On Tuesday 03 August 2004 02:59 pm, Trevor Rhodes wrote: > Hello Oh Great Guru Types, > > What the hell should I be doing now? > > Checking `lkm'... You have 48 process hidden for readdir command > You have 48 process hidden for ps command > Warning: Possible LKM Trojan installed
Run chkrootkit -x lkm That will give you a list of the PID's, CWD's, EXE's of all processes that are hidden from the READDIR command. Make sure that you are familiar with and approve of all such processes. If not, you need to wipe and reinstall. If you are, you might want to figure out why so many are hidden but if you like all of them, then it is really not a problem. -- Bryan Phinney
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
