Date: Thu, 13 Nov 2003 15:05:23 +0800 From: "88 beastie" <beastie88@bsdmail.org> To: freebsd-security@freebsd.org Subject: really clean install? - attachments Message-ID: <20031113070523.14104.qmail@bsdmail.com>
index | next in thread | raw e-mail
[-- Attachment #1 --] -- _______________________________________________ Get your free email from http://mymail.bsdmail.com Powered by Outblaze [-- Attachment #2 --] ROOTDIR is `/' Checking `amd'... not infected Checking `basename'... not infected Checking `biff'... not infected Checking `chfn'... INFECTED Checking `chsh'... INFECTED Checking `cron'... not infected Checking `date'... INFECTED Checking `du'... not infected Checking `dirname'... not infected Checking `echo'... not infected Checking `egrep'... not infected Checking `env'... not infected Checking `find'... not infected Checking `fingerd'... not infected Checking `gpm'... not found Checking `grep'... not infected Checking `hdparm'... not found Checking `su'... not infected Checking `ifconfig'... not infected Checking `inetd'... not tested Checking `inetdconf'... not infected Checking `identd'... not found Checking `init'... not infected Checking `killall'... not infected Checking `ldsopreload'... not tested Checking `login'... not infected Checking `ls'... INFECTED Checking `lsof'... not found Checking `mail'... not infected Checking `mingetty'... not found Checking `netstat'... not infected Checking `named'... not infected Checking `passwd'... not infected Checking `pidof'... not found Checking `pop2'... not found Checking `pop3'... not found Checking `ps'... INFECTED Checking `pstree'... not found Checking `rpcinfo'... not infected Checking `rlogind'... not infected Checking `rshd'... not infected Checking `slogin'... not infected Checking `sendmail'... not infected Checking `sshd'... not infected Checking `syslogd'... not infected Checking `tar'... not infected Checking `tcpd'... not infected Checking `tcpdump'... not infected Checking `top'... not infected Checking `telnetd'... not infected Checking `timed'... not infected Checking `traceroute'... not infected Checking `vdir'... not found Checking `w'... not infected Checking `write'... not infected Checking `aliens'... no suspect files Searching for sniffer's logs, it may take a while... nothing found Searching for HiDrootkit's default dir... nothing found Searching for t0rn's default files and dirs... nothing found Searching for t0rn's v8 defaults... nothing found Searching for Lion Worm default files and dirs... nothing found Searching for RSHA's default files and dir... nothing found Searching for RH-Sharpe's default files... nothing found Searching for Ambient's rootkit (ark) default files and dirs... nothing found Searching for suspicious files and dirs, it may take a while... nothing found Searching for LPD Worm files and dirs... nothing found Searching for Ramen Worm files and dirs... nothing found Searching for Maniac files and dirs... nothing found Searching for RK17 files and dirs... nothing found Searching for Ducoci rootkit... nothing found Searching for Adore Worm... nothing found Searching for ShitC Worm... nothing found Searching for Omega Worm... nothing found Searching for Sadmind/IIS Worm... nothing found Searching for MonKit... nothing found Searching for Showtee... nothing found Searching for OpticKit... nothing found Searching for T.R.K... nothing found Searching for Mithra... nothing found Searching for OBSD rk v1... nothing found Searching for LOC rootkit ... nothing found Searching for Romanian rootkit ... nothing found Searching for Suckit rootkit ... nothing found Searching for Volc rootkit ... nothing found Searching for Gold2 rootkit ... nothing found Searching for TC2 Worm default files and dirs... nothing found Searching for Anonoying rootkit default files and dirs... nothing found Searching for ZK rootkit default files and dirs... nothing found Searching for anomalies in shell history files... nothing found Checking `asp'... not infected Checking `bindshell'... not infected Checking `lkm'... nothing detected Checking `rexedcs'... not found Checking `sniffer'... lp0 is not promisc faith0 is not promisc ep0 is not promisc Checking `wted'... nothing deleted Checking `w55808'... not infected Checking `scalper'... not infected Checking `slapper'... not infected Checking `z2'... nothing deleted [-- Attachment #3 --] Copyright (c) 1992-2003 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 4.9-RELEASE #0: Thu Nov 13 11:12:00 SGT 2003 root@:/usr/obj/usr/src/sys/FREE380Z Timecounter "i8254" frequency 1193182 Hz Timecounter "TSC" frequency 298422465 Hz CPU: Pentium II/Pentium II Xeon/Celeron (298.42-MHz 686-class CPU) Origin = "GenuineIntel" Id = 0x652 Stepping = 2 Features=0x183f9ff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR> real memory = 100466688 (98112K bytes) avail memory = 92315648 (90152K bytes) Preloaded elf kernel "kernel" at 0xc053e000. Preloaded elf module "ipfw.ko" at 0xc053e09c. Preloaded elf module "snd_csa.ko" at 0xc053e138. Preloaded elf module "snd_pcm.ko" at 0xc053e1d8. Preloaded elf module "agp.ko" at 0xc053e278. Pentium Pro MTRR support enabled md0: Malloc disk pcibios: No call entry point npx0: <math processor> on motherboard npx0: INT 16 interface pcib0: <Intel 82443BX host to PCI bridge (AGP disabled)> on motherboard pci0: <PCI bus> on pcib0 pcic0: <TI PCI-1250 PCI-CardBus Bridge> mem 0x50000000-0x50000fff irq 11 at device 2.0 on pci0 pcic0: TI12XX PCI Config Reg: [ring enable][speaker enable][pwr save][CSC parallel isa irq] pccard0: <PC Card 16-bit bus (classic)> on pcic0 pcic1: <TI PCI-1250 PCI-CardBus Bridge> mem 0x51000000-0x51000fff irq 11 at device 2.1 on pci0 pcic1: TI12XX PCI Config Reg: [ring enable][speaker enable][pwr save][CSC parallel isa irq] pccard1: <PC Card 16-bit bus (classic)> on pcic1 pci0: <NeoMagic MagicMedia 256AV SVGA controller> at 3.0 irq 11 isab0: <Intel 82371AB PCI to ISA bridge> at device 6.0 on pci0 isa0: <ISA bus> on isab0 atapci0: <Intel PIIX4 ATA33 controller> port 0xfcf0-0xfcff at device 6.1 on pci0 ata0: at 0x1f0 irq 14 on atapci0 ata1: at 0x170 irq 15 on atapci0 uhci0: <Intel 82371AB/EB (PIIX4) USB controller> port 0x8000-0x801f irq 11 at device 6.2 on pci0 usb0: <Intel 82371AB/EB (PIIX4) USB controller> on uhci0 usb0: USB revision 1.0 uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered chip1: <Intel 82371AB Power management controller> port 0xefa0-0xefaf at device 6.3 on pci0 vt0 on isa0 vt0: generic, 80 col, color, 8 scr, unknown kbd, [R3.20-b24] vt0: driver is using old-style compatability shims orm0: <Option ROM> at iomem 0xc0000-0xcbfff on isa0 pmtimer0 on isa0 fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0 fdc0: FIFO enabled, 8 bytes threshold fd0: <1440-KB 3.5" drive> on fdc0 drive 0 atkbdc0: <Keyboard controller (i8042)> at port 0x60,0x64 on isa0 atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0 kbd0 at atkbd0 psm0: <PS/2 Mouse> irq 12 on atkbdc0 psm0: model Generic PS/2 mouse, device ID 0 vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0 sc0: <System console> at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 16550A sio1: configured irq 3 not in bitmap of probed irqs 0 ppc0: cannot reserve I/O port range unknown: <PNP0000> can't assign resources unknown: <PNP0303> can't assign resources unknown: <IBM3781> can't assign resources unknown: <PNP0700> can't assign resources ppc1: <Standard parallel printer port> at port 0x3bc-0x3bf irq 7 on isa0 ppc1: Generic chipset (NIBBLE-only) in COMPATIBLE mode plip0: <PLIP network interface> on ppbus0 lpt0: <Printer> on ppbus0 lpt0: Interrupt-driven port ppi0: <Parallel I/O> on ppbus0 unknown: <PNP0501> can't assign resources pcm0: <CS423x> at port 0x530-0x537,0x388-0x38b,0x220-0x233 irq 5 drq 1,0 on isa0 unknown: <CSC0003> can't assign resources unknown: <IBM0071> can't assign resources unknown: <PNP0e03> can't assign resources IP packet filtering initialized, divert disabled, rule-based forwarding enabled, default to deny, logging disabled ad0: DMA limited to UDMA33, non-ATA66 cable or device ad0: 38154MB <IC25N040ATCS05-0> [77520/16/63] at ata0-master UDMA33 acd0: CDROM <SANYO CRD-S372B> at ata0-slave PIO4 Mounting root from ufs:/dev/ad0s1a pccard: card inserted, slot 1 pccard: card removed, slot 1 pccard: card inserted, slot 1 ep0: <3Com 3C574B, Megahertz 3CCFE574BT or Fast Etherlink 3C574-TX> at port 0x240-0x25f irq 11 flags 0x1 slot 1 on pccard1 ep0: Ethernet address 00:50:04:e7:1b:88 uhub1: Generic USB Embedded Hub, class 9/0, rev 2.00/0.01, addr 2 uhub1: 1 port with 0 removable, self powered umass0: Generic USB Mass Storage Device, rev 2.00/0.01, addr 3 da0 at umass-sim0 bus 0 target 0 lun 0 da0: <Generic USB Flash Disk 1.00> Removable Direct Access SCSI-0 device da0: 650KB/s transfers da0: 250MB (512000 512 byte sectors: 64H 32S/T 250C) umass0: Unsupported ATAPI command 0x35 (da0:umass-sim0:0:0:0): Synchronize cache failed, status == 0x6, scsi status == 0x0 umass0: Unsupported ATAPI command 0x35 (da0:umass-sim0:0:0:0): Synchronize cache failed, status == 0x6, scsi status == 0x0 uhub1: at uhub0 port 1 (addr 2) disconnected (da0:umass-sim0:0:0:0): lost device (da0:umass-sim0:0:0:0): removing device entry umass0: detached uhub1: detached Connection attempt to TCP 127.0.0.1:16001 from 127.0.0.1:1377 flags:0x02 Connection attempt to TCP 127.0.0.1:16001 from 127.0.0.1:1378 flags:0x02 Connection attempt to TCP 127.0.0.1:16001 from 127.0.0.1:1404 flags:0x02 Connection attempt to TCP 127.0.0.1:16001 from 127.0.0.1:1405 flags:0x02 [-- Attachment #4 --] Hermes-1.3.3 Fast pixel formats conversion library Mesa-3.4.2_2 A graphics library similar to SGI's OpenGL ORBit2-2.8.1 High-performance CORBA ORB with support for the C language XFree86-4.3.0,1 X11/XFree86 core distribution (complete, using mini/meta-po XFree86-FontServer-4.3.0_2 XFree86-4 font server XFree86-Server-4.3.0_10 XFree86-4 X server and related programs XFree86-clients-4.3.0_3 XFree86-4 client programs and related files XFree86-documents-4.3.0 XFree86-4 documentation XFree86-font100dpi-4.3.0 XFree86-4 bitmap 100 dpi fonts XFree86-font75dpi-4.3.0 XFree86-4 bitmap 75 dpi fonts XFree86-fontCyrillic-4.3.0 XFree86-4 Cyrillic fonts XFree86-fontDefaultBitmaps-4.3.0 XFree86-4 default bitmap fonts XFree86-fontEncodings-4.3.0 XFree86-4 font encoding files XFree86-fontScalable-4.3.0 XFree86-4 scalable fonts XFree86-libraries-4.3.0_6 XFree86-4 libraries and headers Xft-2.1.2 A client-sided font API for X applications a2ps-letter-4.13b_1 Formats an ascii file for printing on a postscript printer acme-2.4.0 Tool to make multimedia keys work on laptops apsfilter-7.2.5_3 Magic print filter with file type recognition, print previe aspell-0.50.3_1 Spelling checker with better suggestion logic than ispell at-spi-1.3.7 An Assistive Technology Service Provider Interface atk-1.4.0 A GNOME accessibility toolkit (ATK) bash-2.05b.007 The GNU Bourne Again Shell bitstream-vera-1.10 Bitstream Vera TrueType font collection bsdiff-4.1 Generates and applies patches to binary files bugbuddy2-2.4.0 A bug reporting tool for GNOME 2 cdrtools-2.0.3 Cdrecord, mkisofs and several other programs to record CD-R chkrootkit-0.41 A tool to locally check for signs of a rootkit docbook-sk-4.1.2 XML version of the DocBook DTD version controlled for Scrol docbook-xml-4.2_1 XML version of the DocBook DTD docbook-xsl-1.61.3_1 XSL DocBook stylesheets eel2-2.4.0 Generally useful classes and extensions to GNOME eog2-2.4.0 The Eye Of Gnome image viewer epiphany-1.0 An extremely lightweight and simple web browser for GNOME 2 esound-0.2.32 A sound library for enlightenment package expat-1.95.6_1 XML 1.0 parser written in C fileroller-2.4.0.1,1 An archive manager for zip files, tar, etc fontconfig-2.2.90_3 An XML-based font configuration API for X Windows freebsd-update-1.3_1 Fetches and installs binary updates to FreeBSD freetype-1.3.1_2 A free and portable TrueType font rendering engine freetype2-2.1.4_1 A free and portable TrueType font rendering engine gail-1.4.0 An implementation of the ATK interfaces for GTK+ widgets gcalctool-4.3.3_1 A GNOME 2 calculator tool based on the old calctool for Ope gconf-editor-2.4.0,1 A gconf database editor for the GNOME 2 environment gconf2-2.4.0.1 A configuration database system for GNOME gdm2-2.4.4.1_1 GNOME 2 version of xdm display manager gedit2-2.4.0 A small but powerful text editor for Gnome 2 Desktop Enviro gettext-0.12.1 GNU gettext package ggv2-2.4.0.1 GNOME 2 ghostscript viewer ghostscript-gnu-7.07_3 GNU Postscript interpreter gle-3.0.3 A GL Tubing and Extrusion Library glib-1.2.10_10 Some useful routines of C programming (previous stable vers glib-2.2.3 Some useful routines of C programming (current stable versi gnome-icon-theme-1.0.9 A collection of icons for the GNOME 2 desktop gnome-themes-2.4.0 A collection of themes and icons for GNOME 2 designed for a gnome2-2.4.0 The "meta-port" for the GNOME 2 integrated X11 desktop gnomeapplets2-2.4.1_1 Applets components for the Gnome 2 Desktop Environment gnomeaudio2-2.0.0 Sound files for use with GNOME 2 gnomecontrolcenter2-2.4.0 Control center for GNOME 2 project gnomedesktop-2.4.0 Additional UI API for GNOME 2 gnomegames2-2.4.0 The game applications package for the Gnome 2 Desktop Envir gnomehier-1.0_8 An utility port, installing hierarchy of common GNOME direc gnomemag-0.10.3 GNOME screen magnifier gnomemedia2-2.4.0 Multimedia applications for the GNOME 2 desktop gnomemeeting-0.98.5 GNOME H323 Video Conferencing program, similar to NetMeetin gnomemimedata-2.4.0 A MIME and Application database for GNOME gnomepanel-2.4.0_1 Panel component for the GNOME 2 Desktop gnomesession-2.4.0 Session component for the GNOME 2 desktop gnomespeech-0.2.7 GNOME text-to-speech API gnomesystemmonitor-2.4.0 GNOME 2 system monitor program gnometerminal-2.4.0.1 Terminal component for the GNOME 2 Desktop gnomeuserdocs2-2.4.0 GNOME 2 users guide gnomeutils2-2.4.0,1 GNOME 2 support utilities gnomevfs2-2.4.0 GNOME Virtual File System gnopernicus-0.7.0 Collection of accessibility apps for GNOME 2 gok-0.8.2 GNOME On-Screen Keyboard (GOK) gpdf-0.110 GNOME version of xpdf gstreamer-0.6.3 Development framework for creating media applications gstreamer-plugins-0.6.3 GStreamer written collection of plugins handling several me gtk-1.2.10_10 Gimp Toolkit for X11 GUI (previous stable version) gtk-2.2.4 Gimp Toolkit for X11 GUI (current stable version) gtk-engines2-2.2.0 Theme engine for the gtk+-2.0 toolkit gtksourceview-0.6.0 A text widget that adds syntax highlighting to the GtkTextV gucharmap-gnome-1.0.0 A Unicode/ISO10646 character map and font viewer guile-1.6.4_2 GNU Ubiquitous Intelligent Language for Extension hpijs-1.4.1 Drivers and support resources for HP Inkjet Printers imake-4.3.0_1 Imake and other utilities from XFree86 intltool-0.27.2 Xml internationalization support for GNOME, and others jpeg-6b_1 IJG's jpeg compression utilities lame-3.93.1 ISO code based fast MP3 encoder kit lcms-1.09,1 Light Color Management System -- a color management library lha-1.14i_1 Archive files using LZW compression (.lzh files) libIDL-0.8.2 A library for creating trees of CORBA Interface Definition libart_lgpl2-2.3.16 Library for high-performance 2D graphics libaudiofile-0.2.3 A sound library for SGI audio file libbonobo-2.4.0 A component and compound document system for GNOME2 libbonoboui-2.4.0 GUI frontend to the libbonobo component of GNOME 2 libgail-gnome-1.0.2_2 An implementation of the ATK interfaces for GNOME widgets libglade2-2.0.1_1 GNOME glade library libgnome-2.4.0 Libraries for GNOME, a GNU desktop environment libgnomecanvas-2.4.0 A graphics library for GNOME libgnomeprint-2.3.1 Gnome print support library libgnomeprintui-2.3.1 Gnome print support library libgnomeui-2.4.0.1_1 Libraries for the GNOME GUI, a GNU desktop environment libgnugetopt-1.2 GNU getopt library libgsf-1.8.1 An extensible i/o abstraction for dealing with structured f libgtkhtml-2.4.0 Lightweight HTML rendering/printing/editing engine libgtop2-2.0.5 GNOME 2 top library libiconv-1.9.1_1 A character set conversion library libijs-0.34 C library that supports plugin printer driver for Ghostscri libltdl-1.5 System independent dlopen wrapper libmng-1.0.5_1 Multiple-image Network Graphics (MNG) reference library libogg-1.0_1,3 Ogg bitstream library librsvg2-2.4.0 Library for parsing and rendering SVG vector-graphic files libvorbis-1.0_1,3 Audio compression codec library libwnck-2.4.0.1 Library used for writing pagers and taskslists libxml2-2.5.11 Xml parser library for GNOME libxslt-1.0.33 The XSLT C library for GNOME linc-1.0.3 A library for writing networked servers & clients linux_base-7.1_5 The base set of packages needed in Linux mode lynx-2.8.4.1d A non-graphical, text-based World-Wide Web client lzo-1.08_1 Portable speedy, lossless data compression library lzop-1.01 Fast file compressor similar to gzip, using the LZO library m4-1.4_1 GNU m4 metacity-2.6.1 A window manager for the adult in you mkisofs-2.0.3 Create iso9660/Rock Ridge/Joliet filesystems mozilla-gtk2-1.4 The open source, standards compliant web browser mtools-3.9.8_1 A collection of tools for manipulating MSDOS files nautilus-cd-burner-0.5.3 CD burner view for Nautilus nautilus-media-0.3.3.1 GStreamer-based multimedia views for Nautilus nautilus2-2.4.0_1 GNOME file manager and graphical shell developed by Eazel openldap-client-2.0.27 Open source LDAP client implementation pango-1.2.5 An open-source framework for the layout and rendering of i1 pkgconfig-0.15.0 A utility used to retrieve information about installed libr png-1.2.5_2 Library for manipulating PNG images popt-1.6.4_1 A getopt(3) like library with a number of enhancements, fro psutils-letter-1.17_1 Utilities for manipulating PostScript documents py23-expat-2.3_2 Python interface to the Expat XML parser python-2.3_1 An interpreted object-oriented programming language scrollkeeper-0.3.12_2,1 An Open Document Cataloging Project sdocbook-xml-4.1.2.5_1 "Simplified" DocBook XML DTD sox-12.17.4 SOund eXchange - universal sound sample translator startup-notification-0.5_1 Library that supports startup notification spec from freede sudo-1.6.7.5 Allow others to run commands as root tiff-3.5.7_1 Tools and library routines for working with TIFF images unzip-5.50_2 List, test and extract compressed files in a ZIP archive vsftpd-1.2.0 A FTP daemon that aims to be "very secure" vte-0.11.10 Terminal widget with improved accessibility and I18N suppor wrapper-1.0_3 Wrapper for XFree86-4 server xchat2-2.0.4_1 An X11 IRC client using the GTK+ 2 toolkit xearth-1.1 Set the root window to the image of earth xmlcatmgr-0.2_1 SGML/XML catalog manager xscreensaver-gnome-4.13 Save your screen while you entertain your cat (for GNOME us yelp-2.4.0 A help browser for the GNOME 2 desktop zenity-1.6 Display GNOME dialogs from the command line zh-ttfm-0.9.3_3 A Big5/GB enhanced TrueType Font Manager zip-2.3_1 Create/update ZIP files compatible with pkzip zoo-2.10.1 Manipulate archives of files in compressed form [-- Attachment #5 --] FreeBSD free380z.telkom.net.id 4.9-RELEASE FreeBSD 4.9-RELEASE #0: Thu Nov 13 11:12:00 SGT 2003 root@:/usr/obj/usr/src/sys/FREE380Z i386help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031113070523.14104.qmail>