azednet

Registered
Feb 5, 2013
4
0
1
cPanel Access Level
Root Administrator
hello,

in process manager i found this command:

/bin/ps -ewwo pid,uid,user,nice,pmem,pcpu,command

with cpu more than 46.0%

how can i stop this command?

thanks
 

Infopro

Well-Known Member
May 20, 2003
17,075
524
613
Pennsylvania
cPanel Access Level
Root Administrator
Twitter
You might want to hire a security expert to take a closer look at your system.
Sys Admin Services | cPanel App Catalog


There are links beside each item in Process Manager titled (Kill) that would kill this I think. But my guess is, not for long. If there's a owner name listed there with a valid account on your server, I think I would suspend it.
 

JaredR.

Well-Known Member
Feb 25, 2010
1,834
27
143
Houston, TX
cPanel Access Level
Root Administrator
Server security is ultimately the responsibility of the server admin. The only security support we provide is to determine if a cPanel component allowed a security problem to happen.

If you suspect a security problem on your server, you really need to hire a security admin as soon as possible to determine the extent of the problem and advise you on the best way to mitigate it. We have a list of companies that offer security admin services in our application catalog here:

cPanel App Catalog

If your server is root compromised, the only way to be sure to get rid of the compromise is to format the hard drive, reinstall the operating system and cPanel, and restore your accounts from backups that were made before the compromise happened.