Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
W
W
wadomon2019-05-13 17:36:21
linux
wadomon, 2019-05-13 17:36:21

Who faced the vulnerability mining cryptocurrency?

On a couple of servers with different kernels, different versions of ubuntu, 16.04 and 18.04, some garbage was found that loads a percent. Run
from root, has different names like ptV9Tp
From what was found - in the crontab from root, the systemd call, in / tmp - .XIM-unix files, in which the uid of the bash process and the ptV9Tp itself
and in /lib/systemd the systemd-login file with the bash call
how to treat this nonsense
, the process hangs explicitly connected to the ptV9Tp pool
15244 root 0u IPv4 2329155943 0t0 TCP 41-04.webazilla.com:51200-> server.pol-ice.ru:http-alt (ESTABLISHED)

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
R
Ronald McDonald, 2019-05-13
@Zoominger

Oh, this protected Linux, under which there are NO VIRUSES!11 .
Do:
If there is no path to the program, then:
And delete.
Get more updates.

Similar questions
G
Geoler2017-11-24 00:55:04
How to find a "button" in the subject class on the site? 1Reply
B
bik2017-05-20 22:08:06
DEVFS2: how to mount client certificate drive in PFX format? 0Reply
S
Sergiy_Denisyuk2015-06-06 01:01:17
Glibc and locales incompatibility in Debian Wheezy? 2Reply
V
vakohafa2017-05-21 15:06:03
How to wrap VirtualBox traffic in ssh tunnel? 1Reply
M
mr_blond972017-05-21 15:40:56
How to use cat to write an Exception that occurs to a file? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question