<harfg> wtf!!
<harfg> I just saw a program called '3' running in top
<daniel> omfg!
<harfg> yea exactly
<harfg> couldnt get any more criptic if you tryed ... let me guess there is a 1 script and 2 script as well
<harfg> what ever fricking master peice of a package that comes from
<juice> a rootkit :)
<harfg> argh !!
<harfg> It must be a poor one .. the ones I rember from back in the day installed mad modules
<harfg> and could circumvent ps
<harfg> how do I purge!!
<harfg> i am using cooky old ubuntu
<juice> i'd look at running ossec, rootkit hunter, or chkrootkit
<juice> just to find out
<harfg> if they did bust in it must of either been through ssh or tightvnc
<juice> have any of the patches been applied to that?
<harfg> nope.. I would of thought if any critical vulns were discovered that ubuntu would of patched it for the package and presented in the update manager the and the machine updated last night 7:00pm GMT .. so now your going to tell me Ive been over reliant