wget http://anycode.s.gp/misubidas/rkhunter-1.3.8.tar.gz
tar zxf rkhunter-1.3.8.tar.gzcd rkhunter-1.3.8
./installer.sh --install
rkhunter
Usage: rkhunter {--check | --unlock | --update | --versioncheck |
--propupd [{filename | directory | package name},...] |
--list [{tests | {lang | languages} | rootkits | perl}] |
--config-check | --version | --help} [options]
Current options are:
--append-log Append to the logfile, do not overwrite
--bindir <directory>... Use the specified command directories
-c, --check Check the local system
-C, --config-check Check the configuration file(s), then exit
--cs2, --color-set2 Use the second color set for output
--configfile <file> Use the specified configuration file
--cronjob Run as a cron job
(implies -c, --sk and --nocolors options)
--dbdir <directory> Use the specified database directory
--debug Debug mode
(Do not use unless asked to do so)
--disable <test>[,<test>...] Disable specific tests
(Default is to disable no tests)
--display-logfile Display the logfile at the end
--enable <test>[,<test>...] Enable specific tests
(Default is to enable all tests)
--hash {MD5 | SHA1 | SHA224 | SHA256 | SHA384 | SHA512 |
NONE | <command>} Use the specified file hash function
(Default is SHA1, then MD5)
-h, --help Display this help menu, then exit
--lang, --language <language> Specify the language to use
(Default is English)
--list [tests | languages | List the available test names, languages, checked
rootkits | perl] for rootkits, or perl module status, then exit
-l, --logfile [file] Write to a logfile
(Default is /var/log/rkhunter.log)
--noappend-log Do not append to the logfile, overwrite it
--nocf Do not use the configuration file entries
for disabled tests (only valid with --disable)
--nocolors Use black and white output
--nolog Do not write to a logfile
--nomow, --no-mail-on-warning Do not send a message if warnings occur
--ns, --nosummary Do not show the summary of check results
--novl, --no-verbose-logging No verbose logging
--pkgmgr {RPM | DPKG | BSD | Use the specified package manager to obtain or
SOLARIS | NONE} verify file property values. (Default is NONE)
--propupd [file | directory | Update the entire file properties database,
package]... or just for the specified entries
-q, --quiet Quiet mode (no output at all)
--rwo, --report-warnings-only Show only warning messages
-r, --rootdir <directory> Use the specified root directory
--sk, --skip-keypress Don't wait for a keypress after each test
--summary Show the summary of system check results
(This is the default)
--syslog [facility.priority] Log the check start and finish times to syslog
(Default level is authpriv.notice)
--tmpdir <directory> Use the specified temporary directory
--unlock Unlock (remove) the lock file
--update Check for updates to database files
--vl, --verbose-logging Use verbose logging (on by default)
-V, --version Display the version number, then exit
--versioncheck Check for latest version of program
-x, --autox Automatically detect if X is in use
-X, --no-autox Do not automatically detect if X is in use
sudo rkhunter -c > logsudo apt-get install rkhunter && sudo rkhunter --update
No tienes permitido ver los links. Registrarse o Entrar a mi cuenta
Thanks, de todas formas seguiré subiendo más herramientas, ahora
estoy recolectando herramientas para BackUp ;D
Saludos.
rkhunter -l log.txt -c
Citar[15:57:46] Running Rootkit Hunter version 1.3.6 on henry
[16:17:41] System checks summary
[16:17:42] =====================
[16:17:42]
[16:17:42] File properties checks...
[16:17:42] Files checked: 133
[16:17:42] Suspect files: 2
[16:17:42]
[16:17:42] Rootkit checks...
[16:17:42] Rootkits checked : 245
[16:17:42] Possible rootkits: 0
[16:17:42]
[16:17:42] Applications checks...
[16:17:42] All checks skipped
[16:17:42]
[16:17:42] The system checks took: 19 minutes and 52 seconds
No tienes permitido ver los links. Registrarse o Entrar a mi cuenta
Es normal al parecer, a JaAViEr y a mi tambien nos devolvio dos archivos sospechosos.