Fedora 15 INFECTED [Suckit rootkit & Trojan] Help Please!
Ed Greshko
Ed.Greshko at greshko.com
Thu Jun 9 09:24:22 UTC 2011
On 06/09/2011 04:58 PM, Manuel Escudero wrote:
> Hi, Some days ago, I noticed a BIG DECREASE of the performance
> in my Fedora 15 System (64 Bits, KDE encrypted BTRFS partitions)
> and, as part of my maintenance plan, I ran a rootkit search, because
> it was awful! reeeeally slow...
>
> My Surprise was, I'm ACTUALLY infected with the "Suckit rootkit"
> and god knows what else... For Now, I will run a Virus Search with
> Avast! free in Fedora, but I was hoping somebody tell me what to
> do in this situations, and why that happened, also I want to know
> what the suckit rootkit does and if I have more problems, here's
> the output of chkrootkit:
>
> http://pastebin.com/qqFT2QuH
>
> P.S. As you can see in the output, I might also have a Trojan
> installed (Line 111)
> and no matter how many times I run the tool, I get the same results,
> "suckit rootkit"
> (Line 89) and the trojan, (I do not see other problems, can you?)
>
> I've been using Fedora since F12 and running chkrootkit since F14,
> NEVER HAD A PROBLEM
> BEFORE or Decreasing of performance, Why now? is it because of BTRFS?
> is it because of F15 updates?
You should run rkhunter as well.... A quick google of the issue you
mention shows others have determined this to be a "false positive".
Also see....
https://bugzilla.redhat.com/show_bug.cgi?id=636231
Ed
* Unknown - detected
* English
* Chinese (Simplified)
* Chinese (Traditional)
* Japanese
* Korean
* English
* Chinese (Simplified)
* Chinese (Traditional)
* Japanese
* Korean
<javascript:void(0);><#>
More information about the users
mailing list