[[rootkit]]
 
Trace: uuid fud eng alias history env ugc rootkit

@related : Spy Virus

Rootkit

I have a mem bug , so I checked for trojans : 

$ chkrootkit
Checking `bindshell'... INFECTED (PORTS:  4000 6667)
$ netstat -a  | grep 4000
tcp        0      0 *:4000                  *:*                     LISTEN
$ lynx -head -dump http://localhost:4000
$ nc localhost 4000
Welcome to MLDonkey 2.9.0
Welcome on mldonkey command-line
$ sudo rkhunter  -c  
Scanned files: 342
Possible infected files: 0
Application scan
Vulnerable applications: 0

Ok there no reason to panic, just in case : 

sudo aptitude reinstall mldonkey-server bitlbee host dnsutils libbind9-30

Misc

ACPI : http://www.clubic.com/actualite-31406-les-rootkits-pourraient-s-attaquer-aux-bios.html

rootkit.txt · Last modified: 2022/04/16 12:23 (external edit)
 
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 3.0 Unported
Recent changes RSS feed Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki