Re: What is the hidden process?

To: debian-user@lists.debian.org
Subject: Re: What is the hidden process?
From: James Brown <jbrownfirst@gmail.com>
Date: Fri, 08 Apr 2011 04:50:03 +0000
Message-id: <[🔎] 4D9E93FB.1080605@gmail.com>
In-reply-to: <[🔎] 4D9E7F17.5010101@cox.net>
References: <[🔎] 4D9E7800.3070504@gmail.com> <[🔎] 4D9E7F17.5010101@cox.net>

On 08.04.2011 03:20, Ron Johnson wrote:
> On 04/07/2011 09:50 PM, James Brown wrote:
>> `unhide` define that there is a hidden process in my system, but don't
>> indicate it concretely:
>>> ~$ sudo unhide sys
>>> Unhide 20100201
>>> http://www.security-projects.com/?Unhide
>>>
>>>
> [snip]
>>>
>>> [*]Searching for Hidden processes through sysinfo() scanning
>>>
>>> HIDDEN Processes Found: 1
>>
>>
>> How can I find out what is that process?
>>
> 
> The man page (http://www.unhide-forensics.info/unhide-linux26.html)
> mentions options like "-f" and "-v".
> 

That options are unworkable under unhide-package from Debian Squeeze:
$sudo unhide -v sys
Unhide 20100201
http://www.security-projects.com/?Unhide


usage: unhide proc | sys | brute

$apt-cache policy unhide
unhide:
  Installed: 20100201-1
  Candidate: 20100201-1
  Version table:
 *** 20100201-1 0
        990 http://ftp.debian.org/debian/ squeeze/main amd64 Packages
        100 /var/lib/dpkg/status

Reply to:

Follow-Ups:
- Re: What is the hidden process?
  - From: Ron Johnson <ron.l.johnson@cox.net>

References:
- What is the hidden process?
  - From: James Brown <jbrownfirst@gmail.com>
- Re: What is the hidden process?
  - From: Ron Johnson <ron.l.johnson@cox.net>

Prev by Date: Re: What is the hidden process?
Next by Date: Re: What is the hidden process?
Previous by thread: Re: What is the hidden process?
Next by thread: Re: What is the hidden process?
Index(es):
- Date
- Thread