How cloud server suffer from hacker attack - by the end of hackers money home for the holiday of bitcoin mining machine strikes

Language 2020-01-14 15:30:26 views: null

      Just yesterday seized blasting attack lad our server, and today another server " in the move ", this is known as Bitcoin mining machine of xmrigMiner,  or the old rules and Kazakhstan ----- mosaics, avoid advertising suspects, ha ha ha

That did not, a little progress, I am taking up 85 percent of the CPU, and today we took him out, we had yesterday seized blasting Trojans, mood today also, did not expect to encounter Bitcoin mining machine, I really the angry, blame me not mercy surface Ha, ha ha ha

1, find the directory where the process, several exe, dll there is a bunch of garbage, delete, yeah mom, deleted can not afford, thus, stop the process and then delete, I hua, immediately started the process, good MD arrogant ah! My violent temper, visually there is a regular startup script, or create a service, linux Similarly, find a circle did not find the server has such a plan, go look at the service, the service has not found inside the name related content .

2, I believe that at this moment, there are a lot of big brother left his seat, walked out of the office quietly lit a cigarette, spitting smoke ring. . . . Unfortunately, I do not smoke, ha ha ha

Xiao Bian is a poor force, simply can not afford to smoke, ha ha ha, only silently drink water.

3, after a series of operations show, finally get, the principle is the service to deal with him, the process can not jump to the service, but you delete exe files when he will be prompted, "XXX can not be deleted, open your XXX" this little trick that I could deceive maintained Oil Stick, of course, the "brother" of this title is not in vain, and there are other ways, windows have logs Oh, stop the process will be recorded in the log, not the specific detail of Kazakhstan

4, stop the service, to kill the process, delete files, and so far is the time to relax

5、爆料,说了今天必须要给他爆料出来,我这个人就这样,别惹我,上篇文章我也是找到了对方的IP和对方的非法小网站,我不想把他爆出来,已经是给他面子,今天咱们还是保证一个原则:不要主动惹麻烦,废话不多说,走起~~~

这个不用我多少吧,当然了,国产东西也不错,比如:人民币,我就很喜欢,哈哈哈

知道了真面目还不够,把程序也给大家爆出来,不然对不起大家的观看,哈哈哈

大家看见没,这个狗东西隐藏的还挺深,看服务名字,根本看不出来,这些东西爆出来我感觉还不够,虽然具体的IP不能分享给大家,再来一波那就,我访问他的官网,差点没给我气死!

。。。还他么开源,这不是霍霍人吗!无奈啊

 

 

 

 

 

 

 

 

 

 

houzhanwublog
发布了69 篇原创文章 · 获赞 17 · 访问量 8万+
他的留言板 关注

Guess you like

Origin blog.csdn.net/qq_27404929/article/details/103972331
Recommended
The sixth meeting of openKylin Community Ecology Committee was successfully held
Alibaba Cloud officially releases Tongyi Qianwen 2.5
Python 3.13 releases first Beta: experimental free-threading mode and JIT, improved interactive interpreter
Stack Overflow used my code to train large AI models and banned my account.
Pop!_OS’s COSMIC desktop completes App Store listing
Report: Django is still the first choice for 74% of developers
"Internet Investment and Financing Operation in the First Quarter of 2024" Research Report
15 years ago, he was on the "FFmpeg pillar of shame", and today he still has to thank us - Tencent QQPlayer avenges its shame?
Ranking
Python handwritten digit recognition, the corresponding mathematical formulas and Detailed procedures
Der M-Chip-Mac implementiert mehrere Android-Emulatoren
CentOS 명령줄 모드에서 화면이 항상 켜져 있도록 설정 ---- 예상한 효과를 얻지 못했습니다.
Teach you step by step how to use GDB to debug programs: a comprehensive guide from entry to mastery
python3 pip ipython installation
A lot of python crawler source code sharing -- talk about the little thing about python crawler
Agile Sprint in Alpha Stage (7)
Access URL in Unity
FunctoinDemo form
MS SQL common SQL statements (6): create, modify, delete triggers and other operations sq
Daily
More
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)

Code World

© 2018 codetd.com