Script bash: Datos de tu servidor

Script bash: Datos de tu servidor.

Vemos un script bash que nos aporta datos importantes de nuestro servidor o sistema.

Simple y conciso, vamos al grano.

Instalando…

yun install nmap htop

1	yun install nmap htop

Una vez finalizada la instalación, creamos el script bash.

nano datos-server.sh

1	nano datos-server.sh

Copia y pega lo siguiente:

    #!/bin/bash
    date;
    echo "uptime:"
    uptime
    echo "Currently connected:"
    w
    echo "--------------------"
    echo "Last logins:"
    last -a |head -3
    echo "--------------------"
    echo "Disk and memory usage:"
    df -h | xargs | awk '{print "Free/total disk: " $11 " / " $9}'
    free -m | xargs | awk '{print "Free/total memory: " $17 " / " $8 " MB"}'
    echo "--------------------"
    start_log=`head -1 /var/log/messages |cut -c 1-12`
    oom=`grep -ci kill /var/log/messages`
    echo -n "OOM errors since $start_log :" $oom
    echo ""
    echo "--------------------"
    echo "Utilization and most expensive processes:"
    top -b |head -3
    echo
    top -b |head -10 |tail -4
    echo "--------------------"
    echo "Open TCP ports:"
    nmap -p- -T4 127.0.0.1
    echo "--------------------"
    echo "Current connections:"
    ss -s
    echo "--------------------"
    echo "processes:"
    ps auxf --width=200
    echo "--------------------"
    echo "vmstat:"
    vmstat 1 5

#!/bin/bash

date;

echo "uptime:"

uptime

echo "Currently connected:"

echo "--------------------"

echo "Last logins:"

last -a |head -3

echo "--------------------"

echo "Disk and memory usage:"

df -h | xargs | awk '{print "Free/total disk: " $11 " / " $9}'

free -m | xargs | awk '{print "Free/total memory: " $17 " / " $8 " MB"}'

echo "--------------------"

start_log=`head -1 /var/log/messages |cut -c 1-12`

oom=`grep -ci kill /var/log/messages`

echo -n "OOM errors since $start_log :" $oom

echo ""

echo "--------------------"

echo "Utilization and most expensive processes:"

top -b |head -3

echo

top -b |head -10 |tail -4

echo "--------------------"

echo "Open TCP ports:"

nmap -p- -T4 127.0.0.1

echo "--------------------"

echo "Current connections:"

ss -s

echo "--------------------"

echo "processes:"

ps auxf --width=200

echo "--------------------"

echo "vmstat:"

vmstat 1 5

Guarda y cierra el archivo.

Lo ejecutaremos con…

bash datos-server.sh

1	bash datos-server.sh

ejemplo de salida real…

vie jun 29 20:50:46 CEST 2018
uptime:
 20:50:46 up 3 days,  1:56,  1 user,  load average: 0,08, 0,07, 0,12
Currently connected:
 20:50:46 up 3 days,  1:56,  1 user,  load average: 0,08, 0,07, 0,12
USER     TTY      FROM             LOGIN@   IDLE   JCPU   PCPU WHAT
root     pts/0    31.31.99.70      20:39    6.00s  0.07s  0.00s w
--------------------
Last logins:
root     pts/0        Fri Jun 29 20:39   still logged in    31.31.99.70
root     pts/0        Fri Jun 29 07:50 - 09:21  (01:31)     31.31.99.70
root     pts/0        Thu Jun 28 06:42 - 12:28  (05:45)     31.31.118.32
--------------------
Disk and memory usage:
Free/total disk: 859G / 916G
Free/total memory: 1023 / 15855 MB
--------------------
OOM errors since Jun 24 03:19 : 34
--------------------
Utilization and most expensive processes:
top - 20:50:47 up 3 days,  1:56,  1 user,  load average: 0,08, 0,07, 0,12
Tasks: 178 total,   1 running, 177 sleeping,   0 stopped,   0 zombie
%Cpu(s):  0,0 us,  0,8 sy,  0,0 ni, 99,2 id,  0,0 wa,  0,0 hi,  0,0 si,  0,0 st

  PID USER      PR  NI    VIRT    RES    SHR S  %CPU %MEM     TIME+ COMMAND
25905 root      20   0  161992   2168   1520 R   6,2  0,0   0:00.01 top
    1 root      20   0  191428   4396   2600 S   0,0  0,0   1:18.22 systemd
    2 root      20   0       0      0      0 S   0,0  0,0   0:00.02 kthreadd
--------------------
Open TCP ports:

Starting Nmap 6.40 ( http://nmap.org ) at 2018-06-29 20:50 CEST
Nmap scan report for 62-210-141-204.rev.poneytelecom.eu (127.0.0.1)
Host is up (0.000010s latency).
Not shown: 65511 closed ports
PORT      STATE SERVICE
XX/tcp    open  ftp
XX/tcp    open  ssh
XX/tcp    open  smtp
XX/tcp    open  domain
XXX/tcp   open  pop3pw
XXX/tcp   open  pop3
XXX/tcp   open  rpcbind
XXX/tcp   open  imap
XXX/tcp   open  smtps
XXX/tcp   open  submission
XXX/tcp   open  spamassassin
XXX/tcp   open  rndc
XXX/tcp   open  imaps
XXX/tcp   open  pop3s
XXXX/tcp  open  ppp
XXXX/tcp  open  mysql
XXXX/tcp  open  sieve
XXXX/tcp  open  empowerid
XXXX/tcp  open  unknown
XXXX/tcp  open  https-alt
XXXX/tcp  open  cddbp-alt
XXXX/tcp open  unknown
XXXXX/tcp open  netbus
XXXXX/tcp open  unknown

Nmap done: 1 IP address (1 host up) scanned in 1.22 seconds
--------------------
Current connections:
Total: 398 (kernel 1475)
TCP:   70 (estab 8, closed 19, orphaned 1, synrecv 0, timewait 17/0), ports 0

Transport Total     IP        IPv6
*	  1475      -         -        
RAW	  1         0         1        
UDP	  10        6         4        
TCP	  51        32        19       
INET	  62        38        24       
FRAG	  0         0         0        

--------------------
processes:
USER       PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root         2  0.0  0.0      0     0 ?        S    jun26   0:00 [kthreadd]
root         3  0.0  0.0      0     0 ?        S    jun26   0:02  \_ [ksoftirqd/0]
root         5  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/0:0H]
root         7  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [migration/0]
root         8  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [rcu_bh]
root         9  0.0  0.0      0     0 ?        S    jun26   3:14  \_ [rcu_sched]
root        10  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [lru-add-drain]
root        11  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/0]
root        12  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/1]
root        13  0.0  0.0      0     0 ?        S    jun26   0:01  \_ [migration/1]
root        14  0.0  0.0      0     0 ?        S    jun26   0:03  \_ [ksoftirqd/1]
root        16  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/1:0H]
root        17  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/2]
root        18  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [migration/2]
root        19  0.0  0.0      0     0 ?        S    jun26   0:01  \_ [ksoftirqd/2]
root        21  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/2:0H]
root        22  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/3]
root        23  0.0  0.0      0     0 ?        S    jun26   0:01  \_ [migration/3]
root        24  0.0  0.0      0     0 ?        S    jun26   0:04  \_ [ksoftirqd/3]
root        26  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/3:0H]
root        27  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/4]
root        28  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [migration/4]
root        29  0.0  0.0      0     0 ?        S    jun26   0:01  \_ [ksoftirqd/4]
root        31  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/4:0H]
root        32  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/5]
root        33  0.0  0.0      0     0 ?        S    jun26   0:01  \_ [migration/5]
root        34  0.0  0.0      0     0 ?        S    jun26   0:03  \_ [ksoftirqd/5]
root        36  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/5:0H]
root        37  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/6]
root        38  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [migration/6]
root        39  0.0  0.0      0     0 ?        S    jun26   0:01  \_ [ksoftirqd/6]
root        41  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/6:0H]
root        42  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [watchdog/7]
root        43  0.0  0.0      0     0 ?        S    jun26   0:01  \_ [migration/7]
root        44  0.0  0.0      0     0 ?        S    jun26   0:03  \_ [ksoftirqd/7]
root        46  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/7:0H]
root        48  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [kdevtmpfs]
root        49  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [netns]
root        50  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [khungtaskd]
root        51  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [writeback]
root        52  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kintegrityd]
root        53  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [bioset]
root        54  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kblockd]
root        55  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [md]
root        56  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [edac-poller]
root        63  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [kswapd0]
root        64  0.0  0.0      0     0 ?        SN   jun26   0:00  \_ [ksmd]
root        65  0.0  0.0      0     0 ?        SN   jun26   0:00  \_ [khugepaged]
root        66  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [crypto]
root        74  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kthrotld]
root        77  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kmpath_rdacd]
root        78  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kaluad]
root        80  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kpsmoused]
root        81  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [ipv6_addrconf]
root        94  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [deferwq]
root        95  0.0  0.0      0     0 ?        S    jun26   0:03  \_ [kworker/2:1]
root        96  0.0  0.0      0     0 ?        S    jun26   0:03  \_ [kworker/5:1]
root       124  0.0  0.0      0     0 ?        S    jun26   0:03  \_ [kworker/3:1]
root       131  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [kauditd]
root       151  0.0  0.0      0     0 ?        S    jun26   0:04  \_ [kworker/4:1]
root       282  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [scsi_eh_0]
root       283  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [scsi_tmf_0]
root       284  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [fw_event_mpt2sa]
root       285  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [ata_sff]
root       298  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [scsi_eh_1]
root       299  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [scsi_tmf_1]
root       300  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [scsi_eh_2]
root       301  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [scsi_tmf_2]
root       302  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [scsi_eh_3]
root       303  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [scsi_tmf_3]
root       304  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [scsi_eh_4]
root       305  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [scsi_tmf_4]
root       306  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [scsi_eh_5]
root       307  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [scsi_tmf_5]
root       308  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [scsi_eh_6]
root       309  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [scsi_tmf_6]
root       312  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [ttm_swap]
root       318  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [poll_mpt2sas0_s]
root       337  0.0  0.0      0     0 ?        S    jun26   0:25  \_ [jbd2/sda2-8]
root       338  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [ext4-rsv-conver]
root       514  0.0  0.0      0     0 ?        SN   jun26   0:00  \_ [kipmi0]
root       529  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kvm-irqfd-clean]
root       550  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/0:1H]
root       554  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [jbd2/sda1-8]
root       555  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [ext4-rsv-conver]
root       653  0.0  0.0      0     0 ?        S    jun26   0:00  \_ [kworker/3:2]
root      3286  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/4:1H]
root      3405  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/6:1H]
root      3500  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/2:1H]
root      3586  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/5:1H]
root      3812  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/7:1H]
root      3870  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/1:1H]
root      4292  0.0  0.0      0     0 ?        S<   jun26   0:00  \_ [kworker/3:1H]
root     12969  0.0  0.0      0     0 ?        S    jun27   0:00  \_ [kworker/6:1]
root     21948  0.0  0.0      0     0 ?        S    jun28   0:00  \_ [kworker/5:0]
root     23785  0.0  0.0      0     0 ?        S    jun28   0:02  \_ [kworker/0:0]
root     23807  0.0  0.0      0     0 ?        S    jun28   0:01  \_ [kworker/7:2]
root     11270  0.0  0.0      0     0 ?        S    jun28   0:02  \_ [kworker/6:2]
root      2977  0.0  0.0      0     0 ?        S    jun28   0:00  \_ [kworker/1:0]
root      5643  0.0  0.0      0     0 ?        S    03:36   0:00  \_ [kworker/4:0]
root      4675  0.0  0.0      0     0 ?        S    07:36   0:00  \_ [kworker/0:2]
root      9818  0.0  0.0      0     0 ?        S    07:53   0:00  \_ [kworker/2:2]
root      9842  0.0  0.0      0     0 ?        S    07:53   0:00  \_ [kworker/1:1]
root     21949  0.0  0.0      0     0 ?        S    12:36   0:00  \_ [kworker/7:1]
root     31915  0.0  0.0      0     0 ?        S    19:15   0:00  \_ [kworker/u16:1]
root     14871  0.0  0.0      0     0 ?        S    20:10   0:00  \_ [kworker/u16:0]
root     24436  0.0  0.0      0     0 ?        S    20:45   0:00  \_ [kworker/u16:2]
root         1  0.0  0.0 191428  4396 ?        Ss   jun26   1:18 /usr/lib/systemd/systemd --switched-root --system --deserialize 22
root       407  0.1  0.4 137908 76940 ?        Ss   jun26   7:36 /usr/lib/systemd/systemd-journald
root       438  0.0  0.0 116596  1256 ?        Ss   jun26   0:00 /usr/sbin/lvmetad -f
root       446  0.0  0.0  44936  2480 ?        Ss   jun26   0:00 /usr/lib/systemd/systemd-udevd
root       572  0.0  0.0  55508   892 ?        S<sl jun26   0:01 /sbin/auditd
root       599  0.0  0.0  26468  1812 ?        Ss   jun26   0:11 /usr/lib/systemd/systemd-logind
rpc        601  0.0  0.0  69220  1060 ?        Ss   jun26   0:00 /sbin/rpcbind -w
root       603  0.0  0.0  21656  1248 ?        Ss   jun26   0:18 /usr/sbin/irqbalance --foreground
libstor+   604  0.0  0.0   8576   816 ?        Ss   jun26   0:00 /usr/bin/lsmd -d
root       607  0.0  0.0 223520  5492 ?        Ss   jun26   0:00 /usr/sbin/abrtd -d -s
root       609  0.0  0.0 221232  4724 ?        Ss   jun26   0:08 /usr/bin/abrt-watch-log -F BUG: WARNING: at WARNING: CPU: INFO: possible recursive locking detected ernel BUG at list_del corruption li
polkitd    612  0.0  0.0 541288 11976 ?        Ssl  jun26   0:02 /usr/lib/polkit-1/polkitd --no-debug
dbus       614  0.0  0.0  60304  2540 ?        Ss   jun26   0:29 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation
chrony     628  0.0  0.0 117752  1836 ?        S    jun26   0:00 /usr/sbin/chronyd
root       633  0.0  0.0  13216   812 ?        Ss   jun26   0:55 /sbin/rngd -f
root       635  0.0  0.0  24432  2256 ?        Ss   jun26   0:00 /usr/sbin/smartd -n -q never
root       655  0.0  0.0  25904   948 ?        Ss   jun26   0:00 /usr/sbin/atd -f
root       656  0.0  0.0 126316  1640 ?        Ss   jun26   0:00 /usr/sbin/crond -n
root       666  0.0  0.1 357980 29000 ?        Ssl  jun26   0:01 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid
root       671  0.0  0.0 110088   856 tty1     Ss+  jun26   0:00 /sbin/agetty --noclear tty1 linux
root       675  0.0  0.0 480608  9368 ?        Ssl  jun26   0:10 /usr/sbin/NetworkManager --no-daemon
root      1035  0.0  0.1 573816 17204 ?        Ssl  jun26   0:20 /usr/bin/python -Es /usr/sbin/tuned -l -P
postfix   1036  0.0  0.0 485120  5808 ?        Ssl  jun26   0:19 /usr/lib64/plesk-9.0/psa-pc-remote -p inet:12768@127.0.0.1 -t 7210   -P /run/psa-pc-remote.pid -u postfix -g popuser -n
root      1037  0.0  0.1 716800 22364 ?        Ss   jun26   0:29 php-fpm: master process (/opt/plesk/php/7.2/etc/php-fpm.conf)
solol    25864  4.1  0.2 731800 42496 ?        S    20:50   0:00  \_ php-fpm: pool sololinux.es
root      1039  0.0  0.0 1048384 7680 ?        Ssl  jun26   2:33 /usr/sbin/sw-collectd -f
root      1041  0.0  0.0 112812  4320 ?        Ss   jun26   0:00 /usr/sbin/sshd -D
root     22669  0.0  0.0 173980  6516 ?        Ss   20:39   0:00  \_ sshd: root@pts/0
root     22717  0.0  0.0 118824  3312 pts/0    Ss   20:39   0:00      \_ -bash
root     25885  0.0  0.0 113176  1432 pts/0    S+   20:50   0:00          \_ bash server.sh
root     25912  0.0  0.0 155628  2204 pts/0    R+   20:50   0:00              \_ ps auxf --width=200
root      1042  0.0  0.0  27164  1080 ?        Ss   jun26   0:00 /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid
memcach+  1046  0.0  0.0 443088  3952 ?        Ssl  jun26   0:29 /usr/bin/memcached -u memcached -p 11211 -m 264 -c 1524 -l 127.0.0.1
root      1047  0.0  0.2 712488 42864 ?        Ssl  jun26   3:48 /usr/sbin/rsyslogd -n
root      1048  0.0  0.0  16464  1788 ?        Ss   jun26   0:00 /usr/sbin/dovecot -F
dovecot   2616  0.0  0.0   9996  1204 ?        S    jun26   0:00  \_ dovecot/anvil
root      2617  0.0  0.0  10128  1404 ?        S    jun26   0:00  \_ dovecot/log
root      2632  0.0  0.0  19500  2580 ?        S    jun26   0:00  \_ dovecot/config
dovecot  21239  0.0  0.0   9996  1208 ?        S    jun26   0:00  \_ dovecot/stats
root      1049  0.1  0.1 691576 32224 ?        Ssl  jun26   6:49 /usr/bin/dockerd
root      2656  0.0  0.0 801064  7816 ?        Ssl  jun26   3:44  \_ docker-containerd -l unix:///var/run/docker/libcontainerd/docker-containerd.sock --metrics-interval=0 --start-timeout 2m --state-di
root      1073  0.0  0.2 501616 41140 ?        Ss   jun26   0:02 sw-engine-fpm: master process (/etc/sw-engine/sw-engine-fpm.conf)
named     1100  0.1  0.9 307584 154496 ?       Ssl  jun26   5:59 /usr/sbin/named -u named -t /var/named/chroot -c /etc/named.conf -u named -n 2
root      1202  0.0  0.0  52436  1656 ?        Ss   jun26   0:00 sw-cp-server: master process /usr/sbin/sw-cp-serverd -c /etc/sw-cp-server/config
sw-cp-s+  1203  0.0  0.0  56572  5568 ?        S    jun26   0:05  \_ sw-cp-server: worker process
root      1385  0.2  0.1 1775240 21264 ?       Sl   jun26  10:35 /usr/bin/python /usr/bin/fail2ban-server -s /var/run/fail2ban/fail2ban.sock -p /var/run/fail2ban/fail2ban.pid -x -b
mysql     2349  0.3  2.8 2949248 467944 ?      Ssl  jun26  16:54 /usr/sbin/mysqld
root      2571  0.0  0.0  92372  2288 ?        Ss   jun26   0:41 /usr/libexec/postfix/master -w
postfix   2576  0.0  0.0  92660  4360 ?        S    jun26   0:32  \_ qmgr -l -t fifo -u
postfix   3553  0.0  0.0  92488  4180 ?        S    jun26   0:00  \_ tlsmgr -l -t unix -u
postfix  16075  0.0  0.0  92476  4084 ?        S    20:14   0:00  \_ pickup -l -t fifo -u
postfix  25296  0.0  0.0  92468  4080 ?        S    20:48   0:00  \_ anvil -l -t unix -u
psaadm    2610  0.0  0.0 321852 13140 ?        S    jun26   0:00 sw-engine-kv
drweb     2868  0.0  2.3 390008 383312 ?       Ss   jun26   0:25 /opt/drweb/drwebd.real --foreground=yes
drweb     5750  0.0  2.3 390008 380936 ?       S    03:36   0:01  \_ /opt/drweb/drwebd.real --foreground=yes
root      2934  0.0  0.1 366384 21052 ?        S    jun26   0:03 /usr/bin/sw-engine -c /usr/local/psa/admin/conf/php.ini /usr/lib64/plesk-9.0/psa-health-monitor-notification.php
root      5647  0.0  0.3 273280 59824 ?        Ss   03:36   0:09 /usr/bin/spamd --pidfile /var/run/spamd.pid --create-prefs --daemonize --helper-home-dir=/var/qmail --max-children=5 --nouser-config --
popuser   5649  0.0  0.3 276648 63152 ?        S    03:36   0:01  \_ spamd child
popuser   5650  0.0  0.3 273280 57372 ?        S    03:36   0:00  \_ spamd child
root      9925  0.0  0.0  24352  1532 ?        Ss   07:53   0:00 nginx: master process /usr/sbin/nginx
nginx     9926  0.0  0.0  30072  7476 ?        S    07:53   0:39  \_ nginx: worker process
root      9943  0.0  0.0 258788  9992 ?        Ss   07:53   0:01 /usr/sbin/httpd -DFOREGROUND
apache    9945  0.0  0.0 259444  4980 ?        S    07:53   0:00  \_ /usr/sbin/httpd -DFOREGROUND
apache    9946  0.0  0.0 260756  5092 ?        S    07:53   0:00  \_ /usr/sbin/httpd -DFOREGROUND
apache    9947  0.0  0.1 2186100 17932 ?       Sl   07:53   0:25  \_ /usr/sbin/httpd -DFOREGROUND
apache    9948  0.0  0.1 2188176 19964 ?       Sl   07:53   0:26  \_ /usr/sbin/httpd -DFOREGROUND
apache    9969  0.0  0.1 2188176 19452 ?       Sl   07:53   0:31  \_ /usr/sbin/httpd -DFOREGROUND
apache   10303  0.0  0.1 2186100 19756 ?       Sl   07:54   0:34  \_ /usr/sbin/httpd -DFOREGROUND
root     10133  0.1  0.0 113564  1884 ?        S    07:53   0:58 /bin/sh /usr/local/ddos/ddos.sh -l
root     25882  0.0  0.0 107948   348 ?        S    20:50   0:00  \_ sleep 5
--------------------
vmstat:
procs -----------memory---------- ---swap-- -----io---- -system-- ------cpu-----
 r  b   swpd   free   buff  cache   si   so    bi    bo   in   cs us sy id wa st
 0  0      0 8856020 167084 5741616    0    0     4    12    2    5  1  0 99  0  0
 0  0      0 8855692 167088 5741592    0    0     0    52  631  554  0  1 99  0  0
 0  0      0 8852960 167088 5741592    0    0     0    52  750  883  1  1 98  0  0
 0  0      0 8852960 167088 5741592    0    0     0   804  399  368  0  0 100  0  0
 0  0      0 8852828 167088 5741672    0    0     0     8  948  999  0  0 100  0  0

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

vie jun 29 20:50:46 CEST 2018

uptime:

20:50:46 up 3 days, 1:56, 1 user, load average: 0,08, 0,07, 0,12

Currently connected:

20:50:46 up 3 days, 1:56, 1 user, load average: 0,08, 0,07, 0,12

USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT

root pts/0 31.31.99.70 20:39 6.00s 0.07s 0.00s w

--------------------

Last logins:

root pts/0 Fri Jun 29 20:39 still logged in 31.31.99.70

root pts/0 Fri Jun 29 07:50 - 09:21 (01:31) 31.31.99.70

root pts/0 Thu Jun 28 06:42 - 12:28 (05:45) 31.31.118.32

--------------------

Disk and memory usage:

Free/total disk: 859G / 916G

Free/total memory: 1023 / 15855 MB

--------------------

OOM errors since Jun 24 03:19 : 34

--------------------

Utilization and most expensive processes:

top - 20:50:47 up 3 days, 1:56, 1 user, load average: 0,08, 0,07, 0,12

Tasks: 178 total, 1 running, 177 sleeping, 0 stopped, 0 zombie

%Cpu(s): 0,0 us, 0,8 sy, 0,0 ni, 99,2 id, 0,0 wa, 0,0 hi, 0,0 si, 0,0 st

PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND

25905 root 20 0 161992 2168 1520 R 6,2 0,0 0:00.01 top

1 root 20 0 191428 4396 2600 S 0,0 0,0 1:18.22 systemd

2 root 20 0 0 0 0 S 0,0 0,0 0:00.02 kthreadd

--------------------

Open TCP ports:

Starting Nmap 6.40 ( http://nmap.org ) at 2018-06-29 20:50 CEST

Nmap scan report for 62-210-141-204.rev.poneytelecom.eu (127.0.0.1)

Host is up (0.000010s latency).

Not shown: 65511 closed ports

PORT STATE SERVICE

XX/tcp open ftp

XX/tcp open ssh

XX/tcp open smtp

XX/tcp open domain

XXX/tcp open pop3pw

XXX/tcp open pop3

XXX/tcp open rpcbind

XXX/tcp open imap

XXX/tcp open smtps

XXX/tcp open submission

XXX/tcp open spamassassin

XXX/tcp open rndc

XXX/tcp open imaps

XXX/tcp open pop3s

XXXX/tcp open ppp

XXXX/tcp open mysql

XXXX/tcp open sieve

XXXX/tcp open empowerid

XXXX/tcp open unknown

XXXX/tcp open https-alt

XXXX/tcp open cddbp-alt

XXXX/tcp open unknown

XXXXX/tcp open netbus

XXXXX/tcp open unknown

Nmap done: 1 IP address (1 host up) scanned in 1.22 seconds

--------------------

Current connections:

Total: 398 (kernel 1475)

TCP: 70 (estab 8, closed 19, orphaned 1, synrecv 0, timewait 17/0), ports 0

Transport Total IP IPv6

* 1475 - -

RAW 1 0 1

UDP 10 6 4

TCP 51 32 19

INET 62 38 24

FRAG 0 0 0

--------------------

processes:

USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND

root 2 0.0 0.0 0 0 ? S jun26 0:00 [kthreadd]

root 3 0.0 0.0 0 0 ? S jun26 0:02 \_ [ksoftirqd/0]

root 5 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/0:0H]

root 7 0.0 0.0 0 0 ? S jun26 0:00 \_ [migration/0]

root 8 0.0 0.0 0 0 ? S jun26 0:00 \_ [rcu_bh]

root 9 0.0 0.0 0 0 ? S jun26 3:14 \_ [rcu_sched]

root 10 0.0 0.0 0 0 ? S< jun26 0:00 \_ [lru-add-drain]

root 11 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/0]

root 12 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/1]

root 13 0.0 0.0 0 0 ? S jun26 0:01 \_ [migration/1]

root 14 0.0 0.0 0 0 ? S jun26 0:03 \_ [ksoftirqd/1]

root 16 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/1:0H]

root 17 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/2]

root 18 0.0 0.0 0 0 ? S jun26 0:00 \_ [migration/2]

root 19 0.0 0.0 0 0 ? S jun26 0:01 \_ [ksoftirqd/2]

root 21 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/2:0H]

root 22 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/3]

root 23 0.0 0.0 0 0 ? S jun26 0:01 \_ [migration/3]

root 24 0.0 0.0 0 0 ? S jun26 0:04 \_ [ksoftirqd/3]

root 26 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/3:0H]

root 27 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/4]

root 28 0.0 0.0 0 0 ? S jun26 0:00 \_ [migration/4]

root 29 0.0 0.0 0 0 ? S jun26 0:01 \_ [ksoftirqd/4]

root 31 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/4:0H]

root 32 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/5]

root 33 0.0 0.0 0 0 ? S jun26 0:01 \_ [migration/5]

root 34 0.0 0.0 0 0 ? S jun26 0:03 \_ [ksoftirqd/5]

root 36 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/5:0H]

root 37 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/6]

root 38 0.0 0.0 0 0 ? S jun26 0:00 \_ [migration/6]

root 39 0.0 0.0 0 0 ? S jun26 0:01 \_ [ksoftirqd/6]

root 41 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/6:0H]

root 42 0.0 0.0 0 0 ? S jun26 0:00 \_ [watchdog/7]

root 43 0.0 0.0 0 0 ? S jun26 0:01 \_ [migration/7]

root 44 0.0 0.0 0 0 ? S jun26 0:03 \_ [ksoftirqd/7]

root 46 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/7:0H]

root 48 0.0 0.0 0 0 ? S jun26 0:00 \_ [kdevtmpfs]

root 49 0.0 0.0 0 0 ? S< jun26 0:00 \_ [netns]

root 50 0.0 0.0 0 0 ? S jun26 0:00 \_ [khungtaskd]

root 51 0.0 0.0 0 0 ? S< jun26 0:00 \_ [writeback]

root 52 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kintegrityd]

root 53 0.0 0.0 0 0 ? S< jun26 0:00 \_ [bioset]

root 54 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kblockd]

root 55 0.0 0.0 0 0 ? S< jun26 0:00 \_ [md]

root 56 0.0 0.0 0 0 ? S< jun26 0:00 \_ [edac-poller]

root 63 0.0 0.0 0 0 ? S jun26 0:00 \_ [kswapd0]

root 64 0.0 0.0 0 0 ? SN jun26 0:00 \_ [ksmd]

root 65 0.0 0.0 0 0 ? SN jun26 0:00 \_ [khugepaged]

root 66 0.0 0.0 0 0 ? S< jun26 0:00 \_ [crypto]

root 74 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kthrotld]

root 77 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kmpath_rdacd]

root 78 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kaluad]

root 80 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kpsmoused]

root 81 0.0 0.0 0 0 ? S< jun26 0:00 \_ [ipv6_addrconf]

root 94 0.0 0.0 0 0 ? S< jun26 0:00 \_ [deferwq]

root 95 0.0 0.0 0 0 ? S jun26 0:03 \_ [kworker/2:1]

root 96 0.0 0.0 0 0 ? S jun26 0:03 \_ [kworker/5:1]

root 124 0.0 0.0 0 0 ? S jun26 0:03 \_ [kworker/3:1]

root 131 0.0 0.0 0 0 ? S jun26 0:00 \_ [kauditd]

root 151 0.0 0.0 0 0 ? S jun26 0:04 \_ [kworker/4:1]

root 282 0.0 0.0 0 0 ? S jun26 0:00 \_ [scsi_eh_0]

root 283 0.0 0.0 0 0 ? S< jun26 0:00 \_ [scsi_tmf_0]

root 284 0.0 0.0 0 0 ? S< jun26 0:00 \_ [fw_event_mpt2sa]

root 285 0.0 0.0 0 0 ? S< jun26 0:00 \_ [ata_sff]

root 298 0.0 0.0 0 0 ? S jun26 0:00 \_ [scsi_eh_1]

root 299 0.0 0.0 0 0 ? S< jun26 0:00 \_ [scsi_tmf_1]

root 300 0.0 0.0 0 0 ? S jun26 0:00 \_ [scsi_eh_2]

root 301 0.0 0.0 0 0 ? S< jun26 0:00 \_ [scsi_tmf_2]

root 302 0.0 0.0 0 0 ? S jun26 0:00 \_ [scsi_eh_3]

root 303 0.0 0.0 0 0 ? S< jun26 0:00 \_ [scsi_tmf_3]

root 304 0.0 0.0 0 0 ? S jun26 0:00 \_ [scsi_eh_4]

root 305 0.0 0.0 0 0 ? S< jun26 0:00 \_ [scsi_tmf_4]

root 306 0.0 0.0 0 0 ? S jun26 0:00 \_ [scsi_eh_5]

root 307 0.0 0.0 0 0 ? S< jun26 0:00 \_ [scsi_tmf_5]

root 308 0.0 0.0 0 0 ? S jun26 0:00 \_ [scsi_eh_6]

root 309 0.0 0.0 0 0 ? S< jun26 0:00 \_ [scsi_tmf_6]

root 312 0.0 0.0 0 0 ? S< jun26 0:00 \_ [ttm_swap]

root 318 0.0 0.0 0 0 ? S< jun26 0:00 \_ [poll_mpt2sas0_s]

root 337 0.0 0.0 0 0 ? S jun26 0:25 \_ [jbd2/sda2-8]

root 338 0.0 0.0 0 0 ? S< jun26 0:00 \_ [ext4-rsv-conver]

root 514 0.0 0.0 0 0 ? SN jun26 0:00 \_ [kipmi0]

root 529 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kvm-irqfd-clean]

root 550 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/0:1H]

root 554 0.0 0.0 0 0 ? S jun26 0:00 \_ [jbd2/sda1-8]

root 555 0.0 0.0 0 0 ? S< jun26 0:00 \_ [ext4-rsv-conver]

root 653 0.0 0.0 0 0 ? S jun26 0:00 \_ [kworker/3:2]

root 3286 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/4:1H]

root 3405 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/6:1H]

root 3500 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/2:1H]

root 3586 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/5:1H]

root 3812 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/7:1H]

root 3870 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/1:1H]

root 4292 0.0 0.0 0 0 ? S< jun26 0:00 \_ [kworker/3:1H]

root 12969 0.0 0.0 0 0 ? S jun27 0:00 \_ [kworker/6:1]

root 21948 0.0 0.0 0 0 ? S jun28 0:00 \_ [kworker/5:0]

root 23785 0.0 0.0 0 0 ? S jun28 0:02 \_ [kworker/0:0]

root 23807 0.0 0.0 0 0 ? S jun28 0:01 \_ [kworker/7:2]

root 11270 0.0 0.0 0 0 ? S jun28 0:02 \_ [kworker/6:2]

root 2977 0.0 0.0 0 0 ? S jun28 0:00 \_ [kworker/1:0]

root 5643 0.0 0.0 0 0 ? S 03:36 0:00 \_ [kworker/4:0]

root 4675 0.0 0.0 0 0 ? S 07:36 0:00 \_ [kworker/0:2]

root 9818 0.0 0.0 0 0 ? S 07:53 0:00 \_ [kworker/2:2]

root 9842 0.0 0.0 0 0 ? S 07:53 0:00 \_ [kworker/1:1]

root 21949 0.0 0.0 0 0 ? S 12:36 0:00 \_ [kworker/7:1]

root 31915 0.0 0.0 0 0 ? S 19:15 0:00 \_ [kworker/u16:1]

root 14871 0.0 0.0 0 0 ? S 20:10 0:00 \_ [kworker/u16:0]

root 24436 0.0 0.0 0 0 ? S 20:45 0:00 \_ [kworker/u16:2]

root 1 0.0 0.0 191428 4396 ? Ss jun26 1:18 /usr/lib/systemd/systemd --switched-root --system --deserialize 22

root 407 0.1 0.4 137908 76940 ? Ss jun26 7:36 /usr/lib/systemd/systemd-journald

root 438 0.0 0.0 116596 1256 ? Ss jun26 0:00 /usr/sbin/lvmetad -f

root 446 0.0 0.0 44936 2480 ? Ss jun26 0:00 /usr/lib/systemd/systemd-udevd

root 572 0.0 0.0 55508 892 ? S<sl jun26 0:01 /sbin/auditd

root 599 0.0 0.0 26468 1812 ? Ss jun26 0:11 /usr/lib/systemd/systemd-logind

rpc 601 0.0 0.0 69220 1060 ? Ss jun26 0:00 /sbin/rpcbind -w

root 603 0.0 0.0 21656 1248 ? Ss jun26 0:18 /usr/sbin/irqbalance --foreground

libstor+ 604 0.0 0.0 8576 816 ? Ss jun26 0:00 /usr/bin/lsmd -d

root 607 0.0 0.0 223520 5492 ? Ss jun26 0:00 /usr/sbin/abrtd -d -s

root 609 0.0 0.0 221232 4724 ? Ss jun26 0:08 /usr/bin/abrt-watch-log -F BUG: WARNING: at WARNING: CPU: INFO: possible recursive locking detected ernel BUG at list_del corruption li

polkitd 612 0.0 0.0 541288 11976 ? Ssl jun26 0:02 /usr/lib/polkit-1/polkitd --no-debug

dbus 614 0.0 0.0 60304 2540 ? Ss jun26 0:29 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation

chrony 628 0.0 0.0 117752 1836 ? S jun26 0:00 /usr/sbin/chronyd

root 633 0.0 0.0 13216 812 ? Ss jun26 0:55 /sbin/rngd -f

root 635 0.0 0.0 24432 2256 ? Ss jun26 0:00 /usr/sbin/smartd -n -q never

root 655 0.0 0.0 25904 948 ? Ss jun26 0:00 /usr/sbin/atd -f

root 656 0.0 0.0 126316 1640 ? Ss jun26 0:00 /usr/sbin/crond -n

root 666 0.0 0.1 357980 29000 ? Ssl jun26 0:01 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid

root 671 0.0 0.0 110088 856 tty1 Ss+ jun26 0:00 /sbin/agetty --noclear tty1 linux

root 675 0.0 0.0 480608 9368 ? Ssl jun26 0:10 /usr/sbin/NetworkManager --no-daemon

root 1035 0.0 0.1 573816 17204 ? Ssl jun26 0:20 /usr/bin/python -Es /usr/sbin/tuned -l -P

postfix 1036 0.0 0.0 485120 5808 ? Ssl jun26 0:19 /usr/lib64/plesk-9.0/psa-pc-remote -p inet:12768@127.0.0.1 -t 7210 -P /run/psa-pc-remote.pid -u postfix -g popuser -n

root 1037 0.0 0.1 716800 22364 ? Ss jun26 0:29 php-fpm: master process (/opt/plesk/php/7.2/etc/php-fpm.conf)

solol 25864 4.1 0.2 731800 42496 ? S 20:50 0:00 \_ php-fpm: pool sololinux.es

root 1039 0.0 0.0 1048384 7680 ? Ssl jun26 2:33 /usr/sbin/sw-collectd -f

root 1041 0.0 0.0 112812 4320 ? Ss jun26 0:00 /usr/sbin/sshd -D

root 22669 0.0 0.0 173980 6516 ? Ss 20:39 0:00 \_ sshd: root@pts/0

root 22717 0.0 0.0 118824 3312 pts/0 Ss 20:39 0:00 \_ -bash

root 25885 0.0 0.0 113176 1432 pts/0 S+ 20:50 0:00 \_ bash server.sh

root 25912 0.0 0.0 155628 2204 pts/0 R+ 20:50 0:00 \_ ps auxf --width=200

root 1042 0.0 0.0 27164 1080 ? Ss jun26 0:00 /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid

memcach+ 1046 0.0 0.0 443088 3952 ? Ssl jun26 0:29 /usr/bin/memcached -u memcached -p 11211 -m 264 -c 1524 -l 127.0.0.1

root 1047 0.0 0.2 712488 42864 ? Ssl jun26 3:48 /usr/sbin/rsyslogd -n

root 1048 0.0 0.0 16464 1788 ? Ss jun26 0:00 /usr/sbin/dovecot -F

dovecot 2616 0.0 0.0 9996 1204 ? S jun26 0:00 \_ dovecot/anvil

root 2617 0.0 0.0 10128 1404 ? S jun26 0:00 \_ dovecot/log

root 2632 0.0 0.0 19500 2580 ? S jun26 0:00 \_ dovecot/config

dovecot 21239 0.0 0.0 9996 1208 ? S jun26 0:00 \_ dovecot/stats

root 1049 0.1 0.1 691576 32224 ? Ssl jun26 6:49 /usr/bin/dockerd

root 2656 0.0 0.0 801064 7816 ? Ssl jun26 3:44 \_ docker-containerd -l unix:///var/run/docker/libcontainerd/docker-containerd.sock --metrics-interval=0 --start-timeout 2m --state-di

root 1073 0.0 0.2 501616 41140 ? Ss jun26 0:02 sw-engine-fpm: master process (/etc/sw-engine/sw-engine-fpm.conf)

named 1100 0.1 0.9 307584 154496 ? Ssl jun26 5:59 /usr/sbin/named -u named -t /var/named/chroot -c /etc/named.conf -u named -n 2

root 1202 0.0 0.0 52436 1656 ? Ss jun26 0:00 sw-cp-server: master process /usr/sbin/sw-cp-serverd -c /etc/sw-cp-server/config

sw-cp-s+ 1203 0.0 0.0 56572 5568 ? S jun26 0:05 \_ sw-cp-server: worker process

root 1385 0.2 0.1 1775240 21264 ? Sl jun26 10:35 /usr/bin/python /usr/bin/fail2ban-server -s /var/run/fail2ban/fail2ban.sock -p /var/run/fail2ban/fail2ban.pid -x -b

mysql 2349 0.3 2.8 2949248 467944 ? Ssl jun26 16:54 /usr/sbin/mysqld

root 2571 0.0 0.0 92372 2288 ? Ss jun26 0:41 /usr/libexec/postfix/master -w

postfix 2576 0.0 0.0 92660 4360 ? S jun26 0:32 \_ qmgr -l -t fifo -u

postfix 3553 0.0 0.0 92488 4180 ? S jun26 0:00 \_ tlsmgr -l -t unix -u

postfix 16075 0.0 0.0 92476 4084 ? S 20:14 0:00 \_ pickup -l -t fifo -u

postfix 25296 0.0 0.0 92468 4080 ? S 20:48 0:00 \_ anvil -l -t unix -u

psaadm 2610 0.0 0.0 321852 13140 ? S jun26 0:00 sw-engine-kv

drweb 2868 0.0 2.3 390008 383312 ? Ss jun26 0:25 /opt/drweb/drwebd.real --foreground=yes

drweb 5750 0.0 2.3 390008 380936 ? S 03:36 0:01 \_ /opt/drweb/drwebd.real --foreground=yes

root 2934 0.0 0.1 366384 21052 ? S jun26 0:03 /usr/bin/sw-engine -c /usr/local/psa/admin/conf/php.ini /usr/lib64/plesk-9.0/psa-health-monitor-notification.php

root 5647 0.0 0.3 273280 59824 ? Ss 03:36 0:09 /usr/bin/spamd --pidfile /var/run/spamd.pid --create-prefs --daemonize --helper-home-dir=/var/qmail --max-children=5 --nouser-config --

popuser 5649 0.0 0.3 276648 63152 ? S 03:36 0:01 \_ spamd child

popuser 5650 0.0 0.3 273280 57372 ? S 03:36 0:00 \_ spamd child

root 9925 0.0 0.0 24352 1532 ? Ss 07:53 0:00 nginx: master process /usr/sbin/nginx

nginx 9926 0.0 0.0 30072 7476 ? S 07:53 0:39 \_ nginx: worker process

root 9943 0.0 0.0 258788 9992 ? Ss 07:53 0:01 /usr/sbin/httpd -DFOREGROUND

apache 9945 0.0 0.0 259444 4980 ? S 07:53 0:00 \_ /usr/sbin/httpd -DFOREGROUND

apache 9946 0.0 0.0 260756 5092 ? S 07:53 0:00 \_ /usr/sbin/httpd -DFOREGROUND

apache 9947 0.0 0.1 2186100 17932 ? Sl 07:53 0:25 \_ /usr/sbin/httpd -DFOREGROUND

apache 9948 0.0 0.1 2188176 19964 ? Sl 07:53 0:26 \_ /usr/sbin/httpd -DFOREGROUND

apache 9969 0.0 0.1 2188176 19452 ? Sl 07:53 0:31 \_ /usr/sbin/httpd -DFOREGROUND

apache 10303 0.0 0.1 2186100 19756 ? Sl 07:54 0:34 \_ /usr/sbin/httpd -DFOREGROUND

root 10133 0.1 0.0 113564 1884 ? S 07:53 0:58 /bin/sh /usr/local/ddos/ddos.sh -l

root 25882 0.0 0.0 107948 348 ? S 20:50 0:00 \_ sleep 5

--------------------

vmstat:

procs -----------memory---------- ---swap-- -----io---- -system-- ------cpu-----

r b swpd free buff cache si so bi bo in cs us sy id wa st

0 0 0 8856020 167084 5741616 0 0 4 12 2 5 1 0 99 0 0

0 0 0 8855692 167088 5741592 0 0 0 52 631 554 0 1 99 0 0

0 0 0 8852960 167088 5741592 0 0 0 52 750 883 1 1 98 0 0

0 0 0 8852960 167088 5741592 0 0 0 804 399 368 0 0 100 0 0

0 0 0 8852828 167088 5741672 0 0 0 8 948 999 0 0 100 0 0

Espero te resulte útil.

Script bash: Datos de tu servidor

Agregar comentario

Cancelar respuesta