Re: [Rkhunter-users] Possible Rootkit

Wed, 09 May 2018 19:06:24 -0700 

How about this section:

>  Performing additional rootkit checks
>     Checking for possible rootkit files and directories      [ None found ]
>     Checking for possible rootkit strings                    [ None found ]


-Al-

On Wed, May 09, 2018 at 07:02 PM, Mark Misulich wrote:
> Nope, nothing in the list of rootkits you referenced is written in red. They 
> are all tagged "not found" in green. Every rootkit check listed in the 
> /var/log/rkhunter.log is listed as not found.
> 
> 
> 
> On Wed, 2018-05-09 at 15:13 -0700, Al Varnell wrote:
>> Didn't you get a section above the summary that looks something like this:
>> 
>> Checking for rootkits...
>> 
>>   Performing check of known rootkit files and directories
>>     55808 Trojan - Variant A                                 [ Not found ]
>>     ADM Worm                                                 [ Not found ]
>>     AjaKit Rootkit                                           [ Not found ]
>>     Adore Rootkit                                            [ Not found ]
>> 
>> There would be an entry in Red indicating what Rootkit was found, then go to 
>> that entry in the log to see what indicated having located that specific 
>> rootkit and research that to see what needs to be done, if anything.
>> 
>> -Al-
>> macOS User
>> 
>> On Wed, May 09, 2018 at 07:21 AM, Mark Misulich wrote:
>>> Hi,
>>> when I run rkhunter on my opensuse 42.3 linux Operating System, I get
>>> this result telling me that I have a possible rootkit.
>>> 
>>>> Rootkit checks...
>>>>     Rootkits checked : 500
>>>>     Possible rootkits: 1
>>> 
>>> I have looked through the var/log/rkhunter.log and don't find anything
>>> that stands out to me as what this might be. Also, I don't know what to
>>> do to deal with this if there actually is a rootkit that rkhunter
>>> detects.  Could someone on the list advise me how to proceed to deal
>>> with this?
>>> 
>>> Thanks,
>>> Mark

-Al-
-- 
Al Varnell
Mountain View, CA







------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Rkhunter-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/rkhunter-users

Reply via email to