LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Closed Thread
  Search this Thread
Old 05-15-2014, 07:10 AM   #1
albatross437DO5B5
LQ Newbie
 
Registered: May 2014
Posts: 3

Rep: Reputation: Disabled
Question I was hacked and installed ubuntu..


Dear all,

I am a new user of linux.
I had previously windows 7 and was hacked.
i got 500GB hd.but when i try to install os it shows 465 GB and the rest 35 GB is not shown.May be the hacker used Apple Bonjour.
someone hacked my system and installed an NT server using 35GB hd space and HFS filesystem.
I am not an expert but i have been trying to solve the problem by my own for the last two months and collected these informations.
whatever os i install the server collects data about those including each my keystroke and uses my os to login remotely.
I recently installed ubuntu and connected through wifi.it shows a message like this....your network has a .local domain which is not compitable and not recommended.network discovery has been disabled for AVAHI network discovery tool...

i run the pstree command and output is following...

init─┬─ModemManager───2*[{ModemManager}]
├─NetworkManager─┬─dhclient
│ ├─dnsmasq
│ └─3*[{NetworkManager}]
├─accounts-daemon───2*[{accounts-daemon}]
├─acpid
├─bluetoothd
├─colord───2*[{colord}]
├─cron
├─cups-browsed
├─cupsd
├─2*[dbus-daemon]
├─dbus-launch
├─6*[getty]
├─gnome-keyring-d───5*[{gnome-keyring-d}]
├─irqbalance
├─kerneloops
├─lightdm─┬─Xorg───2*[{Xorg}]
│ ├─lightdm─┬─init─┬─at-spi-bus-laun─┬─dbus-daemon
│ │ │ │ └─3*[{at-spi-bus-laun}]
│ │ │ ├─at-spi2-registr───{at-spi2-registr}
│ │ │ ├─bamfdaemon───3*[{bamfdaemon}]
│ │ │ ├─dbus-daemon
│ │ │ ├─dconf-service───2*[{dconf-service}]
│ │ │ ├─evince───4*[{evince}]
│ │ │ ├─evinced───{evinced}
│ │ │ ├─evolution-calen───4*[{evolution-calen}]
│ │ │ ├─evolution-sourc───2*[{evolution-sourc}]
│ │ │ ├─firefox───36*[{firefox}]
│ │ │ ├─gconfd-2
│ │ │ ├─gnome-session─┬─compiz───5*[{compiz}]
│ │ │ │ ├─deja-dup-monito───2*[{deja-dup-monito}]
│ │ │ │ ├─nautilus───3*[{nautilus}]
│ │ │ │ ├─nm-applet───2*[{nm-applet}]
│ │ │ │ ├─polkit-gnome-au───2*[{polkit-gnome-au}]
│ │ │ │ ├─telepathy-indic───2*[{telepathy-indic}]
│ │ │ │ ├─unity-fallback-───2*[{unity-fallback-}]
│ │ │ │ ├─update-notifier───3*[{update-notifier}]
│ │ │ │ ├─zeitgeist-datah───4*[{zeitgeist-datah}]
│ │ │ │ └─3*[{gnome-session}]
│ │ │ ├─gnome-terminal─┬─bash───pstree
│ │ │ │ ├─gnome-pty-helpe
│ │ │ │ └─3*[{gnome-terminal}]
│ │ │ ├─gvfs-afc-volume───2*[{gvfs-afc-volume}]
│ │ │ ├─gvfs-gphoto2-vo───{gvfs-gphoto2-vo}
│ │ │ ├─gvfs-mtp-volume───{gvfs-mtp-volume}
│ │ │ ├─gvfs-udisks2-vo───2*[{gvfs-udisks2-vo}]
│ │ │ ├─gvfsd───{gvfsd}
│ │ │ ├─gvfsd-burn───2*[{gvfsd-burn}]
│ │ │ ├─gvfsd-fuse───4*[{gvfsd-fuse}]
│ │ │ ├─gvfsd-http───2*[{gvfsd-http}]
│ │ │ ├─gvfsd-metadata───{gvfsd-metadata}
│ │ │ ├─gvfsd-trash───2*[{gvfsd-trash}]
│ │ │ ├─hud-service───3*[{hud-service}]
│ │ │ ├─ibus-daemon─┬─ibus-dconf───3*[{ibus-dconf}]
│ │ │ │ ├─ibus-engine-sim───2*[{ibus-engine-sim}]
│ │ │ │ ├─ibus-ui-gtk3───3*[{ibus-ui-gtk3}]
│ │ │ │ └─2*[{ibus-daemon}]
│ │ │ ├─ibus-x11───3*[{ibus-x11}]
│ │ │ ├─indicator-appli───{indicator-appli}
│ │ │ ├─indicator-bluet───2*[{indicator-bluet}]
│ │ │ ├─indicator-datet───5*[{indicator-datet}]
│ │ │ ├─indicator-keybo───2*[{indicator-keybo}]
│ │ │ ├─indicator-messa───3*[{indicator-messa}]
│ │ │ ├─indicator-power───2*[{indicator-power}]
│ │ │ ├─indicator-print───2*[{indicator-print}]
│ │ │ ├─indicator-sessi───2*[{indicator-sessi}]
│ │ │ ├─indicator-sound───3*[{indicator-sound}]
│ │ │ ├─mission-control───2*[{mission-control}]
│ │ │ ├─notify-osd───2*[{notify-osd}]
│ │ │ ├─oneconf-service───3*[{oneconf-service}]
│ │ │ ├─pulseaudio───2*[{pulseaudio}]
│ │ │ ├─rwhod───rwhod
│ │ │ ├─ssh-agent
│ │ │ ├─unity-files-dae───5*[{unity-files-dae}]
│ │ │ ├─unity-music-dae───2*[{unity-music-dae}]
│ │ │ ├─unity-panel-ser───2*[{unity-panel-ser}]
│ │ │ ├─unity-scope-hom───2*[{unity-scope-hom}]
│ │ │ ├─unity-scope-loa───3*[{unity-scope-loa}]
│ │ │ ├─unity-settings-─┬─syndaemon
│ │ │ │ └─3*[{unity-settings-}]
│ │ │ ├─unity-webapps-s───2*[{unity-webapps-s}]
│ │ │ ├─2*[upstart-dbus-br]
│ │ │ ├─upstart-event-b
│ │ │ ├─upstart-file-br
│ │ │ ├─window-stack-br
│ │ │ ├─zeitgeist-daemo───{zeitgeist-daemo}
│ │ │ └─zeitgeist-fts─┬─cat
│ │ │ └─2*[{zeitgeist-fts}]
│ │ └─{lightdm}
│ └─2*[{lightdm}]
├─polkitd───2*[{polkitd}]
├─rsyslogd───3*[{rsyslogd}]
├─rtkit-daemon───2*[{rtkit-daemon}]
├─systemd-logind
├─systemd-udevd
├─udisksd───4*[{udisksd}]
├─upowerd───2*[{upowerd}]
├─upstart-file-br
├─upstart-socket-
├─upstart-udev-br
├─whoopsie───2*[{whoopsie}]
└─wpa_supplicant
there is a rikit-daemon running.
i run the df -h command and the output is following...

Filesystem Size Used Avail Use% Mounted on
/dev/mapper/ubuntu--vg-root 457G 4.3G 429G 1% /
none 4.0K 0 4.0K 0% /sys/fs/cgroup
udev 676M 4.0K 676M 1% /dev
tmpfs 139M 1.1M 138M 1% /run
none 5.0M 0 5.0M 0% /run/lock
none 691M 156K 691M 1% /run/shm
none 100M 40K 100M 1% /run/user
/dev/sda2 237M 55M 170M 25% /boot
/dev/sda1 511M 3.4M 508M 1% /boot/efi
/home/muntashir/.Private 457G 4.3G 429G 1% /home/muntashir

i run the cat /proc/filesystems and the output is folowing...
nodev sysfs
nodev rootfs
nodev ramfs
nodev bdev
nodev proc
nodev cgroup
nodev cpuset
nodev tmpfs
nodev devtmpfs
nodev debugfs
nodev securityfs
nodev sockfs
nodev pipefs
nodev anon_inodefs
nodev devpts
ext3
ext2
ext4
nodev hugetlbfs
vfat
nodev ecryptfs
fuseblk
nodev fuse
nodev fusectl
nodev pstore
nodev efivarfs
nodev mqueue
btrfs
i run the ps axu|more and the output is ////////

USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.2 33888 2856 ? Ss 16:32 0:02 /sbin/init
root 2 0.0 0.0 0 0 ? S 16:32 0:00 [kthreadd]
root 3 0.0 0.0 0 0 ? S 16:32 0:00 [ksoftirqd/0]
root 5 0.0 0.0 0 0 ? S< 16:32 0:00 [kworker/0:0H]
root 7 0.0 0.0 0 0 ? S 16:32 0:01 [rcu_sched]
root 8 0.0 0.0 0 0 ? S 16:32 0:01 [rcuos/0]
root 9 0.0 0.0 0 0 ? S 16:32 0:01 [rcuos/1]
root 10 0.0 0.0 0 0 ? S 16:32 0:00 [rcu_bh]
root 11 0.0 0.0 0 0 ? S 16:32 0:00 [rcuob/0]
root 12 0.0 0.0 0 0 ? S 16:32 0:00 [rcuob/1]
root 13 0.0 0.0 0 0 ? S 16:32 0:00 [migration/0]
root 14 0.0 0.0 0 0 ? S 16:32 0:00 [watchdog/0]
root 15 0.0 0.0 0 0 ? S 16:32 0:00 [watchdog/1]
root 16 0.0 0.0 0 0 ? S 16:32 0:00 [migration/1]
root 17 0.0 0.0 0 0 ? S 16:32 0:00 [ksoftirqd/1]
root 19 0.0 0.0 0 0 ? S< 16:32 0:00 [kworker/1:0H]
root 20 0.0 0.0 0 0 ? S< 16:32 0:00 [khelper]
root 21 0.0 0.0 0 0 ? S 16:32 0:00 [kdevtmpfs]
root 22 0.0 0.0 0 0 ? S< 16:32 0:00 [netns]
root 23 0.0 0.0 0 0 ? S< 16:32 0:00 [writeback]
root 24 0.0 0.0 0 0 ? S< 16:32 0:00 [kintegrityd]
root 25 0.0 0.0 0 0 ? S< 16:32 0:00 [bioset]
root 26 0.0 0.0 0 0 ? S< 16:32 0:00 [kworker/u5:0]
root 27 0.0 0.0 0 0 ? S< 16:32 0:00 [kblockd]
root 28 0.0 0.0 0 0 ? S< 16:32 0:00 [ata_sff]
root 29 0.0 0.0 0 0 ? S 16:32 0:00 [khubd]
root 30 0.0 0.0 0 0 ? S< 16:32 0:00 [md]
root 31 0.0 0.0 0 0 ? S< 16:32 0:00 [devfreq_wq]
root 34 0.0 0.0 0 0 ? S 16:32 0:00 [khungtaskd]
root 35 0.0 0.0 0 0 ? S 16:32 0:00 [kswapd0]
root 36 0.0 0.0 0 0 ? SN 16:32 0:00 [ksmd]
root 37 0.0 0.0 0 0 ? SN 16:32 0:01 [khugepaged]
root 38 0.0 0.0 0 0 ? S 16:32 0:00 [fsnotify_mark]
root 39 0.0 0.0 0 0 ? S 16:32 0:00 [ecryptfs-kthrea]
root 40 0.0 0.0 0 0 ? S< 16:32 0:00 [crypto]
root 52 0.0 0.0 0 0 ? S< 16:32 0:00 [kthrotld]
root 74 0.0 0.0 0 0 ? S< 16:32 0:00 [deferwq]
root 75 0.0 0.0 0 0 ? S< 16:32 0:00 [charger_manager]
root 120 0.0 0.0 0 0 ? S< 16:32 0:00 [kpsmoused]
root 149 0.0 0.0 0 0 ? S 16:32 0:00 [scsi_eh_0]
root 150 0.0 0.0 0 0 ? S 16:32 0:00 [scsi_eh_1]
root 151 0.0 0.0 0 0 ? S 16:32 0:00 [scsi_eh_2]
root 152 0.0 0.0 0 0 ? S 16:32 0:00 [scsi_eh_3]
root 260 0.0 0.0 0 0 ? S< 16:33 0:00 [kdmflush]
root 262 0.0 0.0 0 0 ? S< 16:33 0:00 [bioset]
root 263 0.0 0.0 0 0 ? S< 16:33 0:00 [kcryptd_io]
root 264 0.0 0.0 0 0 ? S< 16:33 0:00 [kcryptd]
root 265 0.0 0.0 0 0 ? S< 16:33 0:00 [bioset]
root 288 0.0 0.0 0 0 ? S< 16:33 0:00 [kdmflush]
root 289 0.0 0.0 0 0 ? S< 16:33 0:00 [bioset]
root 291 0.0 0.0 0 0 ? S< 16:33 0:00 [kdmflush]
root 292 0.0 0.0 0 0 ? S< 16:33 0:00 [bioset]
root 333 0.0 0.0 0 0 ? S< 16:33 0:00 [bioset]
root 343 0.0 0.0 0 0 ? S 16:33 0:00 [jbd2/dm-1-8]
root 344 0.0 0.0 0 0 ? S< 16:33 0:00 [ext4-rsv-conver]
root 472 0.0 0.0 19472 508 ? S 16:33 0:00 upstart-udev-bridge --daemon
root 492 0.0 0.0 51708 904 ? Ss 16:33 0:00 /lib/systemd/systemd-udevd --daemon
root 507 0.0 0.0 0 0 ? S< 16:33 0:00 [kworker/u5:1]
root 551 0.0 0.0 0 0 ? S 16:33 0:00 [irq/43-mei_me]
root 563 0.0 0.0 0 0 ? S< 16:33 0:00 [cfg80211]
root 575 0.0 0.0 0 0 ? S< 16:33 0:00 [kvm-irqfd-clean]
root 578 0.0 0.0 0 0 ? S< 16:33 0:00 [kmpathd]
root 580 0.0 0.0 0 0 ? S< 16:33 0:00 [kmpath_handlerd]
root 608 0.0 0.0 0 0 ? S< 16:33 0:00 [ext4-rsv-conver]
root 670 0.0 0.0 15260 504 ? S 16:33 0:00 upstart-socket-bridge --daemon
root 732 0.0 0.0 0 0 ? S< 16:33 0:00 [hd-audio0]
root 745 0.0 0.0 0 0 ? S< 16:33 0:00 [led_workqueue]
root 792 0.0 0.0 15276 520 ? S 16:33 0:00 upstart-file-bridge --daemon
syslog 795 0.0 0.0 255840 1204 ? Ssl 16:33 0:00 rsyslogd
message+ 808 0.0 0.1 40280 2464 ? Ss 16:33 0:01 dbus-daemon --system --fork
root 885 0.0 0.2 330228 2968 ? Ssl 16:33 0:00 /usr/sbin/ModemManager
root 911 0.0 0.1 43560 1704 ? Ss 16:33 0:00 /lib/systemd/systemd-logind
root 947 0.0 0.1 19292 1444 ? Ss 16:33 0:00 /usr/sbin/bluetoothd
root 955 0.0 0.0 0 0 ? S< 16:33 0:00 [krfcommd]
root 1030 0.0 0.3 357256 5180 ? Ssl 16:33 0:01 NetworkManager
root 1036 0.0 0.3 295864 4736 ? Sl 16:33 0:00 /usr/lib/policykit-1/polkitd --no-debug
root 1070 0.0 0.1 30608 1800 ? Ss 16:33 0:00 /sbin/wpa_supplicant -B -P /run/sendsigs.omit.d/wpasupplicant.pid -u -s -O /var
/run/wpa_supplicant
root 1331 0.0 0.0 20536 908 tty4 Ss+ 16:33 0:00 /sbin/getty -8 38400 tty4
root 1335 0.0 0.0 20536 920 tty5 Ss+ 16:33 0:00 /sbin/getty -8 38400 tty5
root 1342 0.0 0.0 20536 920 tty2 Ss+ 16:33 0:00 /sbin/getty -8 38400 tty2
root 1343 0.0 0.0 20536 904 tty3 Ss+ 16:33 0:00 /sbin/getty -8 38400 tty3
root 1346 0.0 0.0 20536 908 tty6 Ss+ 16:33 0:00 /sbin/getty -8 38400 tty6
kernoops 1398 0.0 0.0 37144 900 ? Ss 16:33 0:00 /usr/sbin/kerneloops
root 1400 0.0 0.0 19188 696 ? Ss 16:33 0:00 /usr/sbin/irqbalance
root 1406 0.0 0.0 4368 696 ? Ss 16:33 0:01 acpid -c /etc/acpi/events -s /var/run/acpid.socket
root 1442 0.0 0.2 292788 3460 ? SLsl 16:33 0:00 lightdm
root 1470 0.0 0.1 75352 2620 ? Ss 16:33 0:00 /usr/sbin/cups-browsed
root 1492 0.0 0.0 20536 916 tty1 Ss+ 16:33 0:00 /sbin/getty -8 38400 tty1
root 1497 0.0 0.0 23656 968 ? Ss 16:33 0:00 cron
root 1503 0.0 0.2 302240 3868 ? Sl 16:33 0:00 /usr/lib/accountsservice/accounts-daemon
whoopsie 1512 0.0 0.4 363388 6232 ? Ssl 16:33 0:00 whoopsie
root 1523 3.8 4.3 371628 62132 tty7 Ssl+ 16:33 3:31 /usr/bin/X -core :0 -seat seat0 -auth /var/run/lightdm/root/:0 -nolisten tcp vt
7 -novtswitch
root 1548 0.0 0.0 0 0 ? S 16:33 0:00 [kauditd]
nobody 1626 0.0 0.0 35744 1380 ? S 16:33 0:00 /usr/sbin/dnsmasq --no-resolv --keep-in-foreground --no-hosts --bind-interfaces
--pid-file=/run/sendsigs.omit.d/network-manager.dnsmasq.pid --listen-address=127.0.1.1 --conf-file=/var/run/NetworkManager/dnsmasq.conf --cache
-size=0 --proxy-dnssec --enable-dbus=org.freedesktop.NetworkManager.dnsmasq --conf-dir=/etc/NetworkManager/dnsmasq.d
root 1678 0.0 0.2 188892 3372 ? Sl 16:33 0:00 lightdm --session-child 12 19
root 1716 0.0 0.2 239812 4148 ? Sl 16:33 0:00 /usr/lib/upower/upowerd
rtkit 1761 0.0 0.0 168916 1260 ? SNl 16:33 0:00 /usr/lib/rtkit/rtkit-daemon
muntash+ 1991 0.0 0.2 323260 3840 ? Sl 16:33 0:00 /usr/bin/gnome-keyring-daemon --daemonize --login
muntash+ 1998 0.0 0.1 40848 2380 ? Ss 16:33 0:00 init --user
muntash+ 2042 0.0 0.0 24440 512 ? S 16:33 0:00 dbus-launch --autolaunch=ba11416dd6df7ad8f18f62d0536f7070 --binary-syntax --clo
se-stderr
muntash+ 2044 0.0 0.0 39096 528 ? Ss 16:33 0:00 //bin/dbus-daemon --fork --print-pid 5 --print-address 7 --session
muntash+ 2055 0.0 0.0 10616 316 ? Ss 16:33 0:00 ssh-agent
muntash+ 2063 0.0 0.1 41456 2780 ? Ss 16:33 0:01 dbus-daemon --fork --session --address=unix:abstract=/tmp/dbus-oHl2dVvcPt
muntash+ 2071 0.0 0.0 22820 1064 ? Ss 16:33 0:00 upstart-event-bridge
muntash+ 2075 0.0 0.1 78720 2248 ? Ss 16:33 0:00 /usr/lib/x86_64-linux-gnu/hud/window-stack-bridge
muntash+ 2076 0.3 0.4 451500 6972 ? Ssl 16:33 0:20 /usr/bin/ibus-daemon --daemonize --xim
muntash+ 2103 0.0 0.0 22828 628 ? S 16:33 0:00 upstart-dbus-bridge --daemon --system --user --bus-name system
muntash+ 2105 0.0 0.0 31304 896 ? S 16:33 0:00 upstart-file-bridge --daemon --user
muntash+ 2107 0.0 0.0 22828 652 ? S 16:33 0:00 upstart-dbus-bridge --daemon --session --user --bus-name session
muntash+ 2110 0.0 0.1 197160 2644 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfsd
muntash+ 2114 0.0 0.1 360424 2808 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfsd-fuse /run/user/1000/gvfs -f -o big_writes
muntash+ 2117 0.0 0.2 296288 3140 ? Sl 16:33 0:00 /usr/lib/ibus/ibus-dconf
muntash+ 2119 0.0 0.8 488796 11932 ? Sl 16:33 0:02 /usr/lib/ibus/ibus-ui-gtk3
muntash+ 2121 0.0 0.3 396916 5636 ? Sl 16:33 0:00 /usr/lib/ibus/ibus-x11 --kill-daemon
muntash+ 2152 0.0 0.6 559044 9840 ? Sl 16:33 0:01 /usr/lib/x86_64-linux-gnu/bamf/bamfdaemon
muntash+ 2171 0.1 0.2 220432 3044 ? Sl 16:33 0:06 /usr/lib/ibus/ibus-engine-simple
muntash+ 2180 0.0 0.8 749768 12628 ? Ssl 16:33 0:00 /usr/lib/unity-settings-daemon/unity-settings-daemon
muntash+ 2186 0.0 1.0 679604 14824 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/hud/hud-service
muntash+ 2190 0.0 0.2 367676 3304 ? Ssl 16:33 0:00 /usr/lib/at-spi2-core/at-spi-bus-launcher --launch-immediately
muntash+ 2191 0.0 0.5 863944 8444 ? Ssl 16:33 0:00 gnome-session --session=ubuntu
muntash+ 2198 0.0 0.1 39360 1800 ? S 16:33 0:00 /bin/dbus-daemon --config-file=/etc/at-spi2/accessibility.conf --nofork --print
-address 3
muntash+ 2200 0.0 1.2 515744 17180 ? Ssl 16:33 0:03 /usr/lib/unity/unity-panel-service
muntash+ 2213 0.0 0.1 124912 2804 ? Sl 16:33 0:00 /usr/lib/at-spi2-core/at-spi2-registryd --use-gnome-session
muntash+ 2216 0.0 0.2 365696 2968 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-messages/indicator-messages-service
muntash+ 2218 0.0 0.2 294252 2968 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-bluetooth/indicator-bluetooth-service
muntash+ 2219 0.0 0.8 604532 12260 ? Sl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-keyboard-service --use-gtk
muntash+ 2222 0.0 0.3 296296 5456 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-power/indicator-power-service
muntash+ 2230 0.0 0.3 1165252 5360 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-datetime/indicator-datetime-service
muntash+ 2231 0.0 0.4 496084 6592 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-sound/indicator-sound-service
muntash+ 2233 0.0 0.6 456956 8904 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-printers/indicator-printers-service
muntash+ 2234 0.0 0.5 906904 7548 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-session/indicator-session-service
muntash+ 2250 0.0 0.2 286748 3864 ? Ssl 16:33 0:00 /usr/lib/x86_64-linux-gnu/indicator-application/indicator-application-service
muntash+ 2279 0.0 0.2 374292 3688 ? S<l 16:33 0:00 /usr/bin/pulseaudio --start --log-target=syslog
colord 2282 0.0 0.3 310960 4324 ? Sl 16:33 0:00 /usr/lib/colord/colord
muntash+ 2283 0.0 0.0 20232 816 ? S 16:33 0:04 syndaemon -i 1.0 -t -K -R
muntash+ 2288 0.0 0.4 1107540 6268 ? Sl 16:33 0:00 /usr/lib/evolution/evolution-source-registry
muntash+ 2291 0.0 0.3 178308 4424 ? Sl 16:33 0:00 /usr/lib/dconf/dconf-service
muntash+ 2324 0.0 0.9 432036 13688 ? Sl 16:33 0:01 /usr/lib/x86_64-linux-gnu/notify-osd
muntash+ 2355 1.9 4.2 1492192 59888 ? Sl 16:33 1:43 compiz
muntash+ 2403 0.0 2.7 1096864 39480 ? Sl 16:33 0:00 /usr/lib/evolution/evolution-calendar-factory
muntash+ 2411 0.0 0.9 601416 13600 ? Sl 16:33 0:01 nm-applet
muntash+ 2414 0.0 2.0 973104 28608 ? Sl 16:33 0:01 nautilus -n
muntash+ 2415 0.0 0.5 341880 7516 ? Sl 16:33 0:00 /usr/lib/policykit-1-gnome/polkit-gnome-authentication-agent-1
muntash+ 2416 0.0 0.6 411312 9488 ? Sl 16:33 0:00 /usr/lib/unity-settings-daemon/unity-fallback-mount-helper
muntash+ 2435 0.0 0.3 311952 4600 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfs-udisks2-volume-monitor
root 2441 0.0 0.3 386216 4788 ? Sl 16:33 0:01 /usr/lib/udisks2/udisksd --no-debug
muntash+ 2462 0.0 0.2 212960 2832 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfs-gphoto2-volume-monitor
muntash+ 2557 0.0 0.1 200796 2388 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfs-mtp-volume-monitor
muntash+ 2561 0.0 0.1 286480 2752 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfs-afc-volume-monitor
muntash+ 2607 0.0 0.2 58776 3416 ? S 16:33 0:00 /usr/lib/x86_64-linux-gnu/gconf/gconfd-2
muntash+ 2642 0.0 0.2 374688 3156 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfsd-trash --spawner :1.3 /org/gtk/gvfs/exec_spaw/0
muntash+ 2652 0.0 0.1 270896 2444 ? Sl 16:33 0:00 /usr/lib/gvfs/gvfsd-burn --spawner :1.3 /org/gtk/gvfs/exec_spaw/1
root 2665 0.0 0.1 76860 2820 ? Ss 16:33 0:00 /usr/sbin/cupsd -f
muntash+ 2685 12.4 20.8 1046308 294500 ? Sl 16:33 11:14 /usr/lib/firefox/firefox
muntash+ 2712 0.0 0.2 287216 2924 ? Sl 16:33 0:00 /usr/lib/libunity-webapps/unity-webapps-service
muntash+ 2720 0.0 0.5 457704 7936 ? Sl 16:33 0:00 telepathy-indicator
muntash+ 2732 0.0 0.3 336560 4636 ? Sl 16:34 0:00 /usr/lib/telepathy/mission-control-5
muntash+ 2745 0.0 0.3 544544 4840 ? Sl 16:34 0:00 zeitgeist-datahub
muntash+ 2752 0.0 0.2 363764 4228 ? Sl 16:34 0:00 /usr/bin/zeitgeist-daemon
muntash+ 2777 0.0 0.4 256784 5872 ? Sl 16:34 0:00 /usr/lib/x86_64-linux-gnu/zeitgeist-fts
muntash+ 2787 0.0 0.0 11932 524 ? S 16:34 0:00 /bin/cat
muntash+ 2855 0.0 0.6 506932 8908 ? Sl 16:34 0:00 update-notifier
muntash+ 2890 0.0 0.2 385656 3344 ? Sl 16:35 0:00 /usr/lib/x86_64-linux-gnu/deja-dup/deja-dup-monitor
muntash+ 2915 0.0 6.3 987836 89236 ? Sl 16:37 0:03 evince /home/muntashir/Downloads/Linux-101-Hacks.pdf
muntash+ 2922 0.0 0.1 104436 2092 ? Sl 16:37 0:00 /usr/lib/evince/evinced
muntash+ 2931 0.0 0.1 125040 2396 ? Sl 16:37 0:00 /usr/lib/gvfs/gvfsd-metadata
muntash+ 2942 0.0 0.7 679680 10600 ? Sl 16:37 0:00 /usr/lib/x86_64-linux-gnu/unity-scope-home/unity-scope-home
muntash+ 2957 0.0 1.0 592652 14760 ? Sl 16:37 0:00 /usr/bin/unity-scope-loader applications/applications.scope applications/scopes
.scope commands.scope
muntash+ 2959 0.0 0.5 643844 7104 ? Sl 16:37 0:00 /usr/lib/x86_64-linux-gnu/unity-lens-files/unity-files-daemon
muntash+ 2985 0.0 0.4 350764 6716 ? Sl 16:37 0:00 /usr/lib/x86_64-linux-gnu/unity-lens-music/unity-music-daemon
muntash+ 3009 0.4 1.1 659576 16708 ? Sl 16:37 0:23 gnome-terminal
muntash+ 3017 0.0 0.0 14824 780 ? S 16:37 0:00 gnome-pty-helper
muntash+ 3018 0.0 0.2 27536 3652 pts/0 Ss 16:37 0:00 bash
muntash+ 3084 0.0 0.2 314568 3216 ? Sl 16:39 0:00 /usr/lib/gvfs/gvfsd-http --spawner :1.3 /org/gtk/gvfs/exec_spaw/2
root 3305 0.0 0.2 10232 3176 ? S 16:58 0:00 /sbin/dhclient -d -sf /usr/lib/NetworkManager/nm-dhcp-client.action -pf /run/se
ndsigs.omit.d/network-manager.dhclient-wlan0.pid -lf /var/lib/NetworkManager/dhclient-d89c97c6-086e-48cc-a8aa-ee29a719dcf1-wlan0.lease -cf /var/
lib/NetworkManager/dhclient-wlan0.conf wlan0
rwhod 4071 0.0 0.0 12768 728 ? Ss 17:05 0:00 /usr/sbin/rwhod -b
rwhod 4073 0.0 0.0 12768 628 ? S 17:05 0:00 /usr/sbin/rwhod -b
root 4580 0.0 0.0 0 0 ? S 17:12 0:03 [kworker/0:1]
root 4680 0.0 0.0 0 0 ? S 17:34 0:00 [kworker/u4:0]
root 4729 0.1 0.0 0 0 ? S 17:47 0:01 [kworker/1:2]
root 5237 0.0 0.0 0 0 ? S 17:54 0:00 [kworker/u4:2]
root 5241 0.0 0.0 0 0 ? S 17:58 0:00 [kworker/1:1]
root 5242 0.0 0.0 0 0 ? S 17:58 0:00 [kworker/0:0]
root 5244 0.0 0.0 0 0 ? S 17:59 0:00 [kworker/u4:1]
muntash+ 5251 0.0 0.0 23164 1344 pts/0 R+ 18:03 0:00 ps axu
muntash+ 5252 0.0 0.0 14168 980 pts/0 S+ 18:03 0:00 more

i am just reading and typing and looking at the output..but i can not understand most of the times what it means..
I need your expert advice removing the rootkit and running a fresh linux and mastering linux....

looking forward.
N.B. pls tell me if someone replies my question and i want to talk on his reply or continue a conersation on this topic how can i do this without posting every time..Thank You All

albatross
 
Old 05-15-2014, 10:40 AM   #2
colucix
LQ Guru
 
Registered: Sep 2003
Location: Bologna
Distribution: CentOS 6.5 OpenSuSE 12.3
Posts: 10,509

Rep: Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983
Please post your thread in only one forum. Posting a single thread in the most relevant forum will make it easier for members to help you and will keep the discussion in one place. This thread is being closed because it is a duplicate. Please follow discussion here: http://www.linuxquestions.org/questi...ce-4175505067/
 
1 members found this post helpful.
  


Closed Thread



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Eolas Doesn’t Own Internet, Ubuntu Hacked & More… LXer Syndicated Linux News 0 07-27-2013 04:41 AM
LXer: Ubuntu forums hacked, Tux the penguin joins the NRA LXer Syndicated Linux News 0 07-24-2013 03:50 AM
can ubuntu's update manager be hacked? pandanuma Linux - Security 15 09-19-2012 07:11 PM
Ubuntu 8.04 + Apache 2.28 hacked - need help Alt-Ox Linux - Security 1 02-14-2011 11:56 PM
LXer: Ylmf OS!: Ubuntu hacked to looks just like Windows XP LXer Syndicated Linux News 0 12-28-2009 10:30 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 03:29 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration