API tools faq
paste
Advertisement
Guest User

beginner

a guest
Jul 4th, 2009
137
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 73.73 KB | None | 0 0
raw download clone embed print report
  1. [11:19:30] Running Rootkit Hunter version 1.3.2 on debian
  2. [11:19:30]
  3. [11:19:30] Info: Start date is Sat Jul 4 11:19:30 IRDT 2009
  4. [11:19:30]
  5. [11:19:30] Checking configuration file and command-line options...
  6. [11:19:30] Info: Detected operating system is 'Linux'
  7. [11:19:30] Info: Found O/S name: Debian 5.0
  8. [11:19:30] Info: Command line is /usr/bin/rkhunter --sk --check
  9. [11:19:30] Info: Environment shell is /bin/bash; rkhunter is using bash
  10. [11:19:30] Info: Using configuration file '/etc/rkhunter.conf'
  11. [11:19:30] Info: Installation directory is '/usr'
  12. [11:19:30] Info: Using language 'en'
  13. [11:19:30] Info: Using '/var/lib/rkhunter/db' as the database directory
  14. [11:19:30] Info: Using '/usr/share/rkhunter/scripts' as the support script directory
  15. [11:19:30] Info: Using '/usr/local/sbin /usr/local/bin /usr/sbin /usr/bin /sbin /bin /bin /usr/bin /sbin /usr/sbin /usr/local/bin /usr/local/sbin /usr/libexec /usr/local/libexec' as the command directories
  16. [11:19:30] Info: Using '/' as the root directory
  17. [11:19:30] Info: Using '/var/lib/rkhunter/tmp' as the temporary directory
  18. [11:19:30] Info: No mail-on-warning address configured
  19. [11:19:30] Info: X will be automatically detected
  20. [11:19:30] Info: Using second color set
  21. [11:19:30] Info: Found the 'diff' command: /usr/bin/diff
  22. [11:19:30] Info: Found the 'file' command: /usr/bin/file
  23. [11:19:30] Info: Found the 'find' command: /usr/bin/find
  24. [11:19:30] Info: Found the 'ifconfig' command: /sbin/ifconfig
  25. [11:19:30] Info: Found the 'ip' command: /sbin/ip
  26. [11:19:30] Info: Found the 'ldd' command: /usr/bin/ldd
  27. [11:19:30] Info: Found the 'lsattr' command: /usr/bin/lsattr
  28. [11:19:30] Info: Found the 'lsmod' command: /sbin/lsmod
  29. [11:19:30] Info: Found the 'lsof' command: /usr/bin/lsof
  30. [11:19:30] Info: Found the 'mktemp' command: /bin/mktemp
  31. [11:19:30] Info: Found the 'netstat' command: /bin/netstat
  32. [11:19:31] Info: Found the 'perl' command: /usr/bin/perl
  33. [11:19:31] Info: Found the 'ps' command: /bin/ps
  34. [11:19:31] Info: Found the 'pwd' command: /bin/pwd
  35. [11:19:31] Info: Found the 'readlink' command: /bin/readlink
  36. [11:19:31] Info: Found the 'sort' command: /usr/bin/sort
  37. [11:19:31] Info: Found the 'stat' command: /usr/bin/stat
  38. [11:19:31] Info: Found the 'strings' command: /usr/bin/strings
  39. [11:19:31] Info: Found the 'uniq' command: /usr/bin/uniq
  40. [11:19:31] Info: System is not using prelinking
  41. [11:19:31] Info: Using the '/usr/bin/sha1sum' command for the file hash checks
  42. [11:19:31] Info: Stored hash values used hash function '/usr/bin/sha1sum'
  43. [11:19:31] Info: Stored hash values did not use a package manager
  44. [11:19:31] Info: The hash function field index is set to 1
  45. [11:19:31] Info: No package manager specified: using hash function '/usr/bin/sha1sum'
  46. [11:19:31] Info: Previous file attributes were stored
  47. [11:19:31] Info: Enabled tests are: all
  48. [11:19:31] Info: Disabled tests are: suspscan hidden_procs deleted_files packet_cap_apps
  49. [11:19:31] Info: Found ksym file '/proc/kallsyms'
  50. [11:19:31]
  51. [11:19:31] Checking if the O/S has changed since last time...
  52. [11:19:31] Info: Nothing seems to have changed
  53. [11:19:31]
  54. [11:19:31] Starting system checks...
  55. [11:19:31]
  56. [11:19:31] Checking system commands...
  57. [11:19:31] Info: Starting test name 'system_commands'
  58. [11:19:31]
  59. [11:19:31] Performing 'strings' command checks
  60. [11:19:31] Info: Starting test name 'strings'
  61. [11:19:31] Scanning for string /usr/sbin/ntpsx [ OK ]
  62. [11:19:31] Scanning for string /usr/lib/.../ls [ OK ]
  63. [11:19:31] Scanning for string /usr/lib/.../netstat [ OK ]
  64. [11:19:31] Scanning for string /usr/lib/.../lsof [ OK ]
  65. [11:19:31] Scanning for string /usr/lib/.../bkit-ssh/bkit-shdcfg [ OK ]
  66. [11:19:31] Scanning for string /usr/lib/.../bkit-ssh/bkit-shhk [ OK ]
  67. [11:19:31] Scanning for string /usr/lib/.../bkit-ssh/bkit-pw [ OK ]
  68. [11:19:31] Scanning for string /usr/lib/.../bkit-ssh/bkit-shrs [ OK ]
  69. [11:19:31] Scanning for string /usr/lib/.../uconf.inv [ OK ]
  70. [11:19:31] Scanning for string /usr/lib/.../psr [ OK ]
  71. [11:19:31] Scanning for string /usr/lib/.../find [ OK ]
  72. [11:19:31] Scanning for string /usr/lib/.../pstree [ OK ]
  73. [11:19:31] Scanning for string /usr/lib/.../slocate [ OK ]
  74. [11:19:31] Scanning for string /usr/lib/.../du [ OK ]
  75. [11:19:31] Scanning for string /usr/lib/.../top [ OK ]
  76. [11:19:31] Scanning for string /usr/lib/... [ OK ]
  77. [11:19:31] Scanning for string /usr/lib/.../bkit-ssh [ OK ]
  78. [11:19:31] Scanning for string /usr/lib/.bkit- [ OK ]
  79. [11:19:31] Scanning for string /tmp/.bkp [ OK ]
  80. [11:19:31] Scanning for string /tmp/.cinik [ OK ]
  81. [11:19:31] Scanning for string /tmp/.font-unix/.cinik [ OK ]
  82. [11:19:31] Scanning for string /lib/.sso [ OK ]
  83. [11:19:31] Scanning for string /lib/.so [ OK ]
  84. [11:19:31] Scanning for string /var/run/...dica/clean [ OK ]
  85. [11:19:31] Scanning for string /var/run/...dica/xl [ OK ]
  86. [11:19:31] Scanning for string /var/run/...dica/xdr [ OK ]
  87. [11:19:31] Scanning for string /var/run/...dica/psg [ OK ]
  88. [11:19:31] Scanning for string /var/run/...dica/secure [ OK ]
  89. [11:19:31] Scanning for string /var/run/...dica/rdx [ OK ]
  90. [11:19:31] Scanning for string /var/run/...dica/va [ OK ]
  91. [11:19:31] Scanning for string /var/run/...dica/cl.sh [ OK ]
  92. [11:19:31] Scanning for string /usr/bin/.etc [ OK ]
  93. [11:19:31] Scanning for string /usr/lib/.fx/sched_host.2 [ OK ]
  94. [11:19:31] Scanning for string /usr/lib/.fx/random_d.2 [ OK ]
  95. [11:19:32] Scanning for string /usr/lib/.fx/set_pid.2 [ OK ]
  96. [11:19:32] Scanning for string /usr/lib/.fx/cons.saver [ OK ]
  97. [11:19:32] Scanning for string /usr/lib/.fx/adore/adore/adore.ko [ OK ]
  98. [11:19:32] Scanning for string /bin/sysback [ OK ]
  99. [11:19:32] Scanning for string /usr/local/bin/sysback [ OK ]
  100. [11:19:32] Scanning for string /usr/lib/.tbd [ OK ]
  101. [11:19:32] Scanning for string /dev/.lib/lib/lib/t0rns [ OK ]
  102. [11:19:32] Scanning for string /dev/.lib/lib/lib/du [ OK ]
  103. [11:19:32] Scanning for string /dev/.lib/lib/lib/ls [ OK ]
  104. [11:19:32] Scanning for string /dev/.lib/lib/lib/t0rnsb [ OK ]
  105. [11:19:32] Scanning for string /dev/.lib/lib/lib/ps [ OK ]
  106. [11:19:32] Scanning for string /dev/.lib/lib/lib/t0rnp [ OK ]
  107. [11:19:32] Scanning for string /dev/.lib/lib/lib/find [ OK ]
  108. [11:19:32] Scanning for string /dev/.lib/lib/lib/ifconfig [ OK ]
  109. [11:19:32] Scanning for string /dev/.lib/lib/lib/pg [ OK ]
  110. [11:19:32] Scanning for string /dev/.lib/lib/lib/ssh.tgz [ OK ]
  111. [11:19:32] Scanning for string /dev/.lib/lib/lib/top [ OK ]
  112. [11:19:32] Scanning for string /dev/.lib/lib/lib/sz [ OK ]
  113. [11:19:32] Scanning for string /dev/.lib/lib/lib/login [ OK ]
  114. [11:19:32] Scanning for string /dev/.lib/lib/lib/in.fingerd [ OK ]
  115. [11:19:32] Scanning for string /dev/.lib/lib/lib/1i0n.sh [ OK ]
  116. [11:19:32] Scanning for string /dev/.lib/lib/lib/pstree [ OK ]
  117. [11:19:32] Scanning for string /dev/.lib/lib/lib/in.telnetd [ OK ]
  118. [11:19:32] Scanning for string /dev/.lib/lib/lib/mjy [ OK ]
  119. [11:19:32] Scanning for string /dev/.lib/lib/lib/sush [ OK ]
  120. [11:19:32] Scanning for string /dev/.lib/lib/lib/tfn [ OK ]
  121. [11:19:32] Scanning for string /dev/.lib/lib/lib/name [ OK ]
  122. [11:19:32] Scanning for string /dev/.lib/lib/lib/getip.sh [ OK ]
  123. [11:19:32] Scanning for string /usr/info/.torn/sh* [ OK ]
  124. [11:19:32] Scanning for string /usr/src/.puta/.1addr [ OK ]
  125. [11:19:32] Scanning for string /usr/src/.puta/.1file [ OK ]
  126. [11:19:32] Scanning for string /usr/src/.puta/.1proc [ OK ]
  127. [11:19:32] Scanning for string /usr/src/.puta/.1logz [ OK ]
  128. [11:19:32] Scanning for string /usr/info/.t0rn [ OK ]
  129. [11:19:32] Scanning for string /dev/.lib [ OK ]
  130. [11:19:32] Scanning for string /dev/.lib/lib [ OK ]
  131. [11:19:32] Scanning for string /dev/.lib/lib/lib [ OK ]
  132. [11:19:32] Scanning for string /dev/.lib/lib/lib/dev [ OK ]
  133. [11:19:32] Scanning for string /dev/.lib/lib/scan [ OK ]
  134. [11:19:32] Scanning for string /usr/src/.puta [ OK ]
  135. [11:19:32] Scanning for string /usr/man/man1/man1 [ OK ]
  136. [11:19:32] Scanning for string /usr/man/man1/man1/lib [ OK ]
  137. [11:19:32] Scanning for string /usr/man/man1/man1/lib/.lib [ OK ]
  138. [11:19:32] Scanning for string /usr/man/man1/man1/lib/.lib/.backup [ OK ]
  139. [11:19:32]
  140. [11:19:32] Performing 'shared libraries' checks
  141. [11:19:32] Info: Starting test name 'shared_libs'
  142. [11:19:32] Checking for preloading variables [ None found ]
  143. [11:19:32] Checking for preload file [ Not found ]
  144. [11:19:32] Info: Starting test name 'shared_libs_path'
  145. [11:19:32] Checking LD_LIBRARY_PATH variable [ Not found ]
  146. [11:19:33]
  147. [11:19:33] Performing file properties checks
  148. [11:19:33] Info: Starting test name 'properties'
  149. [11:19:33] Checking for prerequisites [ OK ]
  150. [11:19:33] /bin/bash [ OK ]
  151. [11:19:33] /bin/cat [ OK ]
  152. [11:19:33] /bin/chmod [ OK ]
  153. [11:19:33] /bin/chown [ OK ]
  154. [11:19:33] /bin/cp [ OK ]
  155. [11:19:33] /bin/csh [ OK ]
  156. [11:19:33] /bin/date [ OK ]
  157. [11:19:33] /bin/df [ OK ]
  158. [11:19:33] /bin/dmesg [ OK ]
  159. [11:19:33] /bin/echo [ OK ]
  160. [11:19:33] /bin/ed [ OK ]
  161. [11:19:33] /bin/egrep [ OK ]
  162. [11:19:33] Info: Found file '/bin/egrep': it is whitelisted for the 'script replacement' check.
  163. [11:19:34] /bin/fgrep [ OK ]
  164. [11:19:34] Info: Found file '/bin/fgrep': it is whitelisted for the 'script replacement' check.
  165. [11:19:34] /bin/fuser [ OK ]
  166. [11:19:34] /bin/grep [ OK ]
  167. [11:19:34] /bin/ip [ OK ]
  168. [11:19:34] /bin/kill [ OK ]
  169. [11:19:34] /bin/login [ OK ]
  170. [11:19:34] /bin/ls [ OK ]
  171. [11:19:34] /bin/lsmod [ OK ]
  172. [11:19:34] /bin/mktemp [ OK ]
  173. [11:19:34] /bin/more [ OK ]
  174. [11:19:34] /bin/mount [ OK ]
  175. [11:19:34] /bin/mv [ OK ]
  176. [11:19:34] /bin/netstat [ OK ]
  177. [11:19:35] /bin/ps [ OK ]
  178. [11:19:35] /bin/pwd [ OK ]
  179. [11:19:35] /bin/readlink [ OK ]
  180. [11:19:35] /bin/sed [ OK ]
  181. [11:19:35] /bin/sh [ OK ]
  182. [11:19:35] /bin/su [ OK ]
  183. [11:19:35] /bin/touch [ OK ]
  184. [11:19:35] /bin/uname [ OK ]
  185. [11:19:35] /bin/which [ OK ]
  186. [11:19:35] Info: Found file '/bin/which': it is whitelisted for the 'script replacement' check.
  187. [11:19:35] /bin/tcsh [ OK ]
  188. [11:19:35] /usr/bin/awk [ OK ]
  189. [11:19:36] /usr/bin/basename [ OK ]
  190. [11:19:36] /usr/bin/chattr [ OK ]
  191. [11:19:36] /usr/bin/cut [ OK ]
  192. [11:19:36] /usr/bin/diff [ OK ]
  193. [11:19:36] /usr/bin/dirname [ OK ]
  194. [11:19:36] /usr/bin/dpkg [ OK ]
  195. [11:19:36] /usr/bin/dpkg-query [ OK ]
  196. [11:19:36] /usr/bin/du [ OK ]
  197. [11:19:36] /usr/bin/env [ OK ]
  198. [11:19:36] /usr/bin/file [ OK ]
  199. [11:19:36] /usr/bin/find [ OK ]
  200. [11:19:36] /usr/bin/GET [ OK ]
  201. [11:19:36] /usr/bin/groups [ OK ]
  202. [11:19:36] Info: Found file '/usr/bin/groups': it is whitelisted for the 'script replacement' check.
  203. [11:19:37] /usr/bin/head [ OK ]
  204. [11:19:37] /usr/bin/id [ OK ]
  205. [11:19:37] /usr/bin/killall [ OK ]
  206. [11:19:37] /usr/bin/last [ OK ]
  207. [11:19:37] /usr/bin/lastlog [ OK ]
  208. [11:19:37] /usr/bin/ldd [ OK ]
  209. [11:19:37] Info: Found file '/usr/bin/ldd': it is whitelisted for the 'script replacement' check.
  210. [11:19:37] /usr/bin/less [ OK ]
  211. [11:19:37] /usr/bin/logger [ OK ]
  212. [11:19:37] /usr/bin/lsattr [ OK ]
  213. [11:19:37] /usr/bin/lsof [ OK ]
  214. [11:19:37] /usr/bin/mail [ OK ]
  215. [11:19:37] /usr/bin/md5sum [ OK ]
  216. [11:19:37] /usr/bin/newgrp [ OK ]
  217. [11:19:38] /usr/bin/passwd [ OK ]
  218. [11:19:38] /usr/bin/perl [ OK ]
  219. [11:19:38] /usr/bin/pstree [ OK ]
  220. [11:19:38] /usr/bin/rkhunter [ OK ]
  221. [11:19:38] /usr/bin/runcon [ OK ]
  222. [11:19:38] /usr/bin/sha1sum [ OK ]
  223. [11:19:38] /usr/bin/size [ OK ]
  224. [11:19:38] /usr/bin/sort [ OK ]
  225. [11:19:38] /usr/bin/stat [ OK ]
  226. [11:19:38] /usr/bin/strace [ OK ]
  227. [11:19:38] /usr/bin/strings [ OK ]
  228. [11:19:38] /usr/bin/sudo [ OK ]
  229. [11:19:38] /usr/bin/tail [ OK ]
  230. [11:19:39] /usr/bin/test [ OK ]
  231. [11:19:39] /usr/bin/top [ OK ]
  232. [11:19:39] /usr/bin/touch [ OK ]
  233. [11:19:39] /usr/bin/tr [ OK ]
  234. [11:19:39] /usr/bin/uniq [ OK ]
  235. [11:19:39] /usr/bin/users [ OK ]
  236. [11:19:39] /usr/bin/vmstat [ OK ]
  237. [11:19:39] /usr/bin/w [ OK ]
  238. [11:19:39] /usr/bin/watch [ OK ]
  239. [11:19:39] /usr/bin/wc [ OK ]
  240. [11:19:39] /usr/bin/wget [ OK ]
  241. [11:19:39] /usr/bin/whatis [ OK ]
  242. [11:19:39] /usr/bin/whereis [ OK ]
  243. [11:19:39] /usr/bin/which [ OK ]
  244. [11:19:40] /usr/bin/who [ OK ]
  245. [11:19:40] /usr/bin/whoami [ OK ]
  246. [11:19:40] /usr/bin/tcsh [ OK ]
  247. [11:19:40] /usr/bin/mawk [ OK ]
  248. [11:19:40] /usr/bin/lwp-request [ OK ]
  249. [11:19:40] Info: Found file '/usr/bin/lwp-request': it is whitelisted for the 'script replacement' check.
  250. [11:19:40] /usr/bin/bsd-mailx [ OK ]
  251. [11:19:40] /usr/bin/w.procps [ OK ]
  252. [11:19:40] /sbin/depmod [ OK ]
  253. [11:19:40] /sbin/ifconfig [ OK ]
  254. [11:19:40] /sbin/ifdown [ OK ]
  255. [11:19:40] /sbin/ifup [ OK ]
  256. [11:19:40] /sbin/init [ OK ]
  257. [11:19:41] /sbin/insmod [ OK ]
  258. [11:19:41] /sbin/ip [ OK ]
  259. [11:19:41] /sbin/lsmod [ OK ]
  260. [11:19:41] /sbin/modinfo [ OK ]
  261. [11:19:41] /sbin/modprobe [ OK ]
  262. [11:19:41] /sbin/rmmod [ OK ]
  263. [11:19:41] /sbin/runlevel [ OK ]
  264. [11:19:41] /sbin/sulogin [ OK ]
  265. [11:19:41] /sbin/sysctl [ OK ]
  266. [11:19:41] /sbin/syslogd [ OK ]
  267. [11:19:42] /usr/sbin/adduser [ OK ]
  268. [11:19:42] Info: Found file '/usr/sbin/adduser': it is whitelisted for the 'script replacement' check.
  269. [11:19:42] /usr/sbin/chroot [ OK ]
  270. [11:19:42] /usr/sbin/cron [ OK ]
  271. [11:19:42] /usr/sbin/groupadd [ OK ]
  272. [11:19:42] /usr/sbin/groupdel [ OK ]
  273. [11:19:42] /usr/sbin/groupmod [ OK ]
  274. [11:19:42] /usr/sbin/grpck [ OK ]
  275. [11:19:42] /usr/sbin/inetd [ OK ]
  276. [11:19:42] /usr/sbin/nologin [ OK ]
  277. [11:19:43] /usr/sbin/pwck [ OK ]
  278. [11:19:43] /usr/sbin/sestatus [ OK ]
  279. [11:19:43] /usr/sbin/tcpd [ OK ]
  280. [11:19:43] /usr/sbin/unhide [ Warning ]
  281. [11:19:43] Warning: The file '/usr/sbin/unhide' exists on the system, but it is not present in the rkhunter.dat file.
  282. [11:19:43] /usr/sbin/useradd [ OK ]
  283. [11:19:43] /usr/sbin/userdel [ OK ]
  284. [11:19:43] /usr/sbin/usermod [ OK ]
  285. [11:19:43] /usr/sbin/vipw [ OK ]
  286. [11:19:43] /usr/sbin/unhide-linux26 [ Warning ]
  287. [11:19:43] Warning: The file '/usr/sbin/unhide-linux26' exists on the system, but it is not present in the rkhunter.dat file.
  288. [11:19:44]
  289. [11:19:44] Checking for rootkits...
  290. [11:19:44] Info: Starting test name 'rootkits'
  291. [11:19:44]
  292. [11:19:44] Performing check of known rootkit files and directories
  293. [11:19:44] Info: Starting test name 'known_rkts'
  294. [11:19:44]
  295. [11:19:44] Checking for 55808 Trojan - Variant A...
  296. [11:19:44] Checking for file '/tmp/.../r' [ Not found ]
  297. [11:19:44] Checking for file '/tmp/.../a' [ Not found ]
  298. [11:19:44] 55808 Trojan - Variant A [ Not found ]
  299. [11:19:44]
  300. [11:19:44] Checking for ADM Worm...
  301. [11:19:44] Checking for string 'w0rm' [ Not found ]
  302. [11:19:44] ADM Worm [ Not found ]
  303. [11:19:44]
  304. [11:19:44] Checking for AjaKit Rootkit...
  305. [11:19:44] Checking for file '/dev/tux/.addr' [ Not found ]
  306. [11:19:45] Checking for file '/dev/tux/.proc' [ Not found ]
  307. [11:19:45] Checking for file '/dev/tux/.file' [ Not found ]
  308. [11:19:45] Checking for file '/lib/.libgh-gh/cleaner' [ Not found ]
  309. [11:19:45] Checking for file '/lib/.libgh-gh/Patch/patch' [ Not found ]
  310. [11:19:45] Checking for file '/lib/.libgh-gh/sb0k' [ Not found ]
  311. [11:19:45] Checking for directory '/dev/tux' [ Not found ]
  312. [11:19:45] Checking for directory '/lib/.libgh-gh' [ Not found ]
  313. [11:19:45] AjaKit Rootkit [ Not found ]
  314. [11:19:45]
  315. [11:19:45] Checking for aPa Kit...
  316. [11:19:45] Checking for file '/usr/share/.aPa' [ Not found ]
  317. [11:19:45] aPa Kit [ Not found ]
  318. [11:19:45]
  319. [11:19:45] Checking for Apache Worm...
  320. [11:19:45] Checking for file '/bin/.log' [ Not found ]
  321. [11:19:45] Apache Worm [ Not found ]
  322. [11:19:45]
  323. [11:19:45] Checking for Ambient (ark) Rootkit...
  324. [11:19:45] Checking for file '/usr/lib/.ark?' [ Not found ]
  325. [11:19:45] Checking for file '/dev/ptyxx/.log' [ Not found ]
  326. [11:19:45] Checking for file '/dev/ptyxx/.file' [ Not found ]
  327. [11:19:45] Checking for directory '/dev/ptyxx' [ Not found ]
  328. [11:19:45] Ambient (ark) Rootkit [ Not found ]
  329. [11:19:45]
  330. [11:19:45] Checking for Balaur Rootkit...
  331. [11:19:45] Checking for file '/usr/lib/liblog.o' [ Not found ]
  332. [11:19:45] Checking for directory '/usr/lib/.kinetic' [ Not found ]
  333. [11:19:45] Checking for directory '/usr/lib/.egcs' [ Not found ]
  334. [11:19:45] Checking for directory '/usr/lib/.wormie' [ Not found ]
  335. [11:19:45] Balaur Rootkit [ Not found ]
  336. [11:19:45]
  337. [11:19:45] Checking for BeastKit Rootkit...
  338. [11:19:45] Checking for file '/usr/sbin/arobia' [ Not found ]
  339. [11:19:45] Checking for file '/usr/sbin/idrun' [ Not found ]
  340. [11:19:45] Checking for file '/usr/lib/elm/arobia/elm' [ Not found ]
  341. [11:19:45] Checking for file '/usr/lib/elm/arobia/elm/hk' [ Not found ]
  342. [11:19:45] Checking for file '/usr/lib/elm/arobia/elm/hk.pub' [ Not found ]
  343. [11:19:45] Checking for file '/usr/lib/elm/arobia/elm/sc' [ Not found ]
  344. [11:19:45] Checking for file '/usr/lib/elm/arobia/elm/sd.pp' [ Not found ]
  345. [11:19:45] Checking for file '/usr/lib/elm/arobia/elm/sdco' [ Not found ]
  346. [11:19:45] Checking for file '/usr/lib/elm/arobia/elm/srsd' [ Not found ]
  347. [11:19:45] Checking for directory '/lib/ldd.so/bktools' [ Not found ]
  348. [11:19:45] BeastKit Rootkit [ Not found ]
  349. [11:19:45]
  350. [11:19:45] Checking for beX2 Rootkit...
  351. [11:19:45] Checking for directory '/usr/include/bex' [ Not found ]
  352. [11:19:45] beX2 Rootkit [ Not found ]
  353. [11:19:45]
  354. [11:19:45] Checking for BOBKit Rootkit...
  355. [11:19:45] Checking for file '/usr/sbin/ntpsx' [ Not found ]
  356. [11:19:45] Checking for file '/usr/lib/.../ls' [ Not found ]
  357. [11:19:45] Checking for file '/usr/lib/.../netstat' [ Not found ]
  358. [11:19:45] Checking for file '/usr/lib/.../lsof' [ Not found ]
  359. [11:19:45] Checking for file '/usr/lib/.../bkit-ssh/bkit-shdcfg' [ Not found ]
  360. [11:19:45] Checking for file '/usr/lib/.../bkit-ssh/bkit-shhk' [ Not found ]
  361. [11:19:45] Checking for file '/usr/lib/.../bkit-ssh/bkit-pw' [ Not found ]
  362. [11:19:45] Checking for file '/usr/lib/.../bkit-ssh/bkit-shrs' [ Not found ]
  363. [11:19:45] Checking for file '/usr/lib/.../uconf.inv' [ Not found ]
  364. [11:19:45] Checking for file '/usr/lib/.../psr' [ Not found ]
  365. [11:19:46] Checking for file '/usr/lib/.../find' [ Not found ]
  366. [11:19:46] Checking for file '/usr/lib/.../pstree' [ Not found ]
  367. [11:19:46] Checking for file '/usr/lib/.../slocate' [ Not found ]
  368. [11:19:46] Checking for file '/usr/lib/.../du' [ Not found ]
  369. [11:19:46] Checking for file '/usr/lib/.../top' [ Not found ]
  370. [11:19:46] Checking for directory '/usr/lib/...' [ Not found ]
  371. [11:19:46] Checking for directory '/usr/lib/.../bkit-ssh' [ Not found ]
  372. [11:19:46] Checking for directory '/usr/lib/.bkit-' [ Not found ]
  373. [11:19:46] Checking for directory '/tmp/.bkp' [ Not found ]
  374. [11:19:46] BOBKit Rootkit [ Not found ]
  375. [11:19:46]
  376. [11:19:46] Checking for CiNIK Worm (Slapper.B variant)...
  377. [11:19:46] Checking for file '/tmp/.cinik' [ Not found ]
  378. [11:19:46] Checking for directory '/tmp/.font-unix/.cinik' [ Not found ]
  379. [11:19:46] CiNIK Worm (Slapper.B variant) [ Not found ]
  380. [11:19:46]
  381. [11:19:46] Checking for Danny-Boy's Abuse Kit...
  382. [11:19:46] Checking for file '/dev/mdev' [ Not found ]
  383. [11:19:46] Checking for file '/usr/lib/libX.a' [ Not found ]
  384. [11:19:46] Danny-Boy's Abuse Kit [ Not found ]
  385. [11:19:46]
  386. [11:19:46] Checking for Devil RootKit...
  387. [11:19:46] Checking for file '/var/lib/games/.src' [ Not found ]
  388. [11:19:46] Checking for file '/dev/dsx' [ Not found ]
  389. [11:19:46] Checking for file '/dev/caca' [ Not found ]
  390. [11:19:46] Devil RootKit [ Not found ]
  391. [11:19:46]
  392. [11:19:46] Checking for Dica-Kit Rootkit...
  393. [11:19:46] Checking for file '/lib/.sso' [ Not found ]
  394. [11:19:46] Checking for file '/lib/.so' [ Not found ]
  395. [11:19:46] Checking for file '/var/run/...dica/clean' [ Not found ]
  396. [11:19:46] Checking for file '/var/run/...dica/xl' [ Not found ]
  397. [11:19:46] Checking for file '/var/run/...dica/xdr' [ Not found ]
  398. [11:19:46] Checking for file '/var/run/...dica/psg' [ Not found ]
  399. [11:19:46] Checking for file '/var/run/...dica/secure' [ Not found ]
  400. [11:19:46] Checking for file '/var/run/...dica/rdx' [ Not found ]
  401. [11:19:46] Checking for file '/var/run/...dica/va' [ Not found ]
  402. [11:19:46] Checking for file '/var/run/...dica/cl.sh' [ Not found ]
  403. [11:19:46] Checking for file '/usr/bin/.etc' [ Not found ]
  404. [11:19:46] Checking for directory '/var/run/...dica' [ Not found ]
  405. [11:19:46] Checking for directory '/var/run/...dica/mh' [ Not found ]
  406. [11:19:46] Checking for directory '/var/run/...dica/scan' [ Not found ]
  407. [11:19:46] Dica-Kit Rootkit [ Not found ]
  408. [11:19:46]
  409. [11:19:46] Checking for Dreams Rootkit...
  410. [11:19:46] Checking for file '/dev/ttyoa' [ Not found ]
  411. [11:19:46] Checking for file '/dev/ttyof' [ Not found ]
  412. [11:19:46] Checking for file '/dev/ttyop' [ Not found ]
  413. [11:19:46] Checking for file '/usr/bin/sense' [ Not found ]
  414. [11:19:46] Checking for file '/usr/bin/sl2' [ Not found ]
  415. [11:19:46] Checking for file '/usr/bin/logclear' [ Not found ]
  416. [11:19:46] Checking for file '/usr/bin/(swapd)' [ Not found ]
  417. [11:19:46] Checking for file '/usr/bin/snfs' [ Not found ]
  418. [11:19:46] Checking for file '/usr/lib/libsss' [ Not found ]
  419. [11:19:46] Checking for directory '/dev/ida/.hpd' [ Not found ]
  420. [11:19:46] Dreams Rootkit [ Not found ]
  421. [11:19:46]
  422. [11:19:46] Checking for Duarawkz Rootkit...
  423. [11:19:47] Checking for file '/usr/bin/duarawkz/loginpass' [ Not found ]
  424. [11:19:47] Checking for directory '/usr/bin/duarawkz' [ Not found ]
  425. [11:19:47] Duarawkz Rootkit [ Not found ]
  426. [11:19:47]
  427. [11:19:47] Checking for Enye LKM...
  428. [11:19:47] Checking for file '/etc/.enyelkmHIDE^IT.ko' [ Not found ]
  429. [11:19:47] Enye LKM [ Not found ]
  430. [11:19:47]
  431. [11:19:47] Checking for Flea Linux Rootkit...
  432. [11:19:47] Checking for file '/etc/ld.so.hash' [ Not found ]
  433. [11:19:47] Checking for file '/lib/security/.config/ssh/ssh_host_key' [ Not found ]
  434. [11:19:47] Checking for file '/lib/security/.config/ssh/ssh_host_key.pub' [ Not found ]
  435. [11:19:47] Checking for file '/lib/security/.config/ssh/ssh_random_seed' [ Not found ]
  436. [11:19:47] Checking for file '/usr/bin/ssh2d' [ Not found ]
  437. [11:19:47] Checking for file '/usr/lib/ldlibns.so' [ Not found ]
  438. [11:19:47] Checking for file '/usr/lib/ldlibpst.so' [ Not found ]
  439. [11:19:47] Checking for file '/usr/lib/ldlibdu.so' [ Not found ]
  440. [11:19:47] Checking for file '/usr/lib/ldlibct.so' [ Not found ]
  441. [11:19:47] Checking for directory '/lib/security/.config/ssh' [ Not found ]
  442. [11:19:47] Checking for directory '/dev/..0' [ Not found ]
  443. [11:19:47] Checking for directory '/dev/..0/backup' [ Not found ]
  444. [11:19:47] Flea Linux Rootkit [ Not found ]
  445. [11:19:47]
  446. [11:19:47] Checking for FreeBSD Rootkit...
  447. [11:19:47] Checking for file '/usr/lib/.fx/sched_host.2' [ Not found ]
  448. [11:19:47] Checking for file '/usr/lib/.fx/random_d.2' [ Not found ]
  449. [11:19:47] Checking for file '/usr/lib/.fx/set_pid.2' [ Not found ]
  450. [11:19:47] Checking for file '/usr/lib/.fx/cons.saver' [ Not found ]
  451. [11:19:47] Checking for file '/usr/lib/.fx/adore/adore/adore.ko' [ Not found ]
  452. [11:19:47] Checking for file '/bin/sysback' [ Not found ]
  453. [11:19:47] Checking for file '/usr/local/bin/sysback' [ Not found ]
  454. [11:19:47] Checking for directory '/usr/lib/.fx' [ Not found ]
  455. [11:19:47] Checking for directory '/usr/lib/.fx/adore' [ Not found ]
  456. [11:19:47] FreeBSD Rootkit [ Not found ]
  457. [11:19:47]
  458. [11:19:47] Checking for Fuck`it Rootkit...
  459. [11:19:47] Checking for file '/dev/proc/fuckit/hax0r' [ Not found ]
  460. [11:19:47] Checking for file '/dev/proc/fuckit/hax0rshell' [ Not found ]
  461. [11:19:47] Checking for file '/dev/proc/fuckit/config/lports' [ Not found ]
  462. [11:19:47] Checking for file '/dev/proc/fuckit/config/rports' [ Not found ]
  463. [11:19:47] Checking for file '/dev/proc/fuckit/config/rkconf' [ Not found ]
  464. [11:19:47] Checking for file '/dev/proc/fuckit/config/password' [ Not found ]
  465. [11:19:47] Checking for file '/dev/proc/fuckit/config/progs' [ Not found ]
  466. [11:19:47] Checking for file '/dev/proc/system-bins/init' [ Not found ]
  467. [11:19:47] Fuck`it Rootkit [ Not found ]
  468. [11:19:47]
  469. [11:19:47] Checking for GasKit Rootkit...
  470. [11:19:47] Checking for file '/dev/dev/gaskit/sshd/sshdd' [ Not found ]
  471. [11:19:47] Checking for directory '/dev/dev' [ Not found ]
  472. [11:19:47] Checking for directory '/dev/dev/gaskit' [ Not found ]
  473. [11:19:47] Checking for directory '/dev/dev/gaskit/sshd' [ Not found ]
  474. [11:19:47] GasKit Rootkit [ Not found ]
  475. [11:19:47]
  476. [11:19:47] Checking for Heroin LKM...
  477. [11:19:47] Checking for kernel symbol 'heroin' [ Not found ]
  478. [11:19:47] Heroin LKM [ Not found ]
  479. [11:19:47]
  480. [11:19:47] Checking for HjC Kit...
  481. [11:19:48] Checking for directory '/dev/.hijackerz' [ Not found ]
  482. [11:19:48] HjC Kit [ Not found ]
  483. [11:19:48]
  484. [11:19:48] Checking for ignoKit Rootkit...
  485. [11:19:48] Checking for file '/lib/defs/p' [ Not found ]
  486. [11:19:48] Checking for file '/lib/defs/q' [ Not found ]
  487. [11:19:48] Checking for file '/lib/defs/r' [ Not found ]
  488. [11:19:48] Checking for file '/lib/defs/s' [ Not found ]
  489. [11:19:48] Checking for file '/lib/defs/t' [ Not found ]
  490. [11:19:48] Checking for file '/usr/lib/defs/p' [ Not found ]
  491. [11:19:48] Checking for file '/usr/lib/defs/q' [ Not found ]
  492. [11:19:48] Checking for file '/usr/lib/defs/r' [ Not found ]
  493. [11:19:48] Checking for file '/usr/lib/defs/s' [ Not found ]
  494. [11:19:48] Checking for file '/usr/lib/defs/t' [ Not found ]
  495. [11:19:48] Checking for file '/usr/lib/.libigno/pkunsec' [ Not found ]
  496. [11:19:48] Checking for file '/usr/lib/.libigno/.igno/psybnc/psybnc' [ Not found ]
  497. [11:19:48] Checking for directory '/usr/lib/.libigno' [ Not found ]
  498. [11:19:48] Checking for directory '/usr/lib/.libigno/.igno' [ Not found ]
  499. [11:19:48] ignoKit Rootkit [ Not found ]
  500. [11:19:48]
  501. [11:19:48] Checking for ImperalsS-FBRK Rootkit...
  502. [11:19:48] Checking for directory '/dev/fd/.88' [ Not found ]
  503. [11:19:48] Checking for directory '/dev/fd/.99' [ Not found ]
  504. [11:19:48] ImperalsS-FBRK Rootkit [ Not found ]
  505. [11:19:48]
  506. [11:19:48] Checking for Irix Rootkit...
  507. [11:19:48] Checking for directory '/dev/pts/01' [ Not found ]
  508. [11:19:48] Checking for directory '/dev/pts/01/backup' [ Not found ]
  509. [11:19:48] Checking for directory '/dev/pts/01/etc' [ Not found ]
  510. [11:19:48] Checking for directory '/dev/pts/01/tmp' [ Not found ]
  511. [11:19:48] Irix Rootkit [ Not found ]
  512. [11:19:48]
  513. [11:19:48] Checking for Kitko Rootkit...
  514. [11:19:48] Checking for directory '/usr/src/redhat/SRPMS/...' [ Not found ]
  515. [11:19:48] Kitko Rootkit [ Not found ]
  516. [11:19:48]
  517. [11:19:48] Checking for Knark Rootkit...
  518. [11:19:48] Checking for file '/proc/knark/pids' [ Not found ]
  519. [11:19:48] Checking for directory '/proc/knark' [ Not found ]
  520. [11:19:48] Knark Rootkit [ Not found ]
  521. [11:19:48]
  522. [11:19:48] Checking for Li0n Worm...
  523. [11:19:48] Checking for file '/bin/in.telnetd' [ Not found ]
  524. [11:19:48] Checking for file '/bin/mjy' [ Not found ]
  525. [11:19:48] Checking for file '/usr/man/man1/man1/lib/.lib/mjy' [ Not found ]
  526. [11:19:48] Checking for file '/usr/man/man1/man1/lib/.lib/in.telnetd' [ Not found ]
  527. [11:19:48] Checking for file '/usr/man/man1/man1/lib/.lib/.x' [ Not found ]
  528. [11:19:48] Checking for file '/dev/.lib/lib/scan/1i0n.sh' [ Not found ]
  529. [11:19:48] Checking for file '/dev/.lib/lib/scan/hack.sh' [ Not found ]
  530. [11:19:48] Checking for file '/dev/.lib/lib/scan/bind' [ Not found ]
  531. [11:19:48] Checking for file '/dev/.lib/lib/scan/randb' [ Not found ]
  532. [11:19:48] Checking for file '/dev/.lib/lib/scan/scan.sh' [ Not found ]
  533. [11:19:48] Checking for file '/dev/.lib/lib/scan/pscan' [ Not found ]
  534. [11:19:48] Checking for file '/dev/.lib/lib/scan/star.sh' [ Not found ]
  535. [11:19:48] Checking for file '/dev/.lib/lib/scan/bindx.sh' [ Not found ]
  536. [11:19:48] Checking for file '/dev/.lib/lib/scan/bindname.log' [ Not found ]
  537. [11:19:49] Checking for file '/dev/.lib/lib/1i0n.sh' [ Not found ]
  538. [11:19:49] Checking for file '/dev/.lib/lib/lib/netstat' [ Not found ]
  539. [11:19:49] Checking for file '/dev/.lib/lib/lib/dev/.1addr' [ Not found ]
  540. [11:19:49] Checking for file '/dev/.lib/lib/lib/dev/.1logz' [ Not found ]
  541. [11:19:49] Checking for file '/dev/.lib/lib/lib/dev/.1proc' [ Not found ]
  542. [11:19:49] Checking for file '/dev/.lib/lib/lib/dev/.1file' [ Not found ]
  543. [11:19:49] Li0n Worm [ Not found ]
  544. [11:19:49]
  545. [11:19:49] Checking for Lockit / LJK2 Rootkit...
  546. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/ssh_config' [ Not found ]
  547. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/ssh_host_key' [ Not found ]
  548. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/ssh_host_key.pub' [ Not found ]
  549. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/ssh_random_seed*' [ Not found ]
  550. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/sshd_config' [ Not found ]
  551. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backdoor/RK1bd' [ Not found ]
  552. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/du' [ Not found ]
  553. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/ifconfig' [ Not found ]
  554. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/inetd.conf' [ Not found ]
  555. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/locate' [ Not found ]
  556. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/login' [ Not found ]
  557. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/ls' [ Not found ]
  558. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/netstat' [ Not found ]
  559. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/ps' [ Not found ]
  560. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/pstree' [ Not found ]
  561. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/rc.sysinit' [ Not found ]
  562. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/syslogd' [ Not found ]
  563. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/tcpd' [ Not found ]
  564. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/backup/top' [ Not found ]
  565. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/clean/RK1sauber' [ Not found ]
  566. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/clean/RK1wted' [ Not found ]
  567. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/hack/RK1parser' [ Not found ]
  568. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/hack/RK1sniff' [ Not found ]
  569. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/hide/.RK1addr' [ Not found ]
  570. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/hide/.RK1dir' [ Not found ]
  571. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/hide/.RK1log' [ Not found ]
  572. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/hide/.RK1proc' [ Not found ]
  573. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/hide/RK1phidemod.c' [ Not found ]
  574. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/modules/README.modules' [ Not found ]
  575. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/modules/RK1hidem.c' [ Not found ]
  576. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/modules/RK1phide' [ Not found ]
  577. [11:19:49] Checking for file '/usr/lib/libmen.oo/.LJK2/sshconfig/RK1ssh' [ Not found ]
  578. [11:19:49] Checking for directory '/usr/lib/libmen.oo/.LJK2' [ Not found ]
  579. [11:19:49] Lockit / LJK2 Rootkit [ Not found ]
  580. [11:19:49]
  581. [11:19:49] Checking for Mood-NT Rootkit...
  582. [11:19:49] Checking for file '/sbin/init__mood-nt-_-_cthulhu' [ Not found ]
  583. [11:19:49] Checking for file '/_cthulhu/mood-nt.init' [ Not found ]
  584. [11:19:49] Checking for file '/_cthulhu/mood-nt.conf' [ Not found ]
  585. [11:19:49] Checking for file '/_cthulhu/mood-nt.sniff' [ Not found ]
  586. [11:19:49] Checking for directory '/_cthulhu' [ Not found ]
  587. [11:19:49] Mood-NT Rootkit [ Not found ]
  588. [11:19:49]
  589. [11:19:49] Checking for MRK Rootkit...
  590. [11:19:49] Checking for file '/dev/ida/.inet/pid' [ Not found ]
  591. [11:19:50] Checking for file '/dev/ida/.inet/ssh_host_key' [ Not found ]
  592. [11:19:50] Checking for file '/dev/ida/.inet/ssh_random_seed' [ Not found ]
  593. [11:19:50] Checking for file '/dev/ida/.inet/tcp.log' [ Not found ]
  594. [11:19:50] Checking for directory '/dev/ida/.inet' [ Not found ]
  595. [11:19:50] Checking for directory '/var/spool/cron/.sh' [ Not found ]
  596. [11:19:50] MRK Rootkit [ Not found ]
  597. [11:19:50]
  598. [11:19:50] Checking for Ni0 Rootkit...
  599. [11:19:50] Checking for file '/var/lock/subsys/...datafile.../...net...' [ Not found ]
  600. [11:19:50] Checking for file '/var/lock/subsys/...datafile.../...port...' [ Not found ]
  601. [11:19:50] Checking for file '/var/lock/subsys/...datafile.../...ps...' [ Not found ]
  602. [11:19:50] Checking for file '/var/lock/subsys/...datafile.../...file...' [ Not found ]
  603. [11:19:50] Checking for directory '/tmp/waza' [ Not found ]
  604. [11:19:50] Checking for directory '/var/lock/subsys/...datafile...' [ Not found ]
  605. [11:19:50] Checking for directory '/usr/sbin/es' [ Not found ]
  606. [11:19:50] Ni0 Rootkit [ Not found ]
  607. [11:19:50]
  608. [11:19:50] Checking for Ohhara Rootkit...
  609. [11:19:50] Checking for file '/var/lock/subsys/...datafile.../...datafile.../in.smbd.log' [ Not found ]
  610. [11:19:50] Checking for directory '/var/lock/subsys/...datafile...' [ Not found ]
  611. [11:19:50] Checking for directory '/var/lock/subsys/...datafile.../...datafile...' [ Not found ]
  612. [11:19:50] Checking for directory '/var/lock/subsys/...datafile.../...datafile.../bin' [ Not found ]
  613. [11:19:50] Checking for directory '/var/lock/subsys/...datafile.../...datafile.../usr/bin' [ Not found ]
  614. [11:19:50] Checking for directory '/var/lock/subsys/...datafile.../...datafile.../usr/sbin' [ Not found ]
  615. [11:19:50] Checking for directory '/var/lock/subsys/...datafile.../...datafile.../lib/security' [ Not found ]
  616. [11:19:50] Ohhara Rootkit [ Not found ]
  617. [11:19:50]
  618. [11:19:50] Checking for Optic Kit (Tux) Worm...
  619. [11:19:50] Checking for directory '/dev/tux' [ Not found ]
  620. [11:19:50] Checking for directory '/usr/bin/xchk' [ Not found ]
  621. [11:19:50] Checking for directory '/usr/bin/xsf' [ Not found ]
  622. [11:19:50] Checking for directory '/usr/bin/ssh2d' [ Not found ]
  623. [11:19:50] Optic Kit (Tux) Worm [ Not found ]
  624. [11:19:50]
  625. [11:19:50] Checking for Oz Rootkit...
  626. [11:19:50] Checking for file '/dev/.oz/.nap/rkit/terror' [ Not found ]
  627. [11:19:50] Checking for directory '/dev/.oz' [ Not found ]
  628. [11:19:50] Oz Rootkit [ Not found ]
  629. [11:19:50]
  630. [11:19:50] Checking for Phalanx Rootkit...
  631. [11:19:50] Checking for file '/usr/share/.home.ph1/cb' [ Not found ]
  632. [11:19:50] Checking for file '/etc/host.ph1' [ Not found ]
  633. [11:19:50] Checking for file '/bin/host.ph1' [ Not found ]
  634. [11:19:50] Checking for file '/usr/share/.home.ph1/phalanx' [ Not found ]
  635. [11:19:50] Checking for directory '/usr/share/.home.ph1' [ Not found ]
  636. [11:19:50] Phalanx Rootkit [ Not found ]
  637. [11:19:50]
  638. [11:19:50] Checking for Phalanx Rootkit (strings)...
  639. [11:19:50] Checking for string 'phalanx' [ Not found ]
  640. [11:19:50] Phalanx Rootkit (strings) [ Not found ]
  641. [11:19:50]
  642. [11:19:50] Checking for Portacelo Rootkit...
  643. [11:19:50] Checking for file '/var/lib/.../.ak' [ Not found ]
  644. [11:19:50] Checking for file '/var/lib/.../.hk' [ Not found ]
  645. [11:19:50] Checking for file '/var/lib/.../.rs' [ Not found ]
  646. [11:19:51] Checking for file '/var/lib/.../.p' [ Not found ]
  647. [11:19:51] Checking for file '/var/lib/.../getty' [ Not found ]
  648. [11:19:51] Checking for file '/var/lib/.../lkt.o' [ Not found ]
  649. [11:19:51] Checking for file '/var/lib/.../show' [ Not found ]
  650. [11:19:51] Checking for file '/var/lib/.../nlkt.o' [ Not found ]
  651. [11:19:51] Checking for file '/var/lib/.../ssshrc' [ Not found ]
  652. [11:19:51] Checking for file '/var/lib/.../sssh_equiv' [ Not found ]
  653. [11:19:51] Checking for file '/var/lib/.../sssh_known_hosts' [ Not found ]
  654. [11:19:51] Checking for file '/var/lib/.../sssh_pid' [ Not found ]
  655. [11:19:51] Checking for file '~/.sssh/known_hosts' [ Not found ]
  656. [11:19:51] Portacelo Rootkit [ Not found ]
  657. [11:19:51]
  658. [11:19:51] Checking for R3dstorm Toolkit...
  659. [11:19:51] Checking for file '/var/log/tk02/see_all' [ Not found ]
  660. [11:19:51] Checking for file '/bin/.../sshd/sbin/sshd1' [ Not found ]
  661. [11:19:51] Checking for file '/bin/.../hate/sk' [ Not found ]
  662. [11:19:51] Checking for file '/bin/.../see_all' [ Not found ]
  663. [11:19:51] Checking for directory '/var/log/tk02' [ Not found ]
  664. [11:19:51] Checking for directory '/var/log/tk02/old' [ Not found ]
  665. [11:19:51] Checking for directory '/bin/...' [ Not found ]
  666. [11:19:51] R3dstorm Toolkit [ Not found ]
  667. [11:19:51]
  668. [11:19:51] Checking for RH-Sharpe's Rootkit...
  669. [11:19:51] Checking for file '/bin/lps' [ Not found ]
  670. [11:19:51] Checking for file '/usr/bin/lpstree' [ Not found ]
  671. [11:19:51] Checking for file '/usr/bin/ltop' [ Not found ]
  672. [11:19:51] Checking for file '/usr/bin/lkillall' [ Not found ]
  673. [11:19:51] Checking for file '/usr/bin/ldu' [ Not found ]
  674. [11:19:51] Checking for file '/usr/bin/lnetstat' [ Not found ]
  675. [11:19:51] Checking for file '/usr/bin/wp' [ Not found ]
  676. [11:19:51] Checking for file '/usr/bin/shad' [ Not found ]
  677. [11:19:51] Checking for file '/usr/bin/vadim' [ Not found ]
  678. [11:19:51] Checking for file '/usr/bin/slice' [ Not found ]
  679. [11:19:51] Checking for file '/usr/bin/cleaner' [ Not found ]
  680. [11:19:51] Checking for file '/usr/include/rpcsvc/du' [ Not found ]
  681. [11:19:51] RH-Sharpe's Rootkit [ Not found ]
  682. [11:19:51]
  683. [11:19:51] Checking for RSHA's Rootkit...
  684. [11:19:51] Checking for file '/bin/kr4p' [ Not found ]
  685. [11:19:51] Checking for file '/usr/bin/n3tstat' [ Not found ]
  686. [11:19:51] Checking for file '/usr/bin/chsh2' [ Not found ]
  687. [11:19:51] Checking for file '/usr/bin/slice2' [ Not found ]
  688. [11:19:51] Checking for file '/usr/src/linux/arch/alpha/lib/.lib/.1proc' [ Not found ]
  689. [11:19:51] Checking for file '/etc/rc.d/arch/alpha/lib/.lib/.1addr' [ Not found ]
  690. [11:19:51] Checking for directory '/etc/rc.d/rsha' [ Not found ]
  691. [11:19:51] Checking for directory '/etc/rc.d/arch/alpha/lib/.lib' [ Not found ]
  692. [11:19:51] RSHA's Rootkit [ Not found ]
  693. [11:19:51]
  694. [11:19:51] Checking for Scalper Worm...
  695. [11:19:51] Checking for file '/tmp/.a' [ Not found ]
  696. [11:19:52] Checking for file '/tmp/.uua' [ Not found ]
  697. [11:19:52] Scalper Worm [ Not found ]
  698. [11:19:52]
  699. [11:19:52] Checking for Sebek LKM...
  700. [11:19:52] Checking for kernel symbol 'adore or sebek' [ Not found ]
  701. [11:19:52] Sebek LKM [ Not found ]
  702. [11:19:52]
  703. [11:19:52] Checking for Shutdown Rootkit...
  704. [11:19:52] Checking for file '/usr/man/man5/.. /.dir/scannah/asus' [ Not found ]
  705. [11:19:52] Checking for file '/usr/man/man5/.. /.dir/see' [ Not found ]
  706. [11:19:52] Checking for file '/usr/man/man5/.. /.dir/nscd' [ Not found ]
  707. [11:19:52] Checking for file '/usr/man/man5/.. /.dir/alpd' [ Not found ]
  708. [11:19:52] Checking for file '/etc/rc.d/rc.local ' [ Not found ]
  709. [11:19:52] Checking for directory '/usr/man/man5/.. /.dir' [ Not found ]
  710. [11:19:52] Checking for directory '/usr/man/man5/.. /.dir/scannah' [ Not found ]
  711. [11:19:52] Checking for directory '/etc/rc.d/rc0.d/.. /.dir' [ Not found ]
  712. [11:19:52] Shutdown Rootkit [ Not found ]
  713. [11:19:52]
  714. [11:19:52] Checking for SHV4 Rootkit...
  715. [11:19:52] Checking for file '/etc/ld.so.hash' [ Not found ]
  716. [11:19:52] Checking for file '/lib/libext-2.so.7' [ Not found ]
  717. [11:19:52] Checking for file '/lib/lidps1.so' [ Not found ]
  718. [11:19:52] Checking for file '/usr/sbin/xntps' [ Not found ]
  719. [11:19:52] Checking for directory '/lib/security/.config' [ Not found ]
  720. [11:19:52] Checking for directory '/lib/security/.config/ssh' [ Not found ]
  721. [11:19:52] SHV4 Rootkit [ Not found ]
  722. [11:19:52]
  723. [11:19:52] Checking for SHV5 Rootkit...
  724. [11:19:52] Checking for file '/etc/sh.conf' [ Not found ]
  725. [11:19:52] Checking for file '/dev/srd0' [ Not found ]
  726. [11:19:52] Checking for directory '/usr/lib/libsh' [ Not found ]
  727. [11:19:52] SHV5 Rootkit [ Not found ]
  728. [11:19:52]
  729. [11:19:52] Checking for Sin Rootkit...
  730. [11:19:52] Checking for file '/dev/.haos/haos1/.f/Denyed' [ Not found ]
  731. [11:19:52] Checking for file '/dev/ttyoa' [ Not found ]
  732. [11:19:52] Checking for file '/dev/ttyof' [ Not found ]
  733. [11:19:52] Checking for file '/dev/ttyop' [ Not found ]
  734. [11:19:52] Checking for file '/dev/ttyos' [ Not found ]
  735. [11:19:52] Checking for file '/usr/lib/.lib' [ Not found ]
  736. [11:19:52] Checking for file '/usr/lib/sn/.X' [ Not found ]
  737. [11:19:52] Checking for file '/usr/lib/sn/.sys' [ Not found ]
  738. [11:19:52] Checking for file '/usr/lib/ld/.X' [ Not found ]
  739. [11:19:52] Checking for file '/usr/man/man1/...' [ Not found ]
  740. [11:19:53] Checking for file '/usr/man/man1/.../.m' [ Not found ]
  741. [11:19:53] Checking for file '/usr/man/man1/.../.w' [ Not found ]
  742. [11:19:53] Checking for directory '/usr/lib/sn' [ Not found ]
  743. [11:19:53] Checking for directory '/usr/lib/man1/...' [ Not found ]
  744. [11:19:53] Checking for directory '/dev/.haos' [ Not found ]
  745. [11:19:53] Sin Rootkit [ Not found ]
  746. [11:19:53]
  747. [11:19:53] Checking for Slapper Worm...
  748. [11:19:53] Checking for file '/tmp/.bugtraq' [ Not found ]
  749. [11:19:53] Checking for file '/tmp/.uubugtraq' [ Not found ]
  750. [11:19:53] Checking for file '/tmp/.bugtraq.c' [ Not found ]
  751. [11:19:53] Checking for file '/tmp/httpd' [ Not found ]
  752. [11:19:53] Checking for file '/tmp/.unlock' [ Not found ]
  753. [11:19:53] Checking for file '/tmp/update' [ Not found ]
  754. [11:19:53] Checking for file '/tmp/.cinik' [ Not found ]
  755. [11:19:53] Checking for file '/tmp/.b' [ Not found ]
  756. [11:19:53] Slapper Worm [ Not found ]
  757. [11:19:53]
  758. [11:19:53] Checking for Sneakin Rootkit...
  759. [11:19:53] Checking for directory '/tmp/.X11-unix/.../rk' [ Not found ]
  760. [11:19:53] Sneakin Rootkit [ Not found ]
  761. [11:19:53]
  762. [11:19:53] Checking for Suckit Rootkit...
  763. [11:19:53] Checking for file '/sbin/initsk12' [ Not found ]
  764. [11:19:53] Checking for file '/sbin/initxrk' [ Not found ]
  765. [11:19:53] Checking for file '/usr/bin/null' [ Not found ]
  766. [11:19:53] Checking for file '/usr/share/locale/sk/.sk12/sk' [ Not found ]
  767. [11:19:53] Checking for file '/etc/rc.d/rc0.d/S23kmdac' [ Not found ]
  768. [11:19:53] Checking for file '/etc/rc.d/rc1.d/S23kmdac' [ Not found ]
  769. [11:19:53] Checking for file '/etc/rc.d/rc2.d/S23kmdac' [ Not found ]
  770. [11:19:53] Checking for file '/etc/rc.d/rc3.d/S23kmdac' [ Not found ]
  771. [11:19:53] Checking for file '/etc/rc.d/rc4.d/S23kmdac' [ Not found ]
  772. [11:19:53] Checking for file '/etc/rc.d/rc5.d/S23kmdac' [ Not found ]
  773. [11:19:53] Checking for file '/etc/rc.d/rc6.d/S23kmdac' [ Not found ]
  774. [11:19:53] Checking for directory '/dev/sdhu0/tehdrakg' [ Not found ]
  775. [11:19:53] Checking for directory '/etc/.MG' [ Not found ]
  776. [11:19:53] Checking for directory '/usr/share/locale/sk/.sk12' [ Not found ]
  777. [11:19:53] Checking for directory '/usr/lib/perl5/site_perl/i386-linux/auto/TimeDate/.packlist' [ Not found ]
  778. [11:19:53] Suckit Rootkit [ Not found ]
  779. [11:19:53]
  780. [11:19:53] Checking for SunOS Rootkit...
  781. [11:19:53] Checking for file '/etc/ld.so.hash' [ Not found ]
  782. [11:19:53] Checking for file '/lib/libext-2.so.7' [ Not found ]
  783. [11:19:53] Checking for file '/usr/bin/ssh2d' [ Not found ]
  784. [11:19:53] Checking for file '/bin/xlogin' [ Not found ]
  785. [11:19:53] Checking for file '/usr/lib/crth.o' [ Not found ]
  786. [11:19:53] Checking for file '/usr/lib/crtz.o' [ Not found ]
  787. [11:19:53] Checking for file '/sbin/login' [ Not found ]
  788. [11:19:53] Checking for file '/lib/security/.config/sn' [ Not found ]
  789. [11:19:53] Checking for file '/lib/security/.config/lpsched' [ Not found ]
  790. [11:19:54] Checking for file '/dev/kmod' [ Not found ]
  791. [11:19:54] Checking for file '/dev/dos' [ Not found ]
  792. [11:19:54] SunOS Rootkit [ Not found ]
  793. [11:19:54]
  794. [11:19:54] Checking for SunOS / NSDAP Rootkit...
  795. [11:19:54] Checking for file '/usr/lib/vold/nsdap/.kit' [ Not found ]
  796. [11:19:54] Checking for file '/usr/lib/vold/nsdap/defines' [ Not found ]
  797. [11:19:54] Checking for file '/usr/lib/vold/nsdap/patcher' [ Not found ]
  798. [11:19:54] Checking for file '/usr/lib/vold/nsdap/pg' [ Not found ]
  799. [11:19:54] Checking for file '/usr/lib/vold/nsdap/cleaner' [ Not found ]
  800. [11:19:54] Checking for file '/usr/lib/vold/nsdap/utime' [ Not found ]
  801. [11:19:54] Checking for file '/usr/lib/vold/nsdap/crypt' [ Not found ]
  802. [11:19:54] Checking for file '/usr/lib/vold/nsdap/findkit' [ Not found ]
  803. [11:19:54] Checking for file '/usr/lib/vold/nsdap/sn2' [ Not found ]
  804. [11:19:54] Checking for file '/usr/lib/vold/nsdap/sniffload' [ Not found ]
  805. [11:19:54] Checking for file '/usr/lib/vold/nsdap/runsniff' [ Not found ]
  806. [11:19:54] Checking for file '/usr/lib/lpset' [ Not found ]
  807. [11:19:54] Checking for directory '/usr/lib/vold/nsdap' [ Not found ]
  808. [11:19:54] SunOS / NSDAP Rootkit [ Not found ]
  809. [11:19:54]
  810. [11:19:54] Checking for Superkit Rootkit...
  811. [11:19:54] Checking for file '/usr/man/.sman/sk' [ Not found ]
  812. [11:19:54] Superkit Rootkit [ Not found ]
  813. [11:19:54]
  814. [11:19:54] Checking for TBD (Telnet BackDoor)...
  815. [11:19:54] Checking for file '/usr/lib/.tbd' [ Not found ]
  816. [11:19:54] TBD (Telnet BackDoor) [ Not found ]
  817. [11:19:54]
  818. [11:19:54] Checking for TeLeKiT Rootkit...
  819. [11:19:54] Checking for file '/usr/man/man3/.../TeLeKiT/bin/sniff' [ Not found ]
  820. [11:19:54] Checking for file '/usr/man/man3/.../TeLeKiT/bin/telnetd' [ Not found ]
  821. [11:19:54] Checking for file '/usr/man/man3/.../TeLeKiT/bin/teleulo' [ Not found ]
  822. [11:19:54] Checking for file '/usr/man/man3/.../cl' [ Not found ]
  823. [11:19:54] Checking for file '/dev/ptyr' [ Not found ]
  824. [11:19:54] Checking for file '/dev/ptyp' [ Not found ]
  825. [11:19:54] Checking for file '/dev/ptyq' [ Not found ]
  826. [11:19:54] Checking for file '/dev/hda06' [ Not found ]
  827. [11:19:54] Checking for file '/usr/info/libc1.so' [ Not found ]
  828. [11:19:54] Checking for directory '/usr/man/man3/...' [ Not found ]
  829. [11:19:54] Checking for directory '/usr/man/man3/.../lsniff' [ Not found ]
  830. [11:19:54] Checking for directory '/usr/man/man3/.../TeLeKiT' [ Not found ]
  831. [11:19:54] TeLeKiT Rootkit [ Not found ]
  832. [11:19:54]
  833. [11:19:54] Checking for T0rn Rootkit...
  834. [11:19:54] Checking for file '/dev/.lib/lib/lib/t0rns' [ Not found ]
  835. [11:19:54] Checking for file '/dev/.lib/lib/lib/du' [ Not found ]
  836. [11:19:54] Checking for file '/dev/.lib/lib/lib/ls' [ Not found ]
  837. [11:19:54] Checking for file '/dev/.lib/lib/lib/t0rnsb' [ Not found ]
  838. [11:19:54] Checking for file '/dev/.lib/lib/lib/ps' [ Not found ]
  839. [11:19:54] Checking for file '/dev/.lib/lib/lib/t0rnp' [ Not found ]
  840. [11:19:54] Checking for file '/dev/.lib/lib/lib/find' [ Not found ]
  841. [11:19:54] Checking for file '/dev/.lib/lib/lib/ifconfig' [ Not found ]
  842. [11:19:54] Checking for file '/dev/.lib/lib/lib/pg' [ Not found ]
  843. [11:19:55] Checking for file '/dev/.lib/lib/lib/ssh.tgz' [ Not found ]
  844. [11:19:55] Checking for file '/dev/.lib/lib/lib/top' [ Not found ]
  845. [11:19:55] Checking for file '/dev/.lib/lib/lib/sz' [ Not found ]
  846. [11:19:55] Checking for file '/dev/.lib/lib/lib/login' [ Not found ]
  847. [11:19:55] Checking for file '/dev/.lib/lib/lib/in.fingerd' [ Not found ]
  848. [11:19:55] Checking for file '/dev/.lib/lib/lib/1i0n.sh' [ Not found ]
  849. [11:19:55] Checking for file '/dev/.lib/lib/lib/pstree' [ Not found ]
  850. [11:19:55] Checking for file '/dev/.lib/lib/lib/in.telnetd' [ Not found ]
  851. [11:19:55] Checking for file '/dev/.lib/lib/lib/mjy' [ Not found ]
  852. [11:19:55] Checking for file '/dev/.lib/lib/lib/sush' [ Not found ]
  853. [11:19:55] Checking for file '/dev/.lib/lib/lib/tfn' [ Not found ]
  854. [11:19:55] Checking for file '/dev/.lib/lib/lib/name' [ Not found ]
  855. [11:19:55] Checking for file '/dev/.lib/lib/lib/getip.sh' [ Not found ]
  856. [11:19:55] Checking for file '/usr/info/.torn/sh*' [ Not found ]
  857. [11:19:55] Checking for file '/usr/src/.puta/.1addr' [ Not found ]
  858. [11:19:55] Checking for file '/usr/src/.puta/.1file' [ Not found ]
  859. [11:19:55] Checking for file '/usr/src/.puta/.1proc' [ Not found ]
  860. [11:19:55] Checking for file '/usr/src/.puta/.1logz' [ Not found ]
  861. [11:19:55] Checking for file '/usr/info/.t0rn' [ Not found ]
  862. [11:19:55] Checking for directory '/dev/.lib' [ Not found ]
  863. [11:19:55] Checking for directory '/dev/.lib/lib' [ Not found ]
  864. [11:19:55] Checking for directory '/dev/.lib/lib/lib' [ Not found ]
  865. [11:19:55] Checking for directory '/dev/.lib/lib/lib/dev' [ Not found ]
  866. [11:19:55] Checking for directory '/dev/.lib/lib/scan' [ Not found ]
  867. [11:19:55] Checking for directory '/usr/src/.puta' [ Not found ]
  868. [11:19:55] Checking for directory '/usr/man/man1/man1' [ Not found ]
  869. [11:19:55] Checking for directory '/usr/man/man1/man1/lib' [ Not found ]
  870. [11:19:55] Checking for directory '/usr/man/man1/man1/lib/.lib' [ Not found ]
  871. [11:19:55] Checking for directory '/usr/man/man1/man1/lib/.lib/.backup' [ Not found ]
  872. [11:19:55] T0rn Rootkit [ Not found ]
  873. [11:19:55]
  874. [11:19:55] Checking for Trojanit Kit...
  875. [11:19:55] Checking for file '/bin/.ls' [ Not found ]
  876. [11:19:55] Checking for file '/bin/.ps' [ Not found ]
  877. [11:19:55] Checking for file '/bin/.netstat' [ Not found ]
  878. [11:19:55] Checking for file '/usr/bin/.nop' [ Not found ]
  879. [11:19:55] Checking for file '/usr/bin/.who' [ Not found ]
  880. [11:19:55] Trojanit Kit [ Not found ]
  881. [11:19:55]
  882. [11:19:55] Checking for Tuxtendo Rootkit...
  883. [11:19:55] Checking for file '/dev/tux/.addr' [ Not found ]
  884. [11:19:55] Checking for file '/dev/tux/.cron' [ Not found ]
  885. [11:19:55] Checking for file '/dev/tux/.file' [ Not found ]
  886. [11:19:55] Checking for file '/dev/tux/.log' [ Not found ]
  887. [11:19:55] Checking for file '/dev/tux/.proc' [ Not found ]
  888. [11:19:55] Checking for file '/dev/tux/backup/crontab' [ Not found ]
  889. [11:19:55] Checking for file '/dev/tux/backup/df' [ Not found ]
  890. [11:19:55] Checking for file '/dev/tux/backup/dir' [ Not found ]
  891. [11:19:55] Checking for file '/dev/tux/backup/find' [ Not found ]
  892. [11:19:55] Checking for file '/dev/tux/backup/ifconfig' [ Not found ]
  893. [11:19:55] Checking for file '/dev/tux/backup/locate' [ Not found ]
  894. [11:19:56] Checking for file '/dev/tux/backup/netstat' [ Not found ]
  895. [11:19:56] Checking for file '/dev/tux/backup/ps' [ Not found ]
  896. [11:19:56] Checking for file '/dev/tux/backup/pstree' [ Not found ]
  897. [11:19:56] Checking for file '/dev/tux/backup/syslogd' [ Not found ]
  898. [11:19:56] Checking for file '/dev/tux/backup/tcpd' [ Not found ]
  899. [11:19:56] Checking for file '/dev/tux/backup/top' [ Not found ]
  900. [11:19:56] Checking for file '/dev/tux/backup/updatedb' [ Not found ]
  901. [11:19:56] Checking for file '/dev/tux/backup/vdir' [ Not found ]
  902. [11:19:56] Checking for directory '/dev/tux' [ Not found ]
  903. [11:19:56] Checking for directory '/dev/tux/ssh2' [ Not found ]
  904. [11:19:56] Checking for directory '/dev/tux/backup' [ Not found ]
  905. [11:19:56] Tuxtendo Rootkit [ Not found ]
  906. [11:19:56]
  907. [11:19:56] Checking for URK Rootkit...
  908. [11:19:56] Checking for file '/usr/man/man1/xxxxxxbin/find' [ Not found ]
  909. [11:19:56] Checking for file '/usr/man/man1/xxxxxxbin/du' [ Not found ]
  910. [11:19:56] Checking for file '/usr/man/man1/xxxxxxbin/ps' [ Not found ]
  911. [11:19:56] Checking for file '/tmp/conf.inf' [ Not found ]
  912. [11:19:56] Checking for directory '/usr/man/man1/xxxxxxbin' [ Not found ]
  913. [11:19:56] URK Rootkit [ Not found ]
  914. [11:19:56]
  915. [11:19:56] Checking for VcKit Rootkit...
  916. [11:19:56] Checking for directory '/usr/include/linux/modules/lib.so' [ Not found ]
  917. [11:19:56] Checking for directory '/usr/include/linux/modules/lib.so/bin' [ Not found ]
  918. [11:19:56] VcKit Rootkit [ Not found ]
  919. [11:19:56]
  920. [11:19:56] Checking for Volc Rootkit...
  921. [11:19:56] Checking for directory '/var/spool/.recent' [ Not found ]
  922. [11:19:56] Checking for directory '/var/spool/.recent/.files' [ Not found ]
  923. [11:19:56] Checking for directory '/usr/lib/volc' [ Not found ]
  924. [11:19:56] Checking for directory '/usr/lib/volc/backup' [ Not found ]
  925. [11:19:56] Volc Rootkit [ Not found ]
  926. [11:19:56]
  927. [11:19:56] Checking for X-Org SunOS Rootkit...
  928. [11:19:56] Checking for file '/usr/lib/libX.a/bin/tmpfl' [ Not found ]
  929. [11:19:56] Checking for file '/usr/lib/libX.a/bin/rps' [ Not found ]
  930. [11:19:56] Checking for file '/usr/bin/srload' [ Not found ]
  931. [11:19:56] Checking for file '/usr/lib/libX.a/bin/sparcv7/rps' [ Not found ]
  932. [11:19:56] Checking for file '/usr/sbin/modcheck' [ Not found ]
  933. [11:19:56] Checking for directory '/usr/lib/libX.a' [ Not found ]
  934. [11:19:56] Checking for directory '/usr/lib/libX.a/bin' [ Not found ]
  935. [11:19:56] Checking for directory '/usr/lib/libX.a/bin/sparcv7' [ Not found ]
  936. [11:19:56] Checking for directory '/usr/share/man...' [ Not found ]
  937. [11:19:56] X-Org SunOS Rootkit [ Not found ]
  938. [11:19:56]
  939. [11:19:56] Checking for zaRwT.KiT Rootkit...
  940. [11:19:56] Checking for file '/dev/rd/s/sendmeil' [ Not found ]
  941. [11:19:56] Checking for file '/dev/ttyf' [ Not found ]
  942. [11:19:56] Checking for file '/dev/ttyp' [ Not found ]
  943. [11:19:56] Checking for file '/dev/ttyn' [ Not found ]
  944. [11:19:56] Checking for file '/rk/tulz' [ Not found ]
  945. [11:19:56] Checking for directory '/rk' [ Not found ]
  946. [11:19:56] Checking for directory '/dev/rd/s' [ Not found ]
  947. [11:19:57] zaRwT.KiT Rootkit [ Not found ]
  948. [11:19:57]
  949. [11:19:57] Performing additional rootkit checks
  950. [11:19:57] Info: Starting test name 'additional_rkts'
  951. [11:19:57]
  952. [11:19:57] Performing Suckit Rookit additional checks
  953. [11:19:57] Checking /sbin/init link count [ OK ]
  954. [11:19:57] Checking for hidden file extensions [ None found ]
  955. [11:19:57] Running skdet command [ Skipped ]
  956. [11:19:57] Info: Unable to find the 'skdet' command
  957. [11:19:57] Suckit Rookit additional checks [ OK ]
  958. [11:19:57]
  959. [11:19:57] Performing check of possible rootkit files and directories
  960. [11:19:57] Info: Starting test name 'possible_rkt_files'
  961. [11:19:57] Checking for file '/dev/sdr0' [ Not found ]
  962. [11:19:57] Checking for file '/tmp/.syshackfile' [ Not found ]
  963. [11:19:57] Checking for file '/tmp/.bash_history' [ Not found ]
  964. [11:19:57] Checking for file '/usr/info/.clib' [ Not found ]
  965. [11:19:57] Checking for file '/usr/sbin/tcp.log' [ Not found ]
  966. [11:19:57] Checking for file '/usr/bin/take/pid' [ Not found ]
  967. [11:19:57] Checking for file '/sbin/create' [ Not found ]
  968. [11:19:57] Checking for file '/dev/ttypz' [ Not found ]
  969. [11:19:57] Checking for directory '/usr/bin/take' [ Not found ]
  970. [11:19:57] Checking for directory '/usr/src/.lib' [ Not found ]
  971. [11:19:57] Checking for directory '/usr/share/man/man1/.1c' [ Not found ]
  972. [11:19:57] Checking for directory '/lib/lblip.tk' [ Not found ]
  973. [11:19:57] Checking for directory '/usr/sbin/...' [ Not found ]
  974. [11:19:57] Checking for directory '/usr/share/.gun' [ Not found ]
  975. [11:19:57] Checking for possible rootkit files and directories [ None found ]
  976. [11:19:57]
  977. [11:19:57] Performing check for possible rootkit strings
  978. [11:19:57] Info: Starting test name 'possible_rkt_strings'
  979. [11:19:57] Info: Found local startup file: /etc/rc.local
  980. [11:19:57] Info: Found local startup file: /etc/inittab
  981. [11:19:57] Checking for string '/dev/proc/fuckit' [ Not found ]
  982. [11:19:57] Checking for string 'FUCK' [ Not found ]
  983. [11:19:57] Checking for string 'backdoor' [ Not found ]
  984. [11:19:57] Checking for string 'vt200' [ Not found ]
  985. [11:19:57] Checking for string '/usr/bin/xstat' [ Not found ]
  986. [11:19:57] Checking for string '/bin/envpc' [ Not found ]
  987. [11:19:57] Checking for string 'L4m3r0x' [ Not found ]
  988. [11:19:57] Checking for string '/usr/lib/.tbd' [ Not found ]
  989. [11:19:57] Checking for string '/dev/ptyxx/.file' [ Not found ]
  990. [11:19:58] Checking for string '/dev/sgk' [ Not found ]
  991. [11:19:58] Checking for string '/var/lock/subsys/...datafile...' [ Not found ]
  992. [11:19:58] Checking for string '/usr/lib/.tbd' [ Not found ]
  993. [11:19:58] Checking for string '/dev/proc/fuckit' [ Not found ]
  994. [11:19:58] Checking for string '/lib/.sso' [ Not found ]
  995. [11:19:58] Checking for string '/var/lock/subsys/...datafile...' [ Not found ]
  996. [11:19:58] Checking for string '/dev/caca' [ Not found ]
  997. [11:19:58] Checking for string '/dev/ttyoa' [ Not found ]
  998. [11:19:58] Checking for string 'syg' [ Not found ]
  999. [11:19:58] Checking for string '/dev/pts/01' [ Not found ]
  1000. [11:19:58] Checking for string 'tw33dl3' [ Not found ]
  1001. [11:19:58] Checking for string 'psniff' [ Not found ]
  1002. [11:19:58] Checking for string '/var/lock/subsys/...datafile...' [ Not found ]
  1003. [11:19:58] Checking for string 'promiscuous' [ Not found ]
  1004. [11:19:58] Checking for string '/usr/lib/.tbd' [ Not found ]
  1005. [11:19:58] Checking for string '/dev/xdta' [ Not found ]
  1006. [11:19:58] Checking for string '/usr/lib/.tbd' [ Not found ]
  1007. [11:19:58] Checking for string 'in.inetd' [ Not found ]
  1008. [11:19:58] Checking for string '#<HIDE_.*>' [ Not found ]
  1009. [11:19:58] Checking for string 'bin/xchk' [ Not found ]
  1010. [11:19:58] Checking for string 'bin/xsf' [ Not found ]
  1011. [11:19:58] Checking for possible rootkit strings [ None found ]
  1012. [11:19:58]
  1013. [11:19:58] Performing malware checks
  1014. [11:19:58] Info: Starting test name 'malware'
  1015. [11:19:58]
  1016. [11:19:58] Info: Test 'deleted_files' disabled at users request.
  1017. [11:19:58] Info: Starting test name 'running_procs'
  1018. [11:19:58] Checking running processes for suspicious files [ None found ]
  1019. [11:19:58]
  1020. [11:19:58] Info: Test 'hidden_procs' disabled at users request.
  1021. [11:19:58]
  1022. [11:19:58] Info: Test 'suspscan' disabled at users request.
  1023. [11:19:58]
  1024. [11:19:58] Performing check for login backdoors
  1025. [11:19:58] Info: Starting test name 'other_malware'
  1026. [11:19:58] Checking for '/bin/.login' [ Not found ]
  1027. [11:19:58] Checking for '/sbin/.login' [ Not found ]
  1028. [11:19:58] Checking for login backdoors [ None found ]
  1029. [11:19:59]
  1030. [11:19:59] Performing check for suspicious directories
  1031. [11:19:59] Checking for directory '/usr/X11R6/bin/.,/copy' [ Not found ]
  1032. [11:19:59] Checking for directory '/dev/rd/cdb' [ Not found ]
  1033. [11:19:59] Checking for suspicious directories [ None found ]
  1034. [11:19:59]
  1035. [11:19:59] Checking for software intrusions [ Skipped ]
  1036. [11:19:59] Info: Check skipped - tripwire not installed
  1037. [11:19:59]
  1038. [11:19:59] Performing check for sniffer log files
  1039. [11:19:59] Checking for file '/usr/lib/libice.log' [ Not found ]
  1040. [11:19:59] Checking for sniffer log files [ None found ]
  1041. [11:19:59]
  1042. [11:19:59] Performing trojan specific checks
  1043. [11:19:59] Info: Starting test name 'trojans'
  1044. [11:19:59] Info: Using inetd configuration file '/etc/inetd.conf'
  1045. [11:19:59] Checking for enabled inetd services [ Warning ]
  1046. [11:19:59] Warning: Found enabled inetd service: ident
  1047. [11:19:59]
  1048. [11:19:59] Performing check for enabled xinetd services
  1049. [11:19:59] Checking for enabled xinetd services [ Skipped ]
  1050. [11:19:59] Info: Check skipped - file '/etc/xinetd.conf' does not exist.
  1051. [11:19:59] Info: Apache backdoor check skipped: Apache modules and configuration directories not found.
  1052. [11:19:59]
  1053. [11:19:59] Performing Linux specific checks
  1054. [11:19:59] Info: Starting test name 'os_specific'
  1055. [11:19:59] Checking kernel module commands [ OK ]
  1056. [11:19:59] Info: Using modules pathname of '/lib/modules/2.6.18-4-686'
  1057. [11:19:59] Checking kernel module names [ OK ]
  1058. [11:19:59]
  1059. [11:19:59] Checking the network...
  1060. [11:19:59] Info: Starting test name 'network'
  1061. [11:19:59] Info: Starting test name 'ports'
  1062. [11:19:59]
  1063. [11:19:59] Performing check for backdoor ports
  1064. [11:19:59] Checking for UDP port 2001 [ Not found ]
  1065. [11:19:59] Checking for TCP port 2006 [ Not found ]
  1066. [11:19:59] Checking for TCP port 2128 [ Not found ]
  1067. [11:19:59] Checking for TCP port 14856 [ Not found ]
  1068. [11:19:59] Checking for TCP port 47107 [ Not found ]
  1069. [11:19:59] Checking for TCP port 60922 [ Not found ]
  1070. [11:19:59]
  1071. [11:19:59] Performing checks on the network interfaces
  1072. [11:19:59] Info: Starting test name 'promisc'
  1073. [11:19:59] Checking for promiscuous interfaces [ None found ]
  1074. [11:19:59]
  1075. [11:19:59] Info: Test 'packet_cap_apps' disabled at users request.
  1076. [11:19:59]
  1077. [11:19:59] Checking the local host...
  1078. [11:19:59] Info: Starting test name 'local_host'
  1079. [11:19:59]
  1080. [11:19:59] Performing system boot checks
  1081. [11:19:59] Info: Starting test name 'startup_files'
  1082. [11:19:59] Checking for local host name [ Found ]
  1083. [11:19:59] Info: Starting test name 'startup_malware'
  1084. [11:20:00] Info: Found local startup file: /etc/rc.local
  1085. [11:20:00] Info: Found local startup file: /etc/inittab
  1086. [11:20:00] Checking for local startup files [ Found ]
  1087. [11:20:00] Checking local startup files for malware [ None found ]
  1088. [11:20:00] Info: Found system startup directory: /etc/init.d
  1089. [11:20:00] Checking system startup files for malware [ None found ]
  1090. [11:20:00]
  1091. [11:20:00] Performing group and account checks
  1092. [11:20:00] Info: Starting test name 'group_accounts'
  1093. [11:20:00] Checking for passwd file [ Found ]
  1094. [11:20:00] Info: Found password file: /etc/passwd
  1095. [11:20:00] Checking for root equivalent (UID 0) accounts [ None found ]
  1096. [11:20:00] Info: Found shadow file: /etc/shadow
  1097. [11:20:00] Checking for passwordless accounts [ None found ]
  1098. [11:20:00] Info: Starting test name 'passwd_changes'
  1099. [11:20:00] Checking for passwd file changes [ None found ]
  1100. [11:20:00] Info: Starting test name 'group_changes'
  1101. [11:20:00] Checking for group file changes [ None found ]
  1102. [11:20:00] Checking root account shell history files [ OK ]
  1103. [11:20:00]
  1104. [11:20:00] Performing system configuration file checks
  1105. [11:20:00] Info: Starting test name 'system_configs'
  1106. [11:20:00] Checking for SSH configuration file [ Not found ]
  1107. [11:20:01] Checking for running syslog daemon [ Found ]
  1108. [11:20:01] Checking for syslog configuration file [ Found ]
  1109. [11:20:01] Info: Found syslog configuration file: /etc/syslog.conf
  1110. [11:20:01] Checking if syslog remote logging is allowed [ Not allowed ]
  1111. [11:20:01]
  1112. [11:20:01] Performing filesystem checks
  1113. [11:20:01] Info: Starting test name 'filesystem'
  1114. [11:20:01] Info: SCAN_MODE_DEV set to 'THOROUGH'
  1115. [11:20:01] Checking /dev for suspicious file types [ None found ]
  1116. [11:20:01] Checking for hidden files and directories [ None found ]
  1117. [11:20:01]
  1118. [11:20:01] Checking application versions...
  1119. [11:20:01] Info: Starting test name 'apps'
  1120. [11:20:01] Checking version of Exim MTA [ OK ]
  1121. [11:20:01] Info: Application 'exim' version '4.69' found.
  1122. [11:20:01] Checking version of GnuPG [ OK ]
  1123. [11:20:01] Info: Application 'gpg' version '1.4.9' found.
  1124. [11:20:01] Info: Application 'httpd' not found.
  1125. [11:20:01] Info: Application 'named' not found.
  1126. [11:20:01] Checking version of OpenSSL [ OK ]
  1127. [11:20:02] Info: Application 'openssl' version '0.9.8g' found.
  1128. [11:20:02] Info: Application 'php' not found.
  1129. [11:20:02] Checking version of Procmail MTA [ OK ]
  1130. [11:20:02] Info: Application 'procmail' version '3.22' found.
  1131. [11:20:02] Info: Application 'proftpd' not found.
  1132. [11:20:02] Info: Application 'sshd' not found.
  1133. [11:20:02] Info: Applications checked: 4 out of 9
  1134. [11:20:02]
  1135. [11:20:02] System checks summary
  1136. [11:20:02] =====================
  1137. [11:20:02]
  1138. [11:20:02] File properties checks...
  1139. [11:20:02] Files checked: 129
  1140. [11:20:02] Suspect files: 2
  1141. [11:20:02]
  1142. [11:20:02] Rootkit checks...
  1143. [11:20:02] Rootkits checked : 109
  1144. [11:20:02] Possible rootkits: 0
  1145. [11:20:02]
  1146. [11:20:02] Applications checks...
  1147. [11:20:02] Applications checked: 4
  1148. [11:20:02] Suspect applications: 0
  1149. [11:20:02]
  1150. [11:20:02] The system checks took: 31 seconds
  1151. [11:20:02]
  1152. [11:20:02] Info: End date is Sat Jul 4 11:20:02 IRDT 2009
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!