Fedora 15 INFECTED [Suckit rootkit & Trojan] Help Please!

Manuel Escudero Jmlevick at gmail.com
Thu Jun 9 15:37:22 UTC 2011 

2011/6/9 Garry T. Williams <gtwilliams at gmail.com>

> On Thursday, June 09, 2011 04:58:21 Manuel Escudero wrote:
> > Hi, Some days ago, I noticed a BIG DECREASE of the performance
> > in my Fedora 15 System (64 Bits, KDE encrypted BTRFS partitions)
>
> Try an update to kernel-2.6.38.7-30.fc15 .  This helped with my
> performance problem using btrfs.
>
> --
> Garry Williams
> --
> users mailing list
> users at lists.fedoraproject.org
> To unsubscribe or change subscription options:
> https://admin.fedoraproject.org/mailman/listinfo/users
> Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
>

@Michael, Ed: Yep. Found the bug doing a google search,
it turns out I can discard "suckit rootkit".

@Everyone: I ran a scan with rkhunter, all was clear.
also in the Avast! scan, all things were clear, (a false positive
of a trojan in my Windows 7 VM's HDD) but that was all...

This only leave 3 doubts... What about the Trojan mentioned
in line 111 of chkrootkit's output? and the "deletions" mentioned
on line 117, what does that mean?

My last doubt is: If there's no virus/security issue in the machine,
why am I experiencing a very poor performance in comparison with
The time when the machine use to Have F14 + KDE? the CPU sometimes
go up to 100% usage without doing anything and the PC looses
"responsiveness"
The worst part is when running a VirtualBox VM, it's so slow, and it crashes
and
forces the system a lot, that didn't happened in F14, the VM is the same
one.

@Garry: My "uname -r" shows: 2.6.38.7-30.fc15.x86_64 :)

So, Why the performance decrease? Everything is configured the exact
same way I had it in F14, Thanks.

-- 
<-Manuel Escudero->
Linux User #509052
@GWave: jmlevick at googlewave.com
@Blogger: http://www.blogxenode.tk/ (Xenode Systems Blog)
PGP/GnuPG: E2B4 31CE F2BF 1944 8664  3E22 88C8 DFC9 4D7C 1B35
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.fedoraproject.org/pipermail/users/attachments/20110609/e91af2dd/attachment.html

More information about the users mailing list