hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : [ask] checking finnd file infected
Reply

Hosting Security and Technology Configuring and optimizing web hosting servers and operating systems, developing administration scripts, building servers, protecting against hackers, and general security (SSL certificates, etc.)
Forum Jump

[ask] checking finnd file infected

Reply Post New Thread In Hosting Security and Technology Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old 12-24-2006, 03:56 AM
Osukaru Osukaru is offline
Junior Guru Wannabe
  
Join Date: Dec 2005
Posts: 30

[ask] checking finnd file infected

Hi i just received file infected when scan using chrootkit, anybody can help?

it said

"bindshell - infected ( port : 465)"

is it dangerous? any idea how to fix?

Reply With Quote


Sponsored Links
  #2  
Old 01-03-2007, 04:52 PM
cybersavvy cybersavvy is offline
Junior Guru Wannabe
  
Join Date: Dec 2006
Posts: 66
If you're running PortSentry that binds itself to unused ports probably chkrootkit will give you a false positive on the bindshell test (ports 114/tcp, 465/tcp, 511/tcp, 1008/tcp, 1524/tcp, 1999/tcp, 3879/tcp, 4369/tcp, 5665/tcp, 10008/tcp, 12321/tcp, 23132/tcp, 27374/tcp, 29364/tcp, 31336/tcp, 31337/tcp,
45454/tcp, 47017/tcp, 47889/tcp, 60001/tcp).

You can check if portsentry binds port 465 to itself by executing command netstat -lpn | grep 465.

__________________
Reverse engineering Rocks

Reply With Quote
  #3  
Old 02-05-2007, 10:43 PM
bear bear is offline
Community Leader
  
Join Date: Oct 2002
Location: cognito
Posts: 17,295
Moved from dedicated server tutorials

__________________
Have problems (don't we all)? Head over to the help desk
If at first you don't succeed, that's one data point.


Reply With Quote
Sponsored Links
Reply

Related posts from TheWhir.com
Title Type Date Posted
Malwarebytes Launches Data Scan-and-Backup Service Web Hosting News 2013-05-07 14:51:03
Security Provider Websense Discovers Fake Symantec Emails Distributing Malware Web Hosting News 2012-08-29 14:44:19
SingleOS Launches Fuscan Linux Cloud 2.0 Web Hosting News 2011-08-12 19:09:05
FBI Scrubs 19,000 PCs Infected by Coreflood Bot Malware Web Hosting News 2011-06-23 15:32:40
Web Host WebHostingBuzz Partners with Cloud Platform SMEStorage Web Hosting News 2011-06-01 18:10:25


« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
Advertisement:
Web Hosting News:

US Attorney says Government Should Have Warrants to Search Email

8kMiles Acquires Cloud Security Firm FuGen Solutions for $7.5 Million

Name.com Resets Customer Passwords After Security Breach

Outbound Spam Causing Sleepless Nights?

Malwarebytes Launches Data Scan-and-Backup Service

Commtouch Report: Spam, Malware Continues to Increase in Q1 2013

Researchers Urge System Admins to Check for New Apache Web Server Backdoor Malware

APWG Study Finds Phishers Increasingly Target Shared Virtual Servers

Man Arrested in Connection to Spamhaus DDoS Attacks

Cisco Researcher Discovers Possible Exploit Vector for DarkLeech Attacks



 

Learn more about advertising opportunities across the iNET Interactive Network.

LiquidWeb
X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?