Client Login 
Community 
Contact Us 
LinkBack URL
About LinkBacks--sorry for that newbie question, but I'm really excited to keep my vps in good condition.
I've checked and found 18 trojan horses on my vps system.
All of 18 are real trojan? How can I remove them?
thanks
MG
Trojan Scanner
Main >> Security >> Scan for Trojan Horses
Appears Clean
/dev/stderr
Scanning for Trojan Horses.....
Possible Trojan - /usr/bin/xsltproc
.
Possible Trojan - /usr/bin/cpan
.
Possible Trojan - /usr/bin/instmodsh
.
Possible Trojan - /usr/bin/pstruct
.
Possible Trojan - /usr/bin/splain
.
Possible Trojan - /usr/bin/dbiprof
.
Possible Trojan - /usr/bin/xmlcatalog
.
Possible Trojan - /usr/bin/xmllint
.
Possible Trojan - /usr/bin/xslt-config
.
Possible Trojan - /usr/lib/libexslt.la
.
Possible Trojan - /usr/lib/libxslt.la
.
Possible Trojan - /usr/lib/python2.3/site-packages/libxml2mod.la
.
Possible Trojan - /usr/lib/python2.3/site-packages/libxml2mod.so
.
Possible Trojan - /usr/bin/curl
.
Possible Trojan - /usr/lib/libcurl.so.3.0.0
.
Possible Trojan - /usr/bin/xml2-config
.
Possible Trojan - /usr/lib/libxml2.la
.
Possible Trojan - /usr/bin/curl-config
.
18 POSSIBLE Trojans Detected
Welcome to the JaguarPC Community
Results 1 to 4 of 4
This is a discussion on Trojan Horses in the VPS & Dedicated forum
--sorry for that newbie question, but I'm really excited to keep my vps in good condition.
I've checked and found 18 trojan horses on my ...
-
08-14-2006, 02:29 PM #1JPC Member
- Join Date
- Feb 2006
- Posts
- 47
Trojan Horses
-
08-14-2006, 02:54 PM #2the Windlord
- Join Date
- Jun 2002
- Posts
- 2,562
That's WHM's Trojan scanner? That test is known to give a LOT of false positives. At first glance these look like normal files needed for various system functions. Don't delete any of them without thorough verification first.
Advises about it via Google and in places like this are mainly to:
- Keep a note of this result of your first scan. Then when you run it again and you see new entries pop up, you can consider those new ones suspect and look into them.
- Use a better tool for the job.Regards,
Wim Heemskerk
---
Visit MeCCG.net - Cardgaming in J.R.R. Tolkien's Middle-earth
And Gwaihir.net - The Middle-earth CCG store
-
08-16-2006, 11:27 PM #3JPC Member
- Join Date
- Feb 2006
- Posts
- 47
Yes, that is whm's scanner.
Can you suggest me a better tool?
-
08-17-2006, 12:42 AM #4Yeah, I know a LOT!
- Join Date
- Mar 2003
- Location
- Arizona Uplands
- Posts
- 10,775
Sorry for butting in, but here's the way it is...
Forget the tools! You do the best you can -- you get hacked -- you figure out how they squeezed through your defenses -- and you plug the hole... and you wait for the next hack attack.
The crutches you are seeking are things ppl like me come up with to save ppl like you from ppl like them. They're usually effective for a month or so, then it's onto the next crisis!
Bottom line: Depend on yourself!
WoW! What a bunch of crap, huh -- depending on yourself, to protect yourself?!?!?
Okay, let's put it a different way... would you depend on someone like me to protect you? A lot of ppl do, but I wouldn't trust me -- even though I'm forced to...
Hrm...
Are you starting to get a feel for the situation?
Okay, your turn...DISCLAIMER Any resemblance between the views expressed above and those of the owners and operators of this system is purely coincidental. Any resemblance between these views and my own are non-deterministic. The existence of Vin DSL is questionable. The existence of views in the absence of anyone to hold them is problematic. The existence of the reader is left as an exercise in the second-order coefficient.
No Guts, No Story! VinDSL © 2010
Reply With Quote
Posting Permissions
Get Social:
Copyright © 2011 JaguarPC.com
Bookmarks