Detect rootKit - ChkrootKit2013/05/29 |
Install ChkrootKit to detect rootkit on your Server. |
root@dlp:~#
root@dlp:~# aptitude -y install chkrootkit chkrootkit # run ROOTDIR is `/' Checking `amd'... not found Checking `basename'... not infected Checking `biff'... not found Checking `chfn'... not infected Checking `chsh'... not infected Checking `cron'... not infected Checking `crontab'... not infected ..... ..... Checking `asp'... not infected Checking `bindshell'... not infected Checking `lkm'... chkproc: nothing detected chkdirs: nothing detected Checking `rexedcs'... not found Checking `sniffer'... eth1: not promisc and no PF_PACKET sockets Checking `w55808'... not infected Checking `wted'... chkwtmp: nothing deleted Checking `scalper'... not infected Checking `slapper'... not infected Checking `z2'... chklastlog: nothing deleted Checking `chkutmp'... chkutmp: nothing deleted Checking `OSX_RSPLUG'... not infected # show only INFECTED results like follows root@dlp:~# chkrootkit | grep INFECTED root@dlp:~# # no ploblem if nothing shows
|
|