Przeskanowałem Linux programem chkrootkit na desktopie. I okazało się że wykrył mi jakiegoś trojana. chkproc: Warning: Possible LKM Trojan installed
Jak się go poprawnie pozbyć i czy jest jakieś duże zagrożenie z jego strony? Tu log z programu:
You have 3 process hidden for ps command
chkproc: Warning: Possible LKM Trojan installed
chkdirs: nothing detected
Checking `rexedcs'... not found
Checking `sniffer'... eth0: not promisc and no PF_PACKET sockets
Checking `w55808'... not infected
Checking `wted'... chkwtmp: nothing deleted
Checking `scalper'... not infected
Checking `slapper'... not infected
Checking `z2'... chklastlog: nothing deleted
Checking `chkutmp'... The tty of the following user process(es) were not found
in /var/run/utmp !
! RUID PID TTY CMD
! root 1270 tty7 /usr/bin/X :0 vt7 -nolisten tcp -auth /var/run/xauth/A:0-6DQtub
! pc 1624 pts/1 /bin/bash
! pc 2532 pts/1 su root
! root 2536 pts/1 bash
! root 11389 pts/1 /bin/sh /usr/sbin/chkrootkit
! root 12882 pts/1 ./chkutmp
! root 12883 pts/1 ps ax -o tty,pid,ruser,args
chkutmp: nothing deleted