rkhunter-1.4.2_2 debug output, FreeBSD 10.2-STABLE armv6

+ test 1 -eq 1
+ alias print=false
+ false rkh-ksh-string-test
+ [ '' = rkh-ksh-string-test ]
+ [ 0 -eq 1 ]
+ MYSHELL=/bin/sh
+ test -h /bin/sh
+ basename /bin/sh
+ MYSHELL=sh
+ test -z sh
+ echo -e 'rkh-ksh\tstring-test'
+ [ 'rkh-ksh	string-test' = 'rkh-ksh	string-test' ]
+ ECHOOPT=-e
+ echo -n -e rkh-ksh-string-test
+ [ '-e rkh-ksh-string-test' = rkh-ksh-string-test ]
+ echo -e 'rkh-ksh-string-test\c'
+ [ rkh-ksh-string-test = rkh-ksh-string-test ]
+ ECHON=c
+ head -n 1
+ HEAD_OPT='-n '
+ tail -n 1
+ TAIL_OPT='-n '
+ [ 1 -eq 1 -a sh = ksh ]
+ trap - 13
+ PROGRAM_NAME='Rootkit Hunter'
+ PROGRAM_version=1.4.2
+ PROGRAM_copyright_owner='Michael Boelen'
+ PROGRAM_copyright='Copyright (c) 2003-2014, Michael Boelen'
+ PROGRAM_blurb='
Currently under active development by the Rootkit Hunter project team.
Please review your rkhunter.conf before using.
Please review the documentation before posting bug reports or questions.
To report bugs, obtain updates, or provide patches or comments, please go to:
http://rkhunter.sourceforge.net

To ask questions about rkhunter, please use the rkhunter-users mailing list.
Note this is a moderated list: please subscribe before posting.

Rootkit Hunter comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it under the
terms of the GNU General Public License. See the LICENSE file for details.
'
+ PROGRAM_license='
Rootkit Hunter 1.4.2, Copyright (c) 2003-2014, Michael Boelen

Currently under active development by the Rootkit Hunter project team.
Please review your rkhunter.conf before using.
Please review the documentation before posting bug reports or questions.
To report bugs, obtain updates, or provide patches or comments, please go to:
http://rkhunter.sourceforge.net

To ask questions about rkhunter, please use the rkhunter-users mailing list.
Note this is a moderated list: please subscribe before posting.

Rootkit Hunter comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it under the
terms of the GNU General Public License. See the LICENSE file for details.

'
+ LEAVE=0
+ ERRCODE=0
+ CRONJOB=0
+ CHECK=0
+ CATLOGFILE=0
+ NOLOG=0
+ RKHLOGFILE=''
+ DFLT_LOGFILE=/var/log/rkhunter.log
+ APPEND_LOG=0
+ APPEND_OPT=0
+ COPY_LOG_ON_ERROR=0
+ USE_SYSLOG=''
+ SYSLOG_DFLT_PRIO=authpriv.notice
+ NOMOW=0
+ MAILONWARNING=''
+ HASH_FUNC=''
+ OLD_HASH_FUNC=''
+ PKGMGR=''
+ OLD_PKGMGR=''
+ OLD_ATTRUPD=''
+ HASH_OPT=0
+ SHA_SIZE=0
+ HASH_FLD_IDX=1
+ PROP_DIR_LIST=''
+ PROP_FILE_LIST=''
+ PROP_FILE_LIST_COUNT=0
+ PROP_FILE_LIST_TOTAL=0
+ PRELINKED=0
+ PRELINK_CMD=''
+ PRELINK_HASH=''
+ PKGMGR_MD5_HASH=''
+ MD5_CMD=''
+ EPOCH_DATE_CMD=''
+ PKGMGRNOVRFY=''
+ UPDATE=0
+ PROP_UPDATE=0
+ PROPUPD_OPT=''
+ VERSIONCHECK=0
+ COLORS=1
+ CLRSET2=0
+ WLIST_IS_WHITE=0
+ AUTO_X_DTCT=0
+ AUTO_X_OPT=0
+ QUIET=0
+ SHOWWARNINGSONLY=0
+ HASH_CHECK_ENABLED=0
+ SKIP_HASH_MSG=0
+ RKHTMPDIR=''
+ DB_PATH=''
+ CONFIGFILE=''
+ LOCALCONFIGFILE=''
+ LOCALCONFIGDIR=''
+ LOCALCONFDIRCOUNT=0
+ LOCALCONFDIRFILES=''
+ BINPATHS=''
+ DFLT_BINPATHS='/bin /usr/bin /sbin /usr/sbin /usr/local/bin /usr/local/sbin /usr/libexec /usr/local/libexec'
+ BINDIR_OPT=0
+ BINISLINK=0
+ ID_CMD=id
+ SKIP_KEY_PRESS=0
+ GREP_OPT=''
+ BSDOS=0
+ SUNOS=0
+ IRIXOS=0
+ MACOSX=0
+ LINUXOS=0
+ BSDOS=1
+ HASH_FLD_IDX=4
+ GREP_OPT=-a
+ OS_CHANGED=0
+ WARN_ON_OS_CHANGE=1
+ UPDT_ON_OS_CHANGE=0
+ ALLOW_SSH_PROT_V1=0
+ ALLOW_SSH_ROOT_USER=''
+ SSH_CONFIG_DIR=''
+ ALLOW_SYSLOG_REMOTE_LOGGING=0
+ SYSLOG_CONFIG_FILE=''
+ ROOTKIT_COUNT=0
+ ROOTKIT_FAILED_COUNT=0
+ ROOTKIT_FAILED_NAMES=''
+ PROP_FAILED_COUNT=0
+ SUMMARY_PROP_REQCMDS=0
+ APPS_COUNT=0
+ APPS_TOTAL_COUNT=0
+ APPS_FAILED_COUNT=0
+ BEGINTIME=0
+ TOTAL_SCANTIME=''
+ WARNING_COUNT=0
+ KSYMS_FILE=''
+ CMD_LINE='/usr/local/bin/rkhunter --enable filesystem --check --debug'
+ tr : ' '
+ echo /sbin:/bin:/usr/sbin:/usr/bin:/usr/games:/usr/local/sbin:/usr/local/bin:/home/mike/bin
+ RKHROOTPATH='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /home/mike/bin'
+ CMDLIST='basename diff dirname file find ifconfig ip ipcs ldd lsattr lsmod lsof mktemp netstat perl pgrep ps pwd readlink stat strings'
+ ABSOLUTELY_REQUIRED_CMDS='cut egrep grep sed tail tr'
+ REQCMDS='awk cat chmod chown cp cut date egrep grep head ls mv sed sort tail touch tr uname uniq wc'
+ WEBCMDLIST='wget curl elinks links lynx bget GET'
+ RKHWEBCMD=''
+ RKHWEBCMD_OPTS=''
+ RKHWEBCMD_BASE=''
+ HOST_NAME=''
+ RET_CODE=0
+ LANGUAGE=''
+ UPDATE_LANG=''
+ LOCALE_CMD=''
+ ICONV_CMD=''
+ RKHCHRMAP=''
+ RKHCHKLOCALE=0
+ KNOWN_TESTS='strings properties hashes scripts immutable attributes
	     deleted_files packet_cap_apps apps rootkits known_rkts
	     additional_rkts malware local_host network passwd_changes
	     group_changes possible_rkt_files possible_rkt_strings
	     system_commands shared_libs shared_libs_path running_procs
	     hidden_procs trojans other_malware os_specific startup_malware
	     startup_files group_accounts system_configs filesystem suspscan
	     ports hidden_ports promisc loaded_modules avail_modules'
+ GROUPED_TESTS='system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
	       properties:hashes:scripts:immutable:attributes
	       shared_libs:shared_libs_path
	       rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
	       additional_rkts:possible_rkt_files:possible_rkt_strings
	       network:packet_cap_apps:ports:hidden_ports:promisc
	       malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
	       local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
	       startup_files:startup_malware
	       os_specific:loaded_modules:avail_modules
	       group_accounts:passwd_changes:group_changes'
+ KNOWN_ROOTKITS='55808 Trojan - Variant A, AjaKit, aPa Kit, Adore, Apache Worm, Ambient (ark),
  Balaur, BeastKit, beX2, BOBKit, Boonana (Koobface.A), cb, CiNIK Worm (Slapper.B variant), CX,
  Danny-Boy'\''s Abuse Kit, Devil, Dica, Dreams, Duarawkz, Enye LKM, Flea Linux, FreeBSD, Fu,
  Fuck`it, GasKit, Heroin LKM, HjC Kit, ignoKit, iLLogiC, Inqtana-A, Inqtana-B, Inqtana-C,
  IntoXonia-NG, Irix, Jynx, KBeast, Kitko, Knark, ld-linuxv.so, Li0n Worm, Lockit/LJK2, Mood-NT, MRK, Ni0,
  Ohhara, Optic Kit (Tux), OSXRK, Oz, Phalanx, Phalanx2, Portacelo, R3dstorm Toolkit,
  RH-Sharpe'\''s, RSHA'\''s, Scalper Worm, Shutdown, SHV4, SHV5, Sin, SInAR, Slapper,
  Sneakin, Solaris Wanuk, Spanish, Suckit, SunOS / NSDAP, SunOS Rootkit, Superkit, TBD (Telnet BackDoor),
  TeLeKiT, Togroot, T0rn, trNkit, Trojanit Kit, Turtle2, Tuxtendo, URK, Vampire, VcKit, Volc, w00tkit,
  weaponX, Xzibit, X-Org SunOS, zaRwT.KiT, ZK'
+ LIST_MODULES='File::stat Getopt::Long Crypt::RIPEMD160 Digest::MD5 Digest::SHA Digest::SHA1 Digest::SHA256
	      Digest::SHA::PurePerl Digest::Whirlpool LWP URI HTTP::Status HTTP::Date Socket Carp'
+ SPACE_LIST_OPTS='ALLOWPROMISCIF APP_WHITELIST BINDIR DISABLE_TESTS EMPTY_LOGFILES ENABLE_TESTS
		 IGNORE_PRELINK_DEP_ERR INETD_ALLOWED_SVC MAIL-ON-WARNING MISSING_LOGFILES
		 PORT_WHITELIST PWDLESS_ACCOUNTS SHARED_LIB_WHITELIST STARTUP_PATHS SUSPSCAN_DIRS
		 SYSLOG_CONFIG_FILE UID0_ACCOUNTS UNHIDE_TESTS UNHIDETCP_OPTS UPDATE_LANG
		 XINETD_ALLOWED_SVC'
+ echo ALLOWPROMISCIF APP_WHITELIST BINDIR DISABLE_TESTS EMPTY_LOGFILES ENABLE_TESTS IGNORE_PRELINK_DEP_ERR INETD_ALLOWED_SVC MAIL-ON-WARNING MISSING_LOGFILES PORT_WHITELIST PWDLESS_ACCOUNTS SHARED_LIB_WHITELIST STARTUP_PATHS SUSPSCAN_DIRS SYSLOG_CONFIG_FILE UID0_ACCOUNTS UNHIDE_TESTS UNHIDETCP_OPTS UPDATE_LANG XINETD_ALLOWED_SVC
+ SPACE_LIST_OPTS=' ALLOWPROMISCIF APP_WHITELIST BINDIR DISABLE_TESTS EMPTY_LOGFILES ENABLE_TESTS IGNORE_PRELINK_DEP_ERR INETD_ALLOWED_SVC MAIL-ON-WARNING MISSING_LOGFILES PORT_WHITELIST PWDLESS_ACCOUNTS SHARED_LIB_WHITELIST STARTUP_PATHS SUSPSCAN_DIRS SYSLOG_CONFIG_FILE UID0_ACCOUNTS UNHIDE_TESTS UNHIDETCP_OPTS UPDATE_LANG XINETD_ALLOWED_SVC '
+ NEWLINE_LIST_OPTS='ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN
		   ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST
		   PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST
		   SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST'
+ echo ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST
+ NEWLINE_LIST_OPTS=' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
+ ENABLE_TESTS=''
+ DISABLE_TESTS=''
+ CL_ENABLE_TESTS=''
+ CL_DISABLE_TESTS=''
+ CONFIG_DISABLE_TESTS=''
+ ENDIS_OPT=0
+ ENABLE_OPT=0
+ USECF=1
+ LIST_OPT=''
+ BLANK_LINE='                                                              '
+ NOTTY=0
+ SHOW_SUMMARY=1
+ SHOW_SUMMARY_OPT=0
+ SHOW_SUMMARY_TIME=3
+ SHOW_SUMMARY_WARNINGS_NUMBER=0
+ VERBOSE_LOGGING=1
+ ORIGIFS='
'
+ RKHIFS='
'
+ IFSNL='
'
+ IFS='
'
+ STARTUP_PATHS=''
+ STARTUP_PATHS_LOGGED=0
+ INETD_CONF_PATH=/etc/inetd.conf
+ INETDALLOWEDSVCS=''
+ XINETD_CONF_PATH=/etc/xinetd.conf
+ XINETDALLOWEDSVCS=''
+ UPDATE_ONLY=0
+ RKHLANGUPDT=0
+ ROTATE_MIRRORS=1
+ UPDATE_MIRRORS=1
+ MIRRORS_MODE=0
+ SUSPSCAN_DEBUG=0
+ USE_RUNCON=0
+ SELINUX_ENABLED=0
+ PORT_WHITELIST=''
+ PORT_PATH_WHITELIST=''
+ PORT_WHITELIST_ALL_TRUSTED=0
+ SHADOW_FILE=''
+ HAVE_TCB_SHADOW=0
+ OS_VERSION_FILE=''
+ RTKT_DIR_WHITELIST=''
+ RTKT_FILE_WHITELIST=''
+ RKHDAT_FILE=''
+ RKH_FILEPROP_LIST=''
+ HAVE_READLINK=0
+ PRELINK_DEP_ERR_CMDS=''
+ USER_FILE_LIST=''
+ USER_SIMPLE_FILE_LIST=''
+ USER_DIR_LIST=''
+ USER_EXCLUDE_PROP=''
+ SHARED_LIB_WHITELIST=''
+ USE_LOCKING=0
+ LOCK_TIMEOUT=0
+ SHOW_LOCK_MSGS=1
+ UNLOCK=0
+ EXISTWHITELIST=''
+ CONFIG_CHECK=0
+ IFWLIST=''
+ ALLOWPROCLIST_OPT=''
+ [ 4 -eq 0 ]
+ [ 4 -ge 1 ]
+ RKHTMPVAR=filesystem
+ shift
+ CHECK=1
+ ENDIS_OPT=1
+ ENABLE_OPT=1
+ CL_ENABLE_TESTS=' filesystem'
+ [ -z filesystem ]
+ shift
+ [ 2 -ge 1 ]
+ CHECK=1
+ shift
+ [ 1 -ge 1 ]
+ SKIP_KEY_PRESS=1
+ shift
+ [ 0 -ge 1 ]
+ [ 0 -eq 1 ]
+ id -u
+ RKHTMPVAR=0
+ [ -z 0 ]
+ [ -z 0 ]
+ [ 0 != 0 -a 0 != root ]
+ [ 1 -eq 1 ]
+ echo filesystem
+ CL_ENABLE_TESTS=filesystem
+ echo
+ CL_DISABLE_TESTS=''
+ test -z ''
+ USECF=1
+ test 0 -eq 1 -a 1 -eq 0 -a 0 -eq 0 -a 0 -eq 0
+ check_required_commands 1
+ LEAVE=0
+ [ 1 -eq 1 ]
+ CMDDIR='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /home/mike/bin'
+ CMDNAMES='cut egrep grep sed tail tr'
+ SEEN=0
+ [ -f /sbin/cut -a -x /sbin/cut ]
+ [ -f /bin/cut -a -x /bin/cut ]
+ [ -f /usr/sbin/cut -a -x /usr/sbin/cut ]
+ [ -f /usr/bin/cut -a -x /usr/bin/cut ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/egrep -a -x /sbin/egrep ]
+ [ -f /bin/egrep -a -x /bin/egrep ]
+ [ -f /usr/sbin/egrep -a -x /usr/sbin/egrep ]
+ [ -f /usr/bin/egrep -a -x /usr/bin/egrep ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/grep -a -x /sbin/grep ]
+ [ -f /bin/grep -a -x /bin/grep ]
+ [ -f /usr/sbin/grep -a -x /usr/sbin/grep ]
+ [ -f /usr/bin/grep -a -x /usr/bin/grep ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/sed -a -x /sbin/sed ]
+ [ -f /bin/sed -a -x /bin/sed ]
+ [ -f /usr/sbin/sed -a -x /usr/sbin/sed ]
+ [ -f /usr/bin/sed -a -x /usr/bin/sed ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/tail -a -x /sbin/tail ]
+ [ -f /bin/tail -a -x /bin/tail ]
+ [ -f /usr/sbin/tail -a -x /usr/sbin/tail ]
+ [ -f /usr/bin/tail -a -x /usr/bin/tail ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/tr -a -x /sbin/tr ]
+ [ -f /bin/tr -a -x /bin/tr ]
+ [ -f /usr/sbin/tr -a -x /usr/sbin/tr ]
+ [ -f /usr/bin/tr -a -x /usr/bin/tr ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ [ 0 -eq 1 ]
+ return
+ [ -z '' ]
+ [ -f /usr/local/etc/rkhunter.conf ]
+ CONFIGFILE=/usr/local/etc/rkhunter.conf
+ [ ! -f /usr/local/etc/rkhunter.conf ]
+ [ ! -r /usr/local/etc/rkhunter.conf ]
+ [ ! -s /usr/local/etc/rkhunter.conf ]
+ echo /usr/local/etc/rkhunter.conf
+ sed -e 's:/[^/]*$::'
+ RKHTMPVAR=/usr/local/etc
+ test -f /usr/local/etc/rkhunter.conf.local -a ! -h /usr/local/etc/rkhunter.conf.local -a -r /usr/local/etc/rkhunter.conf.local
+ [ -d /usr/local/etc/rkhunter.d ]
+ get_configfile_options
+ get_bindir_option
+ LEAVE=0
+ [ 0 -eq 1 ]
+ get_option space-list BINDIR
+ OPTMULTI=space-list
+ OPTNAME=BINDIR
+ ERRCODE=0
+ [ -z space-list -o -z BINDIR ]
+ grep -h ^BINDIR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ BINPATHS=''
+ [ 0 -eq 0 ]
+ [ -z '' ]
+ BINPATHS='/bin /usr/bin /sbin /usr/sbin /usr/local/bin /usr/local/sbin /usr/libexec /usr/local/libexec'
+ [ 0 -eq 1 -o 0 -eq 1 -o FreeBSD = AIX ]
+ add_extra_dirs
+ EXTRA_DIRS=''
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ test -d /usr/pkg
+ test -d /opt
+ test -d /usr/opt
+ return
+ BINPATHS='/bin /usr/bin /sbin /usr/sbin /usr/local/bin /usr/local/sbin /usr/libexec /usr/local/libexec'
+ [ 0 -eq 0 ]
+ RKHTMPVAR=''
+ PREPEND_PATHS=''
+ echo /bin
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/bin
+ grep '^\+'
+ [ -n '' ]
+ echo /sbin
+ grep '^\+'
+ [ -n '' ]
+ grep '^\+'
+ echo /usr/sbin
+ [ -n '' ]
+ grep '^\+'
+ echo /usr/local/bin
+ [ -n '' ]
+ echo /usr/local/sbin
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/libexec
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/local/libexec
+ grep '^\+'
+ [ -n '' ]
+ echo
+ PREPEND_PATHS=''
+ grep '^\+'
+ echo /sbin
+ [ -n '' ]
+ grep ^/
+ echo /sbin
+ [ -z /sbin ]
+ [ -e /sbin ]
+ [ -d /sbin ]
+ test -h /sbin
+ echo /sbin
+ sed -e 's:/$::'
+ tr -s /
+ DIR=/sbin
+ echo '  '
+ grep ' /sbin '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin'
+ grep '^\+'
+ echo /bin
+ [ -n '' ]
+ grep ^/
+ echo /bin
+ [ -z /bin ]
+ [ -e /bin ]
+ [ -d /bin ]
+ test -h /bin
+ echo /bin
+ sed -e 's:/$::'
+ tr -s /
+ DIR=/bin
+ echo '  /sbin '
+ grep ' /bin '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin'
+ grep '^\+'
+ echo /usr/sbin
+ [ -n '' ]
+ grep ^/
+ echo /usr/sbin
+ [ -z /usr/sbin ]
+ [ -e /usr/sbin ]
+ [ -d /usr/sbin ]
+ test -h /usr/sbin
+ echo /usr/sbin
+ tr -s /
+ sed -e 's:/$::'
+ DIR=/usr/sbin
+ echo '  /sbin /bin '
+ grep ' /usr/sbin '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin /usr/sbin'
+ grep '^\+'
+ echo /usr/bin
+ [ -n '' ]
+ echo /usr/bin
+ grep ^/
+ [ -z /usr/bin ]
+ [ -e /usr/bin ]
+ [ -d /usr/bin ]
+ test -h /usr/bin
+ echo /usr/bin
+ sed -e 's:/$::'
+ tr -s /
+ DIR=/usr/bin
+ echo '  /sbin /bin /usr/sbin '
+ grep ' /usr/bin '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin'
+ echo /usr/games
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/games
+ grep ^/
+ [ -z /usr/games ]
+ [ -e /usr/games ]
+ [ -d /usr/games ]
+ test -h /usr/games
+ tr -s /
+ sed -e 's:/$::'
+ echo /usr/games
+ DIR=/usr/games
+ grep ' /usr/games '
+ echo '  /sbin /bin /usr/sbin /usr/bin '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games'
+ echo /usr/local/sbin
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/local/sbin
+ grep ^/
+ [ -z /usr/local/sbin ]
+ [ -e /usr/local/sbin ]
+ [ -d /usr/local/sbin ]
+ test -h /usr/local/sbin
+ tr -s /
+ sed -e 's:/$::'
+ echo /usr/local/sbin
+ DIR=/usr/local/sbin
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games '
+ grep ' /usr/local/sbin '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin'
+ echo /usr/local/bin
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/local/bin
+ grep ^/
+ [ -z /usr/local/bin ]
+ [ -e /usr/local/bin ]
+ [ -d /usr/local/bin ]
+ test -h /usr/local/bin
+ tr -s /
+ sed -e 's:/$::'
+ echo /usr/local/bin
+ DIR=/usr/local/bin
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin '
+ grep ' /usr/local/bin '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin'
+ echo /home/mike/bin
+ grep '^\+'
+ [ -n '' ]
+ echo /home/mike/bin
+ grep ^/
+ [ -z /home/mike/bin ]
+ [ -e /home/mike/bin ]
+ grep '^\+'
+ echo /bin
+ [ -n '' ]
+ echo /bin
+ grep ^/
+ [ -z /bin ]
+ [ -e /bin ]
+ [ -d /bin ]
+ test -h /bin
+ echo /bin
+ sed -e 's:/$::'
+ tr -s /
+ DIR=/bin
+ grep ' /bin '
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
+ [ -z '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
+ grep '^\+'
+ echo /usr/bin
+ [ -n '' ]
+ echo /usr/bin
+ grep ^/
+ [ -z /usr/bin ]
+ [ -e /usr/bin ]
+ [ -d /usr/bin ]
+ test -h /usr/bin
+ echo /usr/bin
+ sed -e 's:/$::'
+ tr -s /
+ DIR=/usr/bin
+ grep ' /usr/bin '
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
+ [ -z '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
+ echo /sbin
+ grep '^\+'
+ [ -n '' ]
+ echo /sbin
+ grep ^/
+ [ -z /sbin ]
+ [ -e /sbin ]
+ [ -d /sbin ]
+ test -h /sbin
+ tr -s /
+ sed -e 's:/$::'
+ echo /sbin
+ DIR=/sbin
+ grep ' /sbin '
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
+ [ -z '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
+ echo /usr/sbin
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/sbin
+ grep ^/
+ [ -z /usr/sbin ]
+ [ -e /usr/sbin ]
+ [ -d /usr/sbin ]
+ test -h /usr/sbin
+ tr -s /
+ sed -e 's:/$::'
+ echo /usr/sbin
+ DIR=/usr/sbin
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
+ grep ' /usr/sbin '
+ [ -z '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
+ echo /usr/local/bin
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/local/bin
+ grep ^/
+ [ -z /usr/local/bin ]
+ [ -e /usr/local/bin ]
+ [ -d /usr/local/bin ]
+ test -h /usr/local/bin
+ tr -s /
+ sed -e 's:/$::'
+ echo /usr/local/bin
+ DIR=/usr/local/bin
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
+ grep ' /usr/local/bin '
+ [ -z '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
+ echo /usr/local/sbin
+ grep '^\+'
+ [ -n '' ]
+ grep ^/
+ echo /usr/local/sbin
+ [ -z /usr/local/sbin ]
+ [ -e /usr/local/sbin ]
+ [ -d /usr/local/sbin ]
+ test -h /usr/local/sbin
+ echo /usr/local/sbin
+ tr -s /
+ sed -e 's:/$::'
+ DIR=/usr/local/sbin
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
+ grep ' /usr/local/sbin '
+ [ -z '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
+ echo /usr/libexec
+ grep '^\+'
+ [ -n '' ]
+ echo /usr/libexec
+ grep ^/
+ [ -z /usr/libexec ]
+ [ -e /usr/libexec ]
+ [ -d /usr/libexec ]
+ test -h /usr/libexec
+ echo /usr/libexec
+ tr -s /
+ sed -e 's:/$::'
+ DIR=/usr/libexec
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
+ grep ' /usr/libexec '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec'
+ echo /usr/local/libexec
+ grep '^\+'
+ [ -n '' ]
+ grep ^/
+ echo /usr/local/libexec
+ [ -z /usr/local/libexec ]
+ [ -e /usr/local/libexec ]
+ [ -d /usr/local/libexec ]
+ test -h /usr/local/libexec
+ echo /usr/local/libexec
+ tr -s /
+ sed -e 's:/$::'
+ DIR=/usr/local/libexec
+ echo '  /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec '
+ grep ' /usr/local/libexec '
+ [ -z '' ]
+ RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ [ 0 -eq 0 ]
+ echo /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec
+ BINPATHS='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ test 0 -eq 1
+ RKHTMPVAR=BINDIR
+ check_paths BINPATHS BINDIR NOWILD
+ OPT_VALUE_OPT=BINPATHS
+ OPT_NAME=BINDIR
+ STRICT=NOWILD
+ test -z BINDIR
+ eval echo '"$BINPATHS"'
+ echo '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ OPT_VALUE='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ ERRCODE=0
+ test -z '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ MUSTEXIST=0
+ NOWILD=0
+ NOLINK=0
+ NOWILD=1
+ grep ^-
+ echo '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec '
+ RKHTMPVAR=''
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ egrep '(^|[^\])[][?*{}]'
+ echo '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ RKHTMPVAR=''
+ [ -n '' ]
+ echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
+ grep ' BINDIR '
+ [ -n '' ]
+ test -z /sbin
+ echo /sbin
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ grep '^[^/].*/'
+ echo /sbin
+ [ -n '' ]
+ grep ^/
+ echo /sbin
+ [ -z /sbin ]
+ [ -f /sbin ]
+ [ -d /sbin ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /sbin
+ test -z /bin
+ echo /bin
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ echo /bin
+ grep '^[^/].*/'
+ [ -n '' ]
+ grep ^/
+ echo /bin
+ [ -z /bin ]
+ [ -f /bin ]
+ [ -d /bin ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /bin
+ test -z /usr/sbin
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ echo /usr/sbin
+ [ -n '' ]
+ echo /usr/sbin
+ grep '^[^/].*/'
+ [ -n '' ]
+ echo /usr/sbin
+ grep ^/
+ [ -z /usr/sbin ]
+ [ -f /usr/sbin ]
+ [ -d /usr/sbin ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /usr/sbin
+ test -z /usr/bin
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ echo /usr/bin
+ [ -n '' ]
+ echo /usr/bin
+ grep '^[^/].*/'
+ [ -n '' ]
+ echo /usr/bin
+ grep ^/
+ [ -z /usr/bin ]
+ [ -f /usr/bin ]
+ [ -d /usr/bin ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /usr/bin
+ test -z /usr/games
+ echo /usr/games
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ grep '^[^/].*/'
+ echo /usr/games
+ [ -n '' ]
+ echo /usr/games
+ grep ^/
+ [ -z /usr/games ]
+ [ -f /usr/games ]
+ [ -d /usr/games ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /usr/games
+ test -z /usr/local/sbin
+ echo /usr/local/sbin
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ grep '^[^/].*/'
+ echo /usr/local/sbin
+ [ -n '' ]
+ grep ^/
+ echo /usr/local/sbin
+ [ -z /usr/local/sbin ]
+ [ -f /usr/local/sbin ]
+ [ -d /usr/local/sbin ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /usr/local/sbin
+ test -z /usr/local/bin
+ echo /usr/local/bin
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ echo /usr/local/bin
+ grep '^[^/].*/'
+ [ -n '' ]
+ grep ^/
+ echo /usr/local/bin
+ [ -z /usr/local/bin ]
+ [ -f /usr/local/bin ]
+ [ -d /usr/local/bin ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /usr/local/bin
+ test -z /usr/libexec
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ echo /usr/libexec
+ [ -n '' ]
+ echo /usr/libexec
+ grep '^[^/].*/'
+ [ -n '' ]
+ echo /usr/libexec
+ grep ^/
+ [ -z /usr/libexec ]
+ [ -f /usr/libexec ]
+ [ -d /usr/libexec ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /usr/libexec
+ test -z /usr/local/libexec
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ echo /usr/local/libexec
+ [ -n '' ]
+ echo /usr/local/libexec
+ grep '^[^/].*/'
+ [ -n '' ]
+ echo /usr/local/libexec
+ grep ^/
+ [ -z /usr/local/libexec ]
+ [ -f /usr/local/libexec ]
+ [ -d /usr/local/libexec ]
+ test BINDIR = ALLOWHIDDENFILE -a -h /usr/local/libexec
+ IFS='
'
+ return
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ return
+ get_scriptdir_option
+ LEAVE=0
+ get_option single SCRIPTDIR
+ OPTMULTI=single
+ OPTNAME=SCRIPTDIR
+ ERRCODE=0
+ [ -z single -o -z SCRIPTDIR ]
+ grep -h ^SCRIPTDIR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=SCRIPTDIR=/usr/local/lib/rkhunter/scripts
+ [ -z SCRIPTDIR=/usr/local/lib/rkhunter/scripts ]
+ tail -n 1
+ sed -e s/SCRIPTDIR=//
+ echo SCRIPTDIR=/usr/local/lib/rkhunter/scripts
+ OPTVAR=/usr/local/lib/rkhunter/scripts
+ [ -z /usr/local/lib/rkhunter/scripts -o /usr/local/lib/rkhunter/scripts = '""' -o /usr/local/lib/rkhunter/scripts = \'\' ]
+ echo /usr/local/lib/rkhunter/scripts
+ tr -d \'
+ tr -d '" 	'
+ OPTVAR=/usr/local/lib/rkhunter/scripts
+ echo /usr/local/lib/rkhunter/scripts
+ return 0
+ SCRIPT_PATH=/usr/local/lib/rkhunter/scripts
+ [ 0 -eq 0 ]
+ check_paths SCRIPT_PATH SCRIPTDIR 'NOWILD EXIST NOBROKENLINK'
+ OPT_VALUE_OPT=SCRIPT_PATH
+ OPT_NAME=SCRIPTDIR
+ STRICT='NOWILD EXIST NOBROKENLINK'
+ test -z SCRIPTDIR
+ eval echo '"$SCRIPT_PATH"'
+ echo /usr/local/lib/rkhunter/scripts
+ OPT_VALUE=/usr/local/lib/rkhunter/scripts
+ ERRCODE=0
+ test -z /usr/local/lib/rkhunter/scripts
+ MUSTEXIST=0
+ NOWILD=0
+ NOLINK=0
+ NOWILD=1
+ MUSTEXIST=1
+ NOLINK=1
+ grep ^-
+ echo '/usr/local/lib/rkhunter/scripts '
+ RKHTMPVAR=''
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ echo /usr/local/lib/rkhunter/scripts
+ egrep '(^|[^\])[][?*{}]'
+ RKHTMPVAR=''
+ [ -n '' ]
+ echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
+ grep ' SCRIPTDIR '
+ [ -n '' ]
+ test -z /usr/local/lib/rkhunter/scripts
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ echo /usr/local/lib/rkhunter/scripts
+ [ -n '' ]
+ grep '^[^/].*/'
+ echo /usr/local/lib/rkhunter/scripts
+ [ -n '' ]
+ echo /usr/local/lib/rkhunter/scripts
+ grep ^/
+ [ -z /usr/local/lib/rkhunter/scripts ]
+ [ -f /usr/local/lib/rkhunter/scripts ]
+ [ -d /usr/local/lib/rkhunter/scripts ]
+ test SCRIPTDIR = ALLOWHIDDENFILE -a -h /usr/local/lib/rkhunter/scripts
+ IFS='
'
+ return
+ [ 0 -eq 0 ]
+ [ -z /usr/local/lib/rkhunter/scripts ]
+ [ 0 -eq 1 ]
+ [ ! -r /usr/local/lib/rkhunter/scripts ]
+ [ 0 -eq 1 ]
+ return
+ check_required_commands 2
+ LEAVE=0
+ [ 2 -eq 1 ]
+ CMDDIR='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ CMDNAMES='awk cat chmod chown cp cut date egrep grep head ls mv sed sort tail touch tr uname uniq wc'
+ SEEN=0
+ [ -f /sbin/awk -a -x /sbin/awk ]
+ [ -f /bin/awk -a -x /bin/awk ]
+ [ -f /usr/sbin/awk -a -x /usr/sbin/awk ]
+ [ -f /usr/bin/awk -a -x /usr/bin/awk ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/cat -a -x /sbin/cat ]
+ [ -f /bin/cat -a -x /bin/cat ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/chmod -a -x /sbin/chmod ]
+ [ -f /bin/chmod -a -x /bin/chmod ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/chown -a -x /sbin/chown ]
+ [ -f /bin/chown -a -x /bin/chown ]
+ [ -f /usr/sbin/chown -a -x /usr/sbin/chown ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/cp -a -x /sbin/cp ]
+ [ -f /bin/cp -a -x /bin/cp ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/cut -a -x /sbin/cut ]
+ [ -f /bin/cut -a -x /bin/cut ]
+ [ -f /usr/sbin/cut -a -x /usr/sbin/cut ]
+ [ -f /usr/bin/cut -a -x /usr/bin/cut ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/date -a -x /sbin/date ]
+ [ -f /bin/date -a -x /bin/date ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/egrep -a -x /sbin/egrep ]
+ [ -f /bin/egrep -a -x /bin/egrep ]
+ [ -f /usr/sbin/egrep -a -x /usr/sbin/egrep ]
+ [ -f /usr/bin/egrep -a -x /usr/bin/egrep ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/grep -a -x /sbin/grep ]
+ [ -f /bin/grep -a -x /bin/grep ]
+ [ -f /usr/sbin/grep -a -x /usr/sbin/grep ]
+ [ -f /usr/bin/grep -a -x /usr/bin/grep ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/head -a -x /sbin/head ]
+ [ -f /bin/head -a -x /bin/head ]
+ [ -f /usr/sbin/head -a -x /usr/sbin/head ]
+ [ -f /usr/bin/head -a -x /usr/bin/head ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/ls -a -x /sbin/ls ]
+ [ -f /bin/ls -a -x /bin/ls ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/mv -a -x /sbin/mv ]
+ [ -f /bin/mv -a -x /bin/mv ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/sed -a -x /sbin/sed ]
+ [ -f /bin/sed -a -x /bin/sed ]
+ [ -f /usr/sbin/sed -a -x /usr/sbin/sed ]
+ [ -f /usr/bin/sed -a -x /usr/bin/sed ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/sort -a -x /sbin/sort ]
+ [ -f /bin/sort -a -x /bin/sort ]
+ [ -f /usr/sbin/sort -a -x /usr/sbin/sort ]
+ [ -f /usr/bin/sort -a -x /usr/bin/sort ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/tail -a -x /sbin/tail ]
+ [ -f /bin/tail -a -x /bin/tail ]
+ [ -f /usr/sbin/tail -a -x /usr/sbin/tail ]
+ [ -f /usr/bin/tail -a -x /usr/bin/tail ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/touch -a -x /sbin/touch ]
+ [ -f /bin/touch -a -x /bin/touch ]
+ [ -f /usr/sbin/touch -a -x /usr/sbin/touch ]
+ [ -f /usr/bin/touch -a -x /usr/bin/touch ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/tr -a -x /sbin/tr ]
+ [ -f /bin/tr -a -x /bin/tr ]
+ [ -f /usr/sbin/tr -a -x /usr/sbin/tr ]
+ [ -f /usr/bin/tr -a -x /usr/bin/tr ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/uname -a -x /sbin/uname ]
+ [ -f /bin/uname -a -x /bin/uname ]
+ [ -f /usr/sbin/uname -a -x /usr/sbin/uname ]
+ [ -f /usr/bin/uname -a -x /usr/bin/uname ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/uniq -a -x /sbin/uniq ]
+ [ -f /bin/uniq -a -x /bin/uniq ]
+ [ -f /usr/sbin/uniq -a -x /usr/sbin/uniq ]
+ [ -f /usr/bin/uniq -a -x /usr/bin/uniq ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ SEEN=0
+ [ -f /sbin/wc -a -x /sbin/wc ]
+ [ -f /bin/wc -a -x /bin/wc ]
+ [ -f /usr/sbin/wc -a -x /usr/sbin/wc ]
+ [ -f /usr/bin/wc -a -x /usr/bin/wc ]
+ SEEN=1
+ break
+ [ 1 -eq 0 ]
+ [ 0 -eq 1 ]
+ return
+ check_commands
+ LEAVE=0
+ echo basename
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=BASENAME
+ CMDNAME=BASENAME_CMD
+ get_option single BASENAME_CMD
+ OPTMULTI=single
+ OPTNAME=BASENAME_CMD
+ ERRCODE=0
+ [ -z single -o -z BASENAME_CMD ]
+ grep -h ^BASENAME_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd basename
+ CMD=basename
+ test -z basename
+ grep /
+ echo basename
+ [ -n '' ]
+ [ -f /sbin/basename -a -x /sbin/basename ]
+ [ -f /bin/basename -a -x /bin/basename ]
+ [ -f /usr/sbin/basename -a -x /usr/sbin/basename ]
+ [ -f /usr/bin/basename -a -x /usr/bin/basename ]
+ echo /usr/bin/basename
+ return
+ eval BASENAME_CMD=/usr/bin/basename
+ BASENAME_CMD=/usr/bin/basename
+ echo diff
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=DIFF
+ CMDNAME=DIFF_CMD
+ get_option single DIFF_CMD
+ OPTMULTI=single
+ OPTNAME=DIFF_CMD
+ ERRCODE=0
+ [ -z single -o -z DIFF_CMD ]
+ grep -h ^DIFF_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd diff
+ CMD=diff
+ test -z diff
+ echo diff
+ grep /
+ [ -n '' ]
+ [ -f /sbin/diff -a -x /sbin/diff ]
+ [ -f /bin/diff -a -x /bin/diff ]
+ [ -f /usr/sbin/diff -a -x /usr/sbin/diff ]
+ [ -f /usr/bin/diff -a -x /usr/bin/diff ]
+ echo /usr/bin/diff
+ return
+ eval DIFF_CMD=/usr/bin/diff
+ DIFF_CMD=/usr/bin/diff
+ echo dirname
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=DIRNAME
+ CMDNAME=DIRNAME_CMD
+ get_option single DIRNAME_CMD
+ OPTMULTI=single
+ OPTNAME=DIRNAME_CMD
+ ERRCODE=0
+ [ -z single -o -z DIRNAME_CMD ]
+ grep -h ^DIRNAME_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd dirname
+ CMD=dirname
+ test -z dirname
+ grep /
+ echo dirname
+ [ -n '' ]
+ [ -f /sbin/dirname -a -x /sbin/dirname ]
+ [ -f /bin/dirname -a -x /bin/dirname ]
+ [ -f /usr/sbin/dirname -a -x /usr/sbin/dirname ]
+ [ -f /usr/bin/dirname -a -x /usr/bin/dirname ]
+ echo /usr/bin/dirname
+ return
+ eval DIRNAME_CMD=/usr/bin/dirname
+ DIRNAME_CMD=/usr/bin/dirname
+ echo file
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=FILE
+ CMDNAME=FILE_CMD
+ get_option single FILE_CMD
+ OPTMULTI=single
+ OPTNAME=FILE_CMD
+ ERRCODE=0
+ [ -z single -o -z FILE_CMD ]
+ grep -h ^FILE_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd file
+ CMD=file
+ test -z file
+ grep /
+ echo file
+ [ -n '' ]
+ [ -f /sbin/file -a -x /sbin/file ]
+ [ -f /bin/file -a -x /bin/file ]
+ [ -f /usr/sbin/file -a -x /usr/sbin/file ]
+ [ -f /usr/bin/file -a -x /usr/bin/file ]
+ echo /usr/bin/file
+ return
+ eval FILE_CMD=/usr/bin/file
+ FILE_CMD=/usr/bin/file
+ echo find
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=FIND
+ CMDNAME=FIND_CMD
+ get_option single FIND_CMD
+ OPTMULTI=single
+ OPTNAME=FIND_CMD
+ ERRCODE=0
+ [ -z single -o -z FIND_CMD ]
+ grep -h ^FIND_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd find
+ CMD=find
+ test -z find
+ grep /
+ echo find
+ [ -n '' ]
+ [ -f /sbin/find -a -x /sbin/find ]
+ [ -f /bin/find -a -x /bin/find ]
+ [ -f /usr/sbin/find -a -x /usr/sbin/find ]
+ [ -f /usr/bin/find -a -x /usr/bin/find ]
+ echo /usr/bin/find
+ return
+ eval FIND_CMD=/usr/bin/find
+ FIND_CMD=/usr/bin/find
+ echo ifconfig
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=IFCONFIG
+ CMDNAME=IFCONFIG_CMD
+ get_option single IFCONFIG_CMD
+ OPTMULTI=single
+ OPTNAME=IFCONFIG_CMD
+ ERRCODE=0
+ [ -z single -o -z IFCONFIG_CMD ]
+ grep -h ^IFCONFIG_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd ifconfig
+ CMD=ifconfig
+ test -z ifconfig
+ echo ifconfig
+ grep /
+ [ -n '' ]
+ [ -f /sbin/ifconfig -a -x /sbin/ifconfig ]
+ echo /sbin/ifconfig
+ return
+ eval IFCONFIG_CMD=/sbin/ifconfig
+ IFCONFIG_CMD=/sbin/ifconfig
+ echo ip
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=IP
+ CMDNAME=IP_CMD
+ get_option single IP_CMD
+ OPTMULTI=single
+ OPTNAME=IP_CMD
+ ERRCODE=0
+ [ -z single -o -z IP_CMD ]
+ grep -h ^IP_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd ip
+ CMD=ip
+ test -z ip
+ echo ip
+ grep /
+ [ -n '' ]
+ [ -f /sbin/ip -a -x /sbin/ip ]
+ [ -f /bin/ip -a -x /bin/ip ]
+ [ -f /usr/sbin/ip -a -x /usr/sbin/ip ]
+ [ -f /usr/bin/ip -a -x /usr/bin/ip ]
+ [ -f /usr/games/ip -a -x /usr/games/ip ]
+ [ -f /usr/local/sbin/ip -a -x /usr/local/sbin/ip ]
+ [ -f /usr/local/bin/ip -a -x /usr/local/bin/ip ]
+ [ -f /usr/libexec/ip -a -x /usr/libexec/ip ]
+ [ -f /usr/local/libexec/ip -a -x /usr/local/libexec/ip ]
+ return
+ eval IP_CMD=
+ IP_CMD=''
+ echo ipcs
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=IPCS
+ CMDNAME=IPCS_CMD
+ get_option single IPCS_CMD
+ OPTMULTI=single
+ OPTNAME=IPCS_CMD
+ ERRCODE=0
+ [ -z single -o -z IPCS_CMD ]
+ grep -h ^IPCS_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd ipcs
+ CMD=ipcs
+ test -z ipcs
+ echo ipcs
+ grep /
+ [ -n '' ]
+ [ -f /sbin/ipcs -a -x /sbin/ipcs ]
+ [ -f /bin/ipcs -a -x /bin/ipcs ]
+ [ -f /usr/sbin/ipcs -a -x /usr/sbin/ipcs ]
+ [ -f /usr/bin/ipcs -a -x /usr/bin/ipcs ]
+ echo /usr/bin/ipcs
+ return
+ eval IPCS_CMD=/usr/bin/ipcs
+ IPCS_CMD=/usr/bin/ipcs
+ echo ldd
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=LDD
+ CMDNAME=LDD_CMD
+ get_option single LDD_CMD
+ OPTMULTI=single
+ OPTNAME=LDD_CMD
+ ERRCODE=0
+ [ -z single -o -z LDD_CMD ]
+ grep -h ^LDD_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd ldd
+ CMD=ldd
+ test -z ldd
+ echo ldd
+ grep /
+ [ -n '' ]
+ [ -f /sbin/ldd -a -x /sbin/ldd ]
+ [ -f /bin/ldd -a -x /bin/ldd ]
+ [ -f /usr/sbin/ldd -a -x /usr/sbin/ldd ]
+ [ -f /usr/bin/ldd -a -x /usr/bin/ldd ]
+ echo /usr/bin/ldd
+ return
+ eval LDD_CMD=/usr/bin/ldd
+ LDD_CMD=/usr/bin/ldd
+ echo lsattr
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=LSATTR
+ CMDNAME=LSATTR_CMD
+ get_option single LSATTR_CMD
+ OPTMULTI=single
+ OPTNAME=LSATTR_CMD
+ ERRCODE=0
+ [ -z single -o -z LSATTR_CMD ]
+ grep -h ^LSATTR_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd lsattr
+ CMD=lsattr
+ test -z lsattr
+ echo lsattr
+ grep /
+ [ -n '' ]
+ [ -f /sbin/lsattr -a -x /sbin/lsattr ]
+ [ -f /bin/lsattr -a -x /bin/lsattr ]
+ [ -f /usr/sbin/lsattr -a -x /usr/sbin/lsattr ]
+ [ -f /usr/bin/lsattr -a -x /usr/bin/lsattr ]
+ [ -f /usr/games/lsattr -a -x /usr/games/lsattr ]
+ [ -f /usr/local/sbin/lsattr -a -x /usr/local/sbin/lsattr ]
+ [ -f /usr/local/bin/lsattr -a -x /usr/local/bin/lsattr ]
+ [ -f /usr/libexec/lsattr -a -x /usr/libexec/lsattr ]
+ [ -f /usr/local/libexec/lsattr -a -x /usr/local/libexec/lsattr ]
+ return
+ eval LSATTR_CMD=
+ LSATTR_CMD=''
+ echo lsmod
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=LSMOD
+ CMDNAME=LSMOD_CMD
+ get_option single LSMOD_CMD
+ OPTMULTI=single
+ OPTNAME=LSMOD_CMD
+ ERRCODE=0
+ [ -z single -o -z LSMOD_CMD ]
+ grep -h ^LSMOD_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd lsmod
+ CMD=lsmod
+ test -z lsmod
+ echo lsmod
+ grep /
+ [ -n '' ]
+ [ -f /sbin/lsmod -a -x /sbin/lsmod ]
+ [ -f /bin/lsmod -a -x /bin/lsmod ]
+ [ -f /usr/sbin/lsmod -a -x /usr/sbin/lsmod ]
+ [ -f /usr/bin/lsmod -a -x /usr/bin/lsmod ]
+ [ -f /usr/games/lsmod -a -x /usr/games/lsmod ]
+ [ -f /usr/local/sbin/lsmod -a -x /usr/local/sbin/lsmod ]
+ [ -f /usr/local/bin/lsmod -a -x /usr/local/bin/lsmod ]
+ [ -f /usr/libexec/lsmod -a -x /usr/libexec/lsmod ]
+ [ -f /usr/local/libexec/lsmod -a -x /usr/local/libexec/lsmod ]
+ return
+ eval LSMOD_CMD=
+ LSMOD_CMD=''
+ echo lsof
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=LSOF
+ CMDNAME=LSOF_CMD
+ get_option single LSOF_CMD
+ OPTMULTI=single
+ OPTNAME=LSOF_CMD
+ ERRCODE=0
+ [ -z single -o -z LSOF_CMD ]
+ grep -h ^LSOF_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd lsof
+ CMD=lsof
+ test -z lsof
+ echo lsof
+ grep /
+ [ -n '' ]
+ [ -f /sbin/lsof -a -x /sbin/lsof ]
+ [ -f /bin/lsof -a -x /bin/lsof ]
+ [ -f /usr/sbin/lsof -a -x /usr/sbin/lsof ]
+ [ -f /usr/bin/lsof -a -x /usr/bin/lsof ]
+ [ -f /usr/games/lsof -a -x /usr/games/lsof ]
+ [ -f /usr/local/sbin/lsof -a -x /usr/local/sbin/lsof ]
+ echo /usr/local/sbin/lsof
+ return
+ eval LSOF_CMD=/usr/local/sbin/lsof
+ LSOF_CMD=/usr/local/sbin/lsof
+ echo mktemp
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=MKTEMP
+ CMDNAME=MKTEMP_CMD
+ get_option single MKTEMP_CMD
+ OPTMULTI=single
+ OPTNAME=MKTEMP_CMD
+ ERRCODE=0
+ [ -z single -o -z MKTEMP_CMD ]
+ grep -h ^MKTEMP_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd mktemp
+ CMD=mktemp
+ test -z mktemp
+ echo mktemp
+ grep /
+ [ -n '' ]
+ [ -f /sbin/mktemp -a -x /sbin/mktemp ]
+ [ -f /bin/mktemp -a -x /bin/mktemp ]
+ [ -f /usr/sbin/mktemp -a -x /usr/sbin/mktemp ]
+ [ -f /usr/bin/mktemp -a -x /usr/bin/mktemp ]
+ echo /usr/bin/mktemp
+ return
+ eval MKTEMP_CMD=/usr/bin/mktemp
+ MKTEMP_CMD=/usr/bin/mktemp
+ echo netstat
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=NETSTAT
+ CMDNAME=NETSTAT_CMD
+ get_option single NETSTAT_CMD
+ OPTMULTI=single
+ OPTNAME=NETSTAT_CMD
+ ERRCODE=0
+ [ -z single -o -z NETSTAT_CMD ]
+ grep -h ^NETSTAT_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd netstat
+ CMD=netstat
+ test -z netstat
+ echo netstat
+ grep /
+ [ -n '' ]
+ [ -f /sbin/netstat -a -x /sbin/netstat ]
+ [ -f /bin/netstat -a -x /bin/netstat ]
+ [ -f /usr/sbin/netstat -a -x /usr/sbin/netstat ]
+ [ -f /usr/bin/netstat -a -x /usr/bin/netstat ]
+ echo /usr/bin/netstat
+ return
+ eval NETSTAT_CMD=/usr/bin/netstat
+ NETSTAT_CMD=/usr/bin/netstat
+ echo perl
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=PERL
+ CMDNAME=PERL_CMD
+ get_option single PERL_CMD
+ OPTMULTI=single
+ OPTNAME=PERL_CMD
+ ERRCODE=0
+ [ -z single -o -z PERL_CMD ]
+ grep -h ^PERL_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd perl
+ CMD=perl
+ test -z perl
+ grep /
+ echo perl
+ [ -n '' ]
+ [ -f /sbin/perl -a -x /sbin/perl ]
+ [ -f /bin/perl -a -x /bin/perl ]
+ [ -f /usr/sbin/perl -a -x /usr/sbin/perl ]
+ [ -f /usr/bin/perl -a -x /usr/bin/perl ]
+ [ -f /usr/games/perl -a -x /usr/games/perl ]
+ [ -f /usr/local/sbin/perl -a -x /usr/local/sbin/perl ]
+ [ -f /usr/local/bin/perl -a -x /usr/local/bin/perl ]
+ echo /usr/local/bin/perl
+ return
+ eval PERL_CMD=/usr/local/bin/perl
+ PERL_CMD=/usr/local/bin/perl
+ echo pgrep
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=PGREP
+ CMDNAME=PGREP_CMD
+ get_option single PGREP_CMD
+ OPTMULTI=single
+ OPTNAME=PGREP_CMD
+ ERRCODE=0
+ [ -z single -o -z PGREP_CMD ]
+ grep -h ^PGREP_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd pgrep
+ CMD=pgrep
+ test -z pgrep
+ grep /
+ echo pgrep
+ [ -n '' ]
+ [ -f /sbin/pgrep -a -x /sbin/pgrep ]
+ [ -f /bin/pgrep -a -x /bin/pgrep ]
+ echo /bin/pgrep
+ return
+ eval PGREP_CMD=/bin/pgrep
+ PGREP_CMD=/bin/pgrep
+ echo ps
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=PS
+ CMDNAME=PS_CMD
+ get_option single PS_CMD
+ OPTMULTI=single
+ OPTNAME=PS_CMD
+ ERRCODE=0
+ [ -z single -o -z PS_CMD ]
+ grep -h ^PS_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd ps
+ CMD=ps
+ test -z ps
+ grep /
+ echo ps
+ [ -n '' ]
+ [ -f /sbin/ps -a -x /sbin/ps ]
+ [ -f /bin/ps -a -x /bin/ps ]
+ echo /bin/ps
+ return
+ eval PS_CMD=/bin/ps
+ PS_CMD=/bin/ps
+ echo pwd
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=PWD
+ CMDNAME=PWD_CMD
+ get_option single PWD_CMD
+ OPTMULTI=single
+ OPTNAME=PWD_CMD
+ ERRCODE=0
+ [ -z single -o -z PWD_CMD ]
+ grep -h ^PWD_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd pwd
+ CMD=pwd
+ test -z pwd
+ grep /
+ echo pwd
+ [ -n '' ]
+ [ -f /sbin/pwd -a -x /sbin/pwd ]
+ [ -f /bin/pwd -a -x /bin/pwd ]
+ echo /bin/pwd
+ return
+ eval PWD_CMD=/bin/pwd
+ PWD_CMD=/bin/pwd
+ echo readlink
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=READLINK
+ CMDNAME=READLINK_CMD
+ get_option single READLINK_CMD
+ OPTMULTI=single
+ OPTNAME=READLINK_CMD
+ ERRCODE=0
+ [ -z single -o -z READLINK_CMD ]
+ grep -h ^READLINK_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd readlink
+ CMD=readlink
+ test -z readlink
+ grep /
+ echo readlink
+ [ -n '' ]
+ [ -f /sbin/readlink -a -x /sbin/readlink ]
+ [ -f /bin/readlink -a -x /bin/readlink ]
+ [ -f /usr/sbin/readlink -a -x /usr/sbin/readlink ]
+ [ -f /usr/bin/readlink -a -x /usr/bin/readlink ]
+ echo /usr/bin/readlink
+ return
+ eval READLINK_CMD=/usr/bin/readlink
+ READLINK_CMD=/usr/bin/readlink
+ echo stat
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=STAT
+ CMDNAME=STAT_CMD
+ get_option single STAT_CMD
+ OPTMULTI=single
+ OPTNAME=STAT_CMD
+ ERRCODE=0
+ [ -z single -o -z STAT_CMD ]
+ grep -h ^STAT_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd stat
+ CMD=stat
+ test -z stat
+ grep /
+ echo stat
+ [ -n '' ]
+ [ -f /sbin/stat -a -x /sbin/stat ]
+ [ -f /bin/stat -a -x /bin/stat ]
+ [ -f /usr/sbin/stat -a -x /usr/sbin/stat ]
+ [ -f /usr/bin/stat -a -x /usr/bin/stat ]
+ echo /usr/bin/stat
+ return
+ eval STAT_CMD=/usr/bin/stat
+ STAT_CMD=/usr/bin/stat
+ echo strings
+ tr '[:lower:]' '[:upper:]'
+ CMDNAME=STRINGS
+ CMDNAME=STRINGS_CMD
+ get_option single STRINGS_CMD
+ OPTMULTI=single
+ OPTNAME=STRINGS_CMD
+ ERRCODE=0
+ [ -z single -o -z STRINGS_CMD ]
+ grep -h ^STRINGS_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CFG_CMD=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ test -z ''
+ find_cmd strings
+ CMD=strings
+ test -z strings
+ grep /
+ echo strings
+ [ -n '' ]
+ [ -f /sbin/strings -a -x /sbin/strings ]
+ [ -f /bin/strings -a -x /bin/strings ]
+ [ -f /usr/sbin/strings -a -x /usr/sbin/strings ]
+ [ -f /usr/bin/strings -a -x /usr/bin/strings ]
+ echo /usr/bin/strings
+ return
+ eval STRINGS_CMD=/usr/bin/strings
+ STRINGS_CMD=/usr/bin/strings
+ [ 0 -eq 1 ]
+ [ -n /usr/local/bin/perl -a /usr/local/bin/perl != DISABLED ]
+ [ -z /usr/bin/stat -o /usr/bin/stat = BUILTIN ]
+ [ -z /usr/bin/readlink -o /usr/bin/readlink = BUILTIN ]
+ /usr/bin/readlink -f /usr/local/lib/rkhunter/scripts/readlink.sh
+ [ -n '' ]
+ test -n /usr/bin/readlink
+ HAVE_READLINK=1
+ [ 0 -eq 1 ]
+ AWK_CMD=awk
+ echo basename
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=BASENAME
+ RKHTMPVAR=BASENAME_CMD
+ eval echo '$BASENAME_CMD'
+ echo /usr/bin/basename
+ RKHTMPVAR2=/usr/bin/basename
+ test /usr/bin/basename = DISABLED -o /usr/bin/basename = BUILTIN
+ echo diff
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=DIFF
+ RKHTMPVAR=DIFF_CMD
+ eval echo '$DIFF_CMD'
+ echo /usr/bin/diff
+ RKHTMPVAR2=/usr/bin/diff
+ test /usr/bin/diff = DISABLED -o /usr/bin/diff = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo dirname
+ RKHTMPVAR=DIRNAME
+ RKHTMPVAR=DIRNAME_CMD
+ eval echo '$DIRNAME_CMD'
+ echo /usr/bin/dirname
+ RKHTMPVAR2=/usr/bin/dirname
+ test /usr/bin/dirname = DISABLED -o /usr/bin/dirname = BUILTIN
+ echo file
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=FILE
+ RKHTMPVAR=FILE_CMD
+ eval echo '$FILE_CMD'
+ echo /usr/bin/file
+ RKHTMPVAR2=/usr/bin/file
+ test /usr/bin/file = DISABLED -o /usr/bin/file = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo find
+ RKHTMPVAR=FIND
+ RKHTMPVAR=FIND_CMD
+ eval echo '$FIND_CMD'
+ echo /usr/bin/find
+ RKHTMPVAR2=/usr/bin/find
+ test /usr/bin/find = DISABLED -o /usr/bin/find = BUILTIN
+ echo ifconfig
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=IFCONFIG
+ RKHTMPVAR=IFCONFIG_CMD
+ eval echo '$IFCONFIG_CMD'
+ echo /sbin/ifconfig
+ RKHTMPVAR2=/sbin/ifconfig
+ test /sbin/ifconfig = DISABLED -o /sbin/ifconfig = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo ip
+ RKHTMPVAR=IP
+ RKHTMPVAR=IP_CMD
+ eval echo '$IP_CMD'
+ echo
+ RKHTMPVAR2=''
+ test '' = DISABLED -o '' = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo ipcs
+ RKHTMPVAR=IPCS
+ RKHTMPVAR=IPCS_CMD
+ eval echo '$IPCS_CMD'
+ echo /usr/bin/ipcs
+ RKHTMPVAR2=/usr/bin/ipcs
+ test /usr/bin/ipcs = DISABLED -o /usr/bin/ipcs = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo ldd
+ RKHTMPVAR=LDD
+ RKHTMPVAR=LDD_CMD
+ eval echo '$LDD_CMD'
+ echo /usr/bin/ldd
+ RKHTMPVAR2=/usr/bin/ldd
+ test /usr/bin/ldd = DISABLED -o /usr/bin/ldd = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo lsattr
+ RKHTMPVAR=LSATTR
+ RKHTMPVAR=LSATTR_CMD
+ eval echo '$LSATTR_CMD'
+ echo
+ RKHTMPVAR2=''
+ test '' = DISABLED -o '' = BUILTIN
+ echo lsmod
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=LSMOD
+ RKHTMPVAR=LSMOD_CMD
+ eval echo '$LSMOD_CMD'
+ echo
+ RKHTMPVAR2=''
+ test '' = DISABLED -o '' = BUILTIN
+ echo lsof
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=LSOF
+ RKHTMPVAR=LSOF_CMD
+ eval echo '$LSOF_CMD'
+ echo /usr/local/sbin/lsof
+ RKHTMPVAR2=/usr/local/sbin/lsof
+ test /usr/local/sbin/lsof = DISABLED -o /usr/local/sbin/lsof = BUILTIN
+ echo mktemp
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=MKTEMP
+ RKHTMPVAR=MKTEMP_CMD
+ eval echo '$MKTEMP_CMD'
+ echo /usr/bin/mktemp
+ RKHTMPVAR2=/usr/bin/mktemp
+ test /usr/bin/mktemp = DISABLED -o /usr/bin/mktemp = BUILTIN
+ echo netstat
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=NETSTAT
+ RKHTMPVAR=NETSTAT_CMD
+ eval echo '$NETSTAT_CMD'
+ echo /usr/bin/netstat
+ RKHTMPVAR2=/usr/bin/netstat
+ test /usr/bin/netstat = DISABLED -o /usr/bin/netstat = BUILTIN
+ echo perl
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=PERL
+ RKHTMPVAR=PERL_CMD
+ eval echo '$PERL_CMD'
+ echo /usr/local/bin/perl
+ RKHTMPVAR2=/usr/local/bin/perl
+ test /usr/local/bin/perl = DISABLED -o /usr/local/bin/perl = BUILTIN
+ echo pgrep
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=PGREP
+ RKHTMPVAR=PGREP_CMD
+ eval echo '$PGREP_CMD'
+ echo /bin/pgrep
+ RKHTMPVAR2=/bin/pgrep
+ test /bin/pgrep = DISABLED -o /bin/pgrep = BUILTIN
+ echo ps
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=PS
+ RKHTMPVAR=PS_CMD
+ eval echo '$PS_CMD'
+ echo /bin/ps
+ RKHTMPVAR2=/bin/ps
+ test /bin/ps = DISABLED -o /bin/ps = BUILTIN
+ echo pwd
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=PWD
+ RKHTMPVAR=PWD_CMD
+ eval echo '$PWD_CMD'
+ echo /bin/pwd
+ RKHTMPVAR2=/bin/pwd
+ test /bin/pwd = DISABLED -o /bin/pwd = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo readlink
+ RKHTMPVAR=READLINK
+ RKHTMPVAR=READLINK_CMD
+ eval echo '$READLINK_CMD'
+ echo /usr/bin/readlink
+ RKHTMPVAR2=/usr/bin/readlink
+ test /usr/bin/readlink = DISABLED -o /usr/bin/readlink = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo stat
+ RKHTMPVAR=STAT
+ RKHTMPVAR=STAT_CMD
+ eval echo '$STAT_CMD'
+ echo /usr/bin/stat
+ RKHTMPVAR2=/usr/bin/stat
+ test /usr/bin/stat = DISABLED -o /usr/bin/stat = BUILTIN
+ tr '[:lower:]' '[:upper:]'
+ echo strings
+ RKHTMPVAR=STRINGS
+ RKHTMPVAR=STRINGS_CMD
+ eval echo '$STRINGS_CMD'
+ echo /usr/bin/strings
+ RKHTMPVAR2=/usr/bin/strings
+ test /usr/bin/strings = DISABLED -o /usr/bin/strings = BUILTIN
+ return
+ get_installdir_option
+ LEAVE=0
+ get_option single INSTALLDIR
+ OPTMULTI=single
+ OPTNAME=INSTALLDIR
+ ERRCODE=0
+ [ -z single -o -z INSTALLDIR ]
+ grep -h ^INSTALLDIR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=INSTALLDIR=/usr/local
+ [ -z INSTALLDIR=/usr/local ]
+ echo INSTALLDIR=/usr/local
+ tail -n 1
+ sed -e s/INSTALLDIR=//
+ OPTVAR=/usr/local
+ [ -z /usr/local -o /usr/local = '""' -o /usr/local = \'\' ]
+ echo /usr/local
+ tr -d '" 	'
+ tr -d \'
+ OPTVAR=/usr/local
+ echo /usr/local
+ return 0
+ RKHINSTALLDIR=/usr/local
+ [ 0 -eq 0 ]
+ [ -z /usr/local ]
+ [ ! -d /usr/local ]
+ [ ! -r /usr/local ]
+ [ 0 -eq 1 ]
+ return
+ get_rootdir_option
+ get_option single ROOTDIR
+ OPTMULTI=single
+ OPTNAME=ROOTDIR
+ ERRCODE=0
+ [ -z single -o -z ROOTDIR ]
+ grep -h ^ROOTDIR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ RKHTMPVAR=''
+ [ -n '' ]
+ return
+ get_logfile_option
+ LEAVE=0
+ [ -n '' ]
+ get_option single LOGFILE
+ OPTMULTI=single
+ OPTNAME=LOGFILE
+ ERRCODE=0
+ [ -z single -o -z LOGFILE ]
+ grep -h ^LOGFILE= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=LOGFILE=/var/log/rkhunter.log
+ [ -z LOGFILE=/var/log/rkhunter.log ]
+ echo LOGFILE=/var/log/rkhunter.log
+ sed -e s/LOGFILE=//
+ tail -n 1
+ OPTVAR=/var/log/rkhunter.log
+ [ -z /var/log/rkhunter.log -o /var/log/rkhunter.log = '""' -o /var/log/rkhunter.log = \'\' ]
+ tr -d '" 	'
+ tr -d \'
+ echo /var/log/rkhunter.log
+ OPTVAR=/var/log/rkhunter.log
+ echo /var/log/rkhunter.log
+ return 0
+ RKHLOGFILE=/var/log/rkhunter.log
+ [ 0 -eq 0 ]
+ check_paths RKHLOGFILE LOGFILE 'NOWILD NOBROKENLINK'
+ OPT_VALUE_OPT=RKHLOGFILE
+ OPT_NAME=LOGFILE
+ STRICT='NOWILD NOBROKENLINK'
+ test -z LOGFILE
+ eval echo '"$RKHLOGFILE"'
+ echo /var/log/rkhunter.log
+ OPT_VALUE=/var/log/rkhunter.log
+ ERRCODE=0
+ test -z /var/log/rkhunter.log
+ MUSTEXIST=0
+ NOWILD=0
+ NOLINK=0
+ NOWILD=1
+ NOLINK=1
+ echo '/var/log/rkhunter.log '
+ grep ^-
+ RKHTMPVAR=''
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ egrep '(^|[^\])[][?*{}]'
+ echo /var/log/rkhunter.log
+ RKHTMPVAR=''
+ [ -n '' ]
+ grep ' LOGFILE '
+ echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
+ [ -n '' ]
+ test -z /var/log/rkhunter.log
+ echo /var/log/rkhunter.log
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ echo /var/log/rkhunter.log
+ grep '^[^/].*/'
+ [ -n '' ]
+ grep ^/
+ echo /var/log/rkhunter.log
+ [ -z /var/log/rkhunter.log ]
+ [ -f /var/log/rkhunter.log ]
+ IFS='
'
+ return
+ [ 0 -eq 0 ]
+ [ -z /var/log/rkhunter.log ]
+ [ 0 -eq 1 ]
+ [ /var/log/rkhunter.log = /dev/null ]
+ echo /var/log/rkhunter.log
+ sed -e 's:/[^/][^/]*$::'
+ LOGDIR=/var/log
+ echo /var/log
+ grep /
+ [ -z /var/log ]
+ [ /var/log = /var/log/rkhunter.log ]
+ [ ! -e /var/log ]
+ [ ! -d /var/log ]
+ [ ! -w /var/log ]
+ [ ! -r /var/log ]
+ [ -h /var/log/rkhunter.log ]
+ [ -e /var/log/rkhunter.log -a ! -f /var/log/rkhunter.log ]
+ [ 0 -eq 0 ]
+ get_option single APPEND_LOG
+ OPTMULTI=single
+ OPTNAME=APPEND_LOG
+ ERRCODE=0
+ [ -z single -o -z APPEND_LOG ]
+ grep -h ^APPEND_LOG= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ APPEND_LOG=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ APPEND_LOG=0
+ get_option single COPY_LOG_ON_ERROR
+ OPTMULTI=single
+ OPTNAME=COPY_LOG_ON_ERROR
+ ERRCODE=0
+ [ -z single -o -z COPY_LOG_ON_ERROR ]
+ grep -h ^COPY_LOG_ON_ERROR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ RKHTMPVAR=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ COPY_LOG_ON_ERROR=0
+ [ 0 -eq 1 ]
+ return
+ get_tmpdir_option
+ LEAVE=0
+ [ -n '' ]
+ get_option single TMPDIR
+ OPTMULTI=single
+ OPTNAME=TMPDIR
+ ERRCODE=0
+ [ -z single -o -z TMPDIR ]
+ grep -h ^TMPDIR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=TMPDIR=/usr/local/var/lib/rkhunter/tmp
+ [ -z TMPDIR=/usr/local/var/lib/rkhunter/tmp ]
+ tail -n 1
+ echo TMPDIR=/usr/local/var/lib/rkhunter/tmp
+ sed -e s/TMPDIR=//
+ OPTVAR=/usr/local/var/lib/rkhunter/tmp
+ [ -z /usr/local/var/lib/rkhunter/tmp -o /usr/local/var/lib/rkhunter/tmp = '""' -o /usr/local/var/lib/rkhunter/tmp = \'\' ]
+ tr -d '" 	'
+ tr -d \'
+ echo /usr/local/var/lib/rkhunter/tmp
+ OPTVAR=/usr/local/var/lib/rkhunter/tmp
+ echo /usr/local/var/lib/rkhunter/tmp
+ return 0
+ RKHTMPDIR=/usr/local/var/lib/rkhunter/tmp
+ [ 0 -eq 0 ]
+ check_paths RKHTMPDIR TMPDIR 'NOWILD NOBROKENLINK EXIST'
+ OPT_VALUE_OPT=RKHTMPDIR
+ OPT_NAME=TMPDIR
+ STRICT='NOWILD NOBROKENLINK EXIST'
+ test -z TMPDIR
+ eval echo '"$RKHTMPDIR"'
+ echo /usr/local/var/lib/rkhunter/tmp
+ OPT_VALUE=/usr/local/var/lib/rkhunter/tmp
+ ERRCODE=0
+ test -z /usr/local/var/lib/rkhunter/tmp
+ MUSTEXIST=0
+ NOWILD=0
+ NOLINK=0
+ NOWILD=1
+ NOLINK=1
+ MUSTEXIST=1
+ echo '/usr/local/var/lib/rkhunter/tmp '
+ grep ^-
+ RKHTMPVAR=''
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ echo /usr/local/var/lib/rkhunter/tmp
+ egrep '(^|[^\])[][?*{}]'
+ RKHTMPVAR=''
+ [ -n '' ]
+ grep ' TMPDIR '
+ echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
+ [ -n '' ]
+ test -z /usr/local/var/lib/rkhunter/tmp
+ echo /usr/local/var/lib/rkhunter/tmp
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ echo /usr/local/var/lib/rkhunter/tmp
+ grep '^[^/].*/'
+ [ -n '' ]
+ echo /usr/local/var/lib/rkhunter/tmp
+ grep ^/
+ [ -z /usr/local/var/lib/rkhunter/tmp ]
+ [ -f /usr/local/var/lib/rkhunter/tmp ]
+ [ -d /usr/local/var/lib/rkhunter/tmp ]
+ test TMPDIR = ALLOWHIDDENFILE -a -h /usr/local/var/lib/rkhunter/tmp
+ IFS='
'
+ return
+ [ 0 -eq 0 ]
+ [ -z /usr/local/var/lib/rkhunter/tmp ]
+ [ 0 -eq 1 ]
+ [ ! -e /usr/local/var/lib/rkhunter/tmp ]
+ [ ! -d /usr/local/var/lib/rkhunter/tmp ]
+ [ ! -w /usr/local/var/lib/rkhunter/tmp ]
+ [ ! -r /usr/local/var/lib/rkhunter/tmp ]
+ [ /usr/local/var/lib/rkhunter/tmp = /tmp -o /usr/local/var/lib/rkhunter/tmp = /var/tmp ]
+ [ /usr/local/var/lib/rkhunter/tmp = /etc ]
+ [ 0 -eq 1 ]
+ return
+ get_dbdir_option
+ LEAVE=0
+ [ -n '' ]
+ get_option single DBDIR
+ OPTMULTI=single
+ OPTNAME=DBDIR
+ ERRCODE=0
+ [ -z single -o -z DBDIR ]
+ grep -h ^DBDIR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=DBDIR=/usr/local/var/lib/rkhunter/db
+ [ -z DBDIR=/usr/local/var/lib/rkhunter/db ]
+ echo DBDIR=/usr/local/var/lib/rkhunter/db
+ sed -e s/DBDIR=//
+ tail -n 1
+ OPTVAR=/usr/local/var/lib/rkhunter/db
+ [ -z /usr/local/var/lib/rkhunter/db -o /usr/local/var/lib/rkhunter/db = '""' -o /usr/local/var/lib/rkhunter/db = \'\' ]
+ echo /usr/local/var/lib/rkhunter/db
+ tr -d \'
+ tr -d '" 	'
+ OPTVAR=/usr/local/var/lib/rkhunter/db
+ echo /usr/local/var/lib/rkhunter/db
+ return 0
+ DB_PATH=/usr/local/var/lib/rkhunter/db
+ [ 0 -eq 0 ]
+ check_paths DB_PATH DBDIR 'NOWILD EXIST NOBROKENLINK'
+ OPT_VALUE_OPT=DB_PATH
+ OPT_NAME=DBDIR
+ STRICT='NOWILD EXIST NOBROKENLINK'
+ test -z DBDIR
+ eval echo '"$DB_PATH"'
+ echo /usr/local/var/lib/rkhunter/db
+ OPT_VALUE=/usr/local/var/lib/rkhunter/db
+ ERRCODE=0
+ test -z /usr/local/var/lib/rkhunter/db
+ MUSTEXIST=0
+ NOWILD=0
+ NOLINK=0
+ NOWILD=1
+ MUSTEXIST=1
+ NOLINK=1
+ echo '/usr/local/var/lib/rkhunter/db '
+ grep ^-
+ RKHTMPVAR=''
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ egrep '(^|[^\])[][?*{}]'
+ echo /usr/local/var/lib/rkhunter/db
+ RKHTMPVAR=''
+ [ -n '' ]
+ echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
+ grep ' DBDIR '
+ [ -n '' ]
+ test -z /usr/local/var/lib/rkhunter/db
+ echo /usr/local/var/lib/rkhunter/db
+ egrep '(^[./]*$)|[;&]|/\.\./'
+ [ -n '' ]
+ grep '^[^/].*/'
+ echo /usr/local/var/lib/rkhunter/db
+ [ -n '' ]
+ echo /usr/local/var/lib/rkhunter/db
+ grep ^/
+ [ -z /usr/local/var/lib/rkhunter/db ]
+ [ -f /usr/local/var/lib/rkhunter/db ]
+ [ -d /usr/local/var/lib/rkhunter/db ]
+ test DBDIR = ALLOWHIDDENFILE -a -h /usr/local/var/lib/rkhunter/db
+ IFS='
'
+ return
+ [ 0 -eq 0 ]
+ [ -z /usr/local/var/lib/rkhunter/db ]
+ [ 0 -eq 1 ]
+ [ ! -e /usr/local/var/lib/rkhunter/db ]
+ [ ! -d /usr/local/var/lib/rkhunter/db ]
+ [ ! -r /usr/local/var/lib/rkhunter/db ]
+ [ 0 -eq 1 -o 0 -eq 1 -o 0 -eq 1 ]
+ [ 0 -eq 0 ]
+ RKHDAT_FILE=/usr/local/var/lib/rkhunter/db/rkhunter.dat
+ RKH_FILEPROP_LIST=/usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat
+ return
+ get_language_option
+ LEAVE=0
+ [ -n '' ]
+ get_option single LANGUAGE
+ OPTMULTI=single
+ OPTNAME=LANGUAGE
+ ERRCODE=0
+ [ -z single -o -z LANGUAGE ]
+ grep -h ^LANGUAGE= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ LANGUAGE=''
+ test 0 -eq 1
+ test -z ''
+ LANGUAGE=en
+ [ ! -d /usr/local/var/lib/rkhunter/db/i18n ]
+ [ 0 -eq 0 ]
+ [ ! -s /usr/local/var/lib/rkhunter/db/i18n/en -a en != en ]
+ [ ! -s /usr/local/var/lib/rkhunter/db/i18n/en ]
+ [ en = de ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ return
+ get_auto_x_option
+ LEAVE=0
+ [ 0 -eq 0 ]
+ get_option single AUTO_X_DETECT
+ OPTMULTI=single
+ OPTNAME=AUTO_X_DETECT
+ ERRCODE=0
+ [ -z single -o -z AUTO_X_DETECT ]
+ grep -h ^AUTO_X_DETECT= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=AUTO_X_DETECT=1
+ [ -z AUTO_X_DETECT=1 ]
+ tail -n 1
+ sed -e s/AUTO_X_DETECT=//
+ echo AUTO_X_DETECT=1
+ OPTVAR=1
+ [ -z 1 -o 1 = '""' -o 1 = \'\' ]
+ echo 1
+ tr -d \'
+ tr -d '" 	'
+ OPTVAR=1
+ echo 1
+ return 0
+ AUTO_X_DTCT=1
+ [ 0 -eq 0 ]
+ [ -n 1 ]
+ check_is_digit AUTO_X_DTCT AUTO_X_DETECT
+ OPT_VALUE=AUTO_X_DTCT
+ OPT_NAME=AUTO_X_DETECT
+ OTHERS=''
+ test -z AUTO_X_DETECT
+ test -z ''
+ OTHERS=0
+ eval echo '"$AUTO_X_DTCT"'
+ echo 1
+ RKHTMPVAR=1
+ ERRCODE=0
+ test -z 1
+ [ 1 = 0 -a 0 = ANY1 ]
+ [ 1 != 0 -a 1 != 1 ]
+ return
+ test 0 -eq 1
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 0 ]
+ get_option single COLOR_SET2
+ OPTMULTI=single
+ OPTNAME=COLOR_SET2
+ ERRCODE=0
+ [ -z single -o -z COLOR_SET2 ]
+ grep -h ^COLOR_SET2= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ CLRSET2=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ CLRSET2=0
+ get_option single WHITELISTED_IS_WHITE
+ OPTMULTI=single
+ OPTNAME=WHITELISTED_IS_WHITE
+ ERRCODE=0
+ [ -z single -o -z WHITELISTED_IS_WHITE ]
+ grep -h ^WHITELISTED_IS_WHITE= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ WLIST_IS_WHITE=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ WLIST_IS_WHITE=0
+ [ 0 -eq 1 ]
+ return
+ get_locking_options
+ LEAVE=0
+ get_option single USE_LOCKING
+ OPTMULTI=single
+ OPTNAME=USE_LOCKING
+ ERRCODE=0
+ [ -z single -o -z USE_LOCKING ]
+ grep -h ^USE_LOCKING= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ USE_LOCKING=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ USE_LOCKING=0
+ get_option single LOCK_TIMEOUT
+ OPTMULTI=single
+ OPTNAME=LOCK_TIMEOUT
+ ERRCODE=0
+ [ -z single -o -z LOCK_TIMEOUT ]
+ grep -h ^LOCK_TIMEOUT= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ LOCK_TIMEOUT=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ LOCK_TIMEOUT=300
+ [ 0 -eq 0 ]
+ get_option single SHOW_LOCK_MSGS
+ OPTMULTI=single
+ OPTNAME=SHOW_LOCK_MSGS
+ ERRCODE=0
+ [ -z single -o -z SHOW_LOCK_MSGS ]
+ grep -h ^SHOW_LOCK_MSGS= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ SHOW_LOCK_MSGS=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ SHOW_LOCK_MSGS=1
+ [ 0 -eq 1 ]
+ return
+ [ 1 -eq 1 -o 0 -eq 1 -o 0 -eq 1 ]
+ get_enable_option
+ LEAVE=0
+ [ 1 -eq 1 ]
+ tr -d '"'
+ tr -d \'
+ echo filesystem
+ tr , ' '
+ ENABLE_TESTS=filesystem
+ echo filesystem
+ ENABLE_TESTS=filesystem
+ [ -z filesystem ]
+ echo filesystem
+ tr '[:upper:]' '[:lower:]'
+ ENABLE_TESTS=filesystem
+ grep ' '
+ echo filesystem
+ [ filesystem != all -a -z '' ]
+ SKIP_KEY_PRESS=1
+ [ 0 -eq 1 ]
+ return
+ get_disable_option
+ LEAVE=0
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ get_option space-list DISABLE_TESTS
+ OPTMULTI=space-list
+ OPTNAME=DISABLE_TESTS
+ ERRCODE=0
+ [ -z space-list -o -z DISABLE_TESTS ]
+ grep -h ^DISABLE_TESTS= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2='DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ [ -z 'DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
+ echo 'DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ sed -e s/DISABLE_TESTS=//
+ tail -n 1
+ RKHTMPVAR3='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ [ -z 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' -o 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' = '""' -o 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' = \'\' ]
+ sed -e s/DISABLE_TESTS=//
+ echo 'DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ grep ^-
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
+ test -n ''
+ [ space-list = space-list ]
+ tr -s ' 	' '  '
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ sed -e 's/^ *"* *//; s/ *"* *$//'
+ sed -e 's/^ *'\''* *//; s/ *'\''* *$//'
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ grep ^-
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
+ test -n ''
+ [ -n 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ wc -l
+ tr -d ' '
+ RKHLINES=1
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ echo 1
+ awk -v l=1 '/./ { if (a) { a = a "\n" $0 } else a = $0 }; /^$/ { a = "" }; NR == l { print a }'
+ OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
+ grep ^-
+ test -n ''
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ return 0
+ CONFIG_DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ test 0 -eq 1
+ [ 0 -eq 0 ]
+ DISABLE_TESTS=' suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ echo suspscan hidden_ports hidden_procs deleted_files packet_cap_apps
+ DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ [ -z 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
+ tr '[:upper:]' '[:lower:]'
+ echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ return
+ check_test_options
+ SEEN=0
+ LEAVE=0
+ echo strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules
+ RKHTMPVAR=' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
+ [ filesystem = all ]
+ [ filesystem = none ]
+ echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
+ grep ' filesystem '
+ [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
+ test 0 -eq 1
+ SEEN=0
+ [ 1 -eq 1 ]
+ [ suspscan = none ]
+ [ suspscan = all ]
+ echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
+ grep ' suspscan '
+ [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
+ [ hidden_ports = none ]
+ [ hidden_ports = all ]
+ grep ' hidden_ports '
+ echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
+ [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
+ [ hidden_procs = none ]
+ [ hidden_procs = all ]
+ echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
+ grep ' hidden_procs '
+ [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
+ [ deleted_files = none ]
+ [ deleted_files = all ]
+ grep ' deleted_files '
+ echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
+ [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
+ [ packet_cap_apps = none ]
+ [ packet_cap_apps = all ]
+ echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
+ grep ' packet_cap_apps '
+ [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
+ [ 0 -eq 1 ]
+ test 0 -eq 1
+ test filesystem = all
+ [ 1 -eq 1 -a 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' != none ]
+ GROUP_TEST_NAMES=''
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands'
+ echo properties:hashes:scripts:immutable:attributes
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties'
+ echo shared_libs:shared_libs_path
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties shared_libs'
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits'
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts'
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network'
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware'
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host'
+ echo startup_files:startup_malware
+ cut -d: -f1
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files'
+ cut -d: -f1
+ echo os_specific:loaded_modules:avail_modules
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific'
+ cut -d: -f1
+ echo group_accounts:passwd_changes:group_changes
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts'
+ echo system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts
+ GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts '
+ DISABLE_TESTS=' suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
+ grep ' filesystem '
+ echo ' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts '
+ [ -z '' ]
+ echo ' suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
+ grep ' filesystem '
+ [ -n '' ]
+ echo suspscan hidden_ports hidden_procs deleted_files packet_cap_apps
+ DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
+ [ -z 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
+ sort_test_lists 2
+ RKHTMPVAR=2
+ test 2 -eq 1
+ test 2 -eq 2
+ tr ' ' '\n'
+ sort
+ echo suspscan hidden_ports hidden_procs deleted_files packet_cap_apps
+ uniq
+ DISABLE_TESTS='deleted_files
hidden_ports
hidden_procs
packet_cap_apps
suspscan'
+ echo filesystem
+ ENABLE_TESTS=filesystem
+ echo deleted_files hidden_ports hidden_procs packet_cap_apps suspscan
+ DISABLE_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ [ filesystem = 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' ]
+ return
+ cut -d: -f1
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ GROUP_NAME=system_commands
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ grep :
+ [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ cut -d: -f2-
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ [ filesystem = system_commands ]
+ [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ grep :filesystem:
+ echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
+ [ -n '' ]
+ echo properties:hashes:scripts:immutable:attributes
+ cut -d: -f1
+ GROUP_NAME=properties
+ grep :
+ echo properties:hashes:scripts:immutable:attributes
+ [ -n properties:hashes:scripts:immutable:attributes ]
+ echo properties:hashes:scripts:immutable:attributes
+ cut -d: -f2-
+ GROUP_TESTS=hashes:scripts:immutable:attributes
+ [ filesystem = properties ]
+ [ -z hashes:scripts:immutable:attributes ]
+ echo :hashes:scripts:immutable:attributes:
+ grep :filesystem:
+ [ -n '' ]
+ echo shared_libs:shared_libs_path
+ cut -d: -f1
+ GROUP_NAME=shared_libs
+ echo shared_libs:shared_libs_path
+ grep :
+ [ -n shared_libs:shared_libs_path ]
+ echo shared_libs:shared_libs_path
+ cut -d: -f2-
+ GROUP_TESTS=shared_libs_path
+ [ filesystem = shared_libs ]
+ [ -z shared_libs_path ]
+ echo :shared_libs_path:
+ grep :filesystem:
+ [ -n '' ]
+ cut -d: -f1
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ GROUP_NAME=rootkits
+ grep :
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ cut -d: -f2-
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ filesystem = rootkits ]
+ [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ grep :filesystem:
+ echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
+ [ -n '' ]
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ cut -d: -f1
+ GROUP_NAME=additional_rkts
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ grep :
+ [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ cut -d: -f2-
+ GROUP_TESTS=possible_rkt_files:possible_rkt_strings
+ [ filesystem = additional_rkts ]
+ [ -z possible_rkt_files:possible_rkt_strings ]
+ echo :possible_rkt_files:possible_rkt_strings:
+ grep :filesystem:
+ [ -n '' ]
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ cut -d: -f1
+ GROUP_NAME=network
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ grep :
+ [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
+ cut -d: -f2-
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
+ [ filesystem = network ]
+ [ -z packet_cap_apps:ports:hidden_ports:promisc ]
+ grep :filesystem:
+ echo :packet_cap_apps:ports:hidden_ports:promisc:
+ [ -n '' ]
+ cut -d: -f1
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ GROUP_NAME=malware
+ grep :
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f2-
+ GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ filesystem = malware ]
+ [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
+ grep :filesystem:
+ [ -n '' ]
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f1
+ GROUP_NAME=local_host
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ grep :
+ [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f2-
+ GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ filesystem = local_host ]
+ [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
+ grep :filesystem:
+ [ -n :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem: ]
+ ENABLE_TESTS='filesystem local_host'
+ cut -d: -f1
+ echo startup_files:startup_malware
+ GROUP_NAME=startup_files
+ grep :
+ echo startup_files:startup_malware
+ [ -n startup_files:startup_malware ]
+ cut -d: -f2-
+ echo startup_files:startup_malware
+ GROUP_TESTS=startup_malware
+ [ filesystem = startup_files ]
+ [ -z startup_malware ]
+ grep :filesystem:
+ echo :startup_malware:
+ [ -n '' ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=os_specific
+ echo os_specific:loaded_modules:avail_modules
+ grep :
+ [ -n os_specific:loaded_modules:avail_modules ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=loaded_modules:avail_modules
+ [ filesystem = os_specific ]
+ [ -z loaded_modules:avail_modules ]
+ echo :loaded_modules:avail_modules:
+ grep :filesystem:
+ [ -n '' ]
+ echo group_accounts:passwd_changes:group_changes
+ cut -d: -f1
+ GROUP_NAME=group_accounts
+ echo group_accounts:passwd_changes:group_changes
+ grep :
+ [ -n group_accounts:passwd_changes:group_changes ]
+ cut -d: -f2-
+ echo group_accounts:passwd_changes:group_changes
+ GROUP_TESTS=passwd_changes:group_changes
+ [ filesystem = group_accounts ]
+ [ -z passwd_changes:group_changes ]
+ echo :passwd_changes:group_changes:
+ grep :filesystem:
+ [ -n '' ]
+ echo filesystem local_host
+ ENABLE_TESTS='filesystem local_host'
+ sort_test_lists 1
+ RKHTMPVAR=1
+ test 1 -eq 1
+ echo filesystem local_host
+ tr ' ' '\n'
+ sort
+ uniq
+ ENABLE_TESTS='filesystem
local_host'
+ test 1 -eq 2
+ echo filesystem local_host
+ ENABLE_TESTS='filesystem local_host'
+ echo deleted_files hidden_ports hidden_procs packet_cap_apps suspscan
+ DISABLE_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ [ 'filesystem local_host' = 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' ]
+ return
+ [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' != none ]
+ TEMP_EN_TESTS='filesystem local_host'
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f1
+ GROUP_NAME=system_commands
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ grep :
+ [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f2-
+ GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ [ deleted_files = system_commands ]
+ [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
+ grep :deleted_files:
+ [ -n '' ]
+ echo properties:hashes:scripts:immutable:attributes
+ cut -d: -f1
+ GROUP_NAME=properties
+ echo properties:hashes:scripts:immutable:attributes
+ grep :
+ [ -n properties:hashes:scripts:immutable:attributes ]
+ cut -d: -f2-
+ echo properties:hashes:scripts:immutable:attributes
+ GROUP_TESTS=hashes:scripts:immutable:attributes
+ [ deleted_files = properties ]
+ [ -z hashes:scripts:immutable:attributes ]
+ grep :deleted_files:
+ echo :hashes:scripts:immutable:attributes:
+ [ -n '' ]
+ cut -d: -f1
+ echo shared_libs:shared_libs_path
+ GROUP_NAME=shared_libs
+ grep :
+ echo shared_libs:shared_libs_path
+ [ -n shared_libs:shared_libs_path ]
+ echo shared_libs:shared_libs_path
+ cut -d: -f2-
+ GROUP_TESTS=shared_libs_path
+ [ deleted_files = shared_libs ]
+ [ -z shared_libs_path ]
+ grep :deleted_files:
+ echo :shared_libs_path:
+ [ -n '' ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=rootkits
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ grep :
+ [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ deleted_files = rootkits ]
+ [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
+ grep :deleted_files:
+ [ -n :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits'
+ cut -d: -f1
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ GROUP_NAME=additional_rkts
+ grep :
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
+ cut -d: -f2-
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ GROUP_TESTS=possible_rkt_files:possible_rkt_strings
+ [ deleted_files = additional_rkts ]
+ [ -z possible_rkt_files:possible_rkt_strings ]
+ grep :deleted_files:
+ echo :possible_rkt_files:possible_rkt_strings:
+ [ -n '' ]
+ cut -d: -f1
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ GROUP_NAME=network
+ grep :
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ cut -d: -f2-
+ GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
+ [ deleted_files = network ]
+ [ -z packet_cap_apps:ports:hidden_ports:promisc ]
+ echo :packet_cap_apps:ports:hidden_ports:promisc:
+ grep :deleted_files:
+ [ -n '' ]
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f1
+ GROUP_NAME=malware
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ grep :
+ [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ cut -d: -f2-
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ deleted_files = malware ]
+ [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
+ grep :deleted_files:
+ [ -n :running_procs:hidden_procs:deleted_files:suspscan:other_malware: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware'
+ cut -d: -f1
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ GROUP_NAME=local_host
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ grep :
+ [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f2-
+ GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ deleted_files = local_host ]
+ [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
+ grep :deleted_files:
+ [ -n '' ]
+ echo startup_files:startup_malware
+ cut -d: -f1
+ GROUP_NAME=startup_files
+ echo startup_files:startup_malware
+ grep :
+ [ -n startup_files:startup_malware ]
+ echo startup_files:startup_malware
+ cut -d: -f2-
+ GROUP_TESTS=startup_malware
+ [ deleted_files = startup_files ]
+ [ -z startup_malware ]
+ echo :startup_malware:
+ grep :deleted_files:
+ [ -n '' ]
+ cut -d: -f1
+ echo os_specific:loaded_modules:avail_modules
+ GROUP_NAME=os_specific
+ echo os_specific:loaded_modules:avail_modules
+ grep :
+ [ -n os_specific:loaded_modules:avail_modules ]
+ cut -d: -f2-
+ echo os_specific:loaded_modules:avail_modules
+ GROUP_TESTS=loaded_modules:avail_modules
+ [ deleted_files = os_specific ]
+ [ -z loaded_modules:avail_modules ]
+ grep :deleted_files:
+ echo :loaded_modules:avail_modules:
+ [ -n '' ]
+ cut -d: -f1
+ echo group_accounts:passwd_changes:group_changes
+ GROUP_NAME=group_accounts
+ grep :
+ echo group_accounts:passwd_changes:group_changes
+ [ -n group_accounts:passwd_changes:group_changes ]
+ echo group_accounts:passwd_changes:group_changes
+ cut -d: -f2-
+ GROUP_TESTS=passwd_changes:group_changes
+ [ deleted_files = group_accounts ]
+ [ -z passwd_changes:group_changes ]
+ grep :deleted_files:
+ echo :passwd_changes:group_changes:
+ [ -n '' ]
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f1
+ GROUP_NAME=system_commands
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ grep :
+ [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f2-
+ GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ [ hidden_ports = system_commands ]
+ [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
+ grep :hidden_ports:
+ [ -n '' ]
+ cut -d: -f1
+ echo properties:hashes:scripts:immutable:attributes
+ GROUP_NAME=properties
+ echo properties:hashes:scripts:immutable:attributes
+ grep :
+ [ -n properties:hashes:scripts:immutable:attributes ]
+ cut -d: -f2-
+ echo properties:hashes:scripts:immutable:attributes
+ GROUP_TESTS=hashes:scripts:immutable:attributes
+ [ hidden_ports = properties ]
+ [ -z hashes:scripts:immutable:attributes ]
+ grep :hidden_ports:
+ echo :hashes:scripts:immutable:attributes:
+ [ -n '' ]
+ cut -d: -f1
+ echo shared_libs:shared_libs_path
+ GROUP_NAME=shared_libs
+ grep :
+ echo shared_libs:shared_libs_path
+ [ -n shared_libs:shared_libs_path ]
+ echo shared_libs:shared_libs_path
+ cut -d: -f2-
+ GROUP_TESTS=shared_libs_path
+ [ hidden_ports = shared_libs ]
+ [ -z shared_libs_path ]
+ grep :hidden_ports:
+ echo :shared_libs_path:
+ [ -n '' ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=rootkits
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ grep :
+ [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ hidden_ports = rootkits ]
+ [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
+ grep :hidden_ports:
+ [ -n '' ]
+ cut -d: -f1
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ GROUP_NAME=additional_rkts
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ grep :
+ [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
+ cut -d: -f2-
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ GROUP_TESTS=possible_rkt_files:possible_rkt_strings
+ [ hidden_ports = additional_rkts ]
+ [ -z possible_rkt_files:possible_rkt_strings ]
+ grep :hidden_ports:
+ echo :possible_rkt_files:possible_rkt_strings:
+ [ -n '' ]
+ cut -d: -f1
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ GROUP_NAME=network
+ grep :
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ cut -d: -f2-
+ GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
+ [ hidden_ports = network ]
+ [ -z packet_cap_apps:ports:hidden_ports:promisc ]
+ echo :packet_cap_apps:ports:hidden_ports:promisc:
+ grep :hidden_ports:
+ [ -n :packet_cap_apps:ports:hidden_ports:promisc: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network'
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f1
+ GROUP_NAME=malware
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ grep :
+ [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ cut -d: -f2-
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ hidden_ports = malware ]
+ [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
+ grep :hidden_ports:
+ [ -n '' ]
+ cut -d: -f1
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ GROUP_NAME=local_host
+ grep :
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ cut -d: -f2-
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ hidden_ports = local_host ]
+ [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ grep :hidden_ports:
+ echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
+ [ -n '' ]
+ echo startup_files:startup_malware
+ cut -d: -f1
+ GROUP_NAME=startup_files
+ echo startup_files:startup_malware
+ grep :
+ [ -n startup_files:startup_malware ]
+ echo startup_files:startup_malware
+ cut -d: -f2-
+ GROUP_TESTS=startup_malware
+ [ hidden_ports = startup_files ]
+ [ -z startup_malware ]
+ echo :startup_malware:
+ grep :hidden_ports:
+ [ -n '' ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=os_specific
+ echo os_specific:loaded_modules:avail_modules
+ grep :
+ [ -n os_specific:loaded_modules:avail_modules ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=loaded_modules:avail_modules
+ [ hidden_ports = os_specific ]
+ [ -z loaded_modules:avail_modules ]
+ grep :hidden_ports:
+ echo :loaded_modules:avail_modules:
+ [ -n '' ]
+ cut -d: -f1
+ echo group_accounts:passwd_changes:group_changes
+ GROUP_NAME=group_accounts
+ grep :
+ echo group_accounts:passwd_changes:group_changes
+ [ -n group_accounts:passwd_changes:group_changes ]
+ cut -d: -f2-
+ echo group_accounts:passwd_changes:group_changes
+ GROUP_TESTS=passwd_changes:group_changes
+ [ hidden_ports = group_accounts ]
+ [ -z passwd_changes:group_changes ]
+ grep :hidden_ports:
+ echo :passwd_changes:group_changes:
+ [ -n '' ]
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f1
+ GROUP_NAME=system_commands
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ grep :
+ [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f2-
+ GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ [ hidden_procs = system_commands ]
+ [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
+ grep :hidden_procs:
+ [ -n '' ]
+ cut -d: -f1
+ echo properties:hashes:scripts:immutable:attributes
+ GROUP_NAME=properties
+ echo properties:hashes:scripts:immutable:attributes
+ grep :
+ [ -n properties:hashes:scripts:immutable:attributes ]
+ cut -d: -f2-
+ echo properties:hashes:scripts:immutable:attributes
+ GROUP_TESTS=hashes:scripts:immutable:attributes
+ [ hidden_procs = properties ]
+ [ -z hashes:scripts:immutable:attributes ]
+ grep :hidden_procs:
+ echo :hashes:scripts:immutable:attributes:
+ [ -n '' ]
+ cut -d: -f1
+ echo shared_libs:shared_libs_path
+ GROUP_NAME=shared_libs
+ echo shared_libs:shared_libs_path
+ grep :
+ [ -n shared_libs:shared_libs_path ]
+ echo shared_libs:shared_libs_path
+ cut -d: -f2-
+ GROUP_TESTS=shared_libs_path
+ [ hidden_procs = shared_libs ]
+ [ -z shared_libs_path ]
+ echo :shared_libs_path:
+ grep :hidden_procs:
+ [ -n '' ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=rootkits
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ grep :
+ [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ hidden_procs = rootkits ]
+ [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
+ grep :hidden_procs:
+ [ -n :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits'
+ cut -d: -f1
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ GROUP_NAME=additional_rkts
+ grep :
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
+ cut -d: -f2-
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ GROUP_TESTS=possible_rkt_files:possible_rkt_strings
+ [ hidden_procs = additional_rkts ]
+ [ -z possible_rkt_files:possible_rkt_strings ]
+ grep :hidden_procs:
+ echo :possible_rkt_files:possible_rkt_strings:
+ [ -n '' ]
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ cut -d: -f1
+ GROUP_NAME=network
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ grep :
+ [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ cut -d: -f2-
+ GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
+ [ hidden_procs = network ]
+ [ -z packet_cap_apps:ports:hidden_ports:promisc ]
+ echo :packet_cap_apps:ports:hidden_ports:promisc:
+ grep :hidden_procs:
+ [ -n '' ]
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f1
+ GROUP_NAME=malware
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ grep :
+ [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ cut -d: -f2-
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ hidden_procs = malware ]
+ [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
+ grep :hidden_procs:
+ [ -n :running_procs:hidden_procs:deleted_files:suspscan:other_malware: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware'
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f1
+ GROUP_NAME=local_host
+ grep :
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f2-
+ GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ hidden_procs = local_host ]
+ [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
+ grep :hidden_procs:
+ [ -n '' ]
+ echo startup_files:startup_malware
+ cut -d: -f1
+ GROUP_NAME=startup_files
+ echo startup_files:startup_malware
+ grep :
+ [ -n startup_files:startup_malware ]
+ echo startup_files:startup_malware
+ cut -d: -f2-
+ GROUP_TESTS=startup_malware
+ [ hidden_procs = startup_files ]
+ [ -z startup_malware ]
+ echo :startup_malware:
+ grep :hidden_procs:
+ [ -n '' ]
+ cut -d: -f1
+ echo os_specific:loaded_modules:avail_modules
+ GROUP_NAME=os_specific
+ grep :
+ echo os_specific:loaded_modules:avail_modules
+ [ -n os_specific:loaded_modules:avail_modules ]
+ cut -d: -f2-
+ echo os_specific:loaded_modules:avail_modules
+ GROUP_TESTS=loaded_modules:avail_modules
+ [ hidden_procs = os_specific ]
+ [ -z loaded_modules:avail_modules ]
+ grep :hidden_procs:
+ echo :loaded_modules:avail_modules:
+ [ -n '' ]
+ echo group_accounts:passwd_changes:group_changes
+ cut -d: -f1
+ GROUP_NAME=group_accounts
+ grep :
+ echo group_accounts:passwd_changes:group_changes
+ [ -n group_accounts:passwd_changes:group_changes ]
+ echo group_accounts:passwd_changes:group_changes
+ cut -d: -f2-
+ GROUP_TESTS=passwd_changes:group_changes
+ [ hidden_procs = group_accounts ]
+ [ -z passwd_changes:group_changes ]
+ echo :passwd_changes:group_changes:
+ grep :hidden_procs:
+ [ -n '' ]
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f1
+ GROUP_NAME=system_commands
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ grep :
+ [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ cut -d: -f2-
+ GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ [ packet_cap_apps = system_commands ]
+ [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ cut -d: -f1
+ echo properties:hashes:scripts:immutable:attributes
+ GROUP_NAME=properties
+ grep :
+ echo properties:hashes:scripts:immutable:attributes
+ [ -n properties:hashes:scripts:immutable:attributes ]
+ echo properties:hashes:scripts:immutable:attributes
+ cut -d: -f2-
+ GROUP_TESTS=hashes:scripts:immutable:attributes
+ [ packet_cap_apps = properties ]
+ [ -z hashes:scripts:immutable:attributes ]
+ grep :packet_cap_apps:
+ echo :hashes:scripts:immutable:attributes:
+ [ -n '' ]
+ echo shared_libs:shared_libs_path
+ cut -d: -f1
+ GROUP_NAME=shared_libs
+ echo shared_libs:shared_libs_path
+ grep :
+ [ -n shared_libs:shared_libs_path ]
+ echo shared_libs:shared_libs_path
+ cut -d: -f2-
+ GROUP_TESTS=shared_libs_path
+ [ packet_cap_apps = shared_libs ]
+ [ -z shared_libs_path ]
+ echo :shared_libs_path:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=rootkits
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ grep :
+ [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ cut -d: -f2-
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ packet_cap_apps = rootkits ]
+ [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ cut -d: -f1
+ GROUP_NAME=additional_rkts
+ grep :
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ cut -d: -f2-
+ GROUP_TESTS=possible_rkt_files:possible_rkt_strings
+ [ packet_cap_apps = additional_rkts ]
+ [ -z possible_rkt_files:possible_rkt_strings ]
+ echo :possible_rkt_files:possible_rkt_strings:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ cut -d: -f1
+ GROUP_NAME=network
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ grep :
+ [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
+ cut -d: -f2-
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
+ [ packet_cap_apps = network ]
+ [ -z packet_cap_apps:ports:hidden_ports:promisc ]
+ echo :packet_cap_apps:ports:hidden_ports:promisc:
+ grep :packet_cap_apps:
+ [ -n :packet_cap_apps:ports:hidden_ports:promisc: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network'
+ cut -d: -f1
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ GROUP_NAME=malware
+ grep :
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f2-
+ GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ packet_cap_apps = malware ]
+ [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f1
+ GROUP_NAME=local_host
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ grep :
+ [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f2-
+ GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ packet_cap_apps = local_host ]
+ [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ cut -d: -f1
+ echo startup_files:startup_malware
+ GROUP_NAME=startup_files
+ grep :
+ echo startup_files:startup_malware
+ [ -n startup_files:startup_malware ]
+ cut -d: -f2-
+ echo startup_files:startup_malware
+ GROUP_TESTS=startup_malware
+ [ packet_cap_apps = startup_files ]
+ [ -z startup_malware ]
+ grep :packet_cap_apps:
+ echo :startup_malware:
+ [ -n '' ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=os_specific
+ grep :
+ echo os_specific:loaded_modules:avail_modules
+ [ -n os_specific:loaded_modules:avail_modules ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=loaded_modules:avail_modules
+ [ packet_cap_apps = os_specific ]
+ [ -z loaded_modules:avail_modules ]
+ echo :loaded_modules:avail_modules:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ echo group_accounts:passwd_changes:group_changes
+ cut -d: -f1
+ GROUP_NAME=group_accounts
+ echo group_accounts:passwd_changes:group_changes
+ grep :
+ [ -n group_accounts:passwd_changes:group_changes ]
+ echo group_accounts:passwd_changes:group_changes
+ cut -d: -f2-
+ GROUP_TESTS=passwd_changes:group_changes
+ [ packet_cap_apps = group_accounts ]
+ [ -z passwd_changes:group_changes ]
+ echo :passwd_changes:group_changes:
+ grep :packet_cap_apps:
+ [ -n '' ]
+ cut -d: -f1
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ GROUP_NAME=system_commands
+ grep :
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ cut -d: -f2-
+ echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
+ [ suspscan = system_commands ]
+ [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
+ echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
+ grep :suspscan:
+ [ -n '' ]
+ echo properties:hashes:scripts:immutable:attributes
+ cut -d: -f1
+ GROUP_NAME=properties
+ echo properties:hashes:scripts:immutable:attributes
+ grep :
+ [ -n properties:hashes:scripts:immutable:attributes ]
+ echo properties:hashes:scripts:immutable:attributes
+ cut -d: -f2-
+ GROUP_TESTS=hashes:scripts:immutable:attributes
+ [ suspscan = properties ]
+ [ -z hashes:scripts:immutable:attributes ]
+ echo :hashes:scripts:immutable:attributes:
+ grep :suspscan:
+ [ -n '' ]
+ cut -d: -f1
+ echo shared_libs:shared_libs_path
+ GROUP_NAME=shared_libs
+ echo shared_libs:shared_libs_path
+ grep :
+ [ -n shared_libs:shared_libs_path ]
+ cut -d: -f2-
+ echo shared_libs:shared_libs_path
+ GROUP_TESTS=shared_libs_path
+ [ suspscan = shared_libs ]
+ [ -z shared_libs_path ]
+ grep :suspscan:
+ echo :shared_libs_path:
+ [ -n '' ]
+ cut -d: -f1
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ GROUP_NAME=rootkits
+ grep :
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
+ [ suspscan = rootkits ]
+ [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
+ grep :suspscan:
+ echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
+ [ -n :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits'
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ cut -d: -f1
+ GROUP_NAME=additional_rkts
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ grep :
+ [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
+ echo additional_rkts:possible_rkt_files:possible_rkt_strings
+ cut -d: -f2-
+ GROUP_TESTS=possible_rkt_files:possible_rkt_strings
+ [ suspscan = additional_rkts ]
+ [ -z possible_rkt_files:possible_rkt_strings ]
+ echo :possible_rkt_files:possible_rkt_strings:
+ grep :suspscan:
+ [ -n '' ]
+ cut -d: -f1
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ GROUP_NAME=network
+ grep :
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
+ cut -d: -f2-
+ echo network:packet_cap_apps:ports:hidden_ports:promisc
+ GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
+ [ suspscan = network ]
+ [ -z packet_cap_apps:ports:hidden_ports:promisc ]
+ echo :packet_cap_apps:ports:hidden_ports:promisc:
+ grep :suspscan:
+ [ -n '' ]
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f1
+ GROUP_NAME=malware
+ grep :
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ cut -d: -f2-
+ GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
+ [ suspscan = malware ]
+ [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
+ echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
+ grep :suspscan:
+ [ -n :running_procs:hidden_procs:deleted_files:suspscan:other_malware: ]
+ TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware'
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ cut -d: -f1
+ GROUP_NAME=local_host
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ grep :
+ [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ cut -d: -f2-
+ echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
+ [ suspscan = local_host ]
+ [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
+ echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
+ grep :suspscan:
+ [ -n '' ]
+ cut -d: -f1
+ echo startup_files:startup_malware
+ GROUP_NAME=startup_files
+ grep :
+ echo startup_files:startup_malware
+ [ -n startup_files:startup_malware ]
+ echo startup_files:startup_malware
+ cut -d: -f2-
+ GROUP_TESTS=startup_malware
+ [ suspscan = startup_files ]
+ [ -z startup_malware ]
+ grep :suspscan:
+ echo :startup_malware:
+ [ -n '' ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f1
+ GROUP_NAME=os_specific
+ echo os_specific:loaded_modules:avail_modules
+ grep :
+ [ -n os_specific:loaded_modules:avail_modules ]
+ echo os_specific:loaded_modules:avail_modules
+ cut -d: -f2-
+ GROUP_TESTS=loaded_modules:avail_modules
+ [ suspscan = os_specific ]
+ [ -z loaded_modules:avail_modules ]
+ echo :loaded_modules:avail_modules:
+ grep :suspscan:
+ [ -n '' ]
+ echo group_accounts:passwd_changes:group_changes
+ cut -d: -f1
+ GROUP_NAME=group_accounts
+ echo group_accounts:passwd_changes:group_changes
+ grep :
+ [ -n group_accounts:passwd_changes:group_changes ]
+ cut -d: -f2-
+ echo group_accounts:passwd_changes:group_changes
+ GROUP_TESTS=passwd_changes:group_changes
+ [ suspscan = group_accounts ]
+ [ -z passwd_changes:group_changes ]
+ grep :suspscan:
+ echo :passwd_changes:group_changes:
+ [ -n '' ]
+ echo deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware
+ TEMP_DIS_TESTS=' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware '
+ echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware '
+ grep ' filesystem '
+ [ -n '' ]
+ echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware '
+ grep ' local_host '
+ [ -n '' ]
+ echo filesystem local_host
+ TEMP_EN_TESTS='filesystem local_host'
+ [ -z 'filesystem local_host' ]
+ return
+ get_existwl_option
+ LEAVE=0
+ get_option newline-list EXISTWHITELIST
+ OPTMULTI=newline-list
+ OPTNAME=EXISTWHITELIST
+ ERRCODE=0
+ [ -z newline-list -o -z EXISTWHITELIST ]
+ grep -h ^EXISTWHITELIST= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ EXISTWL_OPT=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ [ 1 -eq 1 -o 0 -eq 1 ]
+ get_syslog_option
+ LEAVE=0
+ [ -n '' ]
+ get_option single USE_SYSLOG
+ OPTMULTI=single
+ OPTNAME=USE_SYSLOG
+ ERRCODE=0
+ [ -z single -o -z USE_SYSLOG ]
+ grep -h ^USE_SYSLOG= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ USE_SYSLOG=''
+ test 0 -eq 1
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ get_startup_paths_option
+ LEAVE=0
+ get_option space-list STARTUP_PATHS
+ OPTMULTI=space-list
+ OPTNAME=STARTUP_PATHS
+ ERRCODE=0
+ [ -z space-list -o -z STARTUP_PATHS ]
+ grep -h ^STARTUP_PATHS= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ STARTUP_PATHS=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ get_rtkt_whitelist_options
+ LEAVE=0
+ get_option newline-list RTKT_FILE_WHITELIST
+ OPTMULTI=newline-list
+ OPTNAME=RTKT_FILE_WHITELIST
+ ERRCODE=0
+ [ -z newline-list -o -z RTKT_FILE_WHITELIST ]
+ grep -h ^RTKT_FILE_WHITELIST= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ RTKT_FILE_WHITELIST=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ get_option newline-list RTKT_DIR_WHITELIST
+ OPTMULTI=newline-list
+ OPTNAME=RTKT_DIR_WHITELIST
+ ERRCODE=0
+ [ -z newline-list -o -z RTKT_DIR_WHITELIST ]
+ grep -h ^RTKT_DIR_WHITELIST= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ RTKT_DIR_WHITELIST=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ get_epoch_date_cmd_option
+ LEAVE=0
+ get_option single EPOCH_DATE_CMD
+ OPTMULTI=single
+ OPTNAME=EPOCH_DATE_CMD
+ ERRCODE=0
+ [ -z single -o -z EPOCH_DATE_CMD ]
+ grep -h ^EPOCH_DATE_CMD= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ EPOCH_DATE_CMD=''
+ [ 0 -eq 0 ]
+ [ '' = PERL ]
+ [ '' = NONE ]
+ [ -n '' ]
+ [ 0 -eq 0 ]
+ test_epoch_cmd date
+ RKHTMPVAR=date
+ date --date '5 seconds ago' +%s
+ grep '^[0-9][0-9]*$'
+ [ -n '' ]
+ return
+ test -n ''
+ [ 0 -eq 1 ]
+ return
+ get_phalanx2_option
+ test 0 -eq 0
+ return
+ get_summary_options
+ LEAVE=0
+ get_option single SHOW_SUMMARY_WARNINGS_NUMBER
+ OPTMULTI=single
+ OPTNAME=SHOW_SUMMARY_WARNINGS_NUMBER
+ ERRCODE=0
+ [ -z single -o -z SHOW_SUMMARY_WARNINGS_NUMBER ]
+ grep -h ^SHOW_SUMMARY_WARNINGS_NUMBER= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ SHOW_SUMMARY_WARNINGS_NUMBER=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ SHOW_SUMMARY_WARNINGS_NUMBER=0
+ get_option single SHOW_SUMMARY_TIME
+ OPTMULTI=single
+ OPTNAME=SHOW_SUMMARY_TIME
+ ERRCODE=0
+ [ -z single -o -z SHOW_SUMMARY_TIME ]
+ grep -h ^SHOW_SUMMARY_TIME= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ SHOW_SUMMARY_TIME=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ SHOW_SUMMARY_TIME=3
+ [ 0 -eq 1 ]
+ return
+ test 0 -eq 0
+ get_mailonwarn_option
+ LEAVE=0
+ get_option space-list MAIL-ON-WARNING
+ OPTMULTI=space-list
+ OPTNAME=MAIL-ON-WARNING
+ ERRCODE=0
+ [ -z space-list -o -z MAIL-ON-WARNING ]
+ grep -h ^MAIL-ON-WARNING= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ MAILONWARNING=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ check_test system_configs
+ echo ' filesystem local_host '
+ grep ' system_configs '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ check_test filesystem
+ echo ' filesystem local_host '
+ grep ' filesystem '
+ [ 'filesystem local_host' = all -o -n ' filesystem local_host ' ]
+ echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan '
+ grep ' filesystem '
+ [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' = none -o -z '' ]
+ return 0
+
+ get_scan_mode_dev_option
+ LEAVE=0
+ get_option single SCAN_MODE_DEV
+ OPTMULTI=single
+ OPTNAME=SCAN_MODE_DEV
+ ERRCODE=0
+ [ -z single -o -z SCAN_MODE_DEV ]
+ grep -h ^SCAN_MODE_DEV= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ SCAN_MODE_DEV=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ SCAN_MODE_DEV=THOROUGH
+ [ 0 -eq 1 ]
+ return
+ get_missing_file_options
+ LEAVE=0
+ get_option space-list MISSING_LOGFILES
+ OPTMULTI=space-list
+ OPTNAME=MISSING_LOGFILES
+ ERRCODE=0
+ [ -z space-list -o -z MISSING_LOGFILES ]
+ grep -h ^MISSING_LOGFILES= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ LOGFILE_MISSING=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ get_option space-list EMPTY_LOGFILES
+ OPTMULTI=space-list
+ OPTNAME=EMPTY_LOGFILES
+ ERRCODE=0
+ [ -z space-list -o -z EMPTY_LOGFILES ]
+ grep -h ^EMPTY_LOGFILES= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ LOGFILE_EMPTY=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ get_hidden_options
+ LEAVE=0
+ ALLOWHIDDENFILES=''
+ get_option newline-list ALLOWHIDDENFILE
+ OPTMULTI=newline-list
+ OPTNAME=ALLOWHIDDENFILE
+ ERRCODE=0
+ [ -z newline-list -o -z ALLOWHIDDENFILE ]
+ grep -h ^ALLOWHIDDENFILE= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ ALLOWHIDDENFILE_OPT=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ ALLOWHIDDENDIRS=''
+ get_option newline-list ALLOWHIDDENDIR
+ OPTMULTI=newline-list
+ OPTNAME=ALLOWHIDDENDIR
+ ERRCODE=0
+ [ -z newline-list -o -z ALLOWHIDDENDIR ]
+ grep -h ^ALLOWHIDDENDIR= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ ALLOWHIDDENDIR_OPT=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ get_dev_options
+ LEAVE=0
+ ALLOWDEVFILES=''
+ get_option newline-list ALLOWDEVFILE
+ OPTMULTI=newline-list
+ OPTNAME=ALLOWDEVFILE
+ ERRCODE=0
+ [ -z newline-list -o -z ALLOWDEVFILE ]
+ grep -h ^ALLOWDEVFILE= /usr/local/etc/rkhunter.conf
+ RKHTMPVAR2=''
+ [ -z '' ]
+ echo ''
+ return 0
+ ALLOWDEVFILE_OPT=''
+ [ 0 -eq 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ return
+ check_test trojans
+ grep ' trojans '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test ports
+ echo ' filesystem local_host '
+ grep ' ports '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test hidden_ports
+ echo ' filesystem local_host '
+ grep ' hidden_ports '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test group_accounts
+ echo ' filesystem local_host '
+ grep ' group_accounts '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test shared_libs
+ grep ' shared_libs '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test hidden_procs
+ echo ' filesystem local_host '
+ grep ' hidden_procs '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test hidden_ports
+ echo ' filesystem local_host '
+ grep ' hidden_ports '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test deleted_files
+ grep ' deleted_files '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test suspscan
+ echo ' filesystem local_host '
+ grep ' suspscan '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test network
+ echo ' filesystem local_host '
+ grep ' network '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test os_specific
+ echo ' filesystem local_host '
+ grep ' os_specific '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test apps
+ grep ' apps '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test properties
+ echo ' filesystem local_host '
+ grep ' properties '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ test 0 -eq 1
+ test 0 -eq 1
+ [ 0 -eq 1 -o 0 -eq 1 ]
+ [ 0 -eq 1 -o 0 -eq 1 -o 0 -eq 1 ]
+ return
+ [ 0 -eq 1 ]
+ [ -n '' ]
+ [ 0 -eq 1 ]
+ [ /var/log/rkhunter.log = /dev/null ]
+ [ 1 -eq 1 ]
+ NORMAL='[0;39m'
+ [ 0 -eq 0 ]
+ RED='[1;31m'
+ GREEN='[1;32m'
+ YELLOW='[1;33m'
+ WHITE='[1;37m'
+ [ 1 -eq 1 ]
+ [ -f /proc/ksyms ]
+ [ -f /proc/kallsyms ]
+ head -n 1 /proc/kallsyms
+ [ -z '' ]
+ KSYMS_FILE=''
+ [ 1 -eq 1 -o 0 -eq 1 ]
+ [ -e /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
+ [ -h /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
+ [ ! -f /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
+ [ -e /usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat ]
+ [ -h /usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat ]
+ [ ! -f /usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat ]
+ [ -n '' ]
+ check_test properties
+ grep ' properties '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ test 0 -eq 1
+ get_old_prop_attrs /usr/local/var/lib/rkhunter/db/rkhunter.dat
+ FNAME=/usr/local/var/lib/rkhunter/db/rkhunter.dat
+ test -z /usr/local/var/lib/rkhunter/db/rkhunter.dat -o ! -f /usr/local/var/lib/rkhunter/db/rkhunter.dat
+ [ -s /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
+ grep ^Hash: /usr/local/var/lib/rkhunter/db/rkhunter.dat
+ cut -d: -f2-
+ OLD_HASH_FUNC=/sbin/sha1
+ cut -d: -f2
+ grep ^Pkgmgr: /usr/local/var/lib/rkhunter/db/rkhunter.dat
+ OLD_PKGMGR=''
+ cut -d: -f2
+ grep ^Attributes: /usr/local/var/lib/rkhunter/db/rkhunter.dat
+ OLD_ATTRUPD=Stored
+ return
+ [ 0 -eq 1 -a 0 -eq 1 -a -z '' -a '' != NONE ]
+ [ 0 -eq 1 -o 0 -eq 1 ]
+ [ 1 -eq 0 -a 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0 ]
+ [ 0 -eq 1 ]
+ test 0 -eq 1 -o 0 -eq 1
+ IFS='
'
+ egrep '^MSG_(TYPE|RESULT)_' /usr/local/var/lib/rkhunter/db/i18n/en
+ echo MSG_TYPE_PLAIN:
+ cut -d: -f1
+ TYPE=MSG_TYPE_PLAIN
+ [ en != en ]
+ echo MSG_TYPE_PLAIN:
+ cut -d: -f2-
+ RKHTMPVAR=''
+ eval 'MSG_TYPE_PLAIN=""'
+ MSG_TYPE_PLAIN=''
+ echo MSG_TYPE_INFO:Info
+ cut -d: -f1
+ TYPE=MSG_TYPE_INFO
+ [ en != en ]
+ echo MSG_TYPE_INFO:Info
+ cut -d: -f2-
+ RKHTMPVAR=Info
+ eval 'MSG_TYPE_INFO="Info"'
+ MSG_TYPE_INFO=Info
+ echo MSG_TYPE_WARNING:Warning
+ cut -d: -f1
+ TYPE=MSG_TYPE_WARNING
+ [ en != en ]
+ echo MSG_TYPE_WARNING:Warning
+ cut -d: -f2-
+ RKHTMPVAR=Warning
+ eval 'MSG_TYPE_WARNING="Warning"'
+ MSG_TYPE_WARNING=Warning
+ echo MSG_RESULT_OK:OK
+ cut -d: -f1
+ TYPE=MSG_RESULT_OK
+ [ en != en ]
+ cut -d: -f2-
+ echo MSG_RESULT_OK:OK
+ RKHTMPVAR=OK
+ eval 'MSG_RESULT_OK="OK"'
+ MSG_RESULT_OK=OK
+ cut -d: -f1
+ echo MSG_RESULT_SKIPPED:Skipped
+ TYPE=MSG_RESULT_SKIPPED
+ [ en != en ]
+ echo MSG_RESULT_SKIPPED:Skipped
+ cut -d: -f2-
+ RKHTMPVAR=Skipped
+ eval 'MSG_RESULT_SKIPPED="Skipped"'
+ MSG_RESULT_SKIPPED=Skipped
+ echo MSG_RESULT_WARNING:Warning
+ cut -d: -f1
+ TYPE=MSG_RESULT_WARNING
+ [ en != en ]
+ echo MSG_RESULT_WARNING:Warning
+ cut -d: -f2-
+ RKHTMPVAR=Warning
+ eval 'MSG_RESULT_WARNING="Warning"'
+ MSG_RESULT_WARNING=Warning
+ echo MSG_RESULT_FOUND:Found
+ cut -d: -f1
+ TYPE=MSG_RESULT_FOUND
+ [ en != en ]
+ echo MSG_RESULT_FOUND:Found
+ cut -d: -f2-
+ RKHTMPVAR=Found
+ eval 'MSG_RESULT_FOUND="Found"'
+ MSG_RESULT_FOUND=Found
+ cut -d: -f1
+ echo 'MSG_RESULT_NOT_FOUND:Not found'
+ TYPE=MSG_RESULT_NOT_FOUND
+ [ en != en ]
+ cut -d: -f2-
+ echo 'MSG_RESULT_NOT_FOUND:Not found'
+ RKHTMPVAR='Not found'
+ eval 'MSG_RESULT_NOT_FOUND="Not found"'
+ MSG_RESULT_NOT_FOUND='Not found'
+ echo 'MSG_RESULT_NONE_FOUND:None found'
+ cut -d: -f1
+ TYPE=MSG_RESULT_NONE_FOUND
+ [ en != en ]
+ echo 'MSG_RESULT_NONE_FOUND:None found'
+ cut -d: -f2-
+ RKHTMPVAR='None found'
+ eval 'MSG_RESULT_NONE_FOUND="None found"'
+ MSG_RESULT_NONE_FOUND='None found'
+ echo MSG_RESULT_ALLOWED:Allowed
+ cut -d: -f1
+ TYPE=MSG_RESULT_ALLOWED
+ [ en != en ]
+ echo MSG_RESULT_ALLOWED:Allowed
+ cut -d: -f2-
+ RKHTMPVAR=Allowed
+ eval 'MSG_RESULT_ALLOWED="Allowed"'
+ MSG_RESULT_ALLOWED=Allowed
+ echo 'MSG_RESULT_NOT_ALLOWED:Not allowed'
+ cut -d: -f1
+ TYPE=MSG_RESULT_NOT_ALLOWED
+ [ en != en ]
+ echo 'MSG_RESULT_NOT_ALLOWED:Not allowed'
+ cut -d: -f2-
+ RKHTMPVAR='Not allowed'
+ eval 'MSG_RESULT_NOT_ALLOWED="Not allowed"'
+ MSG_RESULT_NOT_ALLOWED='Not allowed'
+ cut -d: -f1
+ echo 'MSG_RESULT_UNSET:Not set'
+ TYPE=MSG_RESULT_UNSET
+ [ en != en ]
+ cut -d: -f2-
+ echo 'MSG_RESULT_UNSET:Not set'
+ RKHTMPVAR='Not set'
+ eval 'MSG_RESULT_UNSET="Not set"'
+ MSG_RESULT_UNSET='Not set'
+ echo MSG_RESULT_WHITELISTED:Whitelisted
+ cut -d: -f1
+ TYPE=MSG_RESULT_WHITELISTED
+ [ en != en ]
+ echo MSG_RESULT_WHITELISTED:Whitelisted
+ cut -d: -f2-
+ RKHTMPVAR=Whitelisted
+ eval 'MSG_RESULT_WHITELISTED="Whitelisted"'
+ MSG_RESULT_WHITELISTED=Whitelisted
+ echo 'MSG_RESULT_NONE_MISSING:None missing'
+ cut -d: -f1
+ TYPE=MSG_RESULT_NONE_MISSING
+ [ en != en ]
+ echo 'MSG_RESULT_NONE_MISSING:None missing'
+ cut -d: -f2-
+ RKHTMPVAR='None missing'
+ eval 'MSG_RESULT_NONE_MISSING="None missing"'
+ MSG_RESULT_NONE_MISSING='None missing'
+ echo MSG_RESULT_UPD:Updated
+ cut -d: -f1
+ TYPE=MSG_RESULT_UPD
+ [ en != en ]
+ echo MSG_RESULT_UPD:Updated
+ cut -d: -f2-
+ RKHTMPVAR=Updated
+ eval 'MSG_RESULT_UPD="Updated"'
+ MSG_RESULT_UPD=Updated
+ cut -d: -f1
+ echo 'MSG_RESULT_NO_UPD:No update'
+ TYPE=MSG_RESULT_NO_UPD
+ [ en != en ]
+ cut -d: -f2-
+ echo 'MSG_RESULT_NO_UPD:No update'
+ RKHTMPVAR='No update'
+ eval 'MSG_RESULT_NO_UPD="No update"'
+ MSG_RESULT_NO_UPD='No update'
+ cut -d: -f1
+ echo 'MSG_RESULT_UPD_FAILED:Update failed'
+ TYPE=MSG_RESULT_UPD_FAILED
+ [ en != en ]
+ echo 'MSG_RESULT_UPD_FAILED:Update failed'
+ cut -d: -f2-
+ RKHTMPVAR='Update failed'
+ eval 'MSG_RESULT_UPD_FAILED="Update failed"'
+ MSG_RESULT_UPD_FAILED='Update failed'
+ echo 'MSG_RESULT_VCHK_FAILED:Version check failed'
+ cut -d: -f1
+ TYPE=MSG_RESULT_VCHK_FAILED
+ [ en != en ]
+ echo 'MSG_RESULT_VCHK_FAILED:Version check failed'
+ cut -d: -f2-
+ RKHTMPVAR='Version check failed'
+ eval 'MSG_RESULT_VCHK_FAILED="Version check failed"'
+ MSG_RESULT_VCHK_FAILED='Version check failed'
+ IFS='
'
+ [ 0 -eq 1 ]
+ [ 0 -eq 0 ]
+ [ 0 -eq 0 ]
+ [ -f /var/log/rkhunter.log ]
+ cp -f -p /var/log/rkhunter.log /var/log/rkhunter.log.old
+ [ c = c ]
+ echo -e '\c'
+ hostname
+ HOST_NAME=beaglebone
+ test -z beaglebone
+ test -z beaglebone
+ echo beaglebone
+ cut -d. -f1
+ HOST_NAME=beaglebone
+ display --to SCREEN --type PLAIN VERSIONLINE 'Rootkit Hunter' 1.4.2
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN --type PLAIN VERSIONLINE Rootkit Hunter 1.4.2'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=VERSIONLINE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN = LOG -o SCREEN = SCREEN+LOG
+ WRITETOLOG=0
+ [ 1 -eq 0 -a 0 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n VERSIONLINE ]
+ grep -a ^VERSIONLINE: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='[ $1 version $2 ]'
+ [ 0 -eq 1 ]
+ [ -z '[ $1 version $2 ]' ]
+ echo '[ $1 version $2 ]'
+ sed -e 's/`/\\`/g'
+ LINE1='[ $1 version $2 ]'
+ test -n '[ $1 version $2 ]'
+ eval 'echo "[ $1 version $2 ]" | sed -e '\''s/;/\;/g'\'
+ echo '[ Rootkit Hunter version 1.4.2 ]'
+ sed -e 's/;/\;/g'
+ LINE1='[ Rootkit Hunter version 1.4.2 ]'
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '[ Rootkit Hunter version 1.4.2 ]'
[ Rootkit Hunter version 1.4.2 ]
+ [ 0 -eq 1 ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ [ 0 -eq 0 ]
+ [ -n beaglebone ]
+ display --to LOG --type PLAIN VERSIONLINE2 'Rootkit Hunter' 1.4.2 beaglebone
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type PLAIN VERSIONLINE2 Rootkit Hunter 1.4.2 beaglebone'
+ [ 8 -le 0 ]
+ [ 8 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 6 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 4 -ge 1 ]
+ MSG=VERSIONLINE2
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n VERSIONLINE2 ]
+ grep -a ^VERSIONLINE2: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Running $1 version $2 on $3'
+ [ 0 -eq 1 ]
+ [ -z 'Running $1 version $2 on $3' ]
+ echo 'Running $1 version $2 on $3'
+ sed -e 's/`/\\`/g'
+ LINE1='Running $1 version $2 on $3'
+ test -n 'Running $1 version $2 on $3'
+ eval 'echo "Running $1 version $2 on $3" | sed -e '\''s/;/\;/g'\'
+ echo 'Running Rootkit Hunter version 1.4.2 on beaglebone'
+ sed -e 's/;/\;/g'
+ LINE1='Running Rootkit Hunter version 1.4.2 on beaglebone'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:43]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:21:43] Running Rootkit Hunter version 1.4.2 on beaglebone'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:43] Running Rootkit Hunter version 1.4.2 on beaglebone'
+ [ 0 -eq 1 ]
+ echo '[04:21:43] Running Rootkit Hunter version 1.4.2 on beaglebone'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ date
+ display --to LOG --type INFO --nl RKH_STARTDATE 'Sun Oct  4 04:21:43 MDT 2015'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl RKH_STARTDATE Sun Oct  4 04:21:43 MDT 2015'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=RKH_STARTDATE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n RKH_STARTDATE ]
+ cut -d: -f2-
+ grep -a ^RKH_STARTDATE: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ LINE1='Start date is $1'
+ [ 0 -eq 1 ]
+ [ -z 'Start date is $1' ]
+ sed -e 's/`/\\`/g'
+ echo 'Start date is $1'
+ LINE1='Start date is $1'
+ test -n 'Start date is $1'
+ eval 'echo "Start date is $1" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Start date is Sun Oct  4 04:21:43 MDT 2015'
+ LINE1='Start date is Sun Oct  4 04:21:43 MDT 2015'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:43]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:43]'
+ [ -n Info ]
+ LOGLINE1='[04:21:43] Info: Start date is Sun Oct  4 04:21:43 MDT 2015'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:43] Info: Start date is Sun Oct  4 04:21:43 MDT 2015'
+ [ 0 -eq 1 ]
+ echo '[04:21:43] Info: Start date is Sun Oct  4 04:21:43 MDT 2015'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type PLAIN --nl CONFIG_CHECK_START
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type PLAIN --nl CONFIG_CHECK_START'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ NL=1
+ shift
+ [ 1 -ge 1 ]
+ MSG=CONFIG_CHECK_START
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_CHECK_START ]
+ grep -a ^CONFIG_CHECK_START: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Checking configuration file and command-line options...'
+ [ 0 -eq 1 ]
+ [ -z 'Checking configuration file and command-line options...' ]
+ echo 'Checking configuration file and command-line options...'
+ sed -e 's/`/\\`/g'
+ LINE1='Checking configuration file and command-line options...'
+ test -n 'Checking configuration file and command-line options...'
+ eval 'echo "Checking configuration file and command-line options..." | sed -e '\''s/;/\;/g'\'
+ echo 'Checking configuration file and command-line options...'
+ sed -e 's/;/\;/g'
+ LINE1='Checking configuration file and command-line options...'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:44]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:44]'
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:21:44] Checking configuration file and command-line options...'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:44] Checking configuration file and command-line options...'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:44] Checking configuration file and command-line options...'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO OPSYS FreeBSD
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO OPSYS FreeBSD'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=OPSYS
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n OPSYS ]
+ grep -a ^OPSYS: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Detected operating system is '\''$1'\'
+ [ 0 -eq 1 ]
+ [ -z 'Detected operating system is '\''$1'\' ]
+ echo 'Detected operating system is '\''$1'\'
+ sed -e 's/`/\\`/g'
+ LINE1='Detected operating system is '\''$1'\'
+ test -n 'Detected operating system is '\''$1'\'
+ eval 'echo "Detected operating system is '\''$1'\''" | sed -e '\''s/;/\;/g'\'
+ echo 'Detected operating system is '\''FreeBSD'\'
+ sed -e 's/;/\;/g'
+ LINE1='Detected operating system is '\''FreeBSD'\'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:44]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:44] Info: Detected operating system is '\''FreeBSD'\'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:44] Info: Detected operating system is '\''FreeBSD'\'
+ [ 0 -eq 1 ]
+ echo '[04:21:44] Info: Detected operating system is '\''FreeBSD'\'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ [ -s /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
+ grep ^OS: /usr/local/var/lib/rkhunter/db/rkhunter.dat
+ sed -e s/^OS://
+ RKHTMPVAR='FreeBSD 10.2-STABLE'
+ [ -n 'FreeBSD 10.2-STABLE' ]
+ display --to LOG --type INFO PROPUPD_OSNAME_FOUND 'FreeBSD 10.2-STABLE'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO PROPUPD_OSNAME_FOUND FreeBSD 10.2-STABLE'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=PROPUPD_OSNAME_FOUND
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n PROPUPD_OSNAME_FOUND ]
+ grep -a ^PROPUPD_OSNAME_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Found O/S name: $1'
+ [ 0 -eq 1 ]
+ [ -z 'Found O/S name: $1' ]
+ echo 'Found O/S name: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='Found O/S name: $1'
+ test -n 'Found O/S name: $1'
+ eval 'echo "Found O/S name: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'Found O/S name: FreeBSD 10.2-STABLE'
+ sed -e 's/;/\;/g'
+ LINE1='Found O/S name: FreeBSD 10.2-STABLE'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:44]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:44] Info: Found O/S name: FreeBSD 10.2-STABLE'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:44] Info: Found O/S name: FreeBSD 10.2-STABLE'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:44] Info: Found O/S name: FreeBSD 10.2-STABLE'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_CMDLINE '/usr/local/bin/rkhunter --enable filesystem --check --debug'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_CMDLINE /usr/local/bin/rkhunter --enable filesystem --check --debug'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_CMDLINE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_CMDLINE ]
+ grep -a ^CONFIG_CMDLINE: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Command line is $1'
+ [ 0 -eq 1 ]
+ [ -z 'Command line is $1' ]
+ echo 'Command line is $1'
+ sed -e 's/`/\\`/g'
+ LINE1='Command line is $1'
+ test -n 'Command line is $1'
+ eval 'echo "Command line is $1" | sed -e '\''s/;/\;/g'\'
+ echo 'Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
+ sed -e 's/;/\;/g'
+ LINE1='Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:44]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:44] Info: Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:44] Info: Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
+ [ 0 -eq 1 ]
+ echo '[04:21:44] Info: Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test 1 -eq 1
+ display --to LOG --type INFO CONFIG_DEBUGFILE /tmp/rkhunter-debug.5iMmvgeVys
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_DEBUGFILE /tmp/rkhunter-debug.5iMmvgeVys'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_DEBUGFILE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_DEBUGFILE ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^CONFIG_DEBUGFILE: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Debug file is $1'
+ [ 0 -eq 1 ]
+ [ -z 'Debug file is $1' ]
+ sed -e 's/`/\\`/g'
+ echo 'Debug file is $1'
+ LINE1='Debug file is $1'
+ test -n 'Debug file is $1'
+ eval 'echo "Debug file is $1" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
+ LINE1='Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:44]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:44] Info: Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:44] Info: Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
+ [ 0 -eq 1 ]
+ echo '[04:21:44] Info: Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_ENVSHELL /bin/tcsh sh
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_ENVSHELL /bin/tcsh sh'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=CONFIG_ENVSHELL
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_ENVSHELL ]
+ grep -a ^CONFIG_ENVSHELL: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Environment shell is $1; rkhunter is using $2'
+ [ 0 -eq 1 ]
+ [ -z 'Environment shell is $1; rkhunter is using $2' ]
+ echo 'Environment shell is $1; rkhunter is using $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Environment shell is $1; rkhunter is using $2'
+ test -n 'Environment shell is $1; rkhunter is using $2'
+ eval 'echo "Environment shell is $1; rkhunter is using $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Environment shell is /bin/tcsh; rkhunter is using sh'
+ sed -e 's/;/\;/g'
+ LINE1='Environment shell is /bin/tcsh; rkhunter is using sh'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:45]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:45] Info: Environment shell is /bin/tcsh; rkhunter is using sh'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:45] Info: Environment shell is /bin/tcsh; rkhunter is using sh'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:45] Info: Environment shell is /bin/tcsh; rkhunter is using sh'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_CONFIGFILE /usr/local/etc/rkhunter.conf
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_CONFIGFILE /usr/local/etc/rkhunter.conf'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_CONFIGFILE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_CONFIGFILE ]
+ grep -a ^CONFIG_CONFIGFILE: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Using configuration file '\''$1'\'
+ [ 0 -eq 1 ]
+ [ -z 'Using configuration file '\''$1'\' ]
+ echo 'Using configuration file '\''$1'\'
+ sed -e 's/`/\\`/g'
+ LINE1='Using configuration file '\''$1'\'
+ test -n 'Using configuration file '\''$1'\'
+ eval 'echo "Using configuration file '\''$1'\''" | sed -e '\''s/;/\;/g'\'
+ echo 'Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
+ sed -e 's/;/\;/g'
+ LINE1='Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:45]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:45] Info: Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:45] Info: Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
+ [ 0 -eq 1 ]
+ echo '[04:21:45] Info: Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test -n ''
+ [ -n '' ]
+ display --to LOG --type INFO CONFIG_INSTALLDIR /usr/local
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_INSTALLDIR /usr/local'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_INSTALLDIR
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_INSTALLDIR ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^CONFIG_INSTALLDIR: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Installation directory is '\''$1'\'
+ [ 0 -eq 1 ]
+ [ -z 'Installation directory is '\''$1'\' ]
+ sed -e 's/`/\\`/g'
+ echo 'Installation directory is '\''$1'\'
+ LINE1='Installation directory is '\''$1'\'
+ test -n 'Installation directory is '\''$1'\'
+ eval 'echo "Installation directory is '\''$1'\''" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Installation directory is '\''/usr/local'\'
+ LINE1='Installation directory is '\''/usr/local'\'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:45]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:45] Info: Installation directory is '\''/usr/local'\'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:45] Info: Installation directory is '\''/usr/local'\'
+ [ 0 -eq 1 ]
+ echo '[04:21:45] Info: Installation directory is '\''/usr/local'\'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_LANGUAGE en
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_LANGUAGE en'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_LANGUAGE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_LANGUAGE ]
+ grep -a ^CONFIG_LANGUAGE: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Using language '\''$1'\'
+ [ 0 -eq 1 ]
+ [ -z 'Using language '\''$1'\' ]
+ echo 'Using language '\''$1'\'
+ sed -e 's/`/\\`/g'
+ LINE1='Using language '\''$1'\'
+ test -n 'Using language '\''$1'\'
+ eval 'echo "Using language '\''$1'\''" | sed -e '\''s/;/\;/g'\'
+ echo 'Using language '\''en'\'
+ sed -e 's/;/\;/g'
+ LINE1='Using language '\''en'\'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:45]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:45] Info: Using language '\''en'\'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:45] Info: Using language '\''en'\'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:45] Info: Using language '\''en'\'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_DBDIR /usr/local/var/lib/rkhunter/db
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_DBDIR /usr/local/var/lib/rkhunter/db'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_DBDIR
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_DBDIR ]
+ grep -a ^CONFIG_DBDIR: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Using '\''$1'\'' as the database directory'
+ [ 0 -eq 1 ]
+ [ -z 'Using '\''$1'\'' as the database directory' ]
+ echo 'Using '\''$1'\'' as the database directory'
+ sed -e 's/`/\\`/g'
+ LINE1='Using '\''$1'\'' as the database directory'
+ test -n 'Using '\''$1'\'' as the database directory'
+ eval 'echo "Using '\''$1'\'' as the database directory" | sed -e '\''s/;/\;/g'\'
+ echo 'Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
+ sed -e 's/;/\;/g'
+ LINE1='Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:45]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:45] Info: Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:45] Info: Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
+ [ 0 -eq 1 ]
+ echo '[04:21:45] Info: Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_SCRIPTDIR /usr/local/lib/rkhunter/scripts
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_SCRIPTDIR /usr/local/lib/rkhunter/scripts'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_SCRIPTDIR
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_SCRIPTDIR ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^CONFIG_SCRIPTDIR: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Using '\''$1'\'' as the support script directory'
+ [ 0 -eq 1 ]
+ [ -z 'Using '\''$1'\'' as the support script directory' ]
+ sed -e 's/`/\\`/g'
+ echo 'Using '\''$1'\'' as the support script directory'
+ LINE1='Using '\''$1'\'' as the support script directory'
+ test -n 'Using '\''$1'\'' as the support script directory'
+ eval 'echo "Using '\''$1'\'' as the support script directory" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
+ LINE1='Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:45]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:45] Info: Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:45] Info: Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
+ [ 0 -eq 1 ]
+ echo '[04:21:45] Info: Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_BINDIR '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_BINDIR /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_BINDIR
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_BINDIR ]
+ grep -a ^CONFIG_BINDIR: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Using '\''$1'\'' as the command directories'
+ [ 0 -eq 1 ]
+ [ -z 'Using '\''$1'\'' as the command directories' ]
+ echo 'Using '\''$1'\'' as the command directories'
+ sed -e 's/`/\\`/g'
+ LINE1='Using '\''$1'\'' as the command directories'
+ test -n 'Using '\''$1'\'' as the command directories'
+ eval 'echo "Using '\''$1'\'' as the command directories" | sed -e '\''s/;/\;/g'\'
+ echo 'Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
+ sed -e 's/;/\;/g'
+ LINE1='Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:46]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:46] Info: Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:46] Info: Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:46] Info: Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO CONFIG_TMPDIR /usr/local/var/lib/rkhunter/tmp
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_TMPDIR /usr/local/var/lib/rkhunter/tmp'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_TMPDIR
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_TMPDIR ]
+ grep -a ^CONFIG_TMPDIR: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Using '\''$1'\'' as the temporary directory'
+ [ 0 -eq 1 ]
+ [ -z 'Using '\''$1'\'' as the temporary directory' ]
+ echo 'Using '\''$1'\'' as the temporary directory'
+ sed -e 's/`/\\`/g'
+ LINE1='Using '\''$1'\'' as the temporary directory'
+ test -n 'Using '\''$1'\'' as the temporary directory'
+ eval 'echo "Using '\''$1'\'' as the temporary directory" | sed -e '\''s/;/\;/g'\'
+ echo 'Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
+ sed -e 's/;/\;/g'
+ LINE1='Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:46]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:46] Info: Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:46] Info: Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
+ [ 0 -eq 1 ]
+ echo '[04:21:46] Info: Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ [ 1 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ -z '' ]
+ display --to LOG --type INFO CONFIG_NO_MAIL_ON_WARN
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_NO_MAIL_ON_WARN'
+ [ 5 -le 0 ]
+ [ 5 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 3 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=CONFIG_NO_MAIL_ON_WARN
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_NO_MAIL_ON_WARN ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^CONFIG_NO_MAIL_ON_WARN: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='No mail-on-warning address configured'
+ [ 0 -eq 1 ]
+ [ -z 'No mail-on-warning address configured' ]
+ sed -e 's/`/\\`/g'
+ echo 'No mail-on-warning address configured'
+ LINE1='No mail-on-warning address configured'
+ test -n 'No mail-on-warning address configured'
+ eval 'echo "No mail-on-warning address configured" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'No mail-on-warning address configured'
+ LINE1='No mail-on-warning address configured'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:46]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:46] Info: No mail-on-warning address configured'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:46] Info: No mail-on-warning address configured'
+ [ 0 -eq 1 ]
+ echo '[04:21:46] Info: No mail-on-warning address configured'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test 1 -eq 1
+ display --to LOG --type INFO CONFIG_X_AUTO
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_X_AUTO'
+ [ 5 -le 0 ]
+ [ 5 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 3 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=CONFIG_X_AUTO
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_X_AUTO ]
+ grep -a ^CONFIG_X_AUTO: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='X will be automatically detected'
+ [ 0 -eq 1 ]
+ [ -z 'X will be automatically detected' ]
+ echo 'X will be automatically detected'
+ sed -e 's/`/\\`/g'
+ LINE1='X will be automatically detected'
+ test -n 'X will be automatically detected'
+ eval 'echo "X will be automatically detected" | sed -e '\''s/;/\;/g'\'
+ echo 'X will be automatically detected'
+ sed -e 's/;/\;/g'
+ LINE1='X will be automatically detected'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:46]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:46] Info: X will be automatically detected'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:46] Info: X will be automatically detected'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:46] Info: X will be automatically detected'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test 0 -eq 1
+ echo basename
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=BASENAME
+ eval echo '$BASENAME_CMD'
+ echo /usr/bin/basename
+ RKHTMPVAR=/usr/bin/basename
+ [ -n /usr/bin/basename ]
+ display --to LOG --type INFO FOUND_CMD basename /usr/bin/basename
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD basename /usr/bin/basename'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''basename'\'' command: /usr/bin/basename'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''basename'\'' command: /usr/bin/basename'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:46]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:46] Info: Found the '\''basename'\'' command: /usr/bin/basename'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:46] Info: Found the '\''basename'\'' command: /usr/bin/basename'
+ [ 0 -eq 1 ]
+ echo '[04:21:46] Info: Found the '\''basename'\'' command: /usr/bin/basename'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo diff
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=DIFF
+ eval echo '$DIFF_CMD'
+ echo /usr/bin/diff
+ RKHTMPVAR=/usr/bin/diff
+ [ -n /usr/bin/diff ]
+ display --to LOG --type INFO FOUND_CMD diff /usr/bin/diff
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD diff /usr/bin/diff'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ sed -e 's/`/\\`/g'
+ echo 'Found the '\''$1'\'' command: $2'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Found the '\''diff'\'' command: /usr/bin/diff'
+ LINE1='Found the '\''diff'\'' command: /usr/bin/diff'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:47]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:47] Info: Found the '\''diff'\'' command: /usr/bin/diff'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:47] Info: Found the '\''diff'\'' command: /usr/bin/diff'
+ [ 0 -eq 1 ]
+ echo '[04:21:47] Info: Found the '\''diff'\'' command: /usr/bin/diff'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo dirname
+ RKHTMPVAR=DIRNAME
+ eval echo '$DIRNAME_CMD'
+ echo /usr/bin/dirname
+ RKHTMPVAR=/usr/bin/dirname
+ [ -n /usr/bin/dirname ]
+ display --to LOG --type INFO FOUND_CMD dirname /usr/bin/dirname
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD dirname /usr/bin/dirname'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ sed -e 's/`/\\`/g'
+ echo 'Found the '\''$1'\'' command: $2'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Found the '\''dirname'\'' command: /usr/bin/dirname'
+ LINE1='Found the '\''dirname'\'' command: /usr/bin/dirname'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:47]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:47] Info: Found the '\''dirname'\'' command: /usr/bin/dirname'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:47] Info: Found the '\''dirname'\'' command: /usr/bin/dirname'
+ [ 0 -eq 1 ]
+ echo '[04:21:47] Info: Found the '\''dirname'\'' command: /usr/bin/dirname'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo file
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=FILE
+ eval echo '$FILE_CMD'
+ echo /usr/bin/file
+ RKHTMPVAR=/usr/bin/file
+ [ -n /usr/bin/file ]
+ display --to LOG --type INFO FOUND_CMD file /usr/bin/file
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD file /usr/bin/file'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''file'\'' command: /usr/bin/file'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''file'\'' command: /usr/bin/file'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:47]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:47] Info: Found the '\''file'\'' command: /usr/bin/file'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:47] Info: Found the '\''file'\'' command: /usr/bin/file'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:47] Info: Found the '\''file'\'' command: /usr/bin/file'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo find
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=FIND
+ eval echo '$FIND_CMD'
+ echo /usr/bin/find
+ RKHTMPVAR=/usr/bin/find
+ [ -n /usr/bin/find ]
+ display --to LOG --type INFO FOUND_CMD find /usr/bin/find
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD find /usr/bin/find'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''find'\'' command: /usr/bin/find'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''find'\'' command: /usr/bin/find'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:47]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:47] Info: Found the '\''find'\'' command: /usr/bin/find'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:47] Info: Found the '\''find'\'' command: /usr/bin/find'
+ [ 0 -eq 1 ]
+ echo '[04:21:47] Info: Found the '\''find'\'' command: /usr/bin/find'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo ifconfig
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=IFCONFIG
+ eval echo '$IFCONFIG_CMD'
+ echo /sbin/ifconfig
+ RKHTMPVAR=/sbin/ifconfig
+ [ -n /sbin/ifconfig ]
+ display --to LOG --type INFO FOUND_CMD ifconfig /sbin/ifconfig
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ifconfig /sbin/ifconfig'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ sed -e 's/`/\\`/g'
+ echo 'Found the '\''$1'\'' command: $2'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Found the '\''ifconfig'\'' command: /sbin/ifconfig'
+ LINE1='Found the '\''ifconfig'\'' command: /sbin/ifconfig'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:48]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:48] Info: Found the '\''ifconfig'\'' command: /sbin/ifconfig'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:48] Info: Found the '\''ifconfig'\'' command: /sbin/ifconfig'
+ [ 0 -eq 1 ]
+ echo '[04:21:48] Info: Found the '\''ifconfig'\'' command: /sbin/ifconfig'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo ip
+ RKHTMPVAR=IP
+ eval echo '$IP_CMD'
+ echo
+ RKHTMPVAR=''
+ [ -n '' ]
+ display --to LOG --type INFO NOT_FOUND_CMD ip
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO NOT_FOUND_CMD ip'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=NOT_FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n NOT_FOUND_CMD ]
+ grep -a ^NOT_FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Unable to find the '\''$1'\'' command'
+ [ 0 -eq 1 ]
+ [ -z 'Unable to find the '\''$1'\'' command' ]
+ echo 'Unable to find the '\''$1'\'' command'
+ sed -e 's/`/\\`/g'
+ LINE1='Unable to find the '\''$1'\'' command'
+ test -n 'Unable to find the '\''$1'\'' command'
+ eval 'echo "Unable to find the '\''$1'\'' command" | sed -e '\''s/;/\;/g'\'
+ echo 'Unable to find the '\''ip'\'' command'
+ sed -e 's/;/\;/g'
+ LINE1='Unable to find the '\''ip'\'' command'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:48]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:48] Info: Unable to find the '\''ip'\'' command'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:48] Info: Unable to find the '\''ip'\'' command'
+ [ 0 -eq 1 ]
+ echo '[04:21:48] Info: Unable to find the '\''ip'\'' command'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo ipcs
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=IPCS
+ eval echo '$IPCS_CMD'
+ echo /usr/bin/ipcs
+ RKHTMPVAR=/usr/bin/ipcs
+ [ -n /usr/bin/ipcs ]
+ display --to LOG --type INFO FOUND_CMD ipcs /usr/bin/ipcs
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ipcs /usr/bin/ipcs'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''ipcs'\'' command: /usr/bin/ipcs'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''ipcs'\'' command: /usr/bin/ipcs'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:48]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:48] Info: Found the '\''ipcs'\'' command: /usr/bin/ipcs'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:48] Info: Found the '\''ipcs'\'' command: /usr/bin/ipcs'
+ [ 0 -eq 1 ]
+ echo '[04:21:48] Info: Found the '\''ipcs'\'' command: /usr/bin/ipcs'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo ldd
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=LDD
+ eval echo '$LDD_CMD'
+ echo /usr/bin/ldd
+ RKHTMPVAR=/usr/bin/ldd
+ [ -n /usr/bin/ldd ]
+ display --to LOG --type INFO FOUND_CMD ldd /usr/bin/ldd
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ldd /usr/bin/ldd'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ sed -e 's/`/\\`/g'
+ echo 'Found the '\''$1'\'' command: $2'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Found the '\''ldd'\'' command: /usr/bin/ldd'
+ LINE1='Found the '\''ldd'\'' command: /usr/bin/ldd'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:48]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:48] Info: Found the '\''ldd'\'' command: /usr/bin/ldd'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:48] Info: Found the '\''ldd'\'' command: /usr/bin/ldd'
+ [ 0 -eq 1 ]
+ echo '[04:21:48] Info: Found the '\''ldd'\'' command: /usr/bin/ldd'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo lsattr
+ RKHTMPVAR=LSATTR
+ eval echo '$LSATTR_CMD'
+ echo
+ RKHTMPVAR=''
+ [ -n '' ]
+ display --to LOG --type INFO NOT_FOUND_CMD lsattr
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO NOT_FOUND_CMD lsattr'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=NOT_FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n NOT_FOUND_CMD ]
+ grep -a ^NOT_FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Unable to find the '\''$1'\'' command'
+ [ 0 -eq 1 ]
+ [ -z 'Unable to find the '\''$1'\'' command' ]
+ echo 'Unable to find the '\''$1'\'' command'
+ sed -e 's/`/\\`/g'
+ LINE1='Unable to find the '\''$1'\'' command'
+ test -n 'Unable to find the '\''$1'\'' command'
+ eval 'echo "Unable to find the '\''$1'\'' command" | sed -e '\''s/;/\;/g'\'
+ echo 'Unable to find the '\''lsattr'\'' command'
+ sed -e 's/;/\;/g'
+ LINE1='Unable to find the '\''lsattr'\'' command'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:48]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:48] Info: Unable to find the '\''lsattr'\'' command'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:48] Info: Unable to find the '\''lsattr'\'' command'
+ [ 0 -eq 1 ]
+ echo '[04:21:48] Info: Unable to find the '\''lsattr'\'' command'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo lsmod
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=LSMOD
+ eval echo '$LSMOD_CMD'
+ echo
+ RKHTMPVAR=''
+ [ -n '' ]
+ display --to LOG --type INFO NOT_FOUND_CMD lsmod
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO NOT_FOUND_CMD lsmod'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=NOT_FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n NOT_FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^NOT_FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Unable to find the '\''$1'\'' command'
+ [ 0 -eq 1 ]
+ [ -z 'Unable to find the '\''$1'\'' command' ]
+ sed -e 's/`/\\`/g'
+ echo 'Unable to find the '\''$1'\'' command'
+ LINE1='Unable to find the '\''$1'\'' command'
+ test -n 'Unable to find the '\''$1'\'' command'
+ eval 'echo "Unable to find the '\''$1'\'' command" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Unable to find the '\''lsmod'\'' command'
+ LINE1='Unable to find the '\''lsmod'\'' command'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:49]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:49] Info: Unable to find the '\''lsmod'\'' command'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:49] Info: Unable to find the '\''lsmod'\'' command'
+ [ 0 -eq 1 ]
+ echo '[04:21:49] Info: Unable to find the '\''lsmod'\'' command'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo lsof
+ RKHTMPVAR=LSOF
+ eval echo '$LSOF_CMD'
+ echo /usr/local/sbin/lsof
+ RKHTMPVAR=/usr/local/sbin/lsof
+ [ -n /usr/local/sbin/lsof ]
+ display --to LOG --type INFO FOUND_CMD lsof /usr/local/sbin/lsof
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD lsof /usr/local/sbin/lsof'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:49]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:49] Info: Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:49] Info: Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
+ [ 0 -eq 1 ]
+ echo '[04:21:49] Info: Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo mktemp
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=MKTEMP
+ eval echo '$MKTEMP_CMD'
+ echo /usr/bin/mktemp
+ RKHTMPVAR=/usr/bin/mktemp
+ [ -n /usr/bin/mktemp ]
+ display --to LOG --type INFO FOUND_CMD mktemp /usr/bin/mktemp
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD mktemp /usr/bin/mktemp'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''mktemp'\'' command: /usr/bin/mktemp'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''mktemp'\'' command: /usr/bin/mktemp'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:49]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:49] Info: Found the '\''mktemp'\'' command: /usr/bin/mktemp'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:49] Info: Found the '\''mktemp'\'' command: /usr/bin/mktemp'
+ [ 0 -eq 1 ]
+ echo '[04:21:49] Info: Found the '\''mktemp'\'' command: /usr/bin/mktemp'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo netstat
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=NETSTAT
+ eval echo '$NETSTAT_CMD'
+ echo /usr/bin/netstat
+ RKHTMPVAR=/usr/bin/netstat
+ [ -n /usr/bin/netstat ]
+ display --to LOG --type INFO FOUND_CMD netstat /usr/bin/netstat
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD netstat /usr/bin/netstat'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ sed -e 's/`/\\`/g'
+ echo 'Found the '\''$1'\'' command: $2'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Found the '\''netstat'\'' command: /usr/bin/netstat'
+ LINE1='Found the '\''netstat'\'' command: /usr/bin/netstat'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:49]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:49] Info: Found the '\''netstat'\'' command: /usr/bin/netstat'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:49] Info: Found the '\''netstat'\'' command: /usr/bin/netstat'
+ [ 0 -eq 1 ]
+ echo '[04:21:49] Info: Found the '\''netstat'\'' command: /usr/bin/netstat'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo perl
+ RKHTMPVAR=PERL
+ eval echo '$PERL_CMD'
+ echo /usr/local/bin/perl
+ RKHTMPVAR=/usr/local/bin/perl
+ [ -n /usr/local/bin/perl ]
+ display --to LOG --type INFO FOUND_CMD perl /usr/local/bin/perl
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD perl /usr/local/bin/perl'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Found the '\''perl'\'' command: /usr/local/bin/perl'
+ LINE1='Found the '\''perl'\'' command: /usr/local/bin/perl'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:50]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:50] Info: Found the '\''perl'\'' command: /usr/local/bin/perl'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:50] Info: Found the '\''perl'\'' command: /usr/local/bin/perl'
+ [ 0 -eq 1 ]
+ echo '[04:21:50] Info: Found the '\''perl'\'' command: /usr/local/bin/perl'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo pgrep
+ RKHTMPVAR=PGREP
+ eval echo '$PGREP_CMD'
+ echo /bin/pgrep
+ RKHTMPVAR=/bin/pgrep
+ [ -n /bin/pgrep ]
+ display --to LOG --type INFO FOUND_CMD pgrep /bin/pgrep
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD pgrep /bin/pgrep'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''pgrep'\'' command: /bin/pgrep'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''pgrep'\'' command: /bin/pgrep'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:50]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:50] Info: Found the '\''pgrep'\'' command: /bin/pgrep'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:50] Info: Found the '\''pgrep'\'' command: /bin/pgrep'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:50] Info: Found the '\''pgrep'\'' command: /bin/pgrep'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo ps
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=PS
+ eval echo '$PS_CMD'
+ echo /bin/ps
+ RKHTMPVAR=/bin/ps
+ [ -n /bin/ps ]
+ display --to LOG --type INFO FOUND_CMD ps /bin/ps
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ps /bin/ps'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''ps'\'' command: /bin/ps'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''ps'\'' command: /bin/ps'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:50]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:50] Info: Found the '\''ps'\'' command: /bin/ps'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:50] Info: Found the '\''ps'\'' command: /bin/ps'
+ [ 0 -eq 1 ]
+ echo '[04:21:50] Info: Found the '\''ps'\'' command: /bin/ps'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo pwd
+ RKHTMPVAR=PWD
+ eval echo '$PWD_CMD'
+ echo /bin/pwd
+ RKHTMPVAR=/bin/pwd
+ [ -n /bin/pwd ]
+ display --to LOG --type INFO FOUND_CMD pwd /bin/pwd
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD pwd /bin/pwd'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ sed -e 's/`/\\`/g'
+ echo 'Found the '\''$1'\'' command: $2'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''pwd'\'' command: /bin/pwd'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''pwd'\'' command: /bin/pwd'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:50]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:50] Info: Found the '\''pwd'\'' command: /bin/pwd'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:50] Info: Found the '\''pwd'\'' command: /bin/pwd'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:50] Info: Found the '\''pwd'\'' command: /bin/pwd'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo readlink
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=READLINK
+ eval echo '$READLINK_CMD'
+ echo /usr/bin/readlink
+ RKHTMPVAR=/usr/bin/readlink
+ [ -n /usr/bin/readlink ]
+ display --to LOG --type INFO FOUND_CMD readlink /usr/bin/readlink
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD readlink /usr/bin/readlink'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''readlink'\'' command: /usr/bin/readlink'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''readlink'\'' command: /usr/bin/readlink'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:50]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:50] Info: Found the '\''readlink'\'' command: /usr/bin/readlink'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:50] Info: Found the '\''readlink'\'' command: /usr/bin/readlink'
+ [ 0 -eq 1 ]
+ echo '[04:21:50] Info: Found the '\''readlink'\'' command: /usr/bin/readlink'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo stat
+ tr '[:lower:]' '[:upper:]'
+ RKHTMPVAR=STAT
+ eval echo '$STAT_CMD'
+ echo /usr/bin/stat
+ RKHTMPVAR=/usr/bin/stat
+ [ -n /usr/bin/stat ]
+ display --to LOG --type INFO FOUND_CMD stat /usr/bin/stat
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD stat /usr/bin/stat'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ echo 'Found the '\''$1'\'' command: $2'
+ sed -e 's/`/\\`/g'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ echo 'Found the '\''stat'\'' command: /usr/bin/stat'
+ sed -e 's/;/\;/g'
+ LINE1='Found the '\''stat'\'' command: /usr/bin/stat'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:51]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:51] Info: Found the '\''stat'\'' command: /usr/bin/stat'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:51] Info: Found the '\''stat'\'' command: /usr/bin/stat'
+ [ 0 -eq 1 ]
+ echo '[04:21:51] Info: Found the '\''stat'\'' command: /usr/bin/stat'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ tr '[:lower:]' '[:upper:]'
+ echo strings
+ RKHTMPVAR=STRINGS
+ eval echo '$STRINGS_CMD'
+ echo /usr/bin/strings
+ RKHTMPVAR=/usr/bin/strings
+ [ -n /usr/bin/strings ]
+ display --to LOG --type INFO FOUND_CMD strings /usr/bin/strings
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD strings /usr/bin/strings'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ MSG=FOUND_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FOUND_CMD ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Found the '\''$1'\'' command: $2'
+ [ 0 -eq 1 ]
+ [ -z 'Found the '\''$1'\'' command: $2' ]
+ sed -e 's/`/\\`/g'
+ echo 'Found the '\''$1'\'' command: $2'
+ LINE1='Found the '\''$1'\'' command: $2'
+ test -n 'Found the '\''$1'\'' command: $2'
+ eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Found the '\''strings'\'' command: /usr/bin/strings'
+ LINE1='Found the '\''strings'\'' command: /usr/bin/strings'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:51]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:51] Info: Found the '\''strings'\'' command: /usr/bin/strings'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:51] Info: Found the '\''strings'\'' command: /usr/bin/strings'
+ [ 0 -eq 1 ]
+ echo '[04:21:51] Info: Found the '\''strings'\'' command: /usr/bin/strings'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test -n ''
+ [ 0 -eq 1 -o 0 -eq 1 ]
+ RKHTMPVAR=0
+ test 1 -eq 1
+ check_test attributes
+ echo ' filesystem local_host '
+ grep ' attributes '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ display --to LOG --type INFO ENABLED_TESTS 'filesystem local_host'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO ENABLED_TESTS filesystem local_host'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=ENABLED_TESTS
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n ENABLED_TESTS ]
+ grep -a ^ENABLED_TESTS: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Enabled tests are: $1'
+ [ 0 -eq 1 ]
+ [ -z 'Enabled tests are: $1' ]
+ echo 'Enabled tests are: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='Enabled tests are: $1'
+ test -n 'Enabled tests are: $1'
+ eval 'echo "Enabled tests are: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'Enabled tests are: filesystem local_host'
+ sed -e 's/;/\;/g'
+ LINE1='Enabled tests are: filesystem local_host'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:51]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:51] Info: Enabled tests are: filesystem local_host'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:51] Info: Enabled tests are: filesystem local_host'
+ [ 0 -eq 1 ]
+ echo '[04:21:51] Info: Enabled tests are: filesystem local_host'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to LOG --type INFO DISABLED_TESTS 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO DISABLED_TESTS deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=DISABLED_TESTS
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n DISABLED_TESTS ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^DISABLED_TESTS: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Disabled tests are: $1'
+ [ 0 -eq 1 ]
+ [ -z 'Disabled tests are: $1' ]
+ echo 'Disabled tests are: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='Disabled tests are: $1'
+ test -n 'Disabled tests are: $1'
+ eval 'echo "Disabled tests are: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ sed -e 's/;/\;/g'
+ LINE1='Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:51]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:51] Info: Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:51] Info: Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ [ 0 -eq 1 ]
+ echo '[04:21:51] Info: Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ check_test properties
+ grep ' properties '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ test 0 -eq 1
+ [ 0 -eq 1 -o 0 -eq 1 ]
+ [ 0 -eq 0 ]
+ test 1 -eq 0 -o 1 -eq 0
+ test 1 -eq 0
+ test 0 -eq 1
+ test 0 -eq 1
+ [ 1 -eq 1 ]
+ [ -n '' ]
+ [ -f /proc/ksyms ]
+ [ -f /proc/kallsyms ]
+ display --to LOG --type INFO KSYMS_MISSING
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO KSYMS_MISSING'
+ [ 5 -le 0 ]
+ [ 5 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 3 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=KSYMS_MISSING
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n KSYMS_MISSING ]
+ grep -a ^KSYMS_MISSING: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ [ 0 -eq 1 ]
+ [ -z 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.' ]
+ sed -e 's/`/\\`/g'
+ echo 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ LINE1='All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ test -n 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ eval 'echo "All ksyms and kallsyms checks will be skipped - neither file is present on the system." | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ LINE1='All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:52]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:52] Info: All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:52] Info: All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ [ 0 -eq 1 ]
+ echo '[04:21:52] Info: All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test 1 -eq 0
+ [ -n '' ]
+ [ '' = NONE ]
+ [ -n '' ]
+ [ -n /usr/local/bin/perl ]
+ display --to LOG --type INFO FILE_PROP_EPOCH_DATE_CMD /usr/local/bin/perl
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO FILE_PROP_EPOCH_DATE_CMD /usr/local/bin/perl'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=FILE_PROP_EPOCH_DATE_CMD
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILE_PROP_EPOCH_DATE_CMD ]
+ grep -a ^FILE_PROP_EPOCH_DATE_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Using '\''$1'\'' to process epoch second times'
+ [ 0 -eq 1 ]
+ [ -z 'Using '\''$1'\'' to process epoch second times' ]
+ echo 'Using '\''$1'\'' to process epoch second times'
+ sed -e 's/`/\\`/g'
+ LINE1='Using '\''$1'\'' to process epoch second times'
+ test -n 'Using '\''$1'\'' to process epoch second times'
+ eval 'echo "Using '\''$1'\'' to process epoch second times" | sed -e '\''s/;/\;/g'\'
+ echo 'Using '\''/usr/local/bin/perl'\'' to process epoch second times'
+ sed -e 's/;/\;/g'
+ LINE1='Using '\''/usr/local/bin/perl'\'' to process epoch second times'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:52]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:52] Info: Using '\''/usr/local/bin/perl'\'' to process epoch second times'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:52] Info: Using '\''/usr/local/bin/perl'\'' to process epoch second times'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:52] Info: Using '\''/usr/local/bin/perl'\'' to process epoch second times'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ check_test properties
+ grep ' properties '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ [ 0 -eq 1 ]
+ display --to LOG --type INFO LOCK_UNUSED
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO LOCK_UNUSED'
+ [ 5 -le 0 ]
+ [ 5 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 3 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=LOCK_UNUSED
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n LOCK_UNUSED ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^LOCK_UNUSED: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Locking is not being used'
+ [ 0 -eq 1 ]
+ [ -z 'Locking is not being used' ]
+ echo 'Locking is not being used'
+ sed -e 's/`/\\`/g'
+ LINE1='Locking is not being used'
+ test -n 'Locking is not being used'
+ eval 'echo "Locking is not being used" | sed -e '\''s/;/\;/g'\'
+ echo 'Locking is not being used'
+ sed -e 's/;/\;/g'
+ LINE1='Locking is not being used'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:52]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:52] Info: Locking is not being used'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:52] Info: Locking is not being used'
+ [ 0 -eq 1 ]
+ echo '[04:21:52] Info: Locking is not being used'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test 0 -eq 1
+ test 0 -eq 1
+ test 0 -eq 1
+ test 1 -eq 1 -o 1 -eq 1
+ do_system_check
+ display --to LOG --type PLAIN --nl CHECK_START
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type PLAIN --nl CHECK_START'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ NL=1
+ shift
+ [ 1 -ge 1 ]
+ MSG=CHECK_START
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CHECK_START ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^CHECK_START: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Starting system checks...'
+ [ 0 -eq 1 ]
+ [ -z 'Starting system checks...' ]
+ sed -e 's/`/\\`/g'
+ echo 'Starting system checks...'
+ LINE1='Starting system checks...'
+ test -n 'Starting system checks...'
+ eval 'echo "Starting system checks..." | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Starting system checks...'
+ LINE1='Starting system checks...'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:52]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:52]'
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:21:52] Starting system checks...'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:52] Starting system checks...'
+ [ 0 -eq 1 ]
+ echo '[04:21:52] Starting system checks...'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ do_system_check_initialisation
+ W55808A_FILES='/tmp/.../r
		       /tmp/.../a'
+ W55808A_DIRS=''
+ W55808A_KSYMS=''
+ AKIT_FILES='/usr/secure
		    /usr/doc/sys/qrt
		    /usr/doc/sys/run
		    /usr/doc/sys/crond
		    /usr/sbin/kfd
		    /usr/doc/kern/var
		    /usr/doc/kern/string.o
		    /usr/doc/kern/ava
		    /usr/doc/kern/adore.o
		    /var/log/ssh/old'
+ AKIT_DIRS='/lib/security/.config/ssh
		   /usr/doc/kern
		   /usr/doc/backup
		   /usr/doc/backup/txt
		   /lib/backup
		   /lib/backup/txt
		   /usr/doc/work
		   /usr/doc/sys
		   /var/log/ssh
		   /usr/doc/.spool
		   /usr/lib/kterm'
+ AKIT_KSYMS=''
+ AJAKIT_FILES='/dev/tux/.addr
		      /dev/tux/.proc
		      /dev/tux/.file
		      /lib/.libgh-gh/cleaner
		      /lib/.libgh-gh/Patch/patch
		      /lib/.libgh-gh/sb0k'
+ AJAKIT_DIRS='/dev/tux
		     /lib/.libgh-gh'
+ AJAKIT_KSYMS=''
+ APAKIT_FILES=/usr/share/.aPa
+ APAKIT_DIRS=''
+ APAKIT_KSYMS=''
+ APACHEWORM_FILES=/bin/.log
+ APACHEWORM_DIRS=''
+ APACHEWORM_KSYMS=''
+ ARK_FILES='/usr/lib/.ark?
		   /dev/ptyxx/.log
		   /dev/ptyxx/.file
		   /dev/ptyxx/.proc
		   /dev/ptyxx/.addr'
+ ARK_DIRS=/dev/ptyxx
+ ARK_KSYMS=''
+ BALAUR_FILES=/usr/lib/liblog.o
+ BALAUR_DIRS='/usr/lib/.kinetic
		     /usr/lib/.egcs
		     /usr/lib/.wormie'
+ BALAUR_KSYMS=''
+ BEASTKIT_FILES='/usr/sbin/arobia
			/usr/sbin/idrun
			/usr/lib/elm/arobia/elm
			/usr/lib/elm/arobia/elm/hk
			/usr/lib/elm/arobia/elm/hk.pub
			/usr/lib/elm/arobia/elm/sc
			/usr/lib/elm/arobia/elm/sd.pp
			/usr/lib/elm/arobia/elm/sdco
			/usr/lib/elm/arobia/elm/srsd'
+ BEASTKIT_DIRS=/lib/ldd.so/bktools
+ BEASTKIT_KSYMS=''
+ BEX_FILES='/usr/info/termcap.info-5.gz
		   /usr/bin/sshd2'
+ BEX_DIRS=/usr/include/bex
+ BEX_KSYMS=''
+ BOBKIT_FILES='/usr/sbin/ntpsx
		      /usr/sbin/.../bkit-ava
		      /usr/sbin/.../bkit-d
		      /usr/sbin/.../bkit-shd
		      /usr/sbin/.../bkit-f
		      /usr/include/.../proc.h
		      /usr/include/.../.bash_history
		      /usr/include/.../bkit-get
		      /usr/include/.../bkit-dl
		      /usr/include/.../bkit-screen
		      /usr/include/.../bkit-sleep
		      /usr/lib/.../bkit-adore.o
		      /usr/lib/.../ls
		      /usr/lib/.../netstat
		      /usr/lib/.../lsof
		      /usr/lib/.../bkit-ssh/bkit-shdcfg
		      /usr/lib/.../bkit-ssh/bkit-shhk
		      /usr/lib/.../bkit-ssh/bkit-pw
		      /usr/lib/.../bkit-ssh/bkit-shrs
		      /usr/lib/.../bkit-ssh/bkit-mots
		      /usr/lib/.../uconf.inv
		      /usr/lib/.../psr
		      /usr/lib/.../find
		      /usr/lib/.../pstree
		      /usr/lib/.../slocate
		      /usr/lib/.../du
		      /usr/lib/.../top'
+ BOBKIT_DIRS='/usr/sbin/...
		     /usr/include/...
		     /usr/include/.../.tmp
		     /usr/lib/...
		     /usr/lib/.../.ssh
		     /usr/lib/.../bkit-ssh
		     /usr/lib/.bkit-
		     /tmp/.bkp'
+ BOBKIT_KSYMS=''
+ BOONANA_FILES='/Library/StartupItems/OSXDriverUpdates/OSXDriverUpdates
		       /Library/StartupItems/OSXDriverUpdates/StartupParameters.plist'
+ BOONANA_DIRS=/var/root/.jnana
+ BOONANA_KSYMS=''
+ CB_FILES='/dev/srd0
		  /lib/libproc.so.2.0.6
		  /dev/mounnt
		  /etc/rc.d/init.d/init
		  /usr/bin/.zeen/..%/cl
		  /usr/bin/.zeen/..%/.x.tgz
		  /usr/bin/.zeen/..%/statdx
		  /usr/bin/.zeen/..%/wted
		  /usr/bin/.zeen/..%/write
		  /usr/bin/.zeen/..%/scan
		  /usr/bin/.zeen/..%/sc
		  /usr/bin/.zeen/..%/sl2
		  /usr/bin/.zeen/..%/wroot
		  /usr/bin/.zeen/..%/wscan
		  /usr/bin/.zeen/..%/wu
		  /usr/bin/.zeen/..%/v
		  /usr/bin/.zeen/..%/read
		  /usr/lib/sshrc
		  /usr/lib/ssh_host_key
		  /usr/lib/ssh_host_key.pub
		  /usr/lib/ssh_random_seed
		  /usr/lib/sshd_config
		  /usr/lib/shosts.equiv
		  /usr/lib/ssh_known_hosts
		  /u/zappa/.ssh/pid
		  /usr/bin/.system/..%/tcp.log
		  /usr/bin/.zeen/..%/curatare/attrib
		  /usr/bin/.zeen/..%/curatare/chattr
		  /usr/bin/.zeen/..%/curatare/ps
		  /usr/bin/.zeen/..%/curatare/pstree
		  /usr/bin/.system/..%/.x/xC.o'
+ CB_DIRS='/usr/bin/.zeen
		 /usr/bin/.zeen/..%/curatare
		 /usr/bin/.zeen/..%/scan
		 /usr/bin/.system/..%'
+ CB_KSYMS=''
+ CINIK_FILES=/tmp/.cinik
+ CINIK_DIRS=/tmp/.font-unix/.cinik
+ CINIK_KSYMS=''
+ CXKIT_FILES='/usr/lib/ldlibso
		     /usr/lib/configlibso
		     /usr/lib/shklibso
		     /usr/lib/randomlibso
		     /usr/lib/ldlibstrings.so
		     /usr/lib/ldlibdu.so
		     /usr/lib/ldlibns.so
		     /usr/include/db'
+ CXKIT_DIRS=/usr/include/cxk
+ CXKIT_KSYMS=''
+ DANNYBOYS_FILES='/dev/mdev
			 /usr/lib/libX.a'
+ DANNYBOYS_DIRS=''
+ DANNYBOYS_KSYMS=''
+ DEVIL_FILES='/var/lib/games/.src
		     /dev/dsx
		     /dev/caca
		     /dev/pro
		     /bin/bye
		     /bin/homedir
		     /usr/bin/xfss
		     /usr/sbin/tzava
		     /usr/doc/tar/.../.dracusor/stuff/holber
		     /usr/doc/tar/.../.dracusor/stuff/sense
		     /usr/doc/tar/.../.dracusor/stuff/clear
		     /usr/doc/tar/.../.dracusor/stuff/tzava
		     /usr/doc/tar/.../.dracusor/stuff/citeste
		     /usr/doc/tar/.../.dracusor/stuff/killrk
		     /usr/doc/tar/.../.dracusor/stuff/searchlog
		     /usr/doc/tar/.../.dracusor/stuff/gaoaza
		     /usr/doc/tar/.../.dracusor/stuff/cleaner
		     /usr/doc/tar/.../.dracusor/stuff/shk
		     /usr/doc/tar/.../.dracusor/stuff/srs
		     /usr/doc/tar/.../.dracusor/utile.tgz
		     /usr/doc/tar/.../.dracusor/webpage
		     /usr/doc/tar/.../.dracusor/getpsy
		     /usr/doc/tar/.../.dracusor/getbnc
		     /usr/doc/tar/.../.dracusor/getemech
		     /usr/doc/tar/.../.dracusor/localroot.sh
		     /usr/doc/tar/.../.dracusor/stuff/old/sense'
+ DEVIL_DIRS=/usr/doc/tar/.../.dracusor
+ DEVIL_KSYMS=''
+ DICA_FILES='/lib/.sso
		    /lib/.so
		    /var/run/...dica/clean
		    /var/run/...dica/dxr
		    /var/run/...dica/read
		    /var/run/...dica/write
		    /var/run/...dica/lf
		    /var/run/...dica/xl
		    /var/run/...dica/xdr
		    /var/run/...dica/psg
		    /var/run/...dica/secure
		    /var/run/...dica/rdx
		    /var/run/...dica/va
		    /var/run/...dica/cl.sh
		    /var/run/...dica/last.log
		    /usr/bin/.etc
		    /etc/sshd_config
		    /etc/ssh_host_key
		    /etc/ssh_random_seed'
+ DICA_DIRS='/var/run/...dica
		   /var/run/...dica/mh
		   /var/run/...dica/scan'
+ DICA_KSYMS=''
+ DREAMS_FILES='/dev/ttyoa
		      /dev/ttyof
		      /dev/ttyop
		      /usr/bin/sense
		      /usr/bin/sl2
		      /usr/bin/logclear
		      /usr/bin/(swapd)
		      /usr/bin/initrd
		      /usr/bin/crontabs
		      /usr/bin/snfs
		      /usr/lib/libsss
		      /usr/lib/libsnf.log
		      /usr/lib/libshtift/top
		      /usr/lib/libshtift/ps
		      /usr/lib/libshtift/netstat
		      /usr/lib/libshtift/ls
		      /usr/lib/libshtift/ifconfig
		      /usr/include/linseed.h
		      /usr/include/linpid.h
		      /usr/include/linkey.h
		      /usr/include/linconf.h
		      /usr/include/iceseed.h
		      /usr/include/icepid.h
		      /usr/include/icekey.h
		      /usr/include/iceconf.h'
+ DREAMS_DIRS='/dev/ida/.hpd
		     /usr/lib/libshtift'
+ DREAMS_KSYMS=''
+ DUARAWKZ_FILES=/usr/bin/duarawkz/loginpass
+ DUARAWKZ_DIRS=/usr/bin/duarawkz
+ DUARAWKZ_KSYMS=''
+ ENYELKM_FILES='/etc/.enyelkmHIDE^IT.ko
		       /etc/.enyelkmOCULTAR.ko'
+ ENYELKM_DIRS=''
+ ENYELKM_KSYMS=''
+ FLEA_FILES='/etc/ld.so.hash
		    /lib/security/.config/ssh/sshd_config
		    /lib/security/.config/ssh/ssh_host_key
		    /lib/security/.config/ssh/ssh_host_key.pub
		    /lib/security/.config/ssh/ssh_random_seed
		    /usr/bin/ssh2d
		    /usr/lib/ldlibns.so
		    /usr/lib/ldlibps.so
		    /usr/lib/ldlibpst.so
		    /usr/lib/ldlibdu.so
		    /usr/lib/ldlibct.so'
+ FLEA_DIRS='/lib/security/.config/ssh
		   /dev/..0
		   /dev/..0/backup'
+ FLEA_KSYMS=''
+ FREEBSD_RK_FILES='/dev/ptyp
			  /dev/ptyq
			  /dev/ptyr
			  /dev/ptys
			  /dev/ptyt
			  /dev/fd/.88/freshb-bsd
			  /dev/fd/.88/fresht
			  /dev/fd/.88/zxsniff
			  /dev/fd/.88/zxsniff.log
			  /dev/fd/.99/.ttyf00
			  /dev/fd/.99/.ttyp00
			  /dev/fd/.99/.ttyq00
			  /dev/fd/.99/.ttys00
			  /dev/fd/.99/.pwsx00
			  /etc/.acid
			  /usr/lib/.fx/sched_host.2
			  /usr/lib/.fx/random_d.2
			  /usr/lib/.fx/set_pid.2
			  /usr/lib/.fx/setrgrp.2
			  /usr/lib/.fx/TOHIDE
			  /usr/lib/.fx/cons.saver
			  /usr/lib/.fx/adore/ava/ava
			  /usr/lib/.fx/adore/adore/adore.ko
			  /bin/sysback
			  /usr/local/bin/sysback'
+ FREEBSD_RK_DIRS='/dev/fd/.88
			 /dev/fd/.99
			 /usr/lib/.fx
			 /usr/lib/.fx/adore'
+ FREEBSD_RK_KSYMS=''
+ FU_FILES='/sbin/xc
		  /usr/include/ivtype.h
		  /bin/.lib'
+ FU_DIRS=''
+ FU_KSYMS=''
+ FUCKIT_FILES='/lib/libproc.so.2.0.7
		      /dev/proc/.bash_profile
		      /dev/proc/.bashrc
		      /dev/proc/.cshrc
		      /dev/proc/fuckit/hax0r
		      /dev/proc/fuckit/hax0rshell
		      /dev/proc/fuckit/config/lports
		      /dev/proc/fuckit/config/rports
		      /dev/proc/fuckit/config/rkconf
		      /dev/proc/fuckit/config/password
		      /dev/proc/fuckit/config/progs
		      /dev/proc/fuckit/system-bins/init
		      /usr/lib/libcps.a
		      /usr/lib/libtty.a'
+ FUCKIT_DIRS='/dev/proc
		     /dev/proc/fuckit
		     /dev/proc/fuckit/system-bins
		     /dev/proc/toolz'
+ FUCKIT_KSYMS=''
+ GASKIT_FILES=/dev/dev/gaskit/sshd/sshdd
+ GASKIT_DIRS='/dev/dev
		     /dev/dev/gaskit
		     /dev/dev/gaskit/sshd'
+ GASKIT_KSYMS=''
+ HEROIN_FILES=''
+ HEROIN_DIRS=''
+ HEROIN_KSYMS=heroin
+ HJCKIT_FILES=''
+ HJCKIT_DIRS=/dev/.hijackerz
+ HJCKIT_KSYMS=''
+ IGNOKIT_FILES='/lib/defs/p
		       /lib/defs/q
		       /lib/defs/r
		       /lib/defs/s
		       /lib/defs/t
		       /usr/lib/defs/p
		       /usr/lib/defs/q
		       /usr/lib/defs/r
		       /usr/lib/defs/s
		       /usr/lib/defs/t
		       /usr/lib/.libigno/pkunsec
		       /usr/lib/.libigno/.igno/psybnc/psybnc'
+ IGNOKIT_DIRS='/usr/lib/.libigno
		      /usr/lib/.libigno/.igno'
+ IGNOKIT_KSYMS=''
+ ILLOGIC_FILES='/dev/kmod
		       /dev/dos
		       /usr/lib/crth.o
		       /usr/lib/crtz.o
		       /etc/ld.so.hash
		       /usr/bin/sia
		       /usr/bin/ssh2d
		       /lib/security/.config/sn
		       /lib/security/.config/iver
		       /lib/security/.config/uconf.inv
		       /lib/security/.config/ssh/ssh_host_key
		       /lib/security/.config/ssh/ssh_host_key.pub
		       /lib/security/.config/ssh/sshport
		       /lib/security/.config/ssh/ssh_random_seed
		       /lib/security/.config/ava
		       /lib/security/.config/cleaner
		       /lib/security/.config/lpsched
		       /lib/security/.config/sz
		       /lib/security/.config/rcp
		       /lib/security/.config/patcher
		       /lib/security/.config/pg
		       /lib/security/.config/crypt
		       /lib/security/.config/utime
		       /lib/security/.config/wget
		       /lib/security/.config/instmod
		       /lib/security/.config/bin/find
		       /lib/security/.config/bin/du
		       /lib/security/.config/bin/ls
		       /lib/security/.config/bin/psr
		       /lib/security/.config/bin/netstat
		       /lib/security/.config/bin/su
		       /lib/security/.config/bin/ping
		       /lib/security/.config/bin/passwd'
+ ILLOGIC_DIRS='/lib/security/.config
		      /lib/security/.config/ssh
		      /lib/security/.config/bin
		      /lib/security/.config/backup
		      /root/%%%/.dir
		      /root/%%%/.dir/mass-scan
		      /root/%%%/.dir/flood'
+ ILLOGIC_KSYMS=''
+ INQTANAA_FILES='/Users/w0rm-support.tgz
			/Users/InqTest.class
			/Users/com.openbundle.plist
			/Users/com.pwned.plist
			/Users/libavetanaBT.jnilib'
+ INQTANAA_DIRS='/Users/de
		       /Users/javax'
+ INQTANAA_KSYMS=''
+ INQTANAB_FILES='/Users/w0rms.love.apples.tgz
			/Users/InqTest.class
			/Users/InqTest.java
			/Users/libavetanaBT.jnilib
			/Users/InqTanaHandler
			/Users/InqTanaHandler.bundle'
+ INQTANAB_DIRS='/Users/de
		       /Users/javax'
+ INQTANAB_KSYMS=''
+ INQTANAC_FILES='/Users/applec0re.tgz
			/Users/InqTest.class
			/Users/InqTest.java
			/Users/libavetanaBT.jnilib
			/Users/environment.plist
			/Users/pwned.c
			/Users/pwned.dylib'
+ INQTANAC_DIRS='/Users/de
		       /Users/javax'
+ INQTANAC_KSYMS=''
+ INTOXONIA_FILES=''
+ INTOXONIA_DIRS=''
+ INTOXONIA_KSYMS='funces
			ixinit
			tricks
			kernel_unlink
			rootme
			hide_module
			find_sys_call_tbl'
+ IRIXRK_FILES=''
+ IRIXRK_DIRS='/dev/pts/01
		     /dev/pts/01/backup
		     /dev/pts/01/etc
		     /dev/pts/01/tmp'
+ IRIXRK_KSYMS=''
+ JYNX_FILES='/xochikit/bc
		    /xochikit/ld_poison.so
		    /omgxochi/bc
		    /omgxochi/ld_poison.so
		    /var/local/^^/bc
		    /var/local/^^/ld_poison.so'
+ JYNX_DIRS='/xochikit
		   /omgxochi
		   /var/local/^^'
+ JYNX_KSYMS=''
+ KBEAST_FILES='/usr/_h4x_/ipsecs-kbeast-v1.ko
		      /usr/_h4x_/_h4x_bd
		      /usr/_h4x_/acctlog'
+ KBEAST_DIRS=/usr/_h4x_
+ KBEAST_KSYMS='h4x_delete_module
		     h4x_getdents64
		     h4x_kill
		     h4x_open
		     h4x_read
		     h4x_rename
		     h4x_rmdir
		     h4x_tcp4_seq_show
		     h4x_write'
+ KITKO_FILES=''
+ KITKO_DIRS=/usr/src/redhat/SRPMS/...
+ KITKO_KSYMS=''
+ KNARK_FILES=/proc/knark/pids
+ KNARK_DIRS=/proc/knark
+ KNARK_KSYMS=''
+ LINUXV_FILES=/lib/ld-linuxv.so.1
+ LINUXV_DIRS='/var/opt/_so_cache
		     /var/opt/_so_cache/ld
		     /var/opt/_so_cache/lc'
+ LINUXV_KSYMS=''
+ LION_FILES='/bin/in.telnetd
		    /bin/mjy
		    /usr/man/man1/man1/lib/.lib/mjy
		    /usr/man/man1/man1/lib/.lib/in.telnetd
		    /usr/man/man1/man1/lib/.lib/.x
		    /dev/.lib/lib/scan/1i0n.sh
		    /dev/.lib/lib/scan/hack.sh
		    /dev/.lib/lib/scan/bind
		    /dev/.lib/lib/scan/randb
		    /dev/.lib/lib/scan/scan.sh
		    /dev/.lib/lib/scan/pscan
		    /dev/.lib/lib/scan/star.sh
		    /dev/.lib/lib/scan/bindx.sh
		    /dev/.lib/lib/scan/bindname.log
		    /dev/.lib/lib/1i0n.sh
		    /dev/.lib/lib/lib/netstat
		    /dev/.lib/lib/lib/dev/.1addr
		    /dev/.lib/lib/lib/dev/.1logz
		    /dev/.lib/lib/lib/dev/.1proc
		    /dev/.lib/lib/lib/dev/.1file'
+ LION_DIRS=''
+ LION_KSYMS=''
+ LOCKIT_FILES='/usr/lib/libmen.oo/.LJK2/ssh_config
		      /usr/lib/libmen.oo/.LJK2/ssh_host_key
		      /usr/lib/libmen.oo/.LJK2/ssh_host_key.pub
		      /usr/lib/libmen.oo/.LJK2/ssh_random_seed*
		      /usr/lib/libmen.oo/.LJK2/sshd_config
		      /usr/lib/libmen.oo/.LJK2/backdoor/RK1bd
		      /usr/lib/libmen.oo/.LJK2/backup/du
		      /usr/lib/libmen.oo/.LJK2/backup/ifconfig
		      /usr/lib/libmen.oo/.LJK2/backup/inetd.conf
		      /usr/lib/libmen.oo/.LJK2/backup/locate
		      /usr/lib/libmen.oo/.LJK2/backup/login
		      /usr/lib/libmen.oo/.LJK2/backup/ls
		      /usr/lib/libmen.oo/.LJK2/backup/netstat
		      /usr/lib/libmen.oo/.LJK2/backup/ps
		      /usr/lib/libmen.oo/.LJK2/backup/pstree
		      /usr/lib/libmen.oo/.LJK2/backup/rc.sysinit
		      /usr/lib/libmen.oo/.LJK2/backup/syslogd
		      /usr/lib/libmen.oo/.LJK2/backup/tcpd
		      /usr/lib/libmen.oo/.LJK2/backup/top
		      /usr/lib/libmen.oo/.LJK2/clean/RK1sauber
		      /usr/lib/libmen.oo/.LJK2/clean/RK1wted
		      /usr/lib/libmen.oo/.LJK2/hack/RK1parse
		      /usr/lib/libmen.oo/.LJK2/hack/RK1sniff
		      /usr/lib/libmen.oo/.LJK2/hide/.RK1addr
		      /usr/lib/libmen.oo/.LJK2/hide/.RK1dir
		      /usr/lib/libmen.oo/.LJK2/hide/.RK1log
		      /usr/lib/libmen.oo/.LJK2/hide/.RK1proc
		      /usr/lib/libmen.oo/.LJK2/hide/RK1phidemod.c
		      /usr/lib/libmen.oo/.LJK2/modules/README.modules
		      /usr/lib/libmen.oo/.LJK2/modules/RK1hidem.c
		      /usr/lib/libmen.oo/.LJK2/modules/RK1phide
		      /usr/lib/libmen.oo/.LJK2/sshconfig/RK1ssh'
+ LOCKIT_DIRS=/usr/lib/libmen.oo/.LJK2
+ LOCKIT_KSYMS=''
+ MRK_FILES='/dev/ida/.inet/pid
		   /dev/ida/.inet/ssh_host_key
		   /dev/ida/.inet/ssh_random_seed
		   /dev/ida/.inet/tcp.log'
+ MRK_DIRS='/dev/ida/.inet
		  /var/spool/cron/.sh'
+ MRK_KSYMS=''
+ MOODNT_FILES='/sbin/init__mood-nt-_-_cthulhu
		      /_cthulhu/mood-nt.init
		      /_cthulhu/mood-nt.conf
		      /_cthulhu/mood-nt.sniff'
+ MOODNT_DIRS=/_cthulhu
+ MOODNT_KSYMS=''
+ NIO_FILES='/var/lock/subsys/...datafile.../...net...
		   /var/lock/subsys/...datafile.../...port...
		   /var/lock/subsys/...datafile.../...ps...
		   /var/lock/subsys/...datafile.../...file...'
+ NIO_DIRS='/tmp/waza
		  /var/lock/subsys/...datafile...
		  /usr/sbin/es'
+ NIO_KSYMS=''
+ OHHARA_FILES=/var/lock/subsys/...datafile.../...datafile.../in.smbd.log
+ OHHARA_DIRS='/var/lock/subsys/...datafile...
		     /var/lock/subsys/...datafile.../...datafile...
		     /var/lock/subsys/...datafile.../...datafile.../bin
		     /var/lock/subsys/...datafile.../...datafile.../usr/bin
		     /var/lock/subsys/...datafile.../...datafile.../usr/sbin
		     /var/lock/subsys/...datafile.../...datafile.../lib/security'
+ OHHARA_KSYMS=''
+ OPTICKIT_FILES=''
+ OPTICKIT_DIRS='/dev/tux
		       /usr/bin/xchk
		       /usr/bin/xsf
		       /usr/bin/ssh2d'
+ OPTICKIT_KSYMS=''
+ OSXRK_FILES='/dev/.rk/nc
		     /dev/.rk/diepu
		     /dev/.rk/backd
		     /Library/StartupItems/opener
		     /Library/StartupItems/opener.sh
		     /System/Library/StartupItems/opener
		     /System/Library/StartupItems/opener.sh'
+ OSXRK_DIRS='/dev/.rk
		    /Users/LDAP-daemon
		    /tmp/.work'
+ OSXRK_KSYMS=''
+ OZ_FILES=/dev/.oz/.nap/rkit/terror
+ OZ_DIRS=/dev/.oz
+ OZ_KSYMS=''
+ PHALANX_FILES='/uNFuNF
		       /etc/host.ph1
		       /bin/host.ph1
		       /usr/share/.home.ph1/phalanx
		       /usr/share/.home.ph1/cb
		       /usr/share/.home.ph1/kebab'
+ PHALANX_DIRS='/usr/share/.home.ph1
		      /usr/share/.home.ph1/tty'
+ PHALANX_KSYMS=''
+ PHALANX2_FILES='/etc/khubd.p2/.p2rc
		        /etc/khubd.p2/.phalanx2
		        /etc/khubd.p2/.sniff
		        /etc/khubd.p2/sshgrab.py
		        /etc/lolzz.p2/.p2rc
		        /etc/lolzz.p2/.phalanx2
		        /etc/lolzz.p2/.sniff
		        /etc/lolzz.p2/sshgrab.py
			/etc/cron.d/zupzzplaceholder
			/usr/lib/zupzz.p2/.p-2.3d
			/usr/lib/zupzz.p2/.p2rc'
+ PHALANX2_DIRS='/etc/khubd.p2
		       /etc/lolzz.p2
		       /usr/lib/zupzz.p2'
+ PHALANX2_KSYMS=''
+ PORTACELO_FILES='/var/lib/.../.ak
			 /var/lib/.../.hk
			 /var/lib/.../.rs
			 /var/lib/.../.p
			 /var/lib/.../getty
			 /var/lib/.../lkt.o
			 /var/lib/.../show
			 /var/lib/.../nlkt.o
			 /var/lib/.../ssshrc
			 /var/lib/.../sssh_equiv
			 /var/lib/.../sssh_known_hosts
			 /var/lib/.../sssh_pid ~/.sssh/known_hosts'
+ PORTACELO_DIRS=''
+ PORTACELO_KSYMS=''
+ REDSTORM_FILES='/var/log/tk02/see_all
			/var/log/tk02/.scris
			/bin/.../sshd/sbin/sshd1
			/bin/.../hate/sk
			/bin/.../see_all'
+ REDSTORM_DIRS='/var/log/tk02
		       /var/log/tk02/old
		       /bin/...'
+ REDSTORM_KSYMS=''
+ RHSHARPES_FILES='/bin/lps
			 /usr/bin/lpstree
			 /usr/bin/ltop
			 /usr/bin/lkillall
			 /usr/bin/ldu
			 /usr/bin/lnetstat
			 /usr/bin/wp
			 /usr/bin/shad
			 /usr/bin/vadim
			 /usr/bin/slice
			 /usr/bin/cleaner
			 /usr/include/rpcsvc/du'
+ RHSHARPES_DIRS=''
+ RHSHARPES_KSYMS=''
+ RSHA_FILES='/bin/kr4p
		    /usr/bin/n3tstat
		    /usr/bin/chsh2
		    /usr/bin/slice2
		    /usr/src/linux/arch/alpha/lib/.lib/.1proc
		    /etc/rc.d/arch/alpha/lib/.lib/.1addr'
+ RSHA_DIRS='/etc/rc.d/rsha
		   /etc/rc.d/arch/alpha/lib/.lib'
+ RSHA_KSYMS=''
+ SHUTDOWN_FILES='/usr/man/man5/..%/.dir/scannah/asus
			/usr/man/man5/..%/.dir/see
			/usr/man/man5/..%/.dir/nscd
			/usr/man/man5/..%/.dir/alpd
			/etc/rc.d/rc.local%'
+ SHUTDOWN_DIRS='/usr/man/man5/..%/.dir
		       /usr/man/man5/..%/.dir/scannah
		       /etc/rc.d/rc0.d/..%/.dir'
+ SHUTDOWN_KSYMS=''
+ SCALPER_FILES='/tmp/.a
		       /tmp/.uua'
+ SCALPER_DIRS=''
+ SCALPER_KSYMS=''
+ SHV4_FILES='/etc/ld.so.hash
		    /lib/libext-2.so.7
		    /lib/lidps1.so
		    /lib/libproc.a
		    /lib/libproc.so.2.0.6
		    /lib/ldd.so/tks
		    /lib/ldd.so/tkp
		    /lib/ldd.so/tksb
		    /lib/security/.config/sshd
		    /lib/security/.config/ssh/ssh_host_key
		    /lib/security/.config/ssh/ssh_host_key.pub
		    /lib/security/.config/ssh/ssh_random_seed
		    /usr/include/file.h
		    /usr/include/hosts.h
		    /usr/include/lidps1.so
		    /usr/include/log.h
		    /usr/include/proc.h
		    /usr/sbin/xntps
		    /dev/srd0'
+ SHV4_DIRS='/lib/ldd.so
		   /lib/security/.config
		   /lib/security/.config/ssh'
+ SHV4_KSYMS=''
+ SHV5_FILES='/etc/sh.conf
		    /lib/libproc.a
		    /lib/libproc.so.2.0.6
		    /lib/lidps1.so
		    /lib/libsh.so/bash
		    /usr/include/file.h
		    /usr/include/hosts.h
		    /usr/include/log.h
		    /usr/include/proc.h
		    /lib/libsh.so/shdcf2
		    /lib/libsh.so/shhk
		    /lib/libsh.so/shhk.pub
		    /lib/libsh.so/shrs
		    /usr/lib/libsh/.bashrc
		    /usr/lib/libsh/shsb
		    /usr/lib/libsh/hide
		    /usr/lib/libsh/.sniff/shsniff
		    /usr/lib/libsh/.sniff/shp
		    /dev/srd0'
+ SHV5_DIRS='/lib/libsh.so
		   /usr/lib/libsh
		   /usr/lib/libsh/utilz
		   /usr/lib/libsh/.backup'
+ SHV5_KSYMS=''
+ SINROOTKIT_FILES='/dev/.haos/haos1/.f/Denyed
			  /dev/ttyoa
			  /dev/ttyof
			  /dev/ttyop
			  /dev/ttyos
			  /usr/lib/.lib
			  /usr/lib/sn/.X
			  /usr/lib/sn/.sys
			  /usr/lib/ld/.X
			  /usr/man/man1/...
			  /usr/man/man1/.../.m
			  /usr/man/man1/.../.w'
+ SINROOTKIT_DIRS='/usr/lib/sn
			 /usr/lib/man1/...
			 /dev/.haos'
+ SINROOTKIT_KSYMS=''
+ SLAPPER_FILES='/tmp/.bugtraq
		       /tmp/.uubugtraq
		       /tmp/.bugtraq.c
		       /tmp/httpd
		       /tmp/.unlock
		       /tmp/update
		       /tmp/.cinik
		       /tmp/.b'
+ SLAPPER_DIRS=''
+ SLAPPER_KSYMS=''
+ SNEAKIN_FILES=''
+ SNEAKIN_DIRS=/tmp/.X11-unix/.../rk
+ SNEAKIN_KSYMS=''
+ WANUKDOOR_FILES='/var/adm/sa/.adm/.lp-door.i86pc
			 /var/adm/sa/.adm/.lp-door.sun4
			 /var/spool/lp/admins/.lp-door.i86pc
			 /var/spool/lp/admins/.lp-door.sun4
			 /var/spool/lp/admins/lpshut
			 /var/spool/lp/admins/lpsystem
			 /var/spool/lp/admins/lpadmin
			 /var/spool/lp/admins/lpmove
			 /var/spool/lp/admins/lpusers
			 /var/spool/lp/admins/lpfilter
			 /var/spool/lp/admins/lpstat
			 /var/spool/lp/admins/lpd
			 /var/spool/lp/admins/lpsched
			 /var/spool/lp/admins/lpc'
+ WANUKDOOR_DIRS=/var/adm/sa/.adm
+ WANUKDOOR_KSYMS=''
+ WANUKWORM_FILES='/var/adm/.adm
			 /var/adm/.i86pc
			 /var/adm/.sun4
			 /var/adm/sa/.adm
			 /var/adm/sa/.adm/.i86pc
			 /var/adm/sa/.adm/.sun4
			 /var/adm/sa/.adm/.crontab
			 /var/adm/sa/.adm/devfsadmd
			 /var/adm/sa/.adm/svcadm
			 /var/adm/sa/.adm/cfgadm
			 /var/adm/sa/.adm/kadmind
			 /var/adm/sa/.adm/zoneadmd
			 /var/adm/sa/.adm/sadm
			 /var/adm/sa/.adm/sysadm
			 /var/adm/sa/.adm/dladm
			 /var/adm/sa/.adm/bootadm
			 /var/adm/sa/.adm/routeadm
			 /var/adm/sa/.adm/uadmin
			 /var/adm/sa/.adm/acctadm
			 /var/adm/sa/.adm/cryptoadm
			 /var/adm/sa/.adm/inetadm
			 /var/adm/sa/.adm/logadm
			 /var/adm/sa/.adm/nlsadmin
			 /var/adm/sa/.adm/sacadm
			 /var/adm/sa/.adm/syseventadmd
			 /var/adm/sa/.adm/ttyadmd
			 /var/adm/sa/.adm/consadmd
			 /var/adm/sa/.adm/metadevadm
			 /var/adm/sa/.i86pc
			 /var/adm/sa/.sun4
			 /var/adm/sa/acctadm
			 /var/adm/sa/bootadm
			 /var/adm/sa/cfgadm
			 /var/adm/sa/consadmd
			 /var/adm/sa/cryptoadm
			 /var/adm/sa/devfsadmd
			 /var/adm/sa/dladm
			 /var/adm/sa/inetadm
			 /var/adm/sa/kadmind
			 /var/adm/sa/logadm
			 /var/adm/sa/metadevadm
			 /var/adm/sa/nlsadmin
			 /var/adm/sa/routeadm
			 /var/adm/sa/sacadm
			 /var/adm/sa/sadm
			 /var/adm/sa/svcadm
			 /var/adm/sa/sysadm
			 /var/adm/sa/syseventadmd
			 /var/adm/sa/ttyadmd
			 /var/adm/sa/uadmin
			 /var/adm/sa/zoneadmd
			 /var/spool/lp/admins/.lp/.crontab
			 /var/spool/lp/admins/.lp/lpshut
			 /var/spool/lp/admins/.lp/lpsystem
			 /var/spool/lp/admins/.lp/lpadmin
			 /var/spool/lp/admins/.lp/lpmove
			 /var/spool/lp/admins/.lp/lpusers
			 /var/spool/lp/admins/.lp/lpfilter
			 /var/spool/lp/admins/.lp/lpstat
			 /var/spool/lp/admins/.lp/lpd
			 /var/spool/lp/admins/.lp/lpsched
			 /var/spool/lp/admins/.lp/lpc'
+ WANUKWORM_DIRS='/var/adm/sa/.adm
			/var/spool/lp/admins/.lp'
+ WANUKWORM_KSYMS=''
+ SPANISH_FILES='/dev/ptyq
		       /bin/ad
		       /bin/ava
		       /bin/server
		       /usr/sbin/rescue
		       /usr/share/.../chrps
		       /usr/share/.../chrifconfig
		       /usr/share/.../netstat
		       /usr/share/.../linsniffer
		       /usr/share/.../charbd
		       /usr/share/.../charbd2
		       /usr/share/.../charbd3
		       /usr/share/.../charbd4
		       /usr/man/tmp/update.tgz
		       /var/lib/rpm/db.rpm
		       /var/cache/man/.cat
		       /var/spool/lpd/remote/.lpq'
+ SPANISH_DIRS=/usr/share/...
+ SPANISH_KSYMS=''
+ SUCKIT_FILES='/sbin/initsk12
		      /sbin/initxrk
		      /usr/bin/null
		      /usr/share/locale/sk/.sk12/sk
		      /etc/rc.d/rc0.d/S23kmdac
		      /etc/rc.d/rc1.d/S23kmdac
		      /etc/rc.d/rc2.d/S23kmdac
		      /etc/rc.d/rc3.d/S23kmdac
		      /etc/rc.d/rc4.d/S23kmdac
		      /etc/rc.d/rc5.d/S23kmdac
		      /etc/rc.d/rc6.d/S23kmdac'
+ SUCKIT_DIRS='/dev/sdhu0/tehdrakg
		     /etc/.MG
		     /usr/share/locale/sk/.sk12
		     /usr/lib/perl5/site_perl/i386-linux/auto/TimeDate/.packlist'
+ SUCKIT_KSYMS=''
+ NSDAP_FILES='/dev/pts/01/55su
		     /dev/pts/01/55ps
		     /dev/pts/01/55ping
		     /dev/pts/01/55login
		     /dev/pts/01/PATCHER_COMPLETED
		     /dev/prom/sn.l
		     /dev/prom/dos
		     /usr/lib/vold/nsdap/.kit
		     /usr/lib/vold/nsdap/defines
		     /usr/lib/vold/nsdap/patcher
		     /usr/lib/vold/nsdap/pg
		     /usr/lib/vold/nsdap/cleaner
		     /usr/lib/vold/nsdap/utime
		     /usr/lib/vold/nsdap/crypt
		     /usr/lib/vold/nsdap/findkit
		     /usr/lib/vold/nsdap/sn2
		     /usr/lib/vold/nsdap/sniffload
		     /usr/lib/vold/nsdap/runsniff
		     /usr/lib/lpset
		     /usr/lib/lpstart
		     /usr/bin/mc68000
		     /usr/bin/mc68010
		     /usr/bin/mc68020
		     /usr/ucb/bin/ps
		     /usr/bin/m68k
		     /usr/bin/sun2
		     /usr/bin/mc68030
		     /usr/bin/mc68040
		     /usr/bin/sun3
		     /usr/bin/sun3x
		     /usr/bin/lso
		     /usr/bin/u370'
+ NSDAP_DIRS='/dev/pts/01
		    /dev/prom
		    /usr/lib/vold/nsdap
		    /.pat'
+ NSDAP_KSYMS=''
+ SUNOSROOTKIT_FILES='/etc/ld.so.hash
			    /lib/libext-2.so.7
			    /usr/bin/ssh2d
			    /bin/xlogin
			    /usr/lib/crth.o
			    /usr/lib/crtz.o
			    /sbin/login
			    /lib/security/.config/sn
			    /lib/security/.config/lpsched
			    /dev/kmod
			    /dev/dos'
+ SUNOSROOTKIT_DIRS=''
+ SUNOSROOTKIT_KSYMS=''
+ SUPERKIT_FILES='/usr/man/.sman/sk/backsh
			/usr/man/.sman/sk/izbtrag
			/usr/man/.sman/sk/sksniff
			/var/www/cgi-bin/cgiback.cgi'
+ SUPERKIT_DIRS=/usr/man/.sman/sk
+ SUPERKIT_KSYMS=''
+ TBD_FILES=/usr/lib/.tbd
+ TBD_DIRS=''
+ TBD_KSYMS=''
+ TELEKIT_FILES='/usr/man/man3/.../TeLeKiT/bin/sniff
		       /usr/man/man3/.../TeLeKiT/bin/telnetd
		       /usr/man/man3/.../TeLeKiT/bin/teleulo
		       /usr/man/man3/.../cl
		       /dev/ptyr
		       /dev/ptyp
		       /dev/ptyq
		       /dev/hda06
		       /usr/info/libc1.so'
+ TELEKIT_DIRS='/usr/man/man3/...
		      /usr/man/man3/.../lsniff
		      /usr/man/man3/.../TeLeKiT'
+ TELEKIT_KSYMS=''
+ TOGROOT_FILES='/System/Library/Extensions/Togroot.kext/Contents/Info.plist
		       /System/Library/Extensions/Togroot.kext/Contents/pbdevelopment.plist
		       /System/Library/Extensions/Togroot.kext/Contents/MacOS/togrootkext'
+ TOGROOT_DIRS='/System/Library/Extensions/Togroot.kext
		      /System/Library/Extensions/Togroot.kext/Contents
		      /System/Library/Extensions/Togroot.kext/Contents/MacOS'
+ TOGROOT_KSYMS=''
+ TORN_FILES='/dev/.lib/lib/lib/t0rns
		    /dev/.lib/lib/lib/du
		    /dev/.lib/lib/lib/ls
		    /dev/.lib/lib/lib/t0rnsb
		    /dev/.lib/lib/lib/ps
		    /dev/.lib/lib/lib/t0rnp
		    /dev/.lib/lib/lib/find
		    /dev/.lib/lib/lib/ifconfig
		    /dev/.lib/lib/lib/pg
		    /dev/.lib/lib/lib/ssh.tgz
		    /dev/.lib/lib/lib/top
		    /dev/.lib/lib/lib/sz
		    /dev/.lib/lib/lib/login
		    /dev/.lib/lib/lib/in.fingerd
		    /dev/.lib/lib/lib/1i0n.sh
		    /dev/.lib/lib/lib/pstree
		    /dev/.lib/lib/lib/in.telnetd
		    /dev/.lib/lib/lib/mjy
		    /dev/.lib/lib/lib/sush
		    /dev/.lib/lib/lib/tfn
		    /dev/.lib/lib/lib/name
		    /dev/.lib/lib/lib/getip.sh
		    /usr/info/.torn/sh*
		    /usr/src/.puta/.1addr
		    /usr/src/.puta/.1file
		    /usr/src/.puta/.1proc
		    /usr/src/.puta/.1logz
		    /usr/info/.t0rn'
+ TORN_DIRS='/dev/.lib
		   /dev/.lib/lib
		   /dev/.lib/lib/lib
		   /dev/.lib/lib/lib/dev
		   /dev/.lib/lib/scan
		   /usr/src/.puta
		   /usr/man/man1/man1
		   /usr/man/man1/man1/lib
		   /usr/man/man1/man1/lib/.lib
		   /usr/man/man1/man1/lib/.lib/.backup'
+ TORN_KSYMS=''
+ TRNKIT_FILES='/usr/lib/libbins.la
		      /usr/lib/libtcs.so
		      /dev/.ttpy/ulogin.sh
		      /dev/.ttpy/tcpshell.sh
		      /dev/.ttpy/bupdu
		      /dev/.ttpy/buloc
		      /dev/.ttpy/buloc1
		      /dev/.ttpy/buloc2
		      /dev/.ttpy/stat
		      /dev/.ttpy/backps
		      /dev/.ttpy/tree
		      /dev/.ttpy/topk
		      /dev/.ttpy/wold
		      /dev/.ttpy/whoold
		      /dev/.ttpy/backdoors'
+ TRNKIT_DIRS=''
+ TRNKIT_KSYMS=''
+ TROJANIT_FILES='/bin/.ls
			/bin/.ps
			/bin/.netstat
			/usr/bin/.nop
			/usr/bin/.who'
+ TROJANIT_DIRS=''
+ TROJANIT_KSYMS=''
+ TURTLE_FILES=/dev/turtle2dev
+ TURTLE_DIRS=''
+ TURTLE_KSYMS=''
+ TUXTENDO_FILES='/lib/libproc.so.2.0.7
			/usr/bin/xchk
			/usr/bin/xsf
			/dev/tux/suidsh
			/dev/tux/.addr
			/dev/tux/.cron
			/dev/tux/.file
			/dev/tux/.log
			/dev/tux/.proc
			/dev/tux/.iface
			/dev/tux/.pw
			/dev/tux/.df
			/dev/tux/.ssh
			/dev/tux/.tux
			/dev/tux/ssh2/sshd2_config
			/dev/tux/ssh2/hostkey
			/dev/tux/ssh2/hostkey.pub
			/dev/tux/ssh2/logo
			/dev/tux/ssh2/random_seed
			/dev/tux/backup/crontab
			/dev/tux/backup/df
			/dev/tux/backup/dir
			/dev/tux/backup/find
			/dev/tux/backup/ifconfig
			/dev/tux/backup/locate
			/dev/tux/backup/netstat
			/dev/tux/backup/ps
			/dev/tux/backup/pstree
			/dev/tux/backup/syslogd
			/dev/tux/backup/tcpd
			/dev/tux/backup/top
			/dev/tux/backup/updatedb
			/dev/tux/backup/vdir'
+ TUXTENDO_DIRS='/dev/tux
		       /dev/tux/ssh2
		       /dev/tux/backup'
+ TUXTENDO_KSYMS=''
+ URK_FILES='/dev/prom/sn.l
		   /usr/lib/ldlibps.so
		   /usr/lib/ldlibnet.so
		   /dev/pts/01/uconf.inv
		   /dev/pts/01/cleaner
		   /dev/pts/01/bin/psniff
		   /dev/pts/01/bin/du
		   /dev/pts/01/bin/ls
		   /dev/pts/01/bin/passwd
		   /dev/pts/01/bin/ps
		   /dev/pts/01/bin/psr
		   /dev/pts/01/bin/su
		   /dev/pts/01/bin/find
		   /dev/pts/01/bin/netstat
		   /dev/pts/01/bin/ping
		   /dev/pts/01/bin/strings
		   /dev/pts/01/bin/bash
		   /usr/man/man1/xxxxxxbin/du
		   /usr/man/man1/xxxxxxbin/ls
		   /usr/man/man1/xxxxxxbin/passwd
		   /usr/man/man1/xxxxxxbin/ps
		   /usr/man/man1/xxxxxxbin/psr
		   /usr/man/man1/xxxxxxbin/su
		   /usr/man/man1/xxxxxxbin/find
		   /usr/man/man1/xxxxxxbin/netstat
		   /usr/man/man1/xxxxxxbin/ping
		   /usr/man/man1/xxxxxxbin/strings
		   /usr/man/man1/xxxxxxbin/bash
		   /tmp/conf.inv'
+ URK_DIRS='/dev/prom
		  /dev/pts/01
		  /dev/pts/01/bin
		  /usr/man/man1/xxxxxxbin'
+ URK_KSYMS=''
+ VCKIT_FILES=''
+ VCKIT_DIRS='/usr/include/linux/modules/lib.so
		    /usr/include/linux/modules/lib.so/bin'
+ VCKIT_KSYMS=''
+ VAMPIRE_FILES=''
+ VAMPIRE_DIRS=''
+ VAMPIRE_KSYMS='new_getdents
			old_getdents
			should_hide_file_name
			should_hide_task_name'
+ VOLC_FILES='/usr/bin/volc
		    /usr/lib/volc/backdoor/divine
		    /usr/lib/volc/linsniff
		    /etc/rc.d/rc1.d/S25sysconf
		    /etc/rc.d/rc2.d/S25sysconf
		    /etc/rc.d/rc3.d/S25sysconf
		    /etc/rc.d/rc4.d/S25sysconf
		    /etc/rc.d/rc5.d/S25sysconf'
+ VOLC_DIRS='/var/spool/.recent
		   /var/spool/.recent/.files
		   /usr/lib/volc
		   /usr/lib/volc/backup'
+ VOLC_KSYMS=''
+ WEAPONX_FILES=/System/Library/Extensions/WeaponX.kext
+ WEAPONX_DIRS=/tmp/...
+ WEAPONX_KSYMS=''
+ XZIBIT_FILES='/dev/dsx
		      /dev/caca
		      /dev/ida/.inet/linsniffer
		      /dev/ida/.inet/logclear
		      /dev/ida/.inet/sense
		      /dev/ida/.inet/sl2
		      /dev/ida/.inet/sshdu
		      /dev/ida/.inet/s
		      /dev/ida/.inet/ssh_host_key
		      /dev/ida/.inet/ssh_random_seed
		      /dev/ida/.inet/sl2new.c
		      /dev/ida/.inet/tcp.log
		      /home/httpd/cgi-bin/becys.cgi
		      /usr/local/httpd/cgi-bin/becys.cgi
		      /usr/local/apache/cgi-bin/becys.cgi
		      /www/httpd/cgi-bin/becys.cgi
		      /www/cgi-bin/becys.cgi'
+ XZIBIT_DIRS=/dev/ida/.inet
+ XZIBIT_KSYMS=''
+ XORGSUNOS_FILES='/usr/lib/libX.a/bin/tmpfl
			 /usr/lib/libX.a/bin/rps
			 /usr/bin/srload
			 /usr/lib/libX.a/bin/sparcv7/rps
			 /usr/sbin/modcheck'
+ XORGSUNOS_DIRS='/usr/lib/libX.a
			/usr/lib/libX.a/bin
			/usr/lib/libX.a/bin/sparcv7
			/usr/share/man...'
+ XORGSUNOS_KSYMS=''
+ ZARWT_FILES='/dev/rd/s/sendmeil
		     /dev/ttyf
		     /dev/ttyp
		     /dev/ttyn
		     /rk/tulz'
+ ZARWT_DIRS='/rk
		    /dev/rd/s'
+ ZARWT_KSYMS=''
+ ZK_FILES='/usr/share/.zk/zk
		  /usr/X11R6/.zk/xfs
		  /usr/X11R6/.zk/echo
		  /etc/1ssue.net
		  /etc/sysconfig/console/load.zk'
+ ZK_DIRS='/usr/share/.zk
		 /usr/X11R6/.zk'
+ ZK_KSYMS=''
+ LOGIN_BACKDOOR_FILES='/bin/.login
			      /sbin/.login'
+ SUSPICIOUS_DIRS='/usr/X11R6/bin/.,/copy
			 /dev/rd/cdb'
+ STRINGSCAN='crond:LOGNAME=root:Illogic Rootkit
		    hostname:phalanx:Phalanx Rootkit
		    init:/dev/proc/fuckit:Fuckit Rootkit
		    init:FUCK:Suckit Rootkit
		    init:backdoor:Suckit Rootkit (backdoored init file)
		    init:/usr/bin/rcpc:Portacelo Rootkit
		    init:/usr/sbin/login:trNkit Rootkit ulogin
		    killall:/dev/ptyxx/.proc:Ambient (ark) Rootkit
		    login:vt200:Linux Rootkit (LRK4)
		    login:/usr/bin/xstat:Linux Rootkit (LRK4)
		    login:/bin/envpc:Linux Rootkit (LRK4)
		    login:L4m3r0x:Linux Rootkit (LRK4)
		    login:/lib/libext:SHV4 Rootkit
		    login:/usr/sbin/login:Flea Linux Rootkit
		    login:/usr/lib/.tbd:TBD Rootkit
		    login:sendmail:Ambient (ark) Rootkit
		    login:cocacola:cb Rootkit
		    login:joao:Spanish Rootkit
		    ls:/dev/ptyxx/.file:Dica-Kit Rootkit
		    ls:/dev/ptyxx/.file:Ambient (ark) Rootkit
		    ls:/dev/sgk:Linux Rootkit (LRK4)
		    ls:/var/lock/subsys/...datafile...:Ohhara Rootkit
		    ls:/usr/lib/.tbd:TBD Rootkit
		    netstat:/dev/proc/fuckit:Fuckit Rootkit
		    netstat:/lib/.sso:Dica-Kit Rootkit
		    netstat:/var/lock/subsys/...datafile...:Ohhara Rootkit
		    netstat:/dev/caca:MRK Rootkit
		    netstat:/dev/ttyoa:Sin Rootkit
		    netstat:/usr/lib/ldlibns.so:Flea Linux Rootkit
		    netstat:/dev/ptyxx/.addr:Ambient (ark) Rootkit
		    netstat:syg:Trojaned netstat
		    nscd:sshd_config:Backdoor shell installed (SSH)
                    ps:/var/lock/subsys/...datafile...:Ohhara Rootkit or Ni0 Rootkit
		    ps:/dev/pts/01:Universal Rootkit (URK)
		    ps:tw33dl3:SunOS Rootkit
		    ps:psniff:SunOS Rootkit
		    ps:uconf.inv:Universal Rootkit (URK)
		    ps:lib/ldlibps.so:Flea Linux Rootkit or Universal Rootkit (URK)
		    pstree:/usr/lib/ldlibpst.so:Flea Linux Rootkit
		    ps:libproc.so.2.0.7:Fuckit Rootkit
		    ps:/dev/ptyxx/.proc:Ambient (ark) Rootkit
		    pstree:/dev/ptyxx/.proc:Ambient (ark) Rootkit
		    pgrep:libproc.so.2.0.7:Fuckit Rootkit
		    pkill:libproc.so.2.0.7:Fuckit Rootkit
		    ping:/bin/bash:Ping Rootkit or other backdoor
		    rpc.nfsd:cant open log:Sniffer installed
		    rpc.nfsd:sniff.pid:Sniffer installed
		    rpc.nfsd:tcp.log:Sniffer installed
		    sshd:/dev/ptyxx:OpenBSD Rootkit
		    sshd:/.config:SHV4 Rootkit
		    sshd:+\$.*\$\!.*\!\!\$:Backdoored SSH daemon installed
		    sshd:backdoor.h:Trojaned SSH daemon
		    sshd:backdoor_active:Trojaned SSH daemon
		    sshd:magic_pass_active:Trojaned SSH daemon
		    sshd:/usr/include/gpm2.h:Trojaned SSH daemon
		    sshd:/usr/include/openssl:Trojaned SSH daemon
		    sshd:aion:Trojaned SSH daemon
		    sshd:pcszPass:Trojaned SSH daemon
		    sshd:LogPass:Trojaned SSH daemon
		    sshd:Login_Check:Trojaned SSH daemon
		    sshd:includes.h:Trojaned SSH daemon
		    sshd:DecodeString:Trojaned SSH daemon
		    sshd:EncodeString:Trojaned SSH daemon
		    xntps:/.config:SHV4 Rootkit
		    syslogd:promiscuous:Sniffer installed
		    syslogd:/usr/lib/.tbd:TBD Rootkit
		    syslogd:/dev/ptyxx/.log:Ambient (ark) Rootkit
		    syslogd:/usr/share/pci.r:Trojaned Syslog daemon
		    tcpd:/dev/xdta:Dica-Kit Rootkit
		    top:/usr/lib/.tbd:TBD Rootkit
		    top:/dev/ptyxx/.proc:Ambient (ark) Rootkit
		    xtty:/bin/sh:Backdoor shell
		    ttymon:fucknut:SHV5 Rootkit
		    ttymon:lamersucks:SHV5 Rootkit
		    ttymon:skillz:SHV5 Rootkit
		    ttyload:/sbin/ttyload:SHV5 Rootkit
		    ttyload:/sbin/ttymon:SHV5 Rootkit
		    ttyload:propert of SH:SHV5 Rootkit
		    rcfile:in.inetd:SHV4 Rootkit
		    rcfile:+#<HIDE_.*>:Enye LKM
		    rcfile:bin/xchk:Optic Kit (Tux) Worm
		    rcfile:bin/xsf:Optic Kit (Tux) Worm
		    rcfile:/usr/bin/ssh2d:Flea Linux Rootkit or Optic Kit (Tux variant) Rootkit or SunOS Rootkit
		    rcfile:/usr/sbin/xntps:SHV4 Rootkit
		    rcfile:ttyload:SHV5 Rootkit
		    rcfile:/etc/rc.d/init.d/init:cb Rootkit or w00tkit Rootkit
		    rcfile:usr/bin/xfss:Devil Rootkit
		    rcfile:/usr/sbin/rpc.netinet:FreeBSD (FBRK) Rootkit
		    rcfile:/usr/lib/.fx/cons.saver:FreeBSD (FBRK) Rootkit
		    rcfile:/usr/lib/.fx/xs:FreeBSD (FBRK) Rootkit
		    rcfile:/ssh2d:Illogic Rootkit or SunOS Rootkit
		    rcfile:/dev/kmod:Illogic Rootkit or SunOS Rootkit
		    rcfile:/crth.o:Illogic Rootkit or SunOS Rootkit
		    rcfile:/crtz.o:Illogic Rootkit or SunOS Rootkit
		    rcfile:/dev/dos:Illogic Rootkit or SunOS Rootkit
		    rcfile:/lpq:Illogic Rootkit or SunOS Rootkit
		    rcfile:/usr/sbin/rescue:Spanish Rootkit
		    rcfile:/usr/lib/lpstart:SunOS NSDAP Rootkit or Universal Rootkit (URK)
		    rcfile:/volc:Volc Rootkit
		    rcfile:sourcemask:Rootkit component
		    rcfile:/bin/vobiscum:Rootkit component
		    rcfile:/usr/sbin/in.telnet:Rootkit component
		    rcfile:/usr/bin/hdparm?-t1?-X53?-p:Xzibit Rootkit
		    rcfile:/lib/.xsyslog:Flooder (Linux/Bckdr-RKC) component
		    rcfile:/etc/.xsyslog:Flooder (Linux/Bckdr-RKC) component
		    rcfile:/lib/.ssyslog:Flooder (Linux/Bckdr-RKC) component
		    rcfile:/tmp/.sendmail:Flooder (Linux/Bckdr-RKC) component
		    ssh:/lib/ldd.so/tkps:SHV4 Rootkit
		    ssh1:/lib/ldd.so/tkps:SHV4 Rootkit
		    ssh:t0rnkit:T0rn Rootkit
		    ssh:/dev/proc/fuckit:Fuckit Rootkit
		    ssh:backdoor.h:Trojaned SSH daemon
		    ssh:backdoor_active:Trojaned SSH daemon
		    ssh:magic_pass_active:Trojaned SSH daemon
		    ssh:/usr/include/gpm2.h:Trojaned SSH daemon
		    skill:libproc.so.2.0.7:Fuckit Rootkit
		    snice:libproc.so.2.0.7:Fuckit Rootkit
		    top:libproc.so.2.0.7:Fuckit Rootkit
		    slocate:/usr/lib/ldlibct.so:Flea Linux Rootkit
		    locate:/usr/lib/ldlibct.so:Flea Linux Rootkit
		    du:/usr/lib/ldlibdu.so:Flea Linux Rootkit
		    du:/dev/ptyxx/.file:Ambient (ark) Rootkit
		    w:libproc.so.2.0.7:Fuckit Rootkit
		    xlogin:/lib/libext:SHV4 Rootkit
		    hdparm:/dev/ida/.inet:Xzibit Rootkit
		    pgrep:/usr/include/mysql/mysql.hh1:Rootkit component
		    pkill:/usr/include/mysql/mysql.hh1:Rootkit component
		    pmap:/usr/include/mysql/mysql.hh1:Rootkit component
		    ps:/usr/include/mysql/mysql.hh1:Rootkit component
		    w:/usr/include/mysql/mysql.hh1:Rootkit component
		    top:/usr/include/mysql/mysql.hh1:Rootkit component
		    bc:backconnect:Jynx Rootkit
		    bc:magic?packet?received:Jynx Rootkit'
+ FILESCAN='file:/dev/sdr0:T0rn Rootkit MD5 hash database
		  file:/dev/pisu:Rootkit component
		  file:/dev/xdta:Dica-Kit Rootkit
		  file:/dev/saux:Trojaned SSH daemon sniffer log
		  file:/dev/hdx:Linux.RST.B infection
		  file:/dev/hdx1:Linux.RST.B infection
		  file:/dev/hdx2:Linux.RST.B infection
		  file:/dev/ptyy:Rootkit component
		  file:/dev/ptyu:Rootkit component
		  file:/dev/ptyv:Rootkit component
		  file:/dev/hdbb:Rootkit component
		  file:/tmp/.syshackfile:Trojaned syslog daemon
		  file:/tmp/.bash_history:Lite5-r Rootkit
		  file:/usr/info/.clib:Backdoor component
		  file:/usr/sbin/tcp.log:Sniffer log
		  file:/usr/bin/take/pid:Trojaned SSH daemon
		  file:/sbin/create:MzOzD Local backdoor
		  file:/dev/ttypz:spwn login backdoor
		  file:/var/log/tcp.log:beX2 Rootkit
		  file:/usr/include/audit.h:beX2 Rootkit
		  file:/usr/bin/sourcemask:Rootkit component
		  file:/usr/bin/ras2xm:Rootkit component
		  file:/dev/xmx:Dica-Kit Rootkit
		  file:/usr/sbin/gpm.root:Rootkit component
		  file:/bin/vobiscum:Rootkit component
		  file:/bin/psr:Rootkit component
		  file:/dev/kdx:Rootkit component
		  file:/dev/dkx:Rootkit component
		  file:/usr/sbin/sshd3:Rootkit component
		  file:/usr/sbin/jcd:Rootkit component
		  file:/etc/rc.d/init.d/jcd:Rootkit component
		  file:/usr/sbin/atd2:Rootkit component
		  file:/home/httpd/cgi-bin/linux.cgi:Dica-Kit Rootkit
		  file:/home/httpd/cgi-bin/psid:Dica-Kit Rootkit
		  file:/home/httpd/cgi-bin/void.cgi:Dica-Kit Rootkit
		  file:/etc/rc.d/init.d/system:Rootkit component
		  file:/etc/rc.d/rc3.d/S93users:Rootkit component
		  file:/tmp/.ush:Dica-Kit Rootkit
		  file:/usr/lib/libhidefile.so:HIDEFILE envvar file-hiding library
		  file:/etc/cron.d/kmod:Illogic Rootkit
		  file:/usr/lib/dmis/dmisd:Trojaned SSH daemon
		  file:/lib/secure/libhij.so:Solaris Trojaned SSH daemon
		  file:/usr/sbin/sshd3:Rootkit component
		  file:/etc/rc.d/init.d/crontab:Rootkit component
		  file:/etc/rc.d/init.d/jcd:Rootkit component
		  file:/usr/sbin/atd2:Rootkit component
		  file:/etc/rc.d/rc5.d/S93users:Rootkit component
		  file:/usr/include/mysql/mysql.hh1:Rootkit component
		  file:/etc/init.d/xfs3:Rootkit component
		  file:/usr/sbin/t.txt:Opyum kit component
		  file:/usr/sbin/change:Opyum kit component
		  file:/usr/sbin/s:Opyum kit component
		  file:/bin/f:Opyum kit component
		  file:/bin/i:Opyum kit component
		  file:/lib/libncom.so.4.0.1:ncom rootkit library
		  file:/sbin/zinit:Rootkit component
		  file:/tmp/pass_ssh.log:Trojaned SSH daemon
		  file:/usr/include/gpm2.h:Trojaned SSH daemon
		  file:/etc/ssh/.sshd_auth:Trojaned SSH daemon (logins)
		  file:/usr/lib/.sshd.h:Trojaned SSH daemon (logins)
		  file:/var/run/.defunct:Trojaned SSH daemon
		  file:/etc/httpd/run/.defunct:Trojaned SSH daemon
		  file:/usr/share/pci.r:Trojaned Syslog daemon
		  file:/etc/cron.daily/dnsquery:Sniffer
		  file:/usr/lib/libutil1.2.1.2.so:Trojaned SSH daemon component (hwclock binary)
		  file:/bin/ceva:Trojaned SSH daemon (client binary)
		  file:/sbin/syslogd%:Trojaned SSH daemon (sebd)
		  file:/usr/include/shup.h:Trojaned SSH daemon (client binary)
		  file:/etc/rpm/sshdOLD:Trojaned SSH daemon (original sshd binary)
		  file:/etc/rpm/sshOLD:Trojaned SSH daemon (original ssh binary)
		  file:/usr/share/passwd.h:Trojaned SSH daemon (default configuration)
		  file:/lib/.xsyslog:Flooder (Linux/Bckdr-RKC) component
		  file:/etc/.xsyslog:Flooder (Linux/Bckdr-RKC) component
		  file:/lib/.ssyslog:Flooder (Linux/Bckdr-RKC) component
		  file:/tmp/.sendmail:Flooder (Linux/Bckdr-RKC) component
		  file:/usr/share/sshd.sync:Trojaned SSH daemon
		  file:/bin/zcut:Trojaned SSH daemon
		  file:/usr/bin/zmuie:Trojaned SSH daemon
		  file:/lib/libkeyutils.so.1.9:Sniffer component
		  file:/lib64/libkeyutils.so.1.9:Sniffer component
		  file:/usr/lib/libkeyutils.so.1.9:Spam tool component
		  file:/usr/lib64/libkeyutils.so.1.9:Spam tool component
		  dir:/dev/ptyas:Langsuir installation directory
		  dir:/usr/bin/take:Trojaned SSH daemon
		  dir:/usr/src/.lib:Rootkit component
		  dir:/usr/share/man/man1/.1c:Eggdrop (IRC bot)
		  dir:/lib/lblip.tk:T0rn Rootkit directory with backdoored SSH-configuration
		  dir:/usr/sbin/...:Rootkit component
		  dir:/usr/share/.gun:Rootkit component
		  dir:/unde/vrei/tu/sa/te/ascunzi/in/server:Unknown rootkit
		  dir:/usr/man/man1/..%%/.dir:Unknown rootkit
		  dir:/usr/X11R6/include/X11/...:Unknown rootkit
		  dir:/usr/X11R6/lib/X11/.fonts/misc/...:Unknown rootkit
		  dir:/tmp/.sys:Rootkit component
		  dir:/tmp/'\'':Rootkit component
		  dir:/tmp/.,:Rootkit component
		  dir:/tmp/,.,:Rootkit component
		  dir:/dev/shm/emilien:Rootkit component
		  dir:/var/tmp/.log:Rootkit component
		  dir:/tmp/zmeu/...%:Rootkit component
		  dir:/var/log/ssh:Rootkit component
		  dir:/dev/ida:Rootkit component
		  dir:/var/lib/games/.src/ssk/shit:Rootkit component
		  dir:/usr/lib/libshtift:Rootkit component
		  dir:/usr/src/.poop:Ramen worm
		  dir:/dev/wd4:IRC bot
		  dir:/var/run/.tmp:Rootkit component
		  dir:/usr/man/man1/lib/.lib:Rootkit component
		  dir:/dev/portd:Rootkit component
		  dir:/dev/...:Rootkit component
		  dir:/usr/share/man/mansps:Rootkit component
		  dir:/lib/.so:Rootkit component
		  dir:/lib/.sso:Rootkit component
		  dir:/usr/include/sslv3:Rootkit component
		  dir:/dev/shm/sshd:Trojaned SSH daemon
		  dir:/usr/share/locale/mk/.dev/sk:Sniffer
		  dir:/usr/share/locale/mk/.dev:Sniffer
		  dir:/usr/include/netda.h:Trojaned SSH daemon
		  dir:/usr/include/.ssh:Trojaned SSH daemon
		  dir:/usr/share/locale/jp/.%:IRC bot
		  dir:/usr/share/.sqe:IRC bot'
+ KLDSTATKEYWORDS='backd00r backdoor darkside nekit rpldev rpldev_mod spapem_core spapem_genr00t hide_process turtle'
+ RCLOCAL_STRINGS='/usr/bin/rpc.wall:Linux Rootkit (LRK4)
			 sshdd:GasKit Rootkit
			 hidef:Knark Rootkit
			 /usr/bin/.etc:Dica-Kit Rootkit'
+ SUSP_FILES_INFO='backdoor:Generic backdoor
			 adore.o:Adore kernel module
			 mod_rootme.so:Apache mod_rootme backdoor
			 phide_mod.o:Process hiding kernel module
			 lbk.ko:LBK FreeBSD kernel module
			 vlogger.o:THC-Vlogger kernel module
			 cleaner.o:Adore kernel module
			 cleaner:Adore Rootkit
			 ava:Adore Rootkit
			 tzava:Adore Rootkit
			 mod_klgr.o:klgr, keyboard logger (kernel module)
			 hydra:THC-Hydra (password capture)
			 hydra.restore:THC-Hydra (password capture)
			 ras2xm:Unknown rootkit
			 vobiscum:Unknown rootkit
			 sshd3:Unknown rootkit
			 system:Unknown rootkit
			 t0rnsb:T0rn Rootkit
			 t0rns:T0rn Rootkit
			 t0rnp:T0rn Rootkit
			 rx4u:Unknown rootkit
			 rx2me:Unknown rootkit
			 sshdu:Unknown rootkit
			 glotzer:Unknown rootkit
			 holber:Devil Rootkit
			 xhide:Process hiding software
			 xh:Process hiding software (alternative of XHide)
			 emech:IRC bot
			 psybnc:IRC bot
			 mech:IRC bot
			 httpd.bin:IRC bot
			 mh:Dica-Kit Rootkit IRC bot
			 xl:Dica-Kit Rootkit
			 write:Dica-Kit Rootkit
			 Phantasmagoria.o:Process hiding Linux kernel module
			 lkt.o:Portacelo Rootkit
			 nlkt.o:Portacelo Rootkit
			 ld_poison.so:Jynx Rootkit
			 .xsyslog:Flooder (Linux/Bckdr-RKC) component
			 .ssyslog:Flooder (Linux/Bckdr-RKC) component
			 pscan2:Port scanner
			 scanssh:Port scanner
			 sshf:Possible port scanner
			 ssh-scan:Port scanner
			 atac:Port scanner component
			 \[pdflush\]:IRC bot
			 libkeyutils.so.1.9:Spam tool component'
+ RCLOCATIONS='/etc/rc.d
		     /etc/rc.local
		     /usr/local/etc/rc.d
		     /usr/local/etc/rc.local
		     /etc/conf.d/local.start
		     /etc/init.d
		     /etc/inittab'
+ STRINGS_INTEGRITY='/usr/sbin/ntpsx
		      /usr/sbin/.../bkit-ava
		      /usr/sbin/.../bkit-d
		      /usr/sbin/.../bkit-shd
		      /usr/sbin/.../bkit-f
		      /usr/include/.../proc.h
		      /usr/include/.../.bash_history
		      /usr/include/.../bkit-get
		      /usr/include/.../bkit-dl
		      /usr/include/.../bkit-screen
		      /usr/include/.../bkit-sleep
		      /usr/lib/.../bkit-adore.o
		      /usr/lib/.../ls
		      /usr/lib/.../netstat
		      /usr/lib/.../lsof
		      /usr/lib/.../bkit-ssh/bkit-shdcfg
		      /usr/lib/.../bkit-ssh/bkit-shhk
		      /usr/lib/.../bkit-ssh/bkit-pw
		      /usr/lib/.../bkit-ssh/bkit-shrs
		      /usr/lib/.../bkit-ssh/bkit-mots
		      /usr/lib/.../uconf.inv
		      /usr/lib/.../psr
		      /usr/lib/.../find
		      /usr/lib/.../pstree
		      /usr/lib/.../slocate
		      /usr/lib/.../du
		      /usr/lib/.../top /usr/sbin/...
		     /usr/include/...
		     /usr/include/.../.tmp
		     /usr/lib/...
		     /usr/lib/.../.ssh
		     /usr/lib/.../bkit-ssh
		     /usr/lib/.bkit-
		     /tmp/.bkp /tmp/.cinik
			   /tmp/.font-unix/.cinik /lib/.sso
		    /lib/.so
		    /var/run/...dica/clean
		    /var/run/...dica/dxr
		    /var/run/...dica/read
		    /var/run/...dica/write
		    /var/run/...dica/lf
		    /var/run/...dica/xl
		    /var/run/...dica/xdr
		    /var/run/...dica/psg
		    /var/run/...dica/secure
		    /var/run/...dica/rdx
		    /var/run/...dica/va
		    /var/run/...dica/cl.sh
		    /var/run/...dica/last.log
		    /usr/bin/.etc
		    /etc/sshd_config
		    /etc/ssh_host_key
		    /etc/ssh_random_seed /dev/ptyp
			  /dev/ptyq
			  /dev/ptyr
			  /dev/ptys
			  /dev/ptyt
			  /dev/fd/.88/freshb-bsd
			  /dev/fd/.88/fresht
			  /dev/fd/.88/zxsniff
			  /dev/fd/.88/zxsniff.log
			  /dev/fd/.99/.ttyf00
			  /dev/fd/.99/.ttyp00
			  /dev/fd/.99/.ttyq00
			  /dev/fd/.99/.ttys00
			  /dev/fd/.99/.pwsx00
			  /etc/.acid
			  /usr/lib/.fx/sched_host.2
			  /usr/lib/.fx/random_d.2
			  /usr/lib/.fx/set_pid.2
			  /usr/lib/.fx/setrgrp.2
			  /usr/lib/.fx/TOHIDE
			  /usr/lib/.fx/cons.saver
			  /usr/lib/.fx/adore/ava/ava
			  /usr/lib/.fx/adore/adore/adore.ko
			  /bin/sysback
			  /usr/local/bin/sysback
			   /usr/lib/.tbd /dev/.lib/lib/lib/t0rns
		    /dev/.lib/lib/lib/du
		    /dev/.lib/lib/lib/ls
		    /dev/.lib/lib/lib/t0rnsb
		    /dev/.lib/lib/lib/ps
		    /dev/.lib/lib/lib/t0rnp
		    /dev/.lib/lib/lib/find
		    /dev/.lib/lib/lib/ifconfig
		    /dev/.lib/lib/lib/pg
		    /dev/.lib/lib/lib/ssh.tgz
		    /dev/.lib/lib/lib/top
		    /dev/.lib/lib/lib/sz
		    /dev/.lib/lib/lib/login
		    /dev/.lib/lib/lib/in.fingerd
		    /dev/.lib/lib/lib/1i0n.sh
		    /dev/.lib/lib/lib/pstree
		    /dev/.lib/lib/lib/in.telnetd
		    /dev/.lib/lib/lib/mjy
		    /dev/.lib/lib/lib/sush
		    /dev/.lib/lib/lib/tfn
		    /dev/.lib/lib/lib/name
		    /dev/.lib/lib/lib/getip.sh
		    /usr/info/.torn/sh*
		    /usr/src/.puta/.1addr
		    /usr/src/.puta/.1file
		    /usr/src/.puta/.1proc
		    /usr/src/.puta/.1logz
		    /usr/info/.t0rn /dev/.lib
		   /dev/.lib/lib
		   /dev/.lib/lib/lib
		   /dev/.lib/lib/lib/dev
		   /dev/.lib/lib/scan
		   /usr/src/.puta
		   /usr/man/man1/man1
		   /usr/man/man1/man1/lib
		   /usr/man/man1/man1/lib/.lib
		   /usr/man/man1/man1/lib/.lib/.backup'
+ SNIFFER_FILES='/usr/lib/libice.log
		       /dev/prom/sn.l
		       /dev/fd/.88/zxsniff.log'
+ LKM_BADNAMES='adore.o
		      bkit-adore.o
		      cleaner.o
		      flkm.o
		      knark.o
		      modhide.o
		      mod_klgr.o
		      phide_mod.o
		      vlogger.o
		      p2.ko
		      rpldev.o
		      xC.o
		      strings.o
		      wkmr26.ko'
+ return
+ SOL_PROC=0
+ SOLARISX=''
+ [ 0 -eq 1 ]
+ BEGINTIME=0
+ ENDTIME=0
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ date +%s
+ BEGINTIME=1443954112
+ [ -n '' ]
+ do_system_commands_checks
+ check_test system_commands
+ echo ' filesystem local_host '
+ grep ' system_commands '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to LOG --type INFO --nl USER_DISABLED_TEST system_commands
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST system_commands'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=USER_DISABLED_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n USER_DISABLED_TEST ]
+ grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ [ -z 'Test '\''$1'\'' disabled at users request.' ]
+ echo 'Test '\''$1'\'' disabled at users request.'
+ sed -e 's/`/\\`/g'
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ test -n 'Test '\''$1'\'' disabled at users request.'
+ eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
+ echo 'Test '\''system_commands'\'' disabled at users request.'
+ sed -e 's/;/\;/g'
+ LINE1='Test '\''system_commands'\'' disabled at users request.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:52]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:52]'
+ [ -n Info ]
+ LOGLINE1='[04:21:52] Info: Test '\''system_commands'\'' disabled at users request.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:52] Info: Test '\''system_commands'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ echo '[04:21:52] Info: Test '\''system_commands'\'' disabled at users request.'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ do_rootkit_checks
+ check_test rootkits
+ echo ' filesystem local_host '
+ grep ' rootkits '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to LOG --type INFO --nl USER_DISABLED_TEST rootkits
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST rootkits'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=USER_DISABLED_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n USER_DISABLED_TEST ]
+ grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ [ -z 'Test '\''$1'\'' disabled at users request.' ]
+ echo 'Test '\''$1'\'' disabled at users request.'
+ sed -e 's/`/\\`/g'
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ test -n 'Test '\''$1'\'' disabled at users request.'
+ eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
+ echo 'Test '\''rootkits'\'' disabled at users request.'
+ sed -e 's/;/\;/g'
+ LINE1='Test '\''rootkits'\'' disabled at users request.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:53]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:53]'
+ [ -n Info ]
+ LOGLINE1='[04:21:53] Info: Test '\''rootkits'\'' disabled at users request.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:53] Info: Test '\''rootkits'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ echo '[04:21:53] Info: Test '\''rootkits'\'' disabled at users request.'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ do_network_checks
+ check_test network
+ echo ' filesystem local_host '
+ grep ' network '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to LOG --type INFO --nl USER_DISABLED_TEST network
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST network'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=USER_DISABLED_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n USER_DISABLED_TEST ]
+ grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ [ -z 'Test '\''$1'\'' disabled at users request.' ]
+ echo 'Test '\''$1'\'' disabled at users request.'
+ sed -e 's/`/\\`/g'
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ test -n 'Test '\''$1'\'' disabled at users request.'
+ eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Test '\''network'\'' disabled at users request.'
+ LINE1='Test '\''network'\'' disabled at users request.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:53]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:53]'
+ [ -n Info ]
+ LOGLINE1='[04:21:53] Info: Test '\''network'\'' disabled at users request.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:53] Info: Test '\''network'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:53] Info: Test '\''network'\'' disabled at users request.'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ do_local_host_checks
+ check_test local_host
+ grep ' local_host '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n ' filesystem local_host ' ]
+ echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan '
+ grep ' local_host '
+ [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' = none -o -z '' ]
+ return 0
+
+ display --to LOG --type INFO --screen-nl --nl STARTING_TEST local_host
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --screen-nl --nl STARTING_TEST local_host'
+ [ 8 -le 0 ]
+ [ 8 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 6 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 4 -ge 1 ]
+ SCREENNL=1
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=STARTING_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n STARTING_TEST ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^STARTING_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Starting test name '\''$1'\'
+ [ 0 -eq 1 ]
+ [ -z 'Starting test name '\''$1'\' ]
+ sed -e 's/`/\\`/g'
+ echo 'Starting test name '\''$1'\'
+ LINE1='Starting test name '\''$1'\'
+ test -n 'Starting test name '\''$1'\'
+ eval 'echo "Starting test name '\''$1'\''" | sed -e '\''s/;/\;/g'\'
+ echo 'Starting test name '\''local_host'\'
+ sed -e 's/;/\;/g'
+ LINE1='Starting test name '\''local_host'\'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:53]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:53]'
+ [ -n Info ]
+ LOGLINE1='[04:21:53] Info: Starting test name '\''local_host'\'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 1 -eq 1 ]
+ test 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0
+ echo ''

+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:53] Info: Starting test name '\''local_host'\'
+ [ 0 -eq 1 ]
+ echo '[04:21:53] Info: Starting test name '\''local_host'\'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to SCREEN+LOG --type PLAIN --color YELLOW CHECK_LOCALHOST
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --color YELLOW CHECK_LOCALHOST'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ [ 1 -eq 1 ]
+ test -n YELLOW
+ eval 'echo ${YELLOW}'
+ echo '[1;33m'
+ COLOR='[1;33m'
+ [ -z '[1;33m' ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=CHECK_LOCALHOST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '[1;33m' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CHECK_LOCALHOST ]
+ grep -a ^CHECK_LOCALHOST: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Checking the local host...'
+ [ 0 -eq 1 ]
+ [ -z 'Checking the local host...' ]
+ echo 'Checking the local host...'
+ sed -e 's/`/\\`/g'
+ LINE1='Checking the local host...'
+ test -n 'Checking the local host...'
+ eval 'echo "Checking the local host..." | sed -e '\''s/;/\;/g'\'
+ echo 'Checking the local host...'
+ sed -e 's/;/\;/g'
+ LINE1='Checking the local host...'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:53]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:21:53] Checking the local host...'
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '[1;33m' ]
+ LINE1='[1;33mChecking the local host...[0;39m'
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '[1;33mChecking the local host...[0;39m'
[1;33mChecking the local host...[0;39m
+ [ 1 -eq 1 ]
+ echo -e '[04:21:53] Checking the local host...'
+ [ 0 -eq 1 ]
+ echo '[04:21:53] Checking the local host...'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ do_system_startup_file_checks
+ check_test startup_files
+ grep ' startup_files '
+ echo ' filesystem local_host '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to LOG --type INFO --nl USER_DISABLED_TEST startup_files
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST startup_files'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=USER_DISABLED_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n USER_DISABLED_TEST ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ [ -z 'Test '\''$1'\'' disabled at users request.' ]
+ sed -e 's/`/\\`/g'
+ echo 'Test '\''$1'\'' disabled at users request.'
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ test -n 'Test '\''$1'\'' disabled at users request.'
+ eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Test '\''startup_files'\'' disabled at users request.'
+ LINE1='Test '\''startup_files'\'' disabled at users request.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:54]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:54]'
+ [ -n Info ]
+ LOGLINE1='[04:21:54] Info: Test '\''startup_files'\'' disabled at users request.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:54] Info: Test '\''startup_files'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ echo '[04:21:54] Info: Test '\''startup_files'\'' disabled at users request.'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ do_group_accounts_check
+ check_test group_accounts
+ echo ' filesystem local_host '
+ grep ' group_accounts '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to LOG --type INFO --nl USER_DISABLED_TEST group_accounts
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST group_accounts'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=USER_DISABLED_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n USER_DISABLED_TEST ]
+ grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ [ -z 'Test '\''$1'\'' disabled at users request.' ]
+ echo 'Test '\''$1'\'' disabled at users request.'
+ sed -e 's/`/\\`/g'
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ test -n 'Test '\''$1'\'' disabled at users request.'
+ eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
+ echo 'Test '\''group_accounts'\'' disabled at users request.'
+ sed -e 's/;/\;/g'
+ LINE1='Test '\''group_accounts'\'' disabled at users request.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:54]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:54]'
+ [ -n Info ]
+ LOGLINE1='[04:21:54] Info: Test '\''group_accounts'\'' disabled at users request.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:54] Info: Test '\''group_accounts'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ echo '[04:21:54] Info: Test '\''group_accounts'\'' disabled at users request.'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ do_system_config_files_check
+ check_test system_configs
+ echo ' filesystem local_host '
+ grep ' system_configs '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to LOG --type INFO --nl USER_DISABLED_TEST system_configs
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST system_configs'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=USER_DISABLED_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n USER_DISABLED_TEST ]
+ grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ [ -z 'Test '\''$1'\'' disabled at users request.' ]
+ echo 'Test '\''$1'\'' disabled at users request.'
+ sed -e 's/`/\\`/g'
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ test -n 'Test '\''$1'\'' disabled at users request.'
+ eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
+ echo 'Test '\''system_configs'\'' disabled at users request.'
+ sed -e 's/;/\;/g'
+ LINE1='Test '\''system_configs'\'' disabled at users request.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:54]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:54]'
+ [ -n Info ]
+ LOGLINE1='[04:21:54] Info: Test '\''system_configs'\'' disabled at users request.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:54] Info: Test '\''system_configs'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ echo '[04:21:54] Info: Test '\''system_configs'\'' disabled at users request.'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ do_filesystem_check
+ check_test filesystem
+ echo ' filesystem local_host '
+ grep ' filesystem '
+ [ 'filesystem local_host' = all -o -n ' filesystem local_host ' ]
+ echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan '
+ grep ' filesystem '
+ [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' = none -o -z '' ]
+ return 0
+
+ display --to LOG --type INFO --screen-nl --nl STARTING_TEST filesystem
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --screen-nl --nl STARTING_TEST filesystem'
+ [ 8 -le 0 ]
+ [ 8 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 6 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 4 -ge 1 ]
+ SCREENNL=1
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=STARTING_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n STARTING_TEST ]
+ grep -a ^STARTING_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Starting test name '\''$1'\'
+ [ 0 -eq 1 ]
+ [ -z 'Starting test name '\''$1'\' ]
+ echo 'Starting test name '\''$1'\'
+ sed -e 's/`/\\`/g'
+ LINE1='Starting test name '\''$1'\'
+ test -n 'Starting test name '\''$1'\'
+ eval 'echo "Starting test name '\''$1'\''" | sed -e '\''s/;/\;/g'\'
+ echo 'Starting test name '\''filesystem'\'
+ sed -e 's/;/\;/g'
+ LINE1='Starting test name '\''filesystem'\'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:54]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:21:54]'
+ [ -n Info ]
+ LOGLINE1='[04:21:54] Info: Starting test name '\''filesystem'\'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 1 -eq 1 ]
+ test 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0
+ echo ''

+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:54] Info: Starting test name '\''filesystem'\'
+ [ 0 -eq 1 ]
+ echo '[04:21:54] Info: Starting test name '\''filesystem'\'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ display --to SCREEN+LOG --type PLAIN --screen-indent 2 FILESYSTEM_START
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 2 FILESYSTEM_START'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ SCREENINDENT=2
+ [ -z 2 ]
+ grep '^[0-9]*$'
+ echo 2
+ [ -z 2 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=FILESYSTEM_START
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_START ]
+ grep -a ^FILESYSTEM_START: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Performing filesystem checks'
+ [ 0 -eq 1 ]
+ [ -z 'Performing filesystem checks' ]
+ echo 'Performing filesystem checks'
+ sed -e 's/`/\\`/g'
+ LINE1='Performing filesystem checks'
+ test -n 'Performing filesystem checks'
+ eval 'echo "Performing filesystem checks" | sed -e '\''s/;/\;/g'\'
+ echo 'Performing filesystem checks'
+ sed -e 's/;/\;/g'
+ LINE1='Performing filesystem checks'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:55]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:21:55] Performing filesystem checks'
+ [ 1 -eq 1 -a 2 -gt 0 ]
+ echo '                                                              '
+ cut -c1-2
+ SPACES='  '
+ LINE1='  Performing filesystem checks'
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '  Performing filesystem checks'
  Performing filesystem checks
+ [ 1 -eq 1 ]
+ echo -e '[04:21:55] Performing filesystem checks'
+ [ 0 -eq 1 ]
+ echo '[04:21:55] Performing filesystem checks'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ [ ! -d /dev ]
+ [ -z /usr/bin/file ]
+ [ THOROUGH = THOROUGH -a -z /usr/bin/find ]
+ display --to LOG --type INFO CONFIG_SCAN_MODE_DEV THOROUGH
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO CONFIG_SCAN_MODE_DEV THOROUGH'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=CONFIG_SCAN_MODE_DEV
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CONFIG_SCAN_MODE_DEV ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^CONFIG_SCAN_MODE_DEV: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='SCAN_MODE_DEV set to '\''$1'\'
+ [ 0 -eq 1 ]
+ [ -z 'SCAN_MODE_DEV set to '\''$1'\' ]
+ sed -e 's/`/\\`/g'
+ echo 'SCAN_MODE_DEV set to '\''$1'\'
+ LINE1='SCAN_MODE_DEV set to '\''$1'\'
+ test -n 'SCAN_MODE_DEV set to '\''$1'\'
+ eval 'echo "SCAN_MODE_DEV set to '\''$1'\''" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'SCAN_MODE_DEV set to '\''THOROUGH'\'
+ LINE1='SCAN_MODE_DEV set to '\''THOROUGH'\'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:21:55]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Info ]
+ LOGLINE1='[04:21:55] Info: SCAN_MODE_DEV set to '\''THOROUGH'\'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:21:55] Info: SCAN_MODE_DEV set to '\''THOROUGH'\'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:21:55] Info: SCAN_MODE_DEV set to '\''THOROUGH'\'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ [ -n '' ]
+ FDESCFS=0
+ FOUNDFILES=''
+ [ 1 -eq 1 ]
+ find_cmd mount
+ CMD=mount
+ test -z mount
+ grep /
+ echo mount
+ [ -n '' ]
+ [ -f /sbin/mount -a -x /sbin/mount ]
+ echo /sbin/mount
+ return
+ RKHTMPVAR=/sbin/mount
+ [ -n /sbin/mount ]
+ /sbin/mount
+ egrep '^fdesc(fs)? .*type fdesc'
+ test -n ''
+ [ THOROUGH = LAZY ]
+ IFS='
'
+ /usr/bin/find /dev ! -type d -a ! -type l
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/geom.ctl
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/geom.ctl
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/3)'
+ echo 'character special (0/3)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/3)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/console
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/console
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/4)'
+ echo 'character special (0/4)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/4)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/devctl
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/devctl
+ FTYPE='character special (0/5)'
+ echo 'character special (0/5)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/5)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/ctty
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/ctty
+ FTYPE='character special (0/6)'
+ echo 'character special (0/6)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/6)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/klog
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/klog
+ cut -c2-
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/7)'
+ grep 'universal binary'
+ echo 'character special (0/7)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/7)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/fido
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/fido
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/8)'
+ grep 'universal binary'
+ echo 'character special (0/8)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/8)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/null
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/null
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/9)'
+ echo 'character special (0/9)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/9)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/zero
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/zero
+ FTYPE='character special (0/10)'
+ echo 'character special (0/10)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/10)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/bpf
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/bpf
+ FTYPE='character special (0/11)'
+ echo 'character special (0/11)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/11)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/openfirm
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/openfirm
+ cut -c2-
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/13)'
+ echo 'character special (0/13)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/13)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/ptmx
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/ptmx
+ cut -c2-
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/14)'
+ grep 'universal binary'
+ echo 'character special (0/14)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/14)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/nfslock
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/nfslock
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/15)'
+ grep 'universal binary'
+ echo 'character special (0/15)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/15)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/random
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/random
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/16)'
+ echo 'character special (0/16)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/16)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/mem
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/mem
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/18)'
+ echo 'character special (0/18)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/18)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/kmem
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/kmem
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/19)'
+ grep 'universal binary'
+ echo 'character special (0/19)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/19)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/snp
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/snp
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/20)'
+ echo 'character special (0/20)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/20)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/fd/0
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/fd/0
+ FTYPE='character special (0/21)'
+ echo 'character special (0/21)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/21)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/fd/1
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ cut -c2-
+ /usr/bin/file /dev/fd/1
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/23)'
+ echo 'character special (0/23)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/23)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/fd/2
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/fd/2
+ cut -c2-
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/25)'
+ grep 'universal binary'
+ echo 'character special (0/25)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/25)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/gpioc0
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/gpioc0
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/27)'
+ echo 'character special (0/27)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/27)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/led/led1
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/led/led1
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/28)'
+ grep 'universal binary'
+ echo 'character special (0/28)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/28)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/led/led2
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/led/led2
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/29)'
+ echo 'character special (0/29)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/29)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/led/led3
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/led/led3
+ FTYPE='character special (0/30)'
+ echo 'character special (0/30)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/30)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/led/led4
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/led/led4
+ FTYPE='character special (0/31)'
+ echo 'character special (0/31)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/31)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/ttyu0
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/ttyu0
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/32)'
+ grep 'universal binary'
+ echo 'character special (0/32)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/32)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/ttyu0.init
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/ttyu0.init
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/33)'
+ grep 'universal binary'
+ echo 'character special (0/33)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/33)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/ttyu0.lock
+ test -z ''
+ do_dev_whitelist_check
+ cut -c2-
+ /usr/bin/file /dev/ttyu0.lock
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/34)'
+ grep 'universal binary'
+ echo 'character special (0/34)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/34)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/cuau0
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/cuau0
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/35)'
+ grep 'universal binary'
+ echo 'character special (0/35)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/35)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/cuau0.init
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/cuau0.init
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/36)'
+ echo 'character special (0/36)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/36)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/cuau0.lock
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/cuau0.lock
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/37)'
+ echo 'character special (0/37)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/37)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/iic0
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/iic0
+ FTYPE='character special (0/38)'
+ echo 'character special (0/38)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/38)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/iic1
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/iic1
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/39)'
+ echo 'character special (0/39)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/39)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/iic2
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/iic2
+ cut -c2-
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/40)'
+ grep 'universal binary'
+ echo 'character special (0/40)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/40)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/pruss0
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/pruss0
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/41)'
+ grep 'universal binary'
+ echo 'character special (0/41)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/41)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/ufssuspend
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/ufssuspend
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/42)'
+ echo 'character special (0/42)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/42)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/usbctl
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ cut -c2-
+ /usr/bin/file /dev/usbctl
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/45)'
+ echo 'character special (0/45)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/45)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/xpt0
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/xpt0
+ FTYPE='character special (0/46)'
+ echo 'character special (0/46)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/46)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/usb/0.1.0
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/usb/0.1.0
+ FTYPE='character special (0/47)'
+ echo 'character special (0/47)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/47)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/usb/1.1.0
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/usb/1.1.0
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/49)'
+ grep 'universal binary'
+ echo 'character special (0/49)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/49)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/usb/0.1.1
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/usb/0.1.1
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/52)'
+ grep 'universal binary'
+ echo 'character special (0/52)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/52)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/usb/1.1.1
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/usb/1.1.1
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/53)'
+ echo 'character special (0/53)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/53)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/mdctl
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/mdctl
+ FTYPE='character special (0/51)'
+ echo 'character special (0/51)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/51)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/devstat
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/devstat
+ FTYPE='character special (0/54)'
+ echo 'character special (0/54)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/54)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/mmcsd0
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/mmcsd0
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/55)'
+ grep 'universal binary'
+ echo 'character special (0/55)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/55)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/diskid/DISK-34D2DDBF
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/diskid/DISK-34D2DDBF
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/67)'
+ grep 'universal binary'
+ echo 'character special (0/67)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/67)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/diskid/DISK-34D2DDBFs1
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/diskid/DISK-34D2DDBFs1
+ FTYPE='character special (0/70)'
+ echo 'character special (0/70)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/70)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/diskid/DISK-34D2DDBFs2
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/diskid/DISK-34D2DDBFs2
+ FTYPE='character special (0/71)'
+ echo 'character special (0/71)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/71)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/mmcsd0s1
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/mmcsd0s1
+ cut -c2-
+ awk -F: '{ print $NF }'
+ FTYPE='character special (0/57)'
+ echo 'character special (0/57)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/57)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/mmcsd0s2
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/mmcsd0s2
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/58)'
+ grep 'universal binary'
+ echo 'character special (0/58)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/58)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/msdosfs/MSDOSBOOT
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/msdosfs/MSDOSBOOT
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/61)'
+ echo 'character special (0/61)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/61)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/msdosfs/boot
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/msdosfs/boot
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/72)'
+ echo 'character special (0/72)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/72)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/mmcsd0s2a
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/mmcsd0s2a
+ FTYPE='character special (0/62)'
+ echo 'character special (0/62)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/62)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/ufs/rootfs
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ /usr/bin/file /dev/ufs/rootfs
+ cut -c2-
+ FTYPE='character special (0/65)'
+ echo 'character special (0/65)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/65)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/mmcsd1
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/mmcsd1
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/66)'
+ grep 'universal binary'
+ echo 'character special (0/66)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/66)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/mmcsd1s1
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/mmcsd1s1
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/68)'
+ grep 'universal binary'
+ echo 'character special (0/68)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/68)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/mmcsd1s2
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/mmcsd1s2
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/69)'
+ echo 'character special (0/69)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/69)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/ext2fs/rootfs
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/ext2fs/rootfs
+ FTYPE='character special (0/73)'
+ echo 'character special (0/73)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/73)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/md0
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/md0
+ FTYPE='character special (0/56)'
+ echo 'character special (0/56)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/56)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ echo /dev/md1
+ grep '/\.[^/]*$'
+ test -z ''
+ do_dev_whitelist_check
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file /dev/md1
+ FTYPE='character special (0/60)'
+ echo 'character special (0/60)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/60)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/md1.eli
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/md1.eli
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/63)'
+ grep 'universal binary'
+ echo 'character special (0/63)'
+ [ 0 -eq 1 -a -n '' ]
+ echo 'character special (0/63)'
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/fuse
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/fuse
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/64)'
+ grep 'universal binary'
+ echo 'character special (0/64)'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/64)'
+ [ -z '' ]
+ return
+ [ 0 -eq 1 ]
+ grep '/\.[^/]*$'
+ echo /dev/pts/0
+ test -z ''
+ do_dev_whitelist_check
+ /usr/bin/file /dev/pts/0
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='character special (0/79)'
+ echo 'character special (0/79)'
+ grep 'universal binary'
+ [ 0 -eq 1 -a -n '' ]
+ egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
+ echo 'character special (0/79)'
+ [ -z '' ]
+ return
+ IFS='
'
+ echo ''
+ sed -e '/^$/d'
+ FOUNDFILES=''
+ [ -z '' ]
+ display --to SCREEN+LOG --type PLAIN --result NONE_FOUND --color GREEN --log-indent 2 --screen-indent 4 FILESYSTEM_DEV_CHECK
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --result NONE_FOUND --color GREEN --log-indent 2 --screen-indent 4 FILESYSTEM_DEV_CHECK'
+ [ 13 -le 0 ]
+ [ 13 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 11 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 9 -ge 1 ]
+ eval echo '$MSG_RESULT_NONE_FOUND'
+ echo None found
+ RESULT='None found'
+ [ -z 'None found' ]
+ shift
+ shift
+ [ 7 -ge 1 ]
+ [ 1 -eq 1 ]
+ test -n GREEN
+ eval 'echo ${GREEN}'
+ echo '[1;32m'
+ COLOR='[1;32m'
+ [ -z '[1;32m' ]
+ shift
+ shift
+ [ 5 -ge 1 ]
+ LOGINDENT=2
+ [ -z 2 ]
+ echo 2
+ grep '^[0-9]*$'
+ [ -z 2 ]
+ shift
+ shift
+ [ 3 -ge 1 ]
+ SCREENINDENT=4
+ [ -z 4 ]
+ echo 4
+ grep '^[0-9]*$'
+ [ -z 4 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=FILESYSTEM_DEV_CHECK
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n 'None found' -a -z '[1;32m' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a 'None found' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_DEV_CHECK ]
+ grep -a ^FILESYSTEM_DEV_CHECK: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Checking /dev for suspicious file types'
+ [ 0 -eq 1 ]
+ [ -z 'Checking /dev for suspicious file types' ]
+ echo 'Checking /dev for suspicious file types'
+ sed -e 's/`/\\`/g'
+ LINE1='Checking /dev for suspicious file types'
+ test -n 'Checking /dev for suspicious file types'
+ eval 'echo "Checking /dev for suspicious file types" | sed -e '\''s/;/\;/g'\'
+ echo 'Checking /dev for suspicious file types'
+ sed -e 's/;/\;/g'
+ LINE1='Checking /dev for suspicious file types'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:06]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 2 -gt 0
+ cut -c1-2
+ echo '                                                              '
+ SPACES='  '
+ LOGLINE1='[04:22:06]   Checking /dev for suspicious file types'
+ [ 1 -eq 1 -a 4 -gt 0 ]
+ cut -c1-4
+ echo '                                                              '
+ SPACES='    '
+ LINE1='    Checking /dev for suspicious file types'
+ [ -n 'None found' ]
+ [ 1 -eq 1 ]
+ wc -c
+ tr -d ' '
+ echo '    Checking /dev for suspicious file types'
+ LINE1_NUM=44
+ expr 62 - 44
+ NUM_SPACES=18
+ test 18 -lt 1
+ [ 1 -eq 0 ]
+ LINE1='    Checking /dev for suspicious file types\033[18C[ [1;32mNone found[0;39m ]'
+ [ 1 -eq 1 ]
+ echo '[04:22:06]   Checking /dev for suspicious file types'
+ wc -c
+ tr -d ' '
+ LOGLINE1_NUM=53
+ expr 62 - 53
+ NUM_SPACES=9
+ test 9 -lt 1
+ echo '                                                              '
+ cut -c1-9
+ SPACES='         '
+ LOGLINE1='[04:22:06]   Checking /dev for suspicious file types         [ None found ]'
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '    Checking /dev for suspicious file types\033[18C[ [1;32mNone found[0;39m ]'
    Checking /dev for suspicious file types[18C[ [1;32mNone found[0;39m ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:06]   Checking /dev for suspicious file types         [ None found ]'
+ [ 0 -eq 1 ]
+ echo '[04:22:06]   Checking /dev for suspicious file types         [ None found ]'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ [ -z /usr/bin/file ]
+ FOUNDDIRS=''
+ FOUNDFILES=''
+ LOOKINDIRS=''
+ SHORTSEARCHDIRS='/usr /etc'
+ LONGSEARCHDIRS='/dev /bin /usr/man /usr/share/man /usr/bin /usr/sbin /sbin'
+ [ -z /usr/bin/find ]
+ [ -d /usr ]
+ egrep -v '/\.\.?$'
+ ls -1d /usr/. /usr/..
+ RKHTMPVAR='[1m[38;5;6m/usr/.[39;49m[m
[1m[38;5;6m/usr/..[39;49m[m'
+ test -n '[1m[38;5;6m/usr/.[39;49m[m
[1m[38;5;6m/usr/..[39;49m[m'
+ LOOKINDIRS='
[1m[38;5;6m/usr/.[39;49m[m
[1m[38;5;6m/usr/..[39;49m[m'
+ [ -d /etc ]
+ egrep -v '/\.\.?$'
+ ls -1d /etc/. /etc/..
+ RKHTMPVAR='[1m[38;5;6m/etc/.[39;49m[m
[1m[38;5;6m/etc/..[39;49m[m'
+ test -n '[1m[38;5;6m/etc/.[39;49m[m
[1m[38;5;6m/etc/..[39;49m[m'
+ LOOKINDIRS='
[1m[38;5;6m/usr/.[39;49m[m
[1m[38;5;6m/usr/..[39;49m[m
[1m[38;5;6m/etc/.[39;49m[m
[1m[38;5;6m/etc/..[39;49m[m'
+ [ -d /dev ]
+ /usr/bin/find /dev -name '.*'
+ RKHTMPVAR=''
+ test -n ''
+ [ -d /bin ]
+ /usr/bin/find /bin -name '.*'
+ RKHTMPVAR=''
+ test -n ''
+ [ -d /usr/man ]
+ [ -d /usr/share/man ]
+ /usr/bin/find /usr/share/man -name '.*'
+ RKHTMPVAR=''
+ test -n ''
+ [ -d /usr/bin ]
+ /usr/bin/find /usr/bin -name '.*'
+ RKHTMPVAR=''
+ test -n ''
+ [ -d /usr/sbin ]
+ /usr/bin/find /usr/sbin -name '.*'
+ RKHTMPVAR=''
+ test -n ''
+ [ -d /sbin ]
+ /usr/bin/find /sbin -name '.*'
+ RKHTMPVAR=''
+ test -n ''
+ [ -n '' ]
+ [ -n '' ]
+ IFS='
'
+ [ 0 -eq 1 ]
+ /usr/bin/file '[1m[38;5;6m/usr/.[39;49m[m'
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ echo 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ egrep 'character special|block special|empty'
+ test -n ''
+ sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
+ echo '[1m[38;5;6m/usr/.[39;49m[m'
+ FNAMEGREP='\[1m\[38;5;6m/usr/\.\[39;49m\[m'
+ grep directory
+ echo 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ -n 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)' ]
+ echo ''
+ grep '^\[1m\[38;5;6m/usr/\.\[39;49m\[m$'
+ [ -n '' ]
+ FOUNDDIRS='
[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 0 -eq 1 ]
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file '[1m[38;5;6m/usr/..[39;49m[m'
+ FTYPE='cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ echo 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ egrep 'character special|block special|empty'
+ test -n ''
+ sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
+ echo '[1m[38;5;6m/usr/..[39;49m[m'
+ FNAMEGREP='\[1m\[38;5;6m/usr/\.\.\[39;49m\[m'
+ grep directory
+ echo 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ -n 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)' ]
+ echo ''
+ grep '^\[1m\[38;5;6m/usr/\.\.\[39;49m\[m$'
+ [ -n '' ]
+ FOUNDDIRS='
[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 0 -eq 1 ]
+ awk -F: '{ print $NF }'
+ cut -c2-
+ /usr/bin/file '[1m[38;5;6m/etc/.[39;49m[m'
+ FTYPE='cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ echo 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ egrep 'character special|block special|empty'
+ test -n ''
+ echo '[1m[38;5;6m/etc/.[39;49m[m'
+ sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
+ FNAMEGREP='\[1m\[38;5;6m/etc/\.\[39;49m\[m'
+ echo 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ grep directory
+ [ -n 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)' ]
+ grep '^\[1m\[38;5;6m/etc/\.\[39;49m\[m$'
+ echo ''
+ [ -n '' ]
+ FOUNDDIRS='
[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 0 -eq 1 ]
+ /usr/bin/file '[1m[38;5;6m/etc/..[39;49m[m'
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ egrep 'character special|block special|empty'
+ echo 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ test -n ''
+ echo '[1m[38;5;6m/etc/..[39;49m[m'
+ sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
+ FNAMEGREP='\[1m\[38;5;6m/etc/\.\.\[39;49m\[m'
+ echo 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ grep directory
+ [ -n 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)' ]
+ echo ''
+ grep '^\[1m\[38;5;6m/etc/\.\.\[39;49m\[m$'
+ [ -n '' ]
+ FOUNDDIRS='
[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ IFS='
'
+ sed -e '/^$/d'
+ echo '
[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ FOUNDDIRS='[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ echo ''
+ sed -e '/^$/d'
+ FOUNDFILES=''
+ [ -z '[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)' -a -z '' ]
+ display --to SCREEN+LOG --type PLAIN --result WARNING --color RED --log-indent 2 --screen-indent 4 FILESYSTEM_HIDDEN_CHECK
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --result WARNING --color RED --log-indent 2 --screen-indent 4 FILESYSTEM_HIDDEN_CHECK'
+ [ 13 -le 0 ]
+ [ 13 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 11 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 9 -ge 1 ]
+ eval echo '$MSG_RESULT_WARNING'
+ echo Warning
+ RESULT=Warning
+ [ -z Warning ]
+ shift
+ shift
+ [ 7 -ge 1 ]
+ [ 1 -eq 1 ]
+ test -n RED
+ eval 'echo ${RED}'
+ echo '[1;31m'
+ COLOR='[1;31m'
+ [ -z '[1;31m' ]
+ shift
+ shift
+ [ 5 -ge 1 ]
+ LOGINDENT=2
+ [ -z 2 ]
+ grep '^[0-9]*$'
+ echo 2
+ [ -z 2 ]
+ shift
+ shift
+ [ 3 -ge 1 ]
+ SCREENINDENT=4
+ [ -z 4 ]
+ echo 4
+ grep '^[0-9]*$'
+ [ -z 4 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=FILESYSTEM_HIDDEN_CHECK
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n Warning -a -z '[1;31m' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a Warning = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_HIDDEN_CHECK ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^FILESYSTEM_HIDDEN_CHECK: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Checking for hidden files and directories'
+ [ 0 -eq 1 ]
+ [ -z 'Checking for hidden files and directories' ]
+ sed -e 's/`/\\`/g'
+ echo 'Checking for hidden files and directories'
+ LINE1='Checking for hidden files and directories'
+ test -n 'Checking for hidden files and directories'
+ eval 'echo "Checking for hidden files and directories" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Checking for hidden files and directories'
+ LINE1='Checking for hidden files and directories'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:08]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 2 -gt 0
+ echo '                                                              '
+ cut -c1-2
+ SPACES='  '
+ LOGLINE1='[04:22:08]   Checking for hidden files and directories'
+ [ 1 -eq 1 -a 4 -gt 0 ]
+ echo '                                                              '
+ cut -c1-4
+ SPACES='    '
+ LINE1='    Checking for hidden files and directories'
+ [ -n Warning ]
+ [ 1 -eq 1 ]
+ wc -c
+ tr -d ' '
+ echo '    Checking for hidden files and directories'
+ LINE1_NUM=46
+ expr 62 - 46
+ NUM_SPACES=16
+ test 16 -lt 1
+ [ 1 -eq 0 ]
+ LINE1='    Checking for hidden files and directories\033[16C[ [1;31mWarning[0;39m ]'
+ [ 1 -eq 1 ]
+ wc -c
+ tr -d ' '
+ echo '[04:22:08]   Checking for hidden files and directories'
+ LOGLINE1_NUM=55
+ expr 62 - 55
+ NUM_SPACES=7
+ test 7 -lt 1
+ cut -c1-7
+ echo '                                                              '
+ SPACES='       '
+ LOGLINE1='[04:22:08]   Checking for hidden files and directories       [ Warning ]'
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '    Checking for hidden files and directories\033[16C[ [1;31mWarning[0;39m ]'
    Checking for hidden files and directories[16C[ [1;31mWarning[0;39m ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:08]   Checking for hidden files and directories       [ Warning ]'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:22:08]   Checking for hidden files and directories       [ Warning ]'
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ IFS='
'
+ awk -F: '{ print $NF }'
+ cut -c2-
+ echo '[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ FTYPE='cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ echo '[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ sed -e 's/: [^:]*$//'
+ FNAME='[1m[38;5;6m/usr/.[39;49m[m'
+ [ 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
+ name2text '[1m[38;5;6m/usr/.[39;49m[m'
+ echo -e '[1m[38;5;6m/usr/.[39;49m[m'
+ sed -e 's/ /<SP>/g; s/	/<TAB>/g'
+ tr -d '\n'
+ tr '[:cntrl:]' '?'
+ return
+ display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to
LOG
--type
WARNING
FILESYSTEM_HIDDEN_DIR_FOUND
?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_WARNING'
+ echo Warning
+ TYPE=Warning
+ [ -z Warning -a WARNING != PLAIN ]
+ test WARNING = WARNING
+ WARN_MSG=1
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=FILESYSTEM_HIDDEN_DIR_FOUND
+ shift
+ break
+ test 1 -eq 1
+ expr 0 + 1
+ WARNING_COUNT=1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Warning
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head '-n 1'
+ LINE1='Hidden directory found: $1'
+ [ 0 -eq 1 ]
+ [ -z 'Hidden directory found: $1' ]
+ echo 'Hidden directory found: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='Hidden directory found: $1'
+ test -n 'Hidden directory found: $1'
+ eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ sed -e 's/;/\;/g'
+ LINE1='Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:08]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Warning ]
+ LOGLINE1='[04:22:08] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:08] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ test 0 -eq 1
+ LINE1=1
+ OLDIFS='
'
+ IFS='
'
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ [ 1 -eq 1 ]
+ LINE1=0
+ continue
+ IFS='
'
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo '[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ sed -e 's/: [^:]*$//'
+ echo '[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ FNAME='[1m[38;5;6m/usr/..[39;49m[m'
+ [ 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
+ name2text '[1m[38;5;6m/usr/..[39;49m[m'
+ sed -e 's/ /<SP>/g; s/	/<TAB>/g'
+ tr -d '\n'
+ tr '[:cntrl:]' '?'
+ echo -e '[1m[38;5;6m/usr/..[39;49m[m'
+ return
+ display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to
LOG
--type
WARNING
FILESYSTEM_HIDDEN_DIR_FOUND
?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_WARNING'
+ echo Warning
+ TYPE=Warning
+ [ -z Warning -a WARNING != PLAIN ]
+ test WARNING = WARNING
+ WARN_MSG=1
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=FILESYSTEM_HIDDEN_DIR_FOUND
+ shift
+ break
+ test 1 -eq 1
+ expr 1 + 1
+ WARNING_COUNT=2
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Warning
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ head '-n 1'
+ cut -d: -f2-
+ LINE1='Hidden directory found: $1'
+ [ 0 -eq 1 ]
+ [ -z 'Hidden directory found: $1' ]
+ echo 'Hidden directory found: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='Hidden directory found: $1'
+ test -n 'Hidden directory found: $1'
+ eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ sed -e 's/;/\;/g'
+ LINE1='Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:09]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Warning ]
+ LOGLINE1='[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ test 0 -eq 1
+ LINE1=1
+ OLDIFS='
'
+ IFS='
'
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ [ 1 -eq 1 ]
+ LINE1=0
+ continue
+ IFS='
'
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ awk -F: '{ print $NF }'
+ cut -c2-
+ echo '[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ FTYPE='cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ echo '[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ sed -e 's/: [^:]*$//'
+ FNAME='[1m[38;5;6m/etc/.[39;49m[m'
+ [ 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
+ name2text '[1m[38;5;6m/etc/.[39;49m[m'
+ sed -e 's/ /<SP>/g; s/	/<TAB>/g'
+ tr -d '\n'
+ echo -e '[1m[38;5;6m/etc/.[39;49m[m'
+ tr '[:cntrl:]' '?'
+ return
+ display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to
LOG
--type
WARNING
FILESYSTEM_HIDDEN_DIR_FOUND
?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_WARNING'
+ echo Warning
+ TYPE=Warning
+ [ -z Warning -a WARNING != PLAIN ]
+ test WARNING = WARNING
+ WARN_MSG=1
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=FILESYSTEM_HIDDEN_DIR_FOUND
+ shift
+ break
+ test 1 -eq 1
+ expr 2 + 1
+ WARNING_COUNT=3
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Warning
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
+ head '-n 1'
+ cut -d: -f2-
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='Hidden directory found: $1'
+ [ 0 -eq 1 ]
+ [ -z 'Hidden directory found: $1' ]
+ sed -e 's/`/\\`/g'
+ echo 'Hidden directory found: $1'
+ LINE1='Hidden directory found: $1'
+ test -n 'Hidden directory found: $1'
+ eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ LINE1='Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:09]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Warning ]
+ LOGLINE1='[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ test 0 -eq 1
+ LINE1=1
+ OLDIFS='
'
+ IFS='
'
+ cut -d: -f2-
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ [ 1 -eq 1 ]
+ LINE1=0
+ continue
+ IFS='
'
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ echo '[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ awk -F: '{ print $NF }'
+ cut -c2-
+ FTYPE='cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ sed -e 's/: [^:]*$//'
+ echo '[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ FNAME='[1m[38;5;6m/etc/..[39;49m[m'
+ [ 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
+ name2text '[1m[38;5;6m/etc/..[39;49m[m'
+ echo -e '[1m[38;5;6m/etc/..[39;49m[m'
+ sed -e 's/ /<SP>/g; s/	/<TAB>/g'
+ tr -d '\n'
+ tr '[:cntrl:]' '?'
+ return
+ display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to
LOG
--type
WARNING
FILESYSTEM_HIDDEN_DIR_FOUND
?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_WARNING'
+ echo Warning
+ TYPE=Warning
+ [ -z Warning -a WARNING != PLAIN ]
+ test WARNING = WARNING
+ WARN_MSG=1
+ shift
+ shift
+ [ 2 -ge 1 ]
+ MSG=FILESYSTEM_HIDDEN_DIR_FOUND
+ shift
+ break
+ test 1 -eq 1
+ expr 3 + 1
+ WARNING_COUNT=4
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Warning
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head '-n 1'
+ LINE1='Hidden directory found: $1'
+ [ 0 -eq 1 ]
+ [ -z 'Hidden directory found: $1' ]
+ echo 'Hidden directory found: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='Hidden directory found: $1'
+ test -n 'Hidden directory found: $1'
+ eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ sed -e 's/;/\;/g'
+ LINE1='Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:10]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n Warning ]
+ LOGLINE1='[04:22:10] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:10] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
+ [ 1 -eq 1 ]
+ test 0 -eq 1
+ LINE1=1
+ OLDIFS='
'
+ IFS='
'
+ grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ [ 1 -eq 1 ]
+ LINE1=0
+ continue
+ IFS='
'
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ IFS='
'
+ FOUNDFILES=''
+ [ -n '' ]
+ display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_MISSING
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_MISSING'
+ [ 9 -le 0 ]
+ [ 9 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 7 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_RESULT_SKIPPED'
+ echo Skipped
+ RESULT=Skipped
+ [ -z Skipped ]
+ shift
+ shift
+ [ 3 -ge 1 ]
+ LOGINDENT=2
+ [ -z 2 ]
+ grep '^[0-9]*$'
+ echo 2
+ [ -z 2 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=FILESYSTEM_LOGFILE_MISSING
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n Skipped -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a Skipped = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_LOGFILE_MISSING ]
+ grep -a ^FILESYSTEM_LOGFILE_MISSING: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Checking for missing log files'
+ [ 0 -eq 1 ]
+ [ -z 'Checking for missing log files' ]
+ echo 'Checking for missing log files'
+ sed -e 's/`/\\`/g'
+ LINE1='Checking for missing log files'
+ test -n 'Checking for missing log files'
+ eval 'echo "Checking for missing log files" | sed -e '\''s/;/\;/g'\'
+ echo 'Checking for missing log files'
+ sed -e 's/;/\;/g'
+ LINE1='Checking for missing log files'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:10]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 2 -gt 0
+ echo '                                                              '
+ cut -c1-2
+ SPACES='  '
+ LOGLINE1='[04:22:10]   Checking for missing log files'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n Skipped ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo '[04:22:10]   Checking for missing log files'
+ tr -d ' '
+ wc -c
+ LOGLINE1_NUM=44
+ expr 62 - 44
+ NUM_SPACES=18
+ test 18 -lt 1
+ echo '                                                              '
+ cut -c1-18
+ SPACES='                  '
+ LOGLINE1='[04:22:10]   Checking for missing log files                  [ Skipped ]'
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:10]   Checking for missing log files                  [ Skipped ]'
+ [ 0 -eq 1 ]
+ echo '[04:22:10]   Checking for missing log files                  [ Skipped ]'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ [ -n '' ]
+ display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_EMPTY
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_EMPTY'
+ [ 9 -le 0 ]
+ [ 9 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 7 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_RESULT_SKIPPED'
+ echo Skipped
+ RESULT=Skipped
+ [ -z Skipped ]
+ shift
+ shift
+ [ 3 -ge 1 ]
+ LOGINDENT=2
+ [ -z 2 ]
+ grep '^[0-9]*$'
+ echo 2
+ [ -z 2 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=FILESYSTEM_LOGFILE_EMPTY
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n Skipped -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a Skipped = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n FILESYSTEM_LOGFILE_EMPTY ]
+ grep -a ^FILESYSTEM_LOGFILE_EMPTY: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Checking for empty log files'
+ [ 0 -eq 1 ]
+ [ -z 'Checking for empty log files' ]
+ echo 'Checking for empty log files'
+ sed -e 's/`/\\`/g'
+ LINE1='Checking for empty log files'
+ test -n 'Checking for empty log files'
+ eval 'echo "Checking for empty log files" | sed -e '\''s/;/\;/g'\'
+ echo 'Checking for empty log files'
+ sed -e 's/;/\;/g'
+ LINE1='Checking for empty log files'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:10]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 2 -gt 0
+ echo '                                                              '
+ cut -c1-2
+ SPACES='  '
+ LOGLINE1='[04:22:10]   Checking for empty log files'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n Skipped ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo '[04:22:10]   Checking for empty log files'
+ tr -d ' '
+ wc -c
+ LOGLINE1_NUM=42
+ expr 62 - 42
+ NUM_SPACES=20
+ test 20 -lt 1
+ echo '                                                              '
+ cut -c1-20
+ SPACES='                    '
+ LOGLINE1='[04:22:10]   Checking for empty log files                    [ Skipped ]'
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:10]   Checking for empty log files                    [ Skipped ]'
+ [ 0 -eq 1 ]
+ echo '[04:22:10]   Checking for empty log files                    [ Skipped ]'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ keypresspause
+ [ 1 -eq 0 -a 0 -eq 0 ]
+ return
+ return
+ do_app_checks
+ check_test apps
+ echo ' filesystem local_host '
+ grep ' apps '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to LOG --type INFO --nl USER_DISABLED_TEST apps
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST apps'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=USER_DISABLED_TEST
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n USER_DISABLED_TEST ]
+ grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ [ -z 'Test '\''$1'\'' disabled at users request.' ]
+ echo 'Test '\''$1'\'' disabled at users request.'
+ sed -e 's/`/\\`/g'
+ LINE1='Test '\''$1'\'' disabled at users request.'
+ test -n 'Test '\''$1'\'' disabled at users request.'
+ eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
+ echo 'Test '\''apps'\'' disabled at users request.'
+ sed -e 's/;/\;/g'
+ LINE1='Test '\''apps'\'' disabled at users request.'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:11]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:22:11]'
+ [ -n Info ]
+ LOGLINE1='[04:22:11] Info: Test '\''apps'\'' disabled at users request.'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:11] Info: Test '\''apps'\'' disabled at users request.'
+ [ 0 -eq 1 ]
+ echo '[04:22:11] Info: Test '\''apps'\'' disabled at users request.'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ return
+ [ 1443954112 -ne 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 ]
+ date +%s
+ ENDTIME=1443954131
+ expr 1443954131 - 1443954112
+ TOTAL_SCANTIME=19
+ expr 19 / 60
+ TOTALMINS=0
+ expr 19 % 60
+ TOTALSECS=19
+ [ 0 -gt 0 ]
+ TOTAL_SCANTIME=''
+ [ 19 -eq 1 ]
+ TOTAL_SCANTIME='19 seconds'
+ RKH_WARN_DISPLYD=0
+ [ 1 -eq 1 ]
+ OLD_NOTTY=0
+ test 0 -eq 1
+ display_check_summary
+ [ 0 -eq 0 -o '(' 0 -eq 1 -a 4 -gt 0 ')' ]
+ RKHTMPVAR=2
+ display --to SCREEN+LOG --type PLAIN --nl 2 SUMMARY_TITLE1
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl 2 SUMMARY_TITLE1'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ NL=2
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_TITLE1
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_TITLE1 ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^SUMMARY_TITLE1: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='System checks summary'
+ [ 0 -eq 1 ]
+ [ -z 'System checks summary' ]
+ echo 'System checks summary'
+ sed -e 's/`/\\`/g'
+ LINE1='System checks summary'
+ test -n 'System checks summary'
+ eval 'echo "System checks summary" | sed -e '\''s/;/\;/g'\'
+ echo 'System checks summary'
+ sed -e 's/;/\;/g'
+ LINE1='System checks summary'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:11]'
+ test 2 -gt 0 -o 0 -eq 1
+ echo '[04:22:11]'
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:11] System checks summary'
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=2
+ test 2 -gt 0
+ echo ''

+ expr 2 - 1
+ NLLOOP=1
+ test 1 -gt 0
+ echo ''

+ expr 1 - 1
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'System checks summary'
System checks summary
+ [ 1 -eq 1 ]
+ echo -e '[04:22:11] System checks summary'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:22:11] System checks summary'
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ display --to SCREEN+LOG --type PLAIN SUMMARY_TITLE2
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN SUMMARY_TITLE2'
+ [ 5 -le 0 ]
+ [ 5 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 3 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_TITLE2
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_TITLE2 ]
+ grep -a ^SUMMARY_TITLE2: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1======================
+ [ 0 -eq 1 ]
+ [ -z ===================== ]
+ echo =====================
+ sed -e 's/`/\\`/g'
+ LINE1======================
+ test -n =====================
+ eval 'echo "=====================" | sed -e '\''s/;/\;/g'\'
+ echo =====================
+ sed -e 's/;/\;/g'
+ LINE1======================
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:11]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:11] ====================='
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e =====================
=====================
+ [ 1 -eq 1 ]
+ echo -e '[04:22:11] ====================='
+ [ 0 -eq 1 ]
+ echo '[04:22:11] ====================='
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ display --to SCREEN+LOG --type PLAIN --nl SUMMARY_PROP_SCAN
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_PROP_SCAN'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ NL=1
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_PROP_SCAN
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_PROP_SCAN ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^SUMMARY_PROP_SCAN: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='File properties checks...'
+ [ 0 -eq 1 ]
+ [ -z 'File properties checks...' ]
+ sed -e 's/`/\\`/g'
+ echo 'File properties checks...'
+ LINE1='File properties checks...'
+ test -n 'File properties checks...'
+ eval 'echo "File properties checks..." | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'File properties checks...'
+ LINE1='File properties checks...'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:11]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:22:11]'
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:11] File properties checks...'
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=1
+ test 1 -gt 0
+ echo ''

+ expr 1 - 1
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'File properties checks...'
File properties checks...
+ [ 1 -eq 1 ]
+ echo -e '[04:22:11] File properties checks...'
+ [ 0 -eq 1 ]
+ echo '[04:22:11] File properties checks...'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ check_test properties
+ echo ' filesystem local_host '
+ grep ' properties '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ SCREENINDENT=4
+ [ -z 4 ]
+ echo 4
+ grep '^[0-9]*$'
+ [ -z 4 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_CHKS_SKIPPED
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_CHKS_SKIPPED ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^SUMMARY_CHKS_SKIPPED: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='All checks skipped'
+ [ 0 -eq 1 ]
+ [ -z 'All checks skipped' ]
+ echo 'All checks skipped'
+ sed -e 's/`/\\`/g'
+ LINE1='All checks skipped'
+ test -n 'All checks skipped'
+ eval 'echo "All checks skipped" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'All checks skipped'
+ LINE1='All checks skipped'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:11]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:11] All checks skipped'
+ [ 1 -eq 1 -a 4 -gt 0 ]
+ echo '                                                              '
+ cut -c1-4
+ SPACES='    '
+ LINE1='    All checks skipped'
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '    All checks skipped'
    All checks skipped
+ [ 1 -eq 1 ]
+ echo -e '[04:22:11] All checks skipped'
+ [ 0 -eq 1 ]
+ echo '[04:22:11] All checks skipped'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ display --to SCREEN+LOG --type PLAIN --nl SUMMARY_RKT_SCAN
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_RKT_SCAN'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ NL=1
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_RKT_SCAN
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_RKT_SCAN ]
+ grep -a ^SUMMARY_RKT_SCAN: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Rootkit checks...'
+ [ 0 -eq 1 ]
+ [ -z 'Rootkit checks...' ]
+ echo 'Rootkit checks...'
+ sed -e 's/`/\\`/g'
+ LINE1='Rootkit checks...'
+ test -n 'Rootkit checks...'
+ eval 'echo "Rootkit checks..." | sed -e '\''s/;/\;/g'\'
+ echo 'Rootkit checks...'
+ sed -e 's/;/\;/g'
+ LINE1='Rootkit checks...'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:12]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:22:12]'
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:12] Rootkit checks...'
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=1
+ test 1 -gt 0
+ echo ''

+ expr 1 - 1
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'Rootkit checks...'
Rootkit checks...
+ [ 1 -eq 1 ]
+ echo -e '[04:22:12] Rootkit checks...'
+ [ 0 -eq 1 ]
+ echo '[04:22:12] Rootkit checks...'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ check_test rootkits
+ echo ' filesystem local_host '
+ grep ' rootkits '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+ check_test startup_malware
+ echo ' filesystem local_host '
+ grep ' startup_malware '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ test 0 -gt 0
+ display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ SCREENINDENT=4
+ [ -z 4 ]
+ echo 4
+ grep '^[0-9]*$'
+ [ -z 4 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_CHKS_SKIPPED
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_CHKS_SKIPPED ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^SUMMARY_CHKS_SKIPPED: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='All checks skipped'
+ [ 0 -eq 1 ]
+ [ -z 'All checks skipped' ]
+ sed -e 's/`/\\`/g'
+ echo 'All checks skipped'
+ LINE1='All checks skipped'
+ test -n 'All checks skipped'
+ eval 'echo "All checks skipped" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'All checks skipped'
+ LINE1='All checks skipped'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:12]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:12] All checks skipped'
+ [ 1 -eq 1 -a 4 -gt 0 ]
+ echo '                                                              '
+ cut -c1-4
+ SPACES='    '
+ LINE1='    All checks skipped'
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '    All checks skipped'
    All checks skipped
+ [ 1 -eq 1 ]
+ echo -e '[04:22:12] All checks skipped'
+ [ 0 -eq 1 ]
+ echo '[04:22:12] All checks skipped'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ display --to SCREEN+LOG --type PLAIN --nl SUMMARY_APPS_SCAN
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_APPS_SCAN'
+ [ 6 -le 0 ]
+ [ 6 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 4 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 2 -ge 1 ]
+ NL=1
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_APPS_SCAN
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_APPS_SCAN ]
+ grep -a ^SUMMARY_APPS_SCAN: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='Applications checks...'
+ [ 0 -eq 1 ]
+ [ -z 'Applications checks...' ]
+ echo 'Applications checks...'
+ sed -e 's/`/\\`/g'
+ LINE1='Applications checks...'
+ test -n 'Applications checks...'
+ eval 'echo "Applications checks..." | sed -e '\''s/;/\;/g'\'
+ echo 'Applications checks...'
+ sed -e 's/;/\;/g'
+ LINE1='Applications checks...'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:12]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:22:12]'
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:12] Applications checks...'
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=1
+ test 1 -gt 0
+ echo ''

+ expr 1 - 1
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'Applications checks...'
Applications checks...
+ [ 1 -eq 1 ]
+ echo -e '[04:22:12] Applications checks...'
+ [ 0 -eq 1 ]
+ echo '[04:22:12] Applications checks...'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ check_test apps
+ echo ' filesystem local_host '
+ grep ' apps '
+ [ 'filesystem local_host' = all -o -n '' ]
+ return 1
+
+ display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ SCREENINDENT=4
+ [ -z 4 ]
+ grep '^[0-9]*$'
+ echo 4
+ [ -z 4 ]
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=SUMMARY_CHKS_SKIPPED
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_CHKS_SKIPPED ]
+ grep -a ^SUMMARY_CHKS_SKIPPED: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='All checks skipped'
+ [ 0 -eq 1 ]
+ [ -z 'All checks skipped' ]
+ echo 'All checks skipped'
+ sed -e 's/`/\\`/g'
+ LINE1='All checks skipped'
+ test -n 'All checks skipped'
+ eval 'echo "All checks skipped" | sed -e '\''s/;/\;/g'\'
+ echo 'All checks skipped'
+ sed -e 's/;/\;/g'
+ LINE1='All checks skipped'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:12]'
+ test 0 -gt 0 -o 0 -eq 1
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:12] All checks skipped'
+ [ 1 -eq 1 -a 4 -gt 0 ]
+ cut -c1-4
+ echo '                                                              '
+ SPACES='    '
+ LINE1='    All checks skipped'
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e '    All checks skipped'
    All checks skipped
+ [ 1 -eq 1 ]
+ echo -e '[04:22:12] All checks skipped'
+ [ 0 -eq 1 ]
+ echo '[04:22:12] All checks skipped'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ [ 3 -gt 0 ]
+ [ 3 -eq 1 ]
+ [ 3 -eq 2 ]
+ RKHTMPVAR=SCREEN+LOG
+ [ 1443954112 -eq 0 ]
+ display --to SCREEN+LOG --type PLAIN --nl SUMMARY_SCAN_TIME '19 seconds'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_SCAN_TIME 19 seconds'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN+LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=SUMMARY_SCAN_TIME
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 1 -eq 0 -a 1 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_SCAN_TIME ]
+ grep -a ^SUMMARY_SCAN_TIME: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='The system checks took: $1'
+ [ 0 -eq 1 ]
+ [ -z 'The system checks took: $1' ]
+ echo 'The system checks took: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='The system checks took: $1'
+ test -n 'The system checks took: $1'
+ eval 'echo "The system checks took: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'The system checks took: 19 seconds'
+ sed -e 's/;/\;/g'
+ LINE1='The system checks took: 19 seconds'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:13]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:22:13]'
+ [ -n '' ]
+ test 0 -gt 0
+ LOGLINE1='[04:22:13] The system checks took: 19 seconds'
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=1
+ test 1 -gt 0
+ echo ''

+ expr 1 - 1
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'The system checks took: 19 seconds'
The system checks took: 19 seconds
+ [ 1 -eq 1 ]
+ echo -e '[04:22:13] The system checks took: 19 seconds'
+ [ 0 -eq 1 ]
+ echo '[04:22:13] The system checks took: 19 seconds'
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ [ 0 -eq 1 -a -n '' ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ [ 0 -eq 0 ]
+ display --to SCREEN --type PLAIN --nl --nl-after SUMMARY_LOGFILE /var/log/rkhunter.log
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN --type PLAIN --nl --nl-after SUMMARY_LOGFILE /var/log/rkhunter.log'
+ [ 8 -le 0 ]
+ [ 8 -ge 1 ]
+ WRITETO=SCREEN
+ shift
+ shift
+ [ 6 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 4 -ge 1 ]
+ NL=1
+ shift
+ [ 3 -ge 1 ]
+ NLAFTER=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=SUMMARY_LOGFILE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN = LOG -o SCREEN = SCREEN+LOG
+ WRITETOLOG=0
+ [ 1 -eq 0 -a 0 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n SUMMARY_LOGFILE ]
+ grep -a ^SUMMARY_LOGFILE: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='All results have been written to the log file: $1'
+ [ 0 -eq 1 ]
+ [ -z 'All results have been written to the log file: $1' ]
+ echo 'All results have been written to the log file: $1'
+ sed -e 's/`/\\`/g'
+ LINE1='All results have been written to the log file: $1'
+ test -n 'All results have been written to the log file: $1'
+ eval 'echo "All results have been written to the log file: $1" | sed -e '\''s/;/\;/g'\'
+ echo 'All results have been written to the log file: /var/log/rkhunter.log'
+ sed -e 's/;/\;/g'
+ LINE1='All results have been written to the log file: /var/log/rkhunter.log'
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=1
+ test 1 -gt 0
+ echo ''

+ expr 1 - 1
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'All results have been written to the log file: /var/log/rkhunter.log'
All results have been written to the log file: /var/log/rkhunter.log
+ [ 0 -eq 1 ]
+ test 1 -eq 1 -a 1 -eq 1
+ echo ''

+ return
+ return
+ [ 0 -eq 0 ]
+ [ 4 -eq 0 ]
+ RKH_WARN_DISPLYD=1
+ display --to SCREEN --type PLAIN CHECK_WARNINGS_FOUND
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN --type PLAIN CHECK_WARNINGS_FOUND'
+ [ 5 -le 0 ]
+ [ 5 -ge 1 ]
+ WRITETO=SCREEN
+ shift
+ shift
+ [ 3 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 1 -ge 1 ]
+ MSG=CHECK_WARNINGS_FOUND
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN = LOG -o SCREEN = SCREEN+LOG
+ WRITETOLOG=0
+ [ 1 -eq 0 -a 0 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CHECK_WARNINGS_FOUND ]
+ head -n 1
+ cut -d: -f2-
+ grep -a ^CHECK_WARNINGS_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
+ LINE1='One or more warnings have been found while checking the system.'
+ [ 0 -eq 1 ]
+ [ -z 'One or more warnings have been found while checking the system.' ]
+ sed -e 's/`/\\`/g'
+ echo 'One or more warnings have been found while checking the system.'
+ LINE1='One or more warnings have been found while checking the system.'
+ test -n 'One or more warnings have been found while checking the system.'
+ eval 'echo "One or more warnings have been found while checking the system." | sed -e '\''s/;/\;/g'\'
+ echo 'One or more warnings have been found while checking the system.'
+ sed -e 's/;/\;/g'
+ LINE1='One or more warnings have been found while checking the system.'
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'One or more warnings have been found while checking the system.'
One or more warnings have been found while checking the system.
+ [ 0 -eq 1 ]
+ test 1 -eq 1 -a 0 -eq 1
+ return
+ [ 4 -gt 0 ]
+ [ 0 -eq 1 ]
+ display --to SCREEN --type PLAIN --nl-after CHECK_WARNINGS_FOUND_CHK_LOG /var/log/rkhunter.log
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to SCREEN --type PLAIN --nl-after CHECK_WARNINGS_FOUND_CHK_LOG /var/log/rkhunter.log'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=SCREEN
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_PLAIN'
+ echo
+ TYPE=''
+ [ -z '' -a PLAIN != PLAIN ]
+ test PLAIN = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NLAFTER=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=CHECK_WARNINGS_FOUND_CHK_LOG
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
+ WRITETOTTY=1
+ test SCREEN = LOG -o SCREEN = SCREEN+LOG
+ WRITETOLOG=0
+ [ 1 -eq 0 -a 0 -eq 0 ]
+ [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n ''
+ [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n CHECK_WARNINGS_FOUND_CHK_LOG ]
+ grep -a ^CHECK_WARNINGS_FOUND_CHK_LOG: /usr/local/var/lib/rkhunter/db/i18n/en
+ cut -d: -f2-
+ head -n 1
+ LINE1='Please check the log file ($1)'
+ [ 0 -eq 1 ]
+ [ -z 'Please check the log file ($1)' ]
+ echo 'Please check the log file ($1)'
+ sed -e 's/`/\\`/g'
+ LINE1='Please check the log file ($1)'
+ test -n 'Please check the log file ($1)'
+ eval 'echo "Please check the log file ($1)" | sed -e '\''s/;/\;/g'\'
+ echo 'Please check the log file (/var/log/rkhunter.log)'
+ sed -e 's/;/\;/g'
+ LINE1='Please check the log file (/var/log/rkhunter.log)'
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 1 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ NLLOOP=0
+ test 0 -gt 0
+ [ '' = c ]
+ echo -e 'Please check the log file (/var/log/rkhunter.log)'
Please check the log file (/var/log/rkhunter.log)
+ [ 0 -eq 1 ]
+ test 1 -eq 1 -a 1 -eq 1
+ echo ''

+ return
+ NOTTY=0
+ [ -n '' ]
+ [ 4 -gt 0 ]
+ [ 0 -eq 1 -a 1 -eq 0 ]
+ [ -n '' ]
+ [ -n '' ]
+ RET_CODE=1
+ return
+ COPIEDLOG=''
+ [ 1 -gt 0 -o 4 -gt 0 ]
+ [ 0 -eq 1 -a 0 -eq 0 ]
+ date
+ display --to LOG --type INFO --nl RKH_ENDDATE 'Sun Oct  4 04:22:13 MDT 2015'
+ WARN_MSG=0
+ NL=0
+ NLAFTER=0
+ LOGINDENT=0
+ SCREENINDENT=0
+ LOGNL=0
+ SCREENNL=0
+ WRITETO=''
+ TYPE=''
+ RESULT=''
+ COLOR=''
+ MSG=''
+ LINE1=''
+ LOGLINE1=''
+ SPACES=''
+ NONL=''
+ DISPLAY_LINE='display --to LOG --type INFO --nl RKH_ENDDATE Sun Oct  4 04:22:13 MDT 2015'
+ [ 7 -le 0 ]
+ [ 7 -ge 1 ]
+ WRITETO=LOG
+ shift
+ shift
+ [ 5 -ge 1 ]
+ eval echo '$MSG_TYPE_INFO'
+ echo Info
+ TYPE=Info
+ [ -z Info -a INFO != PLAIN ]
+ test INFO = WARNING
+ shift
+ shift
+ [ 3 -ge 1 ]
+ NL=1
+ shift
+ [ 2 -ge 1 ]
+ MSG=RKH_ENDDATE
+ shift
+ break
+ test 0 -eq 1
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ test LOG = SCREEN -o LOG = SCREEN+LOG
+ WRITETOTTY=0
+ test LOG = LOG -o LOG = SCREEN+LOG
+ WRITETOLOG=1
+ [ 0 -eq 0 -a 1 -eq 0 ]
+ [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
+ test -n Info
+ NONL=''
+ [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
+ LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
+ [ -n RKH_ENDDATE ]
+ grep -a ^RKH_ENDDATE: /usr/local/var/lib/rkhunter/db/i18n/en
+ head -n 1
+ cut -d: -f2-
+ LINE1='End date is $1'
+ [ 0 -eq 1 ]
+ [ -z 'End date is $1' ]
+ sed -e 's/`/\\`/g'
+ echo 'End date is $1'
+ LINE1='End date is $1'
+ test -n 'End date is $1'
+ eval 'echo "End date is $1" | sed -e '\''s/;/\;/g'\'
+ sed -e 's/;/\;/g'
+ echo 'End date is Sun Oct  4 04:22:13 MDT 2015'
+ LINE1='End date is Sun Oct  4 04:22:13 MDT 2015'
+ [ 1 -eq 1 ]
+ date '+[%H:%M:%S]'
+ LOGLINE1='[04:22:13]'
+ test 1 -gt 0 -o 0 -eq 1
+ echo '[04:22:13]'
+ [ -n Info ]
+ LOGLINE1='[04:22:13] Info: End date is Sun Oct  4 04:22:13 MDT 2015'
+ [ 0 -eq 1 -a 0 -gt 0 ]
+ [ -n '' ]
+ [ 0 -eq 1 -a -n '' ]
+ [ 0 -eq 1 ]
+ [ 0 -eq 1 ]
+ [ 1 -eq 1 ]
+ echo -e '[04:22:13] Info: End date is Sun Oct  4 04:22:13 MDT 2015'
+ [ 0 -eq 1 ]
+ grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\]         '
+ echo '[04:22:13] Info: End date is Sun Oct  4 04:22:13 MDT 2015'
+ [ 0 -eq 1 -a -n '' ]
+ test 0 -eq 1 -a 0 -eq 1
+ return
+ test -n ''
+ test 0 -eq 1
+ IFS='
'
+ exit 1