Re: hidden processes?

To: "Debian User List" <debian-user@lists.debian.org>
Subject: Re: hidden processes?
From: Robin <rc.rattusrattus@googlemail.com>
Date: Sat, 30 Aug 2008 01:01:05 +0100
Message-id: <[🔎] 964666ec0808291701n5cd7224di82b74da6080616ec@mail.gmail.com>
In-reply-to: <[🔎] ecfa260c0808291622n4be1ac7bg7c1350a14408b5ab@mail.gmail.com>
References: <[🔎] ecfa260c0808291622n4be1ac7bg7c1350a14408b5ab@mail.gmail.com>

2008/8/30 Zach Uram <netrek@gmail.com>:
> I used the unhide package and found this result, should I be worried?
> How can I stop these hidden processes?
>
> bach:~# unhide proc
> Unhide 20080519
> yjesus@security-projects.com
>
>
> [*]Searching for Hidden processes through /proc scanning
>
> bach:~# unhide sys
> Unhide 20080519
> yjesus@security-projects.com
>
>
> [*]Searching for Hidden processes through getpriority() scanning
>
> [*]Searching for Hidden processes through getpgid() scanning
>
> Found HIDDEN PID: 888
> Found HIDDEN PID: 944
> Found HIDDEN PID: 953
> Found HIDDEN PID: 954
> Found HIDDEN PID: 955
> Found HIDDEN PID: 8920
> Found HIDDEN PID: 10557
> Found HIDDEN PID: 10566
> Found HIDDEN PID: 10594
> Found HIDDEN PID: 12644
> Found HIDDEN PID: 12656
> Found HIDDEN PID: 12659
> Found HIDDEN PID: 12661
> Found HIDDEN PID: 12662
> Found HIDDEN PID: 12664
> Found HIDDEN PID: 12835
> Found HIDDEN PID: 18623
> Found HIDDEN PID: 19424
> Found HIDDEN PID: 19426
> Found HIDDEN PID: 21363
> Found HIDDEN PID: 21371
> Found HIDDEN PID: 21372
> Found HIDDEN PID: 22835
> Found HIDDEN PID: 25131
> Found HIDDEN PID: 25263
> Found HIDDEN PID: 25264
> Found HIDDEN PID: 25448
> Found HIDDEN PID: 25449
> Found HIDDEN PID: 25462
> Found HIDDEN PID: 27142
> Found HIDDEN PID: 28812
> [*]Searching for Hidden processes through getsid() scanning
>
> Found HIDDEN PID: 888
> Found HIDDEN PID: 944
> Found HIDDEN PID: 953
> Found HIDDEN PID: 954
> Found HIDDEN PID: 955
> Found HIDDEN PID: 8920
> Found HIDDEN PID: 10557
> Found HIDDEN PID: 10566
> Found HIDDEN PID: 10594
> Found HIDDEN PID: 12644
> Found HIDDEN PID: 12656
> Found HIDDEN PID: 12659
> Found HIDDEN PID: 12661
> Found HIDDEN PID: 12662
> Found HIDDEN PID: 12664
> Found HIDDEN PID: 12835
> Found HIDDEN PID: 18623
> Found HIDDEN PID: 19424
> Found HIDDEN PID: 19426
> Found HIDDEN PID: 21363
> Found HIDDEN PID: 21371
> Found HIDDEN PID: 21372
> Found HIDDEN PID: 22835
> Found HIDDEN PID: 25131
> Found HIDDEN PID: 25263
> Found HIDDEN PID: 25264
> Found HIDDEN PID: 25448
> Found HIDDEN PID: 25449
> Found HIDDEN PID: 25462
> Found HIDDEN PID: 27142
> Found HIDDEN PID: 28812
> [*]Searching for Hidden processes through sched_getaffinity() scanning
>
> [*]Searching for Hidden processes through sched_getparam() scanning
>
> Found HIDDEN PID: 888
> Found HIDDEN PID: 944
> Found HIDDEN PID: 953
> Found HIDDEN PID: 954
> Found HIDDEN PID: 955
> Found HIDDEN PID: 8920
> Found HIDDEN PID: 10557
> Found HIDDEN PID: 10566
> Found HIDDEN PID: 10594
> Found HIDDEN PID: 12644
> Found HIDDEN PID: 12656
> Found HIDDEN PID: 12659
> Found HIDDEN PID: 12661
> Found HIDDEN PID: 12662
> Found HIDDEN PID: 12664
> Found HIDDEN PID: 12835
> Found HIDDEN PID: 18623
> Found HIDDEN PID: 19424
> Found HIDDEN PID: 19426
> Found HIDDEN PID: 21363
> Found HIDDEN PID: 21371
> Found HIDDEN PID: 21372
> Found HIDDEN PID: 22835
> Found HIDDEN PID: 25131
> Found HIDDEN PID: 25263
> Found HIDDEN PID: 25264
> Found HIDDEN PID: 25448
> Found HIDDEN PID: 25449
> Found HIDDEN PID: 25462
> Found HIDDEN PID: 27142
> Found HIDDEN PID: 28812
> [*]Searching for Hidden processes through sched_getscheduler() scanning
>
> Found HIDDEN PID: 888
> Found HIDDEN PID: 944
> Found HIDDEN PID: 953
> Found HIDDEN PID: 954
> Found HIDDEN PID: 955
> Found HIDDEN PID: 8920
> Found HIDDEN PID: 10557
> Found HIDDEN PID: 10566
> Found HIDDEN PID: 10594
> Found HIDDEN PID: 12644
> Found HIDDEN PID: 12656
> Found HIDDEN PID: 12659
> Found HIDDEN PID: 12661
> Found HIDDEN PID: 12662
> Found HIDDEN PID: 12664
> Found HIDDEN PID: 12835
> Found HIDDEN PID: 18623
> Found HIDDEN PID: 19424
> Found HIDDEN PID: 19426
> Found HIDDEN PID: 21363
> Found HIDDEN PID: 21371
> Found HIDDEN PID: 21372
> Found HIDDEN PID: 22835
> Found HIDDEN PID: 25131
> Found HIDDEN PID: 25263
> Found HIDDEN PID: 25264
> Found HIDDEN PID: 25448
> Found HIDDEN PID: 25449
> Found HIDDEN PID: 25462
> Found HIDDEN PID: 27142
> Found HIDDEN PID: 28812
> [*]Searching for Hidden processes through sched_rr_get_interval() scanning
>
> Found HIDDEN PID: 99984800
> [*]Searching for Hidden processes through sysinfo() scanning
>
> Zach
>
>
> --
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
>



Tried that package a few months ago and got a lot of false positives.

-- 
rob


http://www.worldcommunitygrid.org/team/viewTeamInfo.do?teamId=82BS4ZCMFR1

Reply to:

References:
- hidden processes?
  - From: "Zach Uram" <netrek@gmail.com>

Prev by Date: fixing the time?
Next by Date: Re: fixing the time?
Previous by thread: hidden processes?
Next by thread: Re: hidden processes?
Index(es):
- Date
- Thread