Wine: wine-vanilla-6.0
netstat output
Code: Select all
tcp 0 0 0.0.0.0:30000 0.0.0.0:* LISTEN 3793/wineserver
Code: Select all
3793 ? Ss 17:29 /usr/lib/wine-vanilla-6.0/bin/wineserver
Code: Select all
epoll_wait(9, [], 128, 1) = 0
write(23, "\354\3551\0\0\0\0\0\2\1\0\0\0\0\0\0", 16) = 16
epoll_wait(9, [{events=EPOLLIN, data={u32=9, u64=9}}], 128, 16) = 1
read(21, "\34\0\0\0000\0\0\0\0\0\0\0\2\0\0\0\354\3551\0\0\0\0\0\3467\324\201\254\377\377\377"..., 64) = 64
read(21, "\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 48) = 48
write(22, "\3\1\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 64) = 64
epoll_wait(9, [], 128, 1) = 0
write(23, "\354\3551\0\0\0\0\0\2\1\0\0\0\0\0\0", 16) = 16
epoll_wait(9, [{events=EPOLLIN, data={u32=9, u64=9}}], 128, 16) = 1
read(21, "\34\0\0\0000\0\0\0\0\0\0\0\2\0\0\0\354\3551\0\0\0\0\0\260\3\324\201\254\377\377\377"..., 64) = 64
read(21, "\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 48) = 48
write(22, "\3\1\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 64) = 64
Is it virus or backdoor?