|
<div class="f14 mb10" id="read_tpc">
<span style="display:none"> E+g@M8D </span> <br /><span style="display:none"> Vi]W|bP </span> <br /><span style="display:none"> bU:EqW\(^ </span> <br /><span style="display:none"> W~9tKT4 </span> <br />受影响资产<span style="display:none"> .ndCfdy~ </span> <br /><span style="display:none"> 9V@V6TvW>& </span> <br /><span style="display:none"> +kO!Xc%P& </span> <br />父进程名称<span style="display:none"> /-+xQn] </span> <br />/tmp/.lz1525166785 (deleted)<span style="display:none"> wL
4dTc </span> <br /><span style="display:none"> ,UGRrS </span> <br />进程名称bash<span style="display:none"> DiwxXqY
</span> <br /><span style="display:none"> *><F' </span> <br />进程路径<span style="display:none"> nR}sNl1 </span> <br />/usr/bin/bash<span style="display:none"> 6GSI"M6s </span> <br /><span style="display:none"> >TnTnFWX </span> <br /><span style="display:none"> c[4i9I3v </span> <br />进程id5,417<span style="display:none"> :xv!N*Le </span> <br /><span style="display:none"> au+kNF|Q </span> <br />命令行参数sh -c reSuSEfirewall2 stop > /dev/null<span style="display:none"> C=)A6
;=se </span> <br /><span style="display:none"> B!_mC<*4`X </span> <br />事件说明<span onclick="sendmsg('pw_ajax.php','action=relatetag&tagname=云盾',this.id)" style="cursor:pointer;border-bottom: 1px solid #FA891B;" id="rlt_3">云盾</span>检测到该异常指令执行,请及时排查,如果是您业务需要主动执行,可以忽略该告警。<span style="display:none"> .C(eh
</span> <br /><span style="display:none"> TKY*`?ct </span> <br /><span onclick="sendmsg('pw_ajax.php','action=relatetag&tagname=解决方案',this.id)" style="cursor:pointer;border-bottom: 1px solid #FA891B;" id="rlt_4">解决方案</span><span onclick="sendmsg('pw_ajax.php','action=relatetag&tagname=建议',this.id)" style="cursor:pointer;border-bottom: 1px solid #FA891B;" id="rlt_2">建议</span>立即及时排查入侵原因。每天收到 云盾检测到该异常指令执行 <span onclick="sendmsg('pw_ajax.php','action=relatetag&tagname=邮件',this.id)" style="cursor:pointer;border-bottom: 1px solid #FA891B;" id="rlt_1">邮件</span>和短信,不知道怎么解决!
</div>
</div>
<!--content_read-->
</td>
</tr>
<tr>
|
|