Concluído

Professional security to analyze Linux server

I received from the cloud company a report that my server is part of a botnet and is sending unwanted requests to other sites. I need an experienced professional to resolve this situation as soon as possible.

Log send it

Abuse Team - Comvive Servidores SL

2019-03-12 04:21:11

Hi, We have detected a network attack from an IP ( [login to view URL] ) from your network, a computer connected to it is probably infected and being part of a botnet. Please check it and fix it up as soon as possible. Thank you.

/

Saludos, Hemos detectado un ataque desde una ip ( [login to view URL] ) de su red, probablemente el equipo este infectado y este dentro de una botnet. Porfavor revisenlo y solucionenlo en la mayor brevedad posible. Muchas gracias.

The IP [login to view URL] has just been banned by Fail2Ban after

2 attempts against apache-attack.

Domain: [login to view URL] ([login to view URL])

Here are more information about [login to view URL]:

Lines containing IP:[login to view URL] in /furanet/sites/*/web/htdocs/logs/access

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:12:41:30 +0100] "GET /[login to view URL] HTTP/1.1" 200 2821 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:12:41:30 +0100] "POST /[login to view URL] HTTP/1.1" 200 3832 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:12:41:31 +0100] "GET /[login to view URL] HTTP/1.1" 200 2821 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:12:41:31 +0100] "POST /[login to view URL] HTTP/1.1" 200 3830 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:12:41:32 +0100] "POST /[login to view URL] HTTP/1.1" 200 413 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:15:36:07 +0100] "GET /[login to view URL] HTTP/1.1" 200 2821 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:15:36:08 +0100] "POST /[login to view URL] HTTP/1.1" 200 3832 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:15:36:09 +0100] "GET /[login to view URL] HTTP/1.1" 200 2821 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:15:36:09 +0100] "POST /[login to view URL] HTTP/1.1" 200 3672 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

/furanet/sites/[login to view URL]:[login to view URL] - - [11/Mar/2019:15:36:10 +0100] "POST /[login to view URL] HTTP/1.1" 200 413 "-" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

Habilidades: Segurança de computadores, Segurança de Internet, Linux, Rede de Administração, Segurança na rede

Veja mais: godaddy linux server, rebuild linux server ssh, checking compromised linux server, lynis enterprise, lynis review, lynis hardening index, linux security tools, lynis tutorial, linux security audit tool, cisofy, linux security audit checklist, linux server plesk spam security, security audit linux dedicated server, security anon linux server, security check linux server, security linux server, linux server security audit, setup security linux server, research linux server security, tmp security linux server

Acerca do Empregador:
( 0 comentários ) Fortaleza, Brazil

ID do Projeto: #18929755

Concedido a:

kuldeepvk

Hi, I will check the issue with server and fix the error of bot mails that is generating from your server .Let's discuss. Thank you

$111 USD em 0 dias
(241 Comentários)
6.7

2 freelancers estão ofertando em média $131 para esse trabalho

awsdevopro

Hi, I can help you debugging the issues and resolve. As a DevOps Engineer, I do it most of the time for my company work. Hope to work on this project. Thanks

$150 USD in 0 dias
(9 Comentários)
4.2