Trojan Horses Detected by (WHM) on domain.com
Bu başlıkta ilk kez mail aldım,
Hidden Pid detected! [pid 187]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/sbin/adjkerntz]
Hidden Pid detected! [pid 247]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/sbin/devd]
Hidden Pid detected! [pid 269]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/sbin/syslogd]
Hidden Pid detected! [pid 409]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/sbin/cron]
Hidden Pid detected! [pid 448]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/local/bin/perl]
Hidden Pid detected! [pid 526]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/bin/stunnel-4.15local]
Hidden Pid detected! [pid 603]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/libexec/getty]
Hidden Pid detected! [pid 604]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/libexec/getty]
Hidden Pid detected! [pid 605]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/libexec/getty]
Hidden Pid detected! [pid 606]
hidden from ps: [yes]
hidden from kernel: [yes]
binary location: [/usr/libexec/getty]
Mesaj da böyle. Acaba bu yanlış bir alarm olabilir mi?
Ben yine de eşeğimi sağlam kazığa bağlayıp bütün şifreleri değiştirdim.
Bu konuda tecrübesi olan var mı?
