00,256 – detector – INFO – Starting yara scanner…

 

 

I allowed the first run to operate over 20 minutes, and it had apparently hung. The second run appears to have been altered, while is was running. And the third attempt also hung after an extended period.

 

 

Figure 7. Screen shot of run 1.

 

 

Figure 8. Screen shot of run 2 and 3.

 

 

 

[] Conclusions

 

I was not able to get the software to successfully run, even one time.

 

In my opinion, this is additional evidence that the Nazis at the NSA, are actively hacking my home computer. Only the NSA has the large incentive to block or delete websites that track illegal surveillance software. Only the NSA has the capability and desire to hack a personal computer, while it is scanning for illegal surveillance software. I have provided in prior ebooks, compelling evidence they are hacking my cell phone and work computer, and blocking access to my ebooks on the internet. To cover their tracks now, the NSA will need to hack my computer again and try to make it look like someone or something else was involved with the hacking. Let’s wait and see what they do…

 

This provides additional evidence that my Constitutional Rights are being violated, along with many other US citizens. It also provides evidence that my Attorney Client Priviledges are being violated, and that destruction of evidence for a pending legal case is ocurring. All of these are Felony crimes – probably committed by the NSA or its agents.

 

This document is a living document. The author reserves the right to make corrections and changes.

 

Figure 9. More evidence that websites are being hacked to block the distribution of my ebooks. “Sorry there are no sales reported for the selected filters.” It claims that I have no downloads or sales for the last 30 days on Shakespir.com. Typically, there are about 10 to 15 downloads every day.

 

[]References

 

1. Richard Lighthouse, “Cell Phone Hacking by the Nazi Stasi Acaddemy (NSA)” Shakespir.com and lulu.com, 2017.

 

 

 

Acknowledgments

 

 

Acknowledgments: The author gratefully acknowledges Seth, Jane Roberts, and Rob Butts for their significant contributions.

 

Conflicts: The author experienced no conflicts of interest in writing this paper.

 

About: The author holds a Master of Science (M.Sc.) degree in Mechanical Engineering from Stanford University and has previously worked for NASA.

 

Contact: owenc787 at --gmail.com

Rlight767 -at- yahoo point com

713.three zero six.8287

16930 County Road 831, Pearland, TX 77584

 

Funding:

This research was generously supported with a grant from the Foundation Opposed to Academic Puffery (FOAP).

 

 

 

APPENDIX

 

 

I am a government whistleblower – see my ebooks about the criminal acts of the CIA and FBI. Readers are advised that the NSA may be blocking or restricting access to some of my ebooks, especially outside the United States. Readers are further advised that digital tracking tags may have been placed in my ebooks. It may be best to download from Apple iBooks, if possible. Note how slowly the jpg’s load into the ebook when viewing. The content of some ebooks may have been altered – still trying to monitor this. If you have tried to contact me, it is possible that emails and phone calls are being blocked (Owenc787 at gmail) 713.three.zero.six.8287; 16930 County Road 831, Pearland, Texas, 77584.

Readers are advised to review the website drjudywood.com which provides compelling evidence about 9-11. Dr Judy Wood and Dr Morgan Reynolds, university professors, filed lawsuits against the US Government for fraud and conspiracy about 9-11. Dr Woods scientific presentation is available at youtube. Readers are also advised to see the movie “Sirius” by Dr Steven Greer, M.D. It is available for free on Netflix, where it is the #1 documentary, and to watch the youtube videos by the Honorable Paul Hellyer, former Canadian Minister of Defense. He has a book titled, “The Money Mafia.”

Also, find my brief educational videos on youtube (Some have been blocked from the search engines).

For more than 4 years, this author has been stalked, harassed, and threatened by US Government agents from the CIA, FBI, and NSA – because of the content of these ebooks. My home has been broken into, repeatedly. In May 2014, my girlfriend was drugged and kidnapped from LaGuardia airport. This is not a joke. My computer, phone, and alarm system have been hacked, including those of my friends and family. It is truly sad and pathetic, these agencies have become criminal organizations. If something happens to me (disappearance, false criminal charges, sudden accident, etc. – my readers can be certain that the FBI and CIA were involved. In my opinion, the Council on Foreign Relations (CFR) is behind these criminal acts. David Rockefeller has been the CEO and Chairman for many years.

 

 

 

Figure 10. ISBN number for this ebook

 


Installing & Running Detekt: My Experience

Detekt is a software program that is designed to detect surveillance and illegal hacking of a computer. It has been recommended by the Electronic Frontier Foundation (EFF), Amnesty International, the Privacy International, and other organizations. I attempted to download the software from the original site where it was released in November 2014. The site appears to have been blocked. I tried a number of other sites, and the links had expired or it gave me the 404 code – the web page you are looking for cannot be found. I found a recent Version 2.0 on github.com, but I don't know the status. Upon downloading and installing this software, it was not able to successfully run it after several tries. On the second effort, it is apparent that my computer is being actively hacked to block the scan. For a complete list of my published ebooks, see “Ebooks published on Smashwords and Lulu by Richard Lighthouse;” ISBN 9781370721948.

  • ISBN: 9781370440542
  • Author: Richard Lighthouse
  • Published: 2017-02-19 19:20:13
  • Words: 2020
Installing & Running Detekt:  My Experience Installing & Running Detekt:  My Experience