I am not particularly strong in Linux, so I’m not sure about the correctness of my question, and even more so about where to look for information about it.

I use Ubuntu 15.04. A familiar joke installed a rootkit for me, I don’t know how to search for it, but I know that even after a complete system reinstall (I tried Ubuntu 14.04 and 16.04), it sends a request to a specific port to activate the rootkit. Is it possible to secure this port and somehow stop its jokes?

  • one
    if you reinstall the system (with the re-creation of file systems on all used partitions, which is done by default), then you have no rootkit . // perhaps the best thing to read about security in the gnu / linux operating system is: “do not give attackers physical access to your computer.” - aleksandr barakin
  • The second of your questions (about “what to read?”), firstly, does not fit into the subject of the site, secondly, it contradicts the rule “in order to ask one more question, use the button“ ask a question ”in the upper right page corner. so I removed it from the text. - aleksandr barakin
  • Cool. Probably something like this rubbish . I did not find any recommendations in the article. Perhaps the easiest way to format a disk. - avp
  • 2
    @avp, do not scare, please, beginners, with Chinese articles about the secret discoveries of the Kaspersky Lab. even without going into the possibility of the existence of such a program, I can assure you that at the end of the (normal) installation, mbr is being overwritten. - aleksandr barakin
  • 2
    So, we decided a little: every ten minutes without your intervention, a melody sounds from the speakers connected to the sound card of the computer. Attach to the question the output of the $ ps aux command, performed at the moment the melody sounds, and a minute after its sound ends. skype program (and everything else that you installed) uninstall beforehand. - aleksandr barakin

0