Auto killing process with specific command line?
Since the latest WordPress vulnerability was disclosed, we've seen a lot of infected websites.
LFD often reports that a suspicious process called '[stealth]' is running, and this is indeed malware running on the server.
Is there any way to auto kill this exact command line? If anything runs and displays as [stealth], just kill it immediately?
-
There's nothing within cPanel/WHM that would do this but I am sure that you'd be able to find some great bash script tutorials/examples that detail how to create something like this. 0 -
I use this 2 command ps -ef | grep stealth ls -l /proc/1756392/exe0
Please sign in to leave a comment.
Comments
2 comments