[16:58:49] /usr/sbin/rsyslogd [ Warning ][16:58:49] Warning: The file properties have changed:
[16:58:51] /usr/bin/curl [ Warning ]
[16:58:51] Warning: The file '/usr/bin/curl' exists on the system, but it is not present in the rkhunter.dat file.
[16:58:53] /usr/bin/ldd [ Warning ]
[16:58:54] Warning: The file properties have changed:
[16:58:56] /usr/bin/size [ Warning ]
[16:58:56] Warning: The file properties have changed:
[16:58:57] /usr/bin/strings [ Warning ]
[16:58:57] Warning: The file properties have changed:
[16:58:59] /usr/bin/unhide.rb [ Warning ]
[16:58:59] Warning: The command '/usr/bin/unhide.rb' has been replaced by a script: /usr/bin/unhide.rb: Ruby script, ASCII text
[16:59:01] /sbin/init [ Warning ]
[16:59:01] Warning: The file properties have changed:
[16:59:02] /sbin/runlevel [ Warning ]
[16:59:02] Warning: The file properties have changed:
[17:00:29] Checking for passwd file changes [ Warning ]
[17:00:29] Warning: Changes found in the passwd file for user 'paul':
[17:00:29] Warning: User 'postfix' has been added to the passwd file.
[17:00:29] Checking for group file changes [ Warning ]
[17:00:29] Warning: Group 'postfix' has been added to the group file.
[17:00:29] Warning: Group 'postdrop' has been added to the group file.
[17:00:29] Warning: Group 'vboxusers' has been added to the group file.
[17:00:30] Checking for hidden files and directories [ Warning ]
[17:00:30] Warning: Hidden directory found: /dev/.udev
[17:00:30] Warning: Hidden file found: /dev/.initramfs: symbolic link to `/run/initramfs'