Ubuntu

Trojan on linux platform

Asked by Zafer Hamadeh

There is a new trojan spreading called Wirenet-1, my question is it far from Ubuntu Os and how can be prtocted from it?

Question information

Language:
English Edit question
Status:
Answered
For:
Ubuntu Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
gcb (gcb0) said : 		#1

Unless there is a remote execution bug, you are safe from automated means.

If you are worried about social manipulation means, then just practice sanitized computing. Never run anything from sources you do not trust or that can't be audited by the community you trust. Disable third party repositories immediately. Never run binaries, specialy ones that auto-update.

Revision history for this message
David Pires (slickymaster) said : 		#2

BackDoor.Wirenet.1 Keylogger is a backdoor trojan that can run on Linux and MacOSX, stealing personal information, passwords, and banking credentials! It copies itself to the user's home directory at /home/WIFIADAPT

It then creates a connection to a remote IP, currently 212.7.208.65

Defence and Removal:

Block that IP with your router / firewall.
Delete the above directory/files.

Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#3

You can boot to live UbuntuCD and mount your Ext4 partition. You can then install and update ClamAV and scan the partition for nasties

Can you help with this problem?

Provide an answer of your own, or ask Zafer Hamadeh for more information if necessary.

To post a message you must log in.