Re: Mi è partito PhpMyadmin
Il 18/02/2012 20:53, Davide Prina ha scritto:
On 18/02/2012 12:04, Giorgio Bompiani wrote:
.......
qui è indicato qual'è il log:
All results have been written to the log file (/var/log/rkhunter.log)
Ho copiato nella mail tutte le righe del log che non erano certamente
negative
following suspicious files and directories were found:
......
Che vuol dire dai un'occhiata? mi sa che la mia cultura tecnica non è
adeguata :-\
....................
Prova a indicare cosa ritorna il seguente comando:
$ ps -def | grep tty
ps -def | grep tty
root 1802 1779 1 08:16 tty7 00:10:46 /usr/bin/X :0 vt7 -br
-nolisten tcp -auth /var/run/xauth/A:0-Uieitb
root 2588 1 0 08:16 tty1 00:00:00 /sbin/getty 38400 tty1
root 2589 1 0 08:16 tty2 00:00:00 /sbin/getty 38400 tty2
root 2590 1 0 08:16 tty3 00:00:00 /sbin/getty 38400 tty3
root 2591 1 0 08:16 tty4 00:00:00 /sbin/getty 38400 tty4
root 2592 1 0 08:16 tty5 00:00:00 /sbin/getty 38400 tty5
root 2593 1 0 08:16 tty6 00:00:00 /sbin/getty 38400 tty6
giorgio 20830 2863 0 19:53 pts/0 00:00:00 grep tty
e riporta anche
# netstat -putan
root@pc-studio:/home/giorgio# netstat -putan
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address
State PID/Program name
tcp 0 0 127.0.0.1:3306 0.0.0.0:*
LISTEN 2094/mysqld
tcp 0 0 0.0.0.0:22350 0.0.0.0:*
LISTEN 2912/skype
tcp 0 0 0.0.0.0:111 0.0.0.0:*
LISTEN 1299/portmap
tcp 0 0 0.0.0.0:22 0.0.0.0:*
LISTEN 2549/sshd
tcp 0 0 0.0.0.0:631 0.0.0.0:*
LISTEN 1874/cupsd
tcp 0 0 127.0.0.1:25 0.0.0.0:*
LISTEN 2439/exim4
tcp 0 0 0.0.0.0:58057 0.0.0.0:*
LISTEN 1311/rpc.statd
tcp 0 0 192.168.1.128:52561 213.140.0.37:80
ESTABLISHED 19776/firefox-bin
tcp 0 0 192.168.1.128:51560 213.88.64.14:62579
ESTABLISHED 2912/skype
tcp6 0 0 :::139 :::*
LISTEN 2497/smbd
tcp6 0 0 :::80 :::*
LISTEN 1671/apache2
tcp6 0 0 :::22 :::*
LISTEN 2549/sshd
tcp6 0 0 :::631 :::*
LISTEN 1874/cupsd
tcp6 0 0 ::1:25 :::*
LISTEN 2439/exim4
tcp6 0 0 :::445 :::*
LISTEN 2497/smbd
udp 0 0 0.0.0.0:68
0.0.0.0:* 1559/dhclient
udp 0 0 0.0.0.0:22350
0.0.0.0:* 2912/skype
udp 0 0 0.0.0.0:47567
0.0.0.0:* 1311/rpc.statd
udp 0 0 0.0.0.0:54098
0.0.0.0:* 1744/avahi-daemon:
udp 0 0 0.0.0.0:5353
0.0.0.0:* 1744/avahi-daemon:
udp 0 0 0.0.0.0:111
0.0.0.0:* 1299/portmap
udp 0 0 0.0.0.0:631
0.0.0.0:* 1874/cupsd
udp 0 0 127.0.0.1:36347
0.0.0.0:* 2912/skype
udp 0 0 0.0.0.0:639
0.0.0.0:* 1311/rpc.statd
udp 0 0 192.168.1.255:137
0.0.0.0:* 2461/nmbd
udp 0 0 192.168.1.128:137
0.0.0.0:* 2461/nmbd
udp 0 0 0.0.0.0:137
0.0.0.0:* 2461/nmbd
udp 0 0 192.168.1.255:138
0.0.0.0:* 2461/nmbd
udp 0 0 192.168.1.128:138
0.0.0.0:* 2461/nmbd
udp 0 0 0.0.0.0:138
0.0.0.0:* 2461/nmbd
udp6 0 0 :::52703
:::* 1744/avahi-daemon:
udp6 0 0 :::5353
:::* 1744/avahi-daemon:
Ciao
--
Giorgio Bompiani
Gli scaffali dei miei libri sono qui:
http://loscaffaledi.giorgiobompiani.it
Linux User # 454514 http://counter.li.org/
Reply to: