Skip to main content

Thread: Help I've been hacked I think?

-

hi all,
think have been hacked. have been having problems program loading , when start computer boots sub routine loads version of ubuntu limited options. of sudden switch on regular desktop environment. in log file found this:

bruce rtkit-daemon[1182]: made thread 1601 of process 1601 (n/a) owned '1000' high priority @ nice level -11.
jun 26 09:07:40 bruce rtkit-daemon[1182]: supervising 4 threads of 2 processes of 2 users.
jun 26 09:07:40 bruce rtkit-daemon[1182]: made thread 1602 of process 1601 (n/a) owned '1000' rt @ priority 5.
jun 26 09:07:40 bruce rtkit-daemon[1182]: supervising 5 threads of 2 processes of 2 users.
jun 26 09:07:41 bruce rtkit-daemon[1182]: made thread 1603 of process 1601 (n/a) owned '1000' rt @ priority 5.
jun 26 09:07:41 bruce rtkit-daemon[1182]: supervising 6 threads of 2 processes of 2 users.
jun 26 09:17:01 bruce cron[1913]: (root) cmd ( cd / && run-parts --report /etc/cron.hourly)

, this:

bruce rsyslogd: [origin software="rsyslogd" swversion="4.6.4" x-pid="433" x-info="http://www.rsyslog.com"] exiting on signal 15.
jun 29 07:11:46 bruce kernel: imklog 4.6.4, log source = /proc/kmsg started.
jun 29 07:11:46 bruce rsyslogd: [origin software="rsyslogd" swversion="4.6.4" x-pid="409" x-info="http://www.rsyslog.com"] (re)start
jun 29 07:11:47 bruce rsyslogd: rsyslogd's groupid changed 103
jun 29 07:11:47 bruce rsyslogd: rsyslogd's userid changed 101
jun 29 07:11:46 bruce rsyslogd-2039: no open output pipe '/dev/xconsole' [try http://www.rsyslog.com/e/2039 ]
jun 29 07:11:47 bruce kernel: [ 0.000000] initializing cgroup subsys cpuset
jun 29 07:11:47 bruce kernel: [ 0.000000] initializing cgroup subsys cpu
jun 29 07:11:47 bruce kernel: [ 0.000000] linux version 2.6.38-8-generic (buildd@vernadsky) (gcc version 4.5.2 (ubuntu/linaro 4.5.2-8ubuntu3) ) #42-ubuntu smp mon apr 11 03:31:50 utc 2011 (ubuntu 2.6.38-8.42-generic 2.6.38.2)
jun 2

these system log 01 , wondering if 1 have @ full system log 01,the boot log , auth log. whaer should post these quite large.

appreciated running ubuntu 11.04

check /etc/passwd , /etc/group file match uid , gids. possible have multiple users using 1 of these uid or gid.

daemons specified part of normal operation. don't see obvious in these logs.


Forum The Ubuntu Forum Community Ubuntu Specialised Support Security [ubuntu] Help I've been hacked I think?


Ubuntu

Comments

Post a Comment

Popular posts from this blog

How to change text Component easybook reloaded *newbee* - Joomla! Forum - community, help and support

-
Image
hi all, i started building websites joomla not long ago, can use help.. for got problem guestbook. i have installed easybook. , running on following website http://odoorn321.nl/ (under gastenboek) i want change text: waardering website (is dutch valuate website) waardering. idea rid of word website, because have valuate vacation home, not website. i have made screenshot of text want change. where , how going find css file change text? your appreciated! thanks no one? Board index Joomla! Older Version Support Joomla! 2.5 General Questions/New to Joomla! 2.5
Read more

After Effect warning: A problem occurred when processing OpenGL commands

-
i have after effects cs6 in computer cs5.5 installed. 64bit windows 7 ultimate 20gb memory , 2 amd radeon hd 6900 series display adapters drivers updated hour ago (driver date 27.7.2012, version 8.982.0.0).   when trying use after ecffects, error message " after effect warning: problem occurred when processing opengl commands " when clicking composition window.   what done? not much, i'm afraid. need older graphics driver. other disable second card or play configuration. unfortunately not smart person decided cs6 no longer need manual opengl control user, there's no way suppress within program force-revert software-only modes in case of such issues...   mylenium More discussions in After Effects adobe
Read more

Preconditions Failed. - Joomla! Forum - community, help and support

-
hello! i'm having problem; every time click save&close button, or save button, or close button module; following message appears: "precondition failed the precondition on request url /administrator/index.php evaluated false. additionally, 404 not found error encountered while trying use errordocument handle request." it happens modules. thanks in advance. problem description :: forum post assistant (v1.2.3) : 13th november 2012 wrote: can\'t save changes or close module. log/error message :: forum post assistant (v1.2.3) : 13th november 2012 wrote: precondition failed precondition on request url /administrator/index.php evaluated false. additionally, 404 not found error encountered while trying use errordocument handle request. last php error(s) reported :: forum post assistant (v1.2.3) : 13th november 2012 wrote: [04-mar-2012 01:25:56] php fatal error: call member function get() on non-object in /home/joommmy1/addon/youngstaer/sub/teenace/public_html/templates/...
Read more