Eu estou usando o kubuntu 12.04
Uso virtua 10m da net
De uns dois dias desapareceram alguns arquivos do usuario e o pc apaga sozinho sem mas.
o root kit me da:
.....
Searching for rootkit RSHA's default files... nothing found
Searching for rootkit RH-Sharpe's default files... nothing found
Searching for Ambient's rootkit (ark) default files and dirs... nothing found
Searching for suspicious files and dirs, it may take a while... The following suspicious files and directories were found:
/usr/lib/python2.7/dist-packages/PyQt4/uic/widget-plugins/.noinit /usr/lib/jvm/.java-gcj-4.6.jinfo /usr/lib/jvm/.java-1.6.0-openjdk-amd64.jinfo /usr/lib/debug/.build-id /usr/lib/pymodules/python2.7/.path
/usr/lib/debug/.build-id
Searching for LPD Worm files and dirs... nothing found
Searching for Ramen Worm files and dirs... nothing found
.............
Searching for ENYELKM rootkit default files... nothing found
Searching for common ssh-scanners default files... nothing found
Searching for suspect PHP files... nothing found
Searching for anomalies in shell history files... nothing found
Checking `asp'... not infected
Checking `bindshell'... not infected
Checking `lkm'... chkproc: nothing detected
chkdirs: nothing detected
Checking `rexedcs'... not found
Checking `sniffer'... lo: not promisc and no packet sniffer sockets
eth0: PACKET SNIFFER(/sbin/dhclient[1154])
Checking `w55808'... not infected
Checking `wted'... chkwtmp: nothing deleted
Checking `scalper'... not infected
Checking `slapper'... not infected
Checking `z2'... chklastlog: nothing deleted
Checking `chkutmp'... The tty of the following user process(es) were not found
in /var/run/utmp !
! RUID PID TTY CMD
! root 1296 tty7 /usr/bin/X :0 vt7 -br -nolisten tcp -auth /var/run/xauth/A:0-EwwaYb
chkutmp: nothing deleted
Checking `OSX_RSPLUG'... not infected
jopeu@jopeu:~$
Conheço muito pouco de segurança, assim que agradeço a ajuda dos colegas e gostaria saber sobre algum tutorial básico de seguran ça.
O brigado