Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Witam,
- Podana usługa została zablokowana z powodu nadmiernego obciążania zasobów fizycznych serwera macierzystego. Na podanej usłudze wykryliśmy proces, który służy do kopania kryptowaluty.
- Log:
- COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
- minerd 12683 hwserver cwd DIR 145,18 4096 48257444 /
- minerd 12683 hwserver rtd DIR 145,18 4096 48257444 /
- minerd 12683 hwserver txt REG 145,30 468300 1246635413 /tmp/CMLIPREX.DAT/minerd
- minerd 12683 hwserver mem REG 8,2 48383856 /usr/lib/x86_64-linux-gnu/libffi.so.6.0.2 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48397552 /lib/x86_64-linux-gnu/libgpg-error.so.0.13.0 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48387551 /usr/lib/x86_64-linux-gnu/libtasn1.so.6.3.2 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48392945 /usr/lib/x86_64-linux-gnu/libp11-kit.so.0.0.0 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48392286 /usr/lib/x86_64-linux-gnu/libsasl2.so.2.0.25 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48382899 /lib/x86_64-linux-gnu/libresolv-2.19.so (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48397629 /lib/x86_64-linux-gnu/libkeyutils.so.1.5 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48383472 /usr/lib/x86_64-linux-gnu/libkrb5support.so.0.1 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48382877 /lib/x86_64-linux-gnu/libdl-2.19.so (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48372706 /lib/x86_64-linux-gnu/libgcrypt.so.20.0.3 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48392701 /usr/lib/x86_64-linux-gnu/libgmp.so.10.2.0 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48367667 /usr/lib/x86_64-linux-gnu/libnettle.so.4.7 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48367625 /usr/lib/x86_64-linux-gnu/libhogweed.so.2.5 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48368694 /usr/lib/x86_64-linux-gnu/libgnutls-deb0.so.28.41.0 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48397605 /lib/x86_64-linux-gnu/libz.so.1.2.8 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48368453 /usr/lib/x86_64-linux-gnu/libldap_r-2.4.so.2.10.3 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48368306 /usr/lib/x86_64-linux-gnu/liblber-2.4.so.2.10.3 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48367428 /lib/x86_64-linux-gnu/libcom_err.so.2.1 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48383500 /usr/lib/x86_64-linux-gnu/libk5crypto.so.3.1 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48383442 /usr/lib/x86_64-linux-gnu/libkrb5.so.3.3 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48383376 /usr/lib/x86_64-linux-gnu/libgssapi_krb5.so.2.2 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48372674 /usr/lib/x86_64-linux-gnu/libcrypto.so.1.0.0 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48372863 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48368427 /usr/lib/x86_64-linux-gnu/libssh2.so.1.0.1 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48377218 /usr/lib/x86_64-linux-gnu/librtmp.so.1 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48392941 /usr/lib/x86_64-linux-gnu/libidn.so.11.6.12 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48382871 /lib/x86_64-linux-gnu/libc-2.19.so (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48382863 /lib/x86_64-linux-gnu/libpthread-2.19.so (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48410031 /usr/lib/x86_64-linux-gnu/libcurl.so.4.3.0 (path dev=145,18)
- minerd 12683 hwserver mem REG 8,2 48382865 /lib/x86_64-linux-gnu/ld-2.19.so (path dev=145,18)
- minerd 12683 hwserver 0u CHR 136,7 0t0 10 (deleted)/dev/pts/7
- minerd 12683 hwserver 1w CHR 1,3 0t0 190947 /dev/null
- minerd 12683 hwserver 2u CHR 136,7 0t0 10 (deleted)/dev/pts/7
- minerd 12683 hwserver 3r CHR 1,9 0t0 190943 /dev/urandom
- minerd 12683 hwserver 4u IPv4 1246885306 0t0 TCP 155.133.41.253:57434->198.50.152.135:6233 (ESTABLISHED)
- Prosimy o wyjaśnienie nam podanej sytuacji.
- Pozdrawiam
- Tomasz Zdanowicz
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement