See this film, on full screen option to see how rkhunter found two rootkits on ROSA Fresh R1. I use MIB repo too and newest kernel from abf...
Chromium-browser and google-chrome, gimp, stellarium, vlc, opera, and more aplications but from official repo.
http://www.youtube.com/watch?v=pW5_0Ow5Exc
How to delete Gasrootkits (I saw it in Mandriva 2011 too)...
And have you unknown rootkits too?
This film is seen only from this link not publically, so someone may give some advice and help to identify what is this....
Rkhunter found rootkits
- VictorR2007
- Сообщения: 7252
- Зарегистрирован: 12 сен 2011, 13:00
Re: Rkhunter found rootkits
chkrootkit?
Re: Rkhunter found rootkits
STOP PANIC!!!
Every year users was find 'rootkits', but simple google about say that is not real...
Every year users was find 'rootkits', but simple google about say that is not real...
-
- Сообщения: 2743
- Зарегистрирован: 25 авг 2011, 12:34
- Откуда: Санкт-Петербург
- Контактная информация:
Re: Rkhunter found rootkits
Dharman писал(а):See this film, on full screen option to see how rkhunter found two rootkits on ROSA Fresh R1. I use MIB repo too and newest kernel from abf...
Chromium-browser and google-chrome, gimp, stellarium, vlc, opera, and more aplications but from official repo.
http://www.youtube.com/watch?v=pW5_0Ow5Exc
How to delete Gasrootkits (I saw it in Mandriva 2011 too)...
And have you unknown rootkits too?
This film is seen only from this link not publically, so someone may give some advice and help to identify what is this....
Please read there http://forum.mandriva.com/en/viewtopic.php?t=136796
Re: Rkhunter found rootkits
VictorR2007 - Chkrootkit found nothing problem, not infected!
It is not so much clear for me which is better chkrootkit or rkhunter?
In my country is many crackers who may try!
Eventually bugs from MDV need to be eliminated... , surly
Typical evil-bug seems on rkhunter like this from log file: /var/log/rkhunter.log
Example of about 50 warrnings are like this:
/sbin/ifdown [Warning] The file properties have changed
Current Inode: 131177 Stored Inode: 131044
I am interested what is on matter and why gives such warrning efect...
Gaskit Rootkit Warrning:
Directory ' dev/dev' found
Starting test name 'running_procs'
Cheking running processes for suspicious files [Warrning]
The following processes are using suspicious files:
Command: crond
UID: 0 PID: 1973
Pathname: /etc/crondtab
Possible Rootkit: Unknown Rootkit
That is all...
It is not so much clear for me which is better chkrootkit or rkhunter?
In my country is many crackers who may try!
Eventually bugs from MDV need to be eliminated... , surly
Typical evil-bug seems on rkhunter like this from log file: /var/log/rkhunter.log
Example of about 50 warrnings are like this:
/sbin/ifdown [Warning] The file properties have changed
Current Inode: 131177 Stored Inode: 131044
I am interested what is on matter and why gives such warrning efect...
Gaskit Rootkit Warrning:
Directory ' dev/dev' found
Starting test name 'running_procs'
Cheking running processes for suspicious files [Warrning]
The following processes are using suspicious files:
Command: crond
UID: 0 PID: 1973
Pathname: /etc/crondtab
Possible Rootkit: Unknown Rootkit
That is all...