How to use the Juniper Malware Removal Tool
SUMMARY You can use the Juniper Malware Removal Tool (JMRT) to scan for and remove malware running on Juniper Networks devices. You can run two types of scans— quick scan and integrity check. You can also run test scans that check for fake malware. Use Feature Explorer to confirm platform and release support for specific features.
Run a Quick Scan
Run an Integrity Check
request system malware-scan integrity-check
command.user@host> request system malware-scan integrity-check Integrity is enforced: Yes
From Junos OS Release 19.2 through Release 21.3,
integrity-check
was called
veriexec-check
. We changed the command name in
Junos OS Release 21.4 to reflect that different integrity mechanisms
might be used on different platforms (for instance, Junos OS uses
Veriexec, whereas Junos OS Evolved uses Integrity Measurement
Architecture, or IMA).
Run a Test Scan
Using JMRT, you can run fake malware processes on the system and use them for testing purposes. These processes are not actually malicious, but you can use them to observe how JMRT behaves when it identifies malware.
The test commands are available by default in Junos OS Evolved. To use these
commands in Junos OS, you must install the optional jmrt-test
package.
Use the following commands to install the jmrt-test
package:
-
For Junos OS Release 20.1R1 or later:
request system software add optional://jmrt-test
-
For Junos OS releases before Release 20.1R1 (with 64-bit Routing Engine):
request system software add optional://jmrt-test-x86-64.tgz
-
For Junos OS releases before Release 20.1R1 (with 32-bit Routing Engine):
request system software add optional://jmrt-test-x86-32.tgz