@related : Spy Virus

Rootkit

I have a mem bug , so I checked for trojans :

$ chkrootkit
Checking `bindshell'... INFECTED (PORTS:  4000 6667)
$ netstat -a  | grep 4000
tcp        0      0 *:4000                  *:*                     LISTEN
$ lynx -head -dump http://localhost:4000
$ nc localhost 4000
Welcome to MLDonkey 2.9.0
Welcome on mldonkey command-line
$ sudo rkhunter  -c  
Scanned files: 342
Possible infected files: 0
Application scan
Vulnerable applications: 0

Ok there no reason to panic, just in case :

sudo aptitude reinstall mldonkey-server bitlbee host dnsutils libbind9-30

Misc

rootkit.txt · Last modified: 2020/09/08 20:48 (external edit)
 
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 3.0 Unported
Recent changes RSS feed Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki