Page 1 of 2 12 LastLast
Results 1 to 10 of 54

Thread: Cheese Webcam Booth - backdoor Trojan?

Hybrid View

  1. #1
    Join Date
    Apr 2008
    Location
    Otago
    Beans
    962
    Distro
    Ubuntu 14.04 Trusty Tahr

    Cheese Webcam Booth - backdoor Trojan?

    The weirdest thing just happened to me.....(or else I am going crazy - possible but not very probabale). I have two ID's on my PC. One for work and one for home. The home one is the master ID. I was using the work ID taking some mug shots using Cheese Webcam Booth...when, all of a sudden, a voice (in a foreign accent...like a French accent) said laughingly " I am watching"....I must say it frightened the Bejasus out of me. I am on a wireless LAN and there is only one other PC on the LAN and that runs my weather station....

    What is going on?

    How do I check my logs to see if an intrusion has occured?
    Ubuntu is computer speak for defenestration

  2. #2
    Join Date
    Apr 2006
    Beans
    136
    Distro
    Ubuntu

    Re: Cheese Webcam Booth - backdoor Trojan?

    First of all the question is if your WIFI is secured.
    Second you might want to check open connections using:
    Code:
    netstat -a
    Third you will want to configure iptables to only allow ports you need.

    If someone got access to your machine through SSH you can check the auth.log like so:
    Code:
    sudo cat /var/log/auth.log |grep ssh
    This will show all SSH connection (attempts).

    It is a bit scary though, I agree!

  3. #3
    Join Date
    Oct 2005
    Location
    Davao, Philippines
    Beans
    4,830

    Re: Cheese Webcam Booth - backdoor Trojan?

    oh come on, could it be that you're watching some flash based movies, that may have coincidentally utter the words "I am watching"?

  4. #4
    Join Date
    Apr 2008
    Location
    Otago
    Beans
    962
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Cheese Webcam Booth - backdoor Trojan?

    Quote Originally Posted by loell View Post
    oh come on, could it be that you're watching some flash based movies, that may have coincidentally utter the words "I am watching"?
    Entirely possible...except that my browser was not running at the time....so, curiouser and curiouser..
    Ubuntu is computer speak for defenestration

  5. #5
    Join Date
    Apr 2008
    Location
    Otago
    Beans
    962
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Cheese Webcam Booth - backdoor Trojan?

    Quote Originally Posted by snek View Post
    First of all the question is if your WIFI is secured.
    Second you might want to check open connections using:
    Code:
    netstat -a
    I live in a remote area, so while theoretically my wireless could have been hacked, it is not likely. The output of netstat -a is very long and, I am unhappy to say, makes little sense to me.
    Ubuntu is computer speak for defenestration

  6. #6
    Join Date
    Aug 2006
    Beans
    13,354
    Distro
    Ubuntu Mate 20.04 Focal Fossa

    Re: Cheese Webcam Booth - backdoor Trojan?

    Quote Originally Posted by dunbrokin View Post
    I live in a remote area, so while theoretically my wireless could have been hacked, it is not likely. The output of netstat -a is very long and, I am unhappy to say, makes little sense to me.
    You can put it all into a text file and attach the file for review. Run the following command, then check for netstat.txt on the Desktop.

    netstat -a > ~/Desktop/netstat.txt

  7. #7
    Join Date
    Jan 2008
    Location
    USA
    Beans
    971
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Cheese Webcam Booth - backdoor Trojan?

    First off, how are you securing your wireless network? Are you using WPA/WPA2? Do you have it secured with a password?

    Secondly, is the other PC on your LAN also running Ubuntu? Are you using Samba? Is the other PC connected directly to the Internet?

    Third, are you running ssh?

  8. #8
    Join Date
    Apr 2008
    Location
    Otago
    Beans
    962
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Cheese Webcam Booth - backdoor Trojan?

    Quote Originally Posted by rookcifer View Post
    First off, how are you securing your wireless network? Are you using WPA/WPA2? Do you have it secured with a password?

    Secondly, is the other PC on your LAN also running Ubuntu? Are you using Samba? Is the other PC connected directly to the Internet?

    Third, are you running ssh?
    I am using WEP with a secure password.....for somebody to hack into my wireless, they would have had to sit outside my house in 1 degree C last night....and as I say, I live in a remote area. It is possible, but unlikely that somebody could have been in a car and did it via a laptop.....but I am discounting that theory for now.

    The other PC on my LAN is also running 9.04. I have set it up so that my PC can access it remotely within the confines of the LAN. It is connected directly to the net as it sends weather information to WeatherUnderground every minute.The printer for the LAN is connected to the weather PC - so that is Samba.
    Ubuntu is computer speak for defenestration

  9. #9
    Join Date
    Apr 2008
    Location
    Otago
    Beans
    962
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Cheese Webcam Booth - backdoor Trojan?

    Quote Originally Posted by mikewhatever View Post
    You can put it all into a text file and attach the file for review. Run the following command, then check for netstat.txt on the Desktop.

    netstat -a > ~/Desktop/netstat.txt
    But if I attach this information as you suggest, would that not give more information to a hacker when he sees it here and so make me more vulnerable.
    Ubuntu is computer speak for defenestration

  10. #10
    Join Date
    Oct 2005
    Location
    Davao, Philippines
    Beans
    4,830

    Re: Cheese Webcam Booth - backdoor Trojan?

    Quote Originally Posted by dunbrokin View Post
    But if I attach this information as you suggest, would that not give more information to a hacker when he sees it here and so make me more vulnerable.
    he could have obtain that least information ages ago if indeed your system has been compromised.

    where have you downloaded cheese? if you got it from the main repository then it sure isn't a trojan.

    you can install and use gufw to utilise the already installed ufw(uncomplicated firewall).

Page 1 of 2 12 LastLast

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •