View Full Version : [SOLVED] chkrootkit result

August 17th, 2010, 10:21 AM
Hi Folks. Perhaps someone can help me to understand if the following is something malicious.

I ran ChkRootKit, which reported a suspicious file, namely:

/usr/lib/jvm/.java-6-openjdk.jinfo /usr/lib/pymodules/python2.6/PyQt4/uic/widget-plugins/.noinit /usr/lib/pymodules/python2.6/.path /usr/lib/firefox-3.6.8/.autoreg /usr/lib/xulrunner-

Should I be worried? If so, what can I do about it? Any help would be greatly appreciated.

August 17th, 2010, 10:42 AM

August 17th, 2010, 10:57 AM
Read this:


And, as above, the likelihood is that these are false positives; so, nothing to worry about.

I just would like to point out, no disrespect intended, that as bodhi.zazen, the author of the Ubuntu security stickies, has mentioned in numerous posts if you are unwilling to do the legwork and find out what these reports mean then running a program like this is fairly pointless.

August 17th, 2010, 04:44 PM
Thank you Paul820 and Rubi1200 for your reassurance about a false positive, it was very gratifying. The research I did before asking the forum for assistance was inadequate, something else I've learned.

john newbuntu
August 17th, 2010, 04:55 PM
In general if you only have a few files, run it through http://www.virustotal.com to check for viruses by putting it through 40+ different antivirus products.

August 18th, 2010, 09:07 AM
Thank you john newbuntu, another interesting facility noted.