Debug help


 
Thread Tools Search this Thread
Operating Systems OS X (Apple) Debug help
# 1  
Old 03-28-2013
Debug help

Hello, I was looking at kernel log's and found some parts what was "interesting"

I previously started looking what has been going on in my computer because I had hacker attacks on my machine.

Installed Avira & Little Snitch - softwares

Previously my computer opened few folders what I have not opened my self so some script from internet obviously is installed at some point.

This does not mean "a lot" - mostly security threat of my computer (which does not contain any secret / harmful material at all) but still I keep wondering about few things and decided to post an comment to here to get some debugging help from more experienced people.

Thanks for your notice / interest.

2013-03-28 16:11:44.418 EET - opendirectoryd (build 172.17) launched...
2013-03-28 16:11:44.419 EET - Logging level limit changed to 'error'
2013-03-28 16:11:52.873 EET - Initialize trigger support
2013-03-28 16:11:52.874 EET - Registered node with name '/Active Directory' as hidden
2013-03-28 16:11:52.874 EET - Registered node with name '/Configure' as hidden
2013-03-28 16:11:52.875 EET - Discovered configuration for node name '/Contacts' at path '/Library/Preferences/OpenDirectory/Configurations//Contacts.plist'
2013-03-28 16:11:52.875 EET - Registered node with name '/Contacts'
2013-03-28 16:11:52.875 EET - Registered node with name '/LDAPv3' as hidden
2013-03-28 16:11:52.877 EET - Registered node with name '/Local' as hidden
2013-03-28 16:11:52.878 EET - Registered node with name '/NIS' as hidden
2013-03-28 16:11:52.879 EET - Discovered configuration for node name '/Search' at path '/Library/Preferences/OpenDirectory/Configurations//Search.plist'
2013-03-28 16:11:52.879 EET - Registered node with name '/Search'
2013-03-28 16:11:52.880 EET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/legacy.bundle'
2013-03-28 16:11:52.882 EET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/search.bundle'
2013-03-28 16:11:53.884 EET - '/Search' has registered, loading additional services
2013-03-28 16:11:53.884 EET - Initialize augmentation support
2013-03-28 16:11:53.887 EET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/SystemCache.bundle'
2013-03-28 16:11:53.891 EET - Successfully registered for Kernel identity service requests
2013-03-28 16:11:53.896 EET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/PlistFile.bundle'
2013-03-28 16:11:53.897 EET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/FDESupport.bundle'
2013-03-28 16:11:53.910 EET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ConfigurationProfiles.bundle'
2013-03-28 16:11:53.910 EET - Registered subnode with name '/Local/Default'
2013-03-28 16:12:10.289 EET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ldap.bundle'
# 2  
Old 03-28-2013
UNIX has an interesting command that tells you the unique names of all executed executables and the count of executions since boot. Darned if I can recall what it is called.

You might look for files with odd permission for where they are, files with setuid or setgid, changes in the list, age, checksum of files owned by root and his priviledged buddies. You might want to run a proprietary checksum for that, hackers put in compensation dummy data for common checksums, maybe a personal md5.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Programming

Debug Threads

How can we debug threaded application in Linux? If we have some doubt on a thread then how to set the context of that thread and how to check the values of variables for that thread? (1 Reply)
Discussion started by: rupeshkp728
1 Replies

2. Shell Programming and Scripting

If - then -else debug please

Can you help please ? ./get_df.sh: syntax error at line 13 : `then' unexpected #!/bin/ksh while : do PER=`df -h /DATA/ | nawk '{if (NR != 1) { sub (/%/,""); print $(NF-1)}}'` if then if] then mailx -s "FS over 90 per" me@company.com touch... (2 Replies)
Discussion started by: drbiloukos
2 Replies

3. Shell Programming and Scripting

Debug needed

Here is a script built to pull out the error report. But this is ending up with certain errors. #!/bin/bash # Refining Error Text from XML Log # ##*********************************************************************************** ## ********** FUNCTION USAGE *********** ... (5 Replies)
Discussion started by: baraghun
5 Replies

4. Solaris

How to debug .so file??

Hi All, I have a question on debugging the .so file. When I am running makefile I am getting a .so file and we are using that .so file for executing our code.But I want to know 1.Can I use dbx or gdb to debug a .so file? 2.How can i generate .out file so that i can use that in dbx or gdb... (1 Reply)
Discussion started by: s.sen1213
1 Replies

5. Shell Programming and Scripting

Help with debug the script

Hi, I have this script, searches and sets variables, then searches and sets more variables from multiple files. I'd need to debug it a bit. #!/bin/bash egrep $1 `find | grep MAGT` >/tmp/resRA-$$ thread=`sed -n '/{0x/ {s/^.*{0x\(*\).*/\1/p;q}' /tmp/resRA-$$` tag=`sed -n '/Tag=/... (5 Replies)
Discussion started by: Vitoriung
5 Replies

6. Shell Programming and Scripting

Debug mode

When I run a lengthy script in debug mode i need to capture all the steps which are executed. e.g ksh -x script.ksh + test -f /proc/mounts + /bin/ls -l /proc/21326/exe + is=ksh + test ksh = ksh + test -s /etc/ksh.kshrc + . /etc/ksh.kshrc + trap 1 2 3 + who am i + awk {print $1} +... (2 Replies)
Discussion started by: zooby
2 Replies

7. Shell Programming and Scripting

debug this script

echo "input time in hhmmss" read $st h=`echo $st | cut -c1-2` min=`echo $st | cut -c3-4` s=`echo $st | cut -c5-6` echo "input time in hhmmss" read $end h1=`echo $end | cut -c1-2` min1=`echo $end | cut -c3-4` s1=`echo $end | cut -c5-6` x= `expr $h /* 60 + $min` y= `expr $h1 /* 60 +... (8 Replies)
Discussion started by: abhishek27
8 Replies

8. Programming

How to debug a C++ code

Hi, I recently has a C++ code which only run on Fedora Platform. I wanted to run debugging on these code as I came across some unexplainable scenario output. Can anyone suggest how could I use any debugger? I tried to use GNU GDB but then the code I am dealing now are involving... (0 Replies)
Discussion started by: ahjiefreak
0 Replies

9. AIX

debug aix 4.3

what's the best way for debugging in aix 4.3? i have this old aix 4.3 with unknown application that my new company still uses. they want me to complete a script that was working before but the application was very old and software company don't exist anymore. the script monitor the maintenance... (2 Replies)
Discussion started by: itik
2 Replies

10. Programming

how to debug

i am new to solaris i have one module which contain certain header files and sub modules i want ot execute the module and c what the values are beeing assigned to variables is makefile only solution for this is there any editor to help it,so that i can c the flow of the program and also... (1 Reply)
Discussion started by: ramneek
1 Replies
Login or Register to Ask a Question