49
解决挖矿病毒占用cpu以及误删 ld-linux-x86-64.so.2 文件的问题-星火燎愿
source link: http://blog.51cto.com/13577495/2156959
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
上次已经被抓去挖矿了当了一次旷工了,本以为解决了,没想到竟然死灰复燃。这次占用cpu的依然是一个ld-linux的进程,kill掉之后同样就查了关于test用户的进程,果然,test用户的进程有100+个,比不上上次,还是用上次的脚本,将test的进程也kill掉。为防止恶意添加用户,将/etc/passwd文件里的test用户删除后,给该文件添加了隐藏权限i,具体功能不知道的可以查下,此处不多介
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK