Highest Voted 'malware' Questions - Unix and Linux Stack Exchange

141

votes

9 answers

The myths about malware in Unix / Linux

Is it possible for my Linux box to become infected with a malware? I haven't heard of it happening to anyone I know, and I've heard quite a few times that it isn't possible. Is that true? If so, what's up with Linux Anti-Virus (security) software?

security malware

asked Oct 05 '10 at 09:02

Stefan

24,830
40
98
126

60

votes

2 answers

Suspicious crontab entry running 'xribfa4' every 15 minutes

I wanted to add something to my root crontab file on my Raspberry Pi, and found an entry that seems suspicious to me, searching for parts of it on Google turned up nothing. Crontab entry: */15 * * * *…

security cron malware

asked Oct 02 '19 at 17:25

D__

713
5
7

29

votes

8 answers

Can malware run by a user without admin or sudo privileges harm my system?

After a recent break in on a machine running Linux, I found an executable file in the home folder of a user with a weak password. I have cleaned up what appears to be all the damage, but am preparing a full wipe to be sure. What can malware run by a…

security malware

asked Feb 29 '16 at 16:04

ezgoodnight

441
4
9

27

votes

1 answer

How to tell if mysterious programs in nethogs listing are malware?

This is what I see in Nethogs: I'm concerned about the listings with PID ?, running as root. How can I find out what these are? I'm running Linux Mint 14. Please let me know what other information I should include.

networking malware

asked Sep 17 '13 at 13:39

Alex D

721
6
10

26

votes

2 answers

How can I kill minerd malware on an AWS EC2 instance? (compromised server)

I found malware on my ec2 instance which was continuously mining bitcoin and using my instance processing power. I successfully identified the process, but was unable to remove and kill it. I ran this command watch "ps aux | sort -nrk 3,3 | head -n…

linux process kill malware

asked Sep 30 '17 at 10:49

Nadeem Ahmed

379
3
5

25

votes

5 answers

Does installing and using Wine open up your Linux platform to Windows viruses?

Just wondering if installing Wine might open up a fairly solid Linux desktop to the world of Windows viruses. Any confirmed reports about that? Would you then install a Windows antivirus product under Wine?

security emulation windows malware

asked Sep 07 '10 at 10:23

hookenz

1,207
1
15
19

17

votes

4 answers

How to detect and remove a Linux trojan?

I recently (re)stumbled upon this: Linux Trojan Goes Unnoticed For Almost A Year (Unreal IRCd) Yes, I know that adding some random PPA/software from an untrusted source is asking for trouble (or worse). I never do that, but many do (many Linux…

security malware

asked Nov 14 '10 at 20:42

iamsid

2,484
2
22
17

14

votes

1 answer

Which process places a red circle to the bottom right corner of my display on Linux Mint 18.1?

Some days ago that widget appeared on screen and I have no idea how to remove it and how did it came to my system. Not taken by screenshots. I suggest it is malware. Any ideas?

linux-mint gui malware

asked Nov 04 '17 at 12:39

Vassily

243
2
8

11

votes

2 answers

how does fileless malware work on linux?

I understand the definition of fileless malware: Malicious code that is not file based but exists in memory only… More particularly, fileless malicious code … appends itself to an active process in memory… Can somebody please explain how this…

process linux-kernel malware

asked Jun 21 '17 at 18:30

Martin Vegter

69
66
195
326

7

votes

3 answers

Should I install an antivirus?

Are builtin security features allied to secure user behavior enough to protect a Linux system? Or should I install an antivirus software?

malware

asked Nov 20 '10 at 18:31

Jader Dias

329
1
2
9

7

votes

3 answers

rmdir failed to remove empty directory

I have a problem with removing empty dir, strace shows error: rmdir("empty_dir") = -1 ENOTEMPTY (Directory not empty) And ls -la empty_dir shows nothing. So i connected to the fs (ext4) with debugfs and see the hidden file inside this dir: # ls…

ext4 malware debugfs

asked Jan 13 '18 at 16:40

bfuvx

111
7

7

votes

2 answers

Can I get infected in this case if I run a live cd?

I recently got rid of a nasty trojan on Windows and want to migrate to Linux(Ubuntu). I want to run a Live CD so that I can format an SD card to put my brand new firmware on my router and format the HDD so I can install Ubuntu. In this case, is it…

ubuntu security malware

asked Jun 30 '11 at 22:50

Stevie R

71
3

6

votes

2 answers

Java problem - nearly looks like a virus?

I have a weird problem since about a week. When I wake up my computer from suspend, a java process starts and consumes about 170 % CPU capacity. I analyzed the java process a bit: it connects to static.icloud-ips.com. Here's a screenshot of what I…

java cpu malware

asked Jan 25 '12 at 22:12

Marcel

1,114
1
14
28

5

votes

1 answer

how to make malware file readable with “No read permission on file” on linux ext-4?

There is an ongoing campaign of sending virus/trojans in e-mail messages faked as being from HSBC Bank, Lloyds TSB, Amazon etc. The trojan/virus is sent in a application/zip attachment. I've saved one such zip file and unpacked it in a directory…

permissions ext4 malware

asked Oct 03 '13 at 12:54

J G Miller

296
3
7

5

votes

1 answer

Mixed case DNS requests - Malware in my network?

I am seeing some strange DNS queries. They have seemingly random mixed case coming from machines in my network. Is it possible I have malware? $ sudo tcpdump -n port 53 16:42:57.805038 192.168.5.134.47813 > 192.168.5.2.53: 27738+ A? Www.sApO.PT.…

dns malware

asked Mar 04 '18 at 01:00

Rui F Ribeiro

55,929
26
146
227

Questions tagged [malware]