Host 217.182.71.146
France
OVH SAS
Software information
nginx 1.18.0
tcp/443
-
CheckMK monitoring endpoint publicly available
An open CheckMK agent is publicly available.
This could leak sensitive information such as :
- Process list ( maybe credentials )
- Network interfaces
- Running services
- Firewall rules
- Internal OS configuration
https://docs.checkmk.com/latest/en/wato_monitoringagents.html
First seen 2024-09-11 19:48
Last seen 2024-12-22 00:58
Open for 101 days-
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730ff84d05c6Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 183868 11520 10:47:08 58-23:57:58 1 /sbin/init - root 0 0 00:00:04 58-23:57:58 2 [kthreadd] - root 0 0 00:00:00 58-23:57:58 3 [rcu_gp] - root 0 0 00:00:00 58-23:57:58 4 [rcu_par_gp] - root 0 0 00:00:00 58-23:57:58 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 58-23:57:58 8 [mm_percpu_wq] - root 0 0 00:00:00 58-23:57:58 9 [rcu_tasks_rude_] - root 0 0 00:00:00 58-23:57:58 10 [rcu_tasks_trace] - root 0 0 00:20:48 58-23:57:58 11 [ksoftirqd/0] - root 0 0 01:29:09 58-23:57:58 12 [rcu_sched] - root 0 0 00:00:33 58-23:57:58 13 [migration/0] - root 0 0 00:00:00 58-23:57:58 15 [cpuhp/0] - root 0 0 00:00:00 58-23:57:58 16 [cpuhp/1] - root 0 0 00:00:34 58-23:57:58 17 [migration/1] - root 0 0 00:20:42 58-23:57:58 18 [ksoftirqd/1] - root 0 0 00:00:00 58-23:57:58 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 58-23:57:58 21 [cpuhp/2] - root 0 0 00:00:33 58-23:57:58 22 [migration/2] - root 0 0 00:20:41 58-23:57:58 23 [ksoftirqd/2] - root 0 0 00:00:00 58-23:57:58 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 58-23:57:58 26 [cpuhp/3] - root 0 0 00:00:33 58-23:57:58 27 [migration/3] - root 0 0 00:20:40 58-23:57:58 28 [ksoftirqd/3] - root 0 0 00:00:00 58-23:57:58 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 58-23:57:58 31 [cpuhp/4] - root 0 0 00:00:34 58-23:57:58 32 [migration/4] - root 0 0 00:20:41 58-23:57:58 33 [ksoftirqd/4] - root 0 0 00:00:00 58-23:57:58 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 58-23:57:58 36 [cpuhp/5] - root 0 0 00:00:33 58-23:57:58 37 [migration/5] - root 0 0 00:20:49 58-23:57:58 38 [ksoftirqd/5] - root 0 0 00:00:00 58-23:57:58 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 58-23:57:58 41 [cpuhp/6] - root 0 0 00:00:33 58-23:57:58 42 [migration/6] - root 0 0 00:20:42 58-23:57:58 43 [ksoftirqd/6] - root 0 0 00:00:00 58-23:57:58 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 58-23:57:58 46 [cpuhp/7] - root 0 0 00:00:34 58-23:57:58 47 [migration/7] - root 0 0 00:20:42 58-23:57:58 48 [ksoftirqd/7] - root 0 0 00:00:00 58-23:57:58 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 58-23:57:58 56 [kdevtmpfs] - root 0 0 00:00:00 58-23:57:58 57 [netns] - root 0 0 00:10:57 58-23:57:58 58 [kauditd] - root 0 0 00:00:06 58-23:57:58 59 [khungtaskd] - root 0 0 00:00:00 58-23:57:58 60 [oom_reaper] - root 0 0 00:00:00 58-23:57:58 61 [writeback] - root 0 0 00:01:48 58-23:57:58 62 [kcompactd0] - root 0 0 00:00:00 58-23:57:58 63 [ksmd] - root 0 0 00:03:43 58-23:57:58 64 [khugepaged] - root 0 0 00:00:00 58-23:57:58 84 [kintegrityd] - root 0 0 00:00:00 58-23:57:58 85 [kblockd] - root 0 0 00:00:00 58-23:57:58 86 [blkcg_punt_bio] - root 0 0 00:00:20 58-23:57:58 88 [kworker/0:1H-kblockd] - root 0 0 00:00:33 58-23:57:58 89 [kswapd0] - root 0 0 00:00:00 58-23:57:58 90 [kthrotld] - root 0 0 00:00:00 58-23:57:58 91 [acpi_thermal_pm] - root 0 0 00:00:00 58-23:57:58 92 [nvme-wq] - root 0 0 00:00:00 58-23:57:58 93 [nvme-reset-wq] - root 0 0 00:00:00 58-23:57:58 94 [nvme-delete-wq] - root 0 0 00:00:00 58-23:57:57 95 [ipv6_addrconf] - root 0 0 00:00:00 58-23:57:57 106 [kstrp] - root 0 0 00:00:00 58-23:57:57 114 [kworker/u17:0] - root 0 0 00:00:20 58-23:57:57 136 [kworker/1:1H-kblockd] - root 0 0 00:00:21 58-23:57:57 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 58-23:57:57 167 [ata_sff] - root 0 0 00:00:00 58-23:57:57 168 [scsi_eh_0] - root 0 0 00:00:00 58-23:57:57 169 [scsi_tmf_0] - root 0 0 00:00:00 58-23:57:57 170 [scsi_eh_1] - root 0 0 00:00:00 58-23:57:57 171 [scsi_tmf_1] - root 0 0 00:00:00 58-23:57:57 173 [scsi_eh_2] - root 0 0 00:00:00 58-23:57:57 174 [scsi_tmf_2] - root 0 0 00:00:20 58-23:57:57 175 [kworker/3:1H-kblockd] - root 0 0 00:00:20 58-23:57:57 178 [kworker/4:1H-kblockd] - root 0 0 00:00:20 58-23:57:57 184 [kworker/7:1H-kblockd] - root 0 0 00:00:20 58-23:57:57 196 [kworker/6:1H-kblockd] - root 0 0 00:13:48 58-23:57:57 206 [jbd2/sda1-8] - root 0 0 00:00:00 58-23:57:57 207 [ext4-rsv-conver] - root 0 0 00:00:20 58-23:57:56 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3884 00:00:13 58-23:57:56 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 58-23:57:56 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:38:22 58-23:57:56 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 58-23:57:55 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4188 00:23:23 58-23:57:54 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:56 58-23:57:54 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 81084 04:00:31 58-23:57:54 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 58-23:57:54 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9040 00:32:45 58-23:57:54 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6436 00:11:11 58-23:57:54 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 07:11:06 58-23:57:54 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21628 03:01:30 58-23:57:54 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6440 00:01:05 58-23:57:54 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 58-23:57:54 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 58-23:57:54 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 58-23:57:54 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11452 5608 00:18:40 58-23:57:54 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8124 5944 00:00:02 58-23:57:54 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 58-23:57:54 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51536 00:03:18 58-23:57:54 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:23 58-23:57:54 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:02:17 58-23:57:54 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:37:44 58-23:57:18 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:06:49 58-23:57:18 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 6088 3496 01:54:09 23-07:47:19 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5832 3124 00:49:15 23-07:47:19 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:41:35 23-07:47:19 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 58-23:47:52 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:18:05 58-23:47:52 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:10 58-23:47:52 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 58-23:47:52 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 58-23:47:52 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 58-23:47:52 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 58-23:47:52 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 58-23:47:52 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 58-23:47:52 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 58-23:47:52 228933 [check_nginx] <defunct> 0::/system.slice/monit.service root 0 0 00:00:00 58-23:47:51 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 15816 00:00:36 58-20:51:34 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5252 00:00:04 58-20:51:34 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 51076 00:00:04 33-05:25:49 558518 /usr/sbin/apache2 -k start - root 0 0 00:00:01 50:00 672168 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 49:08 691676 [kworker/2:2-events] 0::/system.slice/systemd-journald.service root 46932 16436 00:21:22 8-08:33:02 693540 /lib/systemd/systemd-journald 0::/system.slice/cron.service root 5708 3112 14:32:44 57-14:26:19 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 14:38:02 57-14:26:19 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/ntp.service ntp 74496 4016 00:00:05 20:57:18 937617 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2561636 195784 06:26:14 20:57:17 938918 /usr/sbin/mariadbd 0::/system.slice/apache2.service www-data 266752 51220 00:00:05 34-14:45:17 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:01 30:16 1145191 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 26:52 1221827 [kworker/3:1-events] - root 0 0 00:00:00 23:55 1292384 [kworker/1:0-mm_percpu_wq] - root 0 0 00:00:00 22:58 1311386 [kworker/4:2-events] - root 0 0 00:00:00 19:19 1408020 [kworker/6:0-events] - root 0 0 00:00:00 18:47 1419647 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 14:19 1521179 [kworker/7:1-events] - root 0 0 00:00:00 14:04 1527002 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 13:43 1533023 [kworker/0:2-events] - root 0 0 00:00:00 10:50 1613106 [kworker/1:2-cgroup_destroy] - root 0 0 00:00:00 10:24 1625723 [kworker/3:2-events] - root 0 0 00:00:00 08:18 1672434 [kworker/0:0-cgroup_destroy] - root 0 0 00:00:00 07:52 1682480 [kworker/6:2-events] - root 0 0 00:00:00 07:20 1691506 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:00 07:10 1695555 [kworker/2:0-events] - root 0 0 00:00:00 06:59 1701666 [kworker/4:0-events] - root 0 0 00:00:00 05:19 1745662 [kworker/5:0-events] - root 0 0 00:00:00 04:48 1754865 [kworker/1:1-events] - root 0 0 00:00:00 04:33 1759399 [kworker/3:0-events] 0::/system.slice/cron.service root 6128 3532 00:00:03 03:19 1782399 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 02:43 1798710 [kworker/6:1-cgroup_destroy] - root 0 0 00:00:00 02:38 1800537 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 01:56 1816573 [kworker/4:1-events] - root 0 0 00:00:00 01:48 1819443 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 01:29 1825837 [kworker/7:0-events] - root 0 0 00:00:00 00:53 1846608 [kworker/2:1-events] 0::/system.slice/cron.service root 2392 560 00:00:00 00:51 1847734 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:49 1848590 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:49 1848958 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:44 1851740 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:21 1863372 /bin/sleep 60 0::/system.slice/cron.service root 2392 492 00:00:00 00:19 1864788 /bin/sleep 60 - root 0 0 00:00:00 00:16 1866428 [kworker/5:1-events] 0::/system.slice/cron.service root 5908 2360 00:00:00 00:15 1866585 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 157956 8436 00:00:00 00:15 1866589 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2324 00:00:00 00:15 1866605 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 6484 00:00:00 00:15 1866609 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2420 00:00:00 00:15 1866620 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 157956 7632 00:00:00 00:15 1866624 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:15 1866644 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6428 00:00:00 00:15 1866648 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2336 00:00:00 00:15 1866667 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8424 00:00:00 00:15 1866670 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2372 00:00:00 00:15 1866704 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 157956 6436 00:00:00 00:15 1866708 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2528 00:00:00 00:15 1866729 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8488 00:00:00 00:15 1866731 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 500 00:00:00 00:07 1869564 sleep 8 0::/system.slice/cron.service root 2392 500 00:00:00 00:06 1869907 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:04 1870626 /bin/sleep 60 0::/system.slice/cron.service root 4284 556 00:00:00 00:02 1871260 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:02 1871306 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11132 00:00:00 00:02 1871307 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8991 --header Origin: https://127.0.0.1:8991 --header Sec-WebSocket-Key: MTcwNzoyNTg3Nw== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8991/ -k 0::/system.slice/cron.service root 4288 560 00:00:00 00:02 1871308 wc -l 0::/system.slice/cron.service root 99640 32636 00:00:00 00:02 1871317 /usr/bin/php ./ws_imtfusion.php 0::/system.slice/xinetd.service root 6188 3704 00:00:00 00:02 1871350 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 1871454 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 1871468 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 1871511 sleep 2 0::/system.slice/cron.service root 4284 492 00:00:00 00:01 1871564 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 1871616 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 1871651 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 1871735 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 1871747 sleep 0.1 0::/system.slice/cron.service root 6128 1804 00:00:00 00:00 1871753 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 3040 00:00:00 00:00 1871755 jq -c . 0::/system.slice/cron.service root 5708 1404 00:00:00 00:00 1871762 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 3040 00:00:00 00:00 1871764 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 1871785 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5836 1388 00:00:00 00:00 1871786 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2952 00:00:00 00:00 1871788 jq .dispositivos.windows 0::/system.slice/cron.service root 5708 3064 00:03:25 54-15:07:19 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:49:50 54-15:07:19 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 13:42:43 54-15:07:19 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 04:04:46 54-15:07:19 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 04:33:12 54-15:07:19 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 03:16:45 54-15:07:19 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 04:08:51 54-15:07:19 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 04:02:22 54-15:07:19 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51508 00:00:06 46-01:58:16 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50908 00:00:07 46-01:58:16 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51316 00:00:06 46-01:58:16 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50788 00:00:06 46-01:58:16 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 51244 00:00:06 46-01:58:16 2711949 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50804 00:00:06 46-01:25:30 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51300 00:00:06 46-01:25:29 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50932 00:00:06 45-14:16:32 3582124 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2504 00:00:00 21:58:18 3644078 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875880 44728 00:00:05 21:58:18 3644090 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2360 00:00:00 21:58:18 3644239 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5028 00:00:00 21:58:18 3644290 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 21:58:18 3644360 sh ./webhookstart 0::/system.slice/cron.service root 40348 35460 00:00:11 21:58:18 3644385 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2380 00:00:03 21:58:14 3647796 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13280 00:00:00 21:58:14 3647801 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2440 00:00:03 21:58:14 3647807 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13564 00:00:00 21:58:14 3647813 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 57364 00:01:17 21:58:14 3648189 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 59424 00:01:15 21:58:14 3648195 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2356 00:00:00 21:58:12 3650292 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10932 00:00:07 21:58:12 3650296 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2332 00:00:00 21:58:12 3650330 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 13212 00:01:04 21:58:12 3650335 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2360 00:00:00 21:58:12 3650368 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 510024 51244 00:01:05 21:58:12 3650373 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2468 00:00:00 21:58:12 3650403 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12284 00:01:09 21:58:12 3650410 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2344 00:00:00 21:58:12 3650447 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 15416 00:01:08 21:58:12 3650452 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2424 00:00:00 21:58:12 3650471 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13584 00:01:08 21:58:12 3650476 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2388 00:00:00 21:58:12 3650505 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 9160 00:01:04 21:58:12 3650507 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/php7.4-fpm.service root 232280 36620 00:01:26 11-20:56:39 4119153 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/cron.service root 5688 2644 00:01:53 4-15:23:06 4156837 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3076 00:00:07 4-15:22:18 4183400 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 75771sec preferred_lft 75771sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-22 00:58 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fad7a0f6aFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 183868 11520 10:23:05 56-23:31:03 1 /sbin/init - root 0 0 00:00:04 56-23:31:03 2 [kthreadd] - root 0 0 00:00:00 56-23:31:03 3 [rcu_gp] - root 0 0 00:00:00 56-23:31:03 4 [rcu_par_gp] - root 0 0 00:00:00 56-23:31:03 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 56-23:31:03 8 [mm_percpu_wq] - root 0 0 00:00:00 56-23:31:03 9 [rcu_tasks_rude_] - root 0 0 00:00:00 56-23:31:03 10 [rcu_tasks_trace] - root 0 0 00:20:06 56-23:31:03 11 [ksoftirqd/0] - root 0 0 01:26:05 56-23:31:03 12 [rcu_sched] - root 0 0 00:00:32 56-23:31:03 13 [migration/0] - root 0 0 00:00:00 56-23:31:03 15 [cpuhp/0] - root 0 0 00:00:00 56-23:31:03 16 [cpuhp/1] - root 0 0 00:00:33 56-23:31:03 17 [migration/1] - root 0 0 00:20:00 56-23:31:03 18 [ksoftirqd/1] - root 0 0 00:00:00 56-23:31:03 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 56-23:31:03 21 [cpuhp/2] - root 0 0 00:00:32 56-23:31:03 22 [migration/2] - root 0 0 00:19:59 56-23:31:03 23 [ksoftirqd/2] - root 0 0 00:00:00 56-23:31:03 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 56-23:31:03 26 [cpuhp/3] - root 0 0 00:00:32 56-23:31:03 27 [migration/3] - root 0 0 00:19:59 56-23:31:03 28 [ksoftirqd/3] - root 0 0 00:00:00 56-23:31:03 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 56-23:31:03 31 [cpuhp/4] - root 0 0 00:00:32 56-23:31:03 32 [migration/4] - root 0 0 00:19:59 56-23:31:03 33 [ksoftirqd/4] - root 0 0 00:00:00 56-23:31:03 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 56-23:31:03 36 [cpuhp/5] - root 0 0 00:00:32 56-23:31:03 37 [migration/5] - root 0 0 00:20:07 56-23:31:03 38 [ksoftirqd/5] - root 0 0 00:00:00 56-23:31:03 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 56-23:31:03 41 [cpuhp/6] - root 0 0 00:00:32 56-23:31:03 42 [migration/6] - root 0 0 00:20:00 56-23:31:03 43 [ksoftirqd/6] - root 0 0 00:00:00 56-23:31:03 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 56-23:31:03 46 [cpuhp/7] - root 0 0 00:00:32 56-23:31:03 47 [migration/7] - root 0 0 00:20:01 56-23:31:03 48 [ksoftirqd/7] - root 0 0 00:00:00 56-23:31:03 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 56-23:31:03 56 [kdevtmpfs] - root 0 0 00:00:00 56-23:31:03 57 [netns] - root 0 0 00:10:57 56-23:31:03 58 [kauditd] - root 0 0 00:00:05 56-23:31:03 59 [khungtaskd] - root 0 0 00:00:00 56-23:31:03 60 [oom_reaper] - root 0 0 00:00:00 56-23:31:03 61 [writeback] - root 0 0 00:01:44 56-23:31:03 62 [kcompactd0] - root 0 0 00:00:00 56-23:31:03 63 [ksmd] - root 0 0 00:03:34 56-23:31:03 64 [khugepaged] - root 0 0 00:00:00 56-23:31:03 84 [kintegrityd] - root 0 0 00:00:00 56-23:31:03 85 [kblockd] - root 0 0 00:00:00 56-23:31:03 86 [blkcg_punt_bio] - root 0 0 00:00:20 56-23:31:03 88 [kworker/0:1H-kblockd] - root 0 0 00:00:33 56-23:31:03 89 [kswapd0] - root 0 0 00:00:00 56-23:31:03 90 [kthrotld] - root 0 0 00:00:00 56-23:31:03 91 [acpi_thermal_pm] - root 0 0 00:00:00 56-23:31:03 92 [nvme-wq] - root 0 0 00:00:00 56-23:31:03 93 [nvme-reset-wq] - root 0 0 00:00:00 56-23:31:03 94 [nvme-delete-wq] - root 0 0 00:00:00 56-23:31:02 95 [ipv6_addrconf] - root 0 0 00:00:00 56-23:31:02 106 [kstrp] - root 0 0 00:00:00 56-23:31:02 114 [kworker/u17:0] - root 0 0 00:00:20 56-23:31:02 136 [kworker/1:1H-kblockd] - root 0 0 00:00:20 56-23:31:02 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 56-23:31:02 167 [ata_sff] - root 0 0 00:00:00 56-23:31:02 168 [scsi_eh_0] - root 0 0 00:00:00 56-23:31:02 169 [scsi_tmf_0] - root 0 0 00:00:00 56-23:31:02 170 [scsi_eh_1] - root 0 0 00:00:00 56-23:31:02 171 [scsi_tmf_1] - root 0 0 00:00:00 56-23:31:02 173 [scsi_eh_2] - root 0 0 00:00:00 56-23:31:02 174 [scsi_tmf_2] - root 0 0 00:00:20 56-23:31:02 175 [kworker/3:1H-kblockd] - root 0 0 00:00:20 56-23:31:02 178 [kworker/4:1H-kblockd] - root 0 0 00:00:20 56-23:31:02 184 [kworker/7:1H-kblockd] - root 0 0 00:00:20 56-23:31:02 196 [kworker/6:1H-kblockd] - root 0 0 00:13:25 56-23:31:02 206 [jbd2/sda1-8] - root 0 0 00:00:00 56-23:31:02 207 [ext4-rsv-conver] - root 0 0 00:00:20 56-23:31:01 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3884 00:00:13 56-23:31:01 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 56-23:31:01 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:38:22 56-23:31:01 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 56-23:31:00 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4188 00:22:35 56-23:30:59 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:50 56-23:30:59 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 81160 03:52:21 56-23:30:59 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 56-23:30:59 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9044 00:31:38 56-23:30:59 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6436 00:10:48 56-23:30:59 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 06:56:14 56-23:30:59 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21628 02:55:17 56-23:30:59 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6440 00:01:03 56-23:30:59 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 56-23:30:59 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 56-23:30:59 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 56-23:30:59 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11464 5612 00:18:00 56-23:30:59 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8124 5944 00:00:02 56-23:30:59 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 56-23:30:59 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51536 00:03:11 56-23:30:59 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:22 56-23:30:59 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:02:12 56-23:30:59 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:36:27 56-23:30:23 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:06:35 56-23:30:23 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 6088 3496 01:44:22 21-07:20:24 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5832 3124 00:44:58 21-07:20:24 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:37:57 21-07:20:24 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 56-23:20:57 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:17:52 56-23:20:57 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:10 56-23:20:57 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 56-23:20:57 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 56-23:20:57 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 56-23:20:57 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 56-23:20:57 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 56-23:20:57 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 56-23:20:57 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 56-23:20:57 228933 [check_nginx] <defunct> 0::/system.slice/monit.service root 0 0 00:00:00 56-23:20:56 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 15824 00:00:35 56-20:24:39 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5260 00:00:04 56-20:24:39 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 51072 00:00:04 31-04:58:54 558518 /usr/sbin/apache2 -k start 0::/system.slice/systemd-journald.service root 46932 13596 00:16:09 6-08:06:07 693540 /lib/systemd/systemd-journald 0::/system.slice/cron.service root 5708 3112 14:01:57 55-13:59:24 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 14:06:59 55-13:59:24 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/apache2.service www-data 266752 51220 00:00:04 32-14:18:22 956576 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2388 00:00:00 21:31:23 1203513 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 5044 00:00:00 21:31:22 1203527 sudo ./webhookstart 0::/system.slice/cron.service root 2480 572 00:00:00 21:31:22 1203625 sh ./webhookstart 0::/system.slice/cron.service root 40348 35396 00:00:12 21:31:22 1203649 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2544 00:00:03 21:31:19 1206320 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13292 00:00:00 21:31:19 1206324 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2464 00:00:03 21:31:19 1206346 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13304 00:00:00 21:31:19 1206351 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57272 00:01:17 21:31:19 1206746 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 57440 00:01:17 21:31:19 1206784 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2340 00:00:00 21:31:17 1208902 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9164 00:00:07 21:31:17 1208904 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2352 00:00:00 21:31:17 1208935 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 10684 00:01:01 21:31:17 1208940 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2400 00:00:00 21:31:17 1208972 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 491508 48020 00:01:03 21:31:17 1208975 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2360 00:00:00 21:31:17 1208996 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12696 00:01:07 21:31:17 1208998 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2424 00:00:00 21:31:17 1209034 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 15284 00:01:06 21:31:17 1209036 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2320 00:00:00 21:31:17 1209077 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 14500 00:01:06 21:31:17 1209083 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2372 00:00:00 21:31:17 1209120 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 9064 00:01:02 21:31:17 1209122 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2356 00:00:00 21:30:24 1231572 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874696 41972 00:00:05 21:30:24 1231588 /usr/sbin/node server.js - root 0 0 00:00:00 54:46 1638504 [kworker/4:1-cgroup_destroy] - root 0 0 00:00:00 52:36 1699782 [kworker/5:0-cgroup_destroy] - root 0 0 00:00:01 42:34 1944547 [kworker/u16:4-events_unbound] - root 0 0 00:00:00 25:15 2363035 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 24:18 2389244 [kworker/3:2-events] - root 0 0 00:00:00 21:36 2448470 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 18:38 2522066 [kworker/0:2-cgroup_destroy] - root 0 0 00:00:00 16:07 2575685 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 13:46 2642642 [kworker/7:2-events] - root 0 0 00:00:00 13:25 2651578 [kworker/1:2-events] 0::/system.slice/cron.service root 5708 3064 00:03:18 52-14:40:24 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:43:31 52-14:40:24 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 13:12:12 52-14:40:24 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 03:55:38 52-14:40:24 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 04:23:01 52-14:40:24 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 03:09:27 52-14:40:24 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 03:59:38 52-14:40:24 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 03:53:19 52-14:40:24 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr - root 0 0 00:00:00 12:32 2671320 [kworker/2:1-mm_percpu_wq] 0::/system.slice/ntp.service ntp 74496 3920 00:00:04 20:30:23 2689756 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2733804 235164 06:13:00 20:30:22 2690569 /usr/sbin/mariadbd 0::/system.slice/apache2.service www-data 266748 51416 00:00:06 44-01:31:21 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50752 00:00:06 44-01:31:21 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51160 00:00:06 44-01:31:21 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50788 00:00:06 44-01:31:21 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 51088 00:00:06 44-01:31:21 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:00 09:50 2731037 [kworker/6:0-events] - root 0 0 00:00:00 08:36 2766411 [kworker/7:1-events] - root 0 0 00:00:00 08:21 2771987 [kworker/1:1-events] - root 0 0 00:00:00 08:11 2774933 [kworker/5:1-events] - root 0 0 00:00:00 07:29 2786929 [kworker/0:1-mm_percpu_wq] - root 0 0 00:00:00 07:08 2794314 [kworker/4:0-events] - root 0 0 00:00:00 06:31 2804784 [kworker/2:0-events] - root 0 0 00:00:00 05:49 2823642 [kworker/3:1-events] - root 0 0 00:00:00 03:07 2897090 [kworker/1:0-events] - root 0 0 00:00:00 02:04 2920470 [kworker/4:2-events] - root 0 0 00:00:00 01:49 2925956 [kworker/7:0-events] - root 0 0 00:00:00 01:28 2933208 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/cron.service root 11124 3792 00:00:00 01:25 2934272 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 508 00:00:00 01:25 2934368 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2876 00:00:00 01:25 2934392 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1920 00:00:00 01:25 2934742 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9792 00:00:00 01:25 2934803 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 700 00:00:00 01:25 2934804 grep 502 Bad Gateway 0::/system.slice/cron.service root 6492 3868 00:00:01 01:24 2935008 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater - root 0 0 00:00:00 01:23 2935870 [kworker/6:1-events] 0::/system.slice/cron.service root 5908 2380 00:00:00 01:09 2946566 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 9004 00:00:00 01:09 2946570 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:09 2946586 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8988 00:00:00 01:09 2946591 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:09 2946607 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6844 00:00:00 01:09 2946609 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2384 00:00:00 01:09 2946632 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6840 00:00:00 01:09 2946637 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2376 00:00:00 01:09 2946657 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8868 00:00:00 01:09 2946660 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:09 2946680 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 7000 00:00:00 01:09 2946687 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2508 00:00:00 01:09 2946700 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6808 00:00:00 01:09 2946715 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 556 00:00:00 00:59 2949584 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:57 2950160 /bin/sleep 60 - root 0 0 00:00:00 00:36 2959359 [kworker/0:0-events] 0::/system.slice/cron.service root 2392 500 00:00:00 00:30 2961118 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:28 2961692 /bin/sleep 60 - root 0 0 00:00:00 00:25 2962402 [kworker/5:2-events] - root 0 0 00:00:00 00:23 2963918 [kworker/3:0-events] 0::/system.slice/cron.service root 4284 564 00:00:00 00:21 2965971 sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:07 2973377 sleep 8 0::/system.slice/cron.service root 4284 560 00:00:00 00:03 2975215 sleep 60 0::/system.slice/cron.service root 4068 3092 00:00:00 00:03 2975614 /bin/bash ./statustunnel 0::/system.slice/cron.service root 2392 560 00:00:00 00:03 2975651 /bin/sleep 5 0::/system.slice/cron.service root 4284 564 00:00:00 00:02 2975921 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:02 2975972 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2976363 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2976391 sleep 1 0::/system.slice/xinetd.service root 6244 3600 00:00:00 00:01 2976442 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2976540 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2976587 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2976712 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2976725 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2976730 sleep 1 0::/system.slice/cron.service root 5840 1496 00:00:00 00:01 2976764 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11160 00:00:00 00:01 2976765 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8227 --header Origin: https://127.0.0.1:8227 --header Sec-WebSocket-Key: Nzc1ODoxOTc3Nw== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8227/ -k 0::/system.slice/cron.service root 4288 496 00:00:00 00:01 2976766 wc -l 0::/system.slice/cron.service root 4072 3116 00:00:00 00:01 2976789 /bin/bash ./statusmdm 0::/system.slice/cron.service root 2392 496 00:00:00 00:00 2976827 /bin/sleep 60 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 2976851 sleep 0.1 0::/system.slice/xinetd.service root 6676 1132 00:00:00 00:00 2976875 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/apache2.service www-data 266676 50792 00:00:06 44-00:58:35 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51300 00:00:06 44-00:58:34 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50932 00:00:06 43-13:49:37 3582124 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232280 36624 00:01:12 9-20:29:44 4119153 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/cron.service root 5688 2644 00:01:04 2-14:56:11 4156837 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3076 00:00:04 2-14:55:23 4183400 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 62734sec preferred_lft 62734sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-20 00:31 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f0bf1b235Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 183868 11520 10:00:30 55-00:41:34 1 /sbin/init - root 0 0 00:00:04 55-00:41:34 2 [kthreadd] - root 0 0 00:00:00 55-00:41:34 3 [rcu_gp] - root 0 0 00:00:00 55-00:41:34 4 [rcu_par_gp] - root 0 0 00:00:00 55-00:41:34 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 55-00:41:34 8 [mm_percpu_wq] - root 0 0 00:00:00 55-00:41:34 9 [rcu_tasks_rude_] - root 0 0 00:00:00 55-00:41:34 10 [rcu_tasks_trace] - root 0 0 00:19:24 55-00:41:34 11 [ksoftirqd/0] - root 0 0 01:23:06 55-00:41:34 12 [rcu_sched] - root 0 0 00:00:31 55-00:41:34 13 [migration/0] - root 0 0 00:00:00 55-00:41:34 15 [cpuhp/0] - root 0 0 00:00:00 55-00:41:34 16 [cpuhp/1] - root 0 0 00:00:31 55-00:41:34 17 [migration/1] - root 0 0 00:19:19 55-00:41:34 18 [ksoftirqd/1] - root 0 0 00:00:00 55-00:41:34 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 55-00:41:34 21 [cpuhp/2] - root 0 0 00:00:31 55-00:41:34 22 [migration/2] - root 0 0 00:19:17 55-00:41:34 23 [ksoftirqd/2] - root 0 0 00:00:00 55-00:41:34 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 55-00:41:34 26 [cpuhp/3] - root 0 0 00:00:31 55-00:41:34 27 [migration/3] - root 0 0 00:19:17 55-00:41:34 28 [ksoftirqd/3] - root 0 0 00:00:00 55-00:41:34 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 55-00:41:34 31 [cpuhp/4] - root 0 0 00:00:31 55-00:41:34 32 [migration/4] - root 0 0 00:19:17 55-00:41:34 33 [ksoftirqd/4] - root 0 0 00:00:00 55-00:41:34 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 55-00:41:34 36 [cpuhp/5] - root 0 0 00:00:31 55-00:41:34 37 [migration/5] - root 0 0 00:19:25 55-00:41:34 38 [ksoftirqd/5] - root 0 0 00:00:00 55-00:41:34 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 55-00:41:34 41 [cpuhp/6] - root 0 0 00:00:31 55-00:41:34 42 [migration/6] - root 0 0 00:19:18 55-00:41:34 43 [ksoftirqd/6] - root 0 0 00:00:00 55-00:41:34 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 55-00:41:34 46 [cpuhp/7] - root 0 0 00:00:31 55-00:41:34 47 [migration/7] - root 0 0 00:19:19 55-00:41:34 48 [ksoftirqd/7] - root 0 0 00:00:00 55-00:41:34 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 55-00:41:34 56 [kdevtmpfs] - root 0 0 00:00:00 55-00:41:34 57 [netns] - root 0 0 00:10:57 55-00:41:34 58 [kauditd] - root 0 0 00:00:05 55-00:41:34 59 [khungtaskd] - root 0 0 00:00:00 55-00:41:34 60 [oom_reaper] - root 0 0 00:00:00 55-00:41:34 61 [writeback] - root 0 0 00:01:40 55-00:41:34 62 [kcompactd0] - root 0 0 00:00:00 55-00:41:34 63 [ksmd] - root 0 0 00:03:27 55-00:41:34 64 [khugepaged] - root 0 0 00:00:00 55-00:41:34 84 [kintegrityd] - root 0 0 00:00:00 55-00:41:34 85 [kblockd] - root 0 0 00:00:00 55-00:41:34 86 [blkcg_punt_bio] - root 0 0 00:00:19 55-00:41:34 88 [kworker/0:1H-kblockd] - root 0 0 00:00:33 55-00:41:34 89 [kswapd0] - root 0 0 00:00:00 55-00:41:34 90 [kthrotld] - root 0 0 00:00:00 55-00:41:34 91 [acpi_thermal_pm] - root 0 0 00:00:00 55-00:41:34 92 [nvme-wq] - root 0 0 00:00:00 55-00:41:34 93 [nvme-reset-wq] - root 0 0 00:00:00 55-00:41:34 94 [nvme-delete-wq] - root 0 0 00:00:00 55-00:41:33 95 [ipv6_addrconf] - root 0 0 00:00:00 55-00:41:33 106 [kstrp] - root 0 0 00:00:00 55-00:41:33 114 [kworker/u17:0] - root 0 0 00:00:20 55-00:41:33 136 [kworker/1:1H-kblockd] - root 0 0 00:00:20 55-00:41:33 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 55-00:41:33 167 [ata_sff] - root 0 0 00:00:00 55-00:41:33 168 [scsi_eh_0] - root 0 0 00:00:00 55-00:41:33 169 [scsi_tmf_0] - root 0 0 00:00:00 55-00:41:33 170 [scsi_eh_1] - root 0 0 00:00:00 55-00:41:33 171 [scsi_tmf_1] - root 0 0 00:00:00 55-00:41:33 173 [scsi_eh_2] - root 0 0 00:00:00 55-00:41:33 174 [scsi_tmf_2] - root 0 0 00:00:19 55-00:41:33 175 [kworker/3:1H-kblockd] - root 0 0 00:00:19 55-00:41:33 178 [kworker/4:1H-kblockd] - root 0 0 00:00:19 55-00:41:33 184 [kworker/7:1H-kblockd] - root 0 0 00:00:19 55-00:41:33 196 [kworker/6:1H-kblockd] - root 0 0 00:13:03 55-00:41:33 206 [jbd2/sda1-8] - root 0 0 00:00:00 55-00:41:33 207 [ext4-rsv-conver] - root 0 0 00:00:19 55-00:41:32 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3884 00:00:12 55-00:41:32 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 55-00:41:32 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:38:21 55-00:41:32 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 55-00:41:31 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4188 00:21:47 55-00:41:30 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:44 55-00:41:30 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 81144 03:44:11 55-00:41:30 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 55-00:41:30 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9044 00:30:31 55-00:41:30 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6436 00:10:26 55-00:41:30 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 06:41:42 55-00:41:30 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21620 02:49:01 55-00:41:30 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6440 00:01:01 55-00:41:30 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 55-00:41:30 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 55-00:41:30 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 55-00:41:30 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11464 5612 00:17:20 55-00:41:30 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8124 5980 00:00:02 55-00:41:30 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 55-00:41:30 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51536 00:03:05 55-00:41:30 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:21 55-00:41:30 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:02:07 55-00:41:30 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:35:11 55-00:40:54 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:06:21 55-00:40:54 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 6088 3496 01:34:49 19-08:30:55 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5832 3124 00:40:47 19-08:30:55 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:34:25 19-08:30:55 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 55-00:31:28 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:17:15 55-00:31:28 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:10 55-00:31:28 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 55-00:31:28 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 55-00:31:28 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 55-00:31:28 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 55-00:31:28 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 55-00:31:28 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 55-00:31:28 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 55-00:31:28 228933 [check_nginx] <defunct> 0::/system.slice/monit.service root 0 0 00:00:00 55-00:31:27 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 15832 00:00:34 54-21:35:10 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5268 00:00:04 54-21:35:10 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 51064 00:00:04 29-06:09:25 558518 /usr/sbin/apache2 -k start 0::/system.slice/systemd-journald.service root 46932 14700 00:11:02 4-09:16:38 693540 /lib/systemd/systemd-journald 0::/system.slice/cron.service root 5708 3112 13:32:08 53-15:09:55 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 13:36:57 53-15:09:55 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop - root 0 0 00:00:01 01:01:25 798592 [kworker/u16:0-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 266752 51064 00:00:04 30-15:28:53 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:01 33:37 1478610 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 31:42 1521862 [kworker/2:2-events] - root 0 0 00:00:00 27:36 1614651 [kworker/0:2-events] - root 0 0 00:00:00 19:55 1814290 [kworker/4:0-events] - root 0 0 00:00:00 17:09 1867474 [kworker/3:2-cgroup_destroy] - root 0 0 00:00:00 16:22 1887908 [kworker/6:2-events] - root 0 0 00:00:00 14:55 1925178 [kworker/5:0-events] - root 0 0 00:00:00 14:37 1935981 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 12:26 1989002 [kworker/1:2-events] - root 0 0 00:00:00 11:45 2010290 [kworker/7:1-events] - root 0 0 00:00:00 09:13 2073113 [kworker/5:2-events] - root 0 0 00:00:00 08:54 2079593 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 08:42 2083613 [kworker/3:1-events] - root 0 0 00:00:00 08:21 2089681 [kworker/2:1-events] - root 0 0 00:00:00 08:15 2091341 [kworker/4:2-events] - root 0 0 00:00:00 06:54 2117221 [kworker/1:1-events] - root 0 0 00:00:00 06:31 2129005 [kworker/7:2-events] - root 0 0 00:00:00 05:39 2148967 [kworker/6:0-events] - root 0 0 00:00:00 03:54 2200354 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 03:39 2206324 [kworker/5:1-events] - root 0 0 00:00:00 03:18 2213823 [kworker/0:0-events] - root 0 0 00:00:00 03:08 2217545 [kworker/3:0-events] 0::/system.slice/cron.service root 10884 3572 00:00:00 01:55 2244489 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 01:55 2244623 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2888 00:00:00 01:55 2244677 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1928 00:00:00 01:55 2245028 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9948 00:00:00 01:55 2245050 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 640 00:00:00 01:55 2245051 grep 502 Bad Gateway 0::/system.slice/cron.service root 5908 2388 00:00:00 01:54 2245520 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6940 00:00:00 01:54 2245531 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2376 00:00:00 01:54 2245723 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 9056 00:00:00 01:54 2245739 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2532 00:00:00 01:54 2245834 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11068 00:00:00 01:54 2245843 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2328 00:00:00 01:54 2245993 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11048 00:00:00 01:54 2246002 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2372 00:00:00 01:38 2251786 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 9000 00:00:00 01:38 2251790 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:38 2251801 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6980 00:00:00 01:38 2251803 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:38 2251819 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8972 00:00:00 01:38 2251822 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php - root 0 0 00:00:00 01:23 2256408 [kworker/2:0-events] - root 0 0 00:00:00 01:18 2259084 [kworker/7:0-events] - root 0 0 00:00:00 00:52 2276973 [kworker/4:1-cgroup_destroy] 0::/system.slice/cron.service root 2392 560 00:00:00 00:52 2277032 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:50 2278086 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:49 2278519 sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:45 2280322 sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:22 2291233 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:20 2292026 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 2297337 /bin/sleep 5 0::/system.slice/cron.service root 4284 492 00:00:00 00:01 2297564 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2297591 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2297748 sleep 2 0::/system.slice/xinetd.service root 6180 3612 00:00:00 00:01 2297821 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 2297887 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2297895 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2297951 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2298015 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2298027 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 2298028 sleep 0.1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2298038 sleep 0.1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2298039 sleep 8 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2298040 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2298046 sleep 0.1 0::/system.slice/xinetd.service root 6676 1204 00:00:00 00:00 2298061 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 3064 00:03:10 50-15:50:55 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:37:21 50-15:50:55 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 12:42:39 50-15:50:55 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 03:46:45 50-15:50:55 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 04:13:06 50-15:50:55 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 03:02:20 50-15:50:55 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 03:50:40 50-15:50:55 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 03:44:30 50-15:50:55 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51408 00:00:06 42-02:41:52 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50752 00:00:06 42-02:41:52 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51152 00:00:06 42-02:41:52 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50780 00:00:06 42-02:41:52 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 51084 00:00:06 42-02:41:52 2711949 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2348 00:00:00 22:41:54 2953990 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875704 44356 00:00:05 22:41:54 2954018 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2388 00:00:00 22:41:54 2954134 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4876 00:00:00 22:41:54 2954162 sudo ./webhookstart 0::/system.slice/cron.service root 2480 568 00:00:00 22:41:54 2954269 sh ./webhookstart 0::/system.slice/cron.service root 40348 35548 00:00:12 22:41:54 2954300 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2376 00:00:03 22:41:51 2957394 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13356 00:00:00 22:41:51 2957401 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2432 00:00:03 22:41:51 2957416 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13228 00:00:00 22:41:51 2957418 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55404 00:01:20 22:41:51 2957739 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55212 00:01:20 22:41:51 2957783 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:00 22:41:48 2960467 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11348 00:00:07 22:41:48 2960471 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2356 00:00:00 22:41:48 2960504 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9528 00:01:03 22:41:48 2960507 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2344 00:00:00 22:41:48 2960547 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 493688 50924 00:01:07 22:41:48 2960549 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2376 00:00:00 22:41:48 2960569 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11284 00:01:09 22:41:48 2960572 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2284 00:00:00 22:41:48 2960641 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13132 00:01:09 22:41:48 2960645 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2352 00:00:00 22:41:48 2960707 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 14828 00:01:09 22:41:48 2960709 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2352 00:00:00 22:41:48 2960742 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12336 00:01:04 22:41:48 2960747 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/apache2.service www-data 266676 50784 00:00:06 42-02:09:06 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51292 00:00:06 42-02:09:05 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50932 00:00:06 41-15:00:08 3582124 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232280 36624 00:00:57 7-21:40:15 4119153 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/ntp.service ntp 74496 3636 00:00:03 16:06:44 4155915 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2692708 201492 04:43:20 16:06:42 4156662 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5688 2644 00:00:16 16:06:42 4156837 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3076 00:00:01 16:05:54 4183400 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 54243sec preferred_lft 54243sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-18 01:41 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fff794ba3Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 183868 11520 09:37:05 52-22:42:35 1 /sbin/init - root 0 0 00:00:04 52-22:42:35 2 [kthreadd] - root 0 0 00:00:00 52-22:42:35 3 [rcu_gp] - root 0 0 00:00:00 52-22:42:35 4 [rcu_par_gp] - root 0 0 00:00:00 52-22:42:35 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 52-22:42:35 8 [mm_percpu_wq] - root 0 0 00:00:00 52-22:42:35 9 [rcu_tasks_rude_] - root 0 0 00:00:00 52-22:42:35 10 [rcu_tasks_trace] - root 0 0 00:18:40 52-22:42:35 11 [ksoftirqd/0] - root 0 0 01:19:55 52-22:42:35 12 [rcu_sched] - root 0 0 00:00:30 52-22:42:35 13 [migration/0] - root 0 0 00:00:00 52-22:42:35 15 [cpuhp/0] - root 0 0 00:00:00 52-22:42:35 16 [cpuhp/1] - root 0 0 00:00:30 52-22:42:35 17 [migration/1] - root 0 0 00:18:35 52-22:42:35 18 [ksoftirqd/1] - root 0 0 00:00:00 52-22:42:35 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 52-22:42:35 21 [cpuhp/2] - root 0 0 00:00:30 52-22:42:35 22 [migration/2] - root 0 0 00:18:33 52-22:42:35 23 [ksoftirqd/2] - root 0 0 00:00:00 52-22:42:35 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 52-22:42:35 26 [cpuhp/3] - root 0 0 00:00:30 52-22:42:35 27 [migration/3] - root 0 0 00:18:34 52-22:42:35 28 [ksoftirqd/3] - root 0 0 00:00:00 52-22:42:35 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 52-22:42:35 31 [cpuhp/4] - root 0 0 00:00:30 52-22:42:35 32 [migration/4] - root 0 0 00:18:33 52-22:42:35 33 [ksoftirqd/4] - root 0 0 00:00:00 52-22:42:35 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 52-22:42:35 36 [cpuhp/5] - root 0 0 00:00:30 52-22:42:35 37 [migration/5] - root 0 0 00:18:41 52-22:42:35 38 [ksoftirqd/5] - root 0 0 00:00:00 52-22:42:35 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 52-22:42:35 41 [cpuhp/6] - root 0 0 00:00:30 52-22:42:35 42 [migration/6] - root 0 0 00:18:34 52-22:42:35 43 [ksoftirqd/6] - root 0 0 00:00:00 52-22:42:35 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 52-22:42:35 46 [cpuhp/7] - root 0 0 00:00:30 52-22:42:35 47 [migration/7] - root 0 0 00:18:35 52-22:42:35 48 [ksoftirqd/7] - root 0 0 00:00:00 52-22:42:35 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 52-22:42:35 56 [kdevtmpfs] - root 0 0 00:00:00 52-22:42:35 57 [netns] - root 0 0 00:10:57 52-22:42:35 58 [kauditd] - root 0 0 00:00:05 52-22:42:35 59 [khungtaskd] - root 0 0 00:00:00 52-22:42:35 60 [oom_reaper] - root 0 0 00:00:00 52-22:42:35 61 [writeback] - root 0 0 00:01:37 52-22:42:35 62 [kcompactd0] - root 0 0 00:00:00 52-22:42:35 63 [ksmd] - root 0 0 00:03:18 52-22:42:35 64 [khugepaged] - root 0 0 00:00:00 52-22:42:35 84 [kintegrityd] - root 0 0 00:00:00 52-22:42:35 85 [kblockd] - root 0 0 00:00:00 52-22:42:35 86 [blkcg_punt_bio] - root 0 0 00:00:19 52-22:42:35 88 [kworker/0:1H-kblockd] - root 0 0 00:00:33 52-22:42:35 89 [kswapd0] - root 0 0 00:00:00 52-22:42:35 90 [kthrotld] - root 0 0 00:00:00 52-22:42:35 91 [acpi_thermal_pm] - root 0 0 00:00:00 52-22:42:35 92 [nvme-wq] - root 0 0 00:00:00 52-22:42:35 93 [nvme-reset-wq] - root 0 0 00:00:00 52-22:42:35 94 [nvme-delete-wq] - root 0 0 00:00:00 52-22:42:34 95 [ipv6_addrconf] - root 0 0 00:00:00 52-22:42:34 106 [kstrp] - root 0 0 00:00:00 52-22:42:34 114 [kworker/u17:0] - root 0 0 00:00:19 52-22:42:34 136 [kworker/1:1H-kblockd] - root 0 0 00:00:19 52-22:42:34 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 52-22:42:34 167 [ata_sff] - root 0 0 00:00:00 52-22:42:34 168 [scsi_eh_0] - root 0 0 00:00:00 52-22:42:34 169 [scsi_tmf_0] - root 0 0 00:00:00 52-22:42:34 170 [scsi_eh_1] - root 0 0 00:00:00 52-22:42:34 171 [scsi_tmf_1] - root 0 0 00:00:00 52-22:42:34 173 [scsi_eh_2] - root 0 0 00:00:00 52-22:42:34 174 [scsi_tmf_2] - root 0 0 00:00:19 52-22:42:34 175 [kworker/3:1H-kblockd] - root 0 0 00:00:19 52-22:42:34 178 [kworker/4:1H-kblockd] - root 0 0 00:00:19 52-22:42:34 184 [kworker/7:1H-kblockd] - root 0 0 00:00:19 52-22:42:34 196 [kworker/6:1H-kblockd] - root 0 0 00:12:40 52-22:42:34 206 [jbd2/sda1-8] - root 0 0 00:00:00 52-22:42:34 207 [ext4-rsv-conver] - root 0 0 00:00:19 52-22:42:33 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3884 00:00:12 52-22:42:33 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 52-22:42:33 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:38:21 52-22:42:33 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 52-22:42:32 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4188 00:20:57 52-22:42:31 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:38 52-22:42:31 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 81296 03:35:33 52-22:42:31 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 52-22:42:31 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8836 00:29:20 52-22:42:31 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6436 00:10:02 52-22:42:31 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 06:26:15 52-22:42:31 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21580 02:42:17 52-22:42:31 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6440 00:00:58 52-22:42:31 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 52-22:42:31 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 52-22:42:31 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 52-22:42:31 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:16:39 52-22:42:31 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 5908 00:00:02 52-22:42:31 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 52-22:42:31 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51536 00:02:58 52-22:42:31 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:20 52-22:42:31 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:02:02 52-22:42:31 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:33:50 52-22:41:55 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:06:06 52-22:41:55 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 6088 3496 01:24:40 17-06:31:56 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5832 3124 00:36:22 17-06:31:56 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:30:41 17-06:31:56 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 52-22:32:29 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:16:24 52-22:32:29 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:09 52-22:32:29 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 52-22:32:29 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 52-22:32:29 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 52-22:32:29 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 52-22:32:29 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 52-22:32:29 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 52-22:32:29 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 52-22:32:29 228933 [check_nginx] <defunct> 0::/system.slice/monit.service root 0 0 00:00:00 52-22:32:28 229054 [check_nginx] <defunct> - root 0 0 00:00:00 35:19 324445 [kworker/5:0-events] - root 0 0 00:00:00 31:50 405187 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 27:08 511195 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 27:03 513077 [kworker/0:1-events] 0::/system.slice/packagekit.service root 288432 15840 00:00:33 52-19:36:11 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5272 00:00:04 52-19:36:11 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/cron.service root 5908 2320 00:00:00 20:42:55 552941 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874168 41560 00:00:04 20:42:55 552998 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2360 00:00:00 20:42:55 553236 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 5056 00:00:00 20:42:55 553276 sudo ./webhookstart 0::/system.slice/cron.service root 2480 568 00:00:00 20:42:55 553389 sh ./webhookstart 0::/system.slice/cron.service root 40348 35396 00:00:10 20:42:55 553402 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2372 00:00:03 20:42:51 557011 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13296 00:00:00 20:42:51 557016 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2372 00:00:03 20:42:51 557025 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13280 00:00:00 20:42:51 557030 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55488 00:01:09 20:42:51 557511 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 57472 00:01:09 20:42:51 557539 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/apache2.service www-data 266744 51064 00:00:03 27-04:10:26 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2372 00:00:00 20:42:49 559495 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9236 00:00:06 20:42:49 559499 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2368 00:00:00 20:42:49 559538 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12628 00:01:00 20:42:49 559541 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2356 00:00:00 20:42:49 559572 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 489076 47752 00:01:01 20:42:49 559577 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2408 00:00:00 20:42:49 559636 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10444 00:01:05 20:42:49 559642 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2368 00:00:00 20:42:49 559677 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 14904 00:01:03 20:42:49 559688 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2372 00:00:00 20:42:49 559717 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12680 00:01:06 20:42:49 559725 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2372 00:00:00 20:42:49 559751 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 13220 00:01:00 20:42:49 559755 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 25:40 560402 [kworker/3:0-events] - root 0 0 00:00:00 24:23 588629 [kworker/u16:0-flush-8:0] 0::/system.slice/systemd-journald.service root 46932 13392 00:05:39 2-07:17:39 693540 /lib/systemd/systemd-journald 0::/system.slice/cron.service root 5688 2640 00:00:52 2-07:17:38 694556 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3112 13:00:22 51-13:10:56 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 13:05:00 51-13:10:56 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop - root 0 0 00:00:00 18:56 713719 [kworker/u16:1-ext4-rsv-conversion] 0::/system.slice/cron.service root 5708 3272 00:00:03 2-07:16:56 720240 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 14:40 821620 [kworker/6:0-events] - root 0 0 00:00:00 14:30 825444 [kworker/2:1-events] - root 0 0 00:00:00 11:47 896106 [kworker/7:0-events] - root 0 0 00:00:00 09:55 939111 [kworker/0:0-cgroup_destroy] 0::/system.slice/apache2.service www-data 266752 51060 00:00:04 28-13:29:54 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:00 08:38 963089 [kworker/2:0+events] - root 0 0 00:00:00 08:07 972106 [kworker/6:1-events] - root 0 0 00:00:00 08:07 972148 [kworker/1:2-events] - root 0 0 00:00:00 06:55 998837 [kworker/3:1-events] - root 0 0 00:00:00 06:17 1016863 [kworker/5:1-events] - root 0 0 00:00:00 05:51 1033114 [kworker/4:2-events] - root 0 0 00:00:00 05:15 1052006 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 03:57 1080755 [kworker/0:2-cgroup_destroy] - root 0 0 00:00:00 03:04 1100454 [kworker/2:2-events] - root 0 0 00:00:00 02:27 1114474 [kworker/1:1-events] - root 0 0 00:00:00 01:51 1133302 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 01:14 1152881 [kworker/3:2-events] 0::/system.slice/cron.service root 4284 560 00:00:00 00:57 1157812 sleep 60 0::/system.slice/cron.service root 5908 2380 00:00:00 00:56 1158876 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8928 00:00:00 00:56 1158903 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2380 00:00:00 00:55 1159047 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6956 00:00:00 00:55 1159059 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2384 00:00:00 00:55 1159210 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8852 00:00:00 00:55 1159228 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 00:55 1159258 [kworker/6:2-events] 0::/system.slice/cron.service root 5908 2344 00:00:00 00:55 1159307 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11032 00:00:00 00:55 1159311 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:55 1159352 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10964 00:00:00 00:55 1159359 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2340 00:00:00 00:55 1159415 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6836 00:00:00 00:55 1159417 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 560 00:00:00 00:46 1162512 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:44 1163121 /bin/sleep 60 0::/system.slice/cron.service root 5908 2364 00:00:00 00:40 1164259 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8904 00:00:00 00:40 1164263 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:38 1164789 sleep 60 - root 0 0 00:00:00 00:37 1165025 [kworker/4:1-events] - root 0 0 00:00:00 00:21 1169523 [kworker/5:2-mm_percpu_wq] 0::/system.slice/cron.service root 2392 500 00:00:00 00:18 1170405 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:16 1170961 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:07 1173520 sleep 8 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 1175412 sleep 2 0::/system.slice/xinetd.service root 6212 3732 00:00:00 00:01 1175425 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 492 00:00:00 00:01 1175505 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 1175564 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:00 1175623 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11100 00:00:00 00:00 1175624 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9004 --header Origin: https://127.0.0.1:9004 --header Sec-WebSocket-Key: MTA5MjM6MTQwMDg= --header Sec-WebSocket-Version: 13 https://127.0.0.1:9004/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:00 1175625 wc -l 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1175627 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 1175628 sleep 1 0::/system.slice/cron.service root 99640 32252 00:00:00 00:00 1175630 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 1175641 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1175642 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 1175691 sleep 1 0::/system.slice/cron.service root 5708 1404 00:00:00 00:00 1175738 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 3020 00:00:00 00:00 1175740 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1132 00:00:00 00:00 1175757 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1175758 sleep 2 0::/system.slice/ntp.service ntp 74496 3820 00:00:04 19:41:55 2044973 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2561716 201556 06:09:48 19:41:54 2046257 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5708 3064 00:03:02 48-13:51:56 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:30:49 48-13:51:56 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 12:11:09 48-13:51:56 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 03:37:20 48-13:51:56 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 04:02:33 48-13:51:56 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:54:47 48-13:51:56 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 03:41:07 48-13:51:56 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 03:35:08 48-13:51:56 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51404 00:00:05 40-00:42:53 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50752 00:00:06 40-00:42:53 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51152 00:00:05 40-00:42:53 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50772 00:00:05 40-00:42:53 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 51076 00:00:05 40-00:42:53 2711949 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50784 00:00:05 40-00:10:07 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51288 00:00:05 40-00:10:06 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50920 00:00:05 39-13:01:09 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 57:37 3971424 [kworker/1:0-events] 0::/system.slice/php7.4-fpm.service root 232280 36632 00:00:42 5-19:41:16 4119153 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 75899sec preferred_lft 75899sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-15 23:42 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fc58b0442Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 183868 11520 09:14:34 50-23:00:45 1 /sbin/init - root 0 0 00:00:04 50-23:00:45 2 [kthreadd] - root 0 0 00:00:00 50-23:00:45 3 [rcu_gp] - root 0 0 00:00:00 50-23:00:45 4 [rcu_par_gp] - root 0 0 00:00:00 50-23:00:45 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 50-23:00:45 8 [mm_percpu_wq] - root 0 0 00:00:00 50-23:00:45 9 [rcu_tasks_rude_] - root 0 0 00:00:00 50-23:00:45 10 [rcu_tasks_trace] - root 0 0 00:17:59 50-23:00:45 11 [ksoftirqd/0] - root 0 0 01:16:57 50-23:00:45 12 [rcu_sched] - root 0 0 00:00:29 50-23:00:45 13 [migration/0] - root 0 0 00:00:00 50-23:00:45 15 [cpuhp/0] - root 0 0 00:00:00 50-23:00:45 16 [cpuhp/1] - root 0 0 00:00:29 50-23:00:45 17 [migration/1] - root 0 0 00:17:55 50-23:00:45 18 [ksoftirqd/1] - root 0 0 00:00:00 50-23:00:45 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 50-23:00:45 21 [cpuhp/2] - root 0 0 00:00:29 50-23:00:45 22 [migration/2] - root 0 0 00:17:53 50-23:00:45 23 [ksoftirqd/2] - root 0 0 00:00:00 50-23:00:45 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 50-23:00:45 26 [cpuhp/3] - root 0 0 00:00:29 50-23:00:45 27 [migration/3] - root 0 0 00:17:53 50-23:00:45 28 [ksoftirqd/3] - root 0 0 00:00:00 50-23:00:45 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 50-23:00:45 31 [cpuhp/4] - root 0 0 00:00:29 50-23:00:45 32 [migration/4] - root 0 0 00:17:52 50-23:00:45 33 [ksoftirqd/4] - root 0 0 00:00:00 50-23:00:45 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 50-23:00:45 36 [cpuhp/5] - root 0 0 00:00:29 50-23:00:45 37 [migration/5] - root 0 0 00:18:01 50-23:00:45 38 [ksoftirqd/5] - root 0 0 00:00:00 50-23:00:45 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 50-23:00:45 41 [cpuhp/6] - root 0 0 00:00:29 50-23:00:45 42 [migration/6] - root 0 0 00:17:54 50-23:00:45 43 [ksoftirqd/6] - root 0 0 00:00:00 50-23:00:45 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 50-23:00:45 46 [cpuhp/7] - root 0 0 00:00:29 50-23:00:45 47 [migration/7] - root 0 0 00:17:55 50-23:00:45 48 [ksoftirqd/7] - root 0 0 00:00:00 50-23:00:45 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 50-23:00:45 56 [kdevtmpfs] - root 0 0 00:00:00 50-23:00:45 57 [netns] - root 0 0 00:10:57 50-23:00:45 58 [kauditd] - root 0 0 00:00:05 50-23:00:45 59 [khungtaskd] - root 0 0 00:00:00 50-23:00:45 60 [oom_reaper] - root 0 0 00:00:00 50-23:00:45 61 [writeback] - root 0 0 00:01:33 50-23:00:45 62 [kcompactd0] - root 0 0 00:00:00 50-23:00:45 63 [ksmd] - root 0 0 00:03:11 50-23:00:45 64 [khugepaged] - root 0 0 00:00:00 50-23:00:45 84 [kintegrityd] - root 0 0 00:00:00 50-23:00:45 85 [kblockd] - root 0 0 00:00:00 50-23:00:45 86 [blkcg_punt_bio] - root 0 0 00:00:19 50-23:00:45 88 [kworker/0:1H-kblockd] - root 0 0 00:00:33 50-23:00:45 89 [kswapd0] - root 0 0 00:00:00 50-23:00:45 90 [kthrotld] - root 0 0 00:00:00 50-23:00:45 91 [acpi_thermal_pm] - root 0 0 00:00:00 50-23:00:45 92 [nvme-wq] - root 0 0 00:00:00 50-23:00:45 93 [nvme-reset-wq] - root 0 0 00:00:00 50-23:00:45 94 [nvme-delete-wq] - root 0 0 00:00:00 50-23:00:44 95 [ipv6_addrconf] - root 0 0 00:00:00 50-23:00:44 106 [kstrp] - root 0 0 00:00:00 50-23:00:44 114 [kworker/u17:0] - root 0 0 00:00:19 50-23:00:44 136 [kworker/1:1H-kblockd] - root 0 0 00:00:19 50-23:00:44 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 50-23:00:44 167 [ata_sff] - root 0 0 00:00:00 50-23:00:44 168 [scsi_eh_0] - root 0 0 00:00:00 50-23:00:44 169 [scsi_tmf_0] - root 0 0 00:00:00 50-23:00:44 170 [scsi_eh_1] - root 0 0 00:00:00 50-23:00:44 171 [scsi_tmf_1] - root 0 0 00:00:00 50-23:00:44 173 [scsi_eh_2] - root 0 0 00:00:00 50-23:00:44 174 [scsi_tmf_2] - root 0 0 00:00:19 50-23:00:44 175 [kworker/3:1H-kblockd] - root 0 0 00:00:19 50-23:00:44 178 [kworker/4:1H-kblockd] - root 0 0 00:00:19 50-23:00:44 184 [kworker/7:1H-kblockd] - root 0 0 00:00:18 50-23:00:44 196 [kworker/6:1H-kblockd] - root 0 0 00:12:19 50-23:00:44 206 [jbd2/sda1-8] - root 0 0 00:00:00 50-23:00:44 207 [ext4-rsv-conver] - root 0 0 00:00:19 50-23:00:43 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3884 00:00:11 50-23:00:43 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 50-23:00:43 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:38:21 50-23:00:43 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 50-23:00:42 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4188 00:20:11 50-23:00:41 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:32 50-23:00:41 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 81584 03:27:37 50-23:00:41 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 50-23:00:41 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8856 00:28:16 50-23:00:41 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6436 00:09:40 50-23:00:41 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 06:11:56 50-23:00:41 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21580 02:36:24 50-23:00:41 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6440 00:00:56 50-23:00:41 714 sshd: /usr/sbin/sshd -D [listener] 1 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 50-23:00:41 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 50-23:00:41 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 50-23:00:41 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11468 5620 00:16:00 50-23:00:41 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 5908 00:00:02 50-23:00:41 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 50-23:00:41 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51536 00:02:51 50-23:00:41 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:19 50-23:00:41 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:58 50-23:00:41 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:32:34 50-23:00:05 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:05:53 50-23:00:05 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 6088 3496 01:15:07 15-06:50:06 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5832 3128 00:32:13 15-06:50:06 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:27:11 15-06:50:06 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 50-22:50:39 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:15:55 50-22:50:39 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:09 50-22:50:39 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 50-22:50:39 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 50-22:50:39 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 50-22:50:39 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 50-22:50:39 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 50-22:50:39 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 50-22:50:39 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 50-22:50:39 228933 [check_nginx] <defunct> 0::/system.slice/monit.service root 0 0 00:00:00 50-22:50:38 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 15840 00:00:32 50-19:54:21 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5272 00:00:04 50-19:54:21 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 51056 00:00:03 25-04:28:36 558518 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3828 00:00:01 07:35:51 691134 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2733688 166000 02:23:50 07:35:49 693280 /usr/sbin/mariadbd 0::/system.slice/systemd-journald.service root 46932 16436 00:00:46 07:35:49 693540 /lib/systemd/systemd-journald 0::/system.slice/cron.service root 5688 2640 00:00:07 07:35:48 694556 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3112 12:30:37 49-13:29:06 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 12:35:03 49-13:29:06 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5708 3272 00:00:00 07:35:06 720240 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/apache2.service www-data 266752 50900 00:00:03 26-13:48:04 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:03:05 1770118 [kworker/u16:3-flush-8:0] 0::/system.slice/cron.service root 5908 2452 00:00:00 21:01:05 2141051 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 4988 00:00:00 21:01:05 2141071 sudo ./webhookstart 0::/system.slice/cron.service root 5908 2360 00:00:00 21:01:05 2141104 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875200 49148 00:00:04 21:01:05 2141131 /usr/sbin/node server.js 0::/system.slice/cron.service root 2480 572 00:00:00 21:01:05 2141162 sh ./webhookstart 0::/system.slice/cron.service root 40348 35508 00:00:11 21:01:05 2141200 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2436 00:00:03 21:01:04 2142122 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13248 00:00:00 21:01:04 2142124 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 59368 00:01:18 21:01:04 2142452 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2404 00:00:03 21:01:02 2144211 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13232 00:00:00 21:01:02 2144217 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55496 00:01:16 21:01:01 2144673 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2316 00:00:00 21:00:59 2147187 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9032 00:00:06 21:00:59 2147191 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2380 00:00:00 21:00:59 2147221 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12760 00:00:58 21:00:59 2147224 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2328 00:00:00 21:00:59 2147266 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 484720 42940 00:01:01 21:00:59 2147273 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2364 00:00:00 21:00:59 2147308 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12688 00:01:04 21:00:59 2147314 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2332 00:00:00 21:00:59 2147350 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 14664 00:01:03 21:00:59 2147353 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2312 00:00:00 21:00:59 2147413 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13428 00:01:03 21:00:59 2147419 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2520 00:00:00 21:00:59 2147461 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12636 00:01:00 21:00:59 2147463 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 38:50 2363362 [kworker/2:0-events] 0::/system.slice/cron.service root 5708 3064 00:02:55 46-14:10:06 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:24:41 46-14:10:06 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 11:41:39 46-14:10:06 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 03:28:29 46-14:10:06 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 03:52:39 46-14:10:06 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:47:41 46-14:10:06 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 03:32:09 46-14:10:06 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 03:26:22 46-14:10:06 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr - root 0 0 00:00:00 25:20 2683182 [kworker/7:1-events] 0::/system.slice/apache2.service www-data 266748 51248 00:00:05 38-01:01:03 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50748 00:00:05 38-01:01:03 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51152 00:00:05 38-01:01:03 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50572 00:00:05 38-01:01:03 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50920 00:00:05 38-01:01:03 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:00 24:02 2721825 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 22:22 2758191 [kworker/0:0-events] - root 0 0 00:00:00 21:14 2783485 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 20:27 2800410 [kworker/3:0-cgroup_destroy] - root 0 0 00:00:00 13:56 2958696 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 13:40 2967812 [kworker/6:0-cgroup_destroy] - root 0 0 00:00:00 13:03 2988117 [kworker/5:2-events] - root 0 0 00:00:00 13:01 2989006 [kworker/u16:4-flush-8:0] - root 0 0 00:00:00 10:01 3055094 [kworker/4:1-events] - root 0 0 00:00:00 09:19 3080609 [kworker/3:1-events] - root 0 0 00:00:00 08:53 3090987 [kworker/7:0-events] - root 0 0 00:00:00 08:48 3092522 [kworker/0:2-events] - root 0 0 00:00:00 08:11 3103042 [kworker/2:2-events] - root 0 0 00:00:00 08:01 3107303 [kworker/6:2-events] - root 0 0 00:00:00 07:40 3113409 [kworker/1:1-events] - root 0 0 00:00:00 07:08 3122518 [kworker/5:1-cgroup_destroy] - root 0 0 00:00:00 04:05 3200456 [kworker/3:2-cgroup_destroy] - root 0 0 00:00:00 03:50 3210245 [kworker/7:2-events] - root 0 0 00:00:00 03:45 3212292 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 03:39 3214288 [kworker/4:2-events] - root 0 0 00:00:00 02:41 3235843 [kworker/6:1-events] - root 0 0 00:00:00 01:49 3255680 [kworker/1:2-events] - root 0 0 00:00:00 01:28 3263079 [kworker/5:0-events] 0::/system.slice/cron.service root 10888 3652 00:00:00 01:06 3270857 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 01:06 3270916 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2892 00:00:00 01:06 3270934 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1960 00:00:00 01:06 3271377 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9820 00:00:00 01:06 3271480 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 636 00:00:00 01:06 3271481 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3064 00:00:00 01:05 3271661 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3296 00:00:00 01:05 3271685 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 3288 00:00:00 01:05 3271694 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 5708 3120 00:00:00 01:05 3271719 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5908 2364 00:00:00 01:05 3272144 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 11012 00:00:00 01:05 3272155 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2300 00:00:00 01:04 3272408 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8912 00:00:00 01:04 3272417 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2384 00:00:00 01:04 3272655 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8952 00:00:00 01:04 3272681 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:04 3272784 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8944 00:00:00 01:04 3272801 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 01:04 3272830 sleep 85 0::/system.slice/cron.service root 4284 556 00:00:00 01:04 3272921 sleep 117 0::/system.slice/cron.service root 5908 2396 00:00:00 01:04 3272948 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11076 00:00:00 01:04 3272972 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 01:04 3272989 sleep 79 0::/system.slice/cron.service root 4284 564 00:00:00 01:04 3272998 sleep 118 0::/system.slice/cron.service root 5908 2548 00:00:00 01:04 3273024 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10548 00:00:00 01:03 3273039 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:02 3274905 [kworker/2:1-cgroup_destroy] 0::/system.slice/cron.service root 2392 560 00:00:00 00:54 3281814 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:52 3282504 /bin/sleep 60 0::/system.slice/cron.service root 5908 2412 00:00:00 00:48 3283581 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8784 00:00:00 00:48 3283589 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 2392 500 00:00:00 00:27 3289714 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:25 3290311 /bin/sleep 60 0::/system.slice/ssh.service root 16332 7968 00:00:00 00:22 3291023 sshd: unknown [priv] 0::/system.slice/ssh.service sshd 13272 4520 00:00:00 00:22 3291024 sshd: unknown [net] 0::/system.slice/cron.service root 10888 3648 00:00:00 00:07 3295485 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 516 00:00:00 00:07 3295552 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 5832 3384 00:00:00 00:07 3295637 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine 0::/system.slice/cron.service root 4284 500 00:00:00 00:06 3296713 sleep 8 0::/system.slice/cron.service root 4284 500 00:00:00 00:05 3296799 sleep 10 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 3297928 sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 3298046 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:02 3298088 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11176 00:00:00 00:02 3298089 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8225 --header Origin: https://127.0.0.1:8225 --header Sec-WebSocket-Key: MzcxNjoxNzU5Ng== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8225/ -k 0::/system.slice/cron.service root 4288 496 00:00:00 00:02 3298090 wc -l 0::/system.slice/cron.service root 4080 3188 00:00:00 00:02 3298100 /bin/bash ./statusdispolock 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 3298163 sleep 2 0::/system.slice/cron.service root 2392 564 00:00:00 00:02 3298183 /bin/sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3298243 sleep 2 0::/system.slice/xinetd.service root 6260 3740 00:00:00 00:01 3298370 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3298427 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3298479 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3298520 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3298536 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3298550 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 3298656 sleep 0.1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3298657 sleep 1 0::/system.slice/cron.service root 5708 2876 00:00:00 00:00 3298659 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-wifiprofile-engine.scr 0::/system.slice/cron.service root 5708 1960 00:00:00 00:00 3298673 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-wifiprofile-engine.scr 0::/system.slice/cron.service root 5244 2924 00:00:00 00:00 3298675 jq .mdms.micromdm 0::/system.slice/xinetd.service root 6676 1136 00:00:00 00:00 3298692 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/apache2.service www-data 266676 50780 00:00:05 38-00:28:17 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51088 00:00:05 38-00:28:16 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50920 00:00:05 37-13:19:19 3582124 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232280 36360 00:00:27 3-19:59:26 4119153 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 65816sec preferred_lft 65816sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-14 00:01 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fbce908bdFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 183868 11504 08:53:08 48-23:50:23 1 /sbin/init - root 0 0 00:00:04 48-23:50:23 2 [kthreadd] - root 0 0 00:00:00 48-23:50:23 3 [rcu_gp] - root 0 0 00:00:00 48-23:50:23 4 [rcu_par_gp] - root 0 0 00:00:00 48-23:50:23 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 48-23:50:23 8 [mm_percpu_wq] - root 0 0 00:00:00 48-23:50:23 9 [rcu_tasks_rude_] - root 0 0 00:00:00 48-23:50:23 10 [rcu_tasks_trace] - root 0 0 00:17:18 48-23:50:23 11 [ksoftirqd/0] - root 0 0 01:14:00 48-23:50:23 12 [rcu_sched] - root 0 0 00:00:28 48-23:50:23 13 [migration/0] - root 0 0 00:00:00 48-23:50:23 15 [cpuhp/0] - root 0 0 00:00:00 48-23:50:23 16 [cpuhp/1] - root 0 0 00:00:28 48-23:50:23 17 [migration/1] - root 0 0 00:17:14 48-23:50:23 18 [ksoftirqd/1] - root 0 0 00:00:00 48-23:50:23 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 48-23:50:23 21 [cpuhp/2] - root 0 0 00:00:28 48-23:50:23 22 [migration/2] - root 0 0 00:17:13 48-23:50:23 23 [ksoftirqd/2] - root 0 0 00:00:00 48-23:50:23 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 48-23:50:23 26 [cpuhp/3] - root 0 0 00:00:28 48-23:50:23 27 [migration/3] - root 0 0 00:17:13 48-23:50:23 28 [ksoftirqd/3] - root 0 0 00:00:00 48-23:50:23 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 48-23:50:23 31 [cpuhp/4] - root 0 0 00:00:28 48-23:50:23 32 [migration/4] - root 0 0 00:17:12 48-23:50:23 33 [ksoftirqd/4] - root 0 0 00:00:00 48-23:50:23 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 48-23:50:23 36 [cpuhp/5] - root 0 0 00:00:28 48-23:50:23 37 [migration/5] - root 0 0 00:17:20 48-23:50:23 38 [ksoftirqd/5] - root 0 0 00:00:00 48-23:50:23 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 48-23:50:23 41 [cpuhp/6] - root 0 0 00:00:28 48-23:50:23 42 [migration/6] - root 0 0 00:17:13 48-23:50:23 43 [ksoftirqd/6] - root 0 0 00:00:00 48-23:50:23 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 48-23:50:23 46 [cpuhp/7] - root 0 0 00:00:28 48-23:50:23 47 [migration/7] - root 0 0 00:17:14 48-23:50:23 48 [ksoftirqd/7] - root 0 0 00:00:00 48-23:50:23 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 48-23:50:23 56 [kdevtmpfs] - root 0 0 00:00:00 48-23:50:23 57 [netns] - root 0 0 00:10:35 48-23:50:23 58 [kauditd] - root 0 0 00:00:04 48-23:50:23 59 [khungtaskd] - root 0 0 00:00:00 48-23:50:23 60 [oom_reaper] - root 0 0 00:00:00 48-23:50:23 61 [writeback] - root 0 0 00:01:29 48-23:50:23 62 [kcompactd0] - root 0 0 00:00:00 48-23:50:23 63 [ksmd] - root 0 0 00:03:03 48-23:50:23 64 [khugepaged] - root 0 0 00:00:00 48-23:50:23 84 [kintegrityd] - root 0 0 00:00:00 48-23:50:23 85 [kblockd] - root 0 0 00:00:00 48-23:50:23 86 [blkcg_punt_bio] - root 0 0 00:00:18 48-23:50:23 88 [kworker/0:1H-kblockd] - root 0 0 00:00:31 48-23:50:23 89 [kswapd0] - root 0 0 00:00:00 48-23:50:23 90 [kthrotld] - root 0 0 00:00:00 48-23:50:23 91 [acpi_thermal_pm] - root 0 0 00:00:00 48-23:50:23 92 [nvme-wq] - root 0 0 00:00:00 48-23:50:23 93 [nvme-reset-wq] - root 0 0 00:00:00 48-23:50:23 94 [nvme-delete-wq] - root 0 0 00:00:00 48-23:50:22 95 [ipv6_addrconf] - root 0 0 00:00:00 48-23:50:22 106 [kstrp] - root 0 0 00:00:00 48-23:50:22 114 [kworker/u17:0] - root 0 0 00:00:18 48-23:50:22 136 [kworker/1:1H-kblockd] - root 0 0 00:00:18 48-23:50:22 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 48-23:50:22 167 [ata_sff] - root 0 0 00:00:00 48-23:50:22 168 [scsi_eh_0] - root 0 0 00:00:00 48-23:50:22 169 [scsi_tmf_0] - root 0 0 00:00:00 48-23:50:22 170 [scsi_eh_1] - root 0 0 00:00:00 48-23:50:22 171 [scsi_tmf_1] - root 0 0 00:00:00 48-23:50:22 173 [scsi_eh_2] - root 0 0 00:00:00 48-23:50:22 174 [scsi_tmf_2] - root 0 0 00:00:18 48-23:50:22 175 [kworker/3:1H-kblockd] - root 0 0 00:00:18 48-23:50:22 178 [kworker/4:1H-kblockd] - root 0 0 00:00:18 48-23:50:22 184 [kworker/7:1H-kblockd] - root 0 0 00:00:18 48-23:50:22 196 [kworker/6:1H-kblockd] - root 0 0 00:11:51 48-23:50:22 206 [jbd2/sda1-8] - root 0 0 00:00:00 48-23:50:22 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 249872 189688 03:12:13 48-23:50:21 286 /lib/systemd/systemd-journald - root 0 0 00:00:18 48-23:50:21 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3884 00:00:11 48-23:50:21 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 48-23:50:21 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:37:04 48-23:50:21 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 48-23:50:20 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4188 00:19:23 48-23:50:19 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:26 48-23:50:19 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 82840 03:19:35 48-23:50:19 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 48-23:50:19 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8908 00:27:10 48-23:50:19 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6436 00:09:18 48-23:50:19 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 05:57:36 48-23:50:19 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21580 02:30:13 48-23:50:19 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6440 00:00:54 48-23:50:19 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 48-23:50:19 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 48-23:50:19 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 48-23:50:19 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:15:23 48-23:50:19 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 5908 00:00:02 48-23:50:19 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 48-23:50:19 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51564 00:02:44 48-23:50:19 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:19 48-23:50:19 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:53 48-23:50:19 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:31:19 48-23:49:43 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:05:39 48-23:49:43 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5688 2644 00:05:11 13-07:39:55 99559 /usr/sbin/cron -f 0::/system.slice/cron.service root 6088 3496 01:05:31 13-07:39:44 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5708 3148 00:00:20 13-07:39:44 105923 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5832 3128 00:28:07 13-07:39:44 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:23:42 13-07:39:44 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 48-23:40:17 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:15:36 48-23:40:17 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:09 48-23:40:17 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 48-23:40:17 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 48-23:40:17 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 48-23:40:17 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 48-23:40:17 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 48-23:40:17 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 48-23:40:17 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 48-23:40:17 228933 [check_nginx] <defunct> 0::/system.slice/monit.service root 0 0 00:00:00 48-23:40:16 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 15864 00:00:30 48-20:43:59 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5292 00:00:04 48-20:43:59 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50832 00:00:03 23-05:18:14 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 12:01:00 47-14:18:44 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 12:05:14 47-14:18:44 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop - root 0 0 00:00:00 45:47 778417 [kworker/3:2-cgroup_destroy] - root 0 0 00:00:01 42:29 869114 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 266752 50916 00:00:03 24-14:37:42 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:00 32:33 1112111 [kworker/5:0-mm_percpu_wq] 0::/system.slice/ntp.service ntp 74496 3320 00:00:04 20:49:43 1124382 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2561724 200136 06:00:31 20:49:41 1125507 /usr/sbin/mariadbd - root 0 0 00:00:00 31:25 1137557 [kworker/2:2-events] - root 0 0 00:00:00 25:13 1281637 [kworker/6:0-events] - root 0 0 00:00:00 23:59 1318273 [kworker/4:2-mm_percpu_wq] - root 0 0 00:00:00 22:52 1343214 [kworker/1:2-cgroup_destroy] - root 0 0 00:00:00 20:43 1392337 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 16:24 1495150 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 15:21 1516121 [kworker/u16:0-events_unbound] - root 0 0 00:00:00 14:18 1544857 [kworker/7:2-events] - root 0 0 00:00:00 11:26 1620837 [kworker/4:1-events] - root 0 0 00:00:00 10:28 1642466 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 09:46 1654811 [kworker/0:2-events] - root 0 0 00:00:00 09:43 1656460 [kworker/5:2-events] - root 0 0 00:00:00 09:15 1668261 [kworker/7:1-mm_percpu_wq] - root 0 0 00:00:00 08:44 1684699 [kworker/6:2-events] - root 0 0 00:00:00 08:07 1702669 [kworker/3:1-cgroup_destroy] - root 0 0 00:00:00 06:44 1728901 [kworker/u16:3-flush-8:0] - root 0 0 00:00:00 05:25 1760065 [kworker/2:0-events] - root 0 0 00:00:00 04:59 1769526 [kworker/1:1-events] - root 0 0 00:00:00 04:01 1798244 [kworker/4:0-events] - root 0 0 00:00:00 03:43 1809618 [kworker/5:1-events] - root 0 0 00:00:00 03:30 1817897 [kworker/0:0-events] - root 0 0 00:00:00 03:25 1820990 [kworker/7:0-events] - root 0 0 00:00:00 02:33 1840795 [kworker/3:0-events] - root 0 0 00:00:00 02:28 1842629 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 02:17 1846315 [kworker/6:1-mm_percpu_wq] 0::/system.slice/cron.service root 10892 3632 00:00:00 00:44 1880506 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 00:44 1880734 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2916 00:00:00 00:44 1880826 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1972 00:00:00 00:44 1881102 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9900 00:00:00 00:44 1881105 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 712 00:00:00 00:44 1881106 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3200 00:00:00 00:44 1881138 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5708 3156 00:00:00 00:43 1881254 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 5708 3184 00:00:00 00:43 1881259 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 4284 556 00:00:00 00:43 1881921 sleep 96 0::/system.slice/cron.service root 4284 496 00:00:00 00:43 1882051 sleep 76 0::/system.slice/cron.service root 4284 556 00:00:00 00:42 1882065 sleep 46 0::/system.slice/cron.service root 2392 556 00:00:00 00:38 1883889 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:36 1884623 /bin/sleep 60 0::/system.slice/cron.service root 5908 2396 00:00:00 00:32 1886007 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10492 00:00:00 00:32 1886011 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:32 1886022 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8804 00:00:00 00:32 1886026 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2544 00:00:00 00:32 1886038 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10852 00:00:00 00:32 1886040 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:32 1886078 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8880 00:00:00 00:32 1886082 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:32 1886109 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10848 00:00:00 00:32 1886111 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2308 00:00:00 00:32 1886138 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8872 00:00:00 00:32 1886140 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2540 00:00:00 00:32 1886168 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8836 00:00:00 00:32 1886171 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 500 00:00:00 00:23 1889207 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:21 1889799 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:13 1892374 sleep 60 0::/system.slice/cron.service root 4284 492 00:00:00 00:04 1894922 sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:03 1895179 /bin/sleep 5 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 1895583 sleep 8 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 1895718 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 1895832 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 1895919 sleep 1 0::/system.slice/xinetd.service root 6196 3652 00:00:00 00:00 1895956 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 1895984 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1896078 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1896116 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 1896158 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 1896164 sleep 0.1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1896173 sleep 0.1 0::/system.slice/cron.service root 5840 1464 00:00:00 00:00 1896174 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5244 2976 00:00:00 00:00 1896176 jq .dispositivos.ios 0::/system.slice/cron.service root 5832 1500 00:00:00 00:00 1896190 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 16716 8728 00:00:00 00:00 1896191 /usr/bin/mysql -ulazarus -px xxxxx lazarus -N 0::/system.slice/cron.service root 5364 684 00:00:00 00:00 1896192 /bin/sed -e s/\t/|/g 0::/system.slice/cron.service root 5364 756 00:00:00 00:00 1896193 /bin/sed -e s/ //g 0::/system.slice/xinetd.service root 6676 1136 00:00:00 00:00 1896196 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 3064 00:02:47 44-14:59:44 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:18:35 44-14:59:44 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 11:12:15 44-14:59:44 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 03:19:42 44-14:59:44 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 03:42:50 44-14:59:44 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:40:38 44-14:59:44 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 03:23:15 44-14:59:44 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 03:17:39 44-14:59:44 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51016 00:00:05 36-01:50:41 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50556 00:00:05 36-01:50:41 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51084 00:00:05 36-01:50:41 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50584 00:00:05 36-01:50:41 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50928 00:00:05 36-01:50:41 2711949 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50592 00:00:05 36-01:17:55 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51172 00:00:05 36-01:17:54 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50776 00:00:05 35-14:08:57 3582124 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2396 00:00:00 21:50:43 3829816 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 5908 2344 00:00:00 21:50:43 3829818 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 11984 4988 00:00:00 21:50:43 3829839 sudo ./webhookstart 0::/system.slice/cron.service root 875192 44308 00:00:04 21:50:43 3829841 /usr/sbin/node server.js 0::/system.slice/cron.service root 2480 504 00:00:00 21:50:43 3829958 sh ./webhookstart 0::/system.slice/cron.service root 40348 34788 00:00:12 21:50:43 3829981 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2328 00:00:03 21:50:40 3833225 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13268 00:00:00 21:50:40 3833236 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2456 00:00:03 21:50:40 3833245 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13296 00:00:00 21:50:40 3833250 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57472 00:01:24 21:50:39 3833639 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 309224 55128 00:01:23 21:50:39 3833654 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2376 00:00:00 21:50:37 3836096 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8968 00:00:07 21:50:37 3836100 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2344 00:00:00 21:50:37 3836140 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9044 00:01:01 21:50:37 3836144 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2380 00:00:00 21:50:37 3836173 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 487988 44388 00:01:03 21:50:37 3836180 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2348 00:00:00 21:50:37 3836214 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12980 00:01:06 21:50:37 3836219 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2332 00:00:00 21:50:37 3836251 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13316 00:01:06 21:50:37 3836260 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2372 00:00:00 21:50:37 3836276 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13032 00:01:06 21:50:37 3836285 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2408 00:00:00 21:50:37 3836332 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11716 00:01:02 21:50:37 3836337 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/php7.4-fpm.service root 232280 36380 00:00:13 1-20:49:04 4119153 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 80379sec preferred_lft 80379sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-12 00:50 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fb6d1f8b4Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 182964 11496 08:31:01 46-23:55:14 1 /sbin/init - root 0 0 00:00:03 46-23:55:14 2 [kthreadd] - root 0 0 00:00:00 46-23:55:14 3 [rcu_gp] - root 0 0 00:00:00 46-23:55:14 4 [rcu_par_gp] - root 0 0 00:00:00 46-23:55:14 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 46-23:55:14 8 [mm_percpu_wq] - root 0 0 00:00:00 46-23:55:14 9 [rcu_tasks_rude_] - root 0 0 00:00:00 46-23:55:14 10 [rcu_tasks_trace] - root 0 0 00:16:36 46-23:55:14 11 [ksoftirqd/0] - root 0 0 01:10:56 46-23:55:14 12 [rcu_sched] - root 0 0 00:00:26 46-23:55:14 13 [migration/0] - root 0 0 00:00:00 46-23:55:14 15 [cpuhp/0] - root 0 0 00:00:00 46-23:55:14 16 [cpuhp/1] - root 0 0 00:00:27 46-23:55:14 17 [migration/1] - root 0 0 00:16:32 46-23:55:14 18 [ksoftirqd/1] - root 0 0 00:00:00 46-23:55:14 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 46-23:55:14 21 [cpuhp/2] - root 0 0 00:00:26 46-23:55:14 22 [migration/2] - root 0 0 00:16:30 46-23:55:14 23 [ksoftirqd/2] - root 0 0 00:00:00 46-23:55:14 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 46-23:55:14 26 [cpuhp/3] - root 0 0 00:00:26 46-23:55:14 27 [migration/3] - root 0 0 00:16:30 46-23:55:14 28 [ksoftirqd/3] - root 0 0 00:00:00 46-23:55:14 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 46-23:55:14 31 [cpuhp/4] - root 0 0 00:00:27 46-23:55:14 32 [migration/4] - root 0 0 00:16:30 46-23:55:14 33 [ksoftirqd/4] - root 0 0 00:00:00 46-23:55:14 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 46-23:55:14 36 [cpuhp/5] - root 0 0 00:00:26 46-23:55:14 37 [migration/5] - root 0 0 00:16:37 46-23:55:14 38 [ksoftirqd/5] - root 0 0 00:00:00 46-23:55:14 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 46-23:55:14 41 [cpuhp/6] - root 0 0 00:00:26 46-23:55:14 42 [migration/6] - root 0 0 00:16:31 46-23:55:14 43 [ksoftirqd/6] - root 0 0 00:00:00 46-23:55:14 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 46-23:55:14 46 [cpuhp/7] - root 0 0 00:00:27 46-23:55:14 47 [migration/7] - root 0 0 00:16:32 46-23:55:14 48 [ksoftirqd/7] - root 0 0 00:00:00 46-23:55:14 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 46-23:55:14 56 [kdevtmpfs] - root 0 0 00:00:00 46-23:55:14 57 [netns] - root 0 0 00:10:09 46-23:55:14 58 [kauditd] - root 0 0 00:00:04 46-23:55:14 59 [khungtaskd] - root 0 0 00:00:00 46-23:55:14 60 [oom_reaper] - root 0 0 00:00:00 46-23:55:14 61 [writeback] - root 0 0 00:01:26 46-23:55:14 62 [kcompactd0] - root 0 0 00:00:00 46-23:55:14 63 [ksmd] - root 0 0 00:02:55 46-23:55:14 64 [khugepaged] - root 0 0 00:00:00 46-23:55:14 84 [kintegrityd] - root 0 0 00:00:00 46-23:55:14 85 [kblockd] - root 0 0 00:00:00 46-23:55:14 86 [blkcg_punt_bio] - root 0 0 00:00:17 46-23:55:14 88 [kworker/0:1H-kblockd] - root 0 0 00:00:29 46-23:55:14 89 [kswapd0] - root 0 0 00:00:00 46-23:55:14 90 [kthrotld] - root 0 0 00:00:00 46-23:55:14 91 [acpi_thermal_pm] - root 0 0 00:00:00 46-23:55:14 92 [nvme-wq] - root 0 0 00:00:00 46-23:55:14 93 [nvme-reset-wq] - root 0 0 00:00:00 46-23:55:14 94 [nvme-delete-wq] - root 0 0 00:00:00 46-23:55:13 95 [ipv6_addrconf] - root 0 0 00:00:00 46-23:55:13 106 [kstrp] - root 0 0 00:00:00 46-23:55:13 114 [kworker/u17:0] - root 0 0 00:00:18 46-23:55:13 136 [kworker/1:1H-kblockd] - root 0 0 00:00:17 46-23:55:13 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 46-23:55:13 167 [ata_sff] - root 0 0 00:00:00 46-23:55:13 168 [scsi_eh_0] - root 0 0 00:00:00 46-23:55:13 169 [scsi_tmf_0] - root 0 0 00:00:00 46-23:55:13 170 [scsi_eh_1] - root 0 0 00:00:00 46-23:55:13 171 [scsi_tmf_1] - root 0 0 00:00:00 46-23:55:13 173 [scsi_eh_2] - root 0 0 00:00:00 46-23:55:13 174 [scsi_tmf_2] - root 0 0 00:00:17 46-23:55:13 175 [kworker/3:1H-kblockd] - root 0 0 00:00:17 46-23:55:13 178 [kworker/4:1H-kblockd] - root 0 0 00:00:17 46-23:55:13 184 [kworker/7:1H-kblockd] - root 0 0 00:00:17 46-23:55:13 196 [kworker/6:1H-kblockd] - root 0 0 00:11:20 46-23:55:13 206 [jbd2/sda1-8] - root 0 0 00:00:00 46-23:55:13 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 254076 195476 03:04:03 46-23:55:12 286 /lib/systemd/systemd-journald - root 0 0 00:00:17 46-23:55:12 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3912 00:00:10 46-23:55:12 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 46-23:55:12 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:35:31 46-23:55:12 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4608 00:00:00 46-23:55:11 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4192 00:18:35 46-23:55:10 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:20 46-23:55:10 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 84056 03:11:16 46-23:55:10 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 46-23:55:10 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9008 00:26:02 46-23:55:10 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6464 00:08:55 46-23:55:10 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 05:42:47 46-23:55:10 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21652 02:23:40 46-23:55:10 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6468 00:00:50 46-23:55:10 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 46-23:55:10 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 46-23:55:10 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 46-23:55:10 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:14:44 46-23:55:10 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 5928 00:00:02 46-23:55:10 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 46-23:55:10 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51616 00:02:37 46-23:55:10 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:18 46-23:55:10 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:48 46-23:55:10 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:30:02 46-23:54:34 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:05:25 46-23:54:34 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5688 2644 00:04:24 11-07:44:46 99559 /usr/sbin/cron -f 0::/system.slice/cron.service root 6088 3496 00:55:40 11-07:44:35 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5708 3148 00:00:17 11-07:44:35 105923 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5832 3128 00:23:53 11-07:44:35 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:20:08 11-07:44:35 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 46-23:45:08 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:15:11 46-23:45:08 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:09 46-23:45:08 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 46-23:45:08 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 46-23:45:08 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 46-23:45:08 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 46-23:45:08 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 46-23:45:08 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 46-23:45:08 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 46-23:45:08 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17648 00:06:06 46-23:45:07 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 46-23:45:07 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16368 00:00:29 46-20:48:50 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:03 46-20:48:50 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50844 00:00:03 21-05:23:05 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 11:30:34 45-14:23:35 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 11:34:33 45-14:23:35 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/apache2.service www-data 266752 50816 00:00:03 22-14:42:33 956576 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2336 00:00:00 21:55:34 1343491 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2320 00:00:00 21:55:34 1343495 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 877768 47728 00:00:05 21:55:34 1343525 /usr/sbin/node server.js 0::/system.slice/cron.service root 11988 5024 00:00:00 21:55:34 1343536 sudo ./webhookstart 0::/system.slice/cron.service root 2480 568 00:00:00 21:55:34 1343668 sh ./webhookstart 0::/system.slice/cron.service root 40428 35484 00:00:12 21:55:34 1343707 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2540 00:00:03 21:55:30 1347545 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13344 00:00:00 21:55:30 1347550 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2396 00:00:03 21:55:30 1347555 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13228 00:00:00 21:55:30 1347559 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55416 00:01:21 21:55:30 1347970 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 57324 00:01:22 21:55:30 1348011 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2396 00:00:00 21:55:28 1350457 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 7232 00:00:07 21:55:28 1350463 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2368 00:00:00 21:55:28 1350513 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 11184 00:01:01 21:55:28 1350515 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2348 00:00:00 21:55:28 1350551 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 489076 44984 00:01:04 21:55:28 1350555 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2340 00:00:00 21:55:27 1350607 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11228 00:01:07 21:55:27 1350610 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2348 00:00:00 21:55:27 1350635 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11476 00:01:07 21:55:27 1350639 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2356 00:00:00 21:55:27 1350656 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 11496 00:01:07 21:55:27 1350667 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2348 00:00:00 21:55:27 1350683 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 10936 00:01:02 21:55:27 1350686 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 01:24:36 1723926 [kworker/3:0-events] 0::/system.slice/cron.service root 5708 3064 00:02:39 42-15:04:35 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:12:19 42-15:04:35 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 10:42:02 42-15:04:35 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 03:10:40 42-15:04:35 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 03:32:45 42-15:04:35 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:33:22 42-15:04:35 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 03:14:06 42-15:04:35 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 03:08:41 42-15:04:35 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51028 00:00:05 34-01:55:32 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50556 00:00:05 34-01:55:32 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51096 00:00:04 34-01:55:32 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50580 00:00:04 34-01:55:32 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50932 00:00:05 34-01:55:32 2711949 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3208 00:00:05 20:54:34 2839677 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2569912 211320 06:13:34 20:54:32 2841098 /usr/sbin/mariadbd - root 0 0 00:00:00 35:39 2903459 [kworker/1:1-events] - root 0 0 00:00:01 35:34 2906303 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 31:55 2991081 [kworker/2:2-events] - root 0 0 00:00:00 31:13 3004483 [kworker/6:0-events] - root 0 0 00:00:00 30:05 3031833 [kworker/0:0-events] - root 0 0 00:00:00 27:12 3108039 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 25:06 3164070 [kworker/4:2-events] - root 0 0 00:00:00 21:53 3235034 [kworker/5:2-events] - root 0 0 00:00:00 18:34 3321302 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 18:13 3329136 [kworker/7:0-cgroup_destroy] - root 0 0 00:00:00 12:51 3456675 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 10:56 3492546 [kworker/0:2-events] - root 0 0 00:00:00 10:51 3494099 [kworker/4:0-events] 0::/system.slice/apache2.service www-data 266676 50600 00:00:05 34-01:22:46 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51184 00:00:05 34-01:22:45 3539795 /usr/sbin/apache2 -k start - root 0 0 00:00:00 09:06 3541291 [kworker/2:1-cgroup_destroy] - root 0 0 00:00:00 08:24 3560892 [kworker/1:0-cgroup_destroy] 0::/system.slice/apache2.service www-data 266748 50628 00:00:04 33-14:13:48 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 07:42 3584658 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 06:45 3606382 [kworker/5:1-events] - root 0 0 00:00:00 06:09 3620439 [kworker/3:1-cgroup_destroy] - root 0 0 00:00:00 05:27 3639388 [kworker/7:1-events] - root 0 0 00:00:00 05:01 3648191 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 04:09 3677017 [kworker/4:1-events] - root 0 0 00:00:00 03:58 3680473 [kworker/2:0-events] - root 0 0 00:00:00 03:06 3696935 [kworker/1:2-events] - root 0 0 00:00:00 02:19 3711755 [kworker/6:1-events] 0::/system.slice/cron.service root 5908 2340 00:00:00 01:24 3728927 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8920 00:00:00 01:24 3728931 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2372 00:00:00 01:24 3728942 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8980 00:00:00 01:24 3728946 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2332 00:00:00 01:24 3728957 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8948 00:00:00 01:24 3728959 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2340 00:00:00 01:24 3728990 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 9040 00:00:00 01:24 3728993 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2352 00:00:00 01:24 3729003 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11080 00:00:00 01:24 3729007 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2356 00:00:00 01:24 3729021 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10892 00:00:00 01:24 3729023 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2316 00:00:00 01:24 3729037 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6888 00:00:00 01:24 3729039 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 00:55 3737430 [kworker/5:0-cgroup_destroy] - root 0 0 00:00:00 00:50 3738901 [kworker/3:2-events] 0::/system.slice/cron.service root 2392 500 00:00:00 00:45 3740326 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:43 3740901 /bin/sleep 60 0::/system.slice/cron.service root 10892 3632 00:00:00 00:36 3743076 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 00:36 3743273 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2888 00:00:00 00:36 3743373 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1964 00:00:00 00:35 3743634 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9940 00:00:00 00:35 3743638 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 708 00:00:00 00:35 3743639 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3148 00:00:00 00:35 3743669 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5708 3168 00:00:00 00:35 3743709 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3184 00:00:00 00:35 3743752 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 6128 3424 00:00:00 00:35 3743779 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5708 3116 00:00:00 00:35 3743806 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 4284 560 00:00:00 00:34 3744408 sleep 50 0::/system.slice/cron.service root 4284 560 00:00:00 00:34 3744445 sleep 94 0::/system.slice/cron.service root 4284 500 00:00:00 00:34 3744461 sleep 79 0::/system.slice/cron.service root 4284 564 00:00:00 00:34 3744502 sleep 113 0::/system.slice/cron.service root 2392 560 00:00:00 00:16 3751462 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:14 3752189 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:09 3753682 sleep 60 - root 0 0 00:00:00 00:08 3754127 [kworker/7:2-cgroup_destroy] 0::/system.slice/cron.service root 4284 496 00:00:00 00:06 3754747 sleep 8 0::/system.slice/cron.service root 4284 556 00:00:00 00:06 3755058 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3756413 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:02 3756534 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11132 00:00:00 00:02 3756537 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9002 --header Origin: https://127.0.0.1:9002 --header Sec-WebSocket-Key: MTg1NTM6MzE1NTc= --header Sec-WebSocket-Version: 13 https://127.0.0.1:9002/ -k 0::/system.slice/cron.service root 4288 496 00:00:00 00:02 3756538 wc -l 0::/system.slice/cron.service root 4284 564 00:00:00 00:02 3756550 sleep 2 0::/system.slice/cron.service root 99632 32168 00:00:00 00:02 3756551 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 3756727 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3756755 sleep 1 0::/system.slice/xinetd.service root 6260 3796 00:00:00 00:01 3756793 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 3756826 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 3756827 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3756965 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3757044 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3757050 sleep 2 0::/system.slice/cron.service root 5836 1388 00:00:00 00:00 3757064 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2960 00:00:00 00:00 3757066 jq .dispositivos.windows 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3757070 sleep 0.1 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 3757085 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 61793sec preferred_lft 61793sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-10 00:55 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f394b28b0Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 182964 11504 08:08:52 44-23:44:02 1 /sbin/init - root 0 0 00:00:03 44-23:44:02 2 [kthreadd] - root 0 0 00:00:00 44-23:44:02 3 [rcu_gp] - root 0 0 00:00:00 44-23:44:02 4 [rcu_par_gp] - root 0 0 00:00:00 44-23:44:02 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 44-23:44:02 8 [mm_percpu_wq] - root 0 0 00:00:00 44-23:44:02 9 [rcu_tasks_rude_] - root 0 0 00:00:00 44-23:44:02 10 [rcu_tasks_trace] - root 0 0 00:15:53 44-23:44:02 11 [ksoftirqd/0] - root 0 0 01:07:47 44-23:44:02 12 [rcu_sched] - root 0 0 00:00:25 44-23:44:02 13 [migration/0] - root 0 0 00:00:00 44-23:44:02 15 [cpuhp/0] - root 0 0 00:00:00 44-23:44:02 16 [cpuhp/1] - root 0 0 00:00:25 44-23:44:02 17 [migration/1] - root 0 0 00:15:50 44-23:44:02 18 [ksoftirqd/1] - root 0 0 00:00:00 44-23:44:02 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 44-23:44:02 21 [cpuhp/2] - root 0 0 00:00:25 44-23:44:02 22 [migration/2] - root 0 0 00:15:48 44-23:44:02 23 [ksoftirqd/2] - root 0 0 00:00:00 44-23:44:02 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 44-23:44:02 26 [cpuhp/3] - root 0 0 00:00:25 44-23:44:02 27 [migration/3] - root 0 0 00:15:48 44-23:44:02 28 [ksoftirqd/3] - root 0 0 00:00:00 44-23:44:02 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 44-23:44:02 31 [cpuhp/4] - root 0 0 00:00:25 44-23:44:02 32 [migration/4] - root 0 0 00:15:48 44-23:44:02 33 [ksoftirqd/4] - root 0 0 00:00:00 44-23:44:02 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 44-23:44:02 36 [cpuhp/5] - root 0 0 00:00:25 44-23:44:02 37 [migration/5] - root 0 0 00:15:55 44-23:44:02 38 [ksoftirqd/5] - root 0 0 00:00:00 44-23:44:02 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 44-23:44:02 41 [cpuhp/6] - root 0 0 00:00:25 44-23:44:02 42 [migration/6] - root 0 0 00:15:48 44-23:44:02 43 [ksoftirqd/6] - root 0 0 00:00:00 44-23:44:02 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 44-23:44:02 46 [cpuhp/7] - root 0 0 00:00:25 44-23:44:02 47 [migration/7] - root 0 0 00:15:50 44-23:44:02 48 [ksoftirqd/7] - root 0 0 00:00:00 44-23:44:02 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 44-23:44:02 56 [kdevtmpfs] - root 0 0 00:00:00 44-23:44:02 57 [netns] - root 0 0 00:09:42 44-23:44:02 58 [kauditd] - root 0 0 00:00:04 44-23:44:02 59 [khungtaskd] - root 0 0 00:00:00 44-23:44:02 60 [oom_reaper] - root 0 0 00:00:00 44-23:44:02 61 [writeback] - root 0 0 00:01:22 44-23:44:02 62 [kcompactd0] - root 0 0 00:00:00 44-23:44:02 63 [ksmd] - root 0 0 00:02:48 44-23:44:02 64 [khugepaged] - root 0 0 00:00:00 44-23:44:02 84 [kintegrityd] - root 0 0 00:00:00 44-23:44:02 85 [kblockd] - root 0 0 00:00:00 44-23:44:02 86 [blkcg_punt_bio] - root 0 0 00:00:16 44-23:44:02 88 [kworker/0:1H-kblockd] - root 0 0 00:00:28 44-23:44:02 89 [kswapd0] - root 0 0 00:00:00 44-23:44:02 90 [kthrotld] - root 0 0 00:00:00 44-23:44:02 91 [acpi_thermal_pm] - root 0 0 00:00:00 44-23:44:02 92 [nvme-wq] - root 0 0 00:00:00 44-23:44:02 93 [nvme-reset-wq] - root 0 0 00:00:00 44-23:44:02 94 [nvme-delete-wq] - root 0 0 00:00:00 44-23:44:01 95 [ipv6_addrconf] - root 0 0 00:00:00 44-23:44:01 106 [kstrp] - root 0 0 00:00:00 44-23:44:01 114 [kworker/u17:0] - root 0 0 00:00:17 44-23:44:01 136 [kworker/1:1H-kblockd] - root 0 0 00:00:17 44-23:44:01 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 44-23:44:01 167 [ata_sff] - root 0 0 00:00:00 44-23:44:01 168 [scsi_eh_0] - root 0 0 00:00:00 44-23:44:01 169 [scsi_tmf_0] - root 0 0 00:00:00 44-23:44:01 170 [scsi_eh_1] - root 0 0 00:00:00 44-23:44:01 171 [scsi_tmf_1] - root 0 0 00:00:00 44-23:44:01 173 [scsi_eh_2] - root 0 0 00:00:00 44-23:44:01 174 [scsi_tmf_2] - root 0 0 00:00:17 44-23:44:01 175 [kworker/3:1H-kblockd] - root 0 0 00:00:17 44-23:44:01 178 [kworker/4:1H-kblockd] - root 0 0 00:00:16 44-23:44:01 184 [kworker/7:1H-kblockd] - root 0 0 00:00:16 44-23:44:01 196 [kworker/6:1H-kblockd] - root 0 0 00:10:51 44-23:44:01 206 [jbd2/sda1-8] - root 0 0 00:00:00 44-23:44:01 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 336168 256860 02:56:00 44-23:44:00 286 /lib/systemd/systemd-journald - root 0 0 00:00:16 44-23:44:00 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3912 00:00:10 44-23:44:00 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 44-23:44:00 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:33:59 44-23:44:00 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4608 00:00:00 44-23:43:59 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4192 00:17:47 44-23:43:58 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:14 44-23:43:58 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 87104 03:03:01 44-23:43:58 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 44-23:43:58 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9008 00:24:54 44-23:43:58 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6472 00:08:32 44-23:43:58 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 05:27:49 44-23:43:58 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21664 02:17:19 44-23:43:58 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6468 00:00:47 44-23:43:58 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 44-23:43:58 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 44-23:43:58 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 44-23:43:58 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:14:06 44-23:43:58 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 5936 00:00:02 44-23:43:58 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 44-23:43:58 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51616 00:02:31 44-23:43:58 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:17 44-23:43:58 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:43 44-23:43:58 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:28:43 44-23:43:22 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:05:11 44-23:43:22 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr - root 0 0 00:00:00 42:52 79044 [kworker/u16:2-flush-8:0] 0::/system.slice/cron.service root 5688 2644 00:03:37 9-07:33:34 99559 /usr/sbin/cron -f 0::/system.slice/cron.service root 6088 3496 00:45:45 9-07:33:23 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5708 3148 00:00:14 9-07:33:23 105923 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5832 3128 00:19:37 9-07:33:23 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:16:33 9-07:33:23 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps - root 0 0 00:00:00 39:22 144793 [kworker/0:1-events] 0::/system.slice/nginx.service root 67480 2072 00:00:00 44-23:33:56 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:14:47 44-23:33:56 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:09 44-23:33:56 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 44-23:33:56 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 44-23:33:56 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 44-23:33:56 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 44-23:33:56 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 44-23:33:56 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 44-23:33:56 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 44-23:33:56 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17648 00:05:51 44-23:33:55 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 44-23:33:55 229054 [check_nginx] <defunct> - root 0 0 00:00:00 34:05 280502 [kworker/2:2-events] - root 0 0 00:00:00 28:15 423633 [kworker/5:2-events] 0::/system.slice/packagekit.service root 288432 16368 00:00:28 44-20:37:38 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:03 44-20:37:38 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50844 00:00:02 19-05:11:53 558518 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3480 00:00:05 20:43:22 622978 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2627172 205908 06:31:48 20:43:20 624285 /usr/sbin/mariadbd - root 0 0 00:00:00 18:29 643920 [kworker/1:0-events] 0::/system.slice/cron.service root 5708 3112 10:59:57 43-14:12:23 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 11:03:40 43-14:12:23 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop - root 0 0 00:00:00 16:24 703725 [kworker/4:0-events] - root 0 0 00:00:00 14:44 740823 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 14:07 763063 [kworker/6:0-cgroup_destroy] - root 0 0 00:00:00 13:52 771774 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 11:05 832809 [kworker/3:0-events] - root 0 0 00:00:00 10:23 845193 [kworker/4:2-events] - root 0 0 00:00:00 09:47 856395 [kworker/5:1-events] - root 0 0 00:00:00 09:22 864427 [kworker/2:1-events] - root 0 0 00:00:00 08:23 896241 [kworker/7:0-events] - root 0 0 00:00:00 08:08 904962 [kworker/6:2+events] - root 0 0 00:00:00 06:54 934638 [kworker/1:1-cgroup_destroy] - root 0 0 00:00:00 06:22 946190 [kworker/0:2-events] 0::/system.slice/apache2.service www-data 266752 50816 00:00:03 20-14:31:21 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:00 05:22 968638 [kworker/3:1-events] - root 0 0 00:00:00 04:12 997151 [kworker/5:0-events] - root 0 0 00:00:00 03:46 1006954 [kworker/4:1-events] - root 0 0 00:00:00 02:27 1039217 [kworker/2:0-events] - root 0 0 00:00:00 02:23 1042175 [kworker/7:2-events] - root 0 0 00:00:00 01:56 1053910 [kworker/u16:0] - root 0 0 00:00:00 01:51 1055444 [kworker/1:2-events] - root 0 0 00:00:00 01:04 1070084 [kworker/0:0-events] 0::/system.slice/cron.service root 2392 504 00:00:00 00:38 1077563 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:36 1078106 /bin/sleep 60 0::/system.slice/cron.service root 5908 2396 00:00:00 00:23 1082406 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6772 00:00:00 00:23 1082429 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2440 00:00:00 00:22 1082556 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6828 00:00:00 00:22 1082570 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 496 00:00:00 00:13 1085731 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:12 1086151 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:11 1086341 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:10 1086864 sleep 60 0::/system.slice/cron.service root 5908 2336 00:00:00 00:07 1087531 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 6456 00:00:00 00:07 1087535 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2340 00:00:00 00:07 1087552 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 8484 00:00:00 00:07 1087554 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2500 00:00:00 00:07 1087570 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 8520 00:00:00 00:07 1087572 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2324 00:00:00 00:07 1087602 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8520 00:00:00 00:07 1087605 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:07 1087615 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8420 00:00:00 00:07 1087619 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:07 1087710 sleep 8 0::/system.slice/cron.service root 4284 500 00:00:00 00:03 1088800 /bin/sleep 5 0::/system.slice/cron.service root 4284 564 00:00:00 00:02 1089230 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 1089322 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 1089497 sleep 2 0::/system.slice/xinetd.service root 6180 3552 00:00:00 00:01 1089513 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 1089575 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 1089630 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 1089676 sleep 1 0::/system.slice/cron.service root 4284 492 00:00:00 00:00 1089684 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 1089719 sleep 0.1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 1089720 sleep 0.1 - root 0 0 00:00:00 00:00 1089727 [kworker/6:1-cgroup_destroy] 0::/system.slice/cron.service root 5832 1500 00:00:00 00:00 1089740 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 16716 8696 00:00:00 00:00 1089742 /usr/bin/mysql -ulazarus -px xxxxx lazarus -N 0::/system.slice/cron.service root 5364 688 00:00:00 00:00 1089743 /bin/sed -e s/\t/|/g 0::/system.slice/cron.service root 5364 692 00:00:00 00:00 1089744 /bin/sed -e s/ //g 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 1089745 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 1404 00:00:00 00:00 1089747 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 15060 7816 00:00:00 00:00 1089748 /usr/bin/mysql -ulazarus -px xxxxx lazarus -N 0::/system.slice/cron.service root 5364 744 00:00:00 00:00 1089749 /bin/sed -e s/\t/|/g 0::/system.slice/cron.service root 5364 684 00:00:00 00:00 1089750 /bin/sed -e s/ //g - root 0 0 00:00:04 02:10:18 2161406 [kworker/u16:1-ext4-rsv-conversion] 0::/system.slice/cron.service root 5708 3064 00:02:32 40-14:53:23 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 02:06:00 40-14:53:23 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 10:11:38 40-14:53:23 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 03:01:34 40-14:53:23 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 03:22:36 40-14:53:23 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:26:03 40-14:53:23 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 03:04:52 40-14:53:23 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 02:59:40 40-14:53:23 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51060 00:00:04 32-01:44:20 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50556 00:00:05 32-01:44:20 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51128 00:00:04 32-01:44:20 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50580 00:00:04 32-01:44:20 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50924 00:00:04 32-01:44:20 2711949 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2384 00:00:00 21:44:23 3325154 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874548 44532 00:00:05 21:44:23 3325187 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2344 00:00:00 21:44:23 3325293 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4988 00:00:00 21:44:23 3325309 sudo ./webhookstart 0::/system.slice/cron.service root 2480 572 00:00:00 21:44:23 3325419 sh ./webhookstart 0::/system.slice/cron.service root 40428 35468 00:00:12 21:44:23 3325444 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2440 00:00:04 21:44:19 3328634 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13228 00:00:00 21:44:19 3328639 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2324 00:00:04 21:44:19 3328644 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13292 00:00:00 21:44:19 3328663 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55204 00:01:21 21:44:19 3329021 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 55492 00:01:22 21:44:19 3329118 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2380 00:00:00 21:44:16 3331607 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10864 00:00:07 21:44:16 3331615 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2360 00:00:00 21:44:16 3331642 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9952 00:01:02 21:44:16 3331646 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2376 00:00:00 21:44:16 3331682 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 495864 53880 00:01:05 21:44:16 3331686 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2368 00:00:00 21:44:16 3331702 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12384 00:01:08 21:44:16 3331704 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2304 00:00:00 21:44:16 3331738 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12600 00:01:07 21:44:16 3331743 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2520 00:00:00 21:44:16 3331782 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 15364 00:01:08 21:44:16 3331784 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2344 00:00:00 21:44:16 3331817 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 9428 00:01:03 21:44:16 3331821 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/apache2.service www-data 266676 50600 00:00:04 32-01:11:34 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51216 00:00:04 32-01:11:33 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50628 00:00:04 31-14:02:36 3582124 /usr/sbin/apache2 -k start Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 52896sec preferred_lft 52896sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-08 00:44 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f21ebc081Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 182964 11552 07:46:06 42-23:16:30 1 /sbin/init - root 0 0 00:00:03 42-23:16:30 2 [kthreadd] - root 0 0 00:00:00 42-23:16:30 3 [rcu_gp] - root 0 0 00:00:00 42-23:16:30 4 [rcu_par_gp] - root 0 0 00:00:00 42-23:16:30 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 42-23:16:30 8 [mm_percpu_wq] - root 0 0 00:00:00 42-23:16:30 9 [rcu_tasks_rude_] - root 0 0 00:00:00 42-23:16:30 10 [rcu_tasks_trace] - root 0 0 00:15:09 42-23:16:30 11 [ksoftirqd/0] - root 0 0 01:04:31 42-23:16:30 12 [rcu_sched] - root 0 0 00:00:24 42-23:16:30 13 [migration/0] - root 0 0 00:00:00 42-23:16:30 15 [cpuhp/0] - root 0 0 00:00:00 42-23:16:30 16 [cpuhp/1] - root 0 0 00:00:24 42-23:16:30 17 [migration/1] - root 0 0 00:15:06 42-23:16:30 18 [ksoftirqd/1] - root 0 0 00:00:00 42-23:16:30 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 42-23:16:30 21 [cpuhp/2] - root 0 0 00:00:24 42-23:16:30 22 [migration/2] - root 0 0 00:15:04 42-23:16:30 23 [ksoftirqd/2] - root 0 0 00:00:00 42-23:16:30 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 42-23:16:30 26 [cpuhp/3] - root 0 0 00:00:24 42-23:16:30 27 [migration/3] - root 0 0 00:15:04 42-23:16:30 28 [ksoftirqd/3] - root 0 0 00:00:00 42-23:16:30 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 42-23:16:30 31 [cpuhp/4] - root 0 0 00:00:24 42-23:16:30 32 [migration/4] - root 0 0 00:15:04 42-23:16:30 33 [ksoftirqd/4] - root 0 0 00:00:00 42-23:16:30 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 42-23:16:30 36 [cpuhp/5] - root 0 0 00:00:24 42-23:16:30 37 [migration/5] - root 0 0 00:15:11 42-23:16:30 38 [ksoftirqd/5] - root 0 0 00:00:00 42-23:16:30 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 42-23:16:30 41 [cpuhp/6] - root 0 0 00:00:24 42-23:16:30 42 [migration/6] - root 0 0 00:15:05 42-23:16:30 43 [ksoftirqd/6] - root 0 0 00:00:00 42-23:16:30 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 42-23:16:30 46 [cpuhp/7] - root 0 0 00:00:24 42-23:16:30 47 [migration/7] - root 0 0 00:15:06 42-23:16:30 48 [ksoftirqd/7] - root 0 0 00:00:00 42-23:16:30 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 42-23:16:30 56 [kdevtmpfs] - root 0 0 00:00:00 42-23:16:30 57 [netns] - root 0 0 00:09:16 42-23:16:30 58 [kauditd] - root 0 0 00:00:04 42-23:16:30 59 [khungtaskd] - root 0 0 00:00:00 42-23:16:30 60 [oom_reaper] - root 0 0 00:00:00 42-23:16:30 61 [writeback] - root 0 0 00:01:18 42-23:16:30 62 [kcompactd0] - root 0 0 00:00:00 42-23:16:30 63 [ksmd] - root 0 0 00:02:40 42-23:16:30 64 [khugepaged] - root 0 0 00:00:00 42-23:16:30 84 [kintegrityd] - root 0 0 00:00:00 42-23:16:30 85 [kblockd] - root 0 0 00:00:00 42-23:16:30 86 [blkcg_punt_bio] - root 0 0 00:00:16 42-23:16:30 88 [kworker/0:1H-kblockd] - root 0 0 00:00:27 42-23:16:30 89 [kswapd0] - root 0 0 00:00:00 42-23:16:30 90 [kthrotld] - root 0 0 00:00:00 42-23:16:30 91 [acpi_thermal_pm] - root 0 0 00:00:00 42-23:16:30 92 [nvme-wq] - root 0 0 00:00:00 42-23:16:30 93 [nvme-reset-wq] - root 0 0 00:00:00 42-23:16:30 94 [nvme-delete-wq] - root 0 0 00:00:00 42-23:16:29 95 [ipv6_addrconf] - root 0 0 00:00:00 42-23:16:29 106 [kstrp] - root 0 0 00:00:00 42-23:16:29 114 [kworker/u17:0] - root 0 0 00:00:16 42-23:16:29 136 [kworker/1:1H-kblockd] - root 0 0 00:00:16 42-23:16:29 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 42-23:16:29 167 [ata_sff] - root 0 0 00:00:00 42-23:16:29 168 [scsi_eh_0] - root 0 0 00:00:00 42-23:16:29 169 [scsi_tmf_0] - root 0 0 00:00:00 42-23:16:29 170 [scsi_eh_1] - root 0 0 00:00:00 42-23:16:29 171 [scsi_tmf_1] - root 0 0 00:00:00 42-23:16:29 173 [scsi_eh_2] - root 0 0 00:00:00 42-23:16:29 174 [scsi_tmf_2] - root 0 0 00:00:16 42-23:16:29 175 [kworker/3:1H-kblockd] - root 0 0 00:00:16 42-23:16:29 178 [kworker/4:1H-kblockd] - root 0 0 00:00:16 42-23:16:29 184 [kworker/7:1H-kblockd] - root 0 0 00:00:16 42-23:16:29 196 [kworker/6:1H-kblockd] - root 0 0 00:10:20 42-23:16:29 206 [jbd2/sda1-8] - root 0 0 00:00:00 42-23:16:29 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 49364 20872 02:47:47 42-23:16:28 286 /lib/systemd/systemd-journald - root 0 0 00:00:16 42-23:16:28 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3920 00:00:10 42-23:16:28 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 42-23:16:28 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:32:24 42-23:16:28 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4608 00:00:00 42-23:16:27 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:16:58 42-23:16:26 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:07 42-23:16:26 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 90716 02:54:32 42-23:16:26 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 42-23:16:26 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9008 00:23:44 42-23:16:26 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6480 00:08:08 42-23:16:26 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 05:12:34 42-23:16:26 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21664 02:10:46 42-23:16:26 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6476 00:00:44 42-23:16:26 714 sshd: /usr/sbin/sshd -D [listener] 1 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 42-23:16:26 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 42-23:16:26 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 42-23:16:26 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:13:27 42-23:16:26 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 5936 00:00:02 42-23:16:26 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 42-23:16:26 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51620 00:02:23 42-23:16:26 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:16 42-23:16:26 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:38 42-23:16:26 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:27:23 42-23:15:50 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:04:57 42-23:15:50 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5688 2644 00:02:49 7-07:06:02 99559 /usr/sbin/cron -f 0::/system.slice/cron.service root 6088 3496 00:35:37 7-07:05:51 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5708 3148 00:00:11 7-07:05:51 105923 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5832 3128 00:15:16 7-07:05:51 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:12:52 7-07:05:51 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 42-23:06:24 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7792 00:14:24 42-23:06:24 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7184 00:00:08 42-23:06:24 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7028 00:00:01 42-23:06:24 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 6976 00:00:00 42-23:06:24 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4324 00:00:00 42-23:06:24 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5180 00:00:00 42-23:06:24 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 42-23:06:24 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 42-23:06:24 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 42-23:06:24 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17656 00:05:36 42-23:06:23 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 42-23:06:23 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16368 00:00:27 42-20:10:06 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:03 42-20:10:06 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50836 00:00:02 17-04:44:21 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 10:28:43 41-13:44:51 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 10:32:15 41-13:44:51 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop - root 0 0 00:00:02 01:06:01 749761 [kworker/u16:3-ext4-rsv-conversion] 0::/system.slice/cron.service root 5908 2364 00:00:00 21:16:51 831015 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874548 44776 00:00:04 21:16:50 831036 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2508 00:00:00 21:16:50 831316 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5100 00:00:00 21:16:50 831352 sudo ./webhookstart 0::/system.slice/cron.service root 2480 572 00:00:00 21:16:50 831468 sh ./webhookstart 0::/system.slice/cron.service root 40428 35584 00:00:11 21:16:50 831478 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2368 00:00:03 21:16:47 834173 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13268 00:00:00 21:16:47 834177 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2444 00:00:03 21:16:47 834181 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13352 00:00:00 21:16:47 834185 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55348 00:01:16 21:16:47 834580 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 456944 55324 00:01:16 21:16:47 834594 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2356 00:00:00 21:16:44 837379 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9100 00:00:06 21:16:44 837385 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2352 00:00:00 21:16:44 837433 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12820 00:00:59 21:16:44 837437 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2368 00:00:00 21:16:44 837517 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 486896 45916 00:01:01 21:16:44 837520 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2372 00:00:00 21:16:44 837559 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 13160 00:01:05 21:16:44 837569 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2376 00:00:00 21:16:44 837592 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11504 00:01:04 21:16:44 837597 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2372 00:00:00 21:16:44 837634 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12716 00:01:05 21:16:44 837638 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2500 00:00:00 21:16:44 837662 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12616 00:01:01 21:16:44 837681 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/apache2.service www-data 266752 50804 00:00:02 18-14:03:49 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:00 44:45 1278910 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:01 41:21 1347137 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 36:33 1470275 [kworker/1:0-events] - root 0 0 00:00:00 31:04 1597532 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 25:24 1750025 [kworker/7:0-mm_percpu_wq] - root 0 0 00:00:00 16:56 1942433 [kworker/6:1-cgroup_destroy] - root 0 0 00:00:00 16:50 1945331 [kworker/3:1-events] - root 0 0 00:00:00 16:40 1954764 [kworker/0:1-events] - root 0 0 00:00:00 13:22 2032123 [kworker/5:0-events] - root 0 0 00:00:00 12:24 2049999 [kworker/2:0-events] - root 0 0 00:00:00 10:09 2111285 [kworker/1:2-cgroup_destroy] - root 0 0 00:00:00 10:04 2115580 [kworker/3:0-cgroup_destroy] - root 0 0 00:00:00 09:50 2121691 [kworker/0:2-cgroup_destroy] - root 0 0 00:00:00 08:30 2151411 [kworker/7:1-events] - root 0 0 00:00:00 07:01 2184225 [kworker/5:1-events] - root 0 0 00:00:00 06:29 2196505 [kworker/2:2-events] - root 0 0 00:00:00 06:24 2198066 [kworker/4:2-events] - root 0 0 00:00:00 05:53 2207180 [kworker/6:0-events] - root 0 0 00:00:00 04:19 2251400 [kworker/0:0-events] - root 0 0 00:00:00 03:42 2264987 [kworker/3:2-events] - root 0 0 00:00:00 03:06 2275742 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:00 01:58 2296748 [kworker/5:2-cgroup_destroy] 0::/system.slice/cron.service root 10892 3632 00:00:00 01:51 2298647 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 01:51 2299131 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2908 00:00:00 01:51 2299169 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1912 00:00:00 01:51 2299232 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9872 00:00:00 01:51 2299236 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 640 00:00:00 01:51 2299237 grep 502 Bad Gateway 0::/system.slice/cron.service root 6128 3348 00:00:01 01:51 2299280 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 01:32 2314323 [kworker/1:1-events] 0::/system.slice/ntp.service ntp 74496 3952 00:00:04 20:15:50 2321746 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2660068 221632 05:55:46 20:15:49 2323097 /usr/sbin/mariadbd - root 0 0 00:00:00 01:00 2335741 [kworker/4:1-cgroup_destroy] 0::/system.slice/cron.service root 2392 496 00:00:00 00:58 2337317 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:57 2337912 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:56 2338492 /bin/sleep 60 0::/system.slice/cron.service root 5908 2384 00:00:00 00:51 2341817 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8920 00:00:00 00:51 2341833 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2372 00:00:00 00:50 2341981 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10940 00:00:00 00:50 2342002 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2424 00:00:00 00:50 2342226 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8976 00:00:00 00:50 2342244 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 00:50 2342301 [kworker/2:1] - root 0 0 00:00:00 00:50 2342317 [kworker/2:3-events] 0::/system.slice/cron.service root 5908 2380 00:00:00 00:50 2342336 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8416 00:00:00 00:50 2342350 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:50 2342437 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8864 00:00:00 00:50 2342447 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 00:50 2342520 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8888 00:00:00 00:50 2342530 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 560 00:00:00 00:41 2347457 /bin/sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:39 2348186 /bin/sleep 60 0::/system.slice/cron.service root 5908 2336 00:00:00 00:35 2349543 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6860 00:00:00 00:35 2349551 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 2392 560 00:00:00 00:13 2357074 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:12 2357411 sleep 60 0::/system.slice/ssh.service root 16336 8324 00:00:00 00:12 2357661 sshd: unknown [priv] 0::/system.slice/ssh.service sshd 13272 4552 00:00:00 00:12 2357669 sshd: unknown [net] 0::/system.slice/cron.service root 2392 564 00:00:00 00:11 2357898 /bin/sleep 60 - root 0 0 00:00:00 00:08 2358964 [kworker/u16:1] - root 0 0 00:00:00 00:03 2360851 [kworker/6:2-events] 0::/system.slice/xinetd.service root 6584 3720 00:00:00 00:02 2361047 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 2361160 sleep 2 0::/system.slice/xinetd.service root 6228 3756 00:00:00 00:02 2361214 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 2361288 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:01 2361434 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11188 00:00:00 00:01 2361435 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9001 --header Origin: https://127.0.0.1:9001 --header Sec-WebSocket-Key: MTQ1MjQ6OTUxMQ== --header Sec-WebSocket-Version: 13 https://127.0.0.1:9001/ -k 0::/system.slice/cron.service root 4288 564 00:00:00 00:01 2361436 wc -l 0::/system.slice/cron.service root 99632 32660 00:00:00 00:01 2361449 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 2361515 sleep 8 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2361532 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2361565 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2361662 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 2361669 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2361734 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 2361745 sleep 1 0::/system.slice/cron.service root 16716 8580 00:00:00 00:00 2361786 /usr/bin/mysql -ulazarus -px xxxxx lazarus -N 0::/system.slice/cron.service root 6128 1792 00:00:00 00:00 2361799 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2956 00:00:00 00:00 2361801 jq -c . 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 2361810 sleep 0.1 0::/system.slice/xinetd.service root 6676 1132 00:00:00 00:00 2361840 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 3064 00:02:24 38-14:25:51 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:59:32 38-14:25:51 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 09:40:41 38-14:25:51 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 02:52:18 38-14:25:51 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 03:12:14 38-14:25:51 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:18:35 38-14:25:51 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 02:55:27 38-14:25:51 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 02:50:28 38-14:25:51 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51052 00:00:04 30-01:16:48 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50556 00:00:04 30-01:16:48 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51128 00:00:04 30-01:16:48 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50580 00:00:04 30-01:16:48 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50756 00:00:04 30-01:16:48 2711949 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50596 00:00:04 30-00:44:02 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51172 00:00:04 30-00:44:01 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50616 00:00:04 29-13:35:04 3582124 /usr/sbin/apache2 -k start Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 80990sec preferred_lft 80990sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-06 00:16 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fd9ebfa0fFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 182964 11552 07:24:30 40-22:25:15 1 /sbin/init - root 0 0 00:00:03 40-22:25:15 2 [kthreadd] - root 0 0 00:00:00 40-22:25:15 3 [rcu_gp] - root 0 0 00:00:00 40-22:25:15 4 [rcu_par_gp] - root 0 0 00:00:00 40-22:25:15 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 40-22:25:15 8 [mm_percpu_wq] - root 0 0 00:00:00 40-22:25:15 9 [rcu_tasks_rude_] - root 0 0 00:00:00 40-22:25:15 10 [rcu_tasks_trace] - root 0 0 00:14:27 40-22:25:15 11 [ksoftirqd/0] - root 0 0 01:01:25 40-22:25:15 12 [rcu_sched] - root 0 0 00:00:23 40-22:25:15 13 [migration/0] - root 0 0 00:00:00 40-22:25:15 15 [cpuhp/0] - root 0 0 00:00:00 40-22:25:15 16 [cpuhp/1] - root 0 0 00:00:23 40-22:25:15 17 [migration/1] - root 0 0 00:14:24 40-22:25:15 18 [ksoftirqd/1] - root 0 0 00:00:00 40-22:25:15 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 40-22:25:15 21 [cpuhp/2] - root 0 0 00:00:23 40-22:25:15 22 [migration/2] - root 0 0 00:14:22 40-22:25:15 23 [ksoftirqd/2] - root 0 0 00:00:00 40-22:25:15 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 40-22:25:15 26 [cpuhp/3] - root 0 0 00:00:23 40-22:25:15 27 [migration/3] - root 0 0 00:14:22 40-22:25:15 28 [ksoftirqd/3] - root 0 0 00:00:00 40-22:25:15 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 40-22:25:15 31 [cpuhp/4] - root 0 0 00:00:23 40-22:25:15 32 [migration/4] - root 0 0 00:14:22 40-22:25:15 33 [ksoftirqd/4] - root 0 0 00:00:00 40-22:25:15 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 40-22:25:15 36 [cpuhp/5] - root 0 0 00:00:23 40-22:25:15 37 [migration/5] - root 0 0 00:14:29 40-22:25:15 38 [ksoftirqd/5] - root 0 0 00:00:00 40-22:25:15 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 40-22:25:15 41 [cpuhp/6] - root 0 0 00:00:23 40-22:25:15 42 [migration/6] - root 0 0 00:14:23 40-22:25:15 43 [ksoftirqd/6] - root 0 0 00:00:00 40-22:25:15 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 40-22:25:15 46 [cpuhp/7] - root 0 0 00:00:23 40-22:25:15 47 [migration/7] - root 0 0 00:14:24 40-22:25:15 48 [ksoftirqd/7] - root 0 0 00:00:00 40-22:25:15 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 40-22:25:15 56 [kdevtmpfs] - root 0 0 00:00:00 40-22:25:15 57 [netns] - root 0 0 00:08:49 40-22:25:15 58 [kauditd] - root 0 0 00:00:04 40-22:25:15 59 [khungtaskd] - root 0 0 00:00:00 40-22:25:15 60 [oom_reaper] - root 0 0 00:00:00 40-22:25:15 61 [writeback] - root 0 0 00:01:14 40-22:25:15 62 [kcompactd0] - root 0 0 00:00:00 40-22:25:15 63 [ksmd] - root 0 0 00:02:32 40-22:25:15 64 [khugepaged] - root 0 0 00:00:00 40-22:25:15 84 [kintegrityd] - root 0 0 00:00:00 40-22:25:15 85 [kblockd] - root 0 0 00:00:00 40-22:25:15 86 [blkcg_punt_bio] - root 0 0 00:00:15 40-22:25:15 88 [kworker/0:1H-kblockd] - root 0 0 00:00:25 40-22:25:15 89 [kswapd0] - root 0 0 00:00:00 40-22:25:15 90 [kthrotld] - root 0 0 00:00:00 40-22:25:15 91 [acpi_thermal_pm] - root 0 0 00:00:00 40-22:25:15 92 [nvme-wq] - root 0 0 00:00:00 40-22:25:15 93 [nvme-reset-wq] - root 0 0 00:00:00 40-22:25:15 94 [nvme-delete-wq] - root 0 0 00:00:00 40-22:25:14 95 [ipv6_addrconf] - root 0 0 00:00:00 40-22:25:14 106 [kstrp] - root 0 0 00:00:00 40-22:25:14 114 [kworker/u17:0] - root 0 0 00:00:15 40-22:25:14 136 [kworker/1:1H-kblockd] - root 0 0 00:00:15 40-22:25:14 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 40-22:25:14 167 [ata_sff] - root 0 0 00:00:00 40-22:25:14 168 [scsi_eh_0] - root 0 0 00:00:00 40-22:25:14 169 [scsi_tmf_0] - root 0 0 00:00:00 40-22:25:14 170 [scsi_eh_1] - root 0 0 00:00:00 40-22:25:14 171 [scsi_tmf_1] - root 0 0 00:00:00 40-22:25:14 173 [scsi_eh_2] - root 0 0 00:00:00 40-22:25:14 174 [scsi_tmf_2] - root 0 0 00:00:15 40-22:25:14 175 [kworker/3:1H-kblockd] - root 0 0 00:00:15 40-22:25:14 178 [kworker/4:1H-kblockd] - root 0 0 00:00:15 40-22:25:14 184 [kworker/7:1H-kblockd] - root 0 0 00:00:15 40-22:25:14 196 [kworker/6:1H-kblockd] - root 0 0 00:09:50 40-22:25:14 206 [jbd2/sda1-8] - root 0 0 00:00:00 40-22:25:14 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 299300 228088 02:39:36 40-22:25:13 286 /lib/systemd/systemd-journald - root 0 0 00:00:15 40-22:25:13 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 3920 00:00:09 40-22:25:13 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 40-22:25:13 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:30:50 40-22:25:13 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4608 00:00:00 40-22:25:12 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:16:09 40-22:25:11 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:02:01 40-22:25:11 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 90728 02:46:08 40-22:25:11 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 40-22:25:11 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9024 00:22:36 40-22:25:11 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6480 00:07:45 40-22:25:11 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 04:57:34 40-22:25:11 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21668 02:04:16 40-22:25:11 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6476 00:00:42 40-22:25:11 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 40-22:25:11 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 40-22:25:11 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 40-22:25:11 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:12:48 40-22:25:11 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 5960 00:00:01 40-22:25:11 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 40-22:25:11 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51644 00:02:16 40-22:25:11 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:16 40-22:25:11 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:33 40-22:25:11 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:26:05 40-22:24:35 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:04:42 40-22:24:35 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5688 2644 00:02:02 5-06:14:47 99559 /usr/sbin/cron -f 0::/system.slice/cron.service root 6088 3496 00:25:40 5-06:14:36 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5708 3148 00:00:08 5-06:14:36 105923 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5832 3128 00:11:00 5-06:14:36 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:09:16 5-06:14:36 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 40-22:15:09 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7816 00:13:47 40-22:15:09 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7208 00:00:08 40-22:15:09 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68464 7052 00:00:01 40-22:15:09 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68576 7000 00:00:00 40-22:15:09 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4348 00:00:00 40-22:15:09 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5204 00:00:00 40-22:15:09 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 40-22:15:09 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 40-22:15:09 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 40-22:15:09 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17656 00:05:20 40-22:15:08 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 40-22:15:08 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16368 00:00:26 40-19:18:51 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:03 40-19:18:51 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50848 00:00:02 15-03:53:06 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 09:57:56 39-12:53:36 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 10:01:17 39-12:53:36 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/apache2.service www-data 266752 50808 00:00:02 16-13:12:34 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:00 40:35 1710792 [kworker/u16:2-flush-8:0] - root 0 0 00:00:00 34:41 1861368 [kworker/1:1-cgroup_destroy] - root 0 0 00:00:00 29:38 1984034 [kworker/u16:5-flush-8:0] - root 0 0 00:00:00 25:32 2084965 [kworker/7:2-events] - root 0 0 00:00:00 24:51 2102549 [kworker/4:1-events] - root 0 0 00:00:00 24:09 2125609 [kworker/3:1-events] - root 0 0 00:00:00 21:48 2174925 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 16:37 2302727 [kworker/0:0-events] - root 0 0 00:00:00 15:20 2332961 [kworker/5:1-events] - root 0 0 00:00:00 15:15 2334439 [kworker/2:0-events] - root 0 0 00:00:00 10:35 2438119 [kworker/6:0-events] - root 0 0 00:00:00 10:33 2439945 [kworker/4:2-cgroup_destroy] 0::/system.slice/cron.service root 5908 2376 00:00:00 20:25:35 2444556 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874180 42112 00:00:04 20:25:35 2444591 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2456 00:00:00 20:25:35 2444891 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 5024 00:00:00 20:25:35 2444923 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 20:25:35 2445003 sh ./webhookstart 0::/system.slice/cron.service root 40424 35540 00:00:11 20:25:35 2445028 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2392 00:00:03 20:25:31 2448311 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13292 00:00:00 20:25:31 2448314 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2376 00:00:03 20:25:31 2448328 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13296 00:00:00 20:25:31 2448333 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55288 00:01:16 20:25:31 2448703 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 55308 00:01:15 20:25:31 2448733 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2332 00:00:00 20:25:30 2450366 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11008 00:00:06 20:25:30 2450371 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2380 00:00:00 20:25:29 2450404 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9160 00:00:56 20:25:29 2450410 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2524 00:00:00 20:25:29 2450445 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 482540 39764 00:00:59 20:25:29 2450450 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2440 00:00:00 20:25:29 2450483 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 601436 13032 00:01:03 20:25:29 2450485 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2540 00:00:00 20:25:29 2450542 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13196 00:01:02 20:25:29 2450546 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2364 00:00:00 20:25:29 2450589 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13284 00:01:02 20:25:29 2450594 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2404 00:00:00 20:25:29 2450633 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12412 00:00:58 20:25:29 2450635 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 09:46 2461102 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 09:36 2465428 [kworker/7:3-events] - root 0 0 00:00:00 08:38 2494962 [kworker/5:0-events] - root 0 0 00:00:00 07:51 2520467 [kworker/1:0-events] - root 0 0 00:00:00 07:30 2528828 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 07:30 2528857 [kworker/3:0-events] - root 0 0 00:00:00 06:02 2561393 [kworker/0:1-events] - root 0 0 00:00:00 04:49 2600923 [kworker/6:1-events] - root 0 0 00:00:00 04:43 2603826 [kworker/4:0-events] - root 0 0 00:00:00 04:22 2611854 [kworker/7:0-events] - root 0 0 00:00:00 04:07 2616462 [kworker/2:1-events] - root 0 0 00:00:00 01:57 2656730 [kworker/1:2-events] - root 0 0 00:00:00 01:51 2658279 [kworker/3:2-events] 0::/system.slice/cron.service root 5708 3064 00:02:16 36-13:34:36 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:53:13 36-13:34:36 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 09:10:10 36-13:34:36 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 02:43:12 36-13:34:36 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 03:02:03 36-13:34:36 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:11:16 36-13:34:36 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 02:46:14 36-13:34:36 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 02:41:26 36-13:34:36 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5908 2348 00:00:00 01:28 2666127 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 11068 00:00:00 01:28 2666130 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2496 00:00:00 01:28 2666140 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8972 00:00:00 01:28 2666144 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2312 00:00:00 01:28 2666155 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 11028 00:00:00 01:28 2666158 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2344 00:00:00 01:28 2666179 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8972 00:00:00 01:28 2666182 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:28 2666192 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 9032 00:00:00 01:28 2666195 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2340 00:00:00 01:28 2666221 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8948 00:00:00 01:28 2666225 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2376 00:00:00 01:28 2666235 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6940 00:00:00 01:28 2666237 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:25 2666987 [kworker/5:2-events] 0::/system.slice/cron.service root 4284 500 00:00:00 00:56 2675504 sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:49 2677593 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:47 2678139 /bin/sleep 60 0::/system.slice/cron.service root 10892 3632 00:00:00 00:37 2681217 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 568 00:00:00 00:37 2681536 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2900 00:00:00 00:37 2681625 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1936 00:00:00 00:36 2681792 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9852 00:00:00 00:36 2681799 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 640 00:00:00 00:36 2681800 grep 502 Bad Gateway 0::/system.slice/cron.service root 6128 3640 00:00:00 00:36 2681807 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5708 3084 00:00:00 00:36 2681837 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 3144 00:00:00 00:36 2681861 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 6492 3864 00:00:01 00:36 2681966 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 2984 00:00:00 00:36 2681967 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 4284 564 00:00:00 00:35 2682638 sleep 87 0::/system.slice/cron.service root 4284 500 00:00:00 00:35 2682648 sleep 38 0::/system.slice/cron.service root 4284 560 00:00:00 00:35 2682762 sleep 68 0::/system.slice/cron.service root 2392 564 00:00:00 00:20 2691540 /bin/sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:18 2692695 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:17 2693587 sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:07 2699425 sleep 8 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 2702762 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2702776 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2702945 sleep 1 0::/system.slice/xinetd.service root 6244 3548 00:00:00 00:01 2703060 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2703081 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2703138 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2703140 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2703184 sleep 1 0::/system.slice/cron.service root 4284 488 00:00:00 00:00 2703218 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2703343 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2703431 /bin/sleep 5 0::/system.slice/cron.service root 5836 1416 00:00:00 00:00 2703495 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 3004 00:00:00 00:00 2703497 jq .dispositivos.windows 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 2703498 sleep 0.1 0::/system.slice/cron.service root 5708 1404 00:00:00 00:00 2703511 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 2956 00:00:00 00:00 2703516 jq .dispositivos.windows 0::/system.slice/cron.service root 6128 1852 00:00:00 00:00 2703520 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 3008 00:00:00 00:00 2703522 jq -c . 0::/system.slice/xinetd.service root 6676 1196 00:00:00 00:00 2703525 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 6492 2232 00:00:00 00:00 2703526 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/apache2.service www-data 266748 51072 00:00:04 28-00:25:33 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50572 00:00:04 28-00:25:33 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51148 00:00:04 28-00:25:33 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50596 00:00:04 28-00:25:33 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50780 00:00:04 28-00:25:33 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:05 02:52:16 2741616 [kworker/u16:0-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 266676 50608 00:00:04 27-23:52:47 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51192 00:00:04 27-23:52:46 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50556 00:00:04 27-12:43:49 3582124 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3332 00:00:04 19:24:35 3931037 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2561716 236172 05:35:08 19:24:33 3932365 /usr/sbin/mariadbd Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 58951sec preferred_lft 58951sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-03 23:25 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fd9828c83Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 182964 11824 07:04:49 38-22:54:21 1 /sbin/init - root 0 0 00:00:03 38-22:54:21 2 [kthreadd] - root 0 0 00:00:00 38-22:54:21 3 [rcu_gp] - root 0 0 00:00:00 38-22:54:21 4 [rcu_par_gp] - root 0 0 00:00:00 38-22:54:21 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 38-22:54:21 8 [mm_percpu_wq] - root 0 0 00:00:00 38-22:54:21 9 [rcu_tasks_rude_] - root 0 0 00:00:00 38-22:54:21 10 [rcu_tasks_trace] - root 0 0 00:13:45 38-22:54:21 11 [ksoftirqd/0] - root 0 0 00:58:20 38-22:54:21 12 [rcu_sched] - root 0 0 00:00:22 38-22:54:21 13 [migration/0] - root 0 0 00:00:00 38-22:54:21 15 [cpuhp/0] - root 0 0 00:00:00 38-22:54:21 16 [cpuhp/1] - root 0 0 00:00:22 38-22:54:21 17 [migration/1] - root 0 0 00:13:43 38-22:54:21 18 [ksoftirqd/1] - root 0 0 00:00:00 38-22:54:21 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 38-22:54:21 21 [cpuhp/2] - root 0 0 00:00:22 38-22:54:21 22 [migration/2] - root 0 0 00:13:42 38-22:54:21 23 [ksoftirqd/2] - root 0 0 00:00:00 38-22:54:21 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 38-22:54:21 26 [cpuhp/3] - root 0 0 00:00:22 38-22:54:21 27 [migration/3] - root 0 0 00:13:41 38-22:54:21 28 [ksoftirqd/3] - root 0 0 00:00:00 38-22:54:21 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 38-22:54:21 31 [cpuhp/4] - root 0 0 00:00:22 38-22:54:21 32 [migration/4] - root 0 0 00:13:41 38-22:54:21 33 [ksoftirqd/4] - root 0 0 00:00:00 38-22:54:21 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 38-22:54:21 36 [cpuhp/5] - root 0 0 00:00:22 38-22:54:21 37 [migration/5] - root 0 0 00:13:49 38-22:54:21 38 [ksoftirqd/5] - root 0 0 00:00:00 38-22:54:21 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 38-22:54:21 41 [cpuhp/6] - root 0 0 00:00:22 38-22:54:21 42 [migration/6] - root 0 0 00:13:42 38-22:54:21 43 [ksoftirqd/6] - root 0 0 00:00:00 38-22:54:21 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 38-22:54:21 46 [cpuhp/7] - root 0 0 00:00:22 38-22:54:21 47 [migration/7] - root 0 0 00:13:42 38-22:54:21 48 [ksoftirqd/7] - root 0 0 00:00:00 38-22:54:21 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 38-22:54:21 56 [kdevtmpfs] - root 0 0 00:00:00 38-22:54:21 57 [netns] - root 0 0 00:08:23 38-22:54:21 58 [kauditd] - root 0 0 00:00:03 38-22:54:21 59 [khungtaskd] - root 0 0 00:00:00 38-22:54:21 60 [oom_reaper] - root 0 0 00:00:00 38-22:54:21 61 [writeback] - root 0 0 00:01:10 38-22:54:21 62 [kcompactd0] - root 0 0 00:00:00 38-22:54:21 63 [ksmd] - root 0 0 00:02:24 38-22:54:21 64 [khugepaged] - root 0 0 00:00:00 38-22:54:21 84 [kintegrityd] - root 0 0 00:00:00 38-22:54:21 85 [kblockd] - root 0 0 00:00:00 38-22:54:21 86 [blkcg_punt_bio] - root 0 0 00:00:14 38-22:54:21 88 [kworker/0:1H-kblockd] - root 0 0 00:00:23 38-22:54:21 89 [kswapd0] - root 0 0 00:00:00 38-22:54:21 90 [kthrotld] - root 0 0 00:00:00 38-22:54:21 91 [acpi_thermal_pm] - root 0 0 00:00:00 38-22:54:21 92 [nvme-wq] - root 0 0 00:00:00 38-22:54:21 93 [nvme-reset-wq] - root 0 0 00:00:00 38-22:54:21 94 [nvme-delete-wq] - root 0 0 00:00:00 38-22:54:20 95 [ipv6_addrconf] - root 0 0 00:00:00 38-22:54:20 106 [kstrp] - root 0 0 00:00:00 38-22:54:20 114 [kworker/u17:0] - root 0 0 00:00:14 38-22:54:20 136 [kworker/1:1H-kblockd] - root 0 0 00:00:14 38-22:54:20 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 38-22:54:20 167 [ata_sff] - root 0 0 00:00:00 38-22:54:20 168 [scsi_eh_0] - root 0 0 00:00:00 38-22:54:20 169 [scsi_tmf_0] - root 0 0 00:00:00 38-22:54:20 170 [scsi_eh_1] - root 0 0 00:00:00 38-22:54:20 171 [scsi_tmf_1] - root 0 0 00:00:00 38-22:54:20 173 [scsi_eh_2] - root 0 0 00:00:00 38-22:54:20 174 [scsi_tmf_2] - root 0 0 00:00:14 38-22:54:20 175 [kworker/3:1H-kblockd] - root 0 0 00:00:14 38-22:54:20 178 [kworker/4:1H-kblockd] - root 0 0 00:00:14 38-22:54:20 184 [kworker/7:1H-kblockd] - root 0 0 00:00:14 38-22:54:20 196 [kworker/6:1H-kblockd] - root 0 0 00:09:20 38-22:54:20 206 [jbd2/sda1-8] - root 0 0 00:00:00 38-22:54:20 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 360592 284380 02:31:36 38-22:54:19 286 /lib/systemd/systemd-journald - root 0 0 00:00:14 38-22:54:19 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4160 00:00:09 38-22:54:19 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 38-22:54:19 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:29:18 38-22:54:19 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4608 00:00:00 38-22:54:18 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:15:22 38-22:54:17 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:55 38-22:54:17 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 91000 02:37:57 38-22:54:17 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 38-22:54:17 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 9080 00:21:28 38-22:54:17 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6720 00:07:22 38-22:54:17 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 04:42:49 38-22:54:17 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21932 01:57:55 38-22:54:17 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6716 00:00:39 38-22:54:17 714 sshd: /usr/sbin/sshd -D [listener] 1 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 38-22:54:17 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 38-22:54:17 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 38-22:54:17 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:12:10 38-22:54:17 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 6052 00:00:01 38-22:54:17 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 38-22:54:17 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51740 00:02:09 38-22:54:17 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:15 38-22:54:17 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:28 38-22:54:17 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:24:48 38-22:53:41 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:04:29 38-22:53:41 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5908 2332 00:00:00 20:54:41 16625 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874548 41840 00:00:04 20:54:41 16636 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2328 00:00:00 20:54:41 16641 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5008 00:00:00 20:54:41 16652 sudo ./webhookstart 0::/system.slice/cron.service root 5908 2364 00:00:00 20:54:41 16686 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11456 00:01:00 20:54:41 16713 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 2480 508 00:00:00 20:54:41 16757 sh ./webhookstart 0::/system.slice/cron.service root 40104 35184 00:00:10 20:54:41 16764 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2372 00:00:03 20:54:38 19722 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13296 00:00:00 20:54:38 19728 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2536 00:00:03 20:54:38 19739 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13248 00:00:00 20:54:38 19744 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55560 00:01:15 20:54:37 20071 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55352 00:01:14 20:54:37 20076 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:00 20:54:35 23067 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10828 00:00:06 20:54:35 23070 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2356 00:00:00 20:54:35 23123 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9232 00:00:58 20:54:35 23125 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2320 00:00:00 20:54:35 23152 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 489076 48404 00:01:01 20:54:35 23157 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2400 00:00:00 20:54:35 23181 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10468 00:01:04 20:54:35 23186 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2368 00:00:00 20:54:35 23217 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 14592 00:01:03 20:54:35 23219 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2448 00:00:00 20:54:35 23246 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13248 00:01:03 20:54:35 23252 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot - root 0 0 00:00:00 35:46 31435 [kworker/0:2-events] 0::/system.slice/cron.service root 5688 2644 00:01:15 3-06:43:53 99559 /usr/sbin/cron -f 0::/system.slice/cron.service root 6088 3496 00:15:55 3-06:43:42 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5708 3148 00:00:04 3-06:43:42 105923 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5832 3128 00:06:50 3-06:43:42 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3264 00:05:43 3-06:43:42 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 38-22:44:15 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7820 00:13:29 38-22:44:15 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7212 00:00:08 38-22:44:15 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6364 00:00:01 38-22:44:15 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5772 00:00:00 38-22:44:15 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4352 00:00:00 38-22:44:15 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5208 00:00:00 38-22:44:15 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 38-22:44:15 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 38-22:44:15 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 38-22:44:15 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17896 00:05:06 38-22:44:14 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 38-22:44:14 229054 [check_nginx] <defunct> - root 0 0 00:00:00 26:01 265135 [kworker/u16:0-flush-8:0] - root 0 0 00:00:00 25:42 272662 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 22:06 366516 [kworker/7:0-events] - root 0 0 00:00:00 20:37 394289 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 19:41 411748 [kworker/2:0-events] - root 0 0 00:00:00 15:44 515850 [kworker/6:2-events] - root 0 0 00:00:00 15:23 524333 [kworker/4:1-events] 0::/system.slice/packagekit.service root 288432 16368 00:00:25 38-19:47:57 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:03 38-19:47:57 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50848 00:00:01 13-04:22:12 558518 /usr/sbin/apache2 -k start - root 0 0 00:00:00 12:51 583090 [kworker/5:2-events] - root 0 0 00:00:00 10:36 633981 [kworker/0:0-events] - root 0 0 00:00:00 10:20 638562 [kworker/3:2-events] - root 0 0 00:00:00 09:40 651128 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 09:23 662911 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:00 09:02 672916 [kworker/6:1-events] 0::/system.slice/cron.service root 5708 3112 09:27:49 37-13:22:42 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 09:30:59 37-13:22:42 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop - root 0 0 00:00:00 07:22 724151 [kworker/1:1-events] - root 0 0 00:00:00 06:40 740134 [kworker/5:0-cgroup_destroy] - root 0 0 00:00:00 05:53 756976 [kworker/2:1-events] - root 0 0 00:00:00 05:11 772884 [kworker/3:0-events] - root 0 0 00:00:00 04:40 785219 [kworker/0:1-events] - root 0 0 00:00:00 03:00 832607 [kworker/7:1-events] - root 0 0 00:00:00 02:30 842729 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/ssh.service root 16400 8240 00:00:00 01:42 857129 sshd: root [priv] 0::/system.slice/ssh.service sshd 13272 4600 00:00:00 01:42 857164 sshd: root [net] - root 0 0 00:00:00 01:26 862491 [kworker/6:0-events] - root 0 0 00:00:00 01:11 866994 [kworker/5:1-events] 0::/system.slice/cron.service root 2392 560 00:00:00 00:45 874608 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:42 876033 /bin/sleep 60 - root 0 0 00:00:00 00:40 877240 [kworker/1:2-events] 0::/system.slice/cron.service root 5908 2332 00:00:00 00:38 877586 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10876 00:00:00 00:38 877589 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2328 00:00:00 00:38 877607 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8896 00:00:00 00:38 877610 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:38 877632 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10836 00:00:00 00:38 877637 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2372 00:00:00 00:38 877665 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10848 00:00:00 00:38 877669 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:38 877678 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10960 00:00:00 00:38 877682 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:38 877693 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8896 00:00:00 00:38 877697 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:38 877722 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10476 00:00:00 00:38 877725 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 496 00:00:00 00:29 880411 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:27 881017 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:17 883990 sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:10 886034 sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:08 886765 sleep 8 - root 0 0 00:00:00 00:02 888322 [kworker/4:2-cgroup_destroy] 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 888428 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:02 888444 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 10956 00:00:00 00:02 888445 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8226 --header Origin: https://127.0.0.1:8226 --header Sec-WebSocket-Key: MjI3NTk6ODc4Mw== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8226/ -k 0::/system.slice/cron.service root 4288 556 00:00:00 00:02 888446 wc -l 0::/system.slice/cron.service root 4068 2996 00:00:00 00:02 888461 /bin/bash ./statustunnel 0::/system.slice/cron.service root 2392 560 00:00:00 00:02 888532 /bin/sleep 5 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 888544 sleep 2 0::/system.slice/cron.service root 2392 564 00:00:00 00:02 888553 /bin/sleep 2 0::/system.slice/cron.service root 4284 488 00:00:00 00:01 888636 sleep 1 0::/system.slice/xinetd.service root 6220 3568 00:00:00 00:01 888655 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 888684 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 888839 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 888851 sleep 0.1 0::/system.slice/cron.service root 5840 1548 00:00:00 00:00 888858 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5244 3008 00:00:00 00:00 888861 jq .dispositivos.ios 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 888871 sleep 0.1 0::/system.slice/cron.service root 6088 1644 00:00:00 00:00 888872 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5244 2936 00:00:00 00:00 888874 jq .dispositivos.android 0::/system.slice/xinetd.service root 6676 1136 00:00:00 00:00 888892 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 888893 sleep 1 0::/system.slice/apache2.service www-data 266752 50812 00:00:02 14-13:41:40 956576 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3924 00:00:04 19:53:40 1496993 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2561720 179384 06:08:29 19:53:39 1497773 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5708 3064 00:02:09 34-14:03:42 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:47:02 34-14:03:42 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 08:40:18 34-14:03:42 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 02:34:16 34-14:03:42 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 02:52:06 34-14:03:42 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 02:04:06 34-14:03:42 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 02:37:11 34-14:03:42 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 02:32:36 34-14:03:42 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51068 00:00:03 26-00:54:39 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50576 00:00:04 26-00:54:39 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51148 00:00:03 26-00:54:39 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50596 00:00:03 26-00:54:39 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50784 00:00:03 26-00:54:39 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:02 01:23:31 3065864 [kworker/u16:1-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 266676 50612 00:00:03 26-00:21:53 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51196 00:00:03 26-00:21:52 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50560 00:00:03 25-13:12:55 3582124 /usr/sbin/apache2 -k start Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 78384sec preferred_lft 78384sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-12-01 23:54 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730feeeebe1eFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 182964 11912 06:43:18 36-20:40:30 1 /sbin/init - root 0 0 00:00:03 36-20:40:30 2 [kthreadd] - root 0 0 00:00:00 36-20:40:30 3 [rcu_gp] - root 0 0 00:00:00 36-20:40:30 4 [rcu_par_gp] - root 0 0 00:00:00 36-20:40:30 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 36-20:40:30 8 [mm_percpu_wq] - root 0 0 00:00:00 36-20:40:30 9 [rcu_tasks_rude_] - root 0 0 00:00:00 36-20:40:30 10 [rcu_tasks_trace] - root 0 0 00:13:04 36-20:40:30 11 [ksoftirqd/0] - root 0 0 00:55:11 36-20:40:30 12 [rcu_sched] - root 0 0 00:00:20 36-20:40:30 13 [migration/0] - root 0 0 00:00:00 36-20:40:30 15 [cpuhp/0] - root 0 0 00:00:00 36-20:40:30 16 [cpuhp/1] - root 0 0 00:00:21 36-20:40:30 17 [migration/1] - root 0 0 00:13:01 36-20:40:30 18 [ksoftirqd/1] - root 0 0 00:00:00 36-20:40:30 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 36-20:40:30 21 [cpuhp/2] - root 0 0 00:00:20 36-20:40:30 22 [migration/2] - root 0 0 00:13:00 36-20:40:30 23 [ksoftirqd/2] - root 0 0 00:00:00 36-20:40:30 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 36-20:40:30 26 [cpuhp/3] - root 0 0 00:00:20 36-20:40:30 27 [migration/3] - root 0 0 00:12:59 36-20:40:30 28 [ksoftirqd/3] - root 0 0 00:00:00 36-20:40:30 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 36-20:40:30 31 [cpuhp/4] - root 0 0 00:00:21 36-20:40:30 32 [migration/4] - root 0 0 00:12:59 36-20:40:30 33 [ksoftirqd/4] - root 0 0 00:00:00 36-20:40:30 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 36-20:40:30 36 [cpuhp/5] - root 0 0 00:00:21 36-20:40:30 37 [migration/5] - root 0 0 00:13:06 36-20:40:30 38 [ksoftirqd/5] - root 0 0 00:00:00 36-20:40:30 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 36-20:40:30 41 [cpuhp/6] - root 0 0 00:00:20 36-20:40:30 42 [migration/6] - root 0 0 00:13:00 36-20:40:30 43 [ksoftirqd/6] - root 0 0 00:00:00 36-20:40:30 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 36-20:40:30 46 [cpuhp/7] - root 0 0 00:00:21 36-20:40:30 47 [migration/7] - root 0 0 00:13:01 36-20:40:30 48 [ksoftirqd/7] - root 0 0 00:00:00 36-20:40:30 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 36-20:40:30 56 [kdevtmpfs] - root 0 0 00:00:00 36-20:40:30 57 [netns] - root 0 0 00:07:56 36-20:40:30 58 [kauditd] - root 0 0 00:00:03 36-20:40:30 59 [khungtaskd] - root 0 0 00:00:00 36-20:40:30 60 [oom_reaper] - root 0 0 00:00:00 36-20:40:30 61 [writeback] - root 0 0 00:01:07 36-20:40:30 62 [kcompactd0] - root 0 0 00:00:00 36-20:40:30 63 [ksmd] - root 0 0 00:02:16 36-20:40:30 64 [khugepaged] - root 0 0 00:00:00 36-20:40:30 84 [kintegrityd] - root 0 0 00:00:00 36-20:40:30 85 [kblockd] - root 0 0 00:00:00 36-20:40:30 86 [blkcg_punt_bio] - root 0 0 00:00:13 36-20:40:30 88 [kworker/0:1H-kblockd] - root 0 0 00:00:22 36-20:40:30 89 [kswapd0] - root 0 0 00:00:00 36-20:40:30 90 [kthrotld] - root 0 0 00:00:00 36-20:40:30 91 [acpi_thermal_pm] - root 0 0 00:00:00 36-20:40:30 92 [nvme-wq] - root 0 0 00:00:00 36-20:40:30 93 [nvme-reset-wq] - root 0 0 00:00:00 36-20:40:30 94 [nvme-delete-wq] - root 0 0 00:00:00 36-20:40:29 95 [ipv6_addrconf] - root 0 0 00:00:00 36-20:40:29 106 [kstrp] - root 0 0 00:00:00 36-20:40:29 114 [kworker/u17:0] - root 0 0 00:00:14 36-20:40:29 136 [kworker/1:1H-kblockd] - root 0 0 00:00:14 36-20:40:29 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 36-20:40:29 167 [ata_sff] - root 0 0 00:00:00 36-20:40:29 168 [scsi_eh_0] - root 0 0 00:00:00 36-20:40:29 169 [scsi_tmf_0] - root 0 0 00:00:00 36-20:40:29 170 [scsi_eh_1] - root 0 0 00:00:00 36-20:40:29 171 [scsi_tmf_1] - root 0 0 00:00:00 36-20:40:29 173 [scsi_eh_2] - root 0 0 00:00:00 36-20:40:29 174 [scsi_tmf_2] - root 0 0 00:00:13 36-20:40:29 175 [kworker/3:1H-kblockd] - root 0 0 00:00:13 36-20:40:29 178 [kworker/4:1H-kblockd] - root 0 0 00:00:13 36-20:40:29 184 [kworker/7:1H-kblockd] - root 0 0 00:00:13 36-20:40:29 196 [kworker/6:1H-kblockd] - root 0 0 00:08:50 36-20:40:29 206 [jbd2/sda1-8] - root 0 0 00:00:00 36-20:40:29 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 360496 276764 02:23:30 36-20:40:28 286 /lib/systemd/systemd-journald - root 0 0 00:00:13 36-20:40:28 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4244 00:00:08 36-20:40:28 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 36-20:40:28 357 [cryptd] 0::/system.slice/auditd.service root 13328 1984 00:27:45 36-20:40:28 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4608 00:00:00 36-20:40:27 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:14:33 36-20:40:26 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:49 36-20:40:26 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 91020 02:29:33 36-20:40:26 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 36-20:40:26 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8868 00:20:20 36-20:40:26 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:06:58 36-20:40:26 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 04:27:33 36-20:40:26 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21944 01:51:41 36-20:40:26 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:37 36-20:40:26 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 36-20:40:26 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 36-20:40:26 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 36-20:40:26 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11548 5556 00:11:30 36-20:40:26 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8088 6072 00:00:01 36-20:40:26 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 36-20:40:26 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51764 00:02:02 36-20:40:26 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:14 36-20:40:26 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:24 36-20:40:26 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:23:28 36-20:39:50 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:04:14 36-20:39:50 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5688 2644 00:00:27 1-04:30:02 99559 /usr/sbin/cron -f 0::/system.slice/cron.service root 6088 3524 00:05:42 1-04:29:51 105886 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5708 3148 00:00:01 1-04:29:51 105923 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5832 3128 00:02:27 1-04:29:51 106015 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5840 3280 00:02:02 1-04:29:51 106035 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/nginx.service root 67480 2072 00:00:00 36-20:30:24 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7824 00:13:17 36-20:30:24 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7216 00:00:08 36-20:30:24 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6368 00:00:01 36-20:30:24 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5776 00:00:00 36-20:30:24 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4356 00:00:00 36-20:30:24 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5212 00:00:00 36-20:30:24 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 36-20:30:24 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 36-20:30:24 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 36-20:30:24 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:04:53 36-20:30:23 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 36-20:30:23 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16368 00:00:23 36-17:34:06 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:03 36-17:34:06 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50868 00:00:01 11-02:08:21 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 08:56:20 35-11:08:51 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 08:59:21 35-11:08:51 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop - root 0 0 00:00:03 01:58:45 803724 [kworker/u16:0-flush-8:0] 0::/system.slice/apache2.service www-data 266752 50832 00:00:01 12-11:27:49 956576 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2384 00:00:00 18:40:50 1754953 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5032 00:00:00 18:40:50 1754961 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 18:40:50 1755000 sh ./webhookstart 0::/system.slice/cron.service root 40104 35156 00:00:08 18:40:50 1755020 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2368 00:00:00 18:40:49 1755498 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 7232 00:00:05 18:40:49 1755510 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2336 00:00:00 18:40:49 1755587 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9292 00:00:52 18:40:49 1755599 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2372 00:00:00 18:40:49 1755727 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 486896 45320 00:00:54 18:40:49 1755739 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2360 00:00:00 18:40:49 1755812 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11740 00:00:57 18:40:49 1755816 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2352 00:00:00 18:40:49 1755871 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13380 00:00:57 18:40:49 1755878 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2300 00:00:00 18:40:49 1755935 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 15328 00:00:57 18:40:49 1755944 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2376 00:00:00 18:40:49 1755995 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 10968 00:00:54 18:40:49 1756002 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2364 00:00:02 18:40:46 1758137 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13268 00:00:00 18:40:46 1758142 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2420 00:00:03 18:40:46 1758166 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13352 00:00:00 18:40:46 1758171 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57316 00:01:00 18:40:46 1758503 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55260 00:01:01 18:40:46 1758524 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:00 18:39:51 1782464 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874036 42732 00:00:04 18:39:51 1782493 /usr/sbin/node server.js - root 0 0 00:00:02 01:06:01 2064724 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 49:06 2484059 [kworker/0:0-events] 0::/system.slice/cron.service root 5708 3064 00:02:01 32-11:49:51 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:40:32 32-11:49:51 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 08:09:08 32-11:49:51 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5840 3184 02:24:55 32-11:49:51 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 02:41:40 32-11:49:51 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:56:35 32-11:49:51 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 02:27:40 32-11:49:51 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 02:23:20 32-11:49:51 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 51092 00:00:03 23-22:40:48 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50588 00:00:03 23-22:40:48 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51168 00:00:03 23-22:40:48 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50600 00:00:03 23-22:40:48 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50796 00:00:03 23-22:40:48 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:01 37:46 2754810 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 26:53 3006318 [kworker/1:1-events] - root 0 0 00:00:00 23:50 3091864 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 22:16 3125655 [kworker/3:1-cgroup_destroy] - root 0 0 00:00:00 19:50 3178170 [kworker/6:2-events] - root 0 0 00:00:00 18:00 3227201 [kworker/7:2-cgroup_destroy] 0::/system.slice/ntp.service ntp 74496 3956 00:00:03 17:39:50 3245034 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2561636 217344 05:24:32 17:39:48 3246279 /usr/sbin/mariadbd - root 0 0 00:00:00 14:05 3321518 [kworker/2:1-events] - root 0 0 00:00:00 13:44 3329647 [kworker/4:1-events] - root 0 0 00:00:00 11:22 3380719 [kworker/7:0-events] - root 0 0 00:00:00 09:50 3426704 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 09:50 3426780 [kworker/5:1-events] - root 0 0 00:00:00 09:22 3439853 [kworker/1:0-events] - root 0 0 00:00:00 07:32 3476518 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 06:56 3487018 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 06:35 3494045 [kworker/3:0-events] - root 0 0 00:00:00 06:04 3503097 [kworker/4:2-events] 0::/system.slice/cron.service root 6128 3492 00:00:05 05:50 3507439 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 05:27 3517641 [kworker/6:1-events] 0::/system.slice/apache2.service www-data 266676 50636 00:00:03 23-22:08:02 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51216 00:00:03 23-22:08:01 3539795 /usr/sbin/apache2 -k start - root 0 0 00:00:00 04:03 3559576 [kworker/7:1-events] - root 0 0 00:00:00 03:37 3572708 [kworker/5:0-events] 0::/system.slice/apache2.service www-data 266748 50572 00:00:03 23-10:59:04 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 02:50 3589540 [kworker/1:2-events] - root 0 0 00:00:00 02:13 3602691 [kworker/2:0-events] 0::/system.slice/cron.service root 11128 3804 00:00:00 00:51 3631911 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 568 00:00:00 00:51 3632045 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2904 00:00:00 00:51 3632087 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1920 00:00:00 00:51 3632480 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9948 00:00:00 00:51 3632509 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 640 00:00:00 00:51 3632510 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3160 00:00:00 00:50 3632579 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 5708 3024 00:00:00 00:50 3632593 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3220 00:00:00 00:50 3632720 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5908 2376 00:00:00 00:50 3632911 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8912 00:00:00 00:50 3632942 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2420 00:00:00 00:50 3633142 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8940 00:00:00 00:50 3633154 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:49 3633486 sleep 75 0::/system.slice/cron.service root 4284 560 00:00:00 00:49 3633501 sleep 69 0::/system.slice/cron.service root 4284 500 00:00:00 00:49 3633512 sleep 64 - root 0 0 00:00:00 00:44 3635484 [kworker/4:0-cgroup_destroy] 0::/system.slice/cron.service root 4284 496 00:00:00 00:41 3636591 sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:41 3636842 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:38 3637505 /bin/sleep 60 0::/system.slice/cron.service root 5908 2364 00:00:00 00:35 3638849 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8520 00:00:00 00:35 3638853 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2424 00:00:00 00:35 3638865 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6864 00:00:00 00:35 3638868 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2428 00:00:00 00:35 3638895 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8808 00:00:00 00:35 3638901 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:34 3638932 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 13016 00:00:00 00:34 3638936 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2372 00:00:00 00:34 3638950 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8812 00:00:00 00:34 3638952 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 560 00:00:00 00:27 3641648 sleep 60 - root 0 0 00:00:00 00:24 3642804 [kworker/0:2-events] 0::/system.slice/cron.service root 2392 496 00:00:00 00:21 3643672 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:19 3644384 /bin/sleep 60 0::/system.slice/cron.service root 16716 8796 00:00:00 00:17 3645005 /usr/bin/mysql -h 127.0.0.1 -D lazarus -ulazarus -px xxxxx 0::/system.slice/cron.service root 4284 500 00:00:00 00:06 3648593 sleep 8 - root 0 0 00:00:00 00:03 3649444 [kworker/3:2-events] 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3649944 /bin/sleep 5 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3649961 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3649962 sleep 2 0::/system.slice/xinetd.service root 6252 3716 00:00:00 00:01 3650053 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3650123 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3650177 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3650256 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 3650259 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 3650317 sleep 2 0::/system.slice/cron.service root 0 0 00:00:00 00:00 3650323 [sleep] <defunct> 0::/system.slice/cron.service root 5836 1388 00:00:00 00:00 3650327 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 3008 00:00:00 00:00 3650329 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1132 00:00:00 00:00 3650347 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 76187sec preferred_lft 76187sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-29 21:40 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f88787d65Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11928 06:24:33 34-22:31:25 1 /sbin/init - root 0 0 00:00:02 34-22:31:25 2 [kthreadd] - root 0 0 00:00:00 34-22:31:25 3 [rcu_gp] - root 0 0 00:00:00 34-22:31:25 4 [rcu_par_gp] - root 0 0 00:00:00 34-22:31:25 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 34-22:31:25 8 [mm_percpu_wq] - root 0 0 00:00:00 34-22:31:25 9 [rcu_tasks_rude_] - root 0 0 00:00:00 34-22:31:25 10 [rcu_tasks_trace] - root 0 0 00:12:26 34-22:31:25 11 [ksoftirqd/0] - root 0 0 00:52:20 34-22:31:25 12 [rcu_sched] - root 0 0 00:00:19 34-22:31:25 13 [migration/0] - root 0 0 00:00:00 34-22:31:25 15 [cpuhp/0] - root 0 0 00:00:00 34-22:31:25 16 [cpuhp/1] - root 0 0 00:00:20 34-22:31:25 17 [migration/1] - root 0 0 00:12:23 34-22:31:25 18 [ksoftirqd/1] - root 0 0 00:00:00 34-22:31:25 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 34-22:31:25 21 [cpuhp/2] - root 0 0 00:00:19 34-22:31:25 22 [migration/2] - root 0 0 00:12:21 34-22:31:25 23 [ksoftirqd/2] - root 0 0 00:00:00 34-22:31:25 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 34-22:31:25 26 [cpuhp/3] - root 0 0 00:00:19 34-22:31:25 27 [migration/3] - root 0 0 00:12:21 34-22:31:25 28 [ksoftirqd/3] - root 0 0 00:00:00 34-22:31:25 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 34-22:31:25 31 [cpuhp/4] - root 0 0 00:00:19 34-22:31:25 32 [migration/4] - root 0 0 00:12:22 34-22:31:25 33 [ksoftirqd/4] - root 0 0 00:00:00 34-22:31:25 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 34-22:31:25 36 [cpuhp/5] - root 0 0 00:00:19 34-22:31:25 37 [migration/5] - root 0 0 00:12:29 34-22:31:25 38 [ksoftirqd/5] - root 0 0 00:00:00 34-22:31:25 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 34-22:31:25 41 [cpuhp/6] - root 0 0 00:00:19 34-22:31:25 42 [migration/6] - root 0 0 00:12:22 34-22:31:25 43 [ksoftirqd/6] - root 0 0 00:00:00 34-22:31:25 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 34-22:31:25 46 [cpuhp/7] - root 0 0 00:00:19 34-22:31:25 47 [migration/7] - root 0 0 00:12:23 34-22:31:25 48 [ksoftirqd/7] - root 0 0 00:00:00 34-22:31:25 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 34-22:31:25 56 [kdevtmpfs] - root 0 0 00:00:00 34-22:31:25 57 [netns] - root 0 0 00:07:31 34-22:31:25 58 [kauditd] - root 0 0 00:00:03 34-22:31:25 59 [khungtaskd] - root 0 0 00:00:00 34-22:31:25 60 [oom_reaper] - root 0 0 00:00:00 34-22:31:25 61 [writeback] - root 0 0 00:01:03 34-22:31:25 62 [kcompactd0] - root 0 0 00:00:00 34-22:31:25 63 [ksmd] - root 0 0 00:02:09 34-22:31:25 64 [khugepaged] - root 0 0 00:00:00 34-22:31:25 84 [kintegrityd] - root 0 0 00:00:00 34-22:31:25 85 [kblockd] - root 0 0 00:00:00 34-22:31:25 86 [blkcg_punt_bio] - root 0 0 00:00:13 34-22:31:25 88 [kworker/0:1H-kblockd] - root 0 0 00:00:20 34-22:31:25 89 [kswapd0] - root 0 0 00:00:00 34-22:31:25 90 [kthrotld] - root 0 0 00:00:00 34-22:31:25 91 [acpi_thermal_pm] - root 0 0 00:00:00 34-22:31:25 92 [nvme-wq] - root 0 0 00:00:00 34-22:31:25 93 [nvme-reset-wq] - root 0 0 00:00:00 34-22:31:25 94 [nvme-delete-wq] - root 0 0 00:00:00 34-22:31:24 95 [ipv6_addrconf] - root 0 0 00:00:00 34-22:31:24 106 [kstrp] - root 0 0 00:00:00 34-22:31:24 114 [kworker/u17:0] - root 0 0 00:00:13 34-22:31:24 136 [kworker/1:1H-kblockd] - root 0 0 00:00:13 34-22:31:24 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 34-22:31:24 167 [ata_sff] - root 0 0 00:00:00 34-22:31:24 168 [scsi_eh_0] - root 0 0 00:00:00 34-22:31:24 169 [scsi_tmf_0] - root 0 0 00:00:00 34-22:31:24 170 [scsi_eh_1] - root 0 0 00:00:00 34-22:31:24 171 [scsi_tmf_1] - root 0 0 00:00:00 34-22:31:24 173 [scsi_eh_2] - root 0 0 00:00:00 34-22:31:24 174 [scsi_tmf_2] - root 0 0 00:00:13 34-22:31:24 175 [kworker/3:1H-kblockd] - root 0 0 00:00:13 34-22:31:24 178 [kworker/4:1H-kblockd] - root 0 0 00:00:13 34-22:31:24 184 [kworker/7:1H-kblockd] - root 0 0 00:00:13 34-22:31:24 196 [kworker/6:1H-kblockd] - root 0 0 00:08:21 34-22:31:24 206 [jbd2/sda1-8] - root 0 0 00:00:00 34-22:31:24 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 221604 166144 02:15:49 34-22:31:23 286 /lib/systemd/systemd-journald - root 0 0 00:00:13 34-22:31:23 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4252 00:00:08 34-22:31:23 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 34-22:31:23 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:26:16 34-22:31:23 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4608 00:00:00 34-22:31:22 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:13:47 34-22:31:21 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:43 34-22:31:21 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 91040 02:21:46 34-22:31:21 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 34-22:31:21 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8948 00:19:15 34-22:31:21 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:06:37 34-22:31:21 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 04:13:23 34-22:31:21 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21944 01:45:41 34-22:31:21 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:35 34-22:31:21 714 sshd: /usr/sbin/sshd -D [listener] 1 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 34-22:31:21 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 34-22:31:21 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 34-22:31:21 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:10:54 34-22:31:21 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7928 6072 00:00:01 34-22:31:21 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 34-22:31:21 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51764 00:01:56 34-22:31:21 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:13 34-22:31:21 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:19 34-22:31:21 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:22:15 34-22:30:45 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:04:01 34-22:30:45 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 2072 00:00:00 34-22:21:19 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7824 00:12:29 34-22:21:19 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7216 00:00:08 34-22:21:19 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6368 00:00:01 34-22:21:19 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5776 00:00:00 34-22:21:19 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4356 00:00:00 34-22:21:19 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5212 00:00:00 34-22:21:19 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 34-22:21:19 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 34-22:21:19 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 34-22:21:19 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:04:38 34-22:21:18 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 34-22:21:18 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16368 00:00:22 34-19:25:01 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:02 34-19:25:01 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266744 50428 00:00:01 9-03:59:16 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 08:27:40 33-12:59:46 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 08:30:34 33-12:59:46 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 02:41:35 33-12:59:45 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/apache2.service www-data 266752 50516 00:00:01 10-13:18:44 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:02 01:19:51 985660 [kworker/u16:3-ext4-rsv-conversion] 0::/system.slice/cron.service root 5908 2352 00:00:00 20:31:45 1612492 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 5056 00:00:00 20:31:45 1612502 sudo ./webhookstart 0::/system.slice/cron.service root 2480 512 00:00:00 20:31:45 1612618 sh ./webhookstart 0::/system.slice/cron.service root 40104 35100 00:00:10 20:31:45 1612648 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2388 00:00:03 20:31:44 1613596 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13232 00:00:00 20:31:44 1613613 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 55276 00:01:10 20:31:43 1613964 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2368 00:00:03 20:31:42 1615628 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13300 00:00:00 20:31:42 1615634 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 55404 00:01:09 20:31:41 1616021 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2340 00:00:00 20:31:39 1618536 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11020 00:00:06 20:31:39 1618539 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2352 00:00:00 20:31:39 1618577 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 11280 00:00:58 20:31:39 1618582 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2416 00:00:00 20:31:39 1618614 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 488244 46792 00:00:59 20:31:39 1618620 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2412 00:00:00 20:31:39 1618655 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10628 00:01:04 20:31:39 1618660 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2320 00:00:00 20:31:39 1618682 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13404 00:01:03 20:31:39 1618684 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2328 00:00:00 20:31:39 1618716 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12804 00:01:03 20:31:39 1618719 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2320 00:00:00 20:31:39 1618757 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 11112 00:01:00 20:31:39 1618770 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2332 00:00:00 20:30:45 1652929 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874080 41104 00:00:04 20:30:45 1652951 /usr/sbin/node server.js - root 0 0 00:00:00 44:38 1862563 [kworker/5:0-events] - root 0 0 00:00:00 35:03 2089553 [kworker/6:2-events] - root 0 0 00:00:00 33:45 2130321 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:01 31:13 2198611 [kworker/u16:0-flush-8:0] - root 0 0 00:00:00 24:51 2343214 [kworker/2:2-events] - root 0 0 00:00:00 22:45 2404958 [kworker/3:2-cgroup_destroy] - root 0 0 00:00:00 18:19 2512534 [kworker/0:0-events] - root 0 0 00:00:00 15:06 2602571 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 15:06 2602593 [kworker/1:1-events] - root 0 0 00:00:00 14:56 2606419 [kworker/4:1-events] - root 0 0 00:00:00 12:56 2652864 [kworker/0:2-events] 0::/system.slice/cron.service root 5708 3064 00:01:54 30-13:40:46 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:34:38 30-13:40:46 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 07:40:40 30-13:40:46 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 02:27:14 30-13:40:46 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 02:16:25 30-13:40:46 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 02:32:09 30-13:40:46 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:49:44 30-13:40:46 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 02:19:00 30-13:40:46 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 02:14:55 30-13:40:46 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr - root 0 0 00:00:00 11:43 2682268 [kworker/3:0-events] - root 0 0 00:00:00 10:35 2710555 [kworker/6:0-events] 0::/system.slice/apache2.service www-data 266748 50368 00:00:03 22-00:31:43 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50320 00:00:03 22-00:31:43 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50316 00:00:03 22-00:31:43 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50328 00:00:03 22-00:31:43 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50524 00:00:03 22-00:31:43 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:00 10:20 2719159 [kworker/2:1-events] - root 0 0 00:00:00 09:38 2740008 [kworker/1:2-events] - root 0 0 00:00:00 09:11 2748103 [kworker/4:2-events] - root 0 0 00:00:00 08:30 2761924 [kworker/7:1-events] - root 0 0 00:00:00 07:45 2776080 [kworker/5:2-events] - root 0 0 00:00:00 05:00 2852224 [kworker/6:1-events] - root 0 0 00:00:00 04:46 2858287 [kworker/2:0-cgroup_destroy] - root 0 0 00:00:00 04:40 2861005 [kworker/3:1-events] - root 0 0 00:00:00 03:32 2887195 [kworker/4:0-events] - root 0 0 00:00:00 03:26 2889142 [kworker/7:0-cgroup_destroy] - root 0 0 00:00:00 03:24 2890104 [kworker/0:1-events] - root 0 0 00:00:00 02:45 2904912 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 02:40 2907357 [kworker/1:0-events] 0::/system.slice/cron.service root 10888 3676 00:00:00 01:46 2927010 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 568 00:00:00 01:46 2927190 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 3004 00:00:00 01:46 2927314 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1984 00:00:00 01:46 2927615 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9832 00:00:00 01:46 2927625 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 704 00:00:00 01:46 2927626 grep 502 Bad Gateway 0::/system.slice/cron.service root 6492 3976 00:00:00 01:46 2927666 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5840 3408 00:00:00 01:46 2927790 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5908 2512 00:00:00 01:34 2938106 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8976 00:00:00 01:34 2938109 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2444 00:00:00 01:34 2938134 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8968 00:00:00 01:34 2938136 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2332 00:00:00 01:34 2938157 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10916 00:00:00 01:34 2938160 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2340 00:00:00 01:34 2938195 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8904 00:00:00 01:34 2938199 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2504 00:00:00 01:34 2938210 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6932 00:00:00 01:34 2938212 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2352 00:00:00 01:34 2938234 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 9016 00:00:00 01:34 2938238 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2532 00:00:00 01:34 2938255 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6892 00:00:00 01:34 2938257 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/ssh.service root 16332 8072 00:00:00 01:32 2938997 sshd: unknown [priv] 0::/system.slice/ssh.service sshd 13272 4576 00:00:00 01:32 2938999 sshd: unknown [net] - root 0 0 00:00:00 01:16 2943736 [kworker/5:1-cgroup_destroy] 0::/system.slice/cron.service root 2392 504 00:00:00 00:55 2950071 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:55 2950077 sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:53 2950653 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:38 2956412 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:26 2960194 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:24 2960781 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:05 2972637 sleep 8 0::/system.slice/cron.service root 4284 496 00:00:00 00:02 2974557 sleep 2 0::/system.slice/cron.service root 4284 492 00:00:00 00:01 2974783 sleep 2 0::/system.slice/xinetd.service root 6240 3532 00:00:00 00:01 2974898 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 2974937 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2974960 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2974961 sleep 1 0::/system.slice/cron.service root 5840 1496 00:00:00 00:01 2975204 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11068 00:00:00 00:01 2975205 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8225 --header Origin: https://127.0.0.1:8225 --header Sec-WebSocket-Key: NzIwNjoyMjIxOA== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8225/ -k 0::/system.slice/cron.service root 4288 556 00:00:00 00:01 2975206 wc -l 0::/system.slice/cron.service root 4080 3132 00:00:00 00:01 2975222 /bin/bash ./statusdispolock 0::/system.slice/cron.service root 2392 560 00:00:00 00:00 2975269 /bin/sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2975287 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2975347 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2975429 sleep 0.1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2975438 sleep 0.1 0::/system.slice/cron.service root 5708 1404 00:00:00 00:00 2975443 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 2920 00:00:00 00:00 2975445 jq .dispositivos.windows 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2975446 sleep 2 0::/system.slice/cron.service root 5840 1592 00:00:00 00:00 2975460 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5244 2924 00:00:00 00:00 2975462 jq .vpn_clients 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 2975479 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5244 2924 00:00:00 00:00 2975481 jq -c .[] | sort_by(.mdm_id, .tag) | .[] 0::/system.slice/ntp.service ntp 74496 3156 00:00:04 19:30:45 3152910 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2537148 170884 02:19:48 19:30:43 3154225 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5836 3084 01:16:12 27-08:25:45 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 50364 00:00:03 21-23:58:57 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50888 00:00:03 21-23:58:56 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50152 00:00:03 21-12:49:59 3582124 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2636 00:05:32 14-15:56:01 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3148 00:00:23 14-15:55:46 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 57012sec preferred_lft 57012sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-27 23:31 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f9bf2e669Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11968 06:05:13 32-23:48:57 1 /sbin/init - root 0 0 00:00:02 32-23:48:57 2 [kthreadd] - root 0 0 00:00:00 32-23:48:57 3 [rcu_gp] - root 0 0 00:00:00 32-23:48:57 4 [rcu_par_gp] - root 0 0 00:00:00 32-23:48:57 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 32-23:48:57 8 [mm_percpu_wq] - root 0 0 00:00:00 32-23:48:57 9 [rcu_tasks_rude_] - root 0 0 00:00:00 32-23:48:57 10 [rcu_tasks_trace] - root 0 0 00:11:45 32-23:48:57 11 [ksoftirqd/0] - root 0 0 00:49:24 32-23:48:57 12 [rcu_sched] - root 0 0 00:00:18 32-23:48:57 13 [migration/0] - root 0 0 00:00:00 32-23:48:57 15 [cpuhp/0] - root 0 0 00:00:00 32-23:48:57 16 [cpuhp/1] - root 0 0 00:00:18 32-23:48:57 17 [migration/1] - root 0 0 00:11:41 32-23:48:57 18 [ksoftirqd/1] - root 0 0 00:00:00 32-23:48:57 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 32-23:48:57 21 [cpuhp/2] - root 0 0 00:00:18 32-23:48:57 22 [migration/2] - root 0 0 00:11:40 32-23:48:57 23 [ksoftirqd/2] - root 0 0 00:00:00 32-23:48:57 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 32-23:48:57 26 [cpuhp/3] - root 0 0 00:00:18 32-23:48:57 27 [migration/3] - root 0 0 00:11:40 32-23:48:57 28 [ksoftirqd/3] - root 0 0 00:00:00 32-23:48:57 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 32-23:48:57 31 [cpuhp/4] - root 0 0 00:00:18 32-23:48:57 32 [migration/4] - root 0 0 00:11:40 32-23:48:57 33 [ksoftirqd/4] - root 0 0 00:00:00 32-23:48:57 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 32-23:48:57 36 [cpuhp/5] - root 0 0 00:00:18 32-23:48:57 37 [migration/5] - root 0 0 00:11:47 32-23:48:57 38 [ksoftirqd/5] - root 0 0 00:00:00 32-23:48:57 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 32-23:48:57 41 [cpuhp/6] - root 0 0 00:00:18 32-23:48:57 42 [migration/6] - root 0 0 00:11:40 32-23:48:57 43 [ksoftirqd/6] - root 0 0 00:00:00 32-23:48:57 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 32-23:48:57 46 [cpuhp/7] - root 0 0 00:00:18 32-23:48:57 47 [migration/7] - root 0 0 00:11:42 32-23:48:57 48 [ksoftirqd/7] - root 0 0 00:00:00 32-23:48:57 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 32-23:48:57 56 [kdevtmpfs] - root 0 0 00:00:00 32-23:48:57 57 [netns] - root 0 0 00:07:05 32-23:48:57 58 [kauditd] - root 0 0 00:00:03 32-23:48:57 59 [khungtaskd] - root 0 0 00:00:00 32-23:48:57 60 [oom_reaper] - root 0 0 00:00:00 32-23:48:57 61 [writeback] - root 0 0 00:01:00 32-23:48:57 62 [kcompactd0] - root 0 0 00:00:00 32-23:48:57 63 [ksmd] - root 0 0 00:02:02 32-23:48:57 64 [khugepaged] - root 0 0 00:00:00 32-23:48:57 84 [kintegrityd] - root 0 0 00:00:00 32-23:48:57 85 [kblockd] - root 0 0 00:00:00 32-23:48:57 86 [blkcg_punt_bio] - root 0 0 00:00:12 32-23:48:57 88 [kworker/0:1H-kblockd] - root 0 0 00:00:18 32-23:48:57 89 [kswapd0] - root 0 0 00:00:00 32-23:48:57 90 [kthrotld] - root 0 0 00:00:00 32-23:48:57 91 [acpi_thermal_pm] - root 0 0 00:00:00 32-23:48:57 92 [nvme-wq] - root 0 0 00:00:00 32-23:48:57 93 [nvme-reset-wq] - root 0 0 00:00:00 32-23:48:57 94 [nvme-delete-wq] - root 0 0 00:00:00 32-23:48:56 95 [ipv6_addrconf] - root 0 0 00:00:00 32-23:48:56 106 [kstrp] - root 0 0 00:00:00 32-23:48:56 114 [kworker/u17:0] - root 0 0 00:00:12 32-23:48:56 136 [kworker/1:1H-kblockd] - root 0 0 00:00:12 32-23:48:56 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 32-23:48:56 167 [ata_sff] - root 0 0 00:00:00 32-23:48:56 168 [scsi_eh_0] - root 0 0 00:00:00 32-23:48:56 169 [scsi_tmf_0] - root 0 0 00:00:00 32-23:48:56 170 [scsi_eh_1] - root 0 0 00:00:00 32-23:48:56 171 [scsi_tmf_1] - root 0 0 00:00:00 32-23:48:56 173 [scsi_eh_2] - root 0 0 00:00:00 32-23:48:56 174 [scsi_tmf_2] - root 0 0 00:00:12 32-23:48:56 175 [kworker/3:1H-kblockd] - root 0 0 00:00:12 32-23:48:56 178 [kworker/4:1H-kblockd] - root 0 0 00:00:12 32-23:48:56 184 [kworker/7:1H-kblockd] - root 0 0 00:00:12 32-23:48:56 196 [kworker/6:1H-kblockd] - root 0 0 00:07:53 32-23:48:56 206 [jbd2/sda1-8] - root 0 0 00:00:00 32-23:48:56 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 237632 181928 02:08:03 32-23:48:55 286 /lib/systemd/systemd-journald - root 0 0 00:00:12 32-23:48:55 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4252 00:00:07 32-23:48:55 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 32-23:48:55 357 [cryptd] - root 0 0 00:00:00 04:18 373 [kworker/u16:1-ext4-rsv-conversion] 0::/system.slice/auditd.service root 13328 1988 00:24:46 32-23:48:55 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 32-23:48:54 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:13:00 32-23:48:53 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:37 32-23:48:53 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 89092 02:13:52 32-23:48:53 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 32-23:48:53 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8972 00:18:10 32-23:48:53 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:06:14 32-23:48:53 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 03:58:46 32-23:48:53 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21932 01:39:34 32-23:48:53 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:33 32-23:48:53 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 32-23:48:53 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 32-23:48:53 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 32-23:48:53 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:10:16 32-23:48:53 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8016 5728 00:00:01 32-23:48:53 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 32-23:48:53 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51776 00:01:50 32-23:48:53 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:13 32-23:48:53 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:15 32-23:48:53 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:21:00 32-23:48:17 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:03:48 32-23:48:17 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr - root 0 0 00:00:00 03:18 32562 [kworker/2:2-events] - root 0 0 00:00:00 02:34 61899 [kworker/1:1-events] - root 0 0 00:00:00 01:41 82279 [kworker/3:0-events] - root 0 0 00:00:00 01:36 84288 [kworker/7:1-events] - root 0 0 00:00:00 01:10 94918 [kworker/4:1-cgroup_destroy] 0::/system.slice/cron.service root 5908 2388 00:00:00 01:07 96069 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8992 00:00:00 01:07 96072 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2296 00:00:00 01:07 96097 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8896 00:00:00 01:07 96099 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2372 00:00:00 01:07 96120 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8940 00:00:00 01:07 96123 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2336 00:00:00 01:06 96164 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10980 00:00:00 01:06 96170 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2356 00:00:00 01:06 96194 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6912 00:00:00 01:06 96196 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2412 00:00:00 01:06 96217 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10948 00:00:00 01:06 96219 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2456 00:00:00 01:06 96247 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11028 00:00:00 01:06 96249 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:05 96886 [kworker/5:1-cgroup_destroy] 0::/system.slice/cron.service root 2392 564 00:00:00 00:57 99687 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:55 100410 /bin/sleep 60 - root 0 0 00:00:00 00:54 100760 [kworker/6:2-events] 0::/system.slice/cron.service root 4284 500 00:00:00 00:42 105360 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:40 105892 sleep 60 - root 0 0 00:00:00 00:38 106664 [kworker/0:0-events] 0::/system.slice/cron.service root 2392 564 00:00:00 00:28 110531 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:26 111292 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:02 121003 sleep 8 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 121356 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 121550 sleep 2 0::/system.slice/xinetd.service root 6132 3568 00:00:00 00:01 121591 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 121622 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 121664 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 121700 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 121724 sleep 1 0::/system.slice/cron.service root 5840 1496 00:00:00 00:00 121741 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11164 00:00:00 00:00 121742 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8226 --header Origin: https://127.0.0.1:8226 --header Sec-WebSocket-Key: MTA5NjI6OTQ1OQ== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8226/ -k 0::/system.slice/cron.service root 4288 568 00:00:00 00:00 121743 wc -l 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 121745 sleep 1 0::/system.slice/cron.service root 4068 3184 00:00:00 00:00 121749 /bin/bash ./statustunnel 0::/system.slice/cron.service root 2392 504 00:00:00 00:00 121790 /bin/sleep 5 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 121800 sleep 1 0::/system.slice/cron.service root 2392 504 00:00:00 00:00 121814 /bin/sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 121887 sleep 0.1 0::/system.slice/cron.service root 6128 1880 00:00:00 00:00 121889 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2988 00:00:00 00:00 121891 jq -c . 0::/system.slice/cron.service root 5836 1416 00:00:00 00:00 121906 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 2996 00:00:00 00:00 121908 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1136 00:00:00 00:00 121911 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 121912 sleep 0.1 0::/system.slice/nginx.service root 67480 2072 00:00:00 32-23:38:51 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7824 00:12:01 32-23:38:51 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7216 00:00:08 32-23:38:51 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6368 00:00:01 32-23:38:51 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5776 00:00:00 32-23:38:51 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4356 00:00:00 32-23:38:51 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 32-23:38:51 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 32-23:38:51 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 32-23:38:51 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 32-23:38:51 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:04:23 32-23:38:50 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 32-23:38:50 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16368 00:00:21 32-20:42:33 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:02 32-20:42:33 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266612 50388 00:00:01 7-05:16:48 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 07:58:19 31-14:17:18 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 08:00:59 31-14:17:18 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 02:32:10 31-14:17:17 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/apache2.service www-data 266752 50528 00:00:01 8-14:36:16 956576 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2336 00:00:00 21:49:17 989342 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875572 46344 00:00:04 21:49:17 989368 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2360 00:00:00 21:49:17 989677 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4980 00:00:00 21:49:17 989694 sudo ./webhookstart 0::/system.slice/cron.service root 2480 572 00:00:00 21:49:17 989796 sh ./webhookstart 0::/system.slice/cron.service root 40104 35356 00:00:10 21:49:17 989816 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2392 00:00:03 21:49:14 992478 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13276 00:00:00 21:49:14 992483 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:03 21:49:14 992491 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13212 00:00:00 21:49:14 992495 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55204 00:01:13 21:49:14 992732 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 61484 00:01:13 21:49:13 992826 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2412 00:00:00 21:49:11 995726 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10980 00:00:06 21:49:11 995732 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2308 00:00:00 21:49:11 995777 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9688 00:01:01 21:49:11 995783 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2336 00:00:00 21:49:11 995803 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 487988 46676 00:01:02 21:49:11 995807 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2436 00:00:00 21:49:11 995859 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10312 00:01:07 21:49:11 995864 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2368 00:00:00 21:49:11 995901 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12644 00:01:06 21:49:11 995903 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2384 00:00:00 21:49:11 995948 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13360 00:01:06 21:49:11 995951 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2416 00:00:00 21:49:11 995980 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11536 00:01:02 21:49:11 995984 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:03 01:43:45 1703828 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/ntp.service ntp 74496 3328 00:00:04 20:48:17 2534640 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2365096 164328 02:24:14 20:48:15 2535902 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5708 3064 00:01:47 28-14:58:18 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:28:36 28-14:58:18 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 07:11:21 28-14:58:18 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 02:17:50 28-14:58:18 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 02:07:43 28-14:58:18 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 02:22:26 28-14:58:18 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:42:44 28-14:58:18 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 02:10:07 28-14:58:18 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 02:06:19 28-14:58:18 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 50372 00:00:03 20-01:49:15 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50320 00:00:03 20-01:49:15 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50312 00:00:02 20-01:49:15 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50320 00:00:03 20-01:49:15 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50536 00:00:03 20-01:49:15 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:01 44:38 3187207 [kworker/u16:0-flush-8:0] - root 0 0 00:00:00 37:02 3388194 [kworker/5:2-events] 0::/system.slice/cron.service root 5836 3084 01:10:46 25-09:43:17 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:00 31:17 3533093 [kworker/7:0-events] 0::/system.slice/apache2.service www-data 266676 50376 00:00:03 20-01:16:29 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50896 00:00:03 20-01:16:28 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50164 00:00:02 19-14:07:31 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 25:17 3674668 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 21:17 3779664 [kworker/4:2-events] - root 0 0 00:00:00 18:45 3842909 [kworker/2:1-events] - root 0 0 00:00:00 15:48 3916371 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 13:42 3962852 [kworker/3:1-events] - root 0 0 00:00:00 13:32 3966687 [kworker/2:0-events] 0::/system.slice/cron.service root 5556 2636 00:04:48 12-17:13:33 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3148 00:00:20 12-17:13:18 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 11:58 4015921 [kworker/0:2-events] - root 0 0 00:00:00 11:42 4022734 [kworker/6:0-events] - root 0 0 00:00:00 08:18 4099441 [kworker/1:2-events] - root 0 0 00:00:00 07:52 4110797 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:00 07:47 4113747 [kworker/5:0-cgroup_destroy] - root 0 0 00:00:00 07:21 4129829 [kworker/3:2-cgroup_destroy] - root 0 0 00:00:00 07:00 4141464 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 06:39 4147922 [kworker/0:1-events] - root 0 0 00:00:00 06:23 4152648 [kworker/6:1-cgroup_destroy] 0::/system.slice/cron.service root 6128 3524 00:00:04 04:18 4193625 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 69523sec preferred_lft 69523sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-26 00:49 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f7812bf50Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11968 05:44:38 30-23:44:27 1 /sbin/init - root 0 0 00:00:02 30-23:44:27 2 [kthreadd] - root 0 0 00:00:00 30-23:44:27 3 [rcu_gp] - root 0 0 00:00:00 30-23:44:27 4 [rcu_par_gp] - root 0 0 00:00:00 30-23:44:27 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 30-23:44:27 8 [mm_percpu_wq] - root 0 0 00:00:00 30-23:44:27 9 [rcu_tasks_rude_] - root 0 0 00:00:00 30-23:44:27 10 [rcu_tasks_trace] - root 0 0 00:10:59 30-23:44:27 11 [ksoftirqd/0] - root 0 0 00:46:22 30-23:44:27 12 [rcu_sched] - root 0 0 00:00:17 30-23:44:27 13 [migration/0] - root 0 0 00:00:00 30-23:44:27 15 [cpuhp/0] - root 0 0 00:00:00 30-23:44:27 16 [cpuhp/1] - root 0 0 00:00:17 30-23:44:27 17 [migration/1] - root 0 0 00:10:56 30-23:44:27 18 [ksoftirqd/1] - root 0 0 00:00:00 30-23:44:27 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 30-23:44:27 21 [cpuhp/2] - root 0 0 00:00:17 30-23:44:27 22 [migration/2] - root 0 0 00:10:55 30-23:44:27 23 [ksoftirqd/2] - root 0 0 00:00:00 30-23:44:27 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 30-23:44:27 26 [cpuhp/3] - root 0 0 00:00:17 30-23:44:27 27 [migration/3] - root 0 0 00:10:55 30-23:44:27 28 [ksoftirqd/3] - root 0 0 00:00:00 30-23:44:27 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 30-23:44:27 31 [cpuhp/4] - root 0 0 00:00:17 30-23:44:27 32 [migration/4] - root 0 0 00:10:54 30-23:44:27 33 [ksoftirqd/4] - root 0 0 00:00:00 30-23:44:27 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 30-23:44:27 36 [cpuhp/5] - root 0 0 00:00:17 30-23:44:27 37 [migration/5] - root 0 0 00:11:01 30-23:44:27 38 [ksoftirqd/5] - root 0 0 00:00:00 30-23:44:27 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 30-23:44:27 41 [cpuhp/6] - root 0 0 00:00:17 30-23:44:27 42 [migration/6] - root 0 0 00:10:55 30-23:44:27 43 [ksoftirqd/6] - root 0 0 00:00:00 30-23:44:27 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 30-23:44:27 46 [cpuhp/7] - root 0 0 00:00:17 30-23:44:27 47 [migration/7] - root 0 0 00:10:56 30-23:44:27 48 [ksoftirqd/7] - root 0 0 00:00:00 30-23:44:27 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 30-23:44:27 56 [kdevtmpfs] - root 0 0 00:00:00 30-23:44:27 57 [netns] - root 0 0 00:06:39 30-23:44:27 58 [kauditd] - root 0 0 00:00:03 30-23:44:27 59 [khungtaskd] - root 0 0 00:00:00 30-23:44:27 60 [oom_reaper] - root 0 0 00:00:00 30-23:44:27 61 [writeback] - root 0 0 00:00:56 30-23:44:27 62 [kcompactd0] - root 0 0 00:00:00 30-23:44:27 63 [ksmd] - root 0 0 00:01:54 30-23:44:27 64 [khugepaged] - root 0 0 00:00:00 30-23:44:27 84 [kintegrityd] - root 0 0 00:00:00 30-23:44:27 85 [kblockd] - root 0 0 00:00:00 30-23:44:27 86 [blkcg_punt_bio] - root 0 0 00:00:11 30-23:44:27 88 [kworker/0:1H-kblockd] - root 0 0 00:00:17 30-23:44:27 89 [kswapd0] - root 0 0 00:00:00 30-23:44:27 90 [kthrotld] - root 0 0 00:00:00 30-23:44:27 91 [acpi_thermal_pm] - root 0 0 00:00:00 30-23:44:27 92 [nvme-wq] - root 0 0 00:00:00 30-23:44:27 93 [nvme-reset-wq] - root 0 0 00:00:00 30-23:44:27 94 [nvme-delete-wq] - root 0 0 00:00:00 30-23:44:26 95 [ipv6_addrconf] - root 0 0 00:00:00 30-23:44:26 106 [kstrp] - root 0 0 00:00:00 30-23:44:26 114 [kworker/u17:0] - root 0 0 00:00:11 30-23:44:26 136 [kworker/1:1H-kblockd] - root 0 0 00:00:11 30-23:44:26 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 30-23:44:26 167 [ata_sff] - root 0 0 00:00:00 30-23:44:26 168 [scsi_eh_0] - root 0 0 00:00:00 30-23:44:26 169 [scsi_tmf_0] - root 0 0 00:00:00 30-23:44:26 170 [scsi_eh_1] - root 0 0 00:00:00 30-23:44:26 171 [scsi_tmf_1] - root 0 0 00:00:00 30-23:44:26 173 [scsi_eh_2] - root 0 0 00:00:00 30-23:44:26 174 [scsi_tmf_2] - root 0 0 00:00:11 30-23:44:26 175 [kworker/3:1H-kblockd] - root 0 0 00:00:11 30-23:44:26 178 [kworker/4:1H-kblockd] - root 0 0 00:00:11 30-23:44:26 184 [kworker/7:1H-kblockd] - root 0 0 00:00:11 30-23:44:26 196 [kworker/6:1H-kblockd] - root 0 0 00:07:23 30-23:44:26 206 [jbd2/sda1-8] - root 0 0 00:00:00 30-23:44:26 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 348504 269744 02:00:06 30-23:44:25 286 /lib/systemd/systemd-journald - root 0 0 00:00:11 30-23:44:25 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4252 00:00:07 30-23:44:25 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 30-23:44:25 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:23:15 30-23:44:25 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 30-23:44:24 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:12:12 30-23:44:23 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:31 30-23:44:23 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 89200 02:05:41 30-23:44:23 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 30-23:44:23 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8992 00:17:03 30-23:44:23 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:05:51 30-23:44:23 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 03:43:42 30-23:44:23 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21932 01:33:25 30-23:44:23 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:31 30-23:44:23 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 30-23:44:23 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 30-23:44:23 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 30-23:44:23 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:09:38 30-23:44:23 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8016 5744 00:00:01 30-23:44:23 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 30-23:44:23 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51788 00:01:43 30-23:44:23 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:12 30-23:44:23 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:10 30-23:44:23 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:19:43 30-23:43:47 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:03:34 30-23:43:47 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 2072 00:00:00 30-23:34:21 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7840 00:11:26 30-23:34:21 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7232 00:00:07 30-23:34:21 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6384 00:00:01 30-23:34:21 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5776 00:00:00 30-23:34:21 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4356 00:00:00 30-23:34:21 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 30-23:34:21 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 30-23:34:21 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 30-23:34:21 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 30-23:34:21 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:04:08 30-23:34:20 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 30-23:34:20 229054 [check_nginx] <defunct> 0::/system.slice/cron.service root 5908 2324 00:00:00 21:44:47 519094 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874548 44628 00:00:05 21:44:47 519133 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2416 00:00:00 21:44:47 519416 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 4976 00:00:00 21:44:47 519451 sudo ./webhookstart 0::/system.slice/cron.service root 2480 512 00:00:00 21:44:47 519594 sh ./webhookstart 0::/system.slice/cron.service root 40104 35288 00:00:12 21:44:47 519623 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2428 00:00:03 21:44:44 522244 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13292 00:00:00 21:44:44 522250 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2432 00:00:03 21:44:44 522260 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13264 00:00:00 21:44:44 522266 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 57240 00:01:21 21:44:43 522513 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55416 00:01:22 21:44:43 522518 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2548 00:00:00 21:44:41 525464 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 7200 00:00:07 21:44:41 525468 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2352 00:00:00 21:44:41 525504 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12944 00:01:01 21:44:41 525509 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2304 00:00:00 21:44:41 525538 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 486896 45836 00:01:04 21:44:41 525542 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2336 00:00:00 21:44:41 525599 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10832 00:01:07 21:44:41 525603 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2392 00:00:00 21:44:41 525633 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12488 00:01:07 21:44:41 525639 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2332 00:00:00 21:44:41 525698 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 15060 00:01:07 21:44:41 525703 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2440 00:00:00 21:44:41 525743 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12452 00:01:02 21:44:41 525756 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/packagekit.service root 288432 16368 00:00:20 30-20:38:03 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:02 30-20:38:03 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266612 50400 00:00:00 5-05:12:18 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 07:27:53 29-14:12:48 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 07:30:23 29-14:12:48 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 02:22:25 29-14:12:47 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/apache2.service www-data 266752 50528 00:00:00 6-14:31:46 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:02 01:30:23 1413558 [kworker/u16:3-ext4-rsv-conversion] 0::/system.slice/ntp.service ntp 74496 3756 00:00:05 20:43:46 2052585 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2365096 163532 02:52:26 20:43:45 2053837 /usr/sbin/mariadbd - root 0 0 00:00:00 44:11 2579766 [kworker/2:2-events] 0::/system.slice/cron.service root 5708 3064 00:01:39 26-14:53:48 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:22:20 26-14:53:48 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 06:41:00 26-14:53:48 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 02:08:05 26-14:53:48 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:58:41 26-14:53:48 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 02:12:22 26-14:53:48 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:35:27 26-14:53:48 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 02:00:54 26-14:53:48 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:57:23 26-14:53:48 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 50380 00:00:02 18-01:44:45 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50332 00:00:02 18-01:44:45 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50324 00:00:02 18-01:44:45 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50328 00:00:02 18-01:44:45 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50548 00:00:02 18-01:44:45 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:00 31:29 2891349 [kworker/1:1-cgroup_destroy] - root 0 0 00:00:00 29:18 2945045 [kworker/3:0-events] - root 0 0 00:00:00 21:07 3149471 [kworker/5:1-events] - root 0 0 00:00:00 20:51 3154147 [kworker/6:0-cgroup_destroy] - root 0 0 00:00:00 19:47 3176047 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 18:46 3202844 [kworker/7:2-events] - root 0 0 00:00:00 16:30 3267872 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 12:35 3373166 [kworker/4:0-events] - root 0 0 00:00:00 10:40 3410449 [kworker/0:1-events] - root 0 0 00:00:00 10:19 3416928 [kworker/3:2-events] - root 0 0 00:00:00 09:43 3429482 [kworker/5:2-events] - root 0 0 00:00:00 09:22 3437332 [kworker/6:1-events] 0::/system.slice/cron.service root 5836 3084 01:05:07 23-09:38:47 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:00 08:04 3480209 [kworker/1:0-events] - root 0 0 00:00:00 07:18 3501322 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 06:55 3509463 [kworker/4:1-events] - root 0 0 00:00:00 06:50 3511360 [kworker/7:1-cgroup_destroy] 0::/system.slice/apache2.service www-data 266676 50372 00:00:02 18-01:11:59 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50908 00:00:02 18-01:11:58 3539795 /usr/sbin/apache2 -k start - root 0 0 00:00:00 05:32 3542470 [kworker/0:0-events] - root 0 0 00:00:00 05:21 3546409 [kworker/2:1-events] - root 0 0 00:00:00 04:08 3579741 [kworker/5:0-events] 0::/system.slice/apache2.service www-data 266748 50164 00:00:02 17-14:03:01 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 04:03 3582519 [kworker/6:2-events] - root 0 0 00:00:00 03:42 3597869 [kworker/3:1-events] - root 0 0 00:00:00 02:18 3625313 [kworker/1:2-cgroup_destroy] - root 0 0 00:00:00 01:37 3639155 [kworker/7:0-cgroup_destroy] - root 0 0 00:00:00 01:00 3650341 [kworker/4:2-events] 0::/system.slice/cron.service root 2392 564 00:00:00 00:47 3655306 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:45 3656072 /bin/sleep 60 0::/system.slice/cron.service root 5908 2368 00:00:00 00:41 3657219 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10528 00:00:00 00:41 3657222 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2376 00:00:00 00:41 3657238 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8532 00:00:00 00:41 3657242 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:41 3657263 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8848 00:00:00 00:41 3657270 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:41 3657293 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8888 00:00:00 00:41 3657297 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2340 00:00:00 00:41 3657335 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10460 00:00:00 00:41 3657342 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:41 3657374 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8888 00:00:00 00:41 3657376 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:41 3657410 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10920 00:00:00 00:41 3657412 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 496 00:00:00 00:31 3660239 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:29 3660871 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:26 3661696 sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:22 3663165 sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:04 3668602 /bin/sleep 5 0::/system.slice/cron.service root 4072 3044 00:00:00 00:02 3669176 /bin/bash ./statusmdm 0::/system.slice/cron.service root 2392 504 00:00:00 00:02 3669242 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3669534 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3669564 sleep 2 0::/system.slice/xinetd.service root 6236 3636 00:00:00 00:01 3669595 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3669660 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 3669674 sleep 8 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3669679 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3669741 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3669746 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3669801 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 3669812 sleep 1 0::/system.slice/cron.service root 5840 1496 00:00:00 00:00 3669825 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11072 00:00:00 00:00 3669826 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8228 --header Origin: https://127.0.0.1:8228 --header Sec-WebSocket-Key: MTc3MTY6MjYyMzg= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8228/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:00 3669827 wc -l 0::/system.slice/cron.service root 4072 3076 00:00:00 00:00 3669837 /bin/bash ./statusscreenshot 0::/system.slice/cron.service root 2392 560 00:00:00 00:00 3669854 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3669868 sleep 0.1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3669880 sleep 0.1 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 3669898 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3669899 sleep 0.1 0::/system.slice/cron.service root 5556 2636 00:04:01 10-17:09:03 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3148 00:00:17 10-17:08:48 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 58179sec preferred_lft 58179sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-24 00:44 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730ff1c336b3Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB JOB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating start start OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11968 05:23:15 28-23:45:22 1 /sbin/init - root 0 0 00:00:02 28-23:45:22 2 [kthreadd] - root 0 0 00:00:00 28-23:45:22 3 [rcu_gp] - root 0 0 00:00:00 28-23:45:22 4 [rcu_par_gp] - root 0 0 00:00:00 28-23:45:22 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 28-23:45:22 8 [mm_percpu_wq] - root 0 0 00:00:00 28-23:45:22 9 [rcu_tasks_rude_] - root 0 0 00:00:00 28-23:45:22 10 [rcu_tasks_trace] - root 0 0 00:10:07 28-23:45:22 11 [ksoftirqd/0] - root 0 0 00:43:21 28-23:45:22 12 [rcu_sched] - root 0 0 00:00:16 28-23:45:22 13 [migration/0] - root 0 0 00:00:00 28-23:45:22 15 [cpuhp/0] - root 0 0 00:00:00 28-23:45:22 16 [cpuhp/1] - root 0 0 00:00:16 28-23:45:22 17 [migration/1] - root 0 0 00:10:04 28-23:45:22 18 [ksoftirqd/1] - root 0 0 00:00:00 28-23:45:22 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 28-23:45:22 21 [cpuhp/2] - root 0 0 00:00:16 28-23:45:22 22 [migration/2] - root 0 0 00:10:04 28-23:45:22 23 [ksoftirqd/2] - root 0 0 00:00:00 28-23:45:22 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 28-23:45:22 26 [cpuhp/3] - root 0 0 00:00:16 28-23:45:22 27 [migration/3] - root 0 0 00:10:04 28-23:45:22 28 [ksoftirqd/3] - root 0 0 00:00:00 28-23:45:22 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 28-23:45:22 31 [cpuhp/4] - root 0 0 00:00:16 28-23:45:22 32 [migration/4] - root 0 0 00:10:03 28-23:45:22 33 [ksoftirqd/4] - root 0 0 00:00:00 28-23:45:22 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 28-23:45:22 36 [cpuhp/5] - root 0 0 00:00:16 28-23:45:22 37 [migration/5] - root 0 0 00:10:09 28-23:45:22 38 [ksoftirqd/5] - root 0 0 00:00:00 28-23:45:22 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 28-23:45:22 41 [cpuhp/6] - root 0 0 00:00:16 28-23:45:22 42 [migration/6] - root 0 0 00:10:04 28-23:45:22 43 [ksoftirqd/6] - root 0 0 00:00:00 28-23:45:22 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 28-23:45:22 46 [cpuhp/7] - root 0 0 00:00:16 28-23:45:22 47 [migration/7] - root 0 0 00:10:05 28-23:45:22 48 [ksoftirqd/7] - root 0 0 00:00:00 28-23:45:22 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 28-23:45:22 56 [kdevtmpfs] - root 0 0 00:00:00 28-23:45:22 57 [netns] - root 0 0 00:06:13 28-23:45:22 58 [kauditd] - root 0 0 00:00:02 28-23:45:22 59 [khungtaskd] - root 0 0 00:00:00 28-23:45:22 60 [oom_reaper] - root 0 0 00:00:00 28-23:45:22 61 [writeback] - root 0 0 00:00:52 28-23:45:22 62 [kcompactd0] - root 0 0 00:00:00 28-23:45:22 63 [ksmd] - root 0 0 00:01:47 28-23:45:22 64 [khugepaged] - root 0 0 00:00:00 28-23:45:22 84 [kintegrityd] - root 0 0 00:00:00 28-23:45:22 85 [kblockd] - root 0 0 00:00:00 28-23:45:22 86 [blkcg_punt_bio] - root 0 0 00:00:10 28-23:45:22 88 [kworker/0:1H-kblockd] - root 0 0 00:00:15 28-23:45:22 89 [kswapd0] - root 0 0 00:00:00 28-23:45:22 90 [kthrotld] - root 0 0 00:00:00 28-23:45:22 91 [acpi_thermal_pm] - root 0 0 00:00:00 28-23:45:22 92 [nvme-wq] - root 0 0 00:00:00 28-23:45:22 93 [nvme-reset-wq] - root 0 0 00:00:00 28-23:45:22 94 [nvme-delete-wq] - root 0 0 00:00:00 28-23:45:21 95 [ipv6_addrconf] - root 0 0 00:00:00 28-23:45:21 106 [kstrp] - root 0 0 00:00:00 28-23:45:21 114 [kworker/u17:0] - root 0 0 00:00:11 28-23:45:21 136 [kworker/1:1H-kblockd] - root 0 0 00:00:11 28-23:45:21 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 28-23:45:21 167 [ata_sff] - root 0 0 00:00:00 28-23:45:21 168 [scsi_eh_0] - root 0 0 00:00:00 28-23:45:21 169 [scsi_tmf_0] - root 0 0 00:00:00 28-23:45:21 170 [scsi_eh_1] - root 0 0 00:00:00 28-23:45:21 171 [scsi_tmf_1] - root 0 0 00:00:00 28-23:45:21 173 [scsi_eh_2] - root 0 0 00:00:00 28-23:45:21 174 [scsi_tmf_2] - root 0 0 00:00:10 28-23:45:21 175 [kworker/3:1H-kblockd] - root 0 0 00:00:10 28-23:45:21 178 [kworker/4:1H-kblockd] - root 0 0 00:00:10 28-23:45:21 184 [kworker/7:1H-kblockd] - root 0 0 00:00:10 28-23:45:21 196 [kworker/6:1H-kblockd] - root 0 0 00:06:54 28-23:45:21 206 [jbd2/sda1-8] - root 0 0 00:00:00 28-23:45:21 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 332284 253132 01:52:10 28-23:45:20 286 /lib/systemd/systemd-journald - root 0 0 00:00:10 28-23:45:20 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4252 00:00:06 28-23:45:20 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 28-23:45:20 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:21:43 28-23:45:20 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 28-23:45:19 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:11:24 28-23:45:18 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:25 28-23:45:18 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1005416 89128 01:57:22 28-23:45:18 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 28-23:45:18 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8724 00:15:56 28-23:45:18 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:05:28 28-23:45:18 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 03:28:32 28-23:45:18 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21932 01:27:10 28-23:45:18 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:29 28-23:45:18 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 28-23:45:18 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 28-23:45:18 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 28-23:45:18 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:08:59 28-23:45:18 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8016 5744 00:00:01 28-23:45:18 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 28-23:45:18 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51792 00:01:36 28-23:45:18 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:11 28-23:45:18 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:05 28-23:45:18 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:18:24 28-23:44:42 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:03:19 28-23:44:42 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 2072 00:00:00 28-23:35:16 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7840 00:11:02 28-23:35:16 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7232 00:00:07 28-23:35:16 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6384 00:00:01 28-23:35:16 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5776 00:00:00 28-23:35:16 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4356 00:00:00 28-23:35:16 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 28-23:35:16 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 28-23:35:16 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 28-23:35:16 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 28-23:35:16 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:03:54 28-23:35:15 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 28-23:35:15 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16368 00:00:19 28-20:38:58 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:02 28-20:38:58 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266600 50324 00:00:00 3-05:13:13 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 06:57:14 27-14:13:43 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 06:59:28 27-14:13:43 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 02:12:36 27-14:13:42 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/apache2.service www-data 266752 50512 00:00:00 4-14:32:41 956576 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3948 00:00:04 20:44:42 1494139 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299960 167984 02:22:41 20:44:41 1494991 /usr/sbin/mariadbd - root 0 0 00:00:01 01:05:56 1515742 [kworker/u16:3-flush-8:0] - root 0 0 00:00:01 57:29 1731522 [kworker/u16:0+events_unbound] - root 0 0 00:00:00 48:51 1933549 [kworker/1:2-events] - root 0 0 00:00:00 34:32 2299234 [kworker/5:2-events] - root 0 0 00:00:00 30:21 2395881 [kworker/4:0-events] - root 0 0 00:00:00 28:04 2463953 [kworker/u16:2-flush-8:0] - root 0 0 00:00:00 26:30 2500782 [kworker/3:2-cgroup_destroy] 0::/system.slice/cron.service root 5708 3064 00:01:32 24-14:54:43 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:16:02 24-14:54:43 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 06:10:22 24-14:54:43 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:58:16 24-14:54:43 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:49:37 24-14:54:43 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 02:02:15 24-14:54:43 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:28:09 24-14:54:43 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:51:40 24-14:54:43 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:48:24 24-14:54:43 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr - root 0 0 00:00:00 19:16 2668814 [kworker/2:1-events] 0::/system.slice/apache2.service www-data 266748 50376 00:00:02 16-01:45:40 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50336 00:00:02 16-01:45:40 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50328 00:00:02 16-01:45:40 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50320 00:00:02 16-01:45:40 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50552 00:00:02 16-01:45:40 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:00 15:47 2762016 [kworker/7:2-events] - root 0 0 00:00:00 13:31 2828146 [kworker/6:2-events] - root 0 0 00:00:00 12:23 2852151 [kworker/4:1-events] - root 0 0 00:00:00 11:04 2877161 [kworker/0:0-events] - root 0 0 00:00:00 09:42 2920551 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 08:53 2942020 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 07:42 2969356 [kworker/3:0-events] - root 0 0 00:00:00 07:24 2976487 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 05:50 3011501 [kworker/0:2-events] - root 0 0 00:00:00 05:35 3018634 [kworker/5:1-events] - root 0 0 00:00:00 05:19 3024561 [kworker/6:0-mm_percpu_wq] - root 0 0 00:00:00 04:32 3039814 [kworker/u16:1+events_unbound] - root 0 0 00:00:00 03:55 3053900 [kworker/7:0-events] - root 0 0 00:00:00 03:45 3057423 [kworker/2:0-events] - root 0 0 00:00:00 02:37 3093587 [kworker/3:1-events] - root 0 0 00:00:00 02:05 3103161 [kworker/1:1-events] 0::/system.slice/cron.service root 5908 2380 00:00:00 01:32 3114564 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8940 00:00:00 01:32 3114568 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2400 00:00:00 01:32 3114581 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 9016 00:00:00 01:32 3114585 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2420 00:00:00 01:32 3114598 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10976 00:00:00 01:32 3114601 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2356 00:00:00 01:32 3114623 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8916 00:00:00 01:32 3114627 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2456 00:00:00 01:32 3114641 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10920 00:00:00 01:32 3114645 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2332 00:00:00 01:31 3114656 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8988 00:00:00 01:31 3114659 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:31 3114677 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 9008 00:00:00 01:31 3114679 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:08 3121867 [kworker/4:2] 0::/system.slice/cron.service root 2392 560 00:00:00 00:53 3126463 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:51 3127074 /bin/sleep 60 0::/system.slice/cron.service root 10888 3676 00:00:00 00:43 3129335 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 572 00:00:00 00:43 3129467 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2996 00:00:00 00:43 3129542 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1956 00:00:00 00:43 3129875 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9844 00:00:00 00:43 3129900 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 636 00:00:00 00:43 3129901 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3216 00:00:00 00:43 3129938 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5708 3224 00:00:00 00:43 3130001 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3204 00:00:00 00:43 3130094 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 3136 00:00:00 00:43 3130102 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 6128 3540 00:00:00 00:43 3130136 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 4284 500 00:00:00 00:42 3130842 sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:42 3130845 sleep 55 0::/system.slice/cron.service root 4284 564 00:00:00 00:42 3130847 sleep 56 0::/system.slice/cron.service root 4284 564 00:00:00 00:42 3130871 sleep 59 - root 0 0 00:00:00 00:37 3136901 [kworker/0:1] 0::/system.slice/cron.service root 4284 500 00:00:00 00:37 3137230 sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:24 3142950 sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:23 3143157 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:21 3143884 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:06 3149352 sleep 8 0::/system.slice/cron.service root 4284 496 00:00:00 00:03 3150449 /bin/sleep 5 0::/system.slice/xinetd.service root 6212 3652 00:00:00 00:01 3151156 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3151273 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3151342 sleep 2 0::/system.slice/xinetd.service root 5840 3440 00:00:00 00:01 3151365 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3151504 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3151563 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3151582 sleep 2 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 3151721 sleep 2 0::/system.slice/cron.service root 5244 3016 00:00:00 00:00 3151813 jq -c .[] 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3151814 sleep 0.1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3151815 sleep 0.1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3151827 sleep 1 0::/system.slice/xinetd.service root 6676 1132 00:00:00 00:00 3151836 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5836 3084 00:59:27 21-09:39:42 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 50368 00:00:02 16-01:12:54 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50904 00:00:02 16-01:12:53 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50168 00:00:02 15-14:03:56 3582124 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2636 00:03:15 8-17:09:58 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3148 00:00:13 8-17:09:43 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5908 2380 00:00:00 21:45:43 4151843 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874680 44596 00:00:04 21:45:43 4151879 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2356 00:00:00 21:45:42 4152069 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5056 00:00:00 21:45:42 4152102 sudo ./webhookstart 0::/system.slice/cron.service root 2480 504 00:00:00 21:45:42 4152252 sh ./webhookstart 0::/system.slice/cron.service root 40104 35244 00:00:10 21:45:42 4152267 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2320 00:00:03 21:45:39 4155494 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13300 00:00:00 21:45:39 4155499 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2372 00:00:03 21:45:39 4155507 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13348 00:00:00 21:45:39 4155512 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55324 00:01:12 21:45:38 4155946 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 57184 00:01:10 21:45:38 4156041 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:00 21:45:38 4156807 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9076 00:00:06 21:45:38 4156812 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2340 00:00:00 21:45:38 4156850 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 13204 00:01:02 21:45:38 4156855 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2388 00:00:00 21:45:38 4156885 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 492600 50492 00:01:04 21:45:38 4156888 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2340 00:00:00 21:45:38 4156916 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11252 00:01:08 21:45:38 4156921 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2440 00:00:00 21:45:38 4156964 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12672 00:01:07 21:45:38 4156967 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2528 00:00:00 21:45:37 4156999 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13264 00:01:07 21:45:37 4157003 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2356 00:00:00 21:45:37 4157024 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12736 00:01:03 21:45:37 4157026 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 73028sec preferred_lft 73028sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-22 00:45 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f4a3b0f76Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11976 05:02:58 27-03:59:28 1 /sbin/init - root 0 0 00:00:02 27-03:59:28 2 [kthreadd] - root 0 0 00:00:00 27-03:59:28 3 [rcu_gp] - root 0 0 00:00:00 27-03:59:28 4 [rcu_par_gp] - root 0 0 00:00:00 27-03:59:28 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 27-03:59:28 8 [mm_percpu_wq] - root 0 0 00:00:00 27-03:59:28 9 [rcu_tasks_rude_] - root 0 0 00:00:00 27-03:59:28 10 [rcu_tasks_trace] - root 0 0 00:09:28 27-03:59:28 11 [ksoftirqd/0] - root 0 0 00:40:38 27-03:59:28 12 [rcu_sched] - root 0 0 00:00:15 27-03:59:28 13 [migration/0] - root 0 0 00:00:00 27-03:59:28 15 [cpuhp/0] - root 0 0 00:00:00 27-03:59:28 16 [cpuhp/1] - root 0 0 00:00:15 27-03:59:28 17 [migration/1] - root 0 0 00:09:25 27-03:59:28 18 [ksoftirqd/1] - root 0 0 00:00:00 27-03:59:28 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 27-03:59:28 21 [cpuhp/2] - root 0 0 00:00:15 27-03:59:28 22 [migration/2] - root 0 0 00:09:24 27-03:59:28 23 [ksoftirqd/2] - root 0 0 00:00:00 27-03:59:28 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 27-03:59:28 26 [cpuhp/3] - root 0 0 00:00:15 27-03:59:28 27 [migration/3] - root 0 0 00:09:24 27-03:59:28 28 [ksoftirqd/3] - root 0 0 00:00:00 27-03:59:28 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 27-03:59:28 31 [cpuhp/4] - root 0 0 00:00:15 27-03:59:28 32 [migration/4] - root 0 0 00:09:23 27-03:59:28 33 [ksoftirqd/4] - root 0 0 00:00:00 27-03:59:28 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 27-03:59:28 36 [cpuhp/5] - root 0 0 00:00:15 27-03:59:28 37 [migration/5] - root 0 0 00:09:30 27-03:59:28 38 [ksoftirqd/5] - root 0 0 00:00:00 27-03:59:28 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 27-03:59:28 41 [cpuhp/6] - root 0 0 00:00:15 27-03:59:28 42 [migration/6] - root 0 0 00:09:25 27-03:59:28 43 [ksoftirqd/6] - root 0 0 00:00:00 27-03:59:28 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 27-03:59:28 46 [cpuhp/7] - root 0 0 00:00:15 27-03:59:28 47 [migration/7] - root 0 0 00:09:26 27-03:59:28 48 [ksoftirqd/7] - root 0 0 00:00:00 27-03:59:28 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 27-03:59:28 56 [kdevtmpfs] - root 0 0 00:00:00 27-03:59:28 57 [netns] - root 0 0 00:05:49 27-03:59:28 58 [kauditd] - root 0 0 00:00:02 27-03:59:28 59 [khungtaskd] - root 0 0 00:00:00 27-03:59:28 60 [oom_reaper] - root 0 0 00:00:00 27-03:59:28 61 [writeback] - root 0 0 00:00:49 27-03:59:28 62 [kcompactd0] - root 0 0 00:00:00 27-03:59:28 63 [ksmd] - root 0 0 00:01:40 27-03:59:28 64 [khugepaged] - root 0 0 00:00:00 27-03:59:28 84 [kintegrityd] - root 0 0 00:00:00 27-03:59:28 85 [kblockd] - root 0 0 00:00:00 27-03:59:28 86 [blkcg_punt_bio] - root 0 0 00:00:10 27-03:59:28 88 [kworker/0:1H-kblockd] - root 0 0 00:00:14 27-03:59:28 89 [kswapd0] - root 0 0 00:00:00 27-03:59:28 90 [kthrotld] - root 0 0 00:00:00 27-03:59:28 91 [acpi_thermal_pm] - root 0 0 00:00:00 27-03:59:28 92 [nvme-wq] - root 0 0 00:00:00 27-03:59:28 93 [nvme-reset-wq] - root 0 0 00:00:00 27-03:59:28 94 [nvme-delete-wq] - root 0 0 00:00:00 27-03:59:27 95 [ipv6_addrconf] - root 0 0 00:00:00 27-03:59:27 106 [kstrp] - root 0 0 00:00:00 27-03:59:27 114 [kworker/u17:0] - root 0 0 00:00:10 27-03:59:27 136 [kworker/1:1H-kblockd] - root 0 0 00:00:10 27-03:59:27 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 27-03:59:27 167 [ata_sff] - root 0 0 00:00:00 27-03:59:27 168 [scsi_eh_0] - root 0 0 00:00:00 27-03:59:27 169 [scsi_tmf_0] - root 0 0 00:00:00 27-03:59:27 170 [scsi_eh_1] - root 0 0 00:00:00 27-03:59:27 171 [scsi_tmf_1] - root 0 0 00:00:00 27-03:59:27 173 [scsi_eh_2] - root 0 0 00:00:00 27-03:59:27 174 [scsi_tmf_2] - root 0 0 00:00:10 27-03:59:27 175 [kworker/3:1H-kblockd] - root 0 0 00:00:10 27-03:59:27 178 [kworker/4:1H-kblockd] - root 0 0 00:00:10 27-03:59:27 184 [kworker/7:1H-kblockd] - root 0 0 00:00:10 27-03:59:27 196 [kworker/6:1H-kblockd] - root 0 0 00:06:27 27-03:59:27 206 [jbd2/sda1-8] - root 0 0 00:00:00 27-03:59:27 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 356524 280164 01:45:00 27-03:59:26 286 /lib/systemd/systemd-journald - root 0 0 00:00:10 27-03:59:26 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4252 00:00:06 27-03:59:26 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 27-03:59:26 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:20:20 27-03:59:26 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 27-03:59:25 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:10:40 27-03:59:24 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:19 27-03:59:24 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 88856 01:50:04 27-03:59:24 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 27-03:59:24 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8564 00:14:55 27-03:59:24 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:05:07 27-03:59:24 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 03:14:59 27-03:59:24 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21932 01:21:36 27-03:59:24 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:27 27-03:59:24 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 27-03:59:24 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 27-03:59:24 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 27-03:59:24 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:08:24 27-03:59:24 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8016 5744 00:00:01 27-03:59:24 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 27-03:59:24 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51800 00:01:30 27-03:59:24 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:11 27-03:59:24 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:01 27-03:59:24 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:17:15 27-03:58:48 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:03:07 27-03:58:48 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr - root 0 0 00:00:00 17:49 46798 [kworker/3:1-events] - root 0 0 00:00:00 17:18 57838 [kworker/u16:4-flush-8:0] - root 0 0 00:00:00 15:28 93713 [kworker/2:1-events] - root 0 0 00:00:00 12:46 176187 [kworker/1:1-cgroup_destroy] - root 0 0 00:00:00 11:01 216016 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 10:51 219805 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 10:49 221318 [kworker/5:1-events] 0::/system.slice/nginx.service root 67480 2072 00:00:00 27-03:49:22 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7840 00:10:25 27-03:49:22 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7232 00:00:07 27-03:49:22 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6384 00:00:01 27-03:49:22 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5776 00:00:00 27-03:49:22 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4356 00:00:00 27-03:49:22 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 27-03:49:22 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 27-03:49:22 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 27-03:49:22 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 27-03:49:22 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:03:40 27-03:49:21 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 27-03:49:21 229054 [check_nginx] <defunct> - root 0 0 00:00:00 08:57 262728 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 07:12 312665 [kworker/3:0-events] - root 0 0 00:00:00 06:56 317371 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 06:46 321750 [kworker/4:1-events] - root 0 0 00:00:00 05:43 342294 [kworker/0:2-events] 0::/system.slice/cron.service root 6128 3608 00:00:04 04:49 359325 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 04:45 361718 [kworker/5:2-events] - root 0 0 00:00:00 04:14 373704 [kworker/u16:2-flush-8:0] - root 0 0 00:00:00 03:52 386831 [kworker/6:0-cgroup_destroy] - root 0 0 00:00:00 02:55 420130 [kworker/1:0-events] - root 0 0 00:00:00 02:23 432873 [kworker/2:0-events] 0::/system.slice/cron.service root 5908 2332 00:00:00 01:49 446238 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8972 00:00:00 01:49 446269 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2356 00:00:00 01:48 446389 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 9008 00:00:00 01:48 446393 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2396 00:00:00 01:48 446490 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 7028 00:00:00 01:48 446502 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:48 446605 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8972 00:00:00 01:48 446612 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:48 446668 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8960 00:00:00 01:48 446693 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:36 451440 [kworker/3:2-cgroup_destroy] 0::/system.slice/cron.service root 5908 2360 00:00:00 01:33 452820 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8996 00:00:00 01:33 452823 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:33 452840 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 9000 00:00:00 01:33 452844 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php - root 0 0 00:00:00 01:16 459265 [kworker/7:2-events] 0::/system.slice/cron.service root 4284 496 00:00:00 00:58 465744 sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:44 472039 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:42 472770 /bin/sleep 60 - root 0 0 00:00:00 00:39 473956 [kworker/0:1-events] 0::/system.slice/cron.service root 4284 556 00:00:00 00:35 475691 sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:15 483034 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:13 483751 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:06 486144 sleep 8 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 487945 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 488018 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 488102 sleep 1 0::/system.slice/xinetd.service root 6156 3616 00:00:00 00:01 488106 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 5840 1496 00:00:00 00:01 488112 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11136 00:00:00 00:01 488114 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9002 --header Origin: https://127.0.0.1:9002 --header Sec-WebSocket-Key: MjU0MTA6MTYyNDI= --header Sec-WebSocket-Version: 13 https://127.0.0.1:9002/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:01 488115 wc -l 0::/system.slice/cron.service root 99632 32640 00:00:00 00:01 488138 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 488216 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 488264 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 488293 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 488361 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 488370 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 488413 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 488442 sleep 0.1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 488443 sleep 0.1 0::/system.slice/cron.service root 5244 2976 00:00:00 00:00 488458 jq -c .[] 0::/system.slice/xinetd.service root 6676 1136 00:00:00 00:00 488472 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/packagekit.service root 288432 16368 00:00:18 27-00:53:04 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:02 27-00:53:04 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266600 49980 00:00:00 1-09:27:19 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 06:29:57 25-18:27:49 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 06:31:56 25-18:27:49 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 02:03:50 25-18:27:48 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/apache2.service www-data 266752 50448 00:00:00 2-18:46:47 956576 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2540 00:00:00 01:59:49 1665849 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4988 00:00:00 01:59:49 1665884 sudo ./webhookstart 0::/system.slice/cron.service root 2480 572 00:00:00 01:59:49 1665980 sh ./webhookstart 0::/system.slice/cron.service root 40104 35264 00:00:01 01:59:49 1665994 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2368 00:00:00 01:59:48 1666101 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 871476 35660 00:00:00 01:59:48 1666128 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2460 00:00:00 01:59:47 1667090 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2448 00:00:00 01:59:47 1667106 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13252 00:00:00 01:59:47 1667116 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13276 00:00:00 01:59:47 1667123 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 309224 56812 00:00:07 01:59:47 1667397 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 309232 54980 00:00:07 01:59:47 1667413 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2332 00:00:00 01:59:43 1672068 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8908 00:00:00 01:59:43 1672075 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2416 00:00:00 01:59:43 1672108 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 11244 00:00:05 01:59:43 1672111 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2332 00:00:00 01:59:43 1672140 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 457240 15108 00:00:05 01:59:43 1672144 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2460 00:00:00 01:59:43 1672176 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 8716 00:00:05 01:59:43 1672179 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2356 00:00:00 01:59:42 1672213 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11032 00:00:06 01:59:42 1672218 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2340 00:00:00 01:59:42 1672251 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12464 00:00:05 01:59:42 1672257 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2328 00:00:00 01:59:42 1672276 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 9096 00:00:05 01:59:42 1672278 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5708 3064 00:01:25 22-19:08:49 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:10:24 22-19:08:49 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 05:43:08 22-19:08:49 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:49:31 22-19:08:49 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:41:31 22-19:08:49 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 01:53:12 22-19:08:49 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:21:38 22-19:08:49 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:43:24 22-19:08:49 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:40:24 22-19:08:49 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 50360 00:00:02 14-05:59:46 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50324 00:00:02 14-05:59:46 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50316 00:00:02 14-05:59:46 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50320 00:00:02 14-05:59:46 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50544 00:00:02 14-05:59:46 2711949 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3948 00:00:00 58:48 3205787 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299360 144860 00:07:17 58:46 3206576 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5836 3084 00:54:23 19-13:53:48 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 50372 00:00:02 14-05:27:00 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50900 00:00:02 14-05:26:59 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50152 00:00:02 13-18:18:02 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 38:08 3733726 [kworker/0:0-events] - root 0 0 00:00:01 33:47 3828566 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 31:57 3881546 [kworker/1:2-events] - root 0 0 00:00:00 28:22 3966187 [kworker/4:0-events] 0::/system.slice/cron.service root 5556 2640 00:02:34 6-21:24:04 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3148 00:00:10 6-21:23:49 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 24:54 4049981 [kworker/7:0-events] - root 0 0 00:00:00 22:27 4123629 [kworker/6:1-events] - root 0 0 00:00:00 21:29 4146545 [kworker/5:0-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 82093sec preferred_lft 82093sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-20 04:59 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730ff69e38b3Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11976 04:59:46 26-21:15:31 1 /sbin/init - root 0 0 00:00:02 26-21:15:31 2 [kthreadd] - root 0 0 00:00:00 26-21:15:31 3 [rcu_gp] - root 0 0 00:00:00 26-21:15:31 4 [rcu_par_gp] - root 0 0 00:00:00 26-21:15:31 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 26-21:15:31 8 [mm_percpu_wq] - root 0 0 00:00:00 26-21:15:31 9 [rcu_tasks_rude_] - root 0 0 00:00:00 26-21:15:31 10 [rcu_tasks_trace] - root 0 0 00:09:22 26-21:15:31 11 [ksoftirqd/0] - root 0 0 00:40:14 26-21:15:31 12 [rcu_sched] - root 0 0 00:00:15 26-21:15:31 13 [migration/0] - root 0 0 00:00:00 26-21:15:31 15 [cpuhp/0] - root 0 0 00:00:00 26-21:15:31 16 [cpuhp/1] - root 0 0 00:00:15 26-21:15:31 17 [migration/1] - root 0 0 00:09:19 26-21:15:31 18 [ksoftirqd/1] - root 0 0 00:00:00 26-21:15:31 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 26-21:15:31 21 [cpuhp/2] - root 0 0 00:00:15 26-21:15:31 22 [migration/2] - root 0 0 00:09:18 26-21:15:31 23 [ksoftirqd/2] - root 0 0 00:00:00 26-21:15:31 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 26-21:15:31 26 [cpuhp/3] - root 0 0 00:00:15 26-21:15:31 27 [migration/3] - root 0 0 00:09:19 26-21:15:31 28 [ksoftirqd/3] - root 0 0 00:00:00 26-21:15:31 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 26-21:15:31 31 [cpuhp/4] - root 0 0 00:00:15 26-21:15:31 32 [migration/4] - root 0 0 00:09:18 26-21:15:31 33 [ksoftirqd/4] - root 0 0 00:00:00 26-21:15:31 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 26-21:15:31 36 [cpuhp/5] - root 0 0 00:00:15 26-21:15:31 37 [migration/5] - root 0 0 00:09:24 26-21:15:31 38 [ksoftirqd/5] - root 0 0 00:00:00 26-21:15:31 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 26-21:15:31 41 [cpuhp/6] - root 0 0 00:00:15 26-21:15:31 42 [migration/6] - root 0 0 00:09:19 26-21:15:31 43 [ksoftirqd/6] - root 0 0 00:00:00 26-21:15:31 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 26-21:15:31 46 [cpuhp/7] - root 0 0 00:00:15 26-21:15:31 47 [migration/7] - root 0 0 00:09:21 26-21:15:31 48 [ksoftirqd/7] - root 0 0 00:00:00 26-21:15:31 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 26-21:15:31 56 [kdevtmpfs] - root 0 0 00:00:00 26-21:15:31 57 [netns] - root 0 0 00:05:45 26-21:15:31 58 [kauditd] - root 0 0 00:00:02 26-21:15:31 59 [khungtaskd] - root 0 0 00:00:00 26-21:15:31 60 [oom_reaper] - root 0 0 00:00:00 26-21:15:31 61 [writeback] - root 0 0 00:00:48 26-21:15:31 62 [kcompactd0] - root 0 0 00:00:00 26-21:15:31 63 [ksmd] - root 0 0 00:01:39 26-21:15:31 64 [khugepaged] - root 0 0 00:00:00 26-21:15:31 84 [kintegrityd] - root 0 0 00:00:00 26-21:15:31 85 [kblockd] - root 0 0 00:00:00 26-21:15:31 86 [blkcg_punt_bio] - root 0 0 00:00:10 26-21:15:31 88 [kworker/0:1H-kblockd] - root 0 0 00:00:14 26-21:15:31 89 [kswapd0] - root 0 0 00:00:00 26-21:15:31 90 [kthrotld] - root 0 0 00:00:00 26-21:15:31 91 [acpi_thermal_pm] - root 0 0 00:00:00 26-21:15:31 92 [nvme-wq] - root 0 0 00:00:00 26-21:15:31 93 [nvme-reset-wq] - root 0 0 00:00:00 26-21:15:31 94 [nvme-delete-wq] - root 0 0 00:00:00 26-21:15:30 95 [ipv6_addrconf] - root 0 0 00:00:00 26-21:15:30 106 [kstrp] - root 0 0 00:00:00 26-21:15:30 114 [kworker/u17:0] - root 0 0 00:00:10 26-21:15:30 136 [kworker/1:1H-kblockd] - root 0 0 00:00:10 26-21:15:30 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 26-21:15:30 167 [ata_sff] - root 0 0 00:00:00 26-21:15:30 168 [scsi_eh_0] - root 0 0 00:00:00 26-21:15:30 169 [scsi_tmf_0] - root 0 0 00:00:00 26-21:15:30 170 [scsi_eh_1] - root 0 0 00:00:00 26-21:15:30 171 [scsi_tmf_1] - root 0 0 00:00:00 26-21:15:30 173 [scsi_eh_2] - root 0 0 00:00:00 26-21:15:30 174 [scsi_tmf_2] - root 0 0 00:00:10 26-21:15:30 175 [kworker/3:1H-kblockd] - root 0 0 00:00:10 26-21:15:30 178 [kworker/4:1H-kblockd] - root 0 0 00:00:10 26-21:15:30 184 [kworker/7:1H-kblockd] - root 0 0 00:00:10 26-21:15:30 196 [kworker/6:1H-kblockd] - root 0 0 00:06:23 26-21:15:30 206 [jbd2/sda1-8] - root 0 0 00:00:00 26-21:15:30 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 237876 178948 01:43:51 26-21:15:29 286 /lib/systemd/systemd-journald - root 0 0 00:00:10 26-21:15:29 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4252 00:00:06 26-21:15:29 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 26-21:15:29 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:20:07 26-21:15:29 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 26-21:15:28 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:10:34 26-21:15:27 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:19 26-21:15:27 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 88996 01:49:00 26-21:15:27 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 26-21:15:27 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8564 00:14:46 26-21:15:27 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:05:04 26-21:15:27 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 03:12:54 26-21:15:27 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21932 01:20:41 26-21:15:27 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:27 26-21:15:27 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 26-21:15:27 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 26-21:15:27 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 26-21:15:27 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:08:19 26-21:15:27 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8016 5744 00:00:01 26-21:15:27 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 26-21:15:27 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51808 00:01:29 26-21:15:27 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:10 26-21:15:27 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:01:00 26-21:15:27 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:17:04 26-21:14:51 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:03:05 26-21:14:51 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 2072 00:00:00 26-21:05:25 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7840 00:10:23 26-21:05:25 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7232 00:00:07 26-21:05:25 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6384 00:00:01 26-21:05:25 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5776 00:00:00 26-21:05:25 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4356 00:00:00 26-21:05:25 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 26-21:05:25 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 26-21:05:25 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 26-21:05:25 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 26-21:05:25 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:03:38 26-21:05:24 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 26-21:05:24 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16364 00:00:18 26-18:09:07 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:02 26-18:09:07 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266600 49984 00:00:00 1-02:43:22 558518 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 06:25:49 25-11:43:52 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 06:27:46 25-11:43:52 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 02:02:32 25-11:43:51 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/ntp.service ntp 74496 3312 00:00:04 18:14:51 724469 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 187332 02:16:38 18:14:50 725823 /usr/sbin/mariadbd 0::/system.slice/apache2.service www-data 266752 50452 00:00:00 2-12:02:50 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:00 49:49 1675839 [kworker/3:0-cgroup_destroy] - root 0 0 00:00:00 26:30 2264951 [kworker/6:0-cgroup_destroy] - root 0 0 00:00:00 26:09 2272477 [kworker/2:1-events] - root 0 0 00:00:00 23:06 2350587 [kworker/1:2-cgroup_destroy] - root 0 0 00:00:00 20:55 2392536 [kworker/0:1-events] - root 0 0 00:00:00 20:18 2407049 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 16:28 2511908 [kworker/7:2-events] - root 0 0 00:00:00 14:12 2567326 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 12:27 2614808 [kworker/4:2-events] - root 0 0 00:00:00 12:16 2617915 [kworker/5:1-cgroup_destroy] 0::/system.slice/cron.service root 5708 3064 00:01:24 22-12:24:52 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:09:34 22-12:24:52 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 05:39:00 22-12:24:52 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:48:12 22-12:24:52 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:40:18 22-12:24:52 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 01:51:50 22-12:24:52 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:20:39 22-12:24:52 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:42:10 22-12:24:52 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:39:12 22-12:24:52 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr - root 0 0 00:00:00 10:16 2664707 [kworker/2:2-events] - root 0 0 00:00:00 10:11 2667896 [kworker/0:0-events] - root 0 0 00:00:00 09:50 2684025 [kworker/u16:4-flush-8:0] - root 0 0 00:00:00 09:39 2689651 [kworker/1:1-events] - root 0 0 00:00:00 08:57 2705292 [kworker/6:2-mm_percpu_wq] 0::/system.slice/apache2.service www-data 266748 50364 00:00:02 13-23:15:49 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50328 00:00:02 13-23:15:49 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50320 00:00:02 13-23:15:49 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50324 00:00:02 13-23:15:49 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50548 00:00:02 13-23:15:49 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:00 07:39 2736242 [kworker/3:2-events] - root 0 0 00:00:00 06:31 2762402 [kworker/5:2-events] - root 0 0 00:00:00 05:59 2773694 [kworker/4:1-events] - root 0 0 00:00:00 05:33 2784800 [kworker/7:0-mm_percpu_wq] - root 0 0 00:00:00 04:10 2814150 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 03:49 2826296 [kworker/0:2-events] - root 0 0 00:00:00 03:44 2829187 [kworker/6:1-events] - root 0 0 00:00:00 02:35 2858177 [kworker/2:0-events] 0::/system.slice/cron.service root 5908 2348 00:00:00 01:52 2871993 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 11128 00:00:00 01:51 2872022 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php - root 0 0 00:00:00 01:51 2872092 [kworker/3:1-events] 0::/system.slice/cron.service root 5908 2340 00:00:00 01:51 2872216 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11072 00:00:00 01:51 2872243 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2324 00:00:00 01:51 2872290 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11052 00:00:00 01:51 2872294 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2324 00:00:00 01:51 2872338 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10988 00:00:00 01:51 2872350 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2432 00:00:00 01:51 2872393 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8960 00:00:00 01:51 2872410 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:48 2873520 [kworker/1:0-cgroup_destroy] 0::/system.slice/cron.service root 5908 2412 00:00:00 01:36 2877305 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6948 00:00:00 01:36 2877307 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2424 00:00:00 01:36 2877328 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8968 00:00:00 01:36 2877332 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php - root 0 0 00:00:00 01:12 2884747 [kworker/5:0-events] 0::/system.slice/cron.service root 10888 3676 00:00:00 00:52 2890534 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 568 00:00:00 00:52 2890655 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 3012 00:00:00 00:52 2890704 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1920 00:00:00 00:52 2891036 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9912 00:00:00 00:52 2891072 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 640 00:00:00 00:52 2891073 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3172 00:00:00 00:52 2891166 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 3136 00:00:00 00:52 2891201 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 5708 2976 00:00:00 00:52 2891214 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 6128 3420 00:00:00 00:52 2891260 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5708 3048 00:00:00 00:52 2891314 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 4284 556 00:00:00 00:51 2891998 sleep 72 0::/system.slice/cron.service root 4284 496 00:00:00 00:51 2892130 sleep 73 0::/system.slice/cron.service root 4284 560 00:00:00 00:51 2892143 sleep 80 0::/system.slice/cron.service root 4284 496 00:00:00 00:51 2892227 sleep 99 0::/system.slice/cron.service root 2392 500 00:00:00 00:47 2897254 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:45 2899676 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:40 2901693 sleep 60 - root 0 0 00:00:00 00:19 2909088 [kworker/4:0] 0::/system.slice/cron.service root 2392 500 00:00:00 00:17 2909813 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:15 2910532 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:04 2914737 sleep 8 0::/system.slice/cron.service root 4284 500 00:00:00 00:03 2915026 sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 2915458 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:01 2915656 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11112 00:00:00 00:01 2915657 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9003 --header Origin: https://127.0.0.1:9003 --header Sec-WebSocket-Key: OTAyNToyMzQzMw== --header Sec-WebSocket-Version: 13 https://127.0.0.1:9003/ -k 0::/system.slice/cron.service root 4288 504 00:00:00 00:01 2915658 wc -l 0::/system.slice/cron.service root 99632 32076 00:00:00 00:01 2915677 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2915687 sleep 2 0::/system.slice/xinetd.service root 6216 3644 00:00:00 00:01 2915705 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2915796 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2915832 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2915872 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2915939 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2915944 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 2916012 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 2916013 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2916064 sleep 0.1 0::/system.slice/cron.service root 5244 2952 00:00:00 00:00 2916078 jq -c .[] 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2916081 sleep 0.1 0::/system.slice/cron.service root 5836 1416 00:00:00 00:00 2916082 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 2956 00:00:00 00:00 2916084 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1140 00:00:00 00:00 2916097 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5908 2540 00:00:00 19:15:51 3371074 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874180 40588 00:00:04 19:15:51 3371110 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2352 00:00:00 19:15:51 3371225 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11712 00:00:54 19:15:51 3371278 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2372 00:00:00 19:15:51 3371430 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4980 00:00:00 19:15:51 3371467 sudo ./webhookstart 0::/system.slice/cron.service root 2480 580 00:00:00 19:15:50 3371603 sh ./webhookstart 0::/system.slice/cron.service root 40104 35316 00:00:09 19:15:50 3371646 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2444 00:00:03 19:15:47 3374728 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13236 00:00:00 19:15:47 3374733 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2404 00:00:03 19:15:47 3374738 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13292 00:00:00 19:15:47 3374745 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55212 00:01:07 19:15:47 3375116 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 309224 56904 00:01:05 19:15:47 3375135 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2372 00:00:00 19:15:44 3378131 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 7128 00:00:05 19:15:44 3378138 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2360 00:00:00 19:15:44 3378199 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9736 00:00:53 19:15:44 3378204 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2360 00:00:00 19:15:44 3378245 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 482540 39512 00:00:54 19:15:44 3378249 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2384 00:00:00 19:15:44 3378273 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12616 00:00:58 19:15:44 3378275 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2352 00:00:00 19:15:44 3378362 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13396 00:00:58 19:15:44 3378368 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2344 00:00:00 19:15:44 3378416 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12840 00:00:57 19:15:44 3378421 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5836 3084 00:53:38 19-07:09:51 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 50376 00:00:02 13-22:43:03 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50904 00:00:02 13-22:43:02 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50156 00:00:02 13-11:34:05 3582124 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2640 00:02:27 6-14:40:07 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3156 00:00:10 6-14:39:52 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 67761sec preferred_lft 67761sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-19 22:15 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f4fc2e49dFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11980 04:37:52 24-21:28:22 1 /sbin/init - root 0 0 00:00:02 24-21:28:22 2 [kthreadd] - root 0 0 00:00:00 24-21:28:22 3 [rcu_gp] - root 0 0 00:00:00 24-21:28:22 4 [rcu_par_gp] - root 0 0 00:00:00 24-21:28:22 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 24-21:28:22 8 [mm_percpu_wq] - root 0 0 00:00:00 24-21:28:22 9 [rcu_tasks_rude_] - root 0 0 00:00:00 24-21:28:22 10 [rcu_tasks_trace] - root 0 0 00:08:39 24-21:28:22 11 [ksoftirqd/0] - root 0 0 00:37:14 24-21:28:22 12 [rcu_sched] - root 0 0 00:00:13 24-21:28:22 13 [migration/0] - root 0 0 00:00:00 24-21:28:22 15 [cpuhp/0] - root 0 0 00:00:00 24-21:28:22 16 [cpuhp/1] - root 0 0 00:00:14 24-21:28:22 17 [migration/1] - root 0 0 00:08:37 24-21:28:22 18 [ksoftirqd/1] - root 0 0 00:00:00 24-21:28:22 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 24-21:28:22 21 [cpuhp/2] - root 0 0 00:00:13 24-21:28:22 22 [migration/2] - root 0 0 00:08:36 24-21:28:22 23 [ksoftirqd/2] - root 0 0 00:00:00 24-21:28:22 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 24-21:28:22 26 [cpuhp/3] - root 0 0 00:00:13 24-21:28:22 27 [migration/3] - root 0 0 00:08:36 24-21:28:22 28 [ksoftirqd/3] - root 0 0 00:00:00 24-21:28:22 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 24-21:28:22 31 [cpuhp/4] - root 0 0 00:00:14 24-21:28:22 32 [migration/4] - root 0 0 00:08:35 24-21:28:22 33 [ksoftirqd/4] - root 0 0 00:00:00 24-21:28:22 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 24-21:28:22 36 [cpuhp/5] - root 0 0 00:00:14 24-21:28:22 37 [migration/5] - root 0 0 00:08:42 24-21:28:22 38 [ksoftirqd/5] - root 0 0 00:00:00 24-21:28:22 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 24-21:28:22 41 [cpuhp/6] - root 0 0 00:00:14 24-21:28:22 42 [migration/6] - root 0 0 00:08:37 24-21:28:22 43 [ksoftirqd/6] - root 0 0 00:00:00 24-21:28:22 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 24-21:28:22 46 [cpuhp/7] - root 0 0 00:00:14 24-21:28:22 47 [migration/7] - root 0 0 00:08:38 24-21:28:22 48 [ksoftirqd/7] - root 0 0 00:00:00 24-21:28:22 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 24-21:28:22 56 [kdevtmpfs] - root 0 0 00:00:00 24-21:28:22 57 [netns] - root 0 0 00:05:19 24-21:28:22 58 [kauditd] - root 0 0 00:00:02 24-21:28:22 59 [khungtaskd] - root 0 0 00:00:00 24-21:28:22 60 [oom_reaper] - root 0 0 00:00:00 24-21:28:22 61 [writeback] - root 0 0 00:00:45 24-21:28:22 62 [kcompactd0] - root 0 0 00:00:00 24-21:28:22 63 [ksmd] - root 0 0 00:01:32 24-21:28:22 64 [khugepaged] - root 0 0 00:00:00 24-21:28:22 84 [kintegrityd] - root 0 0 00:00:00 24-21:28:22 85 [kblockd] - root 0 0 00:00:00 24-21:28:22 86 [blkcg_punt_bio] - root 0 0 00:00:09 24-21:28:22 88 [kworker/0:1H-kblockd] - root 0 0 00:00:12 24-21:28:22 89 [kswapd0] - root 0 0 00:00:00 24-21:28:22 90 [kthrotld] - root 0 0 00:00:00 24-21:28:22 91 [acpi_thermal_pm] - root 0 0 00:00:00 24-21:28:22 92 [nvme-wq] - root 0 0 00:00:00 24-21:28:22 93 [nvme-reset-wq] - root 0 0 00:00:00 24-21:28:22 94 [nvme-delete-wq] - root 0 0 00:00:00 24-21:28:21 95 [ipv6_addrconf] - root 0 0 00:00:00 24-21:28:21 106 [kstrp] - root 0 0 00:00:00 24-21:28:21 114 [kworker/u17:0] - root 0 0 00:00:09 24-21:28:21 136 [kworker/1:1H-kblockd] - root 0 0 00:00:09 24-21:28:21 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 24-21:28:21 167 [ata_sff] - root 0 0 00:00:00 24-21:28:21 168 [scsi_eh_0] - root 0 0 00:00:00 24-21:28:21 169 [scsi_tmf_0] - root 0 0 00:00:00 24-21:28:21 170 [scsi_eh_1] - root 0 0 00:00:00 24-21:28:21 171 [scsi_tmf_1] - root 0 0 00:00:00 24-21:28:21 173 [scsi_eh_2] - root 0 0 00:00:00 24-21:28:21 174 [scsi_tmf_2] - root 0 0 00:00:09 24-21:28:21 175 [kworker/3:1H-kblockd] - root 0 0 00:00:09 24-21:28:21 178 [kworker/4:1H-kblockd] - root 0 0 00:00:09 24-21:28:21 184 [kworker/7:1H-kblockd] - root 0 0 00:00:09 24-21:28:21 196 [kworker/6:1H-kblockd] - root 0 0 00:05:54 24-21:28:21 206 [jbd2/sda1-8] - root 0 0 00:00:00 24-21:28:21 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 282732 216076 01:35:56 24-21:28:20 286 /lib/systemd/systemd-journald - root 0 0 00:00:09 24-21:28:20 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4256 00:00:05 24-21:28:20 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 24-21:28:20 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:18:35 24-21:28:20 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 24-21:28:19 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:09:47 24-21:28:18 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:13 24-21:28:18 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 89176 01:40:47 24-21:28:18 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 24-21:28:18 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8564 00:13:39 24-21:28:18 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:04:41 24-21:28:18 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 02:58:01 24-21:28:18 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21932 01:14:29 24-21:28:18 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:25 24-21:28:18 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 24-21:28:18 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 24-21:28:18 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15480 00:00:00 24-21:28:18 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:07:42 24-21:28:18 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 8016 5756 00:00:01 24-21:28:18 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2312 00:00:00 24-21:28:18 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 51824 00:01:22 24-21:28:18 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:10 24-21:28:18 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4352 00:00:56 24-21:28:18 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:15:48 24-21:27:42 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:02:51 24-21:27:42 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/ntp.service ntp 74496 3148 00:00:04 18:27:42 19736 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2471608 176380 02:30:14 18:27:40 21353 /usr/sbin/mariadbd 0::/system.slice/nginx.service root 67480 2072 00:00:00 24-21:18:16 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7844 00:09:17 24-21:18:16 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7236 00:00:05 24-21:18:16 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6388 00:00:01 24-21:18:16 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5780 00:00:00 24-21:18:16 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4360 00:00:00 24-21:18:16 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 24-21:18:16 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 24-21:18:16 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 24-21:18:16 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 24-21:18:16 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 17980 00:03:18 24-21:18:15 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 24-21:18:15 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16364 00:00:17 24-18:21:58 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5756 00:00:02 24-18:21:58 540419 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 01:18:30 558216 [kworker/7:2-events] - root 0 0 00:00:02 01:16:45 602553 [kworker/u16:0-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 266668 50560 00:00:00 3-13:05:31 677046 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 05:55:48 23-11:56:43 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 05:57:30 23-11:56:43 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 01:52:56 23-11:56:42 699456 /bin/bash /opt/imtlazarus/mdms/set_camara - root 0 0 00:00:00 01:07:47 819690 [kworker/1:1-cgroup_destroy] 0::/system.slice/apache2.service www-data 266596 50344 00:00:00 12:15:41 956576 /usr/sbin/apache2 -k start - root 0 0 00:00:01 54:43 1143287 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 30:40 1743280 [kworker/4:1-events] - root 0 0 00:00:00 23:57 1902063 [kworker/3:0-events] - root 0 0 00:00:00 22:55 1931812 [kworker/u16:2-flush-8:0] - root 0 0 00:00:00 19:40 2016335 [kworker/5:2-events] - root 0 0 00:00:00 15:50 2110764 [kworker/6:2-events] - root 0 0 00:00:00 14:06 2144779 [kworker/0:2-events] - root 0 0 00:00:00 13:55 2147931 [kworker/2:1-events] - root 0 0 00:00:00 11:45 2218534 [kworker/3:1-events] - root 0 0 00:00:00 11:18 2229136 [kworker/7:0-cgroup_destroy] - root 0 0 00:00:00 10:42 2243135 [kworker/6:1-events] - root 0 0 00:00:00 09:13 2276990 [kworker/5:0-events] - root 0 0 00:00:00 08:31 2293427 [kworker/2:2-events] - root 0 0 00:00:00 08:16 2301052 [kworker/1:2-cgroup_destroy] - root 0 0 00:00:00 08:05 2306566 [kworker/4:0-events] - root 0 0 00:00:00 07:23 2332121 [kworker/0:0-cgroup_destroy] - root 0 0 00:00:00 04:30 2387831 [kworker/6:0-events] - root 0 0 00:00:00 04:25 2389347 [kworker/7:1-events] 0::/system.slice/cron.service root 6128 3424 00:00:03 03:43 2402701 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 02:30 2439371 [kworker/4:2-cgroup_destroy] - root 0 0 00:00:00 02:15 2448877 [kworker/5:1-events] - root 0 0 00:00:00 02:09 2451987 [kworker/2:0-events] - root 0 0 00:00:00 01:44 2464593 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 01:17 2475057 [kworker/0:1-events] 0::/system.slice/cron.service root 2392 504 00:00:00 00:54 2483461 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:52 2484203 /bin/sleep 60 0::/system.slice/cron.service root 5908 2424 00:00:00 00:43 2487941 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8820 00:00:00 00:43 2487949 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2452 00:00:00 00:43 2488083 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6796 00:00:00 00:43 2488090 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2480 00:00:00 00:43 2488188 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6800 00:00:00 00:43 2488191 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 00:43 2488250 [kworker/3:2-events] 0::/system.slice/cron.service root 5908 2540 00:00:00 00:43 2488278 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6860 00:00:00 00:43 2488285 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 00:41 2489308 [kworker/1:0-events] 0::/system.slice/cron.service root 2392 500 00:00:00 00:33 2492008 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:31 2492784 /bin/sleep 60 0::/system.slice/cron.service root 5908 2376 00:00:00 00:27 2494158 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8528 00:00:00 00:27 2494162 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:27 2494176 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 231688 8920 00:00:00 00:27 2494179 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2376 00:00:00 00:27 2494188 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 6396 00:00:00 00:27 2494192 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 556 00:00:00 00:18 2497771 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:10 2500649 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:08 2501190 sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:08 2501374 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:07 2501719 sleep 8 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 2503536 sleep 2 0::/system.slice/cron.service root 5840 1496 00:00:00 00:02 2503546 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11124 00:00:00 00:02 2503547 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8993 --header Origin: https://127.0.0.1:8993 --header Sec-WebSocket-Key: MTAxNjg6NzE4OA== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8993/ -k 0::/system.slice/cron.service root 4288 492 00:00:00 00:02 2503548 wc -l 0::/system.slice/cron.service root 99632 32420 00:00:00 00:02 2503559 /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 2503768 sleep 2 0::/system.slice/xinetd.service root 6188 3492 00:00:00 00:01 2503832 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2503943 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2503949 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2503991 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2504023 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2504152 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2504193 sleep 0.1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 2504202 sleep 1 0::/system.slice/cron.service root 5244 2944 00:00:00 00:00 2504205 jq -c .[] 0::/system.slice/cron.service root 5840 1464 00:00:00 00:00 2504206 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5244 2940 00:00:00 00:00 2504208 jq .dispositivos.ios 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2504213 sleep 0.1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 2504217 sleep 0.1 0::/system.slice/xinetd.service root 6676 1140 00:00:00 00:00 2504230 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 3064 00:01:16 20-12:37:43 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 01:03:25 20-12:37:43 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 05:09:02 20-12:37:43 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:38:37 20-12:37:43 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:31:27 20-12:37:43 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 01:41:57 20-12:37:43 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:13:32 20-12:37:43 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:33:08 20-12:37:43 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:30:26 20-12:37:43 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5908 2384 00:00:00 19:28:42 2676910 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875208 42412 00:00:04 19:28:42 2676950 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2356 00:00:00 19:28:42 2677412 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4988 00:00:00 19:28:42 2677441 sudo ./webhookstart 0::/system.slice/cron.service root 2480 568 00:00:00 19:28:42 2677517 sh ./webhookstart 0::/system.slice/cron.service root 40104 34880 00:00:09 19:28:42 2677554 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2400 00:00:03 19:28:38 2680690 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13280 00:00:00 19:28:38 2680696 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2436 00:00:03 19:28:38 2680709 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13296 00:00:00 19:28:38 2680712 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55292 00:01:07 19:28:38 2681143 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57324 00:01:08 19:28:38 2681186 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2368 00:00:00 19:28:36 2683791 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11152 00:00:06 19:28:36 2683795 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2540 00:00:00 19:28:36 2683826 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12968 00:00:54 19:28:36 2683831 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2416 00:00:00 19:28:36 2683862 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 482540 38528 00:00:55 19:28:36 2683866 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2392 00:00:00 19:28:36 2683900 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 13040 00:00:59 19:28:36 2683906 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2344 00:00:00 19:28:36 2683924 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 15204 00:01:00 19:28:36 2683927 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2384 00:00:00 19:28:36 2683965 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12992 00:00:59 19:28:36 2683969 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2428 00:00:00 19:28:36 2683997 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12568 00:00:56 19:28:36 2683999 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/apache2.service www-data 266748 50368 00:00:01 11-23:28:40 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50312 00:00:02 11-23:28:40 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50328 00:00:01 11-23:28:40 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50320 00:00:01 11-23:28:40 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50536 00:00:01 11-23:28:40 2711949 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5836 3084 00:48:05 17-07:22:42 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 50356 00:00:01 11-22:55:54 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50920 00:00:02 11-22:55:53 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50156 00:00:01 11-11:46:56 3582124 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2756 00:01:43 4-14:52:58 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3276 00:00:07 4-14:52:43 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 60708sec preferred_lft 60708sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-17 22:28 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f3c8e6c25Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB JOB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating start start OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11988 04:16:22 22-23:58:47 1 /sbin/init - root 0 0 00:00:01 22-23:58:47 2 [kthreadd] - root 0 0 00:00:00 22-23:58:47 3 [rcu_gp] - root 0 0 00:00:00 22-23:58:47 4 [rcu_par_gp] - root 0 0 00:00:00 22-23:58:47 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 22-23:58:47 8 [mm_percpu_wq] - root 0 0 00:00:00 22-23:58:47 9 [rcu_tasks_rude_] - root 0 0 00:00:00 22-23:58:47 10 [rcu_tasks_trace] - root 0 0 00:07:59 22-23:58:47 11 [ksoftirqd/0] - root 0 0 00:34:23 22-23:58:47 12 [rcu_sched] - root 0 0 00:00:12 22-23:58:47 13 [migration/0] - root 0 0 00:00:00 22-23:58:47 15 [cpuhp/0] - root 0 0 00:00:00 22-23:58:47 16 [cpuhp/1] - root 0 0 00:00:12 22-23:58:47 17 [migration/1] - root 0 0 00:07:57 22-23:58:47 18 [ksoftirqd/1] - root 0 0 00:00:00 22-23:58:47 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 22-23:58:47 21 [cpuhp/2] - root 0 0 00:00:12 22-23:58:47 22 [migration/2] - root 0 0 00:07:56 22-23:58:47 23 [ksoftirqd/2] - root 0 0 00:00:00 22-23:58:47 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 22-23:58:47 26 [cpuhp/3] - root 0 0 00:00:12 22-23:58:47 27 [migration/3] - root 0 0 00:07:55 22-23:58:47 28 [ksoftirqd/3] - root 0 0 00:00:00 22-23:58:47 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 22-23:58:47 31 [cpuhp/4] - root 0 0 00:00:12 22-23:58:47 32 [migration/4] - root 0 0 00:07:55 22-23:58:47 33 [ksoftirqd/4] - root 0 0 00:00:00 22-23:58:47 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 22-23:58:47 36 [cpuhp/5] - root 0 0 00:00:12 22-23:58:47 37 [migration/5] - root 0 0 00:08:01 22-23:58:47 38 [ksoftirqd/5] - root 0 0 00:00:00 22-23:58:47 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 22-23:58:47 41 [cpuhp/6] - root 0 0 00:00:12 22-23:58:47 42 [migration/6] - root 0 0 00:07:56 22-23:58:47 43 [ksoftirqd/6] - root 0 0 00:00:00 22-23:58:47 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 22-23:58:47 46 [cpuhp/7] - root 0 0 00:00:12 22-23:58:47 47 [migration/7] - root 0 0 00:07:58 22-23:58:47 48 [ksoftirqd/7] - root 0 0 00:00:00 22-23:58:47 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 22-23:58:47 56 [kdevtmpfs] - root 0 0 00:00:00 22-23:58:47 57 [netns] - root 0 0 00:04:56 22-23:58:47 58 [kauditd] - root 0 0 00:00:02 22-23:58:47 59 [khungtaskd] - root 0 0 00:00:00 22-23:58:47 60 [oom_reaper] - root 0 0 00:00:00 22-23:58:47 61 [writeback] - root 0 0 00:00:41 22-23:58:47 62 [kcompactd0] - root 0 0 00:00:00 22-23:58:47 63 [ksmd] - root 0 0 00:01:25 22-23:58:47 64 [khugepaged] - root 0 0 00:00:00 22-23:58:47 84 [kintegrityd] - root 0 0 00:00:00 22-23:58:47 85 [kblockd] - root 0 0 00:00:00 22-23:58:47 86 [blkcg_punt_bio] - root 0 0 00:00:08 22-23:58:47 88 [kworker/0:1H-kblockd] - root 0 0 00:00:11 22-23:58:47 89 [kswapd0] - root 0 0 00:00:00 22-23:58:47 90 [kthrotld] - root 0 0 00:00:00 22-23:58:47 91 [acpi_thermal_pm] - root 0 0 00:00:00 22-23:58:47 92 [nvme-wq] - root 0 0 00:00:00 22-23:58:47 93 [nvme-reset-wq] - root 0 0 00:00:00 22-23:58:47 94 [nvme-delete-wq] - root 0 0 00:00:00 22-23:58:46 95 [ipv6_addrconf] - root 0 0 00:00:00 22-23:58:46 106 [kstrp] - root 0 0 00:00:00 22-23:58:46 114 [kworker/u17:0] - root 0 0 00:00:08 22-23:58:46 136 [kworker/1:1H-kblockd] - root 0 0 00:00:09 22-23:58:46 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 22-23:58:46 167 [ata_sff] - root 0 0 00:00:00 22-23:58:46 168 [scsi_eh_0] - root 0 0 00:00:00 22-23:58:46 169 [scsi_tmf_0] - root 0 0 00:00:00 22-23:58:46 170 [scsi_eh_1] - root 0 0 00:00:00 22-23:58:46 171 [scsi_tmf_1] - root 0 0 00:00:00 22-23:58:46 173 [scsi_eh_2] - root 0 0 00:00:00 22-23:58:46 174 [scsi_tmf_2] - root 0 0 00:00:08 22-23:58:46 175 [kworker/3:1H-kblockd] - root 0 0 00:00:08 22-23:58:46 178 [kworker/4:1H-kblockd] - root 0 0 00:00:08 22-23:58:46 184 [kworker/7:1H-kblockd] - root 0 0 00:00:08 22-23:58:46 196 [kworker/6:1H-kblockd] - root 0 0 00:05:26 22-23:58:46 206 [jbd2/sda1-8] - root 0 0 00:00:00 22-23:58:46 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 303512 232128 01:28:47 22-23:58:45 286 /lib/systemd/systemd-journald - root 0 0 00:00:08 22-23:58:45 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4256 00:00:05 22-23:58:45 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 22-23:58:45 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:17:13 22-23:58:45 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 22-23:58:44 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:09:02 22-23:58:43 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:07 22-23:58:43 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 89088 01:33:07 22-23:58:43 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 22-23:58:43 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8612 00:12:38 22-23:58:43 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:04:20 22-23:58:43 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 02:44:05 22-23:58:43 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21936 01:08:59 22-23:58:43 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:23 22-23:58:43 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 22-23:58:43 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 22-23:58:43 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15540 00:00:00 22-23:58:43 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:07:06 22-23:58:43 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7660 5692 00:00:00 22-23:58:43 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 22-23:58:43 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 52564 00:01:16 22-23:58:43 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:09 22-23:58:43 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4416 00:00:52 22-23:58:43 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:14:36 22-23:58:07 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:02:38 22-23:58:07 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 2072 00:00:00 22-23:48:41 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7844 00:08:48 22-23:48:41 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7236 00:00:05 22-23:48:41 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6388 00:00:01 22-23:48:41 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5780 00:00:00 22-23:48:41 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4360 00:00:00 22-23:48:41 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 22-23:48:41 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 22-23:48:41 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 22-23:48:41 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 22-23:48:41 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 18596 00:03:05 22-23:48:40 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 22-23:48:40 229054 [check_nginx] <defunct> - root 0 0 00:00:00 42:08 315339 [kworker/6:1-events] 0::/system.slice/packagekit.service root 288432 16692 00:00:16 22-20:52:23 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5764 00:00:01 22-20:52:23 540419 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 29:21 625711 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 266668 50056 00:00:00 1-15:35:56 677046 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 05:27:19 21-14:27:08 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 05:28:48 21-14:27:08 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 01:43:51 21-14:27:07 699456 /bin/bash /opt/imtlazarus/mdms/set_camara - root 0 0 00:00:00 25:47 719169 [kworker/5:2-events] - root 0 0 00:00:00 22:44 783994 [kworker/0:1-events] - root 0 0 00:00:00 17:46 924496 [kworker/1:1-events] - root 0 0 00:00:00 16:54 945204 [kworker/4:1-events] - root 0 0 00:00:00 16:07 960138 [kworker/7:2-events] - root 0 0 00:00:00 13:57 1008526 [kworker/2:2-events] - root 0 0 00:00:00 12:13 1064242 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 11:41 1076783 [kworker/3:0-events] - root 0 0 00:00:00 11:15 1086467 [kworker/0:2-events] - root 0 0 00:00:00 11:07 1090170 [kworker/4:0-events] - root 0 0 00:00:00 10:39 1100977 [kworker/7:1-events] - root 0 0 00:00:00 08:29 1152967 [kworker/5:1-events] - root 0 0 00:00:00 07:05 1193136 [kworker/1:2-events] - root 0 0 00:00:00 06:38 1202135 [kworker/3:1-events] 0::/system.slice/apache2.service www-data 266692 49804 00:00:01 7-16:28:16 1207248 /usr/sbin/apache2 -k start - root 0 0 00:00:00 05:09 1230351 [kworker/6:2-events] - root 0 0 00:00:00 05:07 1231755 [kworker/2:1-events] - root 0 0 00:00:00 04:43 1239547 [kworker/7:0-events] - root 0 0 00:00:00 04:38 1241217 [kworker/0:0-events] - root 0 0 00:00:00 04:33 1242807 [kworker/4:2-events] 0::/system.slice/cron.service root 6128 3472 00:00:03 04:08 1250707 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 04:02 1254186 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 02:07 1311732 [kworker/u16:4-flush-8:0] - root 0 0 00:00:00 01:14 1334407 [kworker/3:2-events] 0::/system.slice/cron.service root 2392 496 00:00:00 00:59 1341026 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:57 1341771 /bin/sleep 60 - root 0 0 00:00:00 00:53 1343130 [kworker/1:0-events] 0::/system.slice/cron.service root 5908 2344 00:00:00 00:53 1343194 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8880 00:00:00 00:53 1343199 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2356 00:00:00 00:53 1343237 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8908 00:00:00 00:53 1343246 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:53 1343272 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8920 00:00:00 00:53 1343276 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:53 1343314 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10940 00:00:00 00:53 1343316 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2408 00:00:00 00:52 1343342 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10912 00:00:00 00:52 1343359 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:52 1343367 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10844 00:00:00 00:52 1343369 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2432 00:00:00 00:52 1343392 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8840 00:00:00 00:52 1343394 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:47 1345338 sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:43 1346755 /bin/sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:41 1347503 /bin/sleep 60 - root 0 0 00:00:00 00:32 1350873 [kworker/5:0] 0::/system.slice/cron.service root 4284 500 00:00:00 00:27 1352719 sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:14 1357611 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:12 1358372 /bin/sleep 60 0::/system.slice/cron.service root 10888 3716 00:00:00 00:09 1359566 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 00:09 1359712 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 5836 3112 00:00:00 00:09 1359772 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine 0::/system.slice/cron.service root 4284 500 00:00:00 00:07 1360922 sleep 10 0::/system.slice/cron.service root 4284 568 00:00:00 00:06 1361664 sleep 8 0::/system.slice/cron.service root 99632 32336 00:00:00 00:02 1363167 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 1363293 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 1363376 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 1363437 sleep 2 0::/system.slice/xinetd.service root 6180 3568 00:00:00 00:00 1363653 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 1363746 sleep 1 0::/system.slice/cron.service root 4284 492 00:00:00 00:00 1363830 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 1363901 sleep 1 0::/system.slice/cron.service root 5840 1496 00:00:00 00:00 1363913 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11068 00:00:00 00:00 1363914 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9002 --header Origin: https://127.0.0.1:9002 --header Sec-WebSocket-Key: NjgxMToxOTg2Mg== --header Sec-WebSocket-Version: 13 https://127.0.0.1:9002/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:00 1363915 wc -l 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1363918 sleep 2 0::/system.slice/cron.service root 99632 32328 00:00:00 00:00 1363925 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5836 1416 00:00:00 00:00 1363929 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 3004 00:00:00 00:00 1363931 jq .dispositivos.windows 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1363940 sleep 1 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 1363957 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5908 2352 00:00:00 21:59:07 1927430 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875192 44496 00:00:04 21:59:07 1927442 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2384 00:00:00 21:59:07 1927807 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 5008 00:00:00 21:59:07 1927856 sudo ./webhookstart 0::/system.slice/cron.service root 2480 568 00:00:00 21:59:07 1927978 sh ./webhookstart 0::/system.slice/cron.service root 40104 34880 00:00:10 21:59:07 1928024 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2344 00:00:03 21:59:06 1928634 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13248 00:00:00 21:59:06 1928639 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:03 21:59:06 1928647 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13216 00:00:00 21:59:06 1928666 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55204 00:01:13 21:59:05 1929021 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383220 55176 00:01:14 21:59:05 1929028 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2324 00:00:00 21:59:01 1933556 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11080 00:00:06 21:59:01 1933565 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2344 00:00:00 21:59:01 1933592 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12400 00:01:02 21:59:01 1933594 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2360 00:00:00 21:59:01 1933636 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 488244 46192 00:01:03 21:59:01 1933639 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2340 00:00:00 21:59:01 1933697 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10832 00:01:07 21:59:01 1933704 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2452 00:00:00 21:59:01 1933760 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12796 00:01:07 21:59:01 1933771 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2320 00:00:00 21:59:01 1933823 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13092 00:01:07 21:59:01 1933829 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2388 00:00:00 21:59:01 1933886 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 10716 00:01:03 21:59:01 1933895 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5708 3064 00:01:09 18-15:08:08 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 00:57:35 18-15:08:08 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 04:40:31 18-15:08:08 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:29:31 18-15:08:08 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:23:02 18-15:08:08 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 01:32:34 18-15:08:08 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:06:47 18-15:08:08 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:24:34 18-15:08:08 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:22:06 18-15:08:08 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 50008 00:00:01 10-01:59:05 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 49948 00:00:01 10-01:59:05 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 49952 00:00:01 10-01:59:05 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 49944 00:00:01 10-01:59:05 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50176 00:00:01 10-01:59:05 2711949 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3436 00:00:04 20:58:06 3462375 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 175480 02:34:09 20:58:05 3463910 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5836 3084 00:42:49 15-09:53:07 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 49992 00:00:01 10-01:26:19 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50552 00:00:01 10-01:26:18 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 49768 00:00:01 9-14:17:21 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:02 01:16:33 3646951 [kworker/u16:1-flush-8:0] 0::/system.slice/cron.service root 5556 2756 00:01:00 2-17:23:23 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3280 00:00:04 2-17:23:08 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 74086sec preferred_lft 74086sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-16 00:59 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f9027b799Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 11988 04:14:32 22-20:18:35 1 /sbin/init - root 0 0 00:00:01 22-20:18:35 2 [kthreadd] - root 0 0 00:00:00 22-20:18:35 3 [rcu_gp] - root 0 0 00:00:00 22-20:18:35 4 [rcu_par_gp] - root 0 0 00:00:00 22-20:18:35 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 22-20:18:35 8 [mm_percpu_wq] - root 0 0 00:00:00 22-20:18:35 9 [rcu_tasks_rude_] - root 0 0 00:00:00 22-20:18:35 10 [rcu_tasks_trace] - root 0 0 00:07:56 22-20:18:35 11 [ksoftirqd/0] - root 0 0 00:34:10 22-20:18:35 12 [rcu_sched] - root 0 0 00:00:12 22-20:18:35 13 [migration/0] - root 0 0 00:00:00 22-20:18:35 15 [cpuhp/0] - root 0 0 00:00:00 22-20:18:35 16 [cpuhp/1] - root 0 0 00:00:12 22-20:18:35 17 [migration/1] - root 0 0 00:07:54 22-20:18:35 18 [ksoftirqd/1] - root 0 0 00:00:00 22-20:18:35 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 22-20:18:35 21 [cpuhp/2] - root 0 0 00:00:12 22-20:18:35 22 [migration/2] - root 0 0 00:07:53 22-20:18:35 23 [ksoftirqd/2] - root 0 0 00:00:00 22-20:18:35 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 22-20:18:35 26 [cpuhp/3] - root 0 0 00:00:12 22-20:18:35 27 [migration/3] - root 0 0 00:07:52 22-20:18:35 28 [ksoftirqd/3] - root 0 0 00:00:00 22-20:18:35 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 22-20:18:35 31 [cpuhp/4] - root 0 0 00:00:12 22-20:18:35 32 [migration/4] - root 0 0 00:07:51 22-20:18:35 33 [ksoftirqd/4] - root 0 0 00:00:00 22-20:18:35 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 22-20:18:35 36 [cpuhp/5] - root 0 0 00:00:12 22-20:18:35 37 [migration/5] - root 0 0 00:07:58 22-20:18:35 38 [ksoftirqd/5] - root 0 0 00:00:00 22-20:18:35 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 22-20:18:35 41 [cpuhp/6] - root 0 0 00:00:12 22-20:18:35 42 [migration/6] - root 0 0 00:07:53 22-20:18:35 43 [ksoftirqd/6] - root 0 0 00:00:00 22-20:18:35 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 22-20:18:35 46 [cpuhp/7] - root 0 0 00:00:12 22-20:18:35 47 [migration/7] - root 0 0 00:07:54 22-20:18:35 48 [ksoftirqd/7] - root 0 0 00:00:00 22-20:18:35 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 22-20:18:35 56 [kdevtmpfs] - root 0 0 00:00:00 22-20:18:35 57 [netns] - root 0 0 00:04:54 22-20:18:35 58 [kauditd] - root 0 0 00:00:02 22-20:18:35 59 [khungtaskd] - root 0 0 00:00:00 22-20:18:35 60 [oom_reaper] - root 0 0 00:00:00 22-20:18:35 61 [writeback] - root 0 0 00:00:41 22-20:18:35 62 [kcompactd0] - root 0 0 00:00:00 22-20:18:35 63 [ksmd] - root 0 0 00:01:24 22-20:18:35 64 [khugepaged] - root 0 0 00:00:00 22-20:18:35 84 [kintegrityd] - root 0 0 00:00:00 22-20:18:35 85 [kblockd] - root 0 0 00:00:00 22-20:18:35 86 [blkcg_punt_bio] - root 0 0 00:00:08 22-20:18:35 88 [kworker/0:1H-kblockd] - root 0 0 00:00:11 22-20:18:35 89 [kswapd0] - root 0 0 00:00:00 22-20:18:35 90 [kthrotld] - root 0 0 00:00:00 22-20:18:35 91 [acpi_thermal_pm] - root 0 0 00:00:00 22-20:18:35 92 [nvme-wq] - root 0 0 00:00:00 22-20:18:35 93 [nvme-reset-wq] - root 0 0 00:00:00 22-20:18:35 94 [nvme-delete-wq] - root 0 0 00:00:00 22-20:18:34 95 [ipv6_addrconf] - root 0 0 00:00:00 22-20:18:34 106 [kstrp] - root 0 0 00:00:00 22-20:18:34 114 [kworker/u17:0] - root 0 0 00:00:08 22-20:18:34 136 [kworker/1:1H-kblockd] - root 0 0 00:00:08 22-20:18:34 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 22-20:18:34 167 [ata_sff] - root 0 0 00:00:00 22-20:18:34 168 [scsi_eh_0] - root 0 0 00:00:00 22-20:18:34 169 [scsi_tmf_0] - root 0 0 00:00:00 22-20:18:34 170 [scsi_eh_1] - root 0 0 00:00:00 22-20:18:34 171 [scsi_tmf_1] - root 0 0 00:00:00 22-20:18:34 173 [scsi_eh_2] - root 0 0 00:00:00 22-20:18:34 174 [scsi_tmf_2] - root 0 0 00:00:08 22-20:18:34 175 [kworker/3:1H-kblockd] - root 0 0 00:00:08 22-20:18:34 178 [kworker/4:1H-kblockd] - root 0 0 00:00:08 22-20:18:34 184 [kworker/7:1H-kblockd] - root 0 0 00:00:08 22-20:18:34 196 [kworker/6:1H-kblockd] - root 0 0 00:05:24 22-20:18:34 206 [jbd2/sda1-8] - root 0 0 00:00:00 22-20:18:34 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 254352 189652 01:28:12 22-20:18:33 286 /lib/systemd/systemd-journald - root 0 0 00:00:08 22-20:18:33 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4256 00:00:05 22-20:18:33 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 22-20:18:33 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:17:07 22-20:18:33 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4604 00:00:00 22-20:18:32 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:08:59 22-20:18:31 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3304 00:01:07 22-20:18:31 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 89088 01:32:30 22-20:18:31 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3004 00:00:00 22-20:18:31 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8612 00:12:33 22-20:18:31 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:04:18 22-20:18:31 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 02:42:57 22-20:18:31 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21936 01:08:32 22-20:18:31 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6800 00:00:23 22-20:18:31 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 22-20:18:31 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 22-20:18:31 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15540 00:00:00 22-20:18:31 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:07:03 22-20:18:31 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7660 5692 00:00:00 22-20:18:31 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 22-20:18:31 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 52564 00:01:16 22-20:18:31 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:09 22-20:18:31 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4416 00:00:51 22-20:18:31 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:14:30 22-20:17:55 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:02:37 22-20:17:55 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr - root 0 0 00:00:00 02:04 11451 [kworker/5:2-events] - root 0 0 00:00:00 01:43 20136 [kworker/6:0-events] - root 0 0 00:00:00 01:28 25822 [kworker/2:2-events] - root 0 0 00:00:00 00:56 37647 [kworker/4:2-events] 0::/system.slice/cron.service root 5908 2352 00:00:00 00:56 37798 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8876 00:00:00 00:56 37816 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2332 00:00:00 00:56 37960 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11052 00:00:00 00:56 37970 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:56 38103 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6940 00:00:00 00:56 38116 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:56 38215 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 7004 00:00:00 00:56 38230 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:55 38581 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:46 41950 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:44 42710 /bin/sleep 60 0::/system.slice/cron.service root 5908 2344 00:00:00 00:40 44103 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8892 00:00:00 00:40 44109 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2416 00:00:00 00:40 44123 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10904 00:00:00 00:40 44128 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2396 00:00:00 00:40 44156 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8532 00:00:00 00:40 44158 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:36 45674 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:23 50503 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:21 51258 /bin/sleep 60 - root 0 0 00:00:00 00:09 55502 [kworker/0:1-cgroup_destroy] 0::/system.slice/cron.service root 4284 500 00:00:00 00:03 57800 /bin/sleep 5 0::/system.slice/cron.service root 4284 492 00:00:00 00:02 58190 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 58292 sleep 8 0::/system.slice/xinetd.service root 6124 3536 00:00:00 00:01 58351 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 58411 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 58463 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 58548 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 58555 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 58593 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 58621 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 58690 sleep 0.1 0::/system.slice/cron.service root 5836 1388 00:00:00 00:00 58717 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2940 00:00:00 00:00 58719 jq -c .[] 0::/system.slice/cron.service root 5244 2992 00:00:00 00:00 58721 jq .dispositivos.windows 0::/system.slice/cron.service root 5972 1524 00:00:00 00:00 58736 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/xinetd.service root 6676 1136 00:00:00 00:00 58743 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5836 1412 00:00:00 00:00 58744 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 15192 7840 00:00:00 00:00 58745 /usr/bin/mysql -ulazarus -px xxxxx lazarus -N 0::/system.slice/cron.service root 5364 684 00:00:00 00:00 58746 /bin/sed -e s/\t/|/g 0::/system.slice/cron.service root 5364 752 00:00:00 00:00 58747 /bin/sed -e s/ //g 0::/system.slice/nginx.service root 67480 2072 00:00:00 22-20:08:29 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7844 00:08:47 22-20:08:29 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7236 00:00:05 22-20:08:29 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6388 00:00:01 22-20:08:29 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5780 00:00:00 22-20:08:29 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4360 00:00:00 22-20:08:29 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3980 00:00:00 22-20:08:29 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4008 00:00:00 22-20:08:29 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2860 00:00:00 22-20:08:29 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 22-20:08:29 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 18596 00:03:04 22-20:08:28 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 22-20:08:28 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 16692 00:00:16 22-17:12:11 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5764 00:00:01 22-17:12:11 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/apache2.service www-data 266668 49992 00:00:00 1-11:55:44 677046 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5708 3112 05:25:02 21-10:46:56 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 05:26:30 21-10:46:56 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 01:43:07 21-10:46:55 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/apache2.service www-data 266692 49804 00:00:01 7-12:48:04 1207248 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2352 00:00:00 18:18:55 1927430 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874168 39592 00:00:04 18:18:55 1927442 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2384 00:00:00 18:18:55 1927807 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 5008 00:00:00 18:18:55 1927856 sudo ./webhookstart 0::/system.slice/cron.service root 2480 568 00:00:00 18:18:55 1927978 sh ./webhookstart 0::/system.slice/cron.service root 40104 34880 00:00:08 18:18:55 1928024 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2344 00:00:03 18:18:54 1928634 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13248 00:00:00 18:18:54 1928639 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:03 18:18:54 1928647 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13216 00:00:00 18:18:54 1928666 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55204 00:01:01 18:18:53 1929021 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 309232 54980 00:01:02 18:18:53 1929028 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2324 00:00:00 18:18:49 1933556 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11080 00:00:05 18:18:49 1933565 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2344 00:00:00 18:18:49 1933592 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12396 00:00:52 18:18:49 1933594 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2360 00:00:00 18:18:49 1933636 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 488244 46172 00:00:52 18:18:49 1933639 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2340 00:00:00 18:18:49 1933697 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10812 00:00:56 18:18:49 1933704 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2452 00:00:00 18:18:49 1933760 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12780 00:00:56 18:18:49 1933771 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2320 00:00:00 18:18:49 1933823 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13056 00:00:56 18:18:49 1933829 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2388 00:00:00 18:18:49 1933886 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 10704 00:00:53 18:18:49 1933895 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5708 3064 00:01:09 18-11:27:56 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 00:57:07 18-11:27:56 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 04:38:14 18-11:27:56 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:28:47 18-11:27:56 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:22:21 18-11:27:56 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 01:31:48 18-11:27:56 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 01:06:14 18-11:27:56 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:23:52 18-11:27:56 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:21:26 18-11:27:56 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 50008 00:00:01 9-22:18:53 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 49948 00:00:01 9-22:18:53 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 49932 00:00:01 9-22:18:53 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 49944 00:00:01 9-22:18:53 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50176 00:00:01 9-22:18:53 2711949 /usr/sbin/apache2 -k start - root 0 0 00:00:01 45:19 3118443 [kworker/u16:0-ext4-rsv-conversion] 0::/system.slice/ntp.service ntp 74496 3436 00:00:03 17:17:54 3462375 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 176468 02:04:24 17:17:53 3463910 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5836 3084 00:42:23 15-06:12:55 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:00 30:10 3500465 [kworker/7:1-mm_percpu_wq] 0::/system.slice/apache2.service www-data 266676 49984 00:00:01 9-21:46:07 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50532 00:00:01 9-21:46:06 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 49768 00:00:01 9-10:37:09 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 26:46 3589003 [kworker/6:2-events] - root 0 0 00:00:00 25:48 3607680 [kworker/1:2-events] - root 0 0 00:00:00 25:11 3618822 [kworker/2:1-events] - root 0 0 00:00:00 18:50 3782968 [kworker/4:1-events] - root 0 0 00:00:00 18:13 3795958 [kworker/5:0-events] - root 0 0 00:00:00 17:56 3802131 [kworker/3:1-events] - root 0 0 00:00:00 17:27 3815273 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 11:51 3960300 [kworker/0:2-events] - root 0 0 00:00:00 11:40 3964150 [kworker/7:2-events] 0::/system.slice/cron.service root 5556 2756 00:00:57 2-13:43:11 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3280 00:00:03 2-13:42:56 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 10:17 3995800 [kworker/u16:3-flush-8:0] - root 0 0 00:00:00 10:17 3995832 [kworker/2:0-cgroup_destroy] - root 0 0 00:00:00 09:30 4014208 [kworker/1:1-events] - root 0 0 00:00:00 08:55 4027748 [kworker/3:2-cgroup_destroy] - root 0 0 00:00:00 07:55 4056108 [kworker/6:1-events] - root 0 0 00:00:00 07:14 4077415 [kworker/5:1-events] - root 0 0 00:00:00 06:05 4099274 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 05:29 4111477 [kworker/0:0-cgroup_destroy] - root 0 0 00:00:00 04:55 4122573 [kworker/7:0-events] 0::/system.slice/cron.service root 6128 3496 00:00:03 03:56 4141369 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 03:49 4149550 [kworker/1:0-events] - root 0 0 00:00:00 03:39 4153550 [kworker/3:0-events] - root 0 0 00:00:00 02:41 4183539 [kworker/u16:1-flush-8:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 50718sec preferred_lft 50718sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-15 21:18 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f0cf89c91Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 12008 03:53:46 20-21:37:44 1 /sbin/init - root 0 0 00:00:01 20-21:37:44 2 [kthreadd] - root 0 0 00:00:00 20-21:37:44 3 [rcu_gp] - root 0 0 00:00:00 20-21:37:44 4 [rcu_par_gp] - root 0 0 00:00:00 20-21:37:44 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 20-21:37:44 8 [mm_percpu_wq] - root 0 0 00:00:00 20-21:37:44 9 [rcu_tasks_rude_] - root 0 0 00:00:00 20-21:37:44 10 [rcu_tasks_trace] - root 0 0 00:07:14 20-21:37:44 11 [ksoftirqd/0] - root 0 0 00:31:17 20-21:37:44 12 [rcu_sched] - root 0 0 00:00:11 20-21:37:44 13 [migration/0] - root 0 0 00:00:00 20-21:37:44 15 [cpuhp/0] - root 0 0 00:00:00 20-21:37:44 16 [cpuhp/1] - root 0 0 00:00:11 20-21:37:44 17 [migration/1] - root 0 0 00:07:12 20-21:37:44 18 [ksoftirqd/1] - root 0 0 00:00:00 20-21:37:44 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 20-21:37:44 21 [cpuhp/2] - root 0 0 00:00:11 20-21:37:44 22 [migration/2] - root 0 0 00:07:11 20-21:37:44 23 [ksoftirqd/2] - root 0 0 00:00:00 20-21:37:44 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 20-21:37:44 26 [cpuhp/3] - root 0 0 00:00:11 20-21:37:44 27 [migration/3] - root 0 0 00:07:11 20-21:37:44 28 [ksoftirqd/3] - root 0 0 00:00:00 20-21:37:44 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 20-21:37:44 31 [cpuhp/4] - root 0 0 00:00:11 20-21:37:44 32 [migration/4] - root 0 0 00:07:10 20-21:37:44 33 [ksoftirqd/4] - root 0 0 00:00:00 20-21:37:44 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 20-21:37:44 36 [cpuhp/5] - root 0 0 00:00:11 20-21:37:44 37 [migration/5] - root 0 0 00:07:16 20-21:37:44 38 [ksoftirqd/5] - root 0 0 00:00:00 20-21:37:44 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 20-21:37:44 41 [cpuhp/6] - root 0 0 00:00:11 20-21:37:44 42 [migration/6] - root 0 0 00:07:12 20-21:37:44 43 [ksoftirqd/6] - root 0 0 00:00:00 20-21:37:44 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 20-21:37:44 46 [cpuhp/7] - root 0 0 00:00:11 20-21:37:44 47 [migration/7] - root 0 0 00:07:12 20-21:37:44 48 [ksoftirqd/7] - root 0 0 00:00:00 20-21:37:44 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 20-21:37:44 56 [kdevtmpfs] - root 0 0 00:00:00 20-21:37:44 57 [netns] - root 0 0 00:04:29 20-21:37:44 58 [kauditd] - root 0 0 00:00:02 20-21:37:44 59 [khungtaskd] - root 0 0 00:00:00 20-21:37:44 60 [oom_reaper] - root 0 0 00:00:00 20-21:37:44 61 [writeback] - root 0 0 00:00:37 20-21:37:44 62 [kcompactd0] - root 0 0 00:00:00 20-21:37:44 63 [ksmd] - root 0 0 00:01:17 20-21:37:44 64 [khugepaged] - root 0 0 00:00:00 20-21:37:44 84 [kintegrityd] - root 0 0 00:00:00 20-21:37:44 85 [kblockd] - root 0 0 00:00:00 20-21:37:44 86 [blkcg_punt_bio] - root 0 0 00:00:07 20-21:37:44 88 [kworker/0:1H-kblockd] - root 0 0 00:00:10 20-21:37:44 89 [kswapd0] - root 0 0 00:00:00 20-21:37:44 90 [kthrotld] - root 0 0 00:00:00 20-21:37:44 91 [acpi_thermal_pm] - root 0 0 00:00:00 20-21:37:44 92 [nvme-wq] - root 0 0 00:00:00 20-21:37:44 93 [nvme-reset-wq] - root 0 0 00:00:00 20-21:37:44 94 [nvme-delete-wq] - root 0 0 00:00:00 20-21:37:43 95 [ipv6_addrconf] - root 0 0 00:00:00 20-21:37:43 106 [kstrp] - root 0 0 00:00:00 20-21:37:43 114 [kworker/u17:0] - root 0 0 00:00:08 20-21:37:43 136 [kworker/1:1H-kblockd] - root 0 0 00:00:08 20-21:37:43 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 20-21:37:43 167 [ata_sff] - root 0 0 00:00:00 20-21:37:43 168 [scsi_eh_0] - root 0 0 00:00:00 20-21:37:43 169 [scsi_tmf_0] - root 0 0 00:00:00 20-21:37:43 170 [scsi_eh_1] - root 0 0 00:00:00 20-21:37:43 171 [scsi_tmf_1] - root 0 0 00:00:00 20-21:37:43 173 [scsi_eh_2] - root 0 0 00:00:00 20-21:37:43 174 [scsi_tmf_2] - root 0 0 00:00:07 20-21:37:43 175 [kworker/3:1H-kblockd] - root 0 0 00:00:07 20-21:37:43 178 [kworker/4:1H-kblockd] - root 0 0 00:00:07 20-21:37:43 184 [kworker/7:1H-kblockd] - root 0 0 00:00:07 20-21:37:43 196 [kworker/6:1H-kblockd] - root 0 0 00:04:56 20-21:37:43 206 [jbd2/sda1-8] - root 0 0 00:00:00 20-21:37:43 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 246272 185484 01:20:34 20-21:37:42 286 /lib/systemd/systemd-journald - root 0 0 00:00:07 20-21:37:42 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4264 00:00:04 20-21:37:42 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 20-21:37:42 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:15:38 20-21:37:42 430 /sbin/auditd 0::/system.slice/networking.service root 99884 4612 00:00:00 20-21:37:41 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4200 00:08:13 20-21:37:40 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3556 00:01:01 20-21:37:40 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 89316 01:24:46 20-21:37:40 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3256 00:00:00 20-21:37:40 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8704 00:11:28 20-21:37:40 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:03:56 20-21:37:40 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 02:28:29 20-21:37:40 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 22040 01:02:37 20-21:37:40 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6816 00:00:21 20-21:37:40 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 20-21:37:40 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 20-21:37:40 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 15916 00:00:00 20-21:37:40 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5556 00:06:27 20-21:37:40 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7660 4484 00:00:00 20-21:37:40 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 20-21:37:40 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 53048 00:01:09 20-21:37:40 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:08 20-21:37:40 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4168 00:00:47 20-21:37:40 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:13:16 20-21:37:04 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:02:24 20-21:37:04 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr - root 0 0 00:00:00 45:40 151307 [kworker/4:0-events] - root 0 0 00:00:00 42:32 221282 [kworker/2:1-events] 0::/system.slice/nginx.service root 67480 2072 00:00:00 20-21:27:38 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7860 00:08:23 20-21:27:38 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7252 00:00:05 20-21:27:38 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6404 00:00:01 20-21:27:38 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 5796 00:00:00 20-21:27:38 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 4376 00:00:00 20-21:27:38 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 3996 00:00:00 20-21:27:38 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4024 00:00:00 20-21:27:38 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 2876 00:00:00 20-21:27:38 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 20-21:27:38 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 19020 00:02:51 20-21:27:37 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 20-21:27:37 229054 [check_nginx] <defunct> - root 0 0 00:00:01 40:42 280138 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 36:05 402385 [kworker/7:1-cgroup_destroy] 0::/system.slice/packagekit.service root 288432 17016 00:00:15 20-18:31:20 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5780 00:00:01 20-18:31:20 540419 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 28:25 583499 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 26:25 641087 [kworker/3:1-events] 0::/system.slice/cron.service root 5708 3112 04:55:52 19-12:06:05 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 04:57:08 19-12:06:05 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 01:33:48 19-12:06:04 699456 /bin/bash /opt/imtlazarus/mdms/set_camara - root 0 0 00:00:00 15:48 904446 [kworker/0:2-events] - root 0 0 00:00:00 14:18 932575 [kworker/5:0-mm_percpu_wq] - root 0 0 00:00:00 10:28 1032955 [kworker/3:2-events] - root 0 0 00:00:00 10:13 1038751 [kworker/0:0-cgroup_destroy] - root 0 0 00:00:00 09:46 1049439 [kworker/6:0-events] - root 0 0 00:00:00 09:05 1065664 [kworker/5:1-events] - root 0 0 00:00:00 08:02 1091253 [kworker/7:0-events] - root 0 0 00:00:00 07:55 1098539 [kworker/1:1-events] - root 0 0 00:00:00 06:17 1145568 [kworker/4:1-events] - root 0 0 00:00:00 05:36 1159316 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 05:30 1160946 [kworker/2:0-events] - root 0 0 00:00:00 04:33 1179382 [kworker/6:1-events] - root 0 0 00:00:00 04:05 1188793 [kworker/0:1-events] - root 0 0 00:00:00 03:14 1204381 [kworker/3:0-cgroup_destroy] 0::/system.slice/apache2.service www-data 266692 49276 00:00:00 5-14:07:13 1207248 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 6128 3428 00:00:02 03:05 1207798 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 02:54 1215787 [kworker/7:2-events] 0::/system.slice/cron.service root 5908 2308 00:00:00 19:38:05 1223755 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874036 39940 00:00:04 19:38:05 1223784 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2448 00:00:00 19:38:05 1223859 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4972 00:00:00 19:38:05 1223898 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 19:38:04 1224073 sh ./webhookstart 0::/system.slice/cron.service root 40104 34112 00:00:09 19:38:04 1224100 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2532 00:00:03 19:38:01 1227162 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13248 00:00:00 19:38:01 1227164 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2440 00:00:03 19:38:01 1227174 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13296 00:00:00 19:38:01 1227179 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55348 00:01:05 19:38:01 1227585 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55276 00:01:07 19:38:01 1227615 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2424 00:00:00 19:37:59 1229724 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10916 00:00:06 19:37:59 1229729 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2340 00:00:00 19:37:59 1229751 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 11280 00:00:55 19:37:59 1229756 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2392 00:00:00 19:37:59 1229801 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 498044 51056 00:00:57 19:37:59 1229804 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2416 00:00:00 19:37:59 1229845 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10744 00:01:01 19:37:59 1229848 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2344 00:00:00 19:37:59 1229893 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11380 00:01:00 19:37:59 1229895 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2380 00:00:00 19:37:59 1229931 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12876 00:01:00 19:37:59 1229939 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2348 00:00:00 19:37:59 1229964 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12892 00:00:56 19:37:59 1229967 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 01:14 1266541 [kworker/1:2-events] - root 0 0 00:00:00 01:04 1270987 [kworker/u16:4-ext4-rsv-conversion] 0::/system.slice/cron.service root 4284 500 00:00:00 00:59 1273145 sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:45 1278103 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:43 1278865 /bin/sleep 60 - root 0 0 00:00:00 00:43 1278950 [kworker/5:2] 0::/system.slice/cron.service root 4284 500 00:00:00 00:19 1287841 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:16 1288808 /bin/sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:14 1289534 /bin/sleep 60 0::/system.slice/cron.service root 10888 3716 00:00:00 00:06 1292657 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 568 00:00:00 00:05 1292803 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 5840 3284 00:00:00 00:05 1292855 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine 0::/system.slice/cron.service root 5908 2416 00:00:00 00:05 1293509 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6368 00:00:00 00:05 1293520 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2380 00:00:00 00:05 1293689 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8492 00:00:00 00:05 1293700 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:04 1293747 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6408 00:00:00 00:04 1293749 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:04 1293786 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 492 00:00:00 00:04 1293787 /bin/sleep 5 0::/system.slice/cron.service root 84224 6452 00:00:00 00:04 1293791 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 500 00:00:00 00:04 1294109 sleep 10 0::/system.slice/cron.service root 4284 492 00:00:00 00:03 1294362 sleep 8 0::/system.slice/cron.service root 4284 496 00:00:00 00:02 1294902 sleep 2 0::/system.slice/cron.service root 4284 556 00:00:00 00:02 1294964 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 1295070 sleep 2 0::/system.slice/xinetd.service root 6204 3708 00:00:00 00:01 1295222 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 1295225 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 1295241 sleep 1 0::/system.slice/cron.service root 4284 492 00:00:00 00:01 1295283 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 1295385 sleep 1 0::/system.slice/cron.service root 5836 1388 00:00:00 00:00 1295482 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2928 00:00:00 00:00 1295484 jq .dispositivos.windows 0::/system.slice/cron.service root 4284 492 00:00:00 00:00 1295502 sleep 0.1 0::/system.slice/cron.service root 6128 1784 00:00:00 00:00 1295506 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2924 00:00:00 00:00 1295508 jq -c . 0::/system.slice/xinetd.service root 6676 1136 00:00:00 00:00 1295513 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 - root 0 0 00:00:04 02:23:52 1900257 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/cron.service root 5708 3064 00:01:02 16-12:47:05 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 00:51:08 16-12:47:05 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 04:09:06 16-12:47:05 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:19:27 16-12:47:05 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:13:44 16-12:47:05 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3108 01:22:10 16-12:47:05 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 00:59:18 16-12:47:05 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:15:05 16-12:47:05 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:12:54 16-12:47:05 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 49292 00:00:01 7-23:38:02 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 49432 00:00:01 7-23:38:02 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 49420 00:00:01 7-23:38:02 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 49436 00:00:01 7-23:38:02 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 49684 00:00:01 7-23:38:02 2711949 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5836 3084 00:36:58 13-07:32:04 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 49476 00:00:01 7-23:05:16 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50116 00:00:01 7-23:05:15 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 49028 00:00:01 7-11:56:18 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:02 01:07:32 3806410 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 01:02:44 3917052 [kworker/1:0-cgroup_destroy] 0::/system.slice/ntp.service ntp 74496 3344 00:00:03 15:02:22 3973752 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2234016 197688 01:51:28 15:02:20 3975012 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5556 2756 00:00:14 15:02:20 3975254 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3280 00:00:00 15:02:05 3985440 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 66288sec preferred_lft 66288sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-13 22:38 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f0b6cca33Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server micromdm.service loaded active running MicroMDM MDM Server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 12068 03:31:40 18-21:24:41 1 /sbin/init - root 0 0 00:00:01 18-21:24:41 2 [kthreadd] - root 0 0 00:00:00 18-21:24:41 3 [rcu_gp] - root 0 0 00:00:00 18-21:24:41 4 [rcu_par_gp] - root 0 0 00:00:00 18-21:24:41 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 18-21:24:41 8 [mm_percpu_wq] - root 0 0 00:00:00 18-21:24:41 9 [rcu_tasks_rude_] - root 0 0 00:00:00 18-21:24:41 10 [rcu_tasks_trace] - root 0 0 00:06:32 18-21:24:41 11 [ksoftirqd/0] - root 0 0 00:28:18 18-21:24:41 12 [rcu_sched] - root 0 0 00:00:10 18-21:24:41 13 [migration/0] - root 0 0 00:00:00 18-21:24:41 15 [cpuhp/0] - root 0 0 00:00:00 18-21:24:41 16 [cpuhp/1] - root 0 0 00:00:10 18-21:24:41 17 [migration/1] - root 0 0 00:06:30 18-21:24:41 18 [ksoftirqd/1] - root 0 0 00:00:00 18-21:24:41 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 18-21:24:41 21 [cpuhp/2] - root 0 0 00:00:10 18-21:24:41 22 [migration/2] - root 0 0 00:06:28 18-21:24:41 23 [ksoftirqd/2] - root 0 0 00:00:00 18-21:24:41 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 18-21:24:41 26 [cpuhp/3] - root 0 0 00:00:10 18-21:24:41 27 [migration/3] - root 0 0 00:06:28 18-21:24:41 28 [ksoftirqd/3] - root 0 0 00:00:00 18-21:24:41 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 18-21:24:41 31 [cpuhp/4] - root 0 0 00:00:10 18-21:24:41 32 [migration/4] - root 0 0 00:06:27 18-21:24:41 33 [ksoftirqd/4] - root 0 0 00:00:00 18-21:24:41 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 18-21:24:41 36 [cpuhp/5] - root 0 0 00:00:10 18-21:24:41 37 [migration/5] - root 0 0 00:06:33 18-21:24:41 38 [ksoftirqd/5] - root 0 0 00:00:00 18-21:24:41 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 18-21:24:41 41 [cpuhp/6] - root 0 0 00:00:10 18-21:24:41 42 [migration/6] - root 0 0 00:06:29 18-21:24:41 43 [ksoftirqd/6] - root 0 0 00:00:00 18-21:24:41 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 18-21:24:41 46 [cpuhp/7] - root 0 0 00:00:10 18-21:24:41 47 [migration/7] - root 0 0 00:06:30 18-21:24:41 48 [ksoftirqd/7] - root 0 0 00:00:00 18-21:24:41 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 18-21:24:41 56 [kdevtmpfs] - root 0 0 00:00:00 18-21:24:41 57 [netns] - root 0 0 00:04:02 18-21:24:41 58 [kauditd] - root 0 0 00:00:01 18-21:24:41 59 [khungtaskd] - root 0 0 00:00:00 18-21:24:41 60 [oom_reaper] - root 0 0 00:00:00 18-21:24:41 61 [writeback] - root 0 0 00:00:34 18-21:24:41 62 [kcompactd0] - root 0 0 00:00:00 18-21:24:41 63 [ksmd] - root 0 0 00:01:09 18-21:24:41 64 [khugepaged] - root 0 0 00:00:00 18-21:24:41 84 [kintegrityd] - root 0 0 00:00:00 18-21:24:41 85 [kblockd] - root 0 0 00:00:00 18-21:24:41 86 [blkcg_punt_bio] - root 0 0 00:00:07 18-21:24:41 88 [kworker/0:1H-kblockd] - root 0 0 00:00:08 18-21:24:41 89 [kswapd0] - root 0 0 00:00:00 18-21:24:41 90 [kthrotld] - root 0 0 00:00:00 18-21:24:41 91 [acpi_thermal_pm] - root 0 0 00:00:00 18-21:24:41 92 [nvme-wq] - root 0 0 00:00:00 18-21:24:41 93 [nvme-reset-wq] - root 0 0 00:00:00 18-21:24:41 94 [nvme-delete-wq] - root 0 0 00:00:00 18-21:24:40 95 [ipv6_addrconf] - root 0 0 00:00:00 18-21:24:40 106 [kstrp] - root 0 0 00:00:00 18-21:24:40 114 [kworker/u17:0] - root 0 0 00:00:07 18-21:24:40 136 [kworker/1:1H-kblockd] - root 0 0 00:00:07 18-21:24:40 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 18-21:24:40 167 [ata_sff] - root 0 0 00:00:00 18-21:24:40 168 [scsi_eh_0] - root 0 0 00:00:00 18-21:24:40 169 [scsi_tmf_0] - root 0 0 00:00:00 18-21:24:40 170 [scsi_eh_1] - root 0 0 00:00:00 18-21:24:40 171 [scsi_tmf_1] - root 0 0 00:00:00 18-21:24:40 173 [scsi_eh_2] - root 0 0 00:00:00 18-21:24:40 174 [scsi_tmf_2] - root 0 0 00:00:07 18-21:24:40 175 [kworker/3:1H-kblockd] - root 0 0 00:00:07 18-21:24:40 178 [kworker/4:1H-kblockd] - root 0 0 00:00:07 18-21:24:40 184 [kworker/7:1H-kblockd] - root 0 0 00:00:07 18-21:24:40 196 [kworker/6:1H-kblockd] - root 0 0 00:04:26 18-21:24:40 206 [jbd2/sda1-8] - root 0 0 00:00:00 18-21:24:40 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 262472 201476 01:12:40 18-21:24:39 286 /lib/systemd/systemd-journald - root 0 0 00:00:07 18-21:24:39 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4264 00:00:04 18-21:24:39 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 18-21:24:39 357 [cryptd] 0::/system.slice/auditd.service root 13328 1988 00:14:06 18-21:24:39 430 /sbin/auditd 0::/system.slice/networking.service root 99884 5016 00:00:00 18-21:24:38 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4232 00:07:26 18-21:24:37 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3556 00:00:55 18-21:24:37 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 89960 01:16:41 18-21:24:37 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3256 00:00:00 18-21:24:37 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8836 00:10:22 18-21:24:37 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6808 00:03:33 18-21:24:37 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2584 02:13:32 18-21:24:37 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 21624 00:56:34 18-21:24:37 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 6884 00:00:19 18-21:24:37 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 18-21:24:37 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 18-21:24:37 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 16964 00:00:00 18-21:24:37 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5580 00:05:49 18-21:24:37 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7660 5124 00:00:00 18-21:24:37 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 18-21:24:37 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 58228 00:01:03 18-21:24:37 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2416 00:00:07 18-21:24:37 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4448 00:00:43 18-21:24:37 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3116 00:12:00 18-21:24:01 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3064 00:02:10 18-21:24:01 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr - root 0 0 00:00:00 08:02 4053 [kworker/u16:0-flush-8:0] - root 0 0 00:00:00 07:40 17073 [kworker/0:2-events] - root 0 0 00:00:00 07:35 20032 [kworker/4:2-events] - root 0 0 00:00:00 05:45 68178 [kworker/3:2-events] - root 0 0 00:00:00 05:03 83738 [kworker/6:0-events] - root 0 0 00:00:00 04:37 98740 [kworker/2:0-events] - root 0 0 00:00:00 04:06 115967 [kworker/5:0-events] - root 0 0 00:00:00 03:24 133882 [kworker/7:0-events] - root 0 0 00:00:00 03:01 141580 [kworker/1:1-events] - root 0 0 00:00:00 02:21 154241 [kworker/0:1-events] 0::/system.slice/cron.service root 2392 560 00:00:00 00:59 181408 /bin/sleep 60 0::/system.slice/cron.service root 5908 2400 00:00:00 00:55 182581 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 11004 00:00:00 00:55 182585 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2376 00:00:00 00:55 182602 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10928 00:00:00 00:55 182604 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2328 00:00:00 00:55 182614 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8916 00:00:00 00:55 182617 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2368 00:00:00 00:55 182638 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10896 00:00:00 00:55 182642 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2356 00:00:00 00:55 182653 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8872 00:00:00 00:55 182657 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2356 00:00:00 00:55 182668 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10480 00:00:00 00:55 182670 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2380 00:00:00 00:55 182697 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6780 00:00:00 00:55 182699 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 568 00:00:00 00:45 185518 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:43 186156 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:37 188036 sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:16 194414 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:14 195015 /bin/sleep 60 0::/system.slice/cron.service root 4284 492 00:00:00 00:13 195383 sleep 60 - root 0 0 00:00:00 00:10 196458 [kworker/3:1-cgroup_destroy] 0::/system.slice/cron.service root 4284 492 00:00:00 00:03 198517 sleep 8 0::/system.slice/cron.service root 10888 3632 00:00:00 00:02 198702 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3628 00:00:00 00:02 198733 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3832 00:00:00 00:02 198767 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 504 00:00:00 00:02 198800 /bin/sh -c /opt/imtlazarus/updater/up_auto-updater > /dev/null 2>&1 0::/system.slice/cron.service root 5840 3260 00:00:00 00:02 198839 /bin/bash /opt/imtlazarus/updater/up_auto-updater 0::/system.slice/cron.service root 2480 580 00:00:00 00:02 198888 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 2480 568 00:00:00 00:02 198910 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5840 3180 00:00:00 00:02 198947 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine 0::/system.slice/cron.service root 5708 2968 00:00:00 00:02 199033 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1960 00:00:00 00:02 199289 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9976 00:00:00 00:02 199301 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 704 00:00:00 00:02 199302 grep 502 Bad Gateway 0::/system.slice/xinetd.service root 6148 3608 00:00:00 00:02 199311 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 5840 1496 00:00:00 00:02 199313 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11092 00:00:00 00:02 199326 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9002 --header Origin: https://127.0.0.1:9002 --header Sec-WebSocket-Key: MTgzMjk6MjA1ODE= --header Sec-WebSocket-Version: 13 https://127.0.0.1:9002/ -k 0::/system.slice/cron.service root 4288 496 00:00:00 00:02 199327 wc -l 0::/system.slice/cron.service root 5708 3308 00:00:00 00:02 199379 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 99632 31960 00:00:00 00:02 199386 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5708 3116 00:00:00 00:02 199440 /bin/bash /opt/imtlazarus/config/server-getinfo.scr 0::/system.slice/cron.service root 5708 3072 00:00:00 00:02 199441 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 3064 00:00:00 00:02 199446 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3032 00:00:00 00:02 199471 /bin/bash /opt/imtlazarus/updater/auto-updater AUTO_ONLY 0::/system.slice/cron.service root 6128 3496 00:00:00 00:02 199485 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5708 3020 00:00:00 00:02 199547 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 5708 3164 00:00:00 00:01 199859 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/micromdm-actusyncdep.scr 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 199916 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 199981 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 200027 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 200039 sleep 1 0::/system.slice/cron.service root 5708 2940 00:00:00 00:01 200082 /bin/bash /opt/imtlazarus/updater/updateutils/select-updateserver 0::/system.slice/cron.service root 5708 1528 00:00:00 00:01 200103 /bin/bash /opt/imtlazarus/updater/updateutils/select-updateserver 0::/system.slice/cron.service root 93704 9800 00:00:00 00:01 200106 curl --silent --connect-timeout 3 http://mirror1.infodesain.com/imtl-updater/test.php 0::/system.slice/cron.service root 5268 704 00:00:00 00:01 200107 grep SERVIDOR OK 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 200139 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 200174 sleep 40 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 200179 sleep 110 0::/system.slice/cron.service root 4284 492 00:00:00 00:01 200183 sleep 63 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 200225 sleep 63 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 200309 sleep 2 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 200411 sleep 10 0::/system.slice/cron.service root 5708 1488 00:00:00 00:00 200481 /bin/bash /opt/imtlazarus/config/server-getinfo.scr 0::/system.slice/cron.service root 5244 2984 00:00:00 00:00 200486 jq . + {smeducamos: (0)} 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 200488 sleep 0.1 0::/system.slice/cron.service root 5836 1416 00:00:00 00:00 200501 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 3000 00:00:00 00:00 200507 jq .dispositivos.windows 0::/system.slice/cron.service root 5836 1440 00:00:00 00:00 200509 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5244 2936 00:00:00 00:00 200514 jq .dispositivos.chromebook 0::/system.slice/cron.service root 6092 1604 00:00:00 00:00 200515 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5244 3012 00:00:00 00:00 200517 jq .dispositivos.android 0::/system.slice/xinetd.service root 6676 1132 00:00:00 00:00 200520 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 200521 sleep 0.1 0::/system.slice/nginx.service root 67480 2244 00:00:00 18-21:14:35 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 7496 00:07:44 18-21:14:35 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 6768 00:00:05 18-21:14:35 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 5220 00:00:01 18-21:14:35 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 6612 00:00:00 18-21:14:35 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 5152 00:00:00 18-21:14:35 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4772 00:00:00 18-21:14:35 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 4800 00:00:00 18-21:14:35 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 3652 00:00:00 18-21:14:35 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 18-21:14:35 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 23244 00:02:36 18-21:14:34 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 18-21:14:34 229054 [check_nginx] <defunct> 0::/system.slice/cron.service root 5908 2296 00:00:00 19:25:01 436388 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2324 00:00:00 19:25:01 436394 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 874036 43352 00:00:04 19:25:01 436419 /usr/sbin/node server.js 0::/system.slice/cron.service root 11988 5012 00:00:00 19:25:01 436436 sudo ./webhookstart 0::/system.slice/cron.service root 2480 512 00:00:00 19:25:01 436532 sh ./webhookstart 0::/system.slice/cron.service root 40104 34112 00:00:09 19:25:01 436575 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2384 00:00:03 19:24:58 439865 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13276 00:00:00 19:24:58 439870 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2368 00:00:03 19:24:58 439877 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13300 00:00:00 19:24:58 439881 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55212 00:01:07 19:24:57 440311 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 55132 00:01:07 19:24:57 440313 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2328 00:00:00 19:24:57 441233 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11016 00:00:06 19:24:57 441240 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2368 00:00:00 19:24:57 441270 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 9100 00:00:54 19:24:57 441274 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2380 00:00:00 19:24:57 441310 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 482540 41436 00:00:55 19:24:57 441314 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2344 00:00:00 19:24:57 441347 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11116 00:00:59 19:24:57 441351 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2356 00:00:00 19:24:56 441380 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12808 00:00:59 19:24:56 441384 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2368 00:00:00 19:24:56 441400 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 10768 00:00:59 19:24:56 441404 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2340 00:00:00 19:24:56 441434 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 10616 00:00:55 19:24:56 441442 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/packagekit.service root 288432 17736 00:00:13 18-18:18:17 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5864 00:00:01 18-18:18:17 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/cron.service root 5708 3112 04:25:42 17-11:53:02 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 04:26:46 17-11:53:02 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3284 01:24:09 17-11:53:01 699456 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/apache2.service www-data 266692 50132 00:00:00 3-13:54:10 1207248 /usr/sbin/apache2 -k start - root 0 0 00:00:02 01:40:25 1890848 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/ntp.service ntp 74496 3348 00:00:04 18:24:01 1980712 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 156508 02:16:26 18:23:59 1981984 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5708 3064 00:00:54 14-12:34:02 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3300 00:44:57 14-12:34:02 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 03:38:58 14-12:34:02 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:09:49 14-12:34:02 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3184 01:04:49 14-12:34:02 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3104 01:12:12 14-12:34:02 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3120 00:52:06 14-12:34:02 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3300 01:05:59 14-12:34:02 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 01:04:05 14-12:34:02 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 50652 00:00:00 5-23:24:59 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 50412 00:00:01 5-23:24:59 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50516 00:00:00 5-23:24:59 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50492 00:00:00 5-23:24:59 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 50912 00:00:01 5-23:24:59 2711949 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2540 00:04:15 11-07:19:47 3455181 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3020 00:00:17 11-07:19:02 3472144 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5836 3084 00:31:22 11-07:19:01 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 50236 00:00:01 5-22:52:13 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 50452 00:00:01 5-22:52:12 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 50296 00:00:00 5-11:43:15 3582124 /usr/sbin/apache2 -k start - root 0 0 00:00:00 32:01 3606156 [kworker/2:2-events] - root 0 0 00:00:00 28:29 3683021 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 26:49 3734653 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 19:51 3900044 [kworker/6:2-events] - root 0 0 00:00:00 16:59 3982406 [kworker/u16:4-events_unbound] - root 0 0 00:00:00 15:51 4008456 [kworker/5:1-events] - root 0 0 00:00:00 15:15 4021921 [kworker/1:2-events] - root 0 0 00:00:00 14:17 4042598 [kworker/0:0-events] - root 0 0 00:00:00 13:56 4050333 [kworker/4:0-events] - root 0 0 00:00:00 13:01 4076925 [kworker/6:1-events] - root 0 0 00:00:00 12:01 4103276 [kworker/3:0-cgroup_destroy] - root 0 0 00:00:00 11:35 4111644 [kworker/2:1-cgroup_destroy] - root 0 0 00:00:00 10:01 4142372 [kworker/5:2-rcu_gp] - root 0 0 00:00:00 09:24 4161337 [kworker/7:2-events] - root 0 0 00:00:00 08:37 4179853 [kworker/1:0-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 54219sec preferred_lft 54219sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-11 22:25 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f3f08ffaeFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB JOB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server micromdm.service loaded active running MicroMDM MDM Server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating start start OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 12096 03:09:48 16-22:48:41 1 /sbin/init - root 0 0 00:00:01 16-22:48:41 2 [kthreadd] - root 0 0 00:00:00 16-22:48:41 3 [rcu_gp] - root 0 0 00:00:00 16-22:48:41 4 [rcu_par_gp] - root 0 0 00:00:00 16-22:48:41 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 16-22:48:41 8 [mm_percpu_wq] - root 0 0 00:00:00 16-22:48:41 9 [rcu_tasks_rude_] - root 0 0 00:00:00 16-22:48:41 10 [rcu_tasks_trace] - root 0 0 00:05:50 16-22:48:41 11 [ksoftirqd/0] - root 0 0 00:25:23 16-22:48:41 12 [rcu_sched] - root 0 0 00:00:09 16-22:48:41 13 [migration/0] - root 0 0 00:00:00 16-22:48:41 15 [cpuhp/0] - root 0 0 00:00:00 16-22:48:41 16 [cpuhp/1] - root 0 0 00:00:09 16-22:48:41 17 [migration/1] - root 0 0 00:05:48 16-22:48:41 18 [ksoftirqd/1] - root 0 0 00:00:00 16-22:48:41 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 16-22:48:41 21 [cpuhp/2] - root 0 0 00:00:09 16-22:48:41 22 [migration/2] - root 0 0 00:05:46 16-22:48:41 23 [ksoftirqd/2] - root 0 0 00:00:00 16-22:48:41 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 16-22:48:41 26 [cpuhp/3] - root 0 0 00:00:09 16-22:48:41 27 [migration/3] - root 0 0 00:05:46 16-22:48:41 28 [ksoftirqd/3] - root 0 0 00:00:00 16-22:48:41 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 16-22:48:41 31 [cpuhp/4] - root 0 0 00:00:09 16-22:48:41 32 [migration/4] - root 0 0 00:05:46 16-22:48:41 33 [ksoftirqd/4] - root 0 0 00:00:00 16-22:48:41 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 16-22:48:41 36 [cpuhp/5] - root 0 0 00:00:09 16-22:48:41 37 [migration/5] - root 0 0 00:05:51 16-22:48:41 38 [ksoftirqd/5] - root 0 0 00:00:00 16-22:48:41 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 16-22:48:41 41 [cpuhp/6] - root 0 0 00:00:09 16-22:48:41 42 [migration/6] - root 0 0 00:05:47 16-22:48:41 43 [ksoftirqd/6] - root 0 0 00:00:00 16-22:48:41 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 16-22:48:41 46 [cpuhp/7] - root 0 0 00:00:09 16-22:48:41 47 [migration/7] - root 0 0 00:05:48 16-22:48:41 48 [ksoftirqd/7] - root 0 0 00:00:00 16-22:48:41 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 16-22:48:41 56 [kdevtmpfs] - root 0 0 00:00:00 16-22:48:41 57 [netns] - root 0 0 00:03:37 16-22:48:41 58 [kauditd] - root 0 0 00:00:01 16-22:48:41 59 [khungtaskd] - root 0 0 00:00:00 16-22:48:41 60 [oom_reaper] - root 0 0 00:00:00 16-22:48:41 61 [writeback] - root 0 0 00:00:30 16-22:48:41 62 [kcompactd0] - root 0 0 00:00:00 16-22:48:41 63 [ksmd] - root 0 0 00:01:02 16-22:48:41 64 [khugepaged] - root 0 0 00:00:00 16-22:48:41 84 [kintegrityd] - root 0 0 00:00:00 16-22:48:41 85 [kblockd] - root 0 0 00:00:00 16-22:48:41 86 [blkcg_punt_bio] - root 0 0 00:00:06 16-22:48:41 88 [kworker/0:1H-kblockd] - root 0 0 00:00:07 16-22:48:41 89 [kswapd0] - root 0 0 00:00:00 16-22:48:41 90 [kthrotld] - root 0 0 00:00:00 16-22:48:41 91 [acpi_thermal_pm] - root 0 0 00:00:00 16-22:48:41 92 [nvme-wq] - root 0 0 00:00:00 16-22:48:41 93 [nvme-reset-wq] - root 0 0 00:00:00 16-22:48:41 94 [nvme-delete-wq] - root 0 0 00:00:00 16-22:48:40 95 [ipv6_addrconf] - root 0 0 00:00:00 16-22:48:40 106 [kstrp] - root 0 0 00:00:00 16-22:48:40 114 [kworker/u17:0] - root 0 0 00:00:06 16-22:48:40 136 [kworker/1:1H-kblockd] - root 0 0 00:00:06 16-22:48:40 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 16-22:48:40 167 [ata_sff] - root 0 0 00:00:00 16-22:48:40 168 [scsi_eh_0] - root 0 0 00:00:00 16-22:48:40 169 [scsi_tmf_0] - root 0 0 00:00:00 16-22:48:40 170 [scsi_eh_1] - root 0 0 00:00:00 16-22:48:40 171 [scsi_tmf_1] - root 0 0 00:00:00 16-22:48:40 173 [scsi_eh_2] - root 0 0 00:00:00 16-22:48:40 174 [scsi_tmf_2] - root 0 0 00:00:06 16-22:48:40 175 [kworker/3:1H-kblockd] - root 0 0 00:00:06 16-22:48:40 178 [kworker/4:1H-kblockd] - root 0 0 00:00:06 16-22:48:40 184 [kworker/7:1H-kblockd] - root 0 0 00:00:06 16-22:48:40 196 [kworker/6:1H-kblockd] - root 0 0 00:03:58 16-22:48:40 206 [jbd2/sda1-8] - root 0 0 00:00:00 16-22:48:40 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 221740 159536 01:05:08 16-22:48:39 286 /lib/systemd/systemd-journald - root 0 0 00:00:06 16-22:48:39 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4276 00:00:04 16-22:48:39 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 16-22:48:39 357 [cryptd] 0::/system.slice/auditd.service root 13328 1996 00:12:39 16-22:48:39 430 /sbin/auditd 0::/system.slice/networking.service root 99884 5380 00:00:00 16-22:48:38 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4264 00:06:40 16-22:48:37 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3556 00:00:50 16-22:48:37 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 94724 01:08:49 16-22:48:37 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3256 00:00:00 16-22:48:37 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8852 00:09:18 16-22:48:37 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6824 00:03:11 16-22:48:37 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2592 01:59:05 16-22:48:37 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 22640 00:50:48 16-22:48:37 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 7292 00:00:18 16-22:48:37 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 16-22:48:37 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 16-22:48:37 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 18280 00:00:00 16-22:48:37 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5580 00:05:13 16-22:48:37 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7660 5544 00:00:00 16-22:48:37 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 16-22:48:37 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 62192 00:00:56 16-22:48:37 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2420 00:00:06 16-22:48:37 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4600 00:00:38 16-22:48:37 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3136 00:10:45 16-22:48:01 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3080 00:01:57 16-22:48:01 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 2408 00:00:00 16-22:38:35 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 8112 00:07:11 16-22:38:35 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7336 00:00:05 16-22:38:35 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 5788 00:00:00 16-22:38:35 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 7180 00:00:00 16-22:38:35 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 5720 00:00:00 16-22:38:35 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5340 00:00:00 16-22:38:35 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5368 00:00:00 16-22:38:35 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 4220 00:00:00 16-22:38:35 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 16-22:38:35 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 29216 00:02:20 16-22:38:34 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 16-22:38:34 229054 [check_nginx] <defunct> 0::/system.slice/packagekit.service root 288432 18564 00:00:12 16-19:42:17 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5900 00:00:01 16-19:42:17 540419 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 36:49 620936 [kworker/0:0-events] 0::/system.slice/cron.service root 5708 3120 03:56:19 15-13:17:02 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 03:57:14 15-13:17:02 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3304 01:14:48 15-13:17:01 699456 /bin/bash /opt/imtlazarus/mdms/set_camara - root 0 0 00:00:00 27:35 844771 [kworker/7:0-events] - root 0 0 00:00:00 25:24 900539 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 20:26 1027183 [kworker/3:0-events] - root 0 0 00:00:00 17:18 1110882 [kworker/1:0-events] 0::/system.slice/ntp.service ntp 74496 3368 00:00:04 19:48:01 1134629 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 176364 02:36:48 19:48:00 1135452 /usr/sbin/mariadbd - root 0 0 00:00:00 16:16 1136352 [kworker/2:1-events] - root 0 0 00:00:00 16:02 1141365 [kworker/u16:2-events_unbound] - root 0 0 00:00:00 13:17 1197335 [kworker/3:1+events] 0::/system.slice/apache2.service www-data 266692 51612 00:00:00 1-15:18:10 1207248 /usr/sbin/apache2 -k start - root 0 0 00:00:00 12:57 1209546 [kworker/7:2-events] - root 0 0 00:00:00 11:48 1248788 [kworker/4:2-events] - root 0 0 00:00:00 11:43 1250676 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 11:01 1266908 [kworker/0:1-events] - root 0 0 00:00:00 10:46 1272926 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 10:35 1276805 [kworker/5:1-events] - root 0 0 00:00:00 10:03 1288554 [kworker/1:1-events] - root 0 0 00:00:00 09:33 1300802 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 06:24 1377588 [kworker/6:1-cgroup_destroy] - root 0 0 00:00:00 06:13 1383483 [kworker/4:1-events] - root 0 0 00:00:00 05:21 1401707 [kworker/5:0-events] - root 0 0 00:00:00 04:29 1418705 [kworker/2:0-events] 0::/system.slice/cron.service root 6128 3536 00:00:03 04:02 1427520 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 03:57 1432861 [kworker/7:1-events] - root 0 0 00:00:00 03:42 1440855 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 03:01 1456607 [kworker/3:2-events] - root 0 0 00:00:00 02:18 1485893 [kworker/0:2-events] - root 0 0 00:00:00 01:10 1514914 [kworker/6:0-events] 0::/system.slice/cron.service root 2392 492 00:00:00 00:54 1521796 /bin/sleep 60 0::/system.slice/cron.service root 2392 556 00:00:00 00:52 1522488 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:51 1522903 sleep 60 0::/system.slice/cron.service root 5908 2372 00:00:00 00:48 1523954 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6852 00:00:00 00:48 1523958 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2408 00:00:00 00:48 1523973 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8980 00:00:00 00:48 1523977 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:48 1523995 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6848 00:00:00 00:48 1523998 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:48 1524027 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6752 00:00:00 00:48 1524031 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2320 00:00:00 00:48 1524055 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10568 00:00:00 00:48 1524057 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:48 1524067 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10480 00:00:00 00:48 1524069 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 00:48 1524082 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6776 00:00:00 00:48 1524084 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 500 00:00:00 00:39 1527436 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:37 1528172 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:19 1534833 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:09 1538281 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:07 1539022 /bin/sleep 60 0::/system.slice/cron.service root 11124 3844 00:00:00 00:02 1540997 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 00:02 1541081 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 5840 3384 00:00:00 00:02 1541114 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine 0::/system.slice/cron.service root 5840 3144 00:00:00 00:02 1541440 /bin/bash /opt/imtlazarus/config/server-getinfo.scr 0::/system.slice/xinetd.service root 6172 3664 00:00:00 00:02 1541493 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 5840 1496 00:00:00 00:01 1541811 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11036 00:00:00 00:01 1541822 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8993 --header Origin: https://127.0.0.1:8993 --header Sec-WebSocket-Key: ODM3ODo5MDc4 --header Sec-WebSocket-Version: 13 https://127.0.0.1:8993/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:01 1541823 wc -l 0::/system.slice/cron.service root 99632 31884 00:00:00 00:01 1541911 /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 1542031 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 1542101 sleep 2 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 1542151 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 1542165 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 1542292 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 1542301 sleep 10 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 1542401 sleep 8 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 1542619 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 1542694 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1542714 sleep 2 0::/system.slice/cron.service root 5836 1388 00:00:00 00:00 1542733 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 3008 00:00:00 00:00 1542735 jq .dispositivos.windows 0::/system.slice/cron.service root 5840 1508 00:00:00 00:00 1542744 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5244 2964 00:00:00 00:00 1542747 jq .dispositivos.ios 0::/system.slice/cron.service root 6128 1864 00:00:00 00:00 1542754 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 3000 00:00:00 00:00 1542756 jq -c . 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 1542760 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 556 00:00:00 00:00 1542764 sleep 0.1 0::/system.slice/cron.service root 5708 3064 00:00:47 12-13:58:02 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3304 00:38:56 12-13:58:02 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 03:09:37 12-13:58:02 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 01:00:29 12-13:58:02 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3204 00:56:09 12-13:58:02 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3104 01:02:32 12-13:58:02 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 00:45:07 12-13:58:02 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3304 00:57:10 12-13:58:02 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 00:55:30 12-13:58:02 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 52316 00:00:00 4-00:48:59 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 51956 00:00:00 4-00:48:59 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51912 00:00:00 4-00:48:59 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 51940 00:00:00 4-00:48:59 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 52452 00:00:00 4-00:48:59 2711949 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2552 00:03:30 9-08:43:47 3455181 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3020 00:00:14 9-08:43:02 3472144 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5836 3084 00:25:59 9-08:43:01 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 51612 00:00:00 4-00:16:13 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 52004 00:00:00 4-00:16:12 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266616 51720 00:00:00 3-13:07:15 3582124 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2248 00:00:00 20:49:01 3792204 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874680 41792 00:00:04 20:49:01 3792222 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2384 00:00:00 20:49:01 3792574 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 5064 00:00:00 20:49:01 3792606 sudo ./webhookstart 0::/system.slice/cron.service root 2480 572 00:00:00 20:49:01 3792681 sh ./webhookstart 0::/system.slice/cron.service root 40104 35000 00:00:09 20:49:01 3792686 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2324 00:00:03 20:48:58 3796035 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13280 00:00:00 20:48:58 3796044 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2432 00:00:03 20:48:58 3796050 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13264 00:00:00 20:48:58 3796055 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55480 00:01:10 20:48:57 3796369 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 57348 00:01:10 20:48:57 3796407 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2360 00:00:00 20:48:57 3797037 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8836 00:00:06 20:48:57 3797040 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2356 00:00:00 20:48:57 3797091 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 11852 00:00:56 20:48:57 3797095 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2384 00:00:00 20:48:57 3797126 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 482540 39552 00:00:58 20:48:57 3797130 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2352 00:00:00 20:48:57 3797163 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10500 00:01:01 20:48:57 3797168 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2376 00:00:00 20:48:57 3797189 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11436 00:01:01 20:48:57 3797195 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2380 00:00:00 20:48:57 3797240 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 11524 00:01:01 20:48:57 3797242 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2328 00:00:00 20:48:56 3797283 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 9112 00:00:58 20:48:56 3797292 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 70679sec preferred_lft 70679sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-09 23:49 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730faf6abf4cFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 12120 02:48:13 15-00:06:22 1 /sbin/init - root 0 0 00:00:01 15-00:06:22 2 [kthreadd] - root 0 0 00:00:00 15-00:06:22 3 [rcu_gp] - root 0 0 00:00:00 15-00:06:22 4 [rcu_par_gp] - root 0 0 00:00:00 15-00:06:22 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 15-00:06:22 8 [mm_percpu_wq] - root 0 0 00:00:00 15-00:06:22 9 [rcu_tasks_rude_] - root 0 0 00:00:00 15-00:06:22 10 [rcu_tasks_trace] - root 0 0 00:05:08 15-00:06:22 11 [ksoftirqd/0] - root 0 0 00:22:31 15-00:06:22 12 [rcu_sched] - root 0 0 00:00:08 15-00:06:22 13 [migration/0] - root 0 0 00:00:00 15-00:06:22 15 [cpuhp/0] - root 0 0 00:00:00 15-00:06:22 16 [cpuhp/1] - root 0 0 00:00:08 15-00:06:22 17 [migration/1] - root 0 0 00:05:08 15-00:06:22 18 [ksoftirqd/1] - root 0 0 00:00:00 15-00:06:22 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 15-00:06:22 21 [cpuhp/2] - root 0 0 00:00:08 15-00:06:22 22 [migration/2] - root 0 0 00:05:06 15-00:06:22 23 [ksoftirqd/2] - root 0 0 00:00:00 15-00:06:22 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 15-00:06:22 26 [cpuhp/3] - root 0 0 00:00:08 15-00:06:22 27 [migration/3] - root 0 0 00:05:05 15-00:06:22 28 [ksoftirqd/3] - root 0 0 00:00:00 15-00:06:22 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 15-00:06:22 31 [cpuhp/4] - root 0 0 00:00:08 15-00:06:22 32 [migration/4] - root 0 0 00:05:05 15-00:06:22 33 [ksoftirqd/4] - root 0 0 00:00:00 15-00:06:22 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 15-00:06:22 36 [cpuhp/5] - root 0 0 00:00:08 15-00:06:22 37 [migration/5] - root 0 0 00:05:10 15-00:06:22 38 [ksoftirqd/5] - root 0 0 00:00:00 15-00:06:22 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 15-00:06:22 41 [cpuhp/6] - root 0 0 00:00:08 15-00:06:22 42 [migration/6] - root 0 0 00:05:07 15-00:06:22 43 [ksoftirqd/6] - root 0 0 00:00:00 15-00:06:22 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 15-00:06:22 46 [cpuhp/7] - root 0 0 00:00:08 15-00:06:22 47 [migration/7] - root 0 0 00:05:07 15-00:06:22 48 [ksoftirqd/7] - root 0 0 00:00:00 15-00:06:22 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 15-00:06:22 56 [kdevtmpfs] - root 0 0 00:00:00 15-00:06:22 57 [netns] - root 0 0 00:03:13 15-00:06:22 58 [kauditd] - root 0 0 00:00:01 15-00:06:22 59 [khungtaskd] - root 0 0 00:00:00 15-00:06:22 60 [oom_reaper] - root 0 0 00:00:00 15-00:06:22 61 [writeback] - root 0 0 00:00:27 15-00:06:22 62 [kcompactd0] - root 0 0 00:00:00 15-00:06:22 63 [ksmd] - root 0 0 00:00:55 15-00:06:22 64 [khugepaged] - root 0 0 00:00:00 15-00:06:22 84 [kintegrityd] - root 0 0 00:00:00 15-00:06:22 85 [kblockd] - root 0 0 00:00:00 15-00:06:22 86 [blkcg_punt_bio] - root 0 0 00:00:05 15-00:06:22 88 [kworker/0:1H-kblockd] - root 0 0 00:00:06 15-00:06:22 89 [kswapd0] - root 0 0 00:00:00 15-00:06:22 90 [kthrotld] - root 0 0 00:00:00 15-00:06:22 91 [acpi_thermal_pm] - root 0 0 00:00:00 15-00:06:22 92 [nvme-wq] - root 0 0 00:00:00 15-00:06:22 93 [nvme-reset-wq] - root 0 0 00:00:00 15-00:06:22 94 [nvme-delete-wq] - root 0 0 00:00:00 15-00:06:21 95 [ipv6_addrconf] - root 0 0 00:00:00 15-00:06:21 106 [kstrp] - root 0 0 00:00:00 15-00:06:21 114 [kworker/u17:0] - root 0 0 00:00:05 15-00:06:21 136 [kworker/1:1H-kblockd] - root 0 0 00:00:06 15-00:06:21 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 15-00:06:21 167 [ata_sff] - root 0 0 00:00:00 15-00:06:21 168 [scsi_eh_0] - root 0 0 00:00:00 15-00:06:21 169 [scsi_tmf_0] - root 0 0 00:00:00 15-00:06:21 170 [scsi_eh_1] - root 0 0 00:00:00 15-00:06:21 171 [scsi_tmf_1] - root 0 0 00:00:00 15-00:06:21 173 [scsi_eh_2] - root 0 0 00:00:00 15-00:06:21 174 [scsi_tmf_2] - root 0 0 00:00:05 15-00:06:21 175 [kworker/3:1H-kblockd] - root 0 0 00:00:05 15-00:06:21 178 [kworker/4:1H-kblockd] - root 0 0 00:00:05 15-00:06:21 184 [kworker/7:1H-kblockd] - root 0 0 00:00:05 15-00:06:21 196 [kworker/6:1H-kblockd] - root 0 0 00:03:30 15-00:06:21 206 [jbd2/sda1-8] - root 0 0 00:00:00 15-00:06:21 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 360912 275228 00:57:44 15-00:06:20 286 /lib/systemd/systemd-journald - root 0 0 00:00:05 15-00:06:20 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4276 00:00:03 15-00:06:20 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 15-00:06:20 357 [cryptd] 0::/system.slice/auditd.service root 13328 1996 00:11:14 15-00:06:20 430 /sbin/auditd 0::/system.slice/networking.service root 99884 5468 00:00:00 15-00:06:19 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4264 00:05:55 15-00:06:18 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3556 00:00:44 15-00:06:18 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1001304 98796 01:01:04 15-00:06:18 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3256 00:00:00 15-00:06:18 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8892 00:08:16 15-00:06:18 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6824 00:02:50 15-00:06:18 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2592 01:44:48 15-00:06:18 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395460 22680 00:45:10 15-00:06:18 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 7360 00:00:16 15-00:06:18 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 15-00:06:18 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 15-00:06:18 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 18280 00:00:00 15-00:06:18 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 11400 5600 00:04:37 15-00:06:18 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7448 5372 00:00:00 15-00:06:18 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 15-00:06:18 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 265332 64100 00:00:50 15-00:06:18 902 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2420 00:00:06 15-00:06:18 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4660 00:00:34 15-00:06:18 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3136 00:09:31 15-00:05:42 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3080 00:01:43 15-00:05:42 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 2576 00:00:00 14-23:56:16 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 8352 00:06:44 14-23:56:16 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7576 00:00:04 14-23:56:16 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 6028 00:00:00 14-23:56:16 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 7420 00:00:00 14-23:56:16 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 5960 00:00:00 14-23:56:16 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5580 00:00:00 14-23:56:16 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5608 00:00:00 14-23:56:16 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 4460 00:00:00 14-23:56:16 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 14-23:56:16 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 31104 00:02:06 14-23:56:15 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 14-23:56:15 229054 [check_nginx] <defunct> 0::/system.slice/ntp.service ntp 74496 3788 00:00:04 21:05:42 262292 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 167520 02:30:46 21:05:40 263118 /usr/sbin/mariadbd 0::/system.slice/packagekit.service root 288432 18580 00:00:11 14-20:59:58 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5900 00:00:01 14-20:59:58 540419 /usr/libexec/polkitd --no-debug 0::/system.slice/cron.service root 5708 3120 03:27:07 13-14:34:43 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 2996 03:27:53 13-14:34:43 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 6092 3304 01:05:32 13-14:34:42 699456 /bin/bash /opt/imtlazarus/mdms/set_camara - root 0 0 00:00:00 01:13:18 760933 [kworker/1:0-events] - root 0 0 00:00:02 01:11:31 797147 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 01:02:10 1035622 [kworker/5:1-cgroup_destroy] - root 0 0 00:00:00 38:17 1641870 [kworker/2:0-cgroup_destroy] - root 0 0 00:00:00 35:24 1710149 [kworker/3:2-cgroup_destroy] - root 0 0 00:00:00 28:42 1885121 [kworker/4:2-events] - root 0 0 00:00:00 23:43 2007339 [kworker/7:2-events] - root 0 0 00:00:00 20:42 2080692 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 19:31 2119552 [kworker/6:0-events] - root 0 0 00:00:00 12:43 2280469 [kworker/0:1-events] - root 0 0 00:00:00 11:20 2309369 [kworker/4:1-events] - root 0 0 00:00:00 10:59 2321794 [kworker/3:0-events] - root 0 0 00:00:00 10:43 2331529 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 08:33 2390782 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 08:17 2396729 [kworker/5:2-events] - root 0 0 00:00:00 07:40 2411550 [kworker/2:1-events] - root 0 0 00:00:00 07:30 2415425 [kworker/0:0-events] - root 0 0 00:00:00 06:53 2428998 [kworker/7:1-events] - root 0 0 00:00:00 05:45 2468283 [kworker/1:1-events] - root 0 0 00:00:00 05:08 2486693 [kworker/3:1-cgroup_destroy] - root 0 0 00:00:00 04:42 2495423 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 04:21 2502192 [kworker/4:0-events] - root 0 0 00:00:00 03:24 2520816 [kworker/6:1-events] - root 0 0 00:00:00 02:58 2528849 [kworker/5:0-mm_percpu_wq] - root 0 0 00:00:00 02:37 2536385 [kworker/2:2-events] - root 0 0 00:00:00 02:00 2547896 [kworker/0:2-events] 0::/system.slice/cron.service root 10884 3640 00:00:00 01:43 2552852 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 508 00:00:00 01:43 2553254 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2976 00:00:00 01:43 2553329 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 2024 00:00:00 01:43 2553444 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9980 00:00:00 01:43 2553457 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 640 00:00:00 01:43 2553458 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3132 00:00:00 01:43 2553547 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 6128 3708 00:00:01 01:43 2553604 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 4284 496 00:00:00 01:42 2554243 sleep 104 - root 0 0 00:00:00 01:18 2563911 [kworker/7:0-events] 0::/system.slice/cron.service root 4284 504 00:00:00 00:48 2578054 sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:41 2581636 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:39 2582467 /bin/sleep 60 0::/system.slice/cron.service root 5908 2360 00:00:00 00:35 2583938 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10964 00:00:00 00:35 2583941 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:35 2583956 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10848 00:00:00 00:35 2583960 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2300 00:00:00 00:35 2583976 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8920 00:00:00 00:35 2583978 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2332 00:00:00 00:35 2583997 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8808 00:00:00 00:35 2584001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2336 00:00:00 00:35 2584013 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10956 00:00:00 00:35 2584017 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2336 00:00:00 00:35 2584034 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10924 00:00:00 00:35 2584037 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:35 2584052 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8828 00:00:00 00:35 2584054 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 496 00:00:00 00:26 2587472 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:24 2588223 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:07 2594673 sleep 8 0::/system.slice/cron.service root 4284 560 00:00:00 00:03 2596209 sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 2596558 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2596655 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2596881 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2596891 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 2596897 sleep 1 0::/system.slice/xinetd.service root 6188 3692 00:00:00 00:01 2596931 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 5840 1496 00:00:00 00:01 2596938 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11008 00:00:00 00:01 2596939 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8225 --header Origin: https://127.0.0.1:8225 --header Sec-WebSocket-Key: MjcxMTQ6MjcwNjE= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8225/ -k 0::/system.slice/cron.service root 4288 560 00:00:00 00:01 2596941 wc -l 0::/system.slice/cron.service root 4080 3168 00:00:00 00:01 2596957 /bin/bash ./statusdispolock 0::/system.slice/cron.service root 2392 500 00:00:00 00:01 2596980 /bin/sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2597111 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2597162 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2597205 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2597212 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2597221 sleep 0.1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2597230 sleep 0.1 0::/system.slice/cron.service root 5244 2928 00:00:00 00:00 2597233 jq -c .[] 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 2597246 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 3064 00:00:40 10-15:15:43 2661703 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5968 3304 00:32:58 10-15:15:43 2661796 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5836 2992 02:40:25 10-15:15:43 2661818 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5964 3140 00:51:12 10-15:15:43 2661841 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5840 3204 00:47:33 10-15:15:43 2661853 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5840 3104 00:52:57 10-15:15:43 2661861 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5972 3124 00:38:13 10-15:15:43 2661926 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 6088 3304 00:48:26 10-15:15:43 2661930 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5840 3160 00:47:00 10-15:15:43 2661953 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/apache2.service www-data 266748 52604 00:00:00 2-02:06:40 2711941 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266696 52184 00:00:00 2-02:06:40 2711945 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 51888 00:00:00 2-02:06:40 2711946 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266748 52156 00:00:00 2-02:06:40 2711947 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266744 52748 00:00:00 2-02:06:40 2711949 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2360 00:00:00 22:06:42 2913914 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 4984 00:00:00 22:06:42 2913931 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 22:06:42 2913976 sh ./webhookstart 0::/system.slice/cron.service root 40104 35332 00:00:10 22:06:42 2914003 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2384 00:00:03 22:06:38 2917546 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13300 00:00:00 22:06:38 2917552 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2404 00:00:03 22:06:38 2917561 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13248 00:00:00 22:06:38 2917565 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55464 00:01:14 22:06:38 2918012 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 55300 00:01:14 22:06:38 2918043 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2544 00:00:00 22:06:36 2920424 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8988 00:00:06 22:06:36 2920426 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2364 00:00:00 22:06:36 2920461 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9488 00:01:01 22:06:36 2920468 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2376 00:00:00 22:06:36 2920523 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 490420 45140 00:01:02 22:06:36 2920527 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2368 00:00:00 22:06:36 2920572 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 9224 00:01:06 22:06:36 2920576 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2312 00:00:00 22:06:36 2920612 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12540 00:01:05 22:06:36 2920616 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2328 00:00:00 22:06:35 2920673 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 11440 00:01:05 22:06:35 2920679 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2420 00:00:00 22:06:35 2920735 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11276 00:01:01 22:06:35 2920740 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2372 00:00:00 22:05:43 2942299 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875060 44692 00:00:04 22:05:43 2942311 /usr/sbin/node server.js 0::/system.slice/cron.service root 5556 2552 00:02:47 7-10:01:28 3455181 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3020 00:00:11 7-10:00:43 3472144 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5836 3084 00:20:38 7-10:00:42 3472219 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 266676 51840 00:00:00 2-01:33:54 3539490 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266676 52272 00:00:00 2-01:33:53 3539795 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 266604 51592 00:00:00 1-14:24:56 3582124 /usr/sbin/apache2 -k start Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 84027sec preferred_lft 84027sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-11-08 01:06 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f43a126ceFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating auto-restart OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 174768 12144 00:44:54 3-23:29:35 1 /sbin/init - root 0 0 00:00:00 3-23:29:35 2 [kthreadd] - root 0 0 00:00:00 3-23:29:35 3 [rcu_gp] - root 0 0 00:00:00 3-23:29:35 4 [rcu_par_gp] - root 0 0 00:00:00 3-23:29:35 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 3-23:29:35 8 [mm_percpu_wq] - root 0 0 00:00:00 3-23:29:35 9 [rcu_tasks_rude_] - root 0 0 00:00:00 3-23:29:35 10 [rcu_tasks_trace] - root 0 0 00:01:06 3-23:29:35 11 [ksoftirqd/0] - root 0 0 00:05:54 3-23:29:35 12 [rcu_sched] - root 0 0 00:00:01 3-23:29:35 13 [migration/0] - root 0 0 00:00:00 3-23:29:35 15 [cpuhp/0] - root 0 0 00:00:00 3-23:29:35 16 [cpuhp/1] - root 0 0 00:00:01 3-23:29:35 17 [migration/1] - root 0 0 00:01:06 3-23:29:35 18 [ksoftirqd/1] - root 0 0 00:00:00 3-23:29:35 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 3-23:29:35 21 [cpuhp/2] - root 0 0 00:00:01 3-23:29:35 22 [migration/2] - root 0 0 00:01:05 3-23:29:35 23 [ksoftirqd/2] - root 0 0 00:00:00 3-23:29:35 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 3-23:29:35 26 [cpuhp/3] - root 0 0 00:00:01 3-23:29:35 27 [migration/3] - root 0 0 00:01:06 3-23:29:35 28 [ksoftirqd/3] - root 0 0 00:00:00 3-23:29:35 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 3-23:29:35 31 [cpuhp/4] - root 0 0 00:00:01 3-23:29:35 32 [migration/4] - root 0 0 00:01:05 3-23:29:35 33 [ksoftirqd/4] - root 0 0 00:00:00 3-23:29:35 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 3-23:29:35 36 [cpuhp/5] - root 0 0 00:00:01 3-23:29:35 37 [migration/5] - root 0 0 00:01:07 3-23:29:35 38 [ksoftirqd/5] - root 0 0 00:00:00 3-23:29:35 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 3-23:29:35 41 [cpuhp/6] - root 0 0 00:00:01 3-23:29:35 42 [migration/6] - root 0 0 00:01:06 3-23:29:35 43 [ksoftirqd/6] - root 0 0 00:00:00 3-23:29:35 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 3-23:29:35 46 [cpuhp/7] - root 0 0 00:00:01 3-23:29:35 47 [migration/7] - root 0 0 00:01:06 3-23:29:35 48 [ksoftirqd/7] - root 0 0 00:00:00 3-23:29:35 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 3-23:29:35 56 [kdevtmpfs] - root 0 0 00:00:00 3-23:29:35 57 [netns] - root 0 0 00:00:49 3-23:29:35 58 [kauditd] - root 0 0 00:00:00 3-23:29:35 59 [khungtaskd] - root 0 0 00:00:00 3-23:29:35 60 [oom_reaper] - root 0 0 00:00:00 3-23:29:35 61 [writeback] - root 0 0 00:00:07 3-23:29:35 62 [kcompactd0] - root 0 0 00:00:00 3-23:29:35 63 [ksmd] - root 0 0 00:00:14 3-23:29:35 64 [khugepaged] - root 0 0 00:00:00 3-23:29:35 84 [kintegrityd] - root 0 0 00:00:00 3-23:29:35 85 [kblockd] - root 0 0 00:00:00 3-23:29:35 86 [blkcg_punt_bio] - root 0 0 00:00:01 3-23:29:35 88 [kworker/0:1H-kblockd] - root 0 0 00:00:00 3-23:29:35 89 [kswapd0] - root 0 0 00:00:00 3-23:29:35 90 [kthrotld] - root 0 0 00:00:00 3-23:29:35 91 [acpi_thermal_pm] - root 0 0 00:00:00 3-23:29:35 92 [nvme-wq] - root 0 0 00:00:00 3-23:29:35 93 [nvme-reset-wq] - root 0 0 00:00:00 3-23:29:35 94 [nvme-delete-wq] - root 0 0 00:00:00 3-23:29:34 95 [ipv6_addrconf] - root 0 0 00:00:00 3-23:29:34 106 [kstrp] - root 0 0 00:00:00 3-23:29:34 114 [kworker/u17:0] - root 0 0 00:00:01 3-23:29:34 136 [kworker/1:1H-kblockd] - root 0 0 00:00:01 3-23:29:34 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 3-23:29:34 167 [ata_sff] - root 0 0 00:00:00 3-23:29:34 168 [scsi_eh_0] - root 0 0 00:00:00 3-23:29:34 169 [scsi_tmf_0] - root 0 0 00:00:00 3-23:29:34 170 [scsi_eh_1] - root 0 0 00:00:00 3-23:29:34 171 [scsi_tmf_1] - root 0 0 00:00:00 3-23:29:34 173 [scsi_eh_2] - root 0 0 00:00:00 3-23:29:34 174 [scsi_tmf_2] - root 0 0 00:00:01 3-23:29:34 175 [kworker/3:1H-kblockd] - root 0 0 00:00:01 3-23:29:34 178 [kworker/4:1H-kblockd] - root 0 0 00:00:01 3-23:29:34 184 [kworker/7:1H-kblockd] - root 0 0 00:00:01 3-23:29:34 196 [kworker/6:1H-kblockd] - root 0 0 00:00:49 3-23:29:34 206 [jbd2/sda1-8] - root 0 0 00:00:00 3-23:29:34 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 361740 287604 00:14:40 3-23:29:33 286 /lib/systemd/systemd-journald - root 0 0 00:00:01 3-23:29:33 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 4284 00:00:01 3-23:29:33 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 3-23:29:33 357 [cryptd] 0::/system.slice/auditd.service root 13328 2016 00:02:54 3-23:29:33 430 /sbin/auditd 0::/system.slice/networking.service root 99884 5584 00:00:00 3-23:29:32 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4356 00:01:34 3-23:29:31 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3560 00:00:11 3-23:29:31 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 999248 109348 00:16:02 3-23:29:31 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3260 00:00:00 3-23:29:31 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8768 00:02:08 3-23:29:31 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6832 00:00:44 3-23:29:31 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2600 00:23:04 3-23:29:31 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395204 22536 00:11:25 3-23:29:31 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 7492 00:00:04 3-23:29:31 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 3-23:29:31 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 3-23:29:31 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 19584 00:00:00 3-23:29:31 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 10792 5092 00:01:10 3-23:29:31 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7448 5428 00:00:00 3-23:29:31 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 3-23:29:31 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 260940 57352 00:00:13 3-23:29:31 902 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261948 48840 00:00:00 3-23:29:31 1067 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 48952 00:00:00 3-23:29:31 1068 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 49304 00:00:00 3-23:29:31 1069 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 48912 00:00:00 3-23:29:31 1070 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 48808 00:00:00 3-23:29:31 1071 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2428 00:00:01 3-23:29:31 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4752 00:00:09 3-23:29:31 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3272 00:02:29 3-23:28:55 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3224 00:00:27 3-23:28:55 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr - root 0 0 00:00:00 01:19:11 48949 [kworker/5:1-events] 0::/system.slice/nginx.service root 67480 3084 00:00:00 3-23:19:29 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68892 8452 00:02:22 3-23:19:29 228905 nginx: worker process 0::/system.slice/nginx.service www-data 68388 7520 00:00:02 3-23:19:29 228906 nginx: worker process 0::/system.slice/nginx.service www-data 68096 7428 00:00:00 3-23:19:29 228907 nginx: worker process 0::/system.slice/nginx.service www-data 68204 7436 00:00:00 3-23:19:29 228908 nginx: worker process 0::/system.slice/nginx.service www-data 68220 7364 00:00:00 3-23:19:29 228909 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6920 00:00:00 3-23:19:29 228910 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7008 00:00:00 3-23:19:29 228911 nginx: worker process 0::/system.slice/nginx.service www-data 68100 5864 00:00:00 3-23:19:29 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 3-23:19:29 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 34684 00:00:35 3-23:19:28 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 3-23:19:28 229054 [check_nginx] <defunct> 0::/system.slice/cron.service root 5908 2292 00:00:00 21:29:55 322003 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875060 42692 00:00:05 21:29:55 322019 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2300 00:00:00 21:29:55 322264 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 4740 00:00:00 21:29:55 322280 sudo ./webhookstart 0::/system.slice/cron.service root 2480 512 00:00:00 21:29:55 322354 sh ./webhookstart 0::/system.slice/cron.service root 40104 34444 00:00:11 21:29:55 322376 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2440 00:00:00 21:29:54 322684 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 380240 10572 00:00:06 21:29:54 322693 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2400 00:00:00 21:29:54 322736 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 13044 00:00:59 21:29:54 322741 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2360 00:00:00 21:29:54 322792 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 478184 35544 00:01:00 21:29:54 322804 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2340 00:00:00 21:29:54 322865 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 13280 00:01:05 21:29:54 322871 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2440 00:00:00 21:29:54 322925 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13312 00:01:04 21:29:54 322932 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2352 00:00:00 21:29:54 322965 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 14680 00:01:04 21:29:54 322967 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2416 00:00:00 21:29:54 323008 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12828 00:01:01 21:29:54 323014 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2448 00:00:03 21:29:52 325477 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13236 00:00:00 21:29:52 325482 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2388 00:00:03 21:29:52 325493 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13224 00:00:00 21:29:52 325496 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 57152 00:01:21 21:29:51 325915 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 55432 00:01:20 21:29:51 325941 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/packagekit.service root 288432 19420 00:00:03 3-20:23:11 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 5940 00:00:00 3-20:23:11 540419 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 44:30 642713 [kworker/u16:3-ext4-rsv-conversion] 0::/system.slice/cron.service root 5556 2728 00:00:59 2-13:58:11 694437 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3244 00:39:48 2-13:57:56 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 3112 00:39:38 2-13:57:56 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5708 3308 00:03:07 2-13:57:56 699366 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 5840 3376 00:11:30 2-13:57:56 699412 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5840 3056 00:06:55 2-13:57:55 699436 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5708 3136 00:00:03 2-13:57:55 699446 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 6092 3524 00:12:19 2-13:57:55 699456 /bin/bash /opt/imtlazarus/mdms/set_camara - root 0 0 00:00:00 38:45 759881 [kworker/1:1-events] - root 0 0 00:00:00 29:56 896019 [kworker/4:2-events] - root 0 0 00:00:00 26:59 952675 [kworker/2:2-events] 0::/system.slice/apache2.service www-data 261968 48884 00:00:00 2-19:12:41 1101632 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 48608 00:00:00 2-19:12:40 1102057 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261956 48736 00:00:00 2-19:12:40 1102059 /usr/sbin/apache2 -k start - root 0 0 00:00:00 17:56 1110787 [kworker/6:0-events] - root 0 0 00:00:00 16:37 1125940 [kworker/0:1-events] - root 0 0 00:00:00 13:39 1173766 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 13:03 1185103 [kworker/7:0-events] - root 0 0 00:00:00 12:32 1203937 [kworker/u16:0-flush-8:0] - root 0 0 00:00:00 11:13 1223972 [kworker/3:2-events] - root 0 0 00:00:00 10:56 1228687 [kworker/6:1-events] - root 0 0 00:00:00 08:57 1268670 [kworker/2:1-cgroup_destroy] - root 0 0 00:00:00 08:00 1282704 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 07:34 1288492 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 06:31 1300409 [kworker/7:2-mm_percpu_wq] - root 0 0 00:00:00 05:59 1305657 [kworker/3:1-mm_percpu_wq] - root 0 0 00:00:00 05:49 1308715 [kworker/0:2-cgroup_destroy] 0::/system.slice/cron.service root 6128 3488 00:00:05 04:56 1318312 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 04:51 1320339 [kworker/1:2-events] - root 0 0 00:00:00 03:22 1345643 [kworker/2:0-events] - root 0 0 00:00:00 02:40 1369460 [kworker/5:0-events] 0::/system.slice/ntp.service ntp 74496 3080 00:00:05 20:28:55 1373595 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 201592 01:55:43 20:28:53 1374181 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5908 2324 00:00:00 01:46 1383758 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 9060 00:00:00 01:46 1383762 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2376 00:00:00 01:46 1383779 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 11124 00:00:00 01:46 1383783 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2340 00:00:00 01:46 1383793 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8928 00:00:00 01:46 1383797 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2352 00:00:00 01:46 1383817 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6908 00:00:00 01:46 1383821 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2324 00:00:00 01:46 1383834 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8964 00:00:00 01:46 1383836 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:46 1383853 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6936 00:00:00 01:46 1383856 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:46 1383865 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11004 00:00:00 01:46 1383867 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:00 1394652 [kworker/7:1] 0::/system.slice/cron.service root 2392 500 00:00:00 00:38 1401054 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:38 1401203 sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:36 1401595 /bin/sleep 60 - root 0 0 00:00:00 00:34 1401983 [kworker/4:1-events] - root 0 0 00:00:00 00:24 1404446 [kworker/0:0-events] 0::/system.slice/cron.service root 2392 496 00:00:00 00:09 1407931 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:07 1408403 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:03 1409206 sleep 8 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 1409591 sleep 2 0::/system.slice/xinetd.service root 6220 3684 00:00:00 00:01 1409676 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 5840 1616 00:00:00 00:01 1409770 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11192 00:00:00 00:01 1409771 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8993 --header Origin: https://127.0.0.1:8993 --header Sec-WebSocket-Key: NjA0OjEyOTQ2 --header Sec-WebSocket-Version: 13 https://127.0.0.1:8993/ -k 0::/system.slice/cron.service root 4288 504 00:00:00 00:01 1409772 wc -l 0::/system.slice/cron.service root 99636 32500 00:00:00 00:01 1409777 /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 1409829 sleep 1 0::/system.slice/cron.service root 4284 556 00:00:00 00:01 1409913 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 1409944 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1409953 sleep 0.1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 1409963 sleep 0.1 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 1409974 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 6128 1820 00:00:00 00:00 1409975 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2996 00:00:00 00:00 1409977 jq -c . 0::/system.slice/apache2.service www-data 261972 48928 00:00:00 3-16:19:37 2548269 /usr/sbin/apache2 -k start - root 0 0 00:00:02 01:32:17 4024173 [kworker/u16:1-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 261972 49200 00:00:00 3-20:46:03 4138736 /usr/sbin/apache2 -k start Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 80306sec preferred_lft 80306sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-28 00:29 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f7c257642Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB JOB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:00-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:00/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server micromdm.service loaded active running MicroMDM MDM Server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded activating start start OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 166428 12120 00:20:53 1-21:57:42 1 /sbin/init - root 0 0 00:00:00 1-21:57:42 2 [kthreadd] - root 0 0 00:00:00 1-21:57:42 3 [rcu_gp] - root 0 0 00:00:00 1-21:57:42 4 [rcu_par_gp] - root 0 0 00:00:00 1-21:57:42 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 1-21:57:42 8 [mm_percpu_wq] - root 0 0 00:00:00 1-21:57:42 9 [rcu_tasks_rude_] - root 0 0 00:00:00 1-21:57:42 10 [rcu_tasks_trace] - root 0 0 00:00:35 1-21:57:42 11 [ksoftirqd/0] - root 0 0 00:02:47 1-21:57:42 12 [rcu_sched] - root 0 0 00:00:00 1-21:57:42 13 [migration/0] - root 0 0 00:00:00 1-21:57:42 15 [cpuhp/0] - root 0 0 00:00:00 1-21:57:42 16 [cpuhp/1] - root 0 0 00:00:01 1-21:57:42 17 [migration/1] - root 0 0 00:00:35 1-21:57:42 18 [ksoftirqd/1] - root 0 0 00:00:00 1-21:57:42 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 1-21:57:42 21 [cpuhp/2] - root 0 0 00:00:01 1-21:57:42 22 [migration/2] - root 0 0 00:00:35 1-21:57:42 23 [ksoftirqd/2] - root 0 0 00:00:00 1-21:57:42 25 [kworker/2:0H-kblockd] - root 0 0 00:00:00 1-21:57:42 26 [cpuhp/3] - root 0 0 00:00:01 1-21:57:42 27 [migration/3] - root 0 0 00:00:35 1-21:57:42 28 [ksoftirqd/3] - root 0 0 00:00:00 1-21:57:42 30 [kworker/3:0H-events_highpri] - root 0 0 00:00:00 1-21:57:42 31 [cpuhp/4] - root 0 0 00:00:01 1-21:57:42 32 [migration/4] - root 0 0 00:00:35 1-21:57:42 33 [ksoftirqd/4] - root 0 0 00:00:00 1-21:57:42 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 1-21:57:42 36 [cpuhp/5] - root 0 0 00:00:01 1-21:57:42 37 [migration/5] - root 0 0 00:00:36 1-21:57:42 38 [ksoftirqd/5] - root 0 0 00:00:00 1-21:57:42 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 1-21:57:42 41 [cpuhp/6] - root 0 0 00:00:01 1-21:57:42 42 [migration/6] - root 0 0 00:00:35 1-21:57:42 43 [ksoftirqd/6] - root 0 0 00:00:00 1-21:57:42 45 [kworker/6:0H-kblockd] - root 0 0 00:00:00 1-21:57:42 46 [cpuhp/7] - root 0 0 00:00:01 1-21:57:42 47 [migration/7] - root 0 0 00:00:35 1-21:57:42 48 [ksoftirqd/7] - root 0 0 00:00:00 1-21:57:42 50 [kworker/7:0H-events_highpri] - root 0 0 00:00:00 1-21:57:42 56 [kdevtmpfs] - root 0 0 00:00:00 1-21:57:42 57 [netns] - root 0 0 00:00:24 1-21:57:42 58 [kauditd] - root 0 0 00:00:00 1-21:57:42 59 [khungtaskd] - root 0 0 00:00:00 1-21:57:42 60 [oom_reaper] - root 0 0 00:00:00 1-21:57:42 61 [writeback] - root 0 0 00:00:03 1-21:57:42 62 [kcompactd0] - root 0 0 00:00:00 1-21:57:42 63 [ksmd] - root 0 0 00:00:06 1-21:57:42 64 [khugepaged] - root 0 0 00:00:00 1-21:57:42 84 [kintegrityd] - root 0 0 00:00:00 1-21:57:42 85 [kblockd] - root 0 0 00:00:00 1-21:57:42 86 [blkcg_punt_bio] - root 0 0 00:00:00 1-21:57:42 88 [kworker/0:1H-kblockd] - root 0 0 00:00:00 1-21:57:42 89 [kswapd0] - root 0 0 00:00:00 1-21:57:42 90 [kthrotld] - root 0 0 00:00:00 1-21:57:42 91 [acpi_thermal_pm] - root 0 0 00:00:00 1-21:57:42 92 [nvme-wq] - root 0 0 00:00:00 1-21:57:42 93 [nvme-reset-wq] - root 0 0 00:00:00 1-21:57:42 94 [nvme-delete-wq] - root 0 0 00:00:00 1-21:57:41 95 [ipv6_addrconf] - root 0 0 00:00:00 1-21:57:41 106 [kstrp] - root 0 0 00:00:00 1-21:57:41 114 [kworker/u17:0] - root 0 0 00:00:00 1-21:57:41 136 [kworker/1:1H-kblockd] - root 0 0 00:00:00 1-21:57:41 156 [kworker/5:1H-kblockd] - root 0 0 00:00:00 1-21:57:41 167 [ata_sff] - root 0 0 00:00:00 1-21:57:41 168 [scsi_eh_0] - root 0 0 00:00:00 1-21:57:41 169 [scsi_tmf_0] - root 0 0 00:00:00 1-21:57:41 170 [scsi_eh_1] - root 0 0 00:00:00 1-21:57:41 171 [scsi_tmf_1] - root 0 0 00:00:00 1-21:57:41 173 [scsi_eh_2] - root 0 0 00:00:00 1-21:57:41 174 [scsi_tmf_2] - root 0 0 00:00:00 1-21:57:41 175 [kworker/3:1H-kblockd] - root 0 0 00:00:00 1-21:57:41 178 [kworker/4:1H-kblockd] - root 0 0 00:00:00 1-21:57:41 184 [kworker/7:1H-kblockd] - root 0 0 00:00:00 1-21:57:41 196 [kworker/6:1H-kblockd] - root 0 0 00:00:25 1-21:57:41 206 [jbd2/sda1-8] - root 0 0 00:00:00 1-21:57:41 207 [ext4-rsv-conver] 0::/system.slice/systemd-journald.service root 263372 201860 00:07:03 1-21:57:40 286 /lib/systemd/systemd-journald - root 0 0 00:00:00 1-21:57:40 291 [kworker/2:1H-kblockd] 0::/system.slice/systemd-udevd.service root 19380 5084 00:00:00 1-21:57:40 306 /lib/systemd/systemd-udevd - root 0 0 00:00:00 1-21:57:40 357 [cryptd] 0::/system.slice/auditd.service root 13328 2096 00:01:24 1-21:57:40 430 /sbin/auditd 0::/system.slice/networking.service root 99884 5624 00:00:00 1-21:57:39 512 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8280 4628 00:00:45 1-21:57:38 644 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 3676 00:00:05 1-21:57:38 657 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 999248 107376 00:07:33 1-21:57:38 660 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 3376 00:00:00 1-21:57:38 676 /usr/sbin/qemu-ga 0::/system.slice/rsyslog.service root 377188 8848 00:01:01 1-21:57:38 680 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-logind.service root 13760 6920 00:00:21 1-21:57:38 688 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2736 00:12:33 1-21:57:38 700 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 394948 22732 00:05:28 1-21:57:38 711 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 7504 00:00:01 1-21:57:38 714 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 636 00:00:00 1-21:57:38 757 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 632 00:00:00 1-21:57:38 759 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106104 20976 00:00:00 1-21:57:38 762 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/monit.service root 10792 5152 00:00:35 1-21:57:38 792 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/shellinabox.service shellinabox 7448 5380 00:00:00 1-21:57:38 844 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 656 00:00:00 1-21:57:38 846 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/apache2.service root 260940 59328 00:00:06 1-21:57:38 902 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261852 48772 00:00:00 1-21:57:38 1067 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261944 48932 00:00:00 1-21:57:38 1068 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 49900 00:00:00 1-21:57:38 1069 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261964 49012 00:00:00 1-21:57:38 1070 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 49184 00:00:00 1-21:57:38 1071 /usr/sbin/apache2 -k start 0::/system.slice/xinetd.service root 9644 2476 00:00:00 1-21:57:38 1088 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 4760 00:00:04 1-21:57:38 1089 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 3272 00:01:10 1-21:57:02 1657 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5708 3224 00:00:12 1-21:57:02 1707 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/nginx.service root 67480 3228 00:00:00 1-21:47:36 228904 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68368 7736 00:00:59 1-21:47:36 228905 nginx: worker process 0::/system.slice/nginx.service www-data 67952 6700 00:00:00 1-21:47:36 228906 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3772 00:00:00 1-21:47:36 228907 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3772 00:00:00 1-21:47:36 228908 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3772 00:00:00 1-21:47:36 228909 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3772 00:00:00 1-21:47:36 228910 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3776 00:00:00 1-21:47:36 228911 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3776 00:00:00 1-21:47:36 228912 nginx: worker process 0::/system.slice/monit.service root 0 0 00:00:00 1-21:47:36 228933 [check_nginx] <defunct> 0::/system.slice/php7.4-fpm.service root 232272 36312 00:00:15 1-21:47:35 229015 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/monit.service root 0 0 00:00:00 1-21:47:35 229054 [check_nginx] <defunct> - root 0 0 00:00:00 36:31 243603 [kworker/u16:0+events_unbound] 0::/system.slice/cron.service root 5908 2400 00:00:00 20:58:02 260229 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874548 48092 00:00:05 20:58:02 260269 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2380 00:00:00 20:58:02 260462 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5040 00:00:00 20:58:02 260486 sudo ./webhookstart 0::/system.slice/cron.service root 2480 504 00:00:00 20:58:02 260586 sh ./webhookstart 0::/system.slice/cron.service root 40104 35232 00:00:09 20:58:02 260601 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2436 00:00:03 20:58:01 261522 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13296 00:00:00 20:58:01 261524 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2364 00:00:03 20:58:01 261560 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13276 00:00:00 20:58:01 261574 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55492 00:01:04 20:58:00 261923 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383220 55328 00:01:04 20:58:00 261928 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2336 00:00:00 20:57:56 266540 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11176 00:00:06 20:57:56 266548 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2308 00:00:00 20:57:56 266576 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9476 00:00:57 20:57:56 266581 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2312 00:00:00 20:57:56 266615 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 479276 33780 00:00:58 20:57:56 266620 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2420 00:00:00 20:57:56 266647 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11012 00:01:03 20:57:56 266650 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2324 00:00:00 20:57:56 266684 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12528 00:01:02 20:57:56 266691 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2360 00:00:00 20:57:56 266741 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 11436 00:01:01 20:57:56 266747 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2356 00:00:00 20:57:56 266799 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11164 00:00:58 20:57:56 266801 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 31:53 305389 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 21:56 493747 [kworker/7:1-events] - root 0 0 00:00:00 19:29 531407 [kworker/2:1-events] 0::/system.slice/packagekit.service root 288432 20960 00:00:01 1-18:51:18 540377 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 6268 00:00:00 1-18:51:18 540419 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 17:59 555249 [kworker/3:1-events] - root 0 0 00:00:00 17:02 566218 [kworker/5:0-events] - root 0 0 00:00:00 14:04 615754 [kworker/4:0-events] - root 0 0 00:00:00 12:35 641867 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 11:53 668436 [kworker/0:0-events] - root 0 0 00:00:00 10:50 684412 [kworker/6:2-events] 0::/system.slice/ntp.service ntp 74496 3820 00:00:02 12:26:20 693013 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 - root 0 0 00:00:00 10:14 693015 [kworker/u16:4-ext4-rsv-conversion] 0::/system.slice/mariadb.service mysql 2340540 201736 01:19:30 12:26:18 694157 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5556 2728 00:00:11 12:26:18 694437 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3244 00:07:57 12:26:03 699316 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5836 3112 00:07:55 12:26:03 699364 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5708 3308 00:00:37 12:26:03 699366 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 5840 3376 00:02:18 12:26:03 699412 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5840 3052 00:01:23 12:26:02 699436 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/cron.service root 5708 3136 00:00:00 12:26:02 699446 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 6092 3524 00:02:27 12:26:02 699456 /bin/bash /opt/imtlazarus/mdms/set_camara - root 0 0 00:00:00 09:11 709270 [kworker/5:1-cgroup_destroy] - root 0 0 00:00:00 08:45 716697 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:00 08:29 720432 [kworker/4:1-events] - root 0 0 00:00:00 07:16 736236 [kworker/1:2-events] - root 0 0 00:00:00 07:11 737125 [kworker/3:2-events] - root 0 0 00:00:00 06:03 761873 [kworker/2:0-cgroup_destroy] - root 0 0 00:00:00 05:21 775057 [kworker/6:1-rcu_gp] - root 0 0 00:00:00 05:03 778886 [kworker/0:2-cgroup_destroy] 0::/system.slice/cron.service root 6128 3568 00:00:02 03:03 801669 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 02:39 810263 [kworker/4:2-events] - root 0 0 00:00:00 01:57 831846 [kworker/7:0-events] - root 0 0 00:00:00 01:47 835187 [kworker/3:0] - root 0 0 00:00:00 01:36 837724 [kworker/5:2-events] - root 0 0 00:00:00 01:00 850586 [kworker/2:2-events] 0::/system.slice/cron.service root 4284 492 00:00:00 00:58 850899 sleep 60 - root 0 0 00:00:00 00:44 854266 [kworker/1:1-cgroup_destroy] 0::/system.slice/cron.service root 2392 564 00:00:00 00:39 855434 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:37 855894 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:10 862353 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:08 862794 /bin/sleep 60 0::/system.slice/php7.4-fpm.service www-data 232572 18584 00:00:00 00:06 863154 php-fpm: pool www 0::/system.slice/cron.service root 4284 504 00:00:00 00:06 863280 sleep 8 0::/system.slice/cron.service root 10888 3764 00:00:00 00:03 864022 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 516 00:00:00 00:03 864238 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 5836 3324 00:00:00 00:03 864333 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine 0::/system.slice/cron.service root 5840 3192 00:00:00 00:02 864563 /bin/bash /opt/imtlazarus/config/server-getinfo.scr 0::/system.slice/cron.service root 5908 2348 00:00:00 00:02 864690 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 6444 00:00:00 00:02 864703 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:02 864852 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 8416 00:00:00 00:02 864859 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2440 00:00:00 00:02 864983 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/xinetd.service root 6208 3584 00:00:00 00:02 864986 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 84224 8432 00:00:00 00:02 864995 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2296 00:00:00 00:02 865053 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6448 00:00:00 00:02 865067 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:02 865107 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8416 00:00:00 00:02 865115 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:02 865163 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 865166 /bin/sleep 5 0::/system.slice/cron.service root 84224 8484 00:00:00 00:02 865169 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 865251 sleep 10 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 865497 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 865566 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 865598 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 865772 sleep 0.1 0::/system.slice/cron.service root 6128 1792 00:00:00 00:00 865787 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 3032 00:00:00 00:00 865789 jq -c . 0::/system.slice/cron.service root 5708 1516 00:00:00 00:00 865790 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 0 0 00:00:00 00:00 865792 [jq] 0::/system.slice/cron.service root 5840 1532 00:00:00 00:00 865802 /bin/bash /opt/imtlazarus/config/server-getinfo.scr 0::/system.slice/cron.service root 5244 2916 00:00:00 00:00 865804 jq . + {projects: ([{"id": 2, "uuid": "19c1557e-6e96-5abc-884b-2ab7ee2155d8", "identificador": "Arula", "nombre_dns": "arula.imtlazarus.com"}])} 0::/system.slice/xinetd.service root 6676 1204 00:00:00 00:00 865818 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/apache2.service www-data 262020 48244 00:00:00 17:40:48 1101632 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261860 48884 00:00:00 17:40:47 1102057 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261944 48960 00:00:00 17:40:47 1102059 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261960 48920 00:00:00 1-14:47:44 2548269 /usr/sbin/apache2 -k start - root 0 0 00:00:00 01:00:40 4018775 [kworker/0:1-events] - root 0 0 00:00:01 55:31 4110350 [kworker/u16:1-flush-8:0] 0::/system.slice/apache2.service www-data 262088 48548 00:00:00 1-19:14:10 4138736 /usr/sbin/apache2 -k start Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 70930sec preferred_lft 70930sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-25 22:58 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fc513adc2Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11112 18:28:06 90-22:50:50 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 90-22:50:50 2 [kthreadd] - root 0 0 00:00:00 90-22:50:50 3 [rcu_gp] - root 0 0 00:00:00 90-22:50:50 4 [rcu_par_gp] - root 0 0 00:00:00 90-22:50:50 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 90-22:50:50 8 [mm_percpu_wq] - root 0 0 00:00:00 90-22:50:50 9 [rcu_tasks_rude_] - root 0 0 00:00:00 90-22:50:50 10 [rcu_tasks_trace] - root 0 0 00:38:40 90-22:50:50 11 [ksoftirqd/0] - root 0 0 02:17:43 90-22:50:50 12 [rcu_sched] - root 0 0 00:01:19 90-22:50:50 13 [migration/0] - root 0 0 00:00:00 90-22:50:50 15 [cpuhp/0] - root 0 0 00:00:00 90-22:50:50 16 [cpuhp/1] - root 0 0 00:01:21 90-22:50:50 17 [migration/1] - root 0 0 00:38:34 90-22:50:50 18 [ksoftirqd/1] - root 0 0 00:00:00 90-22:50:50 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 90-22:50:50 21 [cpuhp/2] - root 0 0 00:01:20 90-22:50:50 22 [migration/2] - root 0 0 00:38:31 90-22:50:50 23 [ksoftirqd/2] - root 0 0 00:00:00 90-22:50:50 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 90-22:50:50 26 [cpuhp/3] - root 0 0 00:01:21 90-22:50:50 27 [migration/3] - root 0 0 00:38:29 90-22:50:50 28 [ksoftirqd/3] - root 0 0 00:00:00 90-22:50:50 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 90-22:50:50 31 [cpuhp/4] - root 0 0 00:01:21 90-22:50:50 32 [migration/4] - root 0 0 00:38:31 90-22:50:50 33 [ksoftirqd/4] - root 0 0 00:00:00 90-22:50:50 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 90-22:50:50 36 [cpuhp/5] - root 0 0 00:01:21 90-22:50:50 37 [migration/5] - root 0 0 00:38:32 90-22:50:50 38 [ksoftirqd/5] - root 0 0 00:00:00 90-22:50:50 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 90-22:50:50 41 [cpuhp/6] - root 0 0 00:01:21 90-22:50:50 42 [migration/6] - root 0 0 00:38:32 90-22:50:50 43 [ksoftirqd/6] - root 0 0 00:00:00 90-22:50:50 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 90-22:50:50 46 [cpuhp/7] - root 0 0 00:01:21 90-22:50:50 47 [migration/7] - root 0 0 00:39:05 90-22:50:50 48 [ksoftirqd/7] - root 0 0 00:00:00 90-22:50:50 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 90-22:50:50 56 [kdevtmpfs] - root 0 0 00:00:00 90-22:50:50 57 [netns] - root 0 0 00:15:07 90-22:50:50 58 [kauditd] - root 0 0 00:00:09 90-22:50:50 59 [khungtaskd] - root 0 0 00:00:00 90-22:50:50 60 [oom_reaper] - root 0 0 00:00:00 90-22:50:50 61 [writeback] - root 0 0 00:02:47 90-22:50:50 62 [kcompactd0] - root 0 0 00:00:00 90-22:50:50 63 [ksmd] - root 0 0 00:07:42 90-22:50:50 64 [khugepaged] - root 0 0 00:00:00 90-22:50:50 84 [kintegrityd] - root 0 0 00:00:00 90-22:50:50 85 [kblockd] - root 0 0 00:00:00 90-22:50:50 86 [blkcg_punt_bio] - root 0 0 00:01:23 90-22:50:49 88 [kworker/0:1H-kblockd] - root 0 0 00:04:35 90-22:50:49 94 [kswapd0] - root 0 0 00:00:00 90-22:50:49 95 [kthrotld] - root 0 0 00:00:00 90-22:50:49 96 [acpi_thermal_pm] - root 0 0 00:00:00 90-22:50:49 97 [nvme-wq] - root 0 0 00:00:00 90-22:50:49 98 [nvme-reset-wq] - root 0 0 00:00:00 90-22:50:49 99 [nvme-delete-wq] - root 0 0 00:01:22 90-22:50:49 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 90-22:50:49 101 [ipv6_addrconf] - root 0 0 00:00:00 90-22:50:49 110 [kstrp] - root 0 0 00:00:00 90-22:50:49 115 [kworker/u17:0] - root 0 0 00:01:23 90-22:50:49 137 [kworker/5:1H-kblockd] - root 0 0 00:01:24 90-22:50:49 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 90-22:50:49 168 [ata_sff] - root 0 0 00:00:00 90-22:50:49 169 [scsi_eh_0] - root 0 0 00:00:00 90-22:50:49 170 [scsi_tmf_0] - root 0 0 00:00:00 90-22:50:49 171 [scsi_eh_1] - root 0 0 00:00:00 90-22:50:49 172 [scsi_tmf_1] - root 0 0 00:00:00 90-22:50:48 174 [scsi_eh_2] - root 0 0 00:00:00 90-22:50:48 175 [scsi_tmf_2] - root 0 0 00:01:24 90-22:50:48 178 [kworker/6:1H-kblockd] - root 0 0 00:01:22 90-22:50:48 203 [kworker/3:1H-kblockd] - root 0 0 00:19:44 90-22:50:48 205 [jbd2/sda1-8] - root 0 0 00:00:00 90-22:50:48 206 [ext4-rsv-conver] - root 0 0 00:01:23 90-22:50:48 223 [kworker/1:1H-kblockd] - root 0 0 00:01:23 90-22:50:48 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 90-22:50:47 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:38 90-22:50:47 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 90-22:50:46 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3552 00:08:04 90-22:50:45 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:43 90-22:50:45 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 87720 06:49:45 90-22:50:45 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 90-22:50:45 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:55 90-22:50:45 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 14:35:40 90-22:50:45 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19440 09:29:50 90-22:50:45 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:36 90-22:50:45 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 90-22:50:44 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 90-22:50:44 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 90-22:50:44 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8220 5868 00:00:10 90-22:50:44 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2088 00:00:00 90-22:50:44 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:41 90-22:50:44 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:03:23 90-22:50:43 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 01:02:26 90-22:50:15 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 05:06:04 90-22:50:15 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 07:05:36 90-22:50:15 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 07:44:44 90-22:50:15 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:11:17 90-22:50:15 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:53:09 90-22:50:15 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 07:06:46 90-22:50:15 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 23:12:12 90-22:50:15 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 23:00:13 90-22:50:15 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 23:05:00 90-22:50:15 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 06:19:48 90-22:50:15 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 07:29:32 90-22:50:15 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:57:06 90-22:50:15 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 07:48:35 90-22:50:15 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 04:13:38 90-22:50:15 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service www-data 262100 48840 00:00:00 2-19:54:07 658833 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 48844 00:00:00 2-19:54:06 659238 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 48828 00:00:00 2-19:54:06 659239 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 48828 00:00:01 6-04:04:11 693029 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:07:16 744743 [kworker/6:0-events] - root 0 0 00:00:05 06:25:16 832480 [kworker/5:2-events] - root 0 0 00:00:00 01:04:16 835420 [kworker/3:0-events] - root 0 0 00:00:03 03:44:16 849569 [kworker/7:0-events] 0::/system.slice/apache2.service www-data 261980 48860 00:00:01 6-06:35:43 938643 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 2900 00:00:00 20-09:26:58 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68976 8704 00:09:13 20-09:26:58 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7220 00:00:05 20-09:26:58 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6336 00:00:00 20-09:26:58 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 6696 00:00:00 20-09:26:58 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 6868 00:00:00 20-09:26:58 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 6200 00:00:00 20-09:26:58 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5856 00:00:00 20-09:26:58 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 6284 00:00:00 20-09:26:58 1294387 nginx: worker process 0::/system.slice/monit.service root 9840 3828 00:06:46 20-09:26:58 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3020 00:01:16 20-09:26:17 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3108 01:44:04 20-09:26:17 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 41:16 1429348 [kworker/4:0-events] 0::/system.slice/cron.service root 5908 2300 00:00:00 21:51:16 1717596 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4996 00:00:00 21:51:16 1717619 sudo ./webhookstart 0::/system.slice/cron.service root 5908 2240 00:00:00 21:51:16 1717697 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 2480 564 00:00:00 21:51:16 1717741 sh ./webhookstart 0::/system.slice/cron.service root 874680 42968 00:00:04 21:51:16 1717767 /usr/sbin/node server.js 0::/system.slice/cron.service root 40104 35136 00:00:10 21:51:16 1717769 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2420 00:00:03 21:51:14 1718795 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13264 00:00:00 21:51:14 1718802 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 57464 00:01:13 21:51:14 1719124 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2412 00:00:03 21:51:12 1721240 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13292 00:00:00 21:51:12 1721245 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 56208 00:01:10 21:51:12 1721698 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2452 00:00:00 21:51:11 1722532 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9028 00:00:07 21:51:11 1722534 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2500 00:00:00 21:51:11 1722582 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 9200 00:01:02 21:51:11 1722586 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2364 00:00:00 21:51:11 1722622 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 492600 49508 00:01:05 21:51:11 1722628 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2384 00:00:00 21:51:11 1722666 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11256 00:01:07 21:51:11 1722682 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2348 00:00:00 21:51:11 1722684 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 14440 00:01:07 21:51:11 1722686 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2428 00:00:00 21:51:11 1722747 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13248 00:01:07 21:51:11 1722751 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2352 00:00:00 21:51:11 1722814 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12416 00:01:03 21:51:11 1722819 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 26:16 1813739 [kworker/3:1-events] - root 0 0 00:00:00 24:16 1877334 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 15:16 2103987 [kworker/7:2-events] - root 0 0 00:00:00 13:16 2165757 [kworker/1:0-events] - root 0 0 00:00:00 12:13 2191530 [kworker/u16:1-ext4-rsv-conversion] 0::/system.slice/php7.4-fpm.service root 232272 35780 00:01:12 8-19:10:09 2202276 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:00 11:16 2214301 [kworker/4:2-cgroup_destroy] 0::/system.slice/apache2.service root 260940 56416 00:00:21 6-08:26:06 2255014 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 48852 00:00:01 6-08:26:06 2255058 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262108 49428 00:00:01 6-08:26:06 2255059 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262108 48964 00:00:01 6-08:26:06 2255060 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262112 49428 00:00:01 6-08:26:06 2255061 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262108 49004 00:00:01 6-08:26:06 2255062 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2464 00:02:21 6-08:25:57 2259070 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 2968 00:00:09 6-08:25:17 2284268 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:04 05:30:16 2290243 [kworker/2:2-events] - root 0 0 00:00:00 08:17 2293603 [kworker/0:2-events] - root 0 0 00:00:00 07:11 2316391 [kworker/2:0-events] - root 0 0 00:00:00 06:16 2335334 [kworker/5:0-events] - root 0 0 00:00:00 05:16 2368923 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 03:16 2428762 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 02:14 2454432 [kworker/u16:0-flush-8:0] 0::/system.slice/cron.service root 10884 3632 00:00:00 01:18 2475920 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 01:17 2476159 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2916 00:00:00 01:17 2476180 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1960 00:00:00 01:17 2476519 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 10012 00:00:00 01:17 2476521 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 648 00:00:00 01:17 2476522 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3188 00:00:00 01:17 2476712 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater - root 0 0 00:00:00 01:16 2477465 [kworker/4:1-cgroup_destroy] 0::/system.slice/cron.service root 4284 500 00:00:00 01:16 2477491 sleep 97 0::/system.slice/cron.service root 5908 2384 00:00:00 01:09 2480396 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6820 00:00:00 01:09 2480400 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2388 00:00:00 01:09 2480425 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6852 00:00:00 01:09 2480427 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:09 2480445 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8948 00:00:00 01:09 2480447 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:09 2480483 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8868 00:00:00 01:09 2480486 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:09 2480507 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8860 00:00:00 01:09 2480509 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2428 00:00:00 01:09 2480532 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6856 00:00:00 01:09 2480535 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:09 2480555 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6836 00:00:00 01:09 2480557 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 568 00:00:00 00:58 2484852 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:30 2497611 /bin/sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:30 2497884 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:29 2498279 sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:28 2498404 /bin/sleep 60 0::/system.slice/php7.4-fpm.service www-data 232612 18988 00:00:00 00:06 2506650 php-fpm: pool www 0::/system.slice/cron.service root 4284 564 00:00:00 00:05 2507157 sleep 8 0::/system.slice/cron.service root 2392 504 00:00:00 00:03 2507618 /bin/sleep 5 0::/system.slice/cron.service root 4284 572 00:00:00 00:02 2508100 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:02 2508131 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 2508248 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11200 00:00:00 00:01 2508249 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8227 --header Origin: https://127.0.0.1:8227 --header Sec-WebSocket-Key: NDcyNjoxOTQ4NA== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8227/ -k 0::/system.slice/cron.service root 4288 504 00:00:00 00:01 2508250 wc -l 0::/system.slice/cron.service root 4072 3060 00:00:00 00:01 2508268 /bin/bash ./statusmdm 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2508316 sleep 2 0::/system.slice/cron.service root 2392 504 00:00:00 00:01 2508330 /bin/sleep 60 0::/system.slice/xinetd.service root 6236 3648 00:00:00 00:01 2508359 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2508426 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2508453 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2508529 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2508573 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2508586 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2508626 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2508628 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 2508683 sleep 1 0::/system.slice/cron.service root 4284 508 00:00:00 00:00 2508716 sleep 0.1 0::/system.slice/xinetd.service root 6676 1208 00:00:00 00:00 2508731 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 1452 00:00:00 00:00 2508732 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 2968 00:00:00 00:00 2508734 jq .dispositivos.windows 0::/system.slice/packagekit.service root 288308 6256 00:00:51 90-20:56:57 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:08 90-20:56:57 3036680 /usr/libexec/polkitd --no-debug 0::/system.slice/ntp.service ntp 74496 3368 00:00:04 20:50:15 3327194 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2299560 164268 02:47:10 20:50:14 3328166 /usr/sbin/mariadbd 0::/system.slice/rsyslog.service root 573796 4856 00:42:07 51-08:56:15 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 90264 54964 03:05:23 51-08:55:59 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2972 00:00:11 51-08:55:56 3745512 /lib/systemd/systemd-udevd - root 0 0 00:00:01 01:51:06 3800627 [kworker/0:0-events] - root 0 0 00:00:01 01:46:16 3916913 [kworker/1:1-events] - root 0 0 00:00:03 01:39:16 4112980 [kworker/u16:3-flush-8:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 62114sec preferred_lft 62114sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-23 23:51 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f1d15e808Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11156 18:09:14 88-22:49:28 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 88-22:49:28 2 [kthreadd] - root 0 0 00:00:00 88-22:49:28 3 [rcu_gp] - root 0 0 00:00:00 88-22:49:28 4 [rcu_par_gp] - root 0 0 00:00:00 88-22:49:28 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 88-22:49:28 8 [mm_percpu_wq] - root 0 0 00:00:00 88-22:49:28 9 [rcu_tasks_rude_] - root 0 0 00:00:00 88-22:49:28 10 [rcu_tasks_trace] - root 0 0 00:38:01 88-22:49:28 11 [ksoftirqd/0] - root 0 0 02:14:51 88-22:49:28 12 [rcu_sched] - root 0 0 00:01:18 88-22:49:28 13 [migration/0] - root 0 0 00:00:00 88-22:49:28 15 [cpuhp/0] - root 0 0 00:00:00 88-22:49:28 16 [cpuhp/1] - root 0 0 00:01:19 88-22:49:28 17 [migration/1] - root 0 0 00:37:56 88-22:49:28 18 [ksoftirqd/1] - root 0 0 00:00:00 88-22:49:28 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 88-22:49:28 21 [cpuhp/2] - root 0 0 00:01:19 88-22:49:28 22 [migration/2] - root 0 0 00:37:54 88-22:49:28 23 [ksoftirqd/2] - root 0 0 00:00:00 88-22:49:28 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 88-22:49:28 26 [cpuhp/3] - root 0 0 00:01:19 88-22:49:28 27 [migration/3] - root 0 0 00:37:51 88-22:49:28 28 [ksoftirqd/3] - root 0 0 00:00:00 88-22:49:28 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 88-22:49:28 31 [cpuhp/4] - root 0 0 00:01:20 88-22:49:28 32 [migration/4] - root 0 0 00:37:53 88-22:49:28 33 [ksoftirqd/4] - root 0 0 00:00:00 88-22:49:28 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 88-22:49:28 36 [cpuhp/5] - root 0 0 00:01:20 88-22:49:28 37 [migration/5] - root 0 0 00:37:54 88-22:49:28 38 [ksoftirqd/5] - root 0 0 00:00:00 88-22:49:28 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 88-22:49:28 41 [cpuhp/6] - root 0 0 00:01:19 88-22:49:28 42 [migration/6] - root 0 0 00:37:53 88-22:49:28 43 [ksoftirqd/6] - root 0 0 00:00:00 88-22:49:28 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 88-22:49:28 46 [cpuhp/7] - root 0 0 00:01:19 88-22:49:28 47 [migration/7] - root 0 0 00:38:27 88-22:49:28 48 [ksoftirqd/7] - root 0 0 00:00:00 88-22:49:28 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 88-22:49:28 56 [kdevtmpfs] - root 0 0 00:00:00 88-22:49:28 57 [netns] - root 0 0 00:15:07 88-22:49:28 58 [kauditd] - root 0 0 00:00:09 88-22:49:28 59 [khungtaskd] - root 0 0 00:00:00 88-22:49:28 60 [oom_reaper] - root 0 0 00:00:00 88-22:49:28 61 [writeback] - root 0 0 00:02:44 88-22:49:28 62 [kcompactd0] - root 0 0 00:00:00 88-22:49:28 63 [ksmd] - root 0 0 00:07:33 88-22:49:28 64 [khugepaged] - root 0 0 00:00:00 88-22:49:28 84 [kintegrityd] - root 0 0 00:00:00 88-22:49:28 85 [kblockd] - root 0 0 00:00:00 88-22:49:28 86 [blkcg_punt_bio] - root 0 0 00:01:22 88-22:49:27 88 [kworker/0:1H-kblockd] - root 0 0 00:04:33 88-22:49:27 94 [kswapd0] - root 0 0 00:00:00 88-22:49:27 95 [kthrotld] - root 0 0 00:00:00 88-22:49:27 96 [acpi_thermal_pm] - root 0 0 00:00:00 88-22:49:27 97 [nvme-wq] - root 0 0 00:00:00 88-22:49:27 98 [nvme-reset-wq] - root 0 0 00:00:00 88-22:49:27 99 [nvme-delete-wq] - root 0 0 00:01:21 88-22:49:27 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 88-22:49:27 101 [ipv6_addrconf] - root 0 0 00:00:00 88-22:49:27 110 [kstrp] - root 0 0 00:00:00 88-22:49:27 115 [kworker/u17:0] - root 0 0 00:01:22 88-22:49:27 137 [kworker/5:1H-kblockd] - root 0 0 00:01:22 88-22:49:27 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 88-22:49:27 168 [ata_sff] - root 0 0 00:00:00 88-22:49:27 169 [scsi_eh_0] - root 0 0 00:00:00 88-22:49:27 170 [scsi_tmf_0] - root 0 0 00:00:00 88-22:49:27 171 [scsi_eh_1] - root 0 0 00:00:00 88-22:49:27 172 [scsi_tmf_1] - root 0 0 00:00:00 88-22:49:26 174 [scsi_eh_2] - root 0 0 00:00:00 88-22:49:26 175 [scsi_tmf_2] - root 0 0 00:01:22 88-22:49:26 178 [kworker/6:1H-kblockd] - root 0 0 00:01:21 88-22:49:26 203 [kworker/3:1H-kblockd] - root 0 0 00:19:24 88-22:49:26 205 [jbd2/sda1-8] - root 0 0 00:00:00 88-22:49:26 206 [ext4-rsv-conver] - root 0 0 00:01:22 88-22:49:26 223 [kworker/1:1H-kblockd] - root 0 0 00:01:22 88-22:49:26 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 88-22:49:25 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:38 88-22:49:25 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 88-22:49:24 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3592 00:07:56 88-22:49:23 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:38 88-22:49:23 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 85856 06:41:16 88-22:49:23 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 88-22:49:23 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:50 88-22:49:23 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 14:18:00 88-22:49:23 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19432 09:18:18 88-22:49:23 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:34 88-22:49:23 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 88-22:49:22 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 88-22:49:22 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 88-22:49:22 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8212 5860 00:00:09 88-22:49:22 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2088 00:00:00 88-22:49:22 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:40 88-22:49:22 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:03:18 88-22:49:21 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 01:01:08 88-22:48:53 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:59:39 88-22:48:53 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 06:56:37 88-22:48:53 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 07:34:59 88-22:48:53 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:11:02 88-22:48:53 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:45:49 88-22:48:53 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 06:57:48 88-22:48:53 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 22:41:39 88-22:48:53 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 22:30:02 88-22:48:53 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 22:34:34 88-22:48:53 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 06:11:49 88-22:48:53 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 07:20:16 88-22:48:53 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:54:38 88-22:48:53 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 07:38:46 88-22:48:53 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 04:08:15 88-22:48:53 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:03 04:12:54 87078 [kworker/2:1-events] - root 0 0 00:00:01 01:19:54 410617 [kworker/6:2-events] 0::/system.slice/apache2.service www-data 261952 49152 00:00:00 19:52:45 658833 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261944 49136 00:00:00 19:52:44 659238 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261960 49136 00:00:00 19:52:44 659239 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 49268 00:00:00 4-04:02:49 693029 /usr/sbin/apache2 -k start - root 0 0 00:00:00 01:03:54 833494 [kworker/7:1-events] 0::/system.slice/apache2.service www-data 261980 49296 00:00:00 4-06:34:21 938643 /usr/sbin/apache2 -k start - root 0 0 00:00:02 03:31:54 1164575 [kworker/0:1-events] 0::/system.slice/nginx.service root 67480 2908 00:00:00 18-09:25:36 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68976 8756 00:08:38 18-09:25:36 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7272 00:00:05 18-09:25:36 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6384 00:00:00 18-09:25:36 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 6744 00:00:00 18-09:25:36 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 6920 00:00:00 18-09:25:36 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 6248 00:00:00 18-09:25:36 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5904 00:00:00 18-09:25:36 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 6332 00:00:00 18-09:25:36 1294387 nginx: worker process 0::/system.slice/monit.service root 9840 3832 00:06:06 18-09:25:36 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3028 00:01:08 18-09:24:55 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3116 01:33:50 18-09:24:55 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:04 06:01:54 1452747 [kworker/3:0-events] - root 0 0 00:00:00 38:54 1499518 [kworker/5:0-events] - root 0 0 00:00:00 35:54 1564418 [kworker/6:1-events] - root 0 0 00:00:00 29:53 1729128 [kworker/5:2-events] 0::/system.slice/cron.service root 5908 2460 00:00:00 21:49:54 1766997 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875704 48800 00:00:05 21:49:54 1767035 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2408 00:00:00 21:49:54 1767321 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5048 00:00:00 21:49:54 1767355 sudo ./webhookstart 0::/system.slice/cron.service root 2480 512 00:00:00 21:49:54 1767488 sh ./webhookstart 0::/system.slice/cron.service root 40104 35244 00:00:10 21:49:54 1767497 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2404 00:00:03 21:49:51 1770693 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13360 00:00:00 21:49:51 1770699 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2444 00:00:03 21:49:51 1770710 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13284 00:00:00 21:49:51 1770714 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55300 00:01:11 21:49:50 1771132 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55368 00:01:09 21:49:50 1771183 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2352 00:00:00 21:49:50 1771568 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9272 00:00:06 21:49:50 1771571 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2364 00:00:00 21:49:50 1771607 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 13128 00:01:02 21:49:50 1771610 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2340 00:00:00 21:49:50 1771636 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 493688 49264 00:01:04 21:49:50 1771640 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2384 00:00:00 21:49:50 1771658 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10344 00:01:07 21:49:50 1771666 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2332 00:00:00 21:49:50 1771698 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 14512 00:01:07 21:49:50 1771700 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2376 00:00:00 21:49:50 1771733 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13132 00:01:07 21:49:50 1771735 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2380 00:00:00 21:49:50 1771776 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 11984 00:01:04 21:49:50 1771781 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 24:16 1864936 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 17:49 2053517 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 12:54 2172743 [kworker/1:0-cgroup_destroy] 0::/system.slice/php7.4-fpm.service root 232272 36488 00:00:57 6-19:08:47 2202276 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:00 11:54 2203128 [kworker/3:1-events] - root 0 0 00:00:00 10:54 2227632 [kworker/2:2-events] - root 0 0 00:00:00 10:51 2229211 [kworker/u16:1-flush-8:0] - root 0 0 00:00:02 02:49:54 2251401 [kworker/1:2-events] 0::/system.slice/apache2.service root 260940 58724 00:00:14 4-08:24:44 2255014 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 49164 00:00:00 4-08:24:44 2255058 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 49692 00:00:00 4-08:24:44 2255059 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 49268 00:00:00 4-08:24:44 2255060 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 49876 00:00:00 4-08:24:44 2255061 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 49196 00:00:00 4-08:24:44 2255062 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5556 2492 00:01:36 4-08:24:35 2259070 /usr/sbin/cron -f - root 0 0 00:00:00 08:54 2274339 [kworker/0:2-events] 0::/system.slice/cron.service root 5708 2984 00:00:06 4-08:23:55 2284268 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 06:54 2331955 [kworker/4:2-events] - root 0 0 00:00:00 05:54 2352444 [kworker/7:2-events] 0::/system.slice/cron.service root 6128 3568 00:00:04 04:54 2373160 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 04:23 2391320 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 03:54 2406197 [kworker/1:1-cgroup_destroy] 0::/system.slice/cron.service root 5908 2384 00:00:00 01:39 2474402 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6844 00:00:00 01:39 2474406 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2328 00:00:00 01:39 2474436 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6860 00:00:00 01:39 2474439 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:39 2474458 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6856 00:00:00 01:39 2474463 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:39 2474498 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6912 00:00:00 01:39 2474501 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:39 2474511 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6856 00:00:00 01:39 2474517 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:39 2474528 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6792 00:00:00 01:39 2474530 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2412 00:00:00 01:39 2474554 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6824 00:00:00 01:39 2474556 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 564 00:00:00 00:58 2490457 /bin/sleep 60 - root 0 0 00:00:00 00:54 2492598 [kworker/5:1-events] 0::/system.slice/cron.service root 2392 500 00:00:00 00:31 2502147 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:29 2502912 /bin/sleep 60 0::/system.slice/cron.service root 4284 572 00:00:00 00:28 2503456 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:22 2505873 sleep 60 0::/system.slice/cron.service root 2392 572 00:00:00 00:04 2512826 /bin/sleep 5 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 2513418 sleep 8 0::/system.slice/cron.service root 5840 1420 00:00:00 00:02 2513539 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11152 00:00:00 00:02 2513540 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8227 --header Origin: https://127.0.0.1:8227 --header Sec-WebSocket-Key: NzAzNDoyNjUwOQ== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8227/ -k 0::/system.slice/cron.service root 4288 568 00:00:00 00:02 2513541 wc -l 0::/system.slice/cron.service root 4072 3192 00:00:00 00:02 2513551 /bin/bash ./statusmdm 0::/system.slice/cron.service root 2392 572 00:00:00 00:02 2513589 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2513669 sleep 2 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 2513735 sleep 2 0::/system.slice/xinetd.service root 6228 3556 00:00:00 00:01 2513756 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2513836 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2513879 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2513944 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2514031 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2514070 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2514106 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2514177 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2514183 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2514185 sleep 0.1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2514195 sleep 0.1 0::/system.slice/cron.service root 5836 1332 00:00:00 00:00 2514197 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2980 00:00:00 00:00 2514199 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 2514216 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 - root 0 0 00:00:01 02:20:55 3009275 [kworker/4:1-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:50 88-20:55:35 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:08 88-20:55:35 3036680 /usr/libexec/polkitd --no-debug 0::/system.slice/ntp.service ntp 74496 3716 00:00:04 20:48:54 3381672 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2234024 167380 02:40:23 20:48:53 3384093 /usr/sbin/mariadbd 0::/system.slice/rsyslog.service root 573796 4756 00:40:30 49-08:54:53 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 287048 216116 02:58:07 49-08:54:37 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:10 49-08:54:34 3745512 /lib/systemd/systemd-udevd Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 44341sec preferred_lft 44341sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-21 23:49 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f5ede4884Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11164 17:50:08 86-22:51:32 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 86-22:51:32 2 [kthreadd] - root 0 0 00:00:00 86-22:51:32 3 [rcu_gp] - root 0 0 00:00:00 86-22:51:32 4 [rcu_par_gp] - root 0 0 00:00:00 86-22:51:32 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 86-22:51:32 8 [mm_percpu_wq] - root 0 0 00:00:00 86-22:51:32 9 [rcu_tasks_rude_] - root 0 0 00:00:00 86-22:51:32 10 [rcu_tasks_trace] - root 0 0 00:37:24 86-22:51:32 11 [ksoftirqd/0] - root 0 0 02:12:00 86-22:51:32 12 [rcu_sched] - root 0 0 00:01:17 86-22:51:32 13 [migration/0] - root 0 0 00:00:00 86-22:51:32 15 [cpuhp/0] - root 0 0 00:00:00 86-22:51:32 16 [cpuhp/1] - root 0 0 00:01:18 86-22:51:32 17 [migration/1] - root 0 0 00:37:18 86-22:51:32 18 [ksoftirqd/1] - root 0 0 00:00:00 86-22:51:32 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 86-22:51:32 21 [cpuhp/2] - root 0 0 00:01:17 86-22:51:32 22 [migration/2] - root 0 0 00:37:17 86-22:51:32 23 [ksoftirqd/2] - root 0 0 00:00:00 86-22:51:32 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 86-22:51:32 26 [cpuhp/3] - root 0 0 00:01:18 86-22:51:32 27 [migration/3] - root 0 0 00:37:14 86-22:51:32 28 [ksoftirqd/3] - root 0 0 00:00:00 86-22:51:32 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 86-22:51:32 31 [cpuhp/4] - root 0 0 00:01:19 86-22:51:32 32 [migration/4] - root 0 0 00:37:16 86-22:51:32 33 [ksoftirqd/4] - root 0 0 00:00:00 86-22:51:32 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 86-22:51:32 36 [cpuhp/5] - root 0 0 00:01:18 86-22:51:32 37 [migration/5] - root 0 0 00:37:17 86-22:51:32 38 [ksoftirqd/5] - root 0 0 00:00:00 86-22:51:32 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 86-22:51:32 41 [cpuhp/6] - root 0 0 00:01:18 86-22:51:32 42 [migration/6] - root 0 0 00:37:15 86-22:51:32 43 [ksoftirqd/6] - root 0 0 00:00:00 86-22:51:32 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 86-22:51:32 46 [cpuhp/7] - root 0 0 00:01:18 86-22:51:32 47 [migration/7] - root 0 0 00:37:49 86-22:51:32 48 [ksoftirqd/7] - root 0 0 00:00:00 86-22:51:32 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 86-22:51:32 56 [kdevtmpfs] - root 0 0 00:00:00 86-22:51:32 57 [netns] - root 0 0 00:15:07 86-22:51:32 58 [kauditd] - root 0 0 00:00:09 86-22:51:32 59 [khungtaskd] - root 0 0 00:00:00 86-22:51:32 60 [oom_reaper] - root 0 0 00:00:00 86-22:51:32 61 [writeback] - root 0 0 00:02:40 86-22:51:32 62 [kcompactd0] - root 0 0 00:00:00 86-22:51:32 63 [ksmd] - root 0 0 00:07:25 86-22:51:32 64 [khugepaged] - root 0 0 00:00:00 86-22:51:32 84 [kintegrityd] - root 0 0 00:00:00 86-22:51:32 85 [kblockd] - root 0 0 00:00:00 86-22:51:32 86 [blkcg_punt_bio] - root 0 0 00:01:21 86-22:51:31 88 [kworker/0:1H-kblockd] - root 0 0 00:04:33 86-22:51:31 94 [kswapd0] - root 0 0 00:00:00 86-22:51:31 95 [kthrotld] - root 0 0 00:00:00 86-22:51:31 96 [acpi_thermal_pm] - root 0 0 00:00:00 86-22:51:31 97 [nvme-wq] - root 0 0 00:00:00 86-22:51:31 98 [nvme-reset-wq] - root 0 0 00:00:00 86-22:51:31 99 [nvme-delete-wq] - root 0 0 00:01:20 86-22:51:31 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 86-22:51:31 101 [ipv6_addrconf] - root 0 0 00:00:00 86-22:51:31 110 [kstrp] - root 0 0 00:00:00 86-22:51:31 115 [kworker/u17:0] - root 0 0 00:01:21 86-22:51:31 137 [kworker/5:1H-kblockd] - root 0 0 00:01:21 86-22:51:31 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 86-22:51:31 168 [ata_sff] - root 0 0 00:00:00 86-22:51:31 169 [scsi_eh_0] - root 0 0 00:00:00 86-22:51:31 170 [scsi_tmf_0] - root 0 0 00:00:00 86-22:51:31 171 [scsi_eh_1] - root 0 0 00:00:00 86-22:51:31 172 [scsi_tmf_1] - root 0 0 00:00:00 86-22:51:30 174 [scsi_eh_2] - root 0 0 00:00:00 86-22:51:30 175 [scsi_tmf_2] - root 0 0 00:01:21 86-22:51:30 178 [kworker/6:1H-kblockd] - root 0 0 00:01:20 86-22:51:30 203 [kworker/3:1H-kblockd] - root 0 0 00:19:03 86-22:51:30 205 [jbd2/sda1-8] - root 0 0 00:00:00 86-22:51:30 206 [ext4-rsv-conver] - root 0 0 00:01:21 86-22:51:30 223 [kworker/1:1H-kblockd] - root 0 0 00:01:21 86-22:51:30 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 86-22:51:29 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:38 86-22:51:29 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 86-22:51:28 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3596 00:07:47 86-22:51:27 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:33 86-22:51:27 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 88676 06:32:54 86-22:51:27 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 86-22:51:27 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:46 86-22:51:27 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 14:00:29 86-22:51:27 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19432 09:06:58 86-22:51:27 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:32 86-22:51:27 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 86-22:51:26 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 86-22:51:26 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 86-22:51:26 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8212 5860 00:00:09 86-22:51:26 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2088 00:00:00 86-22:51:26 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:40 86-22:51:26 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:03:14 86-22:51:25 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:59:51 86-22:50:57 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:53:14 86-22:50:57 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 06:47:40 86-22:50:57 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 07:25:16 86-22:50:57 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:10:48 86-22:50:57 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:38:30 86-22:50:57 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 06:48:52 86-22:50:57 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 22:11:08 86-22:50:57 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 21:59:50 86-22:50:57 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 22:04:09 86-22:50:57 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 06:03:52 86-22:50:57 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 07:11:00 86-22:50:57 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:52:10 86-22:50:57 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 07:28:59 86-22:50:57 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 04:02:54 86-22:50:57 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:01 01:24:58 429715 [kworker/3:1-events] - root 0 0 00:00:03 03:57:59 631688 [kworker/4:1-events] 0::/system.slice/apache2.service www-data 261964 49172 00:00:00 2-04:04:53 693029 /usr/sbin/apache2 -k start - root 0 0 00:00:00 01:09:58 828405 [kworker/2:1-events] 0::/system.slice/apache2.service www-data 261968 48792 00:00:00 2-06:36:25 938643 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 2916 00:00:00 16-09:27:40 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68976 8760 00:08:16 16-09:27:40 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7276 00:00:05 16-09:27:40 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6388 00:00:00 16-09:27:40 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 6748 00:00:00 16-09:27:40 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 6924 00:00:00 16-09:27:40 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 6252 00:00:00 16-09:27:40 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 5908 00:00:00 16-09:27:40 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 6336 00:00:00 16-09:27:40 1294387 nginx: worker process 0::/system.slice/monit.service root 9840 3832 00:05:27 16-09:27:40 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3028 00:01:01 16-09:26:59 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3116 01:23:37 16-09:26:59 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:02 03:21:58 1569900 [kworker/0:2-events] - root 0 0 00:00:00 29:58 1872105 [kworker/4:0-events] 0::/system.slice/cron.service root 5908 2368 00:00:00 21:51:58 1904120 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5056 00:00:00 21:51:58 1904145 sudo ./webhookstart 0::/system.slice/cron.service root 2480 516 00:00:00 21:51:58 1904244 sh ./webhookstart 0::/system.slice/cron.service root 40104 35236 00:00:10 21:51:58 1904267 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2408 00:00:03 21:51:55 1906925 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13316 00:00:00 21:51:55 1906931 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2472 00:00:03 21:51:55 1906944 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13284 00:00:00 21:51:55 1906951 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57464 00:01:10 21:51:54 1907356 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 55628 00:01:11 21:51:54 1907378 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2380 00:00:00 21:51:52 1909502 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8972 00:00:06 21:51:52 1909506 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2528 00:00:00 21:51:52 1909541 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12228 00:01:02 21:51:52 1909547 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2384 00:00:00 21:51:52 1909592 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 492600 47632 00:01:04 21:51:52 1909597 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2332 00:00:00 21:51:52 1909645 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12388 00:01:08 21:51:52 1909651 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2340 00:00:00 21:51:52 1909683 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12600 00:01:08 21:51:52 1909689 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2336 00:00:00 21:51:52 1909721 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13292 00:01:07 21:51:52 1909728 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2336 00:00:00 21:51:52 1909750 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 10192 00:01:03 21:51:52 1909758 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2388 00:00:00 21:50:59 1940132 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 877752 48168 00:00:05 21:50:59 1940135 /usr/sbin/node server.js - root 0 0 00:00:00 23:58 2028887 [kworker/1:0-events] - root 0 0 00:00:00 22:58 2052890 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 19:58 2141402 [kworker/0:0-events] 0::/system.slice/php7.4-fpm.service root 232272 36488 00:00:44 4-19:10:51 2202276 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:00 16:58 2203430 [kworker/5:1-events] 0::/system.slice/apache2.service root 260940 59148 00:00:07 2-08:26:48 2255014 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261964 48708 00:00:00 2-08:26:48 2255058 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261964 49300 00:00:00 2-08:26:48 2255059 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 49088 00:00:00 2-08:26:48 2255060 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 49436 00:00:00 2-08:26:48 2255061 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261956 48860 00:00:00 2-08:26:48 2255062 /usr/sbin/apache2 -k start - root 0 0 00:00:00 14:58 2256453 [kworker/7:1-events] 0::/system.slice/cron.service root 5556 2608 00:00:51 2-08:26:39 2259070 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3116 00:00:03 2-08:25:59 2284268 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 12:55 2318626 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 10:58 2366587 [kworker/6:0-cgroup_destroy] - root 0 0 00:00:00 09:58 2400286 [kworker/2:2-events] - root 0 0 00:00:00 08:58 2420862 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:00 07:59 2441062 [kworker/1:2-events] - root 0 0 00:00:00 05:58 2491948 [kworker/3:0-cgroup_destroy] - root 0 0 00:00:00 05:32 2510415 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 04:58 2531713 [kworker/5:0-events] - root 0 0 00:00:00 03:58 2555785 [kworker/6:2-events] - root 0 0 00:00:00 02:58 2579944 [kworker/0:1-events] 0::/system.slice/cron.service root 11120 3868 00:00:00 01:59 2603316 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 01:59 2603530 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2896 00:00:00 01:59 2603628 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 2016 00:00:00 01:58 2603924 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 10156 00:00:00 01:58 2603932 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 708 00:00:00 01:58 2603934 grep 502 Bad Gateway 0::/system.slice/cron.service root 6240 3548 00:00:00 01:58 2603968 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5908 2352 00:00:00 01:58 2604227 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11040 00:00:00 01:58 2604250 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php - root 0 0 00:00:00 01:57 2604729 [kworker/2:0-events] 0::/system.slice/cron.service root 5908 2400 00:00:00 01:43 2610905 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8848 00:00:00 01:43 2610913 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2328 00:00:00 01:43 2610927 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10936 00:00:00 01:43 2610931 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2392 00:00:00 01:43 2610946 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 13104 00:00:00 01:43 2610950 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2296 00:00:00 01:43 2610968 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8848 00:00:00 01:43 2610972 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2576 00:00:00 01:43 2610988 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8808 00:00:00 01:43 2610990 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2328 00:00:00 01:43 2611023 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8896 00:00:00 01:43 2611027 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 500 00:00:00 01:00 2626221 /bin/sleep 60 - root 0 0 00:00:00 00:58 2627541 [kworker/7:0-events] 0::/system.slice/cron.service root 4284 564 00:00:00 00:44 2635930 sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:40 2638111 sleep 60 0::/system.slice/cron.service root 2392 572 00:00:00 00:33 2642290 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:31 2643424 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:06 2657110 sleep 8 0::/system.slice/cron.service root 2392 564 00:00:00 00:05 2657337 /bin/sleep 5 0::/system.slice/cron.service root 2392 508 00:00:00 00:03 2657952 /bin/sleep 60 0::/system.slice/cron.service root 4284 572 00:00:00 00:02 2658323 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 2658332 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 2658519 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 2658598 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11188 00:00:00 00:01 2658599 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8228 --header Origin: https://127.0.0.1:8228 --header Sec-WebSocket-Key: MTg1MDI6MTU1MDU= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8228/ -k 0::/system.slice/cron.service root 4288 504 00:00:00 00:01 2658600 wc -l 0::/system.slice/cron.service root 4072 3044 00:00:00 00:01 2658623 /bin/bash ./statusscreenshot 0::/system.slice/cron.service root 2392 568 00:00:00 00:01 2658657 /bin/sleep 60 0::/system.slice/xinetd.service root 6236 3684 00:00:00 00:01 2658685 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2659120 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2659137 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2659205 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2659232 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2659317 sleep 2 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 2659392 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2659655 sleep 0.1 0::/system.slice/cron.service root 5836 1332 00:00:00 00:00 2659707 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 3044 00:00:00 00:00 2659709 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1208 00:00:00 00:00 2659748 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2659754 sleep 0.1 0::/system.slice/packagekit.service root 288308 6256 00:00:49 86-20:57:39 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:07 86-20:57:39 3036680 /usr/libexec/polkitd --no-debug 0::/system.slice/ntp.service ntp 74496 3436 00:00:04 20:50:58 3502665 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2365296 180976 02:58:16 20:50:56 3503615 /usr/sbin/mariadbd - root 0 0 00:00:04 04:44:58 3611839 [kworker/6:1-events] 0::/system.slice/rsyslog.service root 573796 4900 00:38:55 47-08:56:57 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 172488 122888 02:50:58 47-08:56:41 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:10 47-08:56:38 3745512 /lib/systemd/systemd-udevd - root 0 0 00:00:01 01:41:58 4179892 [kworker/5:2-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 63961sec preferred_lft 63961sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-19 23:51 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fba8dce78Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11164 17:31:01 84-22:33:31 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 84-22:33:31 2 [kthreadd] - root 0 0 00:00:00 84-22:33:31 3 [rcu_gp] - root 0 0 00:00:00 84-22:33:31 4 [rcu_par_gp] - root 0 0 00:00:00 84-22:33:31 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 84-22:33:31 8 [mm_percpu_wq] - root 0 0 00:00:00 84-22:33:31 9 [rcu_tasks_rude_] - root 0 0 00:00:00 84-22:33:31 10 [rcu_tasks_trace] - root 0 0 00:36:46 84-22:33:31 11 [ksoftirqd/0] - root 0 0 02:09:05 84-22:33:31 12 [rcu_sched] - root 0 0 00:01:16 84-22:33:31 13 [migration/0] - root 0 0 00:00:00 84-22:33:31 15 [cpuhp/0] - root 0 0 00:00:00 84-22:33:31 16 [cpuhp/1] - root 0 0 00:01:17 84-22:33:31 17 [migration/1] - root 0 0 00:36:40 84-22:33:31 18 [ksoftirqd/1] - root 0 0 00:00:00 84-22:33:31 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 84-22:33:31 21 [cpuhp/2] - root 0 0 00:01:16 84-22:33:31 22 [migration/2] - root 0 0 00:36:39 84-22:33:31 23 [ksoftirqd/2] - root 0 0 00:00:00 84-22:33:31 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 84-22:33:31 26 [cpuhp/3] - root 0 0 00:01:17 84-22:33:31 27 [migration/3] - root 0 0 00:36:36 84-22:33:31 28 [ksoftirqd/3] - root 0 0 00:00:00 84-22:33:31 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 84-22:33:31 31 [cpuhp/4] - root 0 0 00:01:17 84-22:33:31 32 [migration/4] - root 0 0 00:36:38 84-22:33:31 33 [ksoftirqd/4] - root 0 0 00:00:00 84-22:33:31 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 84-22:33:31 36 [cpuhp/5] - root 0 0 00:01:17 84-22:33:31 37 [migration/5] - root 0 0 00:36:39 84-22:33:31 38 [ksoftirqd/5] - root 0 0 00:00:00 84-22:33:31 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 84-22:33:31 41 [cpuhp/6] - root 0 0 00:01:17 84-22:33:31 42 [migration/6] - root 0 0 00:36:38 84-22:33:31 43 [ksoftirqd/6] - root 0 0 00:00:00 84-22:33:31 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 84-22:33:31 46 [cpuhp/7] - root 0 0 00:01:17 84-22:33:31 47 [migration/7] - root 0 0 00:37:11 84-22:33:31 48 [ksoftirqd/7] - root 0 0 00:00:00 84-22:33:31 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 84-22:33:31 56 [kdevtmpfs] - root 0 0 00:00:00 84-22:33:31 57 [netns] - root 0 0 00:15:07 84-22:33:31 58 [kauditd] - root 0 0 00:00:09 84-22:33:31 59 [khungtaskd] - root 0 0 00:00:00 84-22:33:31 60 [oom_reaper] - root 0 0 00:00:00 84-22:33:31 61 [writeback] - root 0 0 00:02:37 84-22:33:31 62 [kcompactd0] - root 0 0 00:00:00 84-22:33:31 63 [ksmd] - root 0 0 00:07:17 84-22:33:31 64 [khugepaged] - root 0 0 00:00:00 84-22:33:31 84 [kintegrityd] - root 0 0 00:00:00 84-22:33:31 85 [kblockd] - root 0 0 00:00:00 84-22:33:31 86 [blkcg_punt_bio] - root 0 0 00:01:20 84-22:33:30 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 84-22:33:30 94 [kswapd0] - root 0 0 00:00:00 84-22:33:30 95 [kthrotld] - root 0 0 00:00:00 84-22:33:30 96 [acpi_thermal_pm] - root 0 0 00:00:00 84-22:33:30 97 [nvme-wq] - root 0 0 00:00:00 84-22:33:30 98 [nvme-reset-wq] - root 0 0 00:00:00 84-22:33:30 99 [nvme-delete-wq] - root 0 0 00:01:19 84-22:33:30 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 84-22:33:30 101 [ipv6_addrconf] - root 0 0 00:00:00 84-22:33:30 110 [kstrp] - root 0 0 00:00:00 84-22:33:30 115 [kworker/u17:0] - root 0 0 00:01:19 84-22:33:30 137 [kworker/5:1H-kblockd] - root 0 0 00:01:20 84-22:33:30 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 84-22:33:30 168 [ata_sff] - root 0 0 00:00:00 84-22:33:30 169 [scsi_eh_0] - root 0 0 00:00:00 84-22:33:30 170 [scsi_tmf_0] - root 0 0 00:00:00 84-22:33:30 171 [scsi_eh_1] - root 0 0 00:00:00 84-22:33:30 172 [scsi_tmf_1] - root 0 0 00:00:00 84-22:33:29 174 [scsi_eh_2] - root 0 0 00:00:00 84-22:33:29 175 [scsi_tmf_2] - root 0 0 00:01:20 84-22:33:29 178 [kworker/6:1H-kblockd] - root 0 0 00:01:18 84-22:33:29 203 [kworker/3:1H-kblockd] - root 0 0 00:18:43 84-22:33:29 205 [jbd2/sda1-8] - root 0 0 00:00:00 84-22:33:29 206 [ext4-rsv-conver] - root 0 0 00:01:20 84-22:33:29 223 [kworker/1:1H-kblockd] - root 0 0 00:01:19 84-22:33:29 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 84-22:33:28 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:38 84-22:33:28 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 84-22:33:27 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3608 00:07:39 84-22:33:26 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:28 84-22:33:26 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 89492 06:24:21 84-22:33:26 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 84-22:33:26 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:41 84-22:33:26 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 13:42:41 84-22:33:26 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19428 08:55:25 84-22:33:26 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:30 84-22:33:26 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 84-22:33:25 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 84-22:33:25 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 84-22:33:25 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8212 5860 00:00:09 84-22:33:25 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2088 00:00:00 84-22:33:25 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:39 84-22:33:25 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:03:09 84-22:33:24 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:58:33 84-22:32:56 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:46:44 84-22:32:56 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 06:38:35 84-22:32:56 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 07:15:24 84-22:32:56 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:10:34 84-22:32:56 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:31:05 84-22:32:56 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 06:39:47 84-22:32:56 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 21:40:15 84-22:32:56 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 21:29:19 84-22:32:56 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 21:33:23 84-22:32:56 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 05:55:47 84-22:32:56 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 07:01:35 84-22:32:56 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:49:40 84-22:32:56 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 07:19:03 84-22:32:56 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:57:27 84-22:32:56 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:01 01:23:57 203600 [kworker/6:0-events] - root 0 0 00:00:05 06:40:58 360234 [kworker/1:2-events] - root 0 0 00:00:00 01:09:57 566935 [kworker/7:2-events] 0::/system.slice/apache2.service www-data 261616 36828 00:00:00 03:46:52 693029 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261944 48296 00:00:00 06:18:24 938643 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 3076 00:00:00 14-09:09:39 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68976 8636 00:07:37 14-09:09:39 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7944 00:00:04 14-09:09:39 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7056 00:00:00 14-09:09:39 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 7416 00:00:00 14-09:09:39 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 7592 00:00:00 14-09:09:39 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 6920 00:00:00 14-09:09:39 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6576 00:00:00 14-09:09:39 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 7004 00:00:00 14-09:09:39 1294387 nginx: worker process 0::/system.slice/monit.service root 9744 3736 00:04:47 14-09:09:39 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3056 00:00:53 14-09:08:58 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3244 01:13:15 14-09:08:58 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 39:57 1353695 [kworker/4:2-events] - root 0 0 00:00:00 35:57 1463426 [kworker/2:1-events] - root 0 0 00:00:00 33:33 1527366 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 25:57 1725812 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:04 05:46:58 1770057 [kworker/3:2-events] - root 0 0 00:00:00 18:57 1895846 [kworker/4:1-events] - root 0 0 00:00:00 17:57 1941200 [kworker/5:0-events] - root 0 0 00:00:00 14:57 2013832 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 11:57 2097710 [kworker/2:2-events] 0::/system.slice/cron.service root 5908 2356 00:00:00 21:33:57 2123444 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874696 41024 00:00:04 21:33:57 2123469 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2388 00:00:00 21:33:57 2123920 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 5060 00:00:00 21:33:57 2123957 sudo ./webhookstart 0::/system.slice/cron.service root 2480 580 00:00:00 21:33:57 2124071 sh ./webhookstart 0::/system.slice/cron.service root 40104 35364 00:00:10 21:33:57 2124096 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2372 00:00:00 21:33:56 2124584 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8876 00:00:07 21:33:56 2124586 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2388 00:00:00 21:33:56 2124659 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 10548 00:01:03 21:33:56 2124671 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2388 00:00:00 21:33:56 2124733 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 495864 54600 00:01:06 21:33:56 2124749 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2376 00:00:00 21:33:56 2124795 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 13068 00:01:08 21:33:56 2124800 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2340 00:00:00 21:33:56 2124852 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11464 00:01:07 21:33:56 2124860 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2328 00:00:00 21:33:56 2124934 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13036 00:01:07 21:33:56 2124943 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2356 00:00:00 21:33:56 2125045 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12588 00:01:04 21:33:56 2125059 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2392 00:00:03 21:33:54 2126849 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13312 00:00:00 21:33:54 2126853 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2360 00:00:03 21:33:54 2126866 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13272 00:00:00 21:33:54 2126871 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 55380 00:01:14 21:33:53 2127253 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 309228 55036 00:01:14 21:33:53 2127254 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 - root 0 0 00:00:00 09:57 2138647 [kworker/7:1-events] - root 0 0 00:00:00 07:57 2186896 [kworker/5:2-events] - root 0 0 00:00:00 07:46 2191607 [kworker/1:0-cgroup_destroy] - root 0 0 00:00:00 07:42 2192815 [kworker/u16:3-flush-8:0] 0::/system.slice/php7.4-fpm.service root 232272 36548 00:00:26 2-18:52:50 2202276 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:00 06:57 2214719 [kworker/0:1-events] - root 0 0 00:00:00 05:57 2248136 [kworker/3:0-events] 0::/system.slice/apache2.service root 260940 59624 00:00:01 08:08:47 2255014 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261964 48852 00:00:00 08:08:47 2255058 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261860 48424 00:00:00 08:08:47 2255059 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261956 48928 00:00:00 08:08:47 2255060 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262008 48844 00:00:00 08:08:47 2255061 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261632 36824 00:00:00 08:08:47 2255062 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3808 00:00:01 08:08:40 2258030 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2430632 162392 01:14:26 08:08:38 2258849 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5556 2608 00:00:07 08:08:38 2259070 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3116 00:00:00 08:07:58 2284268 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 03:57 2296709 [kworker/4:0-events] - root 0 0 00:00:00 03:56 2297092 [kworker/6:1-events] 0::/system.slice/cron.service root 5908 2380 00:00:00 01:57 2360889 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 11008 00:00:00 01:57 2360898 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2432 00:00:00 01:57 2361044 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8868 00:00:00 01:57 2361051 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:57 2361137 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10936 00:00:00 01:57 2361149 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2324 00:00:00 01:57 2361218 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10960 00:00:00 01:57 2361226 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2340 00:00:00 01:41 2366500 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6820 00:00:00 01:41 2366506 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2540 00:00:00 01:41 2366515 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8980 00:00:00 01:41 2366519 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:41 2366533 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 9012 00:00:00 01:41 2366535 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php - root 0 0 00:00:00 00:57 2381465 [kworker/1:1-events] 0::/system.slice/cron.service root 2392 500 00:00:00 00:55 2382601 /bin/sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:54 2382927 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:53 2383266 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:25 2392084 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:23 2392720 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:17 2394899 sleep 60 0::/system.slice/php7.4-fpm.service www-data 232572 17376 00:00:00 00:04 2399041 php-fpm: pool www 0::/system.slice/cron.service root 4284 568 00:00:00 00:03 2399198 sleep 8 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2399832 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2399938 sleep 2 0::/system.slice/xinetd.service root 6220 3768 00:00:00 00:01 2399969 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2400019 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2400039 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2400049 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2400175 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2400206 sleep 1 0::/system.slice/cron.service root 4284 508 00:00:00 00:00 2400230 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2400239 sleep 1 0::/system.slice/cron.service root 5840 1420 00:00:00 00:00 2400241 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11172 00:00:00 00:00 2400242 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8225 --header Origin: https://127.0.0.1:8225 --header Sec-WebSocket-Key: MTI4ODI6MjcyOTQ= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8225/ -k 0::/system.slice/cron.service root 4288 504 00:00:00 00:00 2400243 wc -l 0::/system.slice/cron.service root 4080 3228 00:00:00 00:00 2400260 /bin/bash ./statusdispolock 0::/system.slice/cron.service root 2392 564 00:00:00 00:00 2400268 /bin/sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2400301 sleep 0.1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2400302 sleep 0.1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2400316 sleep 0.1 0::/system.slice/cron.service root 6092 1632 00:00:00 00:00 2400317 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5244 2972 00:00:00 00:00 2400319 jq .dispositivos.android 0::/system.slice/xinetd.service root 6676 1208 00:00:00 00:00 2400336 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/packagekit.service root 288308 6256 00:00:47 84-20:39:38 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:07 84-20:39:38 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:04 04:56:57 3061150 [kworker/0:2-events] 0::/system.slice/rsyslog.service root 573796 4740 00:37:17 45-08:38:56 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 217380 153760 02:43:45 45-08:38:40 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:09 45-08:38:37 3745512 /lib/systemd/systemd-udevd Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 51377sec preferred_lft 51377sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-17 23:33 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730faef6452aFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11160 17:12:40 83-00:16:15 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 83-00:16:15 2 [kthreadd] - root 0 0 00:00:00 83-00:16:15 3 [rcu_gp] - root 0 0 00:00:00 83-00:16:15 4 [rcu_par_gp] - root 0 0 00:00:00 83-00:16:15 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 83-00:16:15 8 [mm_percpu_wq] - root 0 0 00:00:00 83-00:16:15 9 [rcu_tasks_rude_] - root 0 0 00:00:00 83-00:16:15 10 [rcu_tasks_trace] - root 0 0 00:36:08 83-00:16:15 11 [ksoftirqd/0] - root 0 0 02:06:20 83-00:16:15 12 [rcu_sched] - root 0 0 00:01:15 83-00:16:15 13 [migration/0] - root 0 0 00:00:00 83-00:16:15 15 [cpuhp/0] - root 0 0 00:00:00 83-00:16:15 16 [cpuhp/1] - root 0 0 00:01:16 83-00:16:15 17 [migration/1] - root 0 0 00:36:03 83-00:16:15 18 [ksoftirqd/1] - root 0 0 00:00:00 83-00:16:15 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 83-00:16:15 21 [cpuhp/2] - root 0 0 00:01:15 83-00:16:15 22 [migration/2] - root 0 0 00:36:01 83-00:16:15 23 [ksoftirqd/2] - root 0 0 00:00:00 83-00:16:15 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 83-00:16:15 26 [cpuhp/3] - root 0 0 00:01:16 83-00:16:15 27 [migration/3] - root 0 0 00:35:59 83-00:16:15 28 [ksoftirqd/3] - root 0 0 00:00:00 83-00:16:15 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 83-00:16:15 31 [cpuhp/4] - root 0 0 00:01:16 83-00:16:15 32 [migration/4] - root 0 0 00:36:01 83-00:16:15 33 [ksoftirqd/4] - root 0 0 00:00:00 83-00:16:15 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 83-00:16:15 36 [cpuhp/5] - root 0 0 00:01:16 83-00:16:15 37 [migration/5] - root 0 0 00:36:02 83-00:16:15 38 [ksoftirqd/5] - root 0 0 00:00:00 83-00:16:15 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 83-00:16:15 41 [cpuhp/6] - root 0 0 00:01:16 83-00:16:15 42 [migration/6] - root 0 0 00:36:00 83-00:16:15 43 [ksoftirqd/6] - root 0 0 00:00:00 83-00:16:15 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 83-00:16:15 46 [cpuhp/7] - root 0 0 00:01:16 83-00:16:15 47 [migration/7] - root 0 0 00:36:33 83-00:16:15 48 [ksoftirqd/7] - root 0 0 00:00:00 83-00:16:15 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 83-00:16:15 56 [kdevtmpfs] - root 0 0 00:00:00 83-00:16:15 57 [netns] - root 0 0 00:15:07 83-00:16:15 58 [kauditd] - root 0 0 00:00:09 83-00:16:15 59 [khungtaskd] - root 0 0 00:00:00 83-00:16:15 60 [oom_reaper] - root 0 0 00:00:00 83-00:16:15 61 [writeback] - root 0 0 00:02:34 83-00:16:15 62 [kcompactd0] - root 0 0 00:00:00 83-00:16:15 63 [ksmd] - root 0 0 00:07:09 83-00:16:15 64 [khugepaged] - root 0 0 00:00:00 83-00:16:15 84 [kintegrityd] - root 0 0 00:00:00 83-00:16:15 85 [kblockd] - root 0 0 00:00:00 83-00:16:15 86 [blkcg_punt_bio] - root 0 0 00:01:19 83-00:16:14 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 83-00:16:14 94 [kswapd0] - root 0 0 00:00:00 83-00:16:14 95 [kthrotld] - root 0 0 00:00:00 83-00:16:14 96 [acpi_thermal_pm] - root 0 0 00:00:00 83-00:16:14 97 [nvme-wq] - root 0 0 00:00:00 83-00:16:14 98 [nvme-reset-wq] - root 0 0 00:00:00 83-00:16:14 99 [nvme-delete-wq] - root 0 0 00:01:18 83-00:16:14 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 83-00:16:14 101 [ipv6_addrconf] - root 0 0 00:00:00 83-00:16:14 110 [kstrp] - root 0 0 00:00:00 83-00:16:14 115 [kworker/u17:0] - root 0 0 00:01:18 83-00:16:14 137 [kworker/5:1H-kblockd] - root 0 0 00:01:18 83-00:16:14 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 83-00:16:14 168 [ata_sff] - root 0 0 00:00:00 83-00:16:14 169 [scsi_eh_0] - root 0 0 00:00:00 83-00:16:14 170 [scsi_tmf_0] - root 0 0 00:00:00 83-00:16:14 171 [scsi_eh_1] - root 0 0 00:00:00 83-00:16:14 172 [scsi_tmf_1] - root 0 0 00:00:00 83-00:16:13 174 [scsi_eh_2] - root 0 0 00:00:00 83-00:16:13 175 [scsi_tmf_2] - root 0 0 00:01:19 83-00:16:13 178 [kworker/6:1H-kblockd] - root 0 0 00:01:17 83-00:16:13 203 [kworker/3:1H-kblockd] - root 0 0 00:18:23 83-00:16:13 205 [jbd2/sda1-8] - root 0 0 00:00:00 83-00:16:13 206 [ext4-rsv-conver] - root 0 0 00:01:18 83-00:16:13 223 [kworker/1:1H-kblockd] - root 0 0 00:01:18 83-00:16:13 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 83-00:16:12 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:37 83-00:16:12 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 83-00:16:11 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:07:31 83-00:16:10 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:23 83-00:16:10 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 86124 06:15:59 83-00:16:10 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 83-00:16:10 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:36 83-00:16:10 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 13:25:35 83-00:16:10 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19432 08:44:05 83-00:16:10 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:28 83-00:16:10 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 83-00:16:09 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 83-00:16:09 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 83-00:16:09 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8212 5860 00:00:09 83-00:16:09 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2088 00:00:00 83-00:16:09 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:38 83-00:16:09 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:03:05 83-00:16:08 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:57:19 83-00:15:40 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:40:33 83-00:15:40 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 06:29:55 83-00:15:40 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 07:05:59 83-00:15:40 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:10:21 83-00:15:40 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:24:01 83-00:15:40 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 06:31:08 83-00:15:40 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 21:10:46 83-00:15:40 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 21:00:11 83-00:15:40 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 21:04:01 83-00:15:40 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 05:48:05 83-00:15:40 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 06:52:37 83-00:15:40 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:47:17 83-00:15:40 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 07:09:34 83-00:15:40 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:52:15 83-00:15:40 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:02 03:16:41 16775 [kworker/1:0-events] 0::/system.slice/apache2.service root 260924 39524 00:02:31 44-20:36:59 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261984 40556 00:00:05 44-20:36:59 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 41276 00:00:05 44-20:36:59 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 40732 00:00:05 44-20:36:59 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 40620 00:00:05 44-20:36:59 56477 /usr/sbin/apache2 -k start - root 0 0 00:00:00 31:41 153531 [kworker/7:0-events] - root 0 0 00:00:00 26:41 297595 [kworker/2:0-events] - root 0 0 00:00:00 24:41 355980 [kworker/0:0-events] - root 0 0 00:00:00 19:41 483619 [kworker/6:1-events] - root 0 0 00:00:00 17:41 532497 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 17:41 532541 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 16:40 557803 [kworker/5:0-events] - root 0 0 00:00:00 10:41 710369 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 08:41 773410 [kworker/3:0-events] - root 0 0 00:00:00 07:43 796763 [kworker/1:2-events] - root 0 0 00:00:00 06:26 829088 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 05:41 844738 [kworker/4:2-events] - root 0 0 00:00:00 03:41 902087 [kworker/2:1-cgroup_destroy] - root 0 0 00:00:00 02:41 922937 [kworker/0:2-events] 0::/system.slice/cron.service root 11124 3896 00:00:00 01:42 942748 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 576 00:00:00 01:42 943131 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2868 00:00:00 01:42 943212 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1952 00:00:00 01:41 943327 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9944 00:00:00 01:41 943344 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 708 00:00:00 01:41 943345 grep 502 Bad Gateway 0::/system.slice/cron.service root 6128 3560 00:00:01 01:41 943380 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5708 3148 00:00:00 01:41 943437 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 4284 568 00:00:00 01:40 944185 sleep 107 0::/system.slice/apache2.service www-data 262096 40952 00:00:04 31-16:54:48 972577 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 4284 504 00:00:00 00:54 976592 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:36 991113 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:34 992432 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:32 993701 sleep 60 0::/system.slice/cron.service root 5908 2352 00:00:00 00:30 994366 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6720 00:00:00 00:30 994371 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2440 00:00:00 00:30 994406 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6708 00:00:00 00:30 994408 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2380 00:00:00 00:30 994448 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6720 00:00:00 00:30 994452 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2424 00:00:00 00:30 994482 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6692 00:00:00 00:30 994488 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2356 00:00:00 00:30 994509 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6712 00:00:00 00:30 994526 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:30 994539 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6772 00:00:00 00:30 994544 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:30 994555 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6720 00:00:00 00:30 994557 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 568 00:00:00 00:21 998123 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:19 998942 /bin/sleep 60 0::/system.slice/php7.4-fpm.service www-data 232612 19460 00:00:00 00:04 1004853 php-fpm: pool www 0::/system.slice/cron.service root 4284 508 00:00:00 00:02 1005653 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:02 1005683 sleep 2 0::/system.slice/xinetd.service root 6164 3636 00:00:00 00:01 1005797 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 1005926 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 1005938 sleep 8 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 1005960 /bin/sleep 5 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 1005963 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 1006016 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 1006041 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 1006109 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 1006205 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 1006223 sleep 0.1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 1006224 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 1006246 sleep 0.1 0::/system.slice/cron.service root 5244 3024 00:00:00 00:00 1006252 jq -c .[] 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 1006253 sleep 0.1 0::/system.slice/cron.service root 5244 3060 00:00:00 00:00 1006262 jq -c .[] | sort_by(.mdm_id, .tag) | .[] 0::/system.slice/xinetd.service root 6676 1148 00:00:00 00:00 1006268 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/nginx.service root 67480 3112 00:00:00 12-10:52:23 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68976 8772 00:06:36 12-10:52:23 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7764 00:00:03 12-10:52:23 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7192 00:00:00 12-10:52:23 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 7552 00:00:00 12-10:52:23 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 7728 00:00:00 12-10:52:23 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 7056 00:00:00 12-10:52:23 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6712 00:00:00 12-10:52:23 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 7140 00:00:00 12-10:52:23 1294387 nginx: worker process 0::/system.slice/monit.service root 9692 3684 00:04:08 12-10:52:23 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3128 00:00:46 12-10:51:42 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3284 01:03:24 12-10:51:42 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:01 02:20:41 1482331 [kworker/4:1-events] 0::/system.slice/apache2.service www-data 261960 40064 00:00:01 10-15:51:24 1757873 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2572 00:00:00 23:16:41 2132623 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 12224 5276 00:00:00 23:16:41 2132647 sudo ./webhookstart 0::/system.slice/cron.service root 5908 2400 00:00:00 23:16:41 2132671 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875192 44216 00:00:05 23:16:41 2132717 /usr/sbin/node server.js 0::/system.slice/cron.service root 2480 512 00:00:00 23:16:41 2132748 sh ./webhookstart 0::/system.slice/cron.service root 40104 35232 00:00:11 23:16:41 2132769 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2356 00:00:03 23:16:38 2136462 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13376 00:00:00 23:16:38 2136468 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2560 00:00:04 23:16:38 2136476 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13276 00:00:00 23:16:38 2136480 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 57592 00:01:19 23:16:37 2136903 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383220 55532 00:01:19 23:16:37 2136977 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2372 00:00:00 23:16:37 2137288 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10852 00:00:07 23:16:37 2137292 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2380 00:00:00 23:16:37 2137314 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 11748 00:01:06 23:16:37 2137317 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2388 00:00:00 23:16:37 2137350 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 496956 54568 00:01:11 23:16:37 2137354 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2444 00:00:00 23:16:37 2137386 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10256 00:01:11 23:16:37 2137388 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2576 00:00:00 23:16:37 2137420 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12928 00:01:11 23:16:37 2137441 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2304 00:00:00 23:16:37 2137445 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 13396 00:01:11 23:16:37 2137451 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2344 00:00:00 23:16:37 2137498 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 11332 00:01:07 23:16:37 2137500 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/php7.4-fpm.service root 232272 36344 00:00:07 20:35:34 2202276 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:01 01:42:41 2486377 [kworker/5:2-events] - root 0 0 00:00:03 01:37:41 2620955 [kworker/u16:0-events_unbound] 0::/system.slice/apache2.service www-data 261976 41112 00:00:06 44-18:55:01 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262108 41288 00:00:05 44-18:55:01 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:31:41 2766978 [kworker/6:0-events] 0::/system.slice/mariadb.service mysql 3716784 558208 4-22:13:42 27-17:41:26 2961082 /usr/sbin/mariadbd - root 0 0 00:00:01 01:21:41 3031521 [kworker/7:2-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:46 82-22:22:22 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:07 82-22:22:22 3036680 /usr/libexec/polkitd --no-debug 0::/system.slice/cron.service root 5556 2724 00:02:23 6-09:26:27 3238538 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3228 00:00:09 6-09:25:42 3262591 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/apache2.service www-data 261968 40132 00:00:00 6-12:02:58 3336302 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261956 39484 00:00:00 4-03:55:57 3392020 /usr/sbin/apache2 -k start - root 0 0 00:00:00 56:41 3700039 [kworker/3:1-events] 0::/system.slice/rsyslog.service root 573796 4852 00:35:42 43-10:21:40 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 324036 227628 02:36:39 43-10:21:24 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:09 43-10:21:21 3745512 /lib/systemd/systemd-udevd 0::/system.slice/ntp.service ntp 74496 3468 00:00:04 22:15:41 3751956 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 60598sec preferred_lft 60598sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-16 01:16 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fe8e6fa43Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11156 16:53:23 80-22:52:23 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 80-22:52:23 2 [kthreadd] - root 0 0 00:00:00 80-22:52:23 3 [rcu_gp] - root 0 0 00:00:00 80-22:52:23 4 [rcu_par_gp] - root 0 0 00:00:00 80-22:52:23 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 80-22:52:23 8 [mm_percpu_wq] - root 0 0 00:00:00 80-22:52:23 9 [rcu_tasks_rude_] - root 0 0 00:00:00 80-22:52:23 10 [rcu_tasks_trace] - root 0 0 00:35:29 80-22:52:23 11 [ksoftirqd/0] - root 0 0 02:03:25 80-22:52:23 12 [rcu_sched] - root 0 0 00:01:13 80-22:52:23 13 [migration/0] - root 0 0 00:00:00 80-22:52:23 15 [cpuhp/0] - root 0 0 00:00:00 80-22:52:23 16 [cpuhp/1] - root 0 0 00:01:15 80-22:52:23 17 [migration/1] - root 0 0 00:35:24 80-22:52:23 18 [ksoftirqd/1] - root 0 0 00:00:00 80-22:52:23 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 80-22:52:23 21 [cpuhp/2] - root 0 0 00:01:14 80-22:52:23 22 [migration/2] - root 0 0 00:35:22 80-22:52:23 23 [ksoftirqd/2] - root 0 0 00:00:00 80-22:52:23 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 80-22:52:23 26 [cpuhp/3] - root 0 0 00:01:15 80-22:52:23 27 [migration/3] - root 0 0 00:35:20 80-22:52:23 28 [ksoftirqd/3] - root 0 0 00:00:00 80-22:52:23 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 80-22:52:23 31 [cpuhp/4] - root 0 0 00:01:15 80-22:52:23 32 [migration/4] - root 0 0 00:35:22 80-22:52:23 33 [ksoftirqd/4] - root 0 0 00:00:00 80-22:52:23 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 80-22:52:23 36 [cpuhp/5] - root 0 0 00:01:15 80-22:52:23 37 [migration/5] - root 0 0 00:35:22 80-22:52:23 38 [ksoftirqd/5] - root 0 0 00:00:00 80-22:52:23 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 80-22:52:23 41 [cpuhp/6] - root 0 0 00:01:15 80-22:52:23 42 [migration/6] - root 0 0 00:35:21 80-22:52:23 43 [ksoftirqd/6] - root 0 0 00:00:00 80-22:52:23 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 80-22:52:23 46 [cpuhp/7] - root 0 0 00:01:15 80-22:52:23 47 [migration/7] - root 0 0 00:35:55 80-22:52:23 48 [ksoftirqd/7] - root 0 0 00:00:00 80-22:52:23 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 80-22:52:23 56 [kdevtmpfs] - root 0 0 00:00:00 80-22:52:23 57 [netns] - root 0 0 00:15:07 80-22:52:23 58 [kauditd] - root 0 0 00:00:08 80-22:52:23 59 [khungtaskd] - root 0 0 00:00:00 80-22:52:23 60 [oom_reaper] - root 0 0 00:00:00 80-22:52:23 61 [writeback] - root 0 0 00:02:30 80-22:52:23 62 [kcompactd0] - root 0 0 00:00:00 80-22:52:23 63 [ksmd] - root 0 0 00:07:00 80-22:52:23 64 [khugepaged] - root 0 0 00:00:00 80-22:52:23 84 [kintegrityd] - root 0 0 00:00:00 80-22:52:23 85 [kblockd] - root 0 0 00:00:00 80-22:52:23 86 [blkcg_punt_bio] - root 0 0 00:01:17 80-22:52:22 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 80-22:52:22 94 [kswapd0] - root 0 0 00:00:00 80-22:52:22 95 [kthrotld] - root 0 0 00:00:00 80-22:52:22 96 [acpi_thermal_pm] - root 0 0 00:00:00 80-22:52:22 97 [nvme-wq] - root 0 0 00:00:00 80-22:52:22 98 [nvme-reset-wq] - root 0 0 00:00:00 80-22:52:22 99 [nvme-delete-wq] - root 0 0 00:01:16 80-22:52:22 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 80-22:52:22 101 [ipv6_addrconf] - root 0 0 00:00:00 80-22:52:22 110 [kstrp] - root 0 0 00:00:00 80-22:52:22 115 [kworker/u17:0] - root 0 0 00:01:17 80-22:52:22 137 [kworker/5:1H-kblockd] - root 0 0 00:01:17 80-22:52:22 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 80-22:52:22 168 [ata_sff] - root 0 0 00:00:00 80-22:52:22 169 [scsi_eh_0] - root 0 0 00:00:00 80-22:52:22 170 [scsi_tmf_0] - root 0 0 00:00:00 80-22:52:22 171 [scsi_eh_1] - root 0 0 00:00:00 80-22:52:22 172 [scsi_tmf_1] - root 0 0 00:00:00 80-22:52:21 174 [scsi_eh_2] - root 0 0 00:00:00 80-22:52:21 175 [scsi_tmf_2] - root 0 0 00:01:17 80-22:52:21 178 [kworker/6:1H-kblockd] - root 0 0 00:01:16 80-22:52:21 203 [kworker/3:1H-kblockd] - root 0 0 00:18:02 80-22:52:21 205 [jbd2/sda1-8] - root 0 0 00:00:00 80-22:52:21 206 [ext4-rsv-conver] - root 0 0 00:01:17 80-22:52:21 223 [kworker/1:1H-kblockd] - root 0 0 00:01:17 80-22:52:21 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 80-22:52:20 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:37 80-22:52:20 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 80-22:52:19 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:07:23 80-22:52:18 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:18 80-22:52:18 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 85768 06:07:14 80-22:52:18 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 80-22:52:18 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:31 80-22:52:18 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 13:07:31 80-22:52:18 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19432 08:32:02 80-22:52:18 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:26 80-22:52:18 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 80-22:52:17 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 80-22:52:17 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 80-22:52:17 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8212 5860 00:00:09 80-22:52:17 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2088 00:00:00 80-22:52:17 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:37 80-22:52:17 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:03:00 80-22:52:16 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:56:00 80-22:51:48 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:34:00 80-22:51:48 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 06:20:46 80-22:51:48 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 06:56:03 80-22:51:48 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:10:06 80-22:51:48 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:16:33 80-22:51:48 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 06:22:00 80-22:51:48 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 20:39:29 80-22:51:48 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 20:29:16 80-22:51:48 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 20:32:49 80-22:51:48 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 05:39:56 80-22:51:48 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 06:43:08 80-22:51:48 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:44:46 80-22:51:48 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 06:59:35 80-22:51:48 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:46:45 80-22:51:48 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 39536 00:02:24 42-19:13:07 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 40560 00:00:05 42-19:13:07 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 41288 00:00:05 42-19:13:07 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 40744 00:00:05 42-19:13:07 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 40632 00:00:05 42-19:13:07 56477 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:42:49 212536 [kworker/1:1-events] 0::/system.slice/php7.4-fpm.service root 232272 27384 00:08:46 68-13:42:15 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:01 01:22:49 735086 [kworker/7:0-events] 0::/system.slice/apache2.service www-data 262096 40964 00:00:04 29-15:30:56 972577 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 3112 00:00:00 10-09:28:31 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68976 8776 00:05:38 10-09:28:31 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7768 00:00:03 10-09:28:31 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7196 00:00:00 10-09:28:31 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 7556 00:00:00 10-09:28:31 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 7732 00:00:00 10-09:28:31 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 7060 00:00:00 10-09:28:31 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6716 00:00:00 10-09:28:31 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 7144 00:00:00 10-09:28:31 1294387 nginx: worker process 0::/system.slice/monit.service root 9692 3684 00:03:27 10-09:28:31 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3160 00:00:38 10-09:27:50 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3300 00:52:58 10-09:27:50 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 52:28 1539335 [kworker/2:2-events] 0::/system.slice/apache2.service www-data 261960 40048 00:00:01 8-14:27:32 1757873 /usr/sbin/apache2 -k start - root 0 0 00:00:00 34:49 2005319 [kworker/5:2-events] - root 0 0 00:00:00 33:49 2029827 [kworker/0:1-events] 0::/system.slice/cron.service root 5908 2424 00:00:00 21:52:49 2077086 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875060 42176 00:00:05 21:52:49 2077116 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2560 00:00:00 21:52:49 2077258 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12684 00:01:07 21:52:49 2077292 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2360 00:00:00 21:52:49 2077345 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 5068 00:00:00 21:52:49 2077383 sudo ./webhookstart 0::/system.slice/cron.service root 5908 2412 00:00:00 21:52:49 2077501 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 2480 516 00:00:00 21:52:49 2077525 sh ./webhookstart 0::/system.slice/cron.service root 748900 11880 00:01:07 21:52:49 2077530 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 40104 35324 00:00:10 21:52:49 2077544 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2360 00:00:00 21:52:49 2077756 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 11676 00:01:03 21:52:49 2077792 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2432 00:00:03 21:52:48 2078483 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13244 00:00:00 21:52:48 2078494 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2428 00:00:03 21:52:48 2078528 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13272 00:00:00 21:52:48 2078537 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55380 00:01:12 21:52:47 2079021 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55412 00:01:10 21:52:47 2079065 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2344 00:00:00 21:52:42 2083970 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11000 00:00:07 21:52:42 2083979 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2392 00:00:00 21:52:42 2084018 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 12824 00:01:02 21:52:42 2084023 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2340 00:00:00 21:52:42 2084071 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 493688 52560 00:01:05 21:52:42 2084074 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2368 00:00:00 21:52:42 2084105 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 9116 00:01:07 21:52:42 2084109 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel - root 0 0 00:00:00 30:50 2104258 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 28:49 2154539 [kworker/3:0-events] - root 0 0 00:00:00 23:56 2285315 [kworker/u16:1-events_unbound] - root 0 0 00:00:00 22:49 2313154 [kworker/3:1-events] - root 0 0 00:00:00 17:49 2440217 [kworker/2:1-cgroup_destroy] - root 0 0 00:00:00 13:51 2552583 [kworker/6:0-cgroup_destroy] - root 0 0 00:00:00 12:48 2578941 [kworker/0:2-events] - root 0 0 00:00:00 10:49 2635545 [kworker/5:0-events] - root 0 0 00:00:00 09:49 2658183 [kworker/7:1-events] - root 0 0 00:00:00 08:49 2678680 [kworker/1:2-events] - root 0 0 00:00:00 07:09 2720679 [kworker/u16:3-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 261976 41128 00:00:05 42-17:31:09 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262108 41300 00:00:05 42-17:31:09 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 05:49 2769441 [kworker/4:0-events] - root 0 0 00:00:00 04:49 2794341 [kworker/0:0-events] 0::/system.slice/cron.service root 6492 3792 00:00:02 02:50 2842800 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater - root 0 0 00:00:00 01:49 2865258 [kworker/6:1-events] - root 0 0 00:00:00 00:48 2891703 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 00:48 2891757 [kworker/2:0-events] 0::/system.slice/cron.service root 2392 504 00:00:00 00:42 2895736 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:40 2896838 /bin/sleep 60 0::/system.slice/cron.service root 5908 2384 00:00:00 00:36 2898978 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6756 00:00:00 00:36 2898984 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:36 2899007 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6796 00:00:00 00:36 2899010 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2372 00:00:00 00:36 2899034 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6788 00:00:00 00:36 2899041 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2324 00:00:00 00:36 2899065 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6720 00:00:00 00:36 2899068 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:36 2899088 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6780 00:00:00 00:36 2899092 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2388 00:00:00 00:36 2899128 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6700 00:00:00 00:36 2899133 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2428 00:00:00 00:35 2899164 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6664 00:00:00 00:35 2899173 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 504 00:00:00 00:26 2904126 /bin/sleep 60 0::/system.slice/cron.service root 4284 572 00:00:00 00:26 2904514 sleep 60 0::/system.slice/cron.service root 2392 508 00:00:00 00:24 2905338 /bin/sleep 60 0::/system.slice/cron.service root 4284 572 00:00:00 00:16 2909652 sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:04 2916234 sleep 8 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 2917565 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:02 2917595 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 2917668 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2917832 sleep 2 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 2917990 sleep 1 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 2917999 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11184 00:00:00 00:01 2918001 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8225 --header Origin: https://127.0.0.1:8225 --header Sec-WebSocket-Key: MjM1MTA6NjMzNw== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8225/ -k 0::/system.slice/cron.service root 4288 564 00:00:00 00:01 2918003 wc -l 0::/system.slice/xinetd.service root 6224 3500 00:00:00 00:01 2918008 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2918035 sleep 1 0::/system.slice/cron.service root 4080 3124 00:00:00 00:01 2918036 /bin/bash ./statusdispolock 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2918041 sleep 1 0::/system.slice/cron.service root 2392 504 00:00:00 00:01 2918075 /bin/sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2918218 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2918341 sleep 0.1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2918344 sleep 0.1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2918349 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2918362 sleep 0.1 0::/system.slice/cron.service root 5840 1408 00:00:00 00:00 2918371 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 5244 3056 00:00:00 00:00 2918375 jq .dispositivos.ios 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 2918393 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 6492 2196 00:00:00 00:00 2918398 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/mariadb.service mysql 3675804 534992 4-13:55:40 25-16:17:34 2961082 /usr/sbin/mariadbd 0::/system.slice/packagekit.service root 288308 6256 00:00:45 80-20:58:30 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:07 80-20:58:30 3036680 /usr/libexec/polkitd --no-debug 0::/system.slice/cron.service root 5556 2724 00:01:37 4-08:02:35 3238538 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3228 00:00:06 4-08:01:50 3262591 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/apache2.service www-data 261968 39920 00:00:00 4-10:39:06 3336302 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261948 39208 00:00:00 2-02:32:05 3392020 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3820 00:00:04 20:51:49 3681226 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/rsyslog.service root 573796 4980 00:34:01 41-08:57:48 3736834 /usr/sbin/rsyslogd -n -iNONE - root 0 0 00:00:01 02:07:48 3744219 [kworker/6:2-events] 0::/system.slice/systemd-journald.service root 237944 157936 02:29:09 41-08:57:32 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:09 41-08:57:29 3745512 /lib/systemd/systemd-udevd - root 0 0 00:00:03 04:39:49 3980403 [kworker/4:2-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 46973sec preferred_lft 46973sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-13 23:52 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f8719d83eFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11156 16:33:43 78-22:49:38 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 78-22:49:38 2 [kthreadd] - root 0 0 00:00:00 78-22:49:38 3 [rcu_gp] - root 0 0 00:00:00 78-22:49:38 4 [rcu_par_gp] - root 0 0 00:00:00 78-22:49:38 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 78-22:49:38 8 [mm_percpu_wq] - root 0 0 00:00:00 78-22:49:38 9 [rcu_tasks_rude_] - root 0 0 00:00:00 78-22:49:38 10 [rcu_tasks_trace] - root 0 0 00:34:50 78-22:49:38 11 [ksoftirqd/0] - root 0 0 02:00:33 78-22:49:38 12 [rcu_sched] - root 0 0 00:01:12 78-22:49:38 13 [migration/0] - root 0 0 00:00:00 78-22:49:38 15 [cpuhp/0] - root 0 0 00:00:00 78-22:49:38 16 [cpuhp/1] - root 0 0 00:01:13 78-22:49:38 17 [migration/1] - root 0 0 00:34:46 78-22:49:38 18 [ksoftirqd/1] - root 0 0 00:00:00 78-22:49:38 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 78-22:49:38 21 [cpuhp/2] - root 0 0 00:01:13 78-22:49:38 22 [migration/2] - root 0 0 00:34:44 78-22:49:38 23 [ksoftirqd/2] - root 0 0 00:00:00 78-22:49:38 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 78-22:49:38 26 [cpuhp/3] - root 0 0 00:01:13 78-22:49:38 27 [migration/3] - root 0 0 00:34:42 78-22:49:38 28 [ksoftirqd/3] - root 0 0 00:00:00 78-22:49:38 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 78-22:49:38 31 [cpuhp/4] - root 0 0 00:01:14 78-22:49:38 32 [migration/4] - root 0 0 00:34:44 78-22:49:38 33 [ksoftirqd/4] - root 0 0 00:00:00 78-22:49:38 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 78-22:49:38 36 [cpuhp/5] - root 0 0 00:01:14 78-22:49:38 37 [migration/5] - root 0 0 00:34:45 78-22:49:38 38 [ksoftirqd/5] - root 0 0 00:00:00 78-22:49:38 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 78-22:49:38 41 [cpuhp/6] - root 0 0 00:01:13 78-22:49:38 42 [migration/6] - root 0 0 00:34:44 78-22:49:38 43 [ksoftirqd/6] - root 0 0 00:00:00 78-22:49:38 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 78-22:49:38 46 [cpuhp/7] - root 0 0 00:01:13 78-22:49:38 47 [migration/7] - root 0 0 00:35:16 78-22:49:38 48 [ksoftirqd/7] - root 0 0 00:00:00 78-22:49:38 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 78-22:49:38 56 [kdevtmpfs] - root 0 0 00:00:00 78-22:49:38 57 [netns] - root 0 0 00:15:07 78-22:49:38 58 [kauditd] - root 0 0 00:00:08 78-22:49:38 59 [khungtaskd] - root 0 0 00:00:00 78-22:49:38 60 [oom_reaper] - root 0 0 00:00:00 78-22:49:38 61 [writeback] - root 0 0 00:02:27 78-22:49:38 62 [kcompactd0] - root 0 0 00:00:00 78-22:49:38 63 [ksmd] - root 0 0 00:06:52 78-22:49:38 64 [khugepaged] - root 0 0 00:00:00 78-22:49:38 84 [kintegrityd] - root 0 0 00:00:00 78-22:49:38 85 [kblockd] - root 0 0 00:00:00 78-22:49:38 86 [blkcg_punt_bio] - root 0 0 00:01:16 78-22:49:37 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 78-22:49:37 94 [kswapd0] - root 0 0 00:00:00 78-22:49:37 95 [kthrotld] - root 0 0 00:00:00 78-22:49:37 96 [acpi_thermal_pm] - root 0 0 00:00:00 78-22:49:37 97 [nvme-wq] - root 0 0 00:00:00 78-22:49:37 98 [nvme-reset-wq] - root 0 0 00:00:00 78-22:49:37 99 [nvme-delete-wq] - root 0 0 00:01:15 78-22:49:37 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 78-22:49:37 101 [ipv6_addrconf] - root 0 0 00:00:00 78-22:49:37 110 [kstrp] - root 0 0 00:00:00 78-22:49:37 115 [kworker/u17:0] - root 0 0 00:01:15 78-22:49:37 137 [kworker/5:1H-kblockd] - root 0 0 00:01:16 78-22:49:37 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 78-22:49:37 168 [ata_sff] - root 0 0 00:00:00 78-22:49:37 169 [scsi_eh_0] - root 0 0 00:00:00 78-22:49:37 170 [scsi_tmf_0] - root 0 0 00:00:00 78-22:49:37 171 [scsi_eh_1] - root 0 0 00:00:00 78-22:49:37 172 [scsi_tmf_1] - root 0 0 00:00:00 78-22:49:36 174 [scsi_eh_2] - root 0 0 00:00:00 78-22:49:36 175 [scsi_tmf_2] - root 0 0 00:01:16 78-22:49:36 178 [kworker/6:1H-kblockd] - root 0 0 00:01:14 78-22:49:36 203 [kworker/3:1H-kblockd] - root 0 0 00:17:41 78-22:49:36 205 [jbd2/sda1-8] - root 0 0 00:00:00 78-22:49:36 206 [ext4-rsv-conver] - root 0 0 00:01:16 78-22:49:36 223 [kworker/1:1H-kblockd] - root 0 0 00:01:15 78-22:49:36 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 78-22:49:35 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:37 78-22:49:35 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 78-22:49:34 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:07:14 78-22:49:33 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:13 78-22:49:33 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 89520 05:58:13 78-22:49:33 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 78-22:49:33 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:26 78-22:49:33 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 12:49:49 78-22:49:33 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19424 08:20:22 78-22:49:33 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:25 78-22:49:33 813 sshd: /usr/sbin/sshd -D [listener] 1 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 78-22:49:32 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 78-22:49:32 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 78-22:49:32 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8212 5904 00:00:08 78-22:49:32 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2084 00:00:00 78-22:49:32 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:36 78-22:49:32 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:55 78-22:49:31 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:54:42 78-22:49:03 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:27:31 78-22:49:03 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 06:11:44 78-22:49:03 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 06:46:15 78-22:49:03 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:09:52 78-22:49:03 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:09:08 78-22:49:03 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 06:12:59 78-22:49:03 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 20:08:49 78-22:49:03 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 19:59:00 78-22:49:03 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 20:02:14 78-22:49:03 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 05:31:54 78-22:49:03 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 06:33:46 78-22:49:03 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:42:17 78-22:49:03 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 06:49:44 78-22:49:03 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:41:20 78-22:49:03 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 39536 00:02:17 40-19:10:22 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 40552 00:00:05 40-19:10:22 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 41136 00:00:05 40-19:10:22 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40864 00:00:05 40-19:10:22 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 40632 00:00:05 40-19:10:22 56477 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232272 27360 00:08:28 66-13:39:30 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:01 01:35:04 600411 [kworker/4:2-events] 0::/system.slice/apache2.service www-data 261964 40784 00:00:03 27-15:28:11 972577 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 3112 00:00:00 8-09:25:46 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68976 8776 00:03:46 8-09:25:46 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7768 00:00:02 8-09:25:46 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7196 00:00:00 8-09:25:46 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 7556 00:00:00 8-09:25:46 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 7732 00:00:00 8-09:25:46 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 7060 00:00:00 8-09:25:46 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6716 00:00:00 8-09:25:46 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 7144 00:00:00 8-09:25:46 1294387 nginx: worker process 0::/system.slice/monit.service root 9692 3684 00:02:47 8-09:25:46 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3160 00:00:31 8-09:25:05 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3300 00:42:41 8-09:25:05 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/apache2.service www-data 262084 40172 00:00:00 6-14:24:47 1757873 /usr/sbin/apache2 -k start - root 0 0 00:00:00 50:05 1779403 [kworker/2:2-events] - root 0 0 00:00:02 03:23:04 2001352 [kworker/1:1-events] - root 0 0 00:00:00 40:04 2042082 [kworker/3:1-events] - root 0 0 00:00:04 05:58:04 2163343 [kworker/0:2-events] - root 0 0 00:00:00 30:04 2304752 [kworker/0:0-cgroup_destroy] - root 0 0 00:00:05 05:50:04 2360844 [kworker/6:2-events] 0::/system.slice/cron.service root 5908 2340 00:00:00 21:50:04 2370055 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 876204 44284 00:00:05 21:50:03 2370099 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2392 00:00:00 21:50:03 2370233 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 5032 00:00:00 21:50:03 2370261 sudo ./webhookstart 0::/system.slice/cron.service root 5908 2396 00:00:00 21:50:03 2370309 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10952 00:00:07 21:50:03 2370324 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 2480 516 00:00:00 21:50:03 2370411 sh ./webhookstart 0::/system.slice/cron.service root 40104 35292 00:00:10 21:50:03 2370439 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2468 00:00:00 21:50:03 2370526 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 11228 00:01:02 21:50:03 2370537 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2336 00:00:00 21:50:03 2370675 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 494776 52968 00:01:04 21:50:03 2370700 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2452 00:00:00 21:50:03 2370827 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12816 00:01:07 21:50:03 2370841 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2328 00:00:00 21:50:03 2370929 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12772 00:01:07 21:50:03 2370947 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2572 00:00:00 21:50:02 2371021 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 11428 00:01:07 21:50:02 2371028 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2348 00:00:00 21:50:02 2371115 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 13208 00:01:04 21:50:02 2371123 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2428 00:00:03 21:50:00 2373170 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13364 00:00:00 21:50:00 2373175 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2388 00:00:03 21:50:00 2373181 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13304 00:00:00 21:50:00 2373185 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 59416 00:01:13 21:49:59 2373552 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 57472 00:01:16 21:49:59 2373580 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 - root 0 0 00:00:00 21:04 2536595 [kworker/u16:3-flush-8:0] - root 0 0 00:00:00 20:04 2560906 [kworker/5:0-events] - root 0 0 00:00:00 19:43 2574594 [kworker/7:1-events] - root 0 0 00:00:00 17:04 2645707 [kworker/3:2-events] - root 0 0 00:00:00 15:31 2676983 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 15:04 2686647 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 13:04 2750202 [kworker/1:2-cgroup_destroy] 0::/system.slice/apache2.service www-data 261976 41128 00:00:05 40-17:28:24 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262108 41300 00:00:05 40-17:28:24 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 11:06 2797945 [kworker/4:1-events] - root 0 0 00:00:00 10:04 2823546 [kworker/6:1-cgroup_destroy] - root 0 0 00:00:00 08:04 2882474 [kworker/7:0-events] - root 0 0 00:00:00 06:04 2923634 [kworker/2:0-events] 0::/system.slice/cron.service root 6128 3432 00:00:04 05:05 2943684 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 05:04 2944363 [kworker/4:0-events] 0::/system.slice/mariadb.service mysql 3675804 509884 4-05:11:55 23-16:14:49 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 04:04 2979021 [kworker/3:0-events] - root 0 0 00:00:00 03:04 3013713 [kworker/0:1-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:43 78-20:55:45 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:07 78-20:55:45 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 02:04 3037692 [kworker/6:0-events] - root 0 0 00:00:00 02:03 3038357 [kworker/u16:0-ext4-rsv-conversion] 0::/system.slice/cron.service root 2392 568 00:00:00 00:58 3064632 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:56 3065429 /bin/sleep 60 0::/system.slice/ssh.service root 16332 8260 00:00:00 00:46 3069138 sshd: unknown [priv] 0::/system.slice/ssh.service sshd 13272 4532 00:00:00 00:46 3069211 sshd: unknown [net] 0::/system.slice/cron.service root 4284 500 00:00:00 00:46 3069272 sleep 60 0::/system.slice/cron.service root 2392 572 00:00:00 00:29 3075877 /bin/sleep 60 0::/system.slice/cron.service root 2392 508 00:00:00 00:27 3076671 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:14 3081573 sleep 60 0::/system.slice/cron.service root 4284 508 00:00:00 00:08 3083961 sleep 8 0::/system.slice/cron.service root 10888 3688 00:00:00 00:06 3084759 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10888 3688 00:00:00 00:06 3084790 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 00:06 3084912 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 2480 580 00:00:00 00:06 3084947 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2924 00:00:00 00:06 3084961 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5840 3272 00:00:00 00:06 3085066 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine 0::/system.slice/cron.service root 5708 1948 00:00:00 00:05 3085290 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9976 00:00:00 00:05 3085309 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 644 00:00:00 00:05 3085310 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3240 00:00:00 00:05 3085382 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 3092 00:00:00 00:05 3085474 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3012 00:00:00 00:05 3085509 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5708 3164 00:00:00 00:05 3085519 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 4284 504 00:00:00 00:04 3086098 sleep 13 0::/system.slice/cron.service root 4284 568 00:00:00 00:04 3086113 sleep 56 0::/system.slice/cron.service root 4284 500 00:00:00 00:04 3086188 sleep 49 0::/system.slice/cron.service root 4284 500 00:00:00 00:04 3086231 sleep 105 0::/system.slice/cron.service root 4284 564 00:00:00 00:04 3086448 sleep 10 0::/system.slice/cron.service root 4284 568 00:00:00 00:02 3087482 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3087537 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 3087718 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11272 00:00:00 00:01 3087720 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8226 --header Origin: https://127.0.0.1:8226 --header Sec-WebSocket-Key: MTM3NjE6MTE4MzU= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8226/ -k 0::/system.slice/cron.service root 4288 564 00:00:00 00:01 3087722 wc -l 0::/system.slice/cron.service root 4068 3064 00:00:00 00:01 3087734 /bin/bash ./statustunnel 0::/system.slice/cron.service root 2392 568 00:00:00 00:01 3087757 /bin/sleep 5 0::/system.slice/cron.service root 2392 564 00:00:00 00:01 3087812 /bin/sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3087854 sleep 2 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 3087867 sleep 1 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 3087868 sleep 1 0::/system.slice/xinetd.service root 6236 3684 00:00:00 00:01 3087893 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3087946 sleep 2 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 3087949 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3088038 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3088144 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3088174 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 3088175 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3088198 sleep 0.1 0::/system.slice/xinetd.service root 6676 1148 00:00:00 00:00 3088211 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5708 1452 00:00:00 00:00 3088212 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 2952 00:00:00 00:00 3088214 jq .dispositivos.windows 0::/system.slice/cron.service root 6128 1816 00:00:00 00:00 3088215 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5556 2724 00:00:51 2-07:59:50 3238538 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3228 00:00:03 2-07:59:05 3262591 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/apache2.service www-data 261968 39912 00:00:00 2-10:36:21 3336302 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261624 26248 00:00:00 02:29:20 3392020 /usr/sbin/apache2 -k start 0::/system.slice/rsyslog.service root 573796 4828 00:32:23 39-08:55:03 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 237932 181308 02:21:51 39-08:54:47 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:08 39-08:54:44 3745512 /lib/systemd/systemd-udevd - root 0 0 00:00:01 02:13:04 3821116 [kworker/5:2-events] 0::/system.slice/ntp.service ntp 74496 4012 00:00:04 20:49:04 3980681 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 64896sec preferred_lft 64896sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-11 23:50 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fbcb5e2dfFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11156 16:14:42 76-22:49:45 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 76-22:49:45 2 [kthreadd] - root 0 0 00:00:00 76-22:49:45 3 [rcu_gp] - root 0 0 00:00:00 76-22:49:45 4 [rcu_par_gp] - root 0 0 00:00:00 76-22:49:45 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 76-22:49:45 8 [mm_percpu_wq] - root 0 0 00:00:00 76-22:49:45 9 [rcu_tasks_rude_] - root 0 0 00:00:00 76-22:49:45 10 [rcu_tasks_trace] - root 0 0 00:34:12 76-22:49:45 11 [ksoftirqd/0] - root 0 0 01:57:42 76-22:49:45 12 [rcu_sched] - root 0 0 00:01:11 76-22:49:45 13 [migration/0] - root 0 0 00:00:00 76-22:49:45 15 [cpuhp/0] - root 0 0 00:00:00 76-22:49:45 16 [cpuhp/1] - root 0 0 00:01:12 76-22:49:45 17 [migration/1] - root 0 0 00:34:07 76-22:49:45 18 [ksoftirqd/1] - root 0 0 00:00:00 76-22:49:45 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 76-22:49:45 21 [cpuhp/2] - root 0 0 00:01:11 76-22:49:45 22 [migration/2] - root 0 0 00:34:07 76-22:49:45 23 [ksoftirqd/2] - root 0 0 00:00:00 76-22:49:45 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 76-22:49:45 26 [cpuhp/3] - root 0 0 00:01:12 76-22:49:45 27 [migration/3] - root 0 0 00:34:04 76-22:49:45 28 [ksoftirqd/3] - root 0 0 00:00:00 76-22:49:45 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 76-22:49:45 31 [cpuhp/4] - root 0 0 00:01:12 76-22:49:45 32 [migration/4] - root 0 0 00:34:06 76-22:49:45 33 [ksoftirqd/4] - root 0 0 00:00:00 76-22:49:45 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 76-22:49:45 36 [cpuhp/5] - root 0 0 00:01:12 76-22:49:45 37 [migration/5] - root 0 0 00:34:07 76-22:49:45 38 [ksoftirqd/5] - root 0 0 00:00:00 76-22:49:45 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 76-22:49:45 41 [cpuhp/6] - root 0 0 00:01:12 76-22:49:45 42 [migration/6] - root 0 0 00:34:05 76-22:49:45 43 [ksoftirqd/6] - root 0 0 00:00:00 76-22:49:45 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 76-22:49:45 46 [cpuhp/7] - root 0 0 00:01:12 76-22:49:45 47 [migration/7] - root 0 0 00:34:37 76-22:49:45 48 [ksoftirqd/7] - root 0 0 00:00:00 76-22:49:45 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 76-22:49:45 56 [kdevtmpfs] - root 0 0 00:00:00 76-22:49:45 57 [netns] - root 0 0 00:15:07 76-22:49:45 58 [kauditd] - root 0 0 00:00:08 76-22:49:45 59 [khungtaskd] - root 0 0 00:00:00 76-22:49:45 60 [oom_reaper] - root 0 0 00:00:00 76-22:49:45 61 [writeback] - root 0 0 00:02:23 76-22:49:45 62 [kcompactd0] - root 0 0 00:00:00 76-22:49:45 63 [ksmd] - root 0 0 00:06:43 76-22:49:45 64 [khugepaged] - root 0 0 00:00:00 76-22:49:45 84 [kintegrityd] - root 0 0 00:00:00 76-22:49:45 85 [kblockd] - root 0 0 00:00:00 76-22:49:45 86 [blkcg_punt_bio] - root 0 0 00:01:15 76-22:49:44 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 76-22:49:44 94 [kswapd0] - root 0 0 00:00:00 76-22:49:44 95 [kthrotld] - root 0 0 00:00:00 76-22:49:44 96 [acpi_thermal_pm] - root 0 0 00:00:00 76-22:49:44 97 [nvme-wq] - root 0 0 00:00:00 76-22:49:44 98 [nvme-reset-wq] - root 0 0 00:00:00 76-22:49:44 99 [nvme-delete-wq] - root 0 0 00:01:14 76-22:49:44 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 76-22:49:44 101 [ipv6_addrconf] - root 0 0 00:00:00 76-22:49:44 110 [kstrp] - root 0 0 00:00:00 76-22:49:44 115 [kworker/u17:0] - root 0 0 00:01:14 76-22:49:44 137 [kworker/5:1H-kblockd] - root 0 0 00:01:14 76-22:49:44 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 76-22:49:44 168 [ata_sff] - root 0 0 00:00:00 76-22:49:44 169 [scsi_eh_0] - root 0 0 00:00:00 76-22:49:44 170 [scsi_tmf_0] - root 0 0 00:00:00 76-22:49:44 171 [scsi_eh_1] - root 0 0 00:00:00 76-22:49:44 172 [scsi_tmf_1] - root 0 0 00:00:00 76-22:49:43 174 [scsi_eh_2] - root 0 0 00:00:00 76-22:49:43 175 [scsi_tmf_2] - root 0 0 00:01:15 76-22:49:43 178 [kworker/6:1H-kblockd] - root 0 0 00:01:13 76-22:49:43 203 [kworker/3:1H-kblockd] - root 0 0 00:17:20 76-22:49:43 205 [jbd2/sda1-8] - root 0 0 00:00:00 76-22:49:43 206 [ext4-rsv-conver] - root 0 0 00:01:14 76-22:49:43 223 [kworker/1:1H-kblockd] - root 0 0 00:01:14 76-22:49:43 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 76-22:49:42 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:36 76-22:49:42 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 76-22:49:41 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:07:06 76-22:49:40 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:09 76-22:49:40 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 88960 05:49:35 76-22:49:40 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 76-22:49:40 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:21 76-22:49:40 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 12:32:06 76-22:49:40 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395548 19424 08:08:39 76-22:49:40 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:23 76-22:49:40 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 76-22:49:39 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 76-22:49:39 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 76-22:49:39 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8188 5828 00:00:08 76-22:49:39 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2084 00:00:00 76-22:49:39 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:36 76-22:49:39 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:50 76-22:49:38 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:53:25 76-22:49:10 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:21:06 76-22:49:10 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 06:02:46 76-22:49:10 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 06:36:30 76-22:49:10 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:09:38 76-22:49:10 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 05:01:48 76-22:49:10 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 06:04:01 76-22:49:10 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 19:38:16 76-22:49:10 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 19:28:48 76-22:49:10 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 19:31:47 76-22:49:10 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 05:23:54 76-22:49:10 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 06:24:28 76-22:49:10 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:39:49 76-22:49:10 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 06:39:56 76-22:49:10 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:35:57 76-22:49:10 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 39536 00:02:10 38-19:10:29 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 40552 00:00:04 38-19:10:29 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 41004 00:00:05 38-19:10:29 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40860 00:00:04 38-19:10:29 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 40376 00:00:05 38-19:10:29 56477 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:56:11 146809 [kworker/6:0-events] - root 0 0 00:00:05 07:14:11 230517 [kworker/5:1-events] - root 0 0 00:00:01 01:50:11 303215 [kworker/1:2-events] 0::/system.slice/php7.4-fpm.service root 232272 27360 00:08:13 64-13:39:37 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/apache2.service www-data 261964 40784 00:00:03 25-15:28:18 972577 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 3112 00:00:00 6-09:25:53 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68824 8440 00:02:40 6-09:25:53 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7768 00:00:01 6-09:25:53 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7196 00:00:00 6-09:25:53 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 7556 00:00:00 6-09:25:53 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68372 7732 00:00:00 6-09:25:53 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 7060 00:00:00 6-09:25:53 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6716 00:00:00 6-09:25:53 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 7144 00:00:00 6-09:25:53 1294387 nginx: worker process 0::/system.slice/monit.service root 9692 3668 00:02:07 6-09:25:53 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3160 00:00:23 6-09:25:12 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3300 00:32:29 6-09:25:12 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/apache2.service www-data 261948 39768 00:00:00 4-14:24:54 1757873 /usr/sbin/apache2 -k start - root 0 0 00:00:00 43:11 2066337 [kworker/7:1-events] - root 0 0 00:00:01 40:25 2132742 [kworker/u16:3-ext4-rsv-conversion] 0::/system.slice/cron.service root 5908 2364 00:00:00 21:50:11 2426439 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875740 44660 00:00:04 21:50:11 2426477 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2412 00:00:00 21:50:10 2426888 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5024 00:00:00 21:50:10 2426910 sudo ./webhookstart 0::/system.slice/cron.service root 2480 516 00:00:00 21:50:10 2427020 sh ./webhookstart 0::/system.slice/cron.service root 40104 35292 00:00:10 21:50:10 2427035 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2564 00:00:03 21:50:07 2430134 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13272 00:00:00 21:50:07 2430142 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2456 00:00:03 21:50:07 2430149 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13308 00:00:00 21:50:07 2430156 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57688 00:01:13 21:50:07 2430525 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57276 00:01:12 21:50:07 2430549 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2404 00:00:00 21:50:04 2433090 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11176 00:00:06 21:50:04 2433094 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2408 00:00:00 21:50:04 2433130 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9644 00:01:01 21:50:04 2433134 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2332 00:00:00 21:50:04 2433196 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 496956 53340 00:01:07 21:50:04 2433201 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2356 00:00:00 21:50:04 2433233 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11236 00:01:07 21:50:04 2433236 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2392 00:00:00 21:50:04 2433292 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12464 00:01:06 21:50:04 2433299 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2400 00:00:00 21:50:04 2433321 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12368 00:01:06 21:50:04 2433328 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2396 00:00:00 21:50:04 2433348 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 7928 00:01:02 21:50:04 2433353 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:02 03:09:11 2439717 [kworker/0:2-events] - root 0 0 00:00:00 26:11 2503492 [kworker/3:2-events] - root 0 0 00:00:04 05:43:11 2612071 [kworker/2:2-events] - root 0 0 00:00:00 20:09 2663091 [kworker/3:1-events] - root 0 0 00:00:00 19:56 2673515 [kworker/u16:0-ext4-rsv-conversion] 0::/system.slice/apache2.service www-data 262096 41148 00:00:04 38-17:28:32 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 40988 00:00:05 38-17:28:31 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262108 41040 00:00:05 38-17:28:31 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 16:11 2767481 [kworker/0:1-events] - root 0 0 00:00:00 14:11 2815669 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 14:11 2815755 [kworker/5:2-events] - root 0 0 00:00:00 11:13 2900165 [kworker/1:1-cgroup_destroy] - root 0 0 00:00:00 11:11 2901344 [kworker/4:2-cgroup_destroy] - root 0 0 00:00:02 02:51:12 2911827 [kworker/4:1-events] - root 0 0 00:00:00 10:10 2926361 [kworker/7:2-events] 0::/system.slice/mariadb.service mysql 3716784 504100 3-21:06:38 21-16:14:56 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 07:11 3005723 [kworker/6:2-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:42 76-20:55:52 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:07 76-20:55:52 3036680 /usr/libexec/polkitd --no-debug 0::/system.slice/cron.service root 6128 3436 00:00:05 05:11 3046677 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 05:10 3047559 [kworker/2:0-events] - root 0 0 00:00:00 04:11 3085256 [kworker/4:0-events] - root 0 0 00:00:00 01:11 3165923 [kworker/1:0-events] 0::/system.slice/cron.service root 2392 572 00:00:00 00:46 3176112 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:44 3176921 /bin/sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:42 3177615 sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:17 3187471 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:15 3188280 /bin/sleep 60 0::/system.slice/cron.service root 10888 3688 00:00:00 00:12 3189087 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 516 00:00:00 00:12 3189507 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2880 00:00:00 00:12 3189580 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1988 00:00:00 00:12 3189677 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9900 00:00:00 00:12 3189683 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 712 00:00:00 00:12 3189684 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3064 00:00:00 00:12 3189745 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5708 3160 00:00:00 00:12 3189759 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3176 00:00:00 00:12 3189794 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 3172 00:00:00 00:12 3189869 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 4284 568 00:00:00 00:11 3190394 sleep 94 0::/system.slice/cron.service root 4284 504 00:00:00 00:11 3190581 sleep 18 0::/system.slice/cron.service root 4284 504 00:00:00 00:11 3190590 sleep 83 0::/system.slice/cron.service root 4284 568 00:00:00 00:11 3190630 sleep 58 0::/system.slice/cron.service root 5908 2396 00:00:00 00:11 3190890 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 6340 00:00:00 00:11 3190895 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2476 00:00:00 00:11 3190930 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 157956 6408 00:00:00 00:11 3190935 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2532 00:00:00 00:10 3190967 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 6436 00:00:00 00:10 3190971 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2408 00:00:00 00:10 3191034 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6344 00:00:00 00:10 3191036 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2392 00:00:00 00:10 3191071 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6396 00:00:00 00:10 3191073 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2576 00:00:00 00:10 3191145 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6340 00:00:00 00:10 3191152 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2392 00:00:00 00:10 3191200 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6404 00:00:00 00:10 3191202 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 500 00:00:00 00:08 3192246 sleep 60 0::/system.slice/php7.4-fpm.service www-data 232572 14936 00:00:00 00:05 3193528 php-fpm: pool www 0::/system.slice/cron.service root 2392 564 00:00:00 00:03 3194177 /bin/sleep 5 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3194617 sleep 8 0::/system.slice/xinetd.service root 6236 3528 00:00:00 00:01 3194832 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 3194876 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11104 00:00:00 00:01 3194877 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8227 --header Origin: https://127.0.0.1:8227 --header Sec-WebSocket-Key: MTIwNjg6Mjg4NTI= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8227/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:01 3194878 wc -l 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3194885 sleep 1 0::/system.slice/cron.service root 4072 3088 00:00:00 00:01 3194892 /bin/bash ./statusmdm 0::/system.slice/cron.service root 2392 568 00:00:00 00:01 3194963 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3194970 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3194978 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3195001 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3195029 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3195039 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3195078 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3195184 sleep 2 0::/system.slice/cron.service root 4284 572 00:00:00 00:00 3195204 sleep 0.1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3195227 sleep 0.1 0::/system.slice/cron.service root 5836 1332 00:00:00 00:00 3195228 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2976 00:00:00 00:00 3195231 jq .dispositivos.windows 0::/system.slice/cron.service root 6128 1800 00:00:00 00:00 3195240 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 3040 00:00:00 00:00 3195244 jq -c . 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 3195261 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 3195262 sleep 1 0::/system.slice/ntp.service ntp 74496 3884 00:00:01 07:59:58 3238043 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/cron.service root 5556 2724 00:00:07 07:59:57 3238538 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3228 00:00:00 07:59:12 3262591 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/apache2.service www-data 262048 38664 00:00:00 10:36:28 3336302 /usr/sbin/apache2 -k start 0::/system.slice/rsyslog.service root 573796 4960 00:30:44 37-08:55:10 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 73900 37360 02:14:35 37-08:54:54 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:08 37-08:54:51 3745512 /lib/systemd/systemd-udevd Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 56354sec preferred_lft 56354sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-09 23:50 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f5645eec5Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11156 15:55:30 74-22:51:08 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 74-22:51:08 2 [kthreadd] - root 0 0 00:00:00 74-22:51:08 3 [rcu_gp] - root 0 0 00:00:00 74-22:51:08 4 [rcu_par_gp] - root 0 0 00:00:00 74-22:51:08 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 74-22:51:08 8 [mm_percpu_wq] - root 0 0 00:00:00 74-22:51:08 9 [rcu_tasks_rude_] - root 0 0 00:00:00 74-22:51:08 10 [rcu_tasks_trace] - root 0 0 00:33:34 74-22:51:08 11 [ksoftirqd/0] - root 0 0 01:54:53 74-22:51:08 12 [rcu_sched] - root 0 0 00:01:10 74-22:51:08 13 [migration/0] - root 0 0 00:00:00 74-22:51:08 15 [cpuhp/0] - root 0 0 00:00:00 74-22:51:08 16 [cpuhp/1] - root 0 0 00:01:11 74-22:51:08 17 [migration/1] - root 0 0 00:33:30 74-22:51:08 18 [ksoftirqd/1] - root 0 0 00:00:00 74-22:51:08 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 74-22:51:08 21 [cpuhp/2] - root 0 0 00:01:10 74-22:51:08 22 [migration/2] - root 0 0 00:33:28 74-22:51:08 23 [ksoftirqd/2] - root 0 0 00:00:00 74-22:51:08 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 74-22:51:08 26 [cpuhp/3] - root 0 0 00:01:11 74-22:51:08 27 [migration/3] - root 0 0 00:33:26 74-22:51:08 28 [ksoftirqd/3] - root 0 0 00:00:00 74-22:51:08 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 74-22:51:08 31 [cpuhp/4] - root 0 0 00:01:11 74-22:51:08 32 [migration/4] - root 0 0 00:33:28 74-22:51:08 33 [ksoftirqd/4] - root 0 0 00:00:00 74-22:51:08 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 74-22:51:08 36 [cpuhp/5] - root 0 0 00:01:11 74-22:51:08 37 [migration/5] - root 0 0 00:33:29 74-22:51:08 38 [ksoftirqd/5] - root 0 0 00:00:00 74-22:51:08 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 74-22:51:08 41 [cpuhp/6] - root 0 0 00:01:11 74-22:51:08 42 [migration/6] - root 0 0 00:33:27 74-22:51:08 43 [ksoftirqd/6] - root 0 0 00:00:00 74-22:51:08 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 74-22:51:08 46 [cpuhp/7] - root 0 0 00:01:11 74-22:51:08 47 [migration/7] - root 0 0 00:33:59 74-22:51:08 48 [ksoftirqd/7] - root 0 0 00:00:00 74-22:51:08 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 74-22:51:08 56 [kdevtmpfs] - root 0 0 00:00:00 74-22:51:08 57 [netns] - root 0 0 00:15:07 74-22:51:08 58 [kauditd] - root 0 0 00:00:08 74-22:51:08 59 [khungtaskd] - root 0 0 00:00:00 74-22:51:08 60 [oom_reaper] - root 0 0 00:00:00 74-22:51:08 61 [writeback] - root 0 0 00:02:20 74-22:51:08 62 [kcompactd0] - root 0 0 00:00:00 74-22:51:08 63 [ksmd] - root 0 0 00:06:34 74-22:51:08 64 [khugepaged] - root 0 0 00:00:00 74-22:51:08 84 [kintegrityd] - root 0 0 00:00:00 74-22:51:08 85 [kblockd] - root 0 0 00:00:00 74-22:51:08 86 [blkcg_punt_bio] - root 0 0 00:01:13 74-22:51:07 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 74-22:51:07 94 [kswapd0] - root 0 0 00:00:00 74-22:51:07 95 [kthrotld] - root 0 0 00:00:00 74-22:51:07 96 [acpi_thermal_pm] - root 0 0 00:00:00 74-22:51:07 97 [nvme-wq] - root 0 0 00:00:00 74-22:51:07 98 [nvme-reset-wq] - root 0 0 00:00:00 74-22:51:07 99 [nvme-delete-wq] - root 0 0 00:01:12 74-22:51:07 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 74-22:51:07 101 [ipv6_addrconf] - root 0 0 00:00:00 74-22:51:07 110 [kstrp] - root 0 0 00:00:00 74-22:51:07 115 [kworker/u17:0] - root 0 0 00:01:13 74-22:51:07 137 [kworker/5:1H-kblockd] - root 0 0 00:01:13 74-22:51:07 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 74-22:51:07 168 [ata_sff] - root 0 0 00:00:00 74-22:51:07 169 [scsi_eh_0] - root 0 0 00:00:00 74-22:51:07 170 [scsi_tmf_0] - root 0 0 00:00:00 74-22:51:07 171 [scsi_eh_1] - root 0 0 00:00:00 74-22:51:07 172 [scsi_tmf_1] - root 0 0 00:00:00 74-22:51:06 174 [scsi_eh_2] - root 0 0 00:00:00 74-22:51:06 175 [scsi_tmf_2] - root 0 0 00:01:13 74-22:51:06 178 [kworker/6:1H-kblockd] - root 0 0 00:01:12 74-22:51:06 203 [kworker/3:1H-kblockd] - root 0 0 00:17:00 74-22:51:06 205 [jbd2/sda1-8] - root 0 0 00:00:00 74-22:51:06 206 [ext4-rsv-conver] - root 0 0 00:01:13 74-22:51:06 223 [kworker/1:1H-kblockd] - root 0 0 00:01:13 74-22:51:06 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 74-22:51:05 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:36 74-22:51:05 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 74-22:51:04 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:58 74-22:51:03 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:03:04 74-22:51:03 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 85036 05:40:55 74-22:51:03 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 74-22:51:03 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:16 74-22:51:03 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 12:14:32 74-22:51:03 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19340 07:56:55 74-22:51:03 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:21 74-22:51:03 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 74-22:51:02 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 74-22:51:02 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 74-22:51:02 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8188 5844 00:00:08 74-22:51:02 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2084 00:00:00 74-22:51:02 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:35 74-22:51:02 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:46 74-22:51:01 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:52:09 74-22:50:33 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:14:42 74-22:50:33 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 05:53:51 74-22:50:33 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 06:26:49 74-22:50:33 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:09:24 74-22:50:33 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:54:30 74-22:50:33 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 05:55:06 74-22:50:33 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 19:07:51 74-22:50:33 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 18:58:44 74-22:50:33 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 19:01:26 74-22:50:33 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 05:15:57 74-22:50:33 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 06:15:13 74-22:50:33 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:37:21 74-22:50:33 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 06:30:11 74-22:50:33 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:30:36 74-22:50:33 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 39568 00:02:03 36-19:11:52 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40284 00:00:04 36-19:11:52 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40640 00:00:04 36-19:11:52 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 40336 00:00:04 36-19:11:52 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261980 40132 00:00:04 36-19:11:52 56477 /usr/sbin/apache2 -k start - root 0 0 00:00:03 04:38:34 192035 [kworker/3:2-mm_percpu_wq] - root 0 0 00:00:03 04:37:34 212230 [kworker/1:1-events] - root 0 0 00:00:01 01:55:34 217801 [kworker/6:0-mm_percpu_wq] 0::/system.slice/php7.4-fpm.service root 232272 27360 00:07:56 62-13:41:00 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:01 01:41:34 589026 [kworker/2:1-mm_percpu_wq] - root 0 0 00:00:03 04:21:34 629296 [kworker/0:0-mm_percpu_wq] - root 0 0 00:00:01 01:31:34 852007 [kworker/7:2-mm_percpu_wq] 0::/system.slice/apache2.service www-data 262088 40544 00:00:03 23-15:29:41 972577 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 3112 00:00:00 4-09:27:16 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68824 8444 00:01:26 4-09:27:16 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7772 00:00:01 4-09:27:16 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7200 00:00:00 4-09:27:16 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 7560 00:00:00 4-09:27:16 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68060 7636 00:00:00 4-09:27:16 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 7064 00:00:00 4-09:27:16 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6720 00:00:00 4-09:27:16 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 7148 00:00:00 4-09:27:16 1294387 nginx: worker process 0::/system.slice/monit.service root 9692 3160 00:01:27 4-09:27:16 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3160 00:00:16 4-09:26:35 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3304 00:22:21 4-09:26:35 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/apache2.service www-data 261948 39184 00:00:00 2-14:26:17 1757873 /usr/sbin/apache2 -k start - root 0 0 00:00:01 56:29 1760407 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 50:34 1932759 [kworker/1:2-cgroup_destroy] - root 0 0 00:00:01 38:34 2240214 [kworker/u16:1-events_unbound] - root 0 0 00:00:00 30:34 2445929 [kworker/5:1-events] - root 0 0 00:00:00 29:34 2472460 [kworker/3:1-events] 0::/system.slice/cron.service root 5908 2364 00:00:00 21:51:34 2549686 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875060 45136 00:00:04 21:51:34 2549713 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2408 00:00:00 21:51:34 2549759 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 4984 00:00:00 21:51:34 2549788 sudo ./webhookstart 0::/system.slice/cron.service root 2480 568 00:00:00 21:51:33 2549949 sh ./webhookstart 0::/system.slice/cron.service root 40104 35224 00:00:10 21:51:33 2549982 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2428 00:00:03 21:51:30 2553467 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13288 00:00:00 21:51:30 2553477 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2408 00:00:03 21:51:30 2553492 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13316 00:00:00 21:51:30 2553496 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 55452 00:01:08 21:51:30 2553977 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 57576 00:01:10 21:51:30 2554002 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2416 00:00:00 21:51:29 2554345 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8780 00:00:06 21:51:29 2554350 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2360 00:00:00 21:51:29 2554381 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 8876 00:01:02 21:51:29 2554385 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2384 00:00:00 21:51:29 2554423 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 502400 58864 00:01:07 21:51:29 2554426 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2364 00:00:00 21:51:29 2554467 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12632 00:01:08 21:51:29 2554469 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2396 00:00:00 21:51:29 2554481 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12956 00:01:07 21:51:29 2554483 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2384 00:00:00 21:51:29 2554524 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 15084 00:01:07 21:51:29 2554539 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2352 00:00:00 21:51:29 2554571 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 9132 00:01:03 21:51:29 2554577 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/apache2.service www-data 261960 39624 00:00:00 6-13:54:20 2600859 /usr/sbin/apache2 -k start - root 0 0 00:00:00 21:33 2681837 [kworker/6:2-cgroup_destroy] 0::/system.slice/apache2.service www-data 262096 40536 00:00:04 36-17:29:55 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 40896 00:00:04 36-17:29:54 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 40824 00:00:04 36-17:29:54 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 15:34 2831912 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 14:35 2867372 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 11:34 2945900 [kworker/2:2-events] 0::/system.slice/mariadb.service mysql 3675804 467612 3-12:59:27 19-16:16:19 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 09:34 2998342 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 08:34 3025271 [kworker/4:1-cgroup_destroy] 0::/system.slice/packagekit.service root 288308 6256 00:00:41 74-20:57:15 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:06 74-20:57:15 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 07:34 3046004 [kworker/5:0-events] - root 0 0 00:00:00 04:34 3132485 [kworker/6:1-events] - root 0 0 00:00:00 03:34 3161008 [kworker/7:0-events] - root 0 0 00:00:00 02:35 3185595 [kworker/4:2-events] 0::/system.slice/cron.service root 11124 3892 00:00:00 01:35 3209036 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 576 00:00:00 01:35 3209329 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2940 00:00:00 01:35 3209427 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1948 00:00:00 01:35 3209630 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9936 00:00:00 01:35 3209634 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 708 00:00:00 01:35 3209635 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3080 00:00:00 01:34 3209707 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 6492 3924 00:00:01 01:34 3209833 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 4284 504 00:00:00 01:33 3210531 sleep 100 - root 0 0 00:00:00 01:33 3210533 [kworker/0:2-events] 0::/system.slice/cron.service root 5908 2396 00:00:00 01:23 3214847 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6788 00:00:00 01:23 3214850 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2408 00:00:00 01:23 3214871 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6900 00:00:00 01:23 3214875 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:23 3214886 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6868 00:00:00 01:23 3214889 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2424 00:00:00 01:23 3214907 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6940 00:00:00 01:23 3214910 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2412 00:00:00 01:23 3214919 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6892 00:00:00 01:23 3214923 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2376 00:00:00 01:23 3214946 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6740 00:00:00 01:23 3214952 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:23 3214993 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6840 00:00:00 01:23 3215000 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 564 00:00:00 00:44 3228863 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:42 3229945 /bin/sleep 60 - root 0 0 00:00:00 00:34 3235136 [kworker/u16:2] - root 0 0 00:00:00 00:34 3235217 [kworker/1:0-events] 0::/system.slice/cron.service root 4284 504 00:00:00 00:19 3243634 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:15 3245928 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:13 3247148 /bin/sleep 60 0::/system.slice/cron.service root 4284 572 00:00:00 00:04 3251665 sleep 8 0::/system.slice/cron.service root 4284 564 00:00:00 00:02 3253149 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3253203 sleep 2 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 3253315 sleep 2 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 3253522 sleep 1 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 3253565 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11240 00:00:00 00:01 3253566 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9002 --header Origin: https://127.0.0.1:9002 --header Sec-WebSocket-Key: MjA0MzoyMDYx --header Sec-WebSocket-Version: 13 https://127.0.0.1:9002/ -k 0::/system.slice/cron.service root 4288 504 00:00:00 00:01 3253567 wc -l 0::/system.slice/xinetd.service root 6244 3608 00:00:00 00:01 3253570 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 99636 31776 00:00:00 00:01 3253591 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 3253600 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3253632 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3253675 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3253739 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3253768 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3253866 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3253885 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3253988 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3254014 sleep 0.1 0::/system.slice/xinetd.service root 6676 1208 00:00:00 00:00 3254042 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/rsyslog.service root 573796 4864 00:29:06 35-08:56:33 3736834 /usr/sbin/rsyslogd -n -iNONE - root 0 0 00:00:01 02:21:34 3742714 [kworker/4:0-events] 0::/system.slice/systemd-journald.service root 246424 170676 02:07:20 35-08:56:17 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2976 00:00:07 35-08:56:14 3745512 /lib/systemd/systemd-udevd 0::/system.slice/cron.service root 5684 2652 00:01:35 4-07:46:22 3935392 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3276 00:00:06 4-07:45:35 3954233 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/ntp.service ntp 74496 3460 00:00:04 20:50:33 4167773 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 52275sec preferred_lft 52275sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-07 23:51 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f31f3e506Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11172 15:35:28 72-22:34:33 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:04 72-22:34:33 2 [kthreadd] - root 0 0 00:00:00 72-22:34:33 3 [rcu_gp] - root 0 0 00:00:00 72-22:34:33 4 [rcu_par_gp] - root 0 0 00:00:00 72-22:34:33 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 72-22:34:33 8 [mm_percpu_wq] - root 0 0 00:00:00 72-22:34:33 9 [rcu_tasks_rude_] - root 0 0 00:00:00 72-22:34:33 10 [rcu_tasks_trace] - root 0 0 00:32:56 72-22:34:33 11 [ksoftirqd/0] - root 0 0 01:52:01 72-22:34:33 12 [rcu_sched] - root 0 0 00:01:09 72-22:34:33 13 [migration/0] - root 0 0 00:00:00 72-22:34:33 15 [cpuhp/0] - root 0 0 00:00:00 72-22:34:33 16 [cpuhp/1] - root 0 0 00:01:10 72-22:34:33 17 [migration/1] - root 0 0 00:32:52 72-22:34:33 18 [ksoftirqd/1] - root 0 0 00:00:00 72-22:34:33 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 72-22:34:33 21 [cpuhp/2] - root 0 0 00:01:09 72-22:34:33 22 [migration/2] - root 0 0 00:32:51 72-22:34:33 23 [ksoftirqd/2] - root 0 0 00:00:00 72-22:34:33 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 72-22:34:33 26 [cpuhp/3] - root 0 0 00:01:10 72-22:34:33 27 [migration/3] - root 0 0 00:32:48 72-22:34:33 28 [ksoftirqd/3] - root 0 0 00:00:00 72-22:34:33 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 72-22:34:33 31 [cpuhp/4] - root 0 0 00:01:10 72-22:34:33 32 [migration/4] - root 0 0 00:32:51 72-22:34:33 33 [ksoftirqd/4] - root 0 0 00:00:00 72-22:34:33 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 72-22:34:33 36 [cpuhp/5] - root 0 0 00:01:10 72-22:34:33 37 [migration/5] - root 0 0 00:32:51 72-22:34:33 38 [ksoftirqd/5] - root 0 0 00:00:00 72-22:34:33 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 72-22:34:33 41 [cpuhp/6] - root 0 0 00:01:10 72-22:34:33 42 [migration/6] - root 0 0 00:32:50 72-22:34:33 43 [ksoftirqd/6] - root 0 0 00:00:00 72-22:34:33 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 72-22:34:33 46 [cpuhp/7] - root 0 0 00:01:10 72-22:34:33 47 [migration/7] - root 0 0 00:33:20 72-22:34:33 48 [ksoftirqd/7] - root 0 0 00:00:00 72-22:34:33 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 72-22:34:33 56 [kdevtmpfs] - root 0 0 00:00:00 72-22:34:33 57 [netns] - root 0 0 00:15:07 72-22:34:33 58 [kauditd] - root 0 0 00:00:08 72-22:34:33 59 [khungtaskd] - root 0 0 00:00:00 72-22:34:33 60 [oom_reaper] - root 0 0 00:00:00 72-22:34:33 61 [writeback] - root 0 0 00:02:17 72-22:34:33 62 [kcompactd0] - root 0 0 00:00:00 72-22:34:33 63 [ksmd] - root 0 0 00:06:26 72-22:34:33 64 [khugepaged] - root 0 0 00:00:00 72-22:34:33 84 [kintegrityd] - root 0 0 00:00:00 72-22:34:33 85 [kblockd] - root 0 0 00:00:00 72-22:34:33 86 [blkcg_punt_bio] - root 0 0 00:01:12 72-22:34:32 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 72-22:34:32 94 [kswapd0] - root 0 0 00:00:00 72-22:34:32 95 [kthrotld] - root 0 0 00:00:00 72-22:34:32 96 [acpi_thermal_pm] - root 0 0 00:00:00 72-22:34:32 97 [nvme-wq] - root 0 0 00:00:00 72-22:34:32 98 [nvme-reset-wq] - root 0 0 00:00:00 72-22:34:32 99 [nvme-delete-wq] - root 0 0 00:01:11 72-22:34:32 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 72-22:34:32 101 [ipv6_addrconf] - root 0 0 00:00:00 72-22:34:32 110 [kstrp] - root 0 0 00:00:00 72-22:34:32 115 [kworker/u17:0] - root 0 0 00:01:11 72-22:34:32 137 [kworker/5:1H-kblockd] - root 0 0 00:01:12 72-22:34:32 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 72-22:34:32 168 [ata_sff] - root 0 0 00:00:00 72-22:34:32 169 [scsi_eh_0] - root 0 0 00:00:00 72-22:34:32 170 [scsi_tmf_0] - root 0 0 00:00:00 72-22:34:32 171 [scsi_eh_1] - root 0 0 00:00:00 72-22:34:32 172 [scsi_tmf_1] - root 0 0 00:00:00 72-22:34:31 174 [scsi_eh_2] - root 0 0 00:00:00 72-22:34:31 175 [scsi_tmf_2] - root 0 0 00:01:12 72-22:34:31 178 [kworker/6:1H-kblockd] - root 0 0 00:01:11 72-22:34:31 203 [kworker/3:1H-kblockd] - root 0 0 00:16:40 72-22:34:31 205 [jbd2/sda1-8] - root 0 0 00:00:00 72-22:34:31 206 [ext4-rsv-conver] - root 0 0 00:01:12 72-22:34:31 223 [kworker/1:1H-kblockd] - root 0 0 00:01:11 72-22:34:31 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 72-22:34:30 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:36 72-22:34:30 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 72-22:34:29 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:50 72-22:34:28 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:59 72-22:34:28 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 88196 05:32:30 72-22:34:28 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 72-22:34:28 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:12 72-22:34:28 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 11:56:49 72-22:34:28 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19344 07:45:14 72-22:34:28 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:19 72-22:34:28 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 72-22:34:27 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 72-22:34:27 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 72-22:34:27 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8188 5844 00:00:08 72-22:34:27 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2084 00:00:00 72-22:34:27 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:34 72-22:34:27 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:41 72-22:34:26 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:50:51 72-22:33:58 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:08:14 72-22:33:58 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 05:44:51 72-22:33:58 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 06:17:01 72-22:33:58 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:09:10 72-22:33:58 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:47:07 72-22:33:58 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 05:46:06 72-22:33:58 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 18:37:15 72-22:33:58 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 18:28:28 72-22:33:58 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 18:30:55 72-22:33:58 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 05:07:55 72-22:33:58 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 06:05:51 72-22:33:58 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:34:52 72-22:33:58 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 06:20:21 72-22:33:58 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:25:12 72-22:33:58 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/ntp.service ntp 74496 3696 00:00:04 20:33:59 53425 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/apache2.service root 260924 39596 00:01:56 34-18:55:17 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40316 00:00:04 34-18:55:17 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40616 00:00:04 34-18:55:17 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 40312 00:00:04 34-18:55:17 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40280 00:00:04 34-18:55:17 56477 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232272 27360 00:07:41 60-13:24:25 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/apache2.service www-data 262088 40520 00:00:02 21-15:13:06 972577 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 3180 00:00:00 2-09:10:41 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68824 8576 00:00:47 2-09:10:41 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 68508 7904 00:00:00 2-09:10:41 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 68108 7332 00:00:00 2-09:10:41 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 68028 7692 00:00:00 2-09:10:41 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 68060 7768 00:00:00 2-09:10:41 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67948 7196 00:00:00 2-09:10:41 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 68108 6852 00:00:00 2-09:10:41 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67976 7280 00:00:00 2-09:10:41 1294387 nginx: worker process 0::/system.slice/monit.service root 9692 3752 00:00:47 2-09:10:41 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3176 00:00:08 2-09:10:00 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3320 00:12:06 2-09:10:00 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 01:03:59 1317690 [kworker/6:1-mm_percpu_wq] - root 0 0 00:00:00 59:59 1416862 [kworker/4:2-events] - root 0 0 00:00:01 58:01 1475475 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 49:59 1675715 [kworker/7:2-events] 0::/system.slice/apache2.service www-data 261928 37176 00:00:00 14:09:42 1757873 /usr/sbin/apache2 -k start - root 0 0 00:00:01 35:59 2052803 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 35:59 2052879 [kworker/3:0-events] - root 0 0 00:00:00 26:01 2315225 [kworker/0:2-events] - root 0 0 00:00:00 23:59 2372385 [kworker/1:2-mm_percpu_wq] - root 0 0 00:00:00 22:59 2400089 [kworker/5:2-events] - root 0 0 00:00:00 22:30 2410012 [kworker/2:1-mm_percpu_wq] 0::/system.slice/apache2.service www-data 262084 39680 00:00:00 4-13:37:45 2600859 /usr/sbin/apache2 -k start - root 0 0 00:00:00 14:59 2605174 [kworker/3:1-events] 0::/system.slice/cron.service root 5908 2528 00:00:00 21:34:59 2638246 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874696 43592 00:00:04 21:34:59 2638259 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2380 00:00:00 21:34:59 2638386 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5036 00:00:00 21:34:59 2638421 sudo ./webhookstart 0::/system.slice/cron.service root 2480 512 00:00:00 21:34:59 2638536 sh ./webhookstart 0::/system.slice/cron.service root 40104 35220 00:00:09 21:34:59 2638555 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2348 00:00:00 21:34:58 2639186 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10944 00:00:06 21:34:58 2639188 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2352 00:00:00 21:34:58 2639244 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9972 00:01:00 21:34:58 2639249 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2376 00:00:00 21:34:58 2639302 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 494776 50436 00:01:05 21:34:58 2639309 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2452 00:00:00 21:34:58 2639422 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 601436 8924 00:01:06 21:34:58 2639435 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2360 00:00:00 21:34:58 2639505 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12280 00:01:05 21:34:58 2639512 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2340 00:00:00 21:34:58 2639579 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 14476 00:01:04 21:34:58 2639601 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2368 00:00:00 21:34:58 2639668 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 7848 00:01:01 21:34:58 2639676 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2448 00:00:03 21:34:56 2641845 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13332 00:00:00 21:34:56 2641851 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2476 00:00:03 21:34:56 2641860 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13280 00:00:00 21:34:56 2641867 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 57392 00:01:07 21:34:55 2642201 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 55336 00:01:07 21:34:55 2642220 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 - root 0 0 00:00:00 12:59 2664168 [kworker/6:0-events] - root 0 0 00:00:00 11:59 2684596 [kworker/1:1-events] - root 0 0 00:00:00 10:59 2705243 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 09:59 2725982 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 09:59 2726034 [kworker/7:1-events] - root 0 0 00:00:02 02:49:59 2737200 [kworker/0:1-events] - root 0 0 00:00:00 08:59 2750731 [kworker/5:0-events] 0::/system.slice/apache2.service www-data 262096 40516 00:00:04 34-17:13:20 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40740 00:00:04 34-17:13:19 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 40800 00:00:04 34-17:13:19 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 07:59 2789270 [kworker/2:2-events] - root 0 0 00:00:00 04:59 2863908 [kworker/3:2-events] - root 0 0 00:00:00 04:58 2864529 [kworker/6:2-events] - root 0 0 00:00:00 03:49 2900516 [kworker/u16:2-flush-8:0] - root 0 0 00:00:00 02:59 2927809 [kworker/4:1-events] 0::/system.slice/mariadb.service mysql 3675804 442628 3-04:39:34 17-15:59:44 2961082 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5908 2584 00:00:00 00:59 2969516 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6784 00:00:00 00:59 2969534 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2396 00:00:00 00:59 2969627 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6792 00:00:00 00:59 2969642 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2384 00:00:00 00:59 2969725 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6260 00:00:00 00:59 2969745 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2320 00:00:00 00:59 2969796 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6784 00:00:00 00:59 2969802 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 568 00:00:00 00:50 2973213 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:48 2973823 /bin/sleep 60 0::/system.slice/cron.service root 5908 2368 00:00:00 00:44 2975081 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6696 00:00:00 00:44 2975085 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2368 00:00:00 00:44 2975100 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6716 00:00:00 00:44 2975107 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2372 00:00:00 00:44 2975115 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6700 00:00:00 00:44 2975118 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 496 00:00:00 00:41 2975864 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:26 2980699 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:24 2981390 /bin/sleep 60 0::/system.slice/cron.service root 4284 508 00:00:00 00:24 2981513 sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:06 2987456 sleep 8 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 2988716 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2988864 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 2988913 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11172 00:00:00 00:01 2988914 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8225 --header Origin: https://127.0.0.1:8225 --header Sec-WebSocket-Key: MjY4Njo4Nzc3 --header Sec-WebSocket-Version: 13 https://127.0.0.1:8225/ -k 0::/system.slice/cron.service root 4288 564 00:00:00 00:01 2988915 wc -l 0::/system.slice/xinetd.service root 6220 3588 00:00:00 00:01 2988925 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2988941 sleep 2 0::/system.slice/cron.service root 4080 3072 00:00:00 00:01 2988943 /bin/bash ./statusdispolock 0::/system.slice/cron.service root 2392 504 00:00:00 00:01 2988968 /bin/sleep 2 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 2989040 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2989133 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2989157 sleep 1 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989173 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989174 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989175 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3904 00:00:00 00:00 2989176 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989177 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3904 00:00:00 00:00 2989178 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3668 00:00:00 00:00 2989179 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989180 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989181 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989182 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989183 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3640 00:00:00 00:00 2989184 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989185 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989186 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989187 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989188 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989189 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989191 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989193 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989194 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989195 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989197 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989198 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989201 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989202 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989203 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989204 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989205 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3700 00:00:00 00:00 2989206 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989207 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3888 00:00:00 00:00 2989208 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989209 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3900 00:00:00 00:00 2989210 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989211 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989213 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989214 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989216 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989217 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3892 00:00:00 00:00 2989218 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989219 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3900 00:00:00 00:00 2989221 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989223 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989225 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989226 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989227 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3900 00:00:00 00:00 2989228 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3868 00:00:00 00:00 2989229 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989231 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989232 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3900 00:00:00 00:00 2989233 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989234 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989235 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3876 00:00:00 00:00 2989236 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3900 00:00:00 00:00 2989237 /usr/sbin/CRON -f 0::/system.slice/cron.service root 10884 3696 00:00:00 00:00 2989239 /usr/sbin/CRON -f 0::/system.slice/cron.service root 11124 3900 00:00:00 00:00 2989240 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 00:00 2989248 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-managedconfig-engine.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 580 00:00:00 00:00 2989251 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-mdmctl-alive.scr > /dev/null 2>&1 0::/system.slice/cron.service root 5836 1332 00:00:00 00:00 2989252 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 2480 580 00:00:00 00:00 2989263 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-controlpush.scr > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2936 00:00:00 00:00 2989268 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-mdmctl-alive.scr 0::/system.slice/cron.service root 2480 580 00:00:00 00:00 2989273 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-engine-unassign.scr > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2900 00:00:00 00:00 2989279 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-managedconfig-engine.scr 0::/system.slice/cron.service root 5244 3032 00:00:00 00:00 2989281 jq .dispositivos.windows 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989282 /bin/sh -c /opt/imtlazarus/updater/up_auto-updater > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2956 00:00:00 00:00 2989286 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-controlpush.scr 0::/system.slice/cron.service root 2480 512 00:00:00 00:00 2989287 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-invitations-status.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989295 /bin/sh -c /opt/imtlazarus/mdms/up_set_add_imtlr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 512 00:00:00 00:00 2989297 /bin/sh -c /opt/imtlazarus/mdms/micromdm/webhook/up_webhookstart > /dev/null 2>&1 0::/system.slice/cron.service root 5708 1960 00:00:00 00:00 2989304 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-managedconfig-engine.scr 0::/system.slice/cron.service root 5708 2972 00:00:00 00:00 2989309 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-engine-unassign.scr 0::/system.slice/cron.service root 2480 576 00:00:00 00:00 2989310 /bin/sh -c /opt/imtlazarus/system/limpia_logs.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 576 00:00:00 00:00 2989312 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-engine-update.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 584 00:00:00 00:00 2989321 /bin/sh -c /opt/imtlazarus/mdms/up_set_push > /dev/null 2>&1 0::/system.slice/cron.service root 2480 580 00:00:00 00:00 2989326 /bin/sh -c /opt/imtlazarus/mdms/up_set_remove_apps > /dev/null 2>&1 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989327 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-controlenrolado.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989331 /bin/sh -c /opt/imtlazarus/formularios/up_formularios-getformularios.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989333 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 2480 576 00:00:00 00:00 2989341 /bin/sh -c /opt/imtlazarus/system/controlsystemctlerror > /dev/null 2>&1 0::/system.slice/cron.service root 2480 512 00:00:00 00:00 2989344 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-engine-assign.scr > /dev/null 2>&1 0::/system.slice/cron.service root 5708 1956 00:00:00 00:00 2989345 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-engine-unassign.scr 0::/system.slice/cron.service root 2480 520 00:00:00 00:00 2989347 /bin/sh -c /opt/imtlazarus/mdms/up_set_airdrop > /dev/null 2>&1 0::/system.slice/cron.service root 5708 3100 00:00:00 00:00 2989348 /bin/bash /opt/imtlazarus/system/limpia_logs.scr 0::/system.slice/cron.service root 2480 512 00:00:00 00:00 2989349 /bin/sh -c /opt/imtlazarus/mdms/meraki/getinfo/up_meraki-get-info.scr > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2896 00:00:00 00:00 2989350 /bin/bash /opt/imtlazarus/mdms/up_set_push 0::/system.slice/cron.service root 2480 576 00:00:00 00:00 2989355 /bin/sh -c /opt/imtlazarus/mdms/jamf/getinfo/up_jamf-api-getinfo.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989359 /bin/sh -c /opt/imtlazarus/mdms/up_set_remove_imtlr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 576 00:00:00 00:00 2989360 /bin/sh -c /opt/imtlazarus/config/up_server-getinfo.scr > /dev/null 2>&1 0::/system.slice/cron.service root 9384 3684 00:00:00 00:00 2989366 /bin/ps auxf 0::/system.slice/cron.service root 5284 2264 00:00:00 00:00 2989367 grep micromdm-managedconfig-engine.scr 0::/system.slice/cron.service root 5264 648 00:00:00 00:00 2989368 grep -v grep 0::/system.slice/cron.service root 5708 3000 00:00:00 00:00 2989369 /bin/bash /opt/imtlazarus/mdms/up_set_remove_apps 0::/system.slice/cron.service root 5284 648 00:00:00 00:00 2989370 grep -v up_micromdm-managedconfig-engine.scr 0::/system.slice/cron.service root 9468 3824 00:00:00 00:00 2989371 /bin/ps auxf 0::/system.slice/cron.service root 5284 2360 00:00:00 00:00 2989372 grep micromdm-vpp-engine-unassign.scr 0::/system.slice/cron.service root 5264 712 00:00:00 00:00 2989373 grep -v grep 0::/system.slice/cron.service root 5708 2896 00:00:00 00:00 2989374 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-engine-assign.scr 0::/system.slice/cron.service root 2480 520 00:00:00 00:00 2989375 /bin/sh -c /opt/imtlazarus/manager/up_manager-info-updater > /dev/null 2>&1 0::/system.slice/cron.service root 5284 708 00:00:00 00:00 2989376 grep -v up_micromdm-vpp-engine-unassign.scr 0::/system.slice/cron.service root 5708 2948 00:00:00 00:00 2989379 /bin/bash /opt/imtlazarus/mdms/up_set_add_imtlr 0::/system.slice/cron.service root 2480 580 00:00:00 00:00 2989380 /bin/sh -c /opt/imtlazarus/system/up_mysql > /dev/null 2>&1 0::/system.slice/cron.service root 2480 576 00:00:00 00:00 2989384 /bin/sh -c /opt/imtlazarus/mdms/up_set_winapps > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2884 00:00:00 00:00 2989389 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989393 /bin/sh -c /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-media-engine.scr > /dev/null 2>&1 0::/system.slice/cron.service root 2480 576 00:00:00 00:00 2989394 /bin/sh -c /opt/imtlazarus/mdms/up_set_add_apps > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2844 00:00:00 00:00 2989398 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-invitations-status.scr 0::/system.slice/cron.service root 2480 516 00:00:00 00:00 2989401 /bin/sh -c /opt/imtlazarus/system/up_system-screenshotsprevault.scr > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2840 00:00:00 00:00 2989402 /bin/bash /opt/imtlazarus/mdms/micromdm/webhook/up_webhookstart 0::/system.slice/cron.service root 5708 2892 00:00:00 00:00 2989403 /bin/bash /opt/imtlazarus/updater/up_auto-updater 0::/system.slice/cron.service root 5708 2872 00:00:00 00:00 2989404 /bin/bash /opt/imtlazarus/mdms/micromdm/motores/up_micromdm-vpp-engine-update.scr 0::/system.slice/cron.service
Found on 2024-10-05 23:34 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fdbc9e159Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11140 15:16:07 70-22:40:52 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 70-22:40:52 2 [kthreadd] - root 0 0 00:00:00 70-22:40:52 3 [rcu_gp] - root 0 0 00:00:00 70-22:40:52 4 [rcu_par_gp] - root 0 0 00:00:00 70-22:40:52 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 70-22:40:52 8 [mm_percpu_wq] - root 0 0 00:00:00 70-22:40:52 9 [rcu_tasks_rude_] - root 0 0 00:00:00 70-22:40:52 10 [rcu_tasks_trace] - root 0 0 00:32:19 70-22:40:52 11 [ksoftirqd/0] - root 0 0 01:49:11 70-22:40:52 12 [rcu_sched] - root 0 0 00:01:07 70-22:40:52 13 [migration/0] - root 0 0 00:00:00 70-22:40:52 15 [cpuhp/0] - root 0 0 00:00:00 70-22:40:52 16 [cpuhp/1] - root 0 0 00:01:08 70-22:40:52 17 [migration/1] - root 0 0 00:32:15 70-22:40:52 18 [ksoftirqd/1] - root 0 0 00:00:00 70-22:40:52 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 70-22:40:52 21 [cpuhp/2] - root 0 0 00:01:08 70-22:40:52 22 [migration/2] - root 0 0 00:32:14 70-22:40:52 23 [ksoftirqd/2] - root 0 0 00:00:00 70-22:40:52 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 70-22:40:52 26 [cpuhp/3] - root 0 0 00:01:08 70-22:40:52 27 [migration/3] - root 0 0 00:32:11 70-22:40:52 28 [ksoftirqd/3] - root 0 0 00:00:00 70-22:40:52 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 70-22:40:52 31 [cpuhp/4] - root 0 0 00:01:09 70-22:40:52 32 [migration/4] - root 0 0 00:32:13 70-22:40:52 33 [ksoftirqd/4] - root 0 0 00:00:00 70-22:40:52 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 70-22:40:52 36 [cpuhp/5] - root 0 0 00:01:09 70-22:40:52 37 [migration/5] - root 0 0 00:32:13 70-22:40:52 38 [ksoftirqd/5] - root 0 0 00:00:00 70-22:40:52 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 70-22:40:52 41 [cpuhp/6] - root 0 0 00:01:08 70-22:40:52 42 [migration/6] - root 0 0 00:32:12 70-22:40:52 43 [ksoftirqd/6] - root 0 0 00:00:00 70-22:40:52 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 70-22:40:52 46 [cpuhp/7] - root 0 0 00:01:08 70-22:40:52 47 [migration/7] - root 0 0 00:32:43 70-22:40:52 48 [ksoftirqd/7] - root 0 0 00:00:00 70-22:40:52 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 70-22:40:52 56 [kdevtmpfs] - root 0 0 00:00:00 70-22:40:52 57 [netns] - root 0 0 00:15:07 70-22:40:52 58 [kauditd] - root 0 0 00:00:08 70-22:40:52 59 [khungtaskd] - root 0 0 00:00:00 70-22:40:52 60 [oom_reaper] - root 0 0 00:00:00 70-22:40:52 61 [writeback] - root 0 0 00:02:13 70-22:40:52 62 [kcompactd0] - root 0 0 00:00:00 70-22:40:52 63 [ksmd] - root 0 0 00:06:18 70-22:40:52 64 [khugepaged] - root 0 0 00:00:00 70-22:40:52 84 [kintegrityd] - root 0 0 00:00:00 70-22:40:52 85 [kblockd] - root 0 0 00:00:00 70-22:40:52 86 [blkcg_punt_bio] - root 0 0 00:01:11 70-22:40:51 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 70-22:40:51 94 [kswapd0] - root 0 0 00:00:00 70-22:40:51 95 [kthrotld] - root 0 0 00:00:00 70-22:40:51 96 [acpi_thermal_pm] - root 0 0 00:00:00 70-22:40:51 97 [nvme-wq] - root 0 0 00:00:00 70-22:40:51 98 [nvme-reset-wq] - root 0 0 00:00:00 70-22:40:51 99 [nvme-delete-wq] - root 0 0 00:01:10 70-22:40:51 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 70-22:40:51 101 [ipv6_addrconf] - root 0 0 00:00:00 70-22:40:51 110 [kstrp] - root 0 0 00:00:00 70-22:40:51 115 [kworker/u17:0] - root 0 0 00:01:10 70-22:40:51 137 [kworker/5:1H-kblockd] - root 0 0 00:01:11 70-22:40:51 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 70-22:40:51 168 [ata_sff] - root 0 0 00:00:00 70-22:40:51 169 [scsi_eh_0] - root 0 0 00:00:00 70-22:40:51 170 [scsi_tmf_0] - root 0 0 00:00:00 70-22:40:51 171 [scsi_eh_1] - root 0 0 00:00:00 70-22:40:51 172 [scsi_tmf_1] - root 0 0 00:00:00 70-22:40:50 174 [scsi_eh_2] - root 0 0 00:00:00 70-22:40:50 175 [scsi_tmf_2] - root 0 0 00:01:11 70-22:40:50 178 [kworker/6:1H-kblockd] - root 0 0 00:01:09 70-22:40:50 203 [kworker/3:1H-kblockd] - root 0 0 00:16:20 70-22:40:50 205 [jbd2/sda1-8] - root 0 0 00:00:00 70-22:40:50 206 [ext4-rsv-conver] - root 0 0 00:01:11 70-22:40:50 223 [kworker/1:1H-kblockd] - root 0 0 00:01:10 70-22:40:50 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 70-22:40:49 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:35 70-22:40:49 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 70-22:40:48 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:42 70-22:40:47 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:54 70-22:40:47 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 85432 05:24:08 70-22:40:47 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 70-22:40:47 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:07 70-22:40:47 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 11:39:22 70-22:40:47 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19312 07:33:46 70-22:40:47 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:17 70-22:40:47 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 70-22:40:46 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 70-22:40:46 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 70-22:40:46 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8192 5832 00:00:08 70-22:40:46 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2084 00:00:00 70-22:40:46 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:33 70-22:40:46 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:37 70-22:40:45 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:49:35 70-22:40:17 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 04:01:52 70-22:40:17 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 05:35:57 70-22:40:17 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5964 2608 06:07:21 70-22:40:17 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:08:56 70-22:40:17 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:39:50 70-22:40:17 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 05:37:12 70-22:40:17 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 18:06:55 70-22:40:17 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 17:58:27 70-22:40:17 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 18:00:39 70-22:40:17 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 04:59:59 70-22:40:17 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 05:56:37 70-22:40:17 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:32:24 70-22:40:17 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 06:10:37 70-22:40:17 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:19:52 70-22:40:17 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 39608 00:01:50 32-19:01:36 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40168 00:00:04 32-19:01:36 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 40312 00:00:04 32-19:01:36 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 40312 00:00:04 32-19:01:36 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40204 00:00:04 32-19:01:36 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 39904 00:00:04 32-18:58:34 143233 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232272 27360 00:07:28 58-13:30:44 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:02 01:28:18 928841 [kworker/u16:0-flush-8:0] - root 0 0 00:00:01 01:26:18 970483 [kworker/5:2-mm_percpu_wq] 0::/system.slice/apache2.service www-data 262088 40380 00:00:02 19-15:19:25 972577 /usr/sbin/apache2 -k start 0::/system.slice/nginx.service root 67480 2136 00:00:00 09:17:00 1294378 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 68412 7828 00:00:07 09:17:00 1294379 nginx: worker process 0::/system.slice/nginx.service www-data 67980 4992 00:00:00 09:17:00 1294380 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3716 00:00:00 09:17:00 1294381 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3716 00:00:00 09:17:00 1294382 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3716 00:00:00 09:17:00 1294383 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3716 00:00:00 09:17:00 1294384 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3720 00:00:00 09:17:00 1294385 nginx: worker process 0::/system.slice/nginx.service www-data 67840 3336 00:00:00 09:17:00 1294387 nginx: worker process 0::/system.slice/monit.service root 9692 3668 00:00:07 09:17:00 1294430 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/cron.service root 5708 3176 00:00:01 09:16:19 1307822 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5840 3320 00:01:59 09:16:19 1308011 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:01 01:04:18 1561755 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 37:18 2261631 [kworker/6:0-events] - root 0 0 00:00:00 32:18 2394545 [kworker/7:0-events] 0::/system.slice/apache2.service www-data 261940 39404 00:00:00 2-13:44:04 2600859 /usr/sbin/apache2 -k start - root 0 0 00:00:00 24:17 2607348 [kworker/5:1-events] - root 0 0 00:00:00 20:19 2712175 [kworker/u16:4-flush-8:0] 0::/system.slice/cron.service root 5908 2372 00:00:00 21:41:19 2717801 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874624 41300 00:00:04 21:41:19 2717830 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2408 00:00:00 21:41:18 2718062 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5032 00:00:00 21:41:18 2718095 sudo ./webhookstart 0::/system.slice/cron.service root 2480 520 00:00:00 21:41:18 2718184 sh ./webhookstart 0::/system.slice/cron.service root 40104 35280 00:00:10 21:41:18 2718203 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2384 00:00:00 21:41:17 2719111 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9104 00:00:06 21:41:17 2719116 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2344 00:00:00 21:41:17 2719183 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9200 00:01:00 21:41:17 2719194 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2476 00:00:00 21:41:17 2719257 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 494776 53196 00:01:05 21:41:17 2719272 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2344 00:00:00 21:41:17 2719336 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12552 00:01:07 21:41:17 2719366 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2356 00:00:00 21:41:17 2719404 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12748 00:01:05 21:41:17 2719412 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2340 00:00:00 21:41:17 2719489 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12752 00:01:06 21:41:17 2719509 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2348 00:00:00 21:41:17 2719581 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11948 00:01:03 21:41:17 2719602 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2424 00:00:03 21:41:15 2721382 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13452 00:00:00 21:41:15 2721390 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2376 00:00:03 21:41:15 2721393 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13232 00:00:00 21:41:15 2721398 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55296 00:01:10 21:41:15 2721931 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383220 55212 00:01:11 21:41:15 2721932 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/apache2.service www-data 261964 40240 00:00:04 32-17:19:39 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40596 00:00:04 32-17:19:38 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261976 40656 00:00:04 32-17:19:38 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 15:18 2830964 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 13:18 2891844 [kworker/4:1-events] - root 0 0 00:00:00 11:18 2940403 [kworker/3:2-events] - root 0 0 00:00:00 11:17 2941016 [kworker/7:1-events] 0::/system.slice/mariadb.service mysql 3675804 417216 2-20:43:08 15-16:06:03 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 10:18 2971356 [kworker/6:2-cgroup_destroy] 0::/system.slice/packagekit.service root 288308 6256 00:00:39 70-20:46:59 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:06 70-20:46:59 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:02 02:48:18 3045984 [kworker/1:1-events] - root 0 0 00:00:00 07:18 3046229 [kworker/0:1-events] - root 0 0 00:00:00 06:18 3066973 [kworker/4:2-events] - root 0 0 00:00:00 05:18 3094254 [kworker/1:2-events] - root 0 0 00:00:00 04:25 3116385 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 04:18 3121057 [kworker/7:2-events] - root 0 0 00:00:00 03:18 3155771 [kworker/5:0-events] - root 0 0 00:00:00 02:18 3180318 [kworker/2:0-cgroup_destroy] 0::/system.slice/cron.service root 10884 3680 00:00:00 01:19 3203470 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 01:19 3203648 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2904 00:00:00 01:19 3203664 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1976 00:00:00 01:19 3204035 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 10016 00:00:00 01:19 3204061 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 648 00:00:00 01:19 3204062 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3032 00:00:00 01:19 3204072 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 5708 2996 00:00:00 01:19 3204107 /bin/bash /opt/imtlazarus/manager/manager-get-filterconfig.scr 0::/system.slice/cron.service root 5708 3028 00:00:00 01:18 3204175 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5908 2344 00:00:00 01:18 3204711 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6860 00:00:00 01:18 3204715 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 500 00:00:00 01:18 3204878 sleep 101 0::/system.slice/cron.service root 5908 2336 00:00:00 01:18 3204882 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6960 00:00:00 01:18 3204889 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 504 00:00:00 01:18 3204892 sleep 106 0::/system.slice/cron.service root 4284 504 00:00:00 01:18 3204924 sleep 115 - root 0 0 00:00:00 01:18 3204930 [kworker/3:1-events] 0::/system.slice/cron.service root 5908 2464 00:00:00 01:18 3204976 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6772 00:00:00 01:17 3204988 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:17 3205107 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6884 00:00:00 01:17 3205120 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:17 3205188 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6772 00:00:00 01:17 3205196 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2392 00:00:00 01:17 3205241 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6884 00:00:00 01:17 3205246 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:17 3205295 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6864 00:00:00 01:17 3205300 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 572 00:00:00 00:56 3216697 sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:38 3222487 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:36 3223164 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:15 3231269 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:09 3233191 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:07 3233876 /bin/sleep 60 0::/system.slice/xinetd.service root 6236 3708 00:00:00 00:01 3235639 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3235670 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 3235687 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11072 00:00:00 00:01 3235688 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8993 --header Origin: https://127.0.0.1:8993 --header Sec-WebSocket-Key: MjI4NzQ6NTM3OQ== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8993/ -k 0::/system.slice/cron.service root 4288 568 00:00:00 00:01 3235689 wc -l 0::/system.slice/cron.service root 99636 32184 00:00:00 00:01 3235692 /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3235720 sleep 8 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3235749 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3235789 sleep 1 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 3235821 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3235853 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3235892 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3235907 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3235912 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3235975 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 3236013 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3236042 sleep 0.1 0::/system.slice/xinetd.service root 6676 1208 00:00:00 00:00 3236060 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 - root 0 0 00:00:06 07:55:18 3441249 [kworker/3:0-events] 0::/system.slice/rsyslog.service root 442724 4532 00:25:51 31-08:46:17 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 73924 44308 01:53:03 31-08:46:01 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2992 00:00:06 31-08:45:58 3745512 /lib/systemd/systemd-udevd - root 0 0 00:00:04 05:02:18 3758198 [kworker/0:2-events] - root 0 0 00:00:01 02:17:19 3845343 [kworker/2:1-events] 0::/system.slice/ntp.service ntp 74496 3800 00:00:01 07:36:07 3934908 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/cron.service root 5556 2668 00:00:07 07:36:06 3935392 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3292 00:00:00 07:35:19 3954233 /bin/bash /opt/imtlazarus/system/controlcron.scr Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 59259sec preferred_lft 59259sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-03 23:41 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fa76bfb90Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11140 14:57:06 68-22:46:18 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 68-22:46:18 2 [kthreadd] - root 0 0 00:00:00 68-22:46:18 3 [rcu_gp] - root 0 0 00:00:00 68-22:46:18 4 [rcu_par_gp] - root 0 0 00:00:00 68-22:46:18 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 68-22:46:18 8 [mm_percpu_wq] - root 0 0 00:00:00 68-22:46:18 9 [rcu_tasks_rude_] - root 0 0 00:00:00 68-22:46:18 10 [rcu_tasks_trace] - root 0 0 00:31:41 68-22:46:18 11 [ksoftirqd/0] - root 0 0 01:46:22 68-22:46:18 12 [rcu_sched] - root 0 0 00:01:06 68-22:46:18 13 [migration/0] - root 0 0 00:00:00 68-22:46:18 15 [cpuhp/0] - root 0 0 00:00:00 68-22:46:18 16 [cpuhp/1] - root 0 0 00:01:07 68-22:46:18 17 [migration/1] - root 0 0 00:31:37 68-22:46:18 18 [ksoftirqd/1] - root 0 0 00:00:00 68-22:46:18 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 68-22:46:18 21 [cpuhp/2] - root 0 0 00:01:07 68-22:46:18 22 [migration/2] - root 0 0 00:31:35 68-22:46:18 23 [ksoftirqd/2] - root 0 0 00:00:00 68-22:46:18 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 68-22:46:18 26 [cpuhp/3] - root 0 0 00:01:07 68-22:46:18 27 [migration/3] - root 0 0 00:31:33 68-22:46:18 28 [ksoftirqd/3] - root 0 0 00:00:00 68-22:46:18 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 68-22:46:18 31 [cpuhp/4] - root 0 0 00:01:07 68-22:46:18 32 [migration/4] - root 0 0 00:31:35 68-22:46:18 33 [ksoftirqd/4] - root 0 0 00:00:00 68-22:46:18 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 68-22:46:18 36 [cpuhp/5] - root 0 0 00:01:07 68-22:46:18 37 [migration/5] - root 0 0 00:31:35 68-22:46:18 38 [ksoftirqd/5] - root 0 0 00:00:00 68-22:46:18 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 68-22:46:18 41 [cpuhp/6] - root 0 0 00:01:07 68-22:46:18 42 [migration/6] - root 0 0 00:31:34 68-22:46:18 43 [ksoftirqd/6] - root 0 0 00:00:00 68-22:46:18 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 68-22:46:18 46 [cpuhp/7] - root 0 0 00:01:07 68-22:46:18 47 [migration/7] - root 0 0 00:32:05 68-22:46:18 48 [ksoftirqd/7] - root 0 0 00:00:00 68-22:46:18 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 68-22:46:18 56 [kdevtmpfs] - root 0 0 00:00:00 68-22:46:18 57 [netns] - root 0 0 00:15:07 68-22:46:18 58 [kauditd] - root 0 0 00:00:07 68-22:46:18 59 [khungtaskd] - root 0 0 00:00:00 68-22:46:18 60 [oom_reaper] - root 0 0 00:00:00 68-22:46:18 61 [writeback] - root 0 0 00:02:10 68-22:46:18 62 [kcompactd0] - root 0 0 00:00:00 68-22:46:18 63 [ksmd] - root 0 0 00:06:09 68-22:46:18 64 [khugepaged] - root 0 0 00:00:00 68-22:46:18 84 [kintegrityd] - root 0 0 00:00:00 68-22:46:18 85 [kblockd] - root 0 0 00:00:00 68-22:46:18 86 [blkcg_punt_bio] - root 0 0 00:01:09 68-22:46:17 88 [kworker/0:1H-kblockd] - root 0 0 00:04:32 68-22:46:17 94 [kswapd0] - root 0 0 00:00:00 68-22:46:17 95 [kthrotld] - root 0 0 00:00:00 68-22:46:17 96 [acpi_thermal_pm] - root 0 0 00:00:00 68-22:46:17 97 [nvme-wq] - root 0 0 00:00:00 68-22:46:17 98 [nvme-reset-wq] - root 0 0 00:00:00 68-22:46:17 99 [nvme-delete-wq] - root 0 0 00:01:09 68-22:46:17 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 68-22:46:17 101 [ipv6_addrconf] - root 0 0 00:00:00 68-22:46:17 110 [kstrp] - root 0 0 00:00:00 68-22:46:17 115 [kworker/u17:0] - root 0 0 00:01:09 68-22:46:17 137 [kworker/5:1H-kblockd] - root 0 0 00:01:09 68-22:46:17 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 68-22:46:17 168 [ata_sff] - root 0 0 00:00:00 68-22:46:17 169 [scsi_eh_0] - root 0 0 00:00:00 68-22:46:17 170 [scsi_tmf_0] - root 0 0 00:00:00 68-22:46:17 171 [scsi_eh_1] - root 0 0 00:00:00 68-22:46:17 172 [scsi_tmf_1] - root 0 0 00:00:00 68-22:46:16 174 [scsi_eh_2] - root 0 0 00:00:00 68-22:46:16 175 [scsi_tmf_2] - root 0 0 00:01:10 68-22:46:16 178 [kworker/6:1H-kblockd] - root 0 0 00:01:08 68-22:46:16 203 [kworker/3:1H-kblockd] - root 0 0 00:15:59 68-22:46:16 205 [jbd2/sda1-8] - root 0 0 00:00:00 68-22:46:16 206 [ext4-rsv-conver] - root 0 0 00:01:09 68-22:46:16 223 [kworker/1:1H-kblockd] - root 0 0 00:01:09 68-22:46:16 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 68-22:46:15 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:35 68-22:46:15 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 68-22:46:14 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:34 68-22:46:13 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:49 68-22:46:13 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 86928 05:15:34 68-22:46:13 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 68-22:46:13 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:03:02 68-22:46:13 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 11:21:56 68-22:46:13 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19292 07:22:10 68-22:46:13 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:15 68-22:46:13 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 68-22:46:12 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 68-22:46:12 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 68-22:46:12 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8192 5832 00:00:07 68-22:46:12 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2084 00:00:00 68-22:46:12 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:32 68-22:46:12 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:32 68-22:46:11 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:48:18 68-22:45:43 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 03:55:30 68-22:45:43 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 05:27:03 68-22:45:43 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2392 00:03:59 68-22:45:43 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 05:57:41 68-22:45:43 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:08:42 68-22:45:43 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:32:34 68-22:45:43 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 05:28:18 68-22:45:43 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 17:36:39 68-22:45:43 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 17:28:18 68-22:45:43 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 17:30:26 68-22:45:43 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 04:52:02 68-22:45:43 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 05:47:26 68-22:45:43 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:29:57 68-22:45:43 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2624 06:00:55 68-22:45:43 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:14:31 68-22:45:43 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/ntp.service ntp 74496 3692 00:00:05 20:45:44 50381 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/apache2.service root 260924 39644 00:01:43 30-19:07:02 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262080 40036 00:00:03 30-19:07:02 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 40196 00:00:03 30-19:07:02 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 40180 00:00:03 30-19:07:02 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262104 40084 00:00:04 30-19:07:02 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 39804 00:00:04 30-19:04:00 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:54:43 343619 [kworker/2:0-events] 0::/system.slice/php7.4-fpm.service root 232272 27360 00:07:14 56-13:36:10 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/apache2.service www-data 262088 40416 00:00:02 17-15:24:51 972577 /usr/sbin/apache2 -k start - root 0 0 00:00:03 03:53:44 1427264 [kworker/0:1-events] 0::/system.slice/cron.service root 5556 2672 00:00:29 1-09:11:30 1455293 /usr/sbin/cron -f 0::/system.slice/cron.service root 5840 3316 00:07:01 1-09:10:45 1473184 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5708 3156 00:00:02 1-09:10:45 1473228 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:02 01:03:03 1689379 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 51:44 1980809 [kworker/6:0-mm_percpu_wq] - root 0 0 00:00:00 46:44 2118920 [kworker/1:2-events] - root 0 0 00:00:00 44:44 2183526 [kworker/7:2-events] 0::/system.slice/apache2.service www-data 261992 37064 00:00:00 13:49:30 2600859 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5908 2420 00:00:00 21:46:44 2620281 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875200 42644 00:00:04 21:46:44 2620322 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2376 00:00:00 21:46:44 2620390 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 4932 00:00:00 21:46:44 2620433 sudo ./webhookstart 0::/system.slice/cron.service root 2480 520 00:00:00 21:46:44 2620502 sh ./webhookstart 0::/system.slice/cron.service root 40104 35136 00:00:10 21:46:44 2620516 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2400 00:00:03 21:46:40 2624230 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13492 00:00:00 21:46:40 2624236 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2436 00:00:03 21:46:40 2624242 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13288 00:00:00 21:46:40 2624246 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55504 00:01:11 21:46:40 2624712 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 391416 55264 00:01:11 21:46:40 2624763 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:00 21:46:39 2625505 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11176 00:00:06 21:46:39 2625508 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2376 00:00:00 21:46:39 2625547 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 11628 00:01:00 21:46:39 2625555 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2368 00:00:00 21:46:39 2625573 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 490420 45816 00:01:04 21:46:39 2625576 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2440 00:00:00 21:46:39 2625621 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10648 00:01:06 21:46:39 2625623 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2344 00:00:00 21:46:39 2625660 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12616 00:01:05 21:46:39 2625664 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2352 00:00:00 21:46:39 2625691 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12044 00:01:05 21:46:39 2625695 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2352 00:00:00 21:46:39 2625737 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 10968 00:01:01 21:46:39 2625746 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:02 03:04:44 2710659 [kworker/5:0-events] - root 0 0 00:00:00 22:39 2749636 [kworker/u16:0-flush-8:0] 0::/system.slice/apache2.service www-data 261964 40276 00:00:03 30-17:25:05 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40476 00:00:04 30-17:25:04 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 40656 00:00:04 30-17:25:04 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 15:44 2936505 [kworker/2:1-cgroup_destroy] - root 0 0 00:00:00 14:44 2957789 [kworker/7:0-cgroup_destroy] 0::/system.slice/mariadb.service mysql 3675804 381304 2-12:31:02 13-16:11:29 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 12:45 3011479 [kworker/6:2-events] - root 0 0 00:00:00 11:44 3032623 [kworker/3:1-cgroup_destroy] 0::/system.slice/packagekit.service root 288308 6256 00:00:37 68-20:52:25 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:06 68-20:52:25 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 08:44 3121856 [kworker/4:2-events] - root 0 0 00:00:00 07:41 3148130 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 06:44 3171265 [kworker/0:2-cgroup_destroy] - root 0 0 00:00:00 05:44 3205417 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 02:44 3271109 [kworker/3:2-events] 0::/system.slice/cron.service root 10888 3720 00:00:00 01:45 3290690 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 01:45 3290838 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2960 00:00:00 01:45 3290918 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1968 00:00:00 01:45 3291197 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9876 00:00:00 01:45 3291223 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 644 00:00:00 01:45 3291225 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3028 00:00:00 01:45 3291284 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 6492 4016 00:00:02 01:45 3291396 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 6128 3364 00:00:01 01:44 3291457 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 4284 572 00:00:00 01:44 3292053 sleep 110 - root 0 0 00:00:00 01:44 3292087 [kworker/7:1-cgroup_destroy] 0::/system.slice/cron.service root 2392 500 00:00:00 00:47 3321658 /bin/sleep 60 0::/system.slice/cron.service root 2392 508 00:00:00 00:45 3322863 /bin/sleep 60 - root 0 0 00:00:00 00:44 3324061 [kworker/0:0-events] 0::/system.slice/cron.service root 5908 2444 00:00:00 00:41 3326088 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6720 00:00:00 00:41 3326093 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2336 00:00:00 00:41 3326108 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6688 00:00:00 00:41 3326111 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2364 00:00:00 00:41 3326153 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6688 00:00:00 00:41 3326155 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2368 00:00:00 00:41 3326213 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6676 00:00:00 00:41 3326234 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2372 00:00:00 00:41 3326249 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6760 00:00:00 00:41 3326252 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2336 00:00:00 00:41 3326273 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6700 00:00:00 00:41 3326278 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2384 00:00:00 00:41 3326319 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6684 00:00:00 00:41 3326322 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:35 3330202 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:33 3330886 sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:32 3331903 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:30 3333138 /bin/sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:07 3350102 sleep 8 0::/system.slice/cron.service root 2392 568 00:00:00 00:04 3351432 /bin/sleep 5 0::/system.slice/cron.service root 2392 500 00:00:00 00:02 3352683 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3352933 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3353188 sleep 2 0::/system.slice/xinetd.service root 6228 3716 00:00:00 00:01 3353450 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3353499 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3353649 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3353686 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:00 3353745 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11208 00:00:00 00:00 3353746 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8228 --header Origin: https://127.0.0.1:8228 --header Sec-WebSocket-Key: MTYwNjU6MTc5Nzk= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8228/ -k 0::/system.slice/cron.service root 4288 568 00:00:00 00:00 3353747 wc -l 0::/system.slice/cron.service root 4072 3004 00:00:00 00:00 3353766 /bin/bash ./statusscreenshot 0::/system.slice/cron.service root 4284 572 00:00:00 00:00 3353796 sleep 1 0::/system.slice/cron.service root 2392 508 00:00:00 00:00 3353847 /bin/sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3353903 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3353963 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3353994 sleep 0.1 0::/system.slice/cron.service root 4284 508 00:00:00 00:00 3353998 sleep 1 0::/system.slice/cron.service root 5708 1452 00:00:00 00:00 3354013 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 2960 00:00:00 00:00 3354017 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1208 00:00:00 00:00 3354039 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5836 1332 00:00:00 00:00 3354040 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2980 00:00:00 00:00 3354042 jq .dispositivos.windows - root 0 0 00:00:01 02:26:44 3697444 [kworker/3:0-events] 0::/system.slice/rsyslog.service root 442724 4668 00:24:13 29-08:51:43 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 254344 180968 01:45:53 29-08:51:27 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2992 00:00:06 29-08:51:24 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 1836 00:00:00 29-08:50:18 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10788 01:13:33 29-08:50:18 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10872 00:00:51 29-08:50:18 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8616 00:00:00 29-08:50:18 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68936 6456 00:00:00 29-08:50:18 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5564 00:00:00 29-08:50:18 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5264 00:00:00 29-08:50:18 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2072 00:00:00 29-08:50:17 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2084 00:00:00 29-08:50:17 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3760 00:10:27 29-08:50:17 3789195 /usr/bin/monit -c /etc/monit/monitrc - root 0 0 00:00:01 02:19:44 3882171 [kworker/4:0-events] - root 0 0 00:00:01 02:10:44 4104816 [kworker/1:0-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 70028sec preferred_lft 70028sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-10-01 23:46 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f5c694223Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11140 14:38:17 66-22:46:39 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 66-22:46:39 2 [kthreadd] - root 0 0 00:00:00 66-22:46:39 3 [rcu_gp] - root 0 0 00:00:00 66-22:46:39 4 [rcu_par_gp] - root 0 0 00:00:00 66-22:46:39 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 66-22:46:39 8 [mm_percpu_wq] - root 0 0 00:00:00 66-22:46:39 9 [rcu_tasks_rude_] - root 0 0 00:00:00 66-22:46:39 10 [rcu_tasks_trace] - root 0 0 00:31:04 66-22:46:39 11 [ksoftirqd/0] - root 0 0 01:43:36 66-22:46:39 12 [rcu_sched] - root 0 0 00:01:05 66-22:46:39 13 [migration/0] - root 0 0 00:00:00 66-22:46:39 15 [cpuhp/0] - root 0 0 00:00:00 66-22:46:39 16 [cpuhp/1] - root 0 0 00:01:06 66-22:46:39 17 [migration/1] - root 0 0 00:31:00 66-22:46:39 18 [ksoftirqd/1] - root 0 0 00:00:00 66-22:46:39 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 66-22:46:39 21 [cpuhp/2] - root 0 0 00:01:05 66-22:46:39 22 [migration/2] - root 0 0 00:30:58 66-22:46:39 23 [ksoftirqd/2] - root 0 0 00:00:00 66-22:46:39 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 66-22:46:39 26 [cpuhp/3] - root 0 0 00:01:06 66-22:46:39 27 [migration/3] - root 0 0 00:30:56 66-22:46:39 28 [ksoftirqd/3] - root 0 0 00:00:00 66-22:46:39 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 66-22:46:39 31 [cpuhp/4] - root 0 0 00:01:06 66-22:46:39 32 [migration/4] - root 0 0 00:30:58 66-22:46:39 33 [ksoftirqd/4] - root 0 0 00:00:00 66-22:46:39 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 66-22:46:39 36 [cpuhp/5] - root 0 0 00:01:06 66-22:46:39 37 [migration/5] - root 0 0 00:30:58 66-22:46:39 38 [ksoftirqd/5] - root 0 0 00:00:00 66-22:46:39 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 66-22:46:39 41 [cpuhp/6] - root 0 0 00:01:06 66-22:46:39 42 [migration/6] - root 0 0 00:30:57 66-22:46:39 43 [ksoftirqd/6] - root 0 0 00:00:00 66-22:46:39 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 66-22:46:39 46 [cpuhp/7] - root 0 0 00:01:06 66-22:46:39 47 [migration/7] - root 0 0 00:31:28 66-22:46:39 48 [ksoftirqd/7] - root 0 0 00:00:00 66-22:46:39 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 66-22:46:39 56 [kdevtmpfs] - root 0 0 00:00:00 66-22:46:39 57 [netns] - root 0 0 00:15:07 66-22:46:39 58 [kauditd] - root 0 0 00:00:07 66-22:46:39 59 [khungtaskd] - root 0 0 00:00:00 66-22:46:39 60 [oom_reaper] - root 0 0 00:00:00 66-22:46:39 61 [writeback] - root 0 0 00:02:06 66-22:46:39 62 [kcompactd0] - root 0 0 00:00:00 66-22:46:39 63 [ksmd] - root 0 0 00:06:01 66-22:46:39 64 [khugepaged] - root 0 0 00:00:00 66-22:46:39 84 [kintegrityd] - root 0 0 00:00:00 66-22:46:39 85 [kblockd] - root 0 0 00:00:00 66-22:46:39 86 [blkcg_punt_bio] - root 0 0 00:01:08 66-22:46:38 88 [kworker/0:1H-kblockd] - root 0 0 00:04:31 66-22:46:38 94 [kswapd0] - root 0 0 00:00:00 66-22:46:38 95 [kthrotld] - root 0 0 00:00:00 66-22:46:38 96 [acpi_thermal_pm] - root 0 0 00:00:00 66-22:46:38 97 [nvme-wq] - root 0 0 00:00:00 66-22:46:38 98 [nvme-reset-wq] - root 0 0 00:00:00 66-22:46:38 99 [nvme-delete-wq] - root 0 0 00:01:07 66-22:46:38 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 66-22:46:38 101 [ipv6_addrconf] - root 0 0 00:00:00 66-22:46:38 110 [kstrp] - root 0 0 00:00:00 66-22:46:38 115 [kworker/u17:0] - root 0 0 00:01:07 66-22:46:38 137 [kworker/5:1H-kblockd] - root 0 0 00:01:08 66-22:46:38 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 66-22:46:38 168 [ata_sff] - root 0 0 00:00:00 66-22:46:38 169 [scsi_eh_0] - root 0 0 00:00:00 66-22:46:38 170 [scsi_tmf_0] - root 0 0 00:00:00 66-22:46:38 171 [scsi_eh_1] - root 0 0 00:00:00 66-22:46:38 172 [scsi_tmf_1] - root 0 0 00:00:00 66-22:46:37 174 [scsi_eh_2] - root 0 0 00:00:00 66-22:46:37 175 [scsi_tmf_2] - root 0 0 00:01:08 66-22:46:37 178 [kworker/6:1H-kblockd] - root 0 0 00:01:07 66-22:46:37 203 [kworker/3:1H-kblockd] - root 0 0 00:15:38 66-22:46:37 205 [jbd2/sda1-8] - root 0 0 00:00:00 66-22:46:37 206 [ext4-rsv-conver] - root 0 0 00:01:08 66-22:46:37 223 [kworker/1:1H-kblockd] - root 0 0 00:01:08 66-22:46:37 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 66-22:46:36 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:35 66-22:46:36 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 66-22:46:35 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:27 66-22:46:34 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:45 66-22:46:34 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 87120 05:07:00 66-22:46:34 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 66-22:46:34 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:02:58 66-22:46:34 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 11:04:39 66-22:46:34 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19276 07:10:43 66-22:46:34 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:13 66-22:46:34 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 66-22:46:33 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 66-22:46:33 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 66-22:46:33 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8184 5820 00:00:07 66-22:46:33 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 66-22:46:33 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:32 66-22:46:33 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:28 66-22:46:32 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:47:02 66-22:46:04 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 03:49:12 66-22:46:04 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 05:18:13 66-22:46:04 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2392 00:03:52 66-22:46:04 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 05:48:07 66-22:46:04 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:08:28 66-22:46:04 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:25:21 66-22:46:04 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 05:19:30 66-22:46:04 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 17:06:36 66-22:46:04 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 16:58:27 66-22:46:04 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 17:00:21 66-22:46:04 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 04:44:10 66-22:46:04 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 05:38:19 66-22:46:04 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:27:31 66-22:46:04 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2620 05:51:18 66-22:46:04 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:09:14 66-22:46:04 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 39668 00:01:36 28-19:07:23 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40124 00:00:03 28-19:07:23 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261952 39752 00:00:03 28-19:07:23 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 40156 00:00:03 28-19:07:23 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 40132 00:00:03 28-19:07:23 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 39792 00:00:03 28-19:07:23 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 39644 00:00:03 28-19:04:21 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:58:06 176131 [kworker/0:1-events] - root 0 0 00:00:01 01:52:05 320447 [kworker/3:2-events] 0::/system.slice/php7.4-fpm.service root 232272 27360 00:07:00 54-13:36:31 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/cron.service root 5556 2668 00:00:58 2-14:56:53 784492 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3228 00:00:03 2-14:56:06 805333 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:01 01:32:05 842254 [kworker/5:2-events] 0::/system.slice/apache2.service www-data 262088 40264 00:00:02 15-15:25:12 972577 /usr/sbin/apache2 -k start - root 0 0 00:00:00 01:20:05 1157974 [kworker/7:1-events] - root 0 0 00:00:01 01:17:05 1243403 [kworker/2:1-events] - root 0 0 00:00:00 01:16:05 1273652 [kworker/1:0-events] 0::/system.slice/cron.service root 5840 2980 01:08:12 13-09:16:06 1504048 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:02 03:45:05 1576100 [kworker/4:0-events] - root 0 0 00:00:00 47:04 2032271 [kworker/6:2-events] - root 0 0 00:00:00 35:01 2347923 [kworker/u16:0-flush-8:0] 0::/system.slice/cron.service root 5908 2356 00:00:00 21:47:05 2560153 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 4972 00:00:00 21:47:05 2560175 sudo ./webhookstart 0::/system.slice/cron.service root 2480 516 00:00:00 21:47:05 2560286 sh ./webhookstart 0::/system.slice/cron.service root 40104 35168 00:00:10 21:47:05 2560314 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2548 00:00:00 21:47:04 2560731 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9048 00:00:06 21:47:04 2560750 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2384 00:00:00 21:47:04 2560896 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 11408 00:01:01 21:47:04 2560903 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2380 00:00:00 21:47:04 2560970 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 489076 45288 00:01:02 21:47:04 2560971 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2384 00:00:00 21:47:04 2561053 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 601436 12456 00:01:06 21:47:04 2561066 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2392 00:00:00 21:47:04 2561141 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12580 00:01:05 21:47:04 2561157 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2428 00:00:00 21:47:04 2561196 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12460 00:01:05 21:47:04 2561198 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2336 00:00:00 21:47:04 2561270 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 11836 00:01:02 21:47:04 2561273 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2424 00:00:03 21:47:02 2563393 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13288 00:00:00 21:47:02 2563397 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2388 00:00:03 21:47:02 2563416 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13228 00:00:00 21:47:02 2563422 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 - root 0 0 00:00:00 27:00 2563424 [kworker/u16:3-ext4-rsv-conversion] 0::/system.slice/cron.service root 383216 55336 00:01:06 21:47:01 2563780 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 55456 00:01:06 21:47:01 2563788 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2356 00:00:00 21:46:06 2590930 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875060 43816 00:00:04 21:46:06 2590972 /usr/sbin/node server.js - root 0 0 00:00:00 25:05 2614943 [kworker/6:0-events] 0::/system.slice/apache2.service www-data 262088 40236 00:00:03 28-17:25:26 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40312 00:00:03 28-17:25:25 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 40380 00:00:03 28-17:25:25 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 17:05 2819656 [kworker/3:0-cgroup_destroy] - root 0 0 00:00:00 17:04 2819869 [kworker/2:2-cgroup_destroy] - root 0 0 00:00:00 14:05 2904581 [kworker/1:2-events] - root 0 0 00:00:00 13:05 2925486 [kworker/4:2-events] - root 0 0 00:00:00 12:04 2947069 [kworker/0:0-cgroup_destroy] 0::/system.slice/mariadb.service mysql 3675804 349012 2-04:22:40 11-16:11:50 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 09:05 3035699 [kworker/7:0-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:36 66-20:52:46 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:06 66-20:52:46 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 08:02 3062038 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 07:04 3085285 [kworker/5:1-events] - root 0 0 00:00:00 04:05 3164222 [kworker/3:1-events] 0::/system.slice/cron.service root 11120 3964 00:00:00 02:06 3204729 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 02:06 3204856 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2880 00:00:00 02:06 3204967 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1956 00:00:00 02:06 3205294 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9884 00:00:00 02:06 3205297 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 644 00:00:00 02:06 3205298 grep 502 Bad Gateway 0::/system.slice/cron.service root 6128 3560 00:00:01 02:06 3205301 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 02:05 3206282 [kworker/6:1-events] - root 0 0 00:00:00 01:05 3243664 [kworker/2:0-events] 0::/system.slice/cron.service root 5908 2372 00:00:00 01:02 3245616 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6880 00:00:00 01:02 3245620 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2472 00:00:00 01:02 3245633 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8800 00:00:00 01:02 3245636 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2332 00:00:00 01:02 3245659 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8500 00:00:00 01:02 3245661 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2380 00:00:00 01:02 3245694 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6828 00:00:00 01:02 3245696 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2408 00:00:00 01:02 3245737 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6928 00:00:00 01:02 3245745 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:02 3245755 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 10920 00:00:00 01:02 3245758 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2536 00:00:00 01:02 3245776 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8800 00:00:00 01:02 3245780 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 564 00:00:00 00:53 3251264 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:51 3252492 /bin/sleep 60 0::/system.slice/cron.service root 4284 572 00:00:00 00:45 3255649 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:29 3262983 sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:23 3265252 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:21 3266029 /bin/sleep 60 0::/system.slice/cron.service root 11120 3964 00:00:00 00:06 3272179 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 00:06 3272325 /bin/sh -c /opt/imtlazarus/mitmdump/up_mitmdump_engine > /dev/null 2>&1 0::/system.slice/cron.service root 5828 3056 00:00:00 00:06 3272428 /bin/bash /opt/imtlazarus/mitmdump/up_mitmdump_engine - root 0 0 00:00:00 00:05 3273368 [kworker/0:2-events] 0::/system.slice/cron.service root 4284 564 00:00:00 00:05 3273828 sleep 10 0::/system.slice/cron.service root 4284 500 00:00:00 00:03 3275871 /bin/sleep 5 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 3277930 sleep 1 0::/system.slice/xinetd.service root 6228 3684 00:00:00 00:01 3277956 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3277995 sleep 2 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 3278094 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3278116 sleep 8 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3278163 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3278202 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3278229 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3278252 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3278303 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3278310 sleep 2 - root 0 0 00:00:00 00:01 3278316 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3278330 sleep 1 0::/system.slice/cron.service root 4284 572 00:00:00 00:00 3278350 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 3278356 sleep 0.1 0::/system.slice/cron.service root 6128 1840 00:00:00 00:00 3278363 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2964 00:00:00 00:00 3278365 jq -c . 0::/system.slice/cron.service root 5836 1404 00:00:00 00:00 3278375 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 2992 00:00:00 00:00 3278378 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 3278382 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/rsyslog.service root 442724 4528 00:22:37 27-08:52:04 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 250468 178152 01:38:46 27-08:51:48 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2992 00:00:05 27-08:51:45 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 1836 00:00:00 27-08:50:39 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10788 01:12:22 27-08:50:39 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10872 00:00:51 27-08:50:39 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8616 00:00:00 27-08:50:39 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68936 6456 00:00:00 27-08:50:39 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5564 00:00:00 27-08:50:39 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5264 00:00:00 27-08:50:39 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2072 00:00:00 27-08:50:38 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2084 00:00:00 27-08:50:38 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3760 00:09:47 27-08:50:38 3789195 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/ntp.service ntp 74496 3920 00:00:04 20:46:04 4179793 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 62805sec preferred_lft 62805sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-29 23:47 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f0a77e0a9Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11140 14:19:34 64-22:46:03 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 64-22:46:03 2 [kthreadd] - root 0 0 00:00:00 64-22:46:03 3 [rcu_gp] - root 0 0 00:00:00 64-22:46:03 4 [rcu_par_gp] - root 0 0 00:00:00 64-22:46:03 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 64-22:46:03 8 [mm_percpu_wq] - root 0 0 00:00:00 64-22:46:03 9 [rcu_tasks_rude_] - root 0 0 00:00:00 64-22:46:03 10 [rcu_tasks_trace] - root 0 0 00:30:27 64-22:46:03 11 [ksoftirqd/0] - root 0 0 01:40:47 64-22:46:03 12 [rcu_sched] - root 0 0 00:01:04 64-22:46:03 13 [migration/0] - root 0 0 00:00:00 64-22:46:03 15 [cpuhp/0] - root 0 0 00:00:00 64-22:46:03 16 [cpuhp/1] - root 0 0 00:01:05 64-22:46:03 17 [migration/1] - root 0 0 00:30:23 64-22:46:03 18 [ksoftirqd/1] - root 0 0 00:00:00 64-22:46:03 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 64-22:46:03 21 [cpuhp/2] - root 0 0 00:01:04 64-22:46:03 22 [migration/2] - root 0 0 00:30:21 64-22:46:03 23 [ksoftirqd/2] - root 0 0 00:00:00 64-22:46:03 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 64-22:46:03 26 [cpuhp/3] - root 0 0 00:01:05 64-22:46:03 27 [migration/3] - root 0 0 00:30:20 64-22:46:03 28 [ksoftirqd/3] - root 0 0 00:00:00 64-22:46:03 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 64-22:46:03 31 [cpuhp/4] - root 0 0 00:01:05 64-22:46:03 32 [migration/4] - root 0 0 00:30:21 64-22:46:03 33 [ksoftirqd/4] - root 0 0 00:00:00 64-22:46:03 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 64-22:46:03 36 [cpuhp/5] - root 0 0 00:01:05 64-22:46:03 37 [migration/5] - root 0 0 00:30:21 64-22:46:03 38 [ksoftirqd/5] - root 0 0 00:00:00 64-22:46:03 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 64-22:46:03 41 [cpuhp/6] - root 0 0 00:01:05 64-22:46:03 42 [migration/6] - root 0 0 00:30:20 64-22:46:03 43 [ksoftirqd/6] - root 0 0 00:00:00 64-22:46:03 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 64-22:46:03 46 [cpuhp/7] - root 0 0 00:01:05 64-22:46:03 47 [migration/7] - root 0 0 00:30:51 64-22:46:03 48 [ksoftirqd/7] - root 0 0 00:00:00 64-22:46:03 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 64-22:46:03 56 [kdevtmpfs] - root 0 0 00:00:00 64-22:46:03 57 [netns] - root 0 0 00:15:07 64-22:46:03 58 [kauditd] - root 0 0 00:00:07 64-22:46:03 59 [khungtaskd] - root 0 0 00:00:00 64-22:46:03 60 [oom_reaper] - root 0 0 00:00:00 64-22:46:03 61 [writeback] - root 0 0 00:02:03 64-22:46:03 62 [kcompactd0] - root 0 0 00:00:00 64-22:46:03 63 [ksmd] - root 0 0 00:05:53 64-22:46:03 64 [khugepaged] - root 0 0 00:00:00 64-22:46:03 84 [kintegrityd] - root 0 0 00:00:00 64-22:46:03 85 [kblockd] - root 0 0 00:00:00 64-22:46:03 86 [blkcg_punt_bio] - root 0 0 00:01:07 64-22:46:02 88 [kworker/0:1H-kblockd] - root 0 0 00:04:30 64-22:46:02 94 [kswapd0] - root 0 0 00:00:00 64-22:46:02 95 [kthrotld] - root 0 0 00:00:00 64-22:46:02 96 [acpi_thermal_pm] - root 0 0 00:00:00 64-22:46:02 97 [nvme-wq] - root 0 0 00:00:00 64-22:46:02 98 [nvme-reset-wq] - root 0 0 00:00:00 64-22:46:02 99 [nvme-delete-wq] - root 0 0 00:01:06 64-22:46:02 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 64-22:46:02 101 [ipv6_addrconf] - root 0 0 00:00:00 64-22:46:02 110 [kstrp] - root 0 0 00:00:00 64-22:46:02 115 [kworker/u17:0] - root 0 0 00:01:06 64-22:46:02 137 [kworker/5:1H-kblockd] - root 0 0 00:01:07 64-22:46:02 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 64-22:46:02 168 [ata_sff] - root 0 0 00:00:00 64-22:46:02 169 [scsi_eh_0] - root 0 0 00:00:00 64-22:46:02 170 [scsi_tmf_0] - root 0 0 00:00:00 64-22:46:02 171 [scsi_eh_1] - root 0 0 00:00:00 64-22:46:02 172 [scsi_tmf_1] - root 0 0 00:00:00 64-22:46:01 174 [scsi_eh_2] - root 0 0 00:00:00 64-22:46:01 175 [scsi_tmf_2] - root 0 0 00:01:07 64-22:46:01 178 [kworker/6:1H-kblockd] - root 0 0 00:01:06 64-22:46:01 203 [kworker/3:1H-kblockd] - root 0 0 00:15:16 64-22:46:01 205 [jbd2/sda1-8] - root 0 0 00:00:00 64-22:46:01 206 [ext4-rsv-conver] - root 0 0 00:01:07 64-22:46:01 223 [kworker/1:1H-kblockd] - root 0 0 00:01:06 64-22:46:01 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 64-22:46:00 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:34 64-22:46:00 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 64-22:45:59 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:19 64-22:45:58 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:40 64-22:45:58 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 92160 04:58:37 64-22:45:58 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 64-22:45:58 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:02:53 64-22:45:58 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 10:47:23 64-22:45:58 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19272 06:59:22 64-22:45:58 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:11 64-22:45:58 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 64-22:45:57 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 64-22:45:57 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 64-22:45:57 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8184 5820 00:00:07 64-22:45:57 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 64-22:45:57 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:31 64-22:45:57 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:23 64-22:45:56 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:45:45 64-22:45:28 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 03:42:52 64-22:45:28 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 05:09:21 64-22:45:28 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2392 00:03:45 64-22:45:28 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 05:38:30 64-22:45:28 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:08:14 64-22:45:28 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:18:05 64-22:45:28 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 05:10:38 64-22:45:28 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 16:36:25 64-22:45:28 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 16:28:25 64-22:45:28 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 16:30:10 64-22:45:28 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 04:36:15 64-22:45:28 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 05:29:10 64-22:45:28 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:25:04 64-22:45:28 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2620 05:41:36 64-22:45:28 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 03:03:55 64-22:45:28 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 39668 00:01:30 26-19:06:47 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40032 00:00:03 26-19:06:47 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261952 39752 00:00:03 26-19:06:47 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 40144 00:00:03 26-19:06:47 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 40132 00:00:03 26-19:06:47 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 39792 00:00:03 26-19:06:47 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 39764 00:00:03 26-19:03:45 143233 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232272 27360 00:06:44 52-13:35:55 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/ntp.service ntp 74496 3804 00:00:03 14:56:18 783984 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/cron.service root 5556 2668 00:00:14 14:56:17 784492 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3228 00:00:00 14:55:30 805333 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:01 01:28:29 936950 [kworker/2:1-events] 0::/system.slice/apache2.service www-data 261956 40132 00:00:01 13-15:24:36 972577 /usr/sbin/apache2 -k start - root 0 0 00:00:00 01:16:09 1258598 [kworker/3:2-events] 0::/system.slice/cron.service root 5840 2980 00:58:09 11-09:15:30 1504048 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 01:06:28 1510084 [kworker/4:1-events] - root 0 0 00:00:00 50:29 1919726 [kworker/7:0-events] - root 0 0 00:00:03 03:27:29 2023031 [kworker/6:0-events] - root 0 0 00:00:01 41:35 2156359 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 40:29 2186513 [kworker/0:0-events] - root 0 0 00:00:00 32:57 2387304 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 31:29 2418337 [kworker/2:0-events] 0::/system.slice/cron.service root 5908 2296 00:00:00 21:46:29 2557911 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12784 00:01:06 21:46:29 2557948 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2216 00:00:00 21:46:29 2558016 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11980 4996 00:00:00 21:46:29 2558045 sudo ./webhookstart 0::/system.slice/cron.service root 2480 556 00:00:00 21:46:29 2558116 sh ./webhookstart 0::/system.slice/cron.service root 40104 35248 00:00:10 21:46:29 2558135 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2316 00:00:00 21:46:29 2558249 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 14472 00:01:06 21:46:29 2558268 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2336 00:00:00 21:46:29 2558458 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 13016 00:01:02 21:46:29 2558476 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2316 00:00:03 21:46:26 2561103 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13256 00:00:00 21:46:26 2561108 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2360 00:00:03 21:46:26 2561116 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13236 00:00:00 21:46:26 2561120 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55532 00:01:11 21:46:26 2561506 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 309228 55184 00:01:11 21:46:26 2561521 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2340 00:00:00 21:46:23 2564866 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9120 00:00:06 21:46:23 2564870 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2512 00:00:00 21:46:23 2564909 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 7780 00:01:01 21:46:23 2564914 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2364 00:00:00 21:46:23 2564951 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 493688 51564 00:01:03 21:46:23 2564955 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2384 00:00:00 21:46:23 2564992 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12580 00:01:06 21:46:23 2564994 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2528 00:00:00 21:45:30 2588418 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874680 41572 00:00:04 21:45:30 2588436 /usr/sbin/node server.js - root 0 0 00:00:00 19:35 2743052 [kworker/u16:4-ext4-rsv-conversion] - root 0 0 00:00:00 19:13 2752607 [kworker/3:0-events] 0::/system.slice/apache2.service www-data 262088 40236 00:00:03 26-17:24:50 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40312 00:00:03 26-17:24:49 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 40260 00:00:03 26-17:24:49 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 18:29 2770290 [kworker/5:0-events] - root 0 0 00:00:00 16:29 2818774 [kworker/4:2-events] - root 0 0 00:00:00 16:09 2832637 [kworker/1:0-events] - root 0 0 00:00:00 11:29 2945514 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 11:03 2956076 [kworker/u16:0-ext4-rsv-conversion] 0::/system.slice/mariadb.service mysql 3716784 348292 1-19:59:15 9-16:11:14 2961082 /usr/sbin/mariadbd - root 0 0 00:00:02 02:50:29 2989143 [kworker/5:2-events] - root 0 0 00:00:00 08:29 3034911 [kworker/1:1-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:35 64-20:52:10 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:06 64-20:52:10 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 07:31 3057901 [kworker/6:1-events] - root 0 0 00:00:00 06:29 3083841 [kworker/7:1-events] - root 0 0 00:00:00 04:29 3140963 [kworker/3:1-events] - root 0 0 00:00:00 03:28 3163960 [kworker/0:2-events] 0::/system.slice/cron.service root 10884 3768 00:00:00 01:30 3203404 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 580 00:00:00 01:30 3203521 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2944 00:00:00 01:30 3203592 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1940 00:00:00 01:30 3203953 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9936 00:00:00 01:30 3203975 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 652 00:00:00 01:30 3203976 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3020 00:00:00 01:30 3204015 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 5840 3344 00:00:00 01:30 3204128 /bin/bash /opt/imtlazarus/manager/manager-info-updater 0::/system.slice/cron.service root 6128 3552 00:00:01 01:30 3204136 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 6492 3796 00:00:01 01:30 3204183 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater - root 0 0 00:00:00 01:29 3204678 [kworker/5:1-events] 0::/system.slice/cron.service root 4284 504 00:00:00 01:29 3204789 sleep 108 0::/system.slice/cron.service root 2392 500 00:00:00 00:49 3226479 /bin/sleep 60 0::/system.slice/cron.service root 2392 488 00:00:00 00:47 3227697 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:26 3240901 sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:24 3242391 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:20 3244499 /bin/sleep 60 0::/system.slice/cron.service root 2392 572 00:00:00 00:18 3245681 /bin/sleep 60 0::/system.slice/cron.service root 5908 2352 00:00:00 00:14 3248059 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 8368 00:00:00 00:14 3248068 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2340 00:00:00 00:14 3248104 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 8444 00:00:00 00:14 3248107 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2376 00:00:00 00:14 3248121 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 8464 00:00:00 00:14 3248126 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:14 3248167 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8424 00:00:00 00:14 3248169 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:14 3248201 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8468 00:00:00 00:14 3248205 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2412 00:00:00 00:14 3248223 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8480 00:00:00 00:14 3248227 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:14 3248277 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8364 00:00:00 00:14 3248280 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 500 00:00:00 00:05 3253875 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:03 3255117 /bin/sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:02 3255481 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:02 3255495 sleep 2 0::/system.slice/php7.4-fpm.service www-data 232572 14840 00:00:00 00:02 3255665 php-fpm: pool www 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3255871 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3255912 sleep 2 0::/system.slice/xinetd.service root 6236 3608 00:00:00 00:01 3256046 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3256153 sleep 1 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 3256260 sleep 1 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 3256261 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 3256339 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11260 00:00:00 00:01 3256340 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8991 --header Origin: https://127.0.0.1:8991 --header Sec-WebSocket-Key: OTM6NTM0NQ== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8991/ -k 0::/system.slice/cron.service root 4288 564 00:00:00 00:01 3256341 wc -l 0::/system.slice/cron.service root 99636 32172 00:00:00 00:01 3256366 /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 3256392 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3256418 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3256439 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3256552 sleep 0.1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3256617 sleep 8 0::/system.slice/cron.service root 5708 1452 00:00:00 00:00 3256618 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 2908 00:00:00 00:00 3256621 jq .dispositivos.windows 0::/system.slice/cron.service root 6128 1760 00:00:00 00:00 3256622 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 3040 00:00:00 00:00 3256626 jq -c . 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 3256628 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/rsyslog.service root 442724 4688 00:21:01 25-08:51:28 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 266592 198572 01:31:43 25-08:51:12 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 2992 00:00:05 25-08:51:09 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 1836 00:00:00 25-08:50:03 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10788 01:11:26 25-08:50:03 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10872 00:00:51 25-08:50:03 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8616 00:00:00 25-08:50:03 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68936 6456 00:00:00 25-08:50:03 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5564 00:00:00 25-08:50:03 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5264 00:00:00 25-08:50:03 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2072 00:00:00 25-08:50:02 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2084 00:00:00 25-08:50:02 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3760 00:09:09 25-08:50:02 3789195 /usr/bin/monit -c /etc/monit/monitrc Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 78976sec preferred_lft 78976sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-27 23:46 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f7fcd87a1Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11156 14:01:22 62-22:54:02 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 62-22:54:02 2 [kthreadd] - root 0 0 00:00:00 62-22:54:02 3 [rcu_gp] - root 0 0 00:00:00 62-22:54:02 4 [rcu_par_gp] - root 0 0 00:00:00 62-22:54:02 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 62-22:54:02 8 [mm_percpu_wq] - root 0 0 00:00:00 62-22:54:02 9 [rcu_tasks_rude_] - root 0 0 00:00:00 62-22:54:02 10 [rcu_tasks_trace] - root 0 0 00:29:49 62-22:54:02 11 [ksoftirqd/0] - root 0 0 01:37:58 62-22:54:02 12 [rcu_sched] - root 0 0 00:01:03 62-22:54:02 13 [migration/0] - root 0 0 00:00:00 62-22:54:02 15 [cpuhp/0] - root 0 0 00:00:00 62-22:54:02 16 [cpuhp/1] - root 0 0 00:01:04 62-22:54:02 17 [migration/1] - root 0 0 00:29:45 62-22:54:02 18 [ksoftirqd/1] - root 0 0 00:00:00 62-22:54:02 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 62-22:54:02 21 [cpuhp/2] - root 0 0 00:01:03 62-22:54:02 22 [migration/2] - root 0 0 00:29:44 62-22:54:02 23 [ksoftirqd/2] - root 0 0 00:00:00 62-22:54:02 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 62-22:54:02 26 [cpuhp/3] - root 0 0 00:01:04 62-22:54:02 27 [migration/3] - root 0 0 00:29:43 62-22:54:02 28 [ksoftirqd/3] - root 0 0 00:00:00 62-22:54:02 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 62-22:54:02 31 [cpuhp/4] - root 0 0 00:01:04 62-22:54:02 32 [migration/4] - root 0 0 00:29:44 62-22:54:02 33 [ksoftirqd/4] - root 0 0 00:00:00 62-22:54:02 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 62-22:54:02 36 [cpuhp/5] - root 0 0 00:01:04 62-22:54:02 37 [migration/5] - root 0 0 00:29:44 62-22:54:02 38 [ksoftirqd/5] - root 0 0 00:00:00 62-22:54:02 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 62-22:54:02 41 [cpuhp/6] - root 0 0 00:01:04 62-22:54:02 42 [migration/6] - root 0 0 00:29:43 62-22:54:02 43 [ksoftirqd/6] - root 0 0 00:00:00 62-22:54:02 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 62-22:54:02 46 [cpuhp/7] - root 0 0 00:01:04 62-22:54:02 47 [migration/7] - root 0 0 00:30:13 62-22:54:02 48 [ksoftirqd/7] - root 0 0 00:00:00 62-22:54:02 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 62-22:54:02 56 [kdevtmpfs] - root 0 0 00:00:00 62-22:54:02 57 [netns] - root 0 0 00:15:07 62-22:54:02 58 [kauditd] - root 0 0 00:00:07 62-22:54:02 59 [khungtaskd] - root 0 0 00:00:00 62-22:54:02 60 [oom_reaper] - root 0 0 00:00:00 62-22:54:02 61 [writeback] - root 0 0 00:02:00 62-22:54:02 62 [kcompactd0] - root 0 0 00:00:00 62-22:54:02 63 [ksmd] - root 0 0 00:05:45 62-22:54:02 64 [khugepaged] - root 0 0 00:00:00 62-22:54:02 84 [kintegrityd] - root 0 0 00:00:00 62-22:54:02 85 [kblockd] - root 0 0 00:00:00 62-22:54:02 86 [blkcg_punt_bio] - root 0 0 00:01:05 62-22:54:01 88 [kworker/0:1H-kblockd] - root 0 0 00:04:29 62-22:54:01 94 [kswapd0] - root 0 0 00:00:00 62-22:54:01 95 [kthrotld] - root 0 0 00:00:00 62-22:54:01 96 [acpi_thermal_pm] - root 0 0 00:00:00 62-22:54:01 97 [nvme-wq] - root 0 0 00:00:00 62-22:54:01 98 [nvme-reset-wq] - root 0 0 00:00:00 62-22:54:01 99 [nvme-delete-wq] - root 0 0 00:01:05 62-22:54:01 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 62-22:54:01 101 [ipv6_addrconf] - root 0 0 00:00:00 62-22:54:01 110 [kstrp] - root 0 0 00:00:00 62-22:54:01 115 [kworker/u17:0] - root 0 0 00:01:05 62-22:54:01 137 [kworker/5:1H-kblockd] - root 0 0 00:01:05 62-22:54:01 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 62-22:54:01 168 [ata_sff] - root 0 0 00:00:00 62-22:54:01 169 [scsi_eh_0] - root 0 0 00:00:00 62-22:54:01 170 [scsi_tmf_0] - root 0 0 00:00:00 62-22:54:01 171 [scsi_eh_1] - root 0 0 00:00:00 62-22:54:01 172 [scsi_tmf_1] - root 0 0 00:00:00 62-22:54:00 174 [scsi_eh_2] - root 0 0 00:00:00 62-22:54:00 175 [scsi_tmf_2] - root 0 0 00:01:05 62-22:54:00 178 [kworker/6:1H-kblockd] - root 0 0 00:01:04 62-22:54:00 203 [kworker/3:1H-kblockd] - root 0 0 00:14:54 62-22:54:00 205 [jbd2/sda1-8] - root 0 0 00:00:00 62-22:54:00 206 [ext4-rsv-conver] - root 0 0 00:01:05 62-22:54:00 223 [kworker/1:1H-kblockd] - root 0 0 00:01:05 62-22:54:00 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 62-22:53:59 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:34 62-22:53:59 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 62-22:53:58 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:11 62-22:53:57 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:35 62-22:53:57 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 92420 04:49:42 62-22:53:57 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 62-22:53:57 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:02:48 62-22:53:57 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 10:29:52 62-22:53:57 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19272 06:47:42 62-22:53:57 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:09 62-22:53:57 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 62-22:53:56 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 62-22:53:56 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 62-22:53:56 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8036 5860 00:00:07 62-22:53:56 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 62-22:53:56 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:30 62-22:53:56 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:19 62-22:53:55 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:44:29 62-22:53:27 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 03:36:30 62-22:53:27 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 05:00:26 62-22:53:27 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2392 00:03:39 62-22:53:27 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 05:28:50 62-22:53:27 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:08:00 62-22:53:27 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:10:47 62-22:53:27 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 05:01:44 62-22:53:27 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 16:06:12 62-22:53:27 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 15:58:16 62-22:53:27 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 15:59:57 62-22:53:27 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 04:28:18 62-22:53:27 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 05:19:57 62-22:53:27 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:22:37 62-22:53:27 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2620 05:31:52 62-22:53:27 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 02:58:34 62-22:53:27 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 40084 00:01:23 24-19:14:46 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40396 00:00:03 24-19:14:46 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261952 40116 00:00:03 24-19:14:46 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 40516 00:00:03 24-19:14:46 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 39944 00:00:03 24-19:14:46 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261972 40148 00:00:03 24-19:14:46 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262096 40124 00:00:03 24-19:11:44 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:53:28 497573 [kworker/3:0-mm_percpu_wq] 0::/system.slice/php7.4-fpm.service root 232272 27384 00:06:29 50-13:43:54 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/apache2.service www-data 262080 40604 00:00:01 11-15:32:35 972577 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:32:28 1056269 [kworker/4:2-events] - root 0 0 00:00:02 01:16:43 1466903 [kworker/u16:3-flush-8:0] 0::/system.slice/cron.service root 5840 3000 00:48:01 9-09:23:29 1504048 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:03 03:55:07 1517115 [kworker/6:2-events] - root 0 0 00:00:03 03:54:28 1533197 [kworker/1:0-events] - root 0 0 00:00:00 01:11:28 1602344 [kworker/5:1-events] - root 0 0 00:00:00 01:06:28 1738699 [kworker/7:1-events] - root 0 0 00:00:00 59:09 1916522 [kworker/2:1-events] 0::/system.slice/cron.service root 5908 2376 00:00:00 21:54:28 2588272 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5016 00:00:00 21:54:28 2588293 sudo ./webhookstart 0::/system.slice/cron.service root 2480 572 00:00:00 21:54:28 2588382 sh ./webhookstart 0::/system.slice/cron.service root 40104 35268 00:00:10 21:54:28 2588403 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2372 00:00:03 21:54:27 2589434 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13276 00:00:00 21:54:27 2589444 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55512 00:01:10 21:54:27 2589843 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2440 00:00:03 21:54:25 2591926 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13272 00:00:00 21:54:25 2591932 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 59508 00:01:10 21:54:24 2592444 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2544 00:00:00 21:54:24 2593230 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10912 00:00:06 21:54:24 2593235 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2420 00:00:00 21:54:24 2593275 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 10960 00:01:01 21:54:24 2593279 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2316 00:00:00 21:54:24 2593313 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 492600 51168 00:01:03 21:54:24 2593317 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2364 00:00:00 21:54:24 2593341 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 748900 12876 00:01:07 21:54:24 2593348 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2372 00:00:00 21:54:24 2593379 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 13196 00:01:06 21:54:24 2593388 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2428 00:00:00 21:54:24 2593406 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12504 00:01:06 21:54:24 2593410 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2380 00:00:00 21:54:24 2593429 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 12200 00:01:03 21:54:24 2593431 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2344 00:00:00 21:53:29 2618599 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875060 44656 00:00:04 21:53:29 2618611 /usr/sbin/node server.js 0::/system.slice/apache2.service www-data 262092 40464 00:00:03 24-17:32:49 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261968 40556 00:00:03 24-17:32:48 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262100 40616 00:00:03 24-17:32:48 2762588 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3956 00:00:02 11:09:16 2766981 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/cron.service root 5556 2572 00:00:10 11:09:14 2767489 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3188 00:00:00 11:08:29 2785735 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 24:28 2833619 [kworker/2:0-cgroup_destroy] - root 0 0 00:00:00 19:28 2959860 [kworker/3:2-cgroup_destroy] 0::/system.slice/mariadb.service mysql 3716784 343504 1-11:21:47 7-16:19:13 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 17:28 3025065 [kworker/0:0-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:34 62-21:00:09 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:05 62-21:00:09 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 15:25 3075371 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 13:28 3135742 [kworker/1:2-events] - root 0 0 00:00:00 12:35 3153462 [kworker/5:2-events] - root 0 0 00:00:00 11:28 3177466 [kworker/6:0-events] - root 0 0 00:00:00 09:28 3219275 [kworker/7:2-events] - root 0 0 00:00:00 08:27 3258889 [kworker/0:2-mm_percpu_wq] - root 0 0 00:00:00 06:45 3305988 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 05:28 3337609 [kworker/4:0-events] - root 0 0 00:00:00 04:28 3362087 [kworker/3:1-events] - root 0 0 00:00:00 03:28 3390539 [kworker/5:0-events] - root 0 0 00:00:00 02:28 3421021 [kworker/2:2-mm_percpu_wq] 0::/system.slice/cron.service root 2392 500 00:00:00 00:57 3452483 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:55 3453110 /bin/sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:28 3462809 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:26 3463772 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:24 3464323 sleep 60 0::/system.slice/cron.service root 5908 2356 00:00:00 00:22 3465051 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6684 00:00:00 00:22 3465054 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:22 3465066 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8692 00:00:00 00:22 3465068 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2356 00:00:00 00:22 3465082 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10860 00:00:00 00:22 3465085 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2444 00:00:00 00:22 3465128 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 231688 8364 00:00:00 00:22 3465132 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 00:22 3465142 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8424 00:00:00 00:22 3465147 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2332 00:00:00 00:22 3465160 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8472 00:00:00 00:22 3465164 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2376 00:00:00 00:22 3465175 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 157956 8372 00:00:00 00:22 3465177 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 560 00:00:00 00:13 3467870 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:12 3468246 /bin/sleep 60 0::/system.slice/php7.4-fpm.service www-data 232612 16604 00:00:00 00:11 3468668 php-fpm: pool www 0::/system.slice/cron.service root 2392 568 00:00:00 00:10 3468908 /bin/sleep 60 0::/system.slice/cron.service root 4284 496 00:00:00 00:07 3470038 sleep 8 0::/system.slice/cron.service root 4284 560 00:00:00 00:02 3471660 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3471787 sleep 2 0::/system.slice/xinetd.service root 6220 3544 00:00:00 00:01 3471851 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3471872 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3471916 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3471969 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3472009 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3472014 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3472029 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3472047 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3472074 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3472144 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:00 3472188 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11220 00:00:00 00:00 3472189 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9001 --header Origin: https://127.0.0.1:9001 --header Sec-WebSocket-Key: MTQxNjA6MjkzNTA= --header Sec-WebSocket-Version: 13 https://127.0.0.1:9001/ -k 0::/system.slice/cron.service root 4288 504 00:00:00 00:00 3472190 wc -l 0::/system.slice/cron.service root 99636 32432 00:00:00 00:00 3472201 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3472233 sleep 0.1 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 3472237 sleep 0.1 0::/system.slice/xinetd.service root 6676 1140 00:00:00 00:00 3472252 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/rsyslog.service root 442724 4628 00:19:23 23-08:59:27 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 258724 185380 01:24:28 23-08:59:11 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 3012 00:00:05 23-08:59:08 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 1848 00:00:00 23-08:58:02 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10804 01:09:08 23-08:58:02 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10888 00:00:50 23-08:58:02 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8632 00:00:00 23-08:58:02 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68936 6472 00:00:00 23-08:58:02 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5572 00:00:00 23-08:58:02 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5272 00:00:00 23-08:58:02 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2080 00:00:00 23-08:58:01 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2092 00:00:00 23-08:58:01 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3776 00:08:30 23-08:58:01 3789195 /usr/bin/monit -c /etc/monit/monitrc Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 67642sec preferred_lft 67642sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-25 23:54 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f78b5a6a8Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11152 13:44:17 60-22:57:59 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 60-22:57:59 2 [kthreadd] - root 0 0 00:00:00 60-22:57:59 3 [rcu_gp] - root 0 0 00:00:00 60-22:57:59 4 [rcu_par_gp] - root 0 0 00:00:00 60-22:57:59 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 60-22:57:59 8 [mm_percpu_wq] - root 0 0 00:00:00 60-22:57:59 9 [rcu_tasks_rude_] - root 0 0 00:00:00 60-22:57:59 10 [rcu_tasks_trace] - root 0 0 00:29:13 60-22:57:59 11 [ksoftirqd/0] - root 0 0 01:35:10 60-22:57:59 12 [rcu_sched] - root 0 0 00:01:01 60-22:57:59 13 [migration/0] - root 0 0 00:00:00 60-22:57:59 15 [cpuhp/0] - root 0 0 00:00:00 60-22:57:59 16 [cpuhp/1] - root 0 0 00:01:02 60-22:57:59 17 [migration/1] - root 0 0 00:29:10 60-22:57:59 18 [ksoftirqd/1] - root 0 0 00:00:00 60-22:57:59 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 60-22:57:59 21 [cpuhp/2] - root 0 0 00:01:02 60-22:57:59 22 [migration/2] - root 0 0 00:29:08 60-22:57:59 23 [ksoftirqd/2] - root 0 0 00:00:00 60-22:57:59 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 60-22:57:59 26 [cpuhp/3] - root 0 0 00:01:02 60-22:57:59 27 [migration/3] - root 0 0 00:29:07 60-22:57:59 28 [ksoftirqd/3] - root 0 0 00:00:00 60-22:57:59 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 60-22:57:59 31 [cpuhp/4] - root 0 0 00:01:03 60-22:57:59 32 [migration/4] - root 0 0 00:29:07 60-22:57:59 33 [ksoftirqd/4] - root 0 0 00:00:00 60-22:57:59 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 60-22:57:59 36 [cpuhp/5] - root 0 0 00:01:03 60-22:57:59 37 [migration/5] - root 0 0 00:29:08 60-22:57:59 38 [ksoftirqd/5] - root 0 0 00:00:00 60-22:57:59 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 60-22:57:59 41 [cpuhp/6] - root 0 0 00:01:02 60-22:57:59 42 [migration/6] - root 0 0 00:29:07 60-22:57:59 43 [ksoftirqd/6] - root 0 0 00:00:00 60-22:57:59 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 60-22:57:59 46 [cpuhp/7] - root 0 0 00:01:02 60-22:57:59 47 [migration/7] - root 0 0 00:29:36 60-22:57:59 48 [ksoftirqd/7] - root 0 0 00:00:00 60-22:57:59 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 60-22:57:59 56 [kdevtmpfs] - root 0 0 00:00:00 60-22:57:59 57 [netns] - root 0 0 00:15:07 60-22:57:59 58 [kauditd] - root 0 0 00:00:07 60-22:57:59 59 [khungtaskd] - root 0 0 00:00:00 60-22:57:59 60 [oom_reaper] - root 0 0 00:00:00 60-22:57:59 61 [writeback] - root 0 0 00:01:57 60-22:57:59 62 [kcompactd0] - root 0 0 00:00:00 60-22:57:59 63 [ksmd] - root 0 0 00:05:37 60-22:57:59 64 [khugepaged] - root 0 0 00:00:00 60-22:57:59 84 [kintegrityd] - root 0 0 00:00:00 60-22:57:59 85 [kblockd] - root 0 0 00:00:00 60-22:57:59 86 [blkcg_punt_bio] - root 0 0 00:01:04 60-22:57:58 88 [kworker/0:1H-kblockd] - root 0 0 00:04:29 60-22:57:58 94 [kswapd0] - root 0 0 00:00:00 60-22:57:58 95 [kthrotld] - root 0 0 00:00:00 60-22:57:58 96 [acpi_thermal_pm] - root 0 0 00:00:00 60-22:57:58 97 [nvme-wq] - root 0 0 00:00:00 60-22:57:58 98 [nvme-reset-wq] - root 0 0 00:00:00 60-22:57:58 99 [nvme-delete-wq] - root 0 0 00:01:03 60-22:57:58 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 60-22:57:58 101 [ipv6_addrconf] - root 0 0 00:00:00 60-22:57:58 110 [kstrp] - root 0 0 00:00:00 60-22:57:58 115 [kworker/u17:0] - root 0 0 00:01:03 60-22:57:58 137 [kworker/5:1H-kblockd] - root 0 0 00:01:04 60-22:57:58 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 60-22:57:58 168 [ata_sff] - root 0 0 00:00:00 60-22:57:58 169 [scsi_eh_0] - root 0 0 00:00:00 60-22:57:58 170 [scsi_tmf_0] - root 0 0 00:00:00 60-22:57:58 171 [scsi_eh_1] - root 0 0 00:00:00 60-22:57:58 172 [scsi_tmf_1] - root 0 0 00:00:00 60-22:57:57 174 [scsi_eh_2] - root 0 0 00:00:00 60-22:57:57 175 [scsi_tmf_2] - root 0 0 00:01:04 60-22:57:57 178 [kworker/6:1H-kblockd] - root 0 0 00:01:03 60-22:57:57 203 [kworker/3:1H-kblockd] - root 0 0 00:14:32 60-22:57:57 205 [jbd2/sda1-8] - root 0 0 00:00:00 60-22:57:57 206 [ext4-rsv-conver] - root 0 0 00:01:04 60-22:57:57 223 [kworker/1:1H-kblockd] - root 0 0 00:01:04 60-22:57:57 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 60-22:57:56 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:34 60-22:57:56 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 60-22:57:55 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:06:03 60-22:57:54 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:30 60-22:57:54 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 89776 04:40:50 60-22:57:54 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 60-22:57:54 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:02:44 60-22:57:54 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 10:12:30 60-22:57:54 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19232 06:36:12 60-22:57:54 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:07 60-22:57:54 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 60-22:57:53 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 60-22:57:53 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 60-22:57:53 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8036 5860 00:00:07 60-22:57:53 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 60-22:57:53 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:29 60-22:57:53 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:14 60-22:57:52 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:43:12 60-22:57:24 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 03:30:10 60-22:57:24 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 04:51:35 60-22:57:24 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2392 00:03:32 60-22:57:24 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 05:19:14 60-22:57:24 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:07:46 60-22:57:24 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 04:03:32 60-22:57:24 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 04:52:54 60-22:57:24 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 15:36:09 60-22:57:24 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 15:28:21 60-22:57:24 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 15:29:52 60-22:57:24 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 04:20:24 60-22:57:24 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 05:10:47 60-22:57:24 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:20:11 60-22:57:24 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2620 05:22:13 60-22:57:24 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 02:53:16 60-22:57:24 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 40084 00:01:16 22-19:18:43 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 39568 00:00:03 22-19:18:43 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262016 39684 00:00:02 22-19:18:43 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 39920 00:00:03 22-19:18:43 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261900 39808 00:00:02 22-19:18:43 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261908 39588 00:00:03 22-19:18:43 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 39564 00:00:03 22-19:15:41 143233 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232272 27280 00:06:14 48-13:47:51 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:01 01:43:25 858116 [kworker/4:0-events] 0::/system.slice/apache2.service www-data 262016 40044 00:00:01 9-15:36:32 972577 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:33:25 1122713 [kworker/5:1-mm_percpu_wq] - root 0 0 00:00:01 01:32:25 1156129 [kworker/7:0-events] 0::/system.slice/cron.service root 5840 3000 00:37:57 7-09:27:26 1504048 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 01:07:25 1826320 [kworker/3:1-mm_percpu_wq] - root 0 0 00:00:00 01:04:34 1886475 [kworker/1:1-events] - root 0 0 00:00:03 03:36:25 2126449 [kworker/6:0-events] 0::/system.slice/cron.service root 5908 2312 00:00:00 21:58:25 2591824 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875196 43420 00:00:04 21:58:25 2591869 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2268 00:00:00 21:58:25 2592205 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 5052 00:00:00 21:58:25 2592259 sudo ./webhookstart 0::/system.slice/cron.service root 2480 580 00:00:00 21:58:25 2592460 sh ./webhookstart 0::/system.slice/cron.service root 40104 35184 00:00:10 21:58:25 2592465 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2436 00:00:03 21:58:24 2593143 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13300 00:00:00 21:58:24 2593163 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:03 21:58:24 2593199 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13352 00:00:00 21:58:24 2593202 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55332 00:01:11 21:58:23 2593714 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57412 00:01:13 21:58:23 2593822 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2332 00:00:00 21:58:20 2595497 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8756 00:00:06 21:58:20 2595504 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2364 00:00:00 21:58:20 2595547 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 11248 00:01:01 21:58:20 2595550 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2300 00:00:00 21:58:20 2595583 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 493688 50588 00:01:04 21:58:20 2595590 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2460 00:00:00 21:58:20 2595618 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10832 00:01:07 21:58:20 2595639 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2376 00:00:00 21:58:20 2595652 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12972 00:01:06 21:58:20 2595658 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2452 00:00:00 21:58:20 2595676 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 14580 00:01:06 21:58:20 2595680 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2464 00:00:00 21:58:20 2595712 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11268 00:01:03 21:58:20 2595715 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php - root 0 0 00:00:00 34:25 2677996 [kworker/0:1-events] 0::/system.slice/apache2.service www-data 262028 39860 00:00:02 22-17:36:46 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261904 39964 00:00:03 22-17:36:45 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261904 39884 00:00:03 22-17:36:45 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 26:25 2900819 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 24:25 2942214 [kworker/0:2-events] 0::/system.slice/mariadb.service mysql 3716784 337604 1-02:43:44 5-16:23:10 2961082 /usr/sbin/mariadbd - root 0 0 00:00:00 21:25 3015337 [kworker/4:1-events] 0::/system.slice/packagekit.service root 288308 6256 00:00:33 60-21:04:06 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:05 60-21:04:06 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:02 02:56:25 3170348 [kworker/2:1-events] - root 0 0 00:00:00 13:05 3235586 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 11:25 3292405 [kworker/6:2-mm_percpu_wq] - root 0 0 00:00:00 10:25 3316788 [kworker/2:0-events] - root 0 0 00:00:00 09:25 3341263 [kworker/7:2-events] - root 0 0 00:00:00 08:25 3365874 [kworker/1:0-events] - root 0 0 00:00:00 05:35 3441472 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 05:25 3445398 [kworker/3:0-events] 0::/system.slice/cron.service root 6128 3640 00:00:03 03:26 3486192 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 03:26 3486759 [kworker/2:2-events] - root 0 0 00:00:00 02:25 3511641 [kworker/7:1-events] 0::/system.slice/ntp.service ntp 74496 3880 00:00:02 13:23:10 3544135 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/cron.service root 5556 2596 00:00:12 13:23:09 3544638 /usr/sbin/cron -f - root 0 0 00:00:00 01:25 3549622 [kworker/4:2-events] 0::/system.slice/cron.service root 5708 3144 00:00:00 13:22:26 3562341 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 2392 564 00:00:00 00:57 3563256 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:55 3564070 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:51 3565871 sleep 60 0::/system.slice/php7.4-fpm.service www-data 232636 16392 00:00:00 00:38 3570633 php-fpm: pool www 0::/system.slice/cron.service root 2392 500 00:00:00 00:28 3574610 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:25 3576255 /bin/sleep 60 - root 0 0 00:00:00 00:25 3576344 [kworker/5:0-cgroup_destroy] 0::/system.slice/cron.service root 5908 2360 00:00:00 00:22 3578070 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6752 00:00:00 00:22 3578073 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2348 00:00:00 00:22 3578082 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 10412 00:00:00 00:22 3578085 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2380 00:00:00 00:22 3578109 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8796 00:00:00 00:22 3578111 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2380 00:00:00 00:22 3578147 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 231688 8156 00:00:00 00:22 3578151 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:22 3578174 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8464 00:00:00 00:22 3578178 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2340 00:00:00 00:22 3578191 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8364 00:00:00 00:22 3578195 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2356 00:00:00 00:22 3578209 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 8424 00:00:00 00:22 3578211 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 564 00:00:00 00:20 3578828 sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:12 3581906 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:10 3582701 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:05 3584636 sleep 8 0::/system.slice/cron.service root 4284 496 00:00:00 00:02 3586076 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 3586357 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3586386 sleep 1 0::/system.slice/xinetd.service root 6220 3680 00:00:00 00:01 3586408 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3586424 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 3586521 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 3586551 sleep 1 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 3586587 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11072 00:00:00 00:01 3586588 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9001 --header Origin: https://127.0.0.1:9001 --header Sec-WebSocket-Key: MjU4Mzg6MzI3Mzc= --header Sec-WebSocket-Version: 13 https://127.0.0.1:9001/ -k 0::/system.slice/cron.service root 4288 564 00:00:00 00:01 3586589 wc -l 0::/system.slice/cron.service root 99636 32604 00:00:00 00:00 3586602 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 3586607 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 3586637 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 3586677 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 3586710 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3586762 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 3586763 sleep 0.1 0::/system.slice/cron.service root 5836 1332 00:00:00 00:00 3586776 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2920 00:00:00 00:00 3586778 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1208 00:00:00 00:00 3586787 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/rsyslog.service root 442724 4532 00:17:46 21-09:03:24 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 266776 194572 01:17:27 21-09:03:08 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 3012 00:00:04 21-09:03:05 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 1848 00:00:00 21-09:01:59 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10804 01:06:50 21-09:01:59 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10888 00:00:50 21-09:01:59 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8632 00:00:00 21-09:01:59 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 6472 00:00:00 21-09:01:59 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5572 00:00:00 21-09:01:59 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5272 00:00:00 21-09:01:59 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2080 00:00:00 21-09:01:58 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2092 00:00:00 21-09:01:58 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3776 00:07:51 21-09:01:58 3789195 /usr/bin/monit -c /etc/monit/monitrc - root 0 0 00:00:05 02:22:12 4045501 [kworker/u16:0-flush-8:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 79841sec preferred_lft 79841sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-23 23:58 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f7ae89544Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11256 13:27:50 58-22:41:13 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 58-22:41:13 2 [kthreadd] - root 0 0 00:00:00 58-22:41:13 3 [rcu_gp] - root 0 0 00:00:00 58-22:41:13 4 [rcu_par_gp] - root 0 0 00:00:00 58-22:41:13 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 58-22:41:13 8 [mm_percpu_wq] - root 0 0 00:00:00 58-22:41:13 9 [rcu_tasks_rude_] - root 0 0 00:00:00 58-22:41:13 10 [rcu_tasks_trace] - root 0 0 00:28:35 58-22:41:13 11 [ksoftirqd/0] - root 0 0 01:32:25 58-22:41:13 12 [rcu_sched] - root 0 0 00:01:00 58-22:41:13 13 [migration/0] - root 0 0 00:00:00 58-22:41:13 15 [cpuhp/0] - root 0 0 00:00:00 58-22:41:13 16 [cpuhp/1] - root 0 0 00:01:01 58-22:41:13 17 [migration/1] - root 0 0 00:28:32 58-22:41:13 18 [ksoftirqd/1] - root 0 0 00:00:00 58-22:41:13 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 58-22:41:13 21 [cpuhp/2] - root 0 0 00:01:01 58-22:41:13 22 [migration/2] - root 0 0 00:28:31 58-22:41:13 23 [ksoftirqd/2] - root 0 0 00:00:00 58-22:41:13 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 58-22:41:13 26 [cpuhp/3] - root 0 0 00:01:01 58-22:41:13 27 [migration/3] - root 0 0 00:28:29 58-22:41:13 28 [ksoftirqd/3] - root 0 0 00:00:00 58-22:41:13 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 58-22:41:13 31 [cpuhp/4] - root 0 0 00:01:01 58-22:41:13 32 [migration/4] - root 0 0 00:28:30 58-22:41:13 33 [ksoftirqd/4] - root 0 0 00:00:00 58-22:41:13 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 58-22:41:13 36 [cpuhp/5] - root 0 0 00:01:01 58-22:41:13 37 [migration/5] - root 0 0 00:28:31 58-22:41:13 38 [ksoftirqd/5] - root 0 0 00:00:00 58-22:41:13 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 58-22:41:13 41 [cpuhp/6] - root 0 0 00:01:01 58-22:41:13 42 [migration/6] - root 0 0 00:28:29 58-22:41:13 43 [ksoftirqd/6] - root 0 0 00:00:00 58-22:41:13 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 58-22:41:13 46 [cpuhp/7] - root 0 0 00:01:01 58-22:41:13 47 [migration/7] - root 0 0 00:28:58 58-22:41:13 48 [ksoftirqd/7] - root 0 0 00:00:00 58-22:41:13 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 58-22:41:13 56 [kdevtmpfs] - root 0 0 00:00:00 58-22:41:13 57 [netns] - root 0 0 00:15:07 58-22:41:13 58 [kauditd] - root 0 0 00:00:06 58-22:41:13 59 [khungtaskd] - root 0 0 00:00:00 58-22:41:13 60 [oom_reaper] - root 0 0 00:00:00 58-22:41:13 61 [writeback] - root 0 0 00:01:53 58-22:41:13 62 [kcompactd0] - root 0 0 00:00:00 58-22:41:13 63 [ksmd] - root 0 0 00:05:26 58-22:41:13 64 [khugepaged] - root 0 0 00:00:00 58-22:41:13 84 [kintegrityd] - root 0 0 00:00:00 58-22:41:13 85 [kblockd] - root 0 0 00:00:00 58-22:41:13 86 [blkcg_punt_bio] - root 0 0 00:01:02 58-22:41:12 88 [kworker/0:1H-kblockd] - root 0 0 00:04:27 58-22:41:12 94 [kswapd0] - root 0 0 00:00:00 58-22:41:12 95 [kthrotld] - root 0 0 00:00:00 58-22:41:12 96 [acpi_thermal_pm] - root 0 0 00:00:00 58-22:41:12 97 [nvme-wq] - root 0 0 00:00:00 58-22:41:12 98 [nvme-reset-wq] - root 0 0 00:00:00 58-22:41:12 99 [nvme-delete-wq] - root 0 0 00:01:02 58-22:41:12 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 58-22:41:12 101 [ipv6_addrconf] - root 0 0 00:00:00 58-22:41:12 110 [kstrp] - root 0 0 00:00:00 58-22:41:12 115 [kworker/u17:0] - root 0 0 00:01:01 58-22:41:12 137 [kworker/5:1H-kblockd] - root 0 0 00:01:02 58-22:41:12 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 58-22:41:12 168 [ata_sff] - root 0 0 00:00:00 58-22:41:12 169 [scsi_eh_0] - root 0 0 00:00:00 58-22:41:12 170 [scsi_tmf_0] - root 0 0 00:00:00 58-22:41:12 171 [scsi_eh_1] - root 0 0 00:00:00 58-22:41:12 172 [scsi_tmf_1] - root 0 0 00:00:00 58-22:41:11 174 [scsi_eh_2] - root 0 0 00:00:00 58-22:41:11 175 [scsi_tmf_2] - root 0 0 00:01:02 58-22:41:11 178 [kworker/6:1H-kblockd] - root 0 0 00:01:01 58-22:41:11 203 [kworker/3:1H-kblockd] - root 0 0 00:14:11 58-22:41:11 205 [jbd2/sda1-8] - root 0 0 00:00:00 58-22:41:11 206 [ext4-rsv-conver] - root 0 0 00:01:02 58-22:41:11 223 [kworker/1:1H-kblockd] - root 0 0 00:01:02 58-22:41:11 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 58-22:41:10 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:34 58-22:41:10 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 58-22:41:09 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:05:55 58-22:41:08 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:26 58-22:41:08 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1054908 84776 04:31:33 58-22:41:08 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 58-22:41:08 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:02:39 58-22:41:08 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 09:55:02 58-22:41:08 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19240 06:24:41 58-22:41:08 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:05 58-22:41:08 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 58-22:41:07 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 336 00:00:00 58-22:41:07 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 58-22:41:07 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8036 5860 00:00:07 58-22:41:07 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 58-22:41:07 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:29 58-22:41:07 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:10 58-22:41:06 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:41:55 58-22:40:38 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 03:23:46 58-22:40:38 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2468 04:42:38 58-22:40:38 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2392 00:03:26 58-22:40:38 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 05:09:30 58-22:40:38 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2424 00:07:32 58-22:40:38 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 03:56:13 58-22:40:38 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 04:43:57 58-22:40:38 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2332 15:05:56 58-22:40:38 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2496 14:58:13 58-22:40:38 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2456 14:59:38 58-22:40:38 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2448 04:12:23 58-22:40:38 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 05:01:32 58-22:40:38 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2440 01:17:44 58-22:40:38 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2620 05:12:27 58-22:40:38 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2440 02:47:55 58-22:40:38 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 41312 00:01:10 20-19:01:57 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 40792 00:00:02 20-19:01:57 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262016 40908 00:00:02 20-19:01:57 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 41148 00:00:02 20-19:01:57 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261900 41040 00:00:02 20-19:01:57 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 40916 00:00:02 20-19:01:57 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 40788 00:00:02 20-18:58:55 143233 /usr/sbin/apache2 -k start 0::/system.slice/ntp.service ntp 74496 3524 00:00:04 20:40:39 168214 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 - root 0 0 00:00:01 01:41:39 556393 [kworker/1:0-events] 0::/system.slice/php7.4-fpm.service root 232272 27320 00:06:00 46-13:31:05 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:06 06:50:39 896480 [kworker/6:0-mm_percpu_wq] 0::/system.slice/apache2.service www-data 262016 41256 00:00:01 7-15:19:46 972577 /usr/sbin/apache2 -k start 0::/system.slice/cron.service root 5840 3000 00:27:46 5-09:10:40 1504048 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 47:39 1970268 [kworker/0:1-events] - root 0 0 00:00:01 39:20 2200346 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 29:39 2451022 [kworker/7:2-events] - root 0 0 00:00:00 22:45 2629111 [kworker/u16:2-flush-8:0] - root 0 0 00:00:00 20:39 2681606 [kworker/4:2-cgroup_destroy] - root 0 0 00:00:04 05:41:39 2693124 [kworker/4:1-events] 0::/system.slice/cron.service root 5908 2328 00:00:00 21:41:38 2748702 /usr/bin/SCREEN -A -m -d -S nxfilter10001 ./startup.sh 0::/system.slice/cron.service root 2480 512 00:00:00 21:41:38 2748760 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2276 00:00:00 21:41:38 2748776 /usr/bin/SCREEN -A -m -d -S nxfilterx1101 ./startup.sh 0::/system.slice/cron.service root 5908 2372 00:00:00 21:41:38 2748806 /usr/bin/SCREEN -A -m -d -S nxfilterx1102 ./startup.sh 0::/system.slice/cron.service root 2480 508 00:00:00 21:41:38 2748808 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2268 00:00:00 21:41:38 2748809 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 5062688 282312 00:05:48 21:41:38 2748816 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilter10001/nxd.jar:/opt/imtlazarus/nxfilters/nxfilter10001//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 572 00:00:00 21:41:38 2748833 /bin/sh ./startup.sh 0::/system.slice/cron.service root 874548 42820 00:00:05 21:41:38 2748837 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2324 00:00:00 21:41:38 2748859 /usr/bin/SCREEN -A -m -d -S nxfilterx1103 ./startup.sh 0::/system.slice/cron.service root 5060632 307232 00:05:22 21:41:38 2748874 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1101/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1101//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 512 00:00:00 21:41:38 2748884 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5057548 273724 00:05:21 21:41:38 2748896 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1102/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1102//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2364 00:00:00 21:41:38 2748909 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 5908 2284 00:00:00 21:41:38 2748910 /usr/bin/SCREEN -A -m -d -S nxfilterx1104 ./startup.sh 0::/system.slice/cron.service root 2480 512 00:00:00 21:41:38 2748933 /bin/sh ./startup.sh 0::/system.slice/cron.service root 11980 4988 00:00:00 21:41:38 2748943 sudo ./webhookstart 0::/system.slice/cron.service root 5062840 298328 00:05:52 21:41:38 2748953 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1103/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1103//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2272 00:00:00 21:41:38 2748958 /usr/bin/SCREEN -A -m -d -S nxfilterx1105 ./startup.sh 0::/system.slice/cron.service root 5060632 169484 00:07:03 21:41:38 2748988 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1104/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1104//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 512 00:00:00 21:41:38 2748996 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2356 00:00:00 21:41:38 2749023 /usr/bin/SCREEN -A -m -d -S nxfilterx1106 ./startup.sh 0::/system.slice/cron.service root 2480 576 00:00:00 21:41:38 2749062 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5051540 180204 00:07:13 21:41:38 2749069 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1105/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1105//lib/*: nxd.Main 0::/system.slice/cron.service root 5055492 172504 00:07:09 21:41:38 2749102 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1106/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1106//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 576 00:00:00 21:41:38 2749110 sh ./webhookstart 0::/system.slice/cron.service root 40104 35120 00:00:10 21:41:38 2749126 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2412 00:00:00 21:41:38 2749335 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8788 00:00:06 21:41:38 2749358 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2296 00:00:00 21:41:38 2749446 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 380240 11576 00:01:04 21:41:38 2749454 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2376 00:00:00 21:41:38 2749676 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 500220 55924 00:01:08 21:41:38 2749686 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2324 00:00:00 21:41:37 2749858 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 10360 00:01:08 21:41:37 2749861 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2520 00:00:00 21:41:37 2749950 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12836 00:01:09 21:41:37 2749954 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2368 00:00:00 21:41:37 2750058 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 11212 00:01:08 21:41:37 2750068 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2448 00:00:00 21:41:37 2750133 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 11944 00:01:03 21:41:37 2750146 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2376 00:00:03 21:41:35 2751845 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13236 00:00:00 21:41:35 2751848 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2388 00:00:03 21:41:35 2751882 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13300 00:00:00 21:41:35 2751884 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55324 00:01:13 21:41:34 2752081 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 55572 00:01:14 21:41:34 2752294 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 - root 0 0 00:00:00 17:40 2756521 [kworker/7:0-events] 0::/system.slice/apache2.service www-data 261896 40952 00:00:02 20-17:20:00 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261904 41240 00:00:02 20-17:19:59 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 41220 00:00:02 20-17:19:59 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:00 16:38 2778127 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 15:39 2805658 [kworker/2:1-events] - root 0 0 00:00:00 11:39 2915694 [kworker/1:1-events] - root 0 0 00:00:00 10:40 2946135 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 10:39 2946212 [kworker/3:2-events] 0::/system.slice/mariadb.service mysql 3717184 332016 17:44:05 3-16:06:24 2961082 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5556 2536 00:01:20 3-16:05:51 2973456 /usr/sbin/cron -f - root 0 0 00:00:00 09:38 2974331 [kworker/2:2-events] 0::/system.slice/cron.service root 5708 2884 00:00:05 3-16:05:40 2978612 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:00 08:39 3000004 [kworker/0:0-cgroup_destroy] 0::/system.slice/packagekit.service root 288308 6256 00:00:32 58-20:47:20 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4284 00:00:05 58-20:47:20 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:00 05:39 3073034 [kworker/6:2-events] - root 0 0 00:00:00 05:19 3085372 [kworker/u16:0-flush-8:0] - root 0 0 00:00:00 02:41 3153203 [kworker/4:0-events] - root 0 0 00:00:00 02:39 3154385 [kworker/5:0-mm_percpu_wq] 0::/system.slice/cron.service root 11124 3812 00:00:00 01:40 3177574 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 516 00:00:00 01:40 3177748 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2888 00:00:00 01:40 3177842 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 1956 00:00:00 01:40 3178140 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 9972 00:00:00 01:40 3178165 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 708 00:00:00 01:40 3178166 grep 502 Bad Gateway 0::/system.slice/cron.service root 6492 3896 00:00:00 01:40 3178282 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5908 2380 00:00:00 01:40 3178448 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 527704 10696 00:00:00 01:40 3178471 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2556 00:00:00 01:39 3178676 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 527704 8920 00:00:00 01:39 3178690 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 99636 32084 00:00:00 01:37 3179989 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 99636 31976 00:00:00 01:34 3181413 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2448 00:00:00 01:24 3185160 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6944 00:00:00 01:24 3185164 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2392 00:00:00 01:24 3185196 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6768 00:00:00 01:24 3185199 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2432 00:00:00 01:24 3185211 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6896 00:00:00 01:24 3185215 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2380 00:00:00 01:24 3185232 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6776 00:00:00 01:24 3185235 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2372 00:00:00 01:24 3185249 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6860 00:00:00 01:24 3185252 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 564 00:00:00 00:41 3202618 /bin/sleep 60 - root 0 0 00:00:00 00:39 3204041 [kworker/0:2-events] 0::/system.slice/cron.service root 2392 564 00:00:00 00:39 3204070 /bin/sleep 60 0::/system.slice/php7.4-fpm.service www-data 232636 16412 00:00:00 00:14 3213205 php-fpm: pool www 0::/system.slice/cron.service root 4284 508 00:00:00 00:14 3213639 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:12 3214680 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:11 3215264 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:10 3215723 /bin/sleep 60 0::/system.slice/cron.service root 5840 1420 00:00:00 00:02 3220189 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11200 00:00:00 00:02 3220191 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8994 --header Origin: https://127.0.0.1:8994 --header Sec-WebSocket-Key: ODY5NToxNTY0Nw== --header Sec-WebSocket-Version: 13 https://127.0.0.1:8994/ -k 0::/system.slice/cron.service root 4288 496 00:00:00 00:02 3220192 wc -l 0::/system.slice/cron.service root 99636 32380 00:00:00 00:02 3220210 /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3220390 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 3220406 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3220562 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3220702 sleep 1 0::/system.slice/xinetd.service root 6260 3784 00:00:00 00:01 3220726 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3220760 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3220813 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3220864 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 3220906 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3220943 sleep 8 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3220974 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 3221038 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 3221173 sleep 0.1 0::/system.slice/xinetd.service root 6676 1140 00:00:00 00:00 3221201 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5836 1404 00:00:00 00:00 3221202 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 3044 00:00:00 00:00 3221204 jq .dispositivos.windows 0::/system.slice/rsyslog.service root 442724 4672 00:16:10 19-08:46:38 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 278996 207224 01:10:27 19-08:46:22 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 3012 00:00:04 19-08:46:19 3745512 /lib/systemd/systemd-udevd - root 0 0 00:00:06 07:41:39 3762802 [kworker/3:0-events] 0::/system.slice/nginx.service root 67644 1872 00:00:00 19-08:45:13 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10828 01:03:22 19-08:45:13 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10908 00:00:49 19-08:45:13 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8656 00:00:00 19-08:45:13 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 6496 00:00:00 19-08:45:13 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5596 00:00:00 19-08:45:13 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5296 00:00:00 19-08:45:13 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2112 00:00:00 19-08:45:12 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2112 00:00:00 19-08:45:12 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3780 00:07:09 19-08:45:12 3789195 /usr/bin/monit -c /etc/monit/monitrc - root 0 0 00:00:01 02:11:39 3970549 [kworker/5:1-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 70137sec preferred_lft 70137sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-21 23:41 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f100624aaFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11296 13:08:45 56-19:26:55 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 56-19:26:55 2 [kthreadd] - root 0 0 00:00:00 56-19:26:55 3 [rcu_gp] - root 0 0 00:00:00 56-19:26:55 4 [rcu_par_gp] - root 0 0 00:00:00 56-19:26:55 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 56-19:26:55 8 [mm_percpu_wq] - root 0 0 00:00:00 56-19:26:55 9 [rcu_tasks_rude_] - root 0 0 00:00:00 56-19:26:55 10 [rcu_tasks_trace] - root 0 0 00:27:54 56-19:26:55 11 [ksoftirqd/0] - root 0 0 01:29:28 56-19:26:55 12 [rcu_sched] - root 0 0 00:00:59 56-19:26:55 13 [migration/0] - root 0 0 00:00:00 56-19:26:55 15 [cpuhp/0] - root 0 0 00:00:00 56-19:26:55 16 [cpuhp/1] - root 0 0 00:01:00 56-19:26:55 17 [migration/1] - root 0 0 00:27:52 56-19:26:55 18 [ksoftirqd/1] - root 0 0 00:00:00 56-19:26:55 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 56-19:26:55 21 [cpuhp/2] - root 0 0 00:00:59 56-19:26:55 22 [migration/2] - root 0 0 00:27:49 56-19:26:55 23 [ksoftirqd/2] - root 0 0 00:00:00 56-19:26:55 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 56-19:26:55 26 [cpuhp/3] - root 0 0 00:01:00 56-19:26:55 27 [migration/3] - root 0 0 00:27:48 56-19:26:55 28 [ksoftirqd/3] - root 0 0 00:00:00 56-19:26:55 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 56-19:26:55 31 [cpuhp/4] - root 0 0 00:01:00 56-19:26:55 32 [migration/4] - root 0 0 00:27:48 56-19:26:55 33 [ksoftirqd/4] - root 0 0 00:00:00 56-19:26:55 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 56-19:26:55 36 [cpuhp/5] - root 0 0 00:01:00 56-19:26:55 37 [migration/5] - root 0 0 00:27:49 56-19:26:55 38 [ksoftirqd/5] - root 0 0 00:00:00 56-19:26:55 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 56-19:26:55 41 [cpuhp/6] - root 0 0 00:01:00 56-19:26:55 42 [migration/6] - root 0 0 00:27:48 56-19:26:55 43 [ksoftirqd/6] - root 0 0 00:00:00 56-19:26:55 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 56-19:26:55 46 [cpuhp/7] - root 0 0 00:01:00 56-19:26:55 47 [migration/7] - root 0 0 00:28:16 56-19:26:55 48 [ksoftirqd/7] - root 0 0 00:00:00 56-19:26:55 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 56-19:26:55 56 [kdevtmpfs] - root 0 0 00:00:00 56-19:26:55 57 [netns] - root 0 0 00:15:07 56-19:26:55 58 [kauditd] - root 0 0 00:00:06 56-19:26:55 59 [khungtaskd] - root 0 0 00:00:00 56-19:26:55 60 [oom_reaper] - root 0 0 00:00:00 56-19:26:55 61 [writeback] - root 0 0 00:01:50 56-19:26:55 62 [kcompactd0] - root 0 0 00:00:00 56-19:26:55 63 [ksmd] - root 0 0 00:05:12 56-19:26:55 64 [khugepaged] - root 0 0 00:00:00 56-19:26:55 84 [kintegrityd] - root 0 0 00:00:00 56-19:26:55 85 [kblockd] - root 0 0 00:00:00 56-19:26:55 86 [blkcg_punt_bio] - root 0 0 00:01:00 56-19:26:54 88 [kworker/0:1H-kblockd] - root 0 0 00:04:26 56-19:26:54 94 [kswapd0] - root 0 0 00:00:00 56-19:26:54 95 [kthrotld] - root 0 0 00:00:00 56-19:26:54 96 [acpi_thermal_pm] - root 0 0 00:00:00 56-19:26:54 97 [nvme-wq] - root 0 0 00:00:00 56-19:26:54 98 [nvme-reset-wq] - root 0 0 00:00:00 56-19:26:54 99 [nvme-delete-wq] - root 0 0 00:01:00 56-19:26:54 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 56-19:26:54 101 [ipv6_addrconf] - root 0 0 00:00:00 56-19:26:54 110 [kstrp] - root 0 0 00:00:00 56-19:26:54 115 [kworker/u17:0] - root 0 0 00:01:00 56-19:26:54 137 [kworker/5:1H-kblockd] - root 0 0 00:01:00 56-19:26:54 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 56-19:26:54 168 [ata_sff] - root 0 0 00:00:00 56-19:26:54 169 [scsi_eh_0] - root 0 0 00:00:00 56-19:26:54 170 [scsi_tmf_0] - root 0 0 00:00:00 56-19:26:54 171 [scsi_eh_1] - root 0 0 00:00:00 56-19:26:54 172 [scsi_tmf_1] - root 0 0 00:00:00 56-19:26:53 174 [scsi_eh_2] - root 0 0 00:00:00 56-19:26:53 175 [scsi_tmf_2] - root 0 0 00:01:00 56-19:26:53 178 [kworker/6:1H-kblockd] - root 0 0 00:00:59 56-19:26:53 203 [kworker/3:1H-kblockd] - root 0 0 00:13:47 56-19:26:53 205 [jbd2/sda1-8] - root 0 0 00:00:00 56-19:26:53 206 [ext4-rsv-conver] - root 0 0 00:01:00 56-19:26:53 223 [kworker/1:1H-kblockd] - root 0 0 00:01:00 56-19:26:53 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 56-19:26:52 356 [cryptd] 0::/system.slice/auditd.service root 13328 2180 00:53:33 56-19:26:52 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2748 00:00:00 56-19:26:51 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3612 00:05:46 56-19:26:50 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:21 56-19:26:50 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1047656 79824 04:21:23 56-19:26:50 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 56-19:26:50 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3684 00:02:34 56-19:26:50 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2068 09:36:18 56-19:26:50 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19180 06:12:20 56-19:26:50 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:03 56-19:26:50 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 492 00:00:00 56-19:26:49 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 340 00:00:00 56-19:26:49 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3548 00:00:00 56-19:26:49 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8036 5860 00:00:07 56-19:26:49 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 56-19:26:49 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2044 00:00:28 56-19:26:49 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:05 56-19:26:48 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:40:32 56-19:26:20 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2580 03:16:55 56-19:26:20 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2472 04:33:03 56-19:26:20 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2396 00:03:18 56-19:26:20 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 04:59:05 56-19:26:20 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2428 00:07:17 56-19:26:20 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2524 03:48:22 56-19:26:20 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 04:34:22 56-19:26:20 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2336 14:33:39 56-19:26:20 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2500 14:26:01 56-19:26:20 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2460 14:27:22 56-19:26:20 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2452 04:03:48 56-19:26:20 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2660 04:51:38 56-19:26:20 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2444 01:15:05 56-19:26:20 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2620 05:01:59 56-19:26:20 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2444 02:42:10 56-19:26:20 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 42388 00:01:02 18-15:47:39 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 41888 00:00:02 18-15:47:39 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262016 42000 00:00:02 18-15:47:39 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261900 42108 00:00:02 18-15:47:39 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 42236 00:00:02 18-15:47:39 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 42004 00:00:02 18-15:47:39 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 41868 00:00:02 18-15:44:37 143233 /usr/sbin/apache2 -k start 0::/system.slice/php7.4-fpm.service root 232272 27256 00:05:44 44-10:16:47 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:00 57:21 835981 [kworker/1:1-events] - root 0 0 00:00:02 56:32 871449 [kworker/u16:1-events_unbound] 0::/system.slice/apache2.service www-data 262016 42344 00:00:00 5-12:05:28 972577 /usr/sbin/apache2 -k start - root 0 0 00:00:00 35:21 1422422 [kworker/3:1-events] 0::/system.slice/cron.service root 5840 3000 00:16:51 3-05:56:22 1504048 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:00 31:21 1508937 [kworker/5:2-events] - root 0 0 00:00:00 27:20 1623052 [kworker/7:2-events] - root 0 0 00:00:04 05:44:21 1703220 [kworker/4:1-events] - root 0 0 00:00:00 20:21 1809205 [kworker/1:0-events] - root 0 0 00:00:00 18:21 1861264 [kworker/6:2-cgroup_destroy] - root 0 0 00:00:00 13:33 1980828 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 13:21 1985825 [kworker/3:0] - root 0 0 00:00:00 09:21 2099579 [kworker/0:0-cgroup_destroy] - root 0 0 00:00:00 08:21 2123730 [kworker/2:1-events] - root 0 0 00:00:00 07:21 2148226 [kworker/7:0-mm_percpu_wq] 0::/system.slice/php7.4-fpm.service www-data 256496 49632 00:00:03 06:28 2170457 php-fpm: pool www - root 0 0 00:00:00 06:21 2173407 [kworker/u16:3-events_unbound] - root 0 0 00:00:00 06:21 2173483 [kworker/5:0-events] - root 0 0 00:00:00 05:21 2207069 [kworker/4:2-events] - root 0 0 00:00:00 03:21 2248178 [kworker/0:1-events] 0::/system.slice/php7.4-fpm.service www-data 233388 26652 00:00:00 02:38 2262865 php-fpm: pool www 0::/system.slice/cron.service root 6128 3496 00:00:02 02:22 2268318 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 02:21 2269126 [kworker/6:1-events] 0::/system.slice/cron.service root 5908 2396 00:00:00 01:22 2297866 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 527704 9044 00:00:00 01:22 2297880 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2348 00:00:00 01:22 2298058 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 531380 13588 00:00:00 01:22 2298068 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 99636 31884 00:00:00 01:17 2301179 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 113972 46324 00:00:00 01:14 2302862 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2344 00:00:00 01:06 2307390 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6908 00:00:00 01:06 2307395 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2344 00:00:00 01:06 2307413 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6828 00:00:00 01:06 2307416 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:06 2307442 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6772 00:00:00 01:06 2307446 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2340 00:00:00 01:06 2307480 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6776 00:00:00 01:06 2307483 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2456 00:00:00 01:06 2307503 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6832 00:00:00 01:06 2307509 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 500 00:00:00 00:53 2316961 /bin/sleep 60 0::/system.slice/cron.service root 2392 496 00:00:00 00:51 2319621 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:37 2326989 sleep 60 0::/system.slice/cron.service root 2392 560 00:00:00 00:23 2332112 /bin/sleep 60 - root 0 0 00:00:00 00:22 2333379 [kworker/u16:2-ext4-rsv-conversion] 0::/system.slice/cron.service root 2392 564 00:00:00 00:21 2333674 /bin/sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:08 2338919 sleep 60 0::/system.slice/cron.service root 4284 560 00:00:00 00:03 2340889 /bin/sleep 5 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2341628 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2341789 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2341924 sleep 1 0::/system.slice/xinetd.service root 6172 3668 00:00:00 00:01 2341939 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2341986 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2342029 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2342062 sleep 2 0::/system.slice/cron.service root 4284 560 00:00:00 00:00 2342074 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2342178 sleep 1 0::/system.slice/cron.service root 4284 492 00:00:00 00:00 2342212 sleep 8 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2342220 sleep 0.1 0::/system.slice/cron.service root 5836 1404 00:00:00 00:00 2342228 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 2972 00:00:00 00:00 2342230 jq .dispositivos.windows 0::/system.slice/cron.service root 6128 1740 00:00:00 00:00 2342239 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2968 00:00:00 00:00 2342241 jq -c . 0::/system.slice/cron.service root 5840 1484 00:00:00 00:00 2342253 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5244 3016 00:00:00 00:00 2342255 jq .dispositivos.ios 0::/system.slice/cron.service root 5708 1452 00:00:00 00:00 2342256 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 3028 00:00:00 00:00 2342258 jq .dispositivos.windows 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2342259 sleep 1 0::/system.slice/xinetd.service root 6676 1204 00:00:00 00:00 2342276 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5908 2280 00:00:00 18:27:21 2550016 /usr/bin/SCREEN -A -m -d -S nxfilter10001 ./startup.sh 0::/system.slice/cron.service root 2480 568 00:00:00 18:27:21 2550040 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2308 00:00:00 18:27:21 2550085 /usr/bin/SCREEN -A -m -d -S nxfilterx1101 ./startup.sh 0::/system.slice/cron.service root 5059756 279736 00:05:01 18:27:21 2550098 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilter10001/nxd.jar:/opt/imtlazarus/nxfilters/nxfilter10001//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 568 00:00:00 18:27:21 2550121 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2296 00:00:00 18:27:21 2550125 /usr/bin/SCREEN -A -m -d -S nxfilterx1102 ./startup.sh 0::/system.slice/cron.service root 2480 564 00:00:00 18:27:21 2550150 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5061660 289644 00:05:00 18:27:21 2550164 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1101/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1101//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2284 00:00:00 18:27:21 2550171 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 5908 2264 00:00:00 18:27:21 2550180 /usr/bin/SCREEN -A -m -d -S nxfilterx1103 ./startup.sh 0::/system.slice/cron.service root 5060632 281780 00:04:48 18:27:21 2550195 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1102/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1102//lib/*: nxd.Main 0::/system.slice/cron.service root 11980 5060 00:00:00 18:27:21 2550203 sudo ./webhookstart 0::/system.slice/cron.service root 2480 504 00:00:00 18:27:21 2550204 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2336 00:00:00 18:27:21 2550251 /usr/bin/SCREEN -A -m -d -S nxfilterx1104 ./startup.sh 0::/system.slice/cron.service root 5060632 279292 00:04:44 18:27:21 2550267 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1103/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1103//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 500 00:00:00 18:27:21 2550290 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2328 00:00:00 18:27:21 2550295 /usr/bin/SCREEN -A -m -d -S nxfilterx1105 ./startup.sh 0::/system.slice/cron.service root 5064744 183308 00:06:13 18:27:21 2550338 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1104/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1104//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 504 00:00:00 18:27:21 2550346 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2300 00:00:00 18:27:21 2550381 /usr/bin/SCREEN -A -m -d -S nxfilterx1106 ./startup.sh 0::/system.slice/cron.service root 2480 572 00:00:00 18:27:21 2550391 sh ./webhookstart 0::/system.slice/cron.service root 40104 35280 00:00:09 18:27:21 2550418 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5061880 191580 00:06:17 18:27:21 2550419 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1105/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1105//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 568 00:00:00 18:27:21 2550437 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5061880 190352 00:06:17 18:27:21 2550482 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1106/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1106//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2368 00:00:03 18:27:17 2553820 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13284 00:00:00 18:27:17 2553831 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2368 00:00:03 18:27:17 2553858 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13212 00:00:00 18:27:17 2553868 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55008 00:01:03 18:27:16 2554222 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55272 00:01:03 18:27:16 2554264 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2268 00:00:00 18:27:16 2554359 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 11228 00:00:05 18:27:16 2554363 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2284 00:00:00 18:27:16 2554400 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 7700 00:00:52 18:27:16 2554403 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2272 00:00:00 18:27:16 2554424 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 495864 52128 00:00:57 18:27:16 2554428 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2280 00:00:00 18:27:15 2554454 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11472 00:00:57 18:27:15 2554457 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2364 00:00:00 18:27:15 2554483 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12152 00:00:56 18:27:15 2554487 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2308 00:00:00 18:27:15 2554529 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 10284 00:00:56 18:27:15 2554532 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2304 00:00:00 18:27:15 2554582 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 9596 00:00:53 18:27:15 2554587 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2404 00:00:00 18:26:21 2577082 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874184 40236 00:00:04 18:26:21 2577103 /usr/sbin/node server.js 0::/system.slice/apache2.service www-data 261896 42060 00:00:02 18-14:05:42 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 42468 00:00:02 18-14:05:41 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 42196 00:00:02 18-14:05:41 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:04 04:57:21 2936147 [kworker/6:0-events] 0::/system.slice/mariadb.service mysql 3724980 304968 08:06:16 1-12:52:06 2961082 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5556 2636 00:00:33 1-12:51:33 2973456 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3008 00:00:02 1-12:51:22 2978612 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/packagekit.service root 288308 6260 00:00:30 56-17:33:02 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4288 00:00:05 56-17:33:02 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:01 02:01:20 3358878 [kworker/0:2-events] 0::/system.slice/rsyslog.service root 442724 4528 00:14:26 17-05:32:20 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 332028 244776 01:02:58 17-05:32:04 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 3024 00:00:03 17-05:32:01 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 1920 00:00:00 17-05:30:55 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10860 00:59:17 17-05:30:55 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10952 00:00:48 17-05:30:55 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8692 00:00:00 17-05:30:55 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 6528 00:00:00 17-05:30:55 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5640 00:00:00 17-05:30:55 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5340 00:00:00 17-05:30:55 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2160 00:00:00 17-05:30:54 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2164 00:00:00 17-05:30:54 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3780 00:06:22 17-05:30:54 3789195 /usr/bin/monit -c /etc/monit/monitrc - root 0 0 00:00:05 06:56:22 3994552 [kworker/2:0-events] 0::/system.slice/ntp.service ntp 74496 3388 00:00:04 17:26:20 4167393 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 49980sec preferred_lft 49980sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-19 20:27 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fba9be372Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.26 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11604 12:44:41 54-21:12:03 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 54-21:12:03 2 [kthreadd] - root 0 0 00:00:00 54-21:12:03 3 [rcu_gp] - root 0 0 00:00:00 54-21:12:03 4 [rcu_par_gp] - root 0 0 00:00:00 54-21:12:03 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 54-21:12:03 8 [mm_percpu_wq] - root 0 0 00:00:00 54-21:12:03 9 [rcu_tasks_rude_] - root 0 0 00:00:00 54-21:12:03 10 [rcu_tasks_trace] - root 0 0 00:27:14 54-21:12:03 11 [ksoftirqd/0] - root 0 0 01:26:43 54-21:12:03 12 [rcu_sched] - root 0 0 00:00:57 54-21:12:03 13 [migration/0] - root 0 0 00:00:00 54-21:12:03 15 [cpuhp/0] - root 0 0 00:00:00 54-21:12:03 16 [cpuhp/1] - root 0 0 00:00:58 54-21:12:03 17 [migration/1] - root 0 0 00:27:12 54-21:12:03 18 [ksoftirqd/1] - root 0 0 00:00:00 54-21:12:03 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 54-21:12:03 21 [cpuhp/2] - root 0 0 00:00:58 54-21:12:03 22 [migration/2] - root 0 0 00:27:09 54-21:12:03 23 [ksoftirqd/2] - root 0 0 00:00:00 54-21:12:03 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 54-21:12:03 26 [cpuhp/3] - root 0 0 00:00:58 54-21:12:03 27 [migration/3] - root 0 0 00:27:09 54-21:12:03 28 [ksoftirqd/3] - root 0 0 00:00:00 54-21:12:03 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 54-21:12:03 31 [cpuhp/4] - root 0 0 00:00:59 54-21:12:03 32 [migration/4] - root 0 0 00:27:09 54-21:12:03 33 [ksoftirqd/4] - root 0 0 00:00:00 54-21:12:03 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 54-21:12:03 36 [cpuhp/5] - root 0 0 00:00:59 54-21:12:03 37 [migration/5] - root 0 0 00:27:09 54-21:12:03 38 [ksoftirqd/5] - root 0 0 00:00:00 54-21:12:03 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 54-21:12:03 41 [cpuhp/6] - root 0 0 00:00:59 54-21:12:03 42 [migration/6] - root 0 0 00:27:09 54-21:12:03 43 [ksoftirqd/6] - root 0 0 00:00:00 54-21:12:03 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 54-21:12:03 46 [cpuhp/7] - root 0 0 00:00:58 54-21:12:03 47 [migration/7] - root 0 0 00:27:33 54-21:12:03 48 [ksoftirqd/7] - root 0 0 00:00:00 54-21:12:03 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 54-21:12:03 56 [kdevtmpfs] - root 0 0 00:00:00 54-21:12:03 57 [netns] - root 0 0 00:15:07 54-21:12:03 58 [kauditd] - root 0 0 00:00:06 54-21:12:03 59 [khungtaskd] - root 0 0 00:00:00 54-21:12:03 60 [oom_reaper] - root 0 0 00:00:00 54-21:12:03 61 [writeback] - root 0 0 00:01:46 54-21:12:03 62 [kcompactd0] - root 0 0 00:00:00 54-21:12:03 63 [ksmd] - root 0 0 00:04:57 54-21:12:03 64 [khugepaged] - root 0 0 00:00:00 54-21:12:03 84 [kintegrityd] - root 0 0 00:00:00 54-21:12:03 85 [kblockd] - root 0 0 00:00:00 54-21:12:03 86 [blkcg_punt_bio] - root 0 0 00:00:57 54-21:12:02 88 [kworker/0:1H-kblockd] - root 0 0 00:04:18 54-21:12:02 94 [kswapd0] - root 0 0 00:00:00 54-21:12:02 95 [kthrotld] - root 0 0 00:00:00 54-21:12:02 96 [acpi_thermal_pm] - root 0 0 00:00:00 54-21:12:02 97 [nvme-wq] - root 0 0 00:00:00 54-21:12:02 98 [nvme-reset-wq] - root 0 0 00:00:00 54-21:12:02 99 [nvme-delete-wq] - root 0 0 00:00:57 54-21:12:02 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 54-21:12:02 101 [ipv6_addrconf] - root 0 0 00:00:00 54-21:12:02 110 [kstrp] - root 0 0 00:00:00 54-21:12:02 115 [kworker/u17:0] - root 0 0 00:00:56 54-21:12:02 137 [kworker/5:1H-kblockd] - root 0 0 00:00:57 54-21:12:02 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 54-21:12:02 168 [ata_sff] - root 0 0 00:00:00 54-21:12:02 169 [scsi_eh_0] - root 0 0 00:00:00 54-21:12:02 170 [scsi_tmf_0] - root 0 0 00:00:00 54-21:12:02 171 [scsi_eh_1] - root 0 0 00:00:00 54-21:12:02 172 [scsi_tmf_1] - root 0 0 00:00:00 54-21:12:01 174 [scsi_eh_2] - root 0 0 00:00:00 54-21:12:01 175 [scsi_tmf_2] - root 0 0 00:00:57 54-21:12:01 178 [kworker/6:1H-kblockd] - root 0 0 00:00:56 54-21:12:01 203 [kworker/3:1H-kblockd] - root 0 0 00:13:19 54-21:12:01 205 [jbd2/sda1-8] - root 0 0 00:00:00 54-21:12:01 206 [ext4-rsv-conver] - root 0 0 00:00:57 54-21:12:01 223 [kworker/1:1H-kblockd] - root 0 0 00:00:57 54-21:12:01 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 54-21:12:00 356 [cryptd] 0::/system.slice/auditd.service root 13328 2188 00:53:33 54-21:12:00 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2752 00:00:00 54-21:11:59 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3624 00:05:38 54-21:11:58 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2932 00:02:16 54-21:11:58 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1039340 70868 04:09:03 54-21:11:58 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2292 00:00:00 54-21:11:58 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3700 00:02:29 54-21:11:58 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2072 09:19:03 54-21:11:58 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19200 06:00:54 54-21:11:58 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5448 00:01:01 54-21:11:58 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 496 00:00:00 54-21:11:57 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 340 00:00:00 54-21:11:57 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3560 00:00:00 54-21:11:57 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8164 5800 00:00:06 54-21:11:57 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 54-21:11:57 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2048 00:00:27 54-21:11:57 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2136 00:02:00 54-21:11:56 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2560 00:39:16 54-21:11:28 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2588 03:10:37 54-21:11:28 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2480 04:24:15 54-21:11:28 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2396 00:03:12 54-21:11:28 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2608 04:49:32 54-21:11:28 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2428 00:07:03 54-21:11:28 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2536 03:41:09 54-21:11:28 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2560 04:25:34 54-21:11:28 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5836 2344 14:04:11 54-21:11:28 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2500 13:56:39 54-21:11:28 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2464 13:57:56 54-21:11:28 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2452 03:55:55 54-21:11:28 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2664 04:42:32 54-21:11:28 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2444 01:12:40 54-21:11:28 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2632 04:52:24 54-21:11:28 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2448 02:36:54 54-21:11:28 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 46576 00:00:56 16-17:32:47 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 45856 00:00:02 16-17:32:47 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262016 45860 00:00:02 16-17:32:47 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261900 45972 00:00:02 16-17:32:47 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 45708 00:00:02 16-17:32:47 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 45900 00:00:02 16-17:32:47 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261892 45584 00:00:02 16-17:29:45 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:00 20:29 363489 [kworker/7:0-cgroup_destroy] - root 0 0 00:00:00 18:03 414414 [kworker/u16:1-flush-8:0] - root 0 0 00:00:00 15:29 478075 [kworker/4:0-events] - root 0 0 00:00:05 05:36:29 545437 [kworker/1:0-events] - root 0 0 00:00:00 12:27 562626 [kworker/3:2-events] 0::/system.slice/php7.4-fpm.service root 232272 27436 00:05:24 42-12:01:55 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:00 12:06 575679 [kworker/1:1-events] - root 0 0 00:00:00 11:28 590451 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 09:29 646207 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 07:29 686826 [kworker/6:0-mm_percpu_wq] - root 0 0 00:00:00 06:29 719941 [kworker/0:2-events] - root 0 0 00:00:00 05:29 750341 [kworker/2:0] - root 0 0 00:00:00 04:29 773918 [kworker/3:0-events] 0::/system.slice/cron.service root 6492 3816 00:00:01 02:30 821086 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater - root 0 0 00:00:00 02:29 821772 [kworker/5:0-events] 0::/system.slice/php7.4-fpm.service www-data 255368 47668 00:00:00 00:55 858995 php-fpm: pool www 0::/system.slice/cron.service root 2392 568 00:00:00 00:53 859506 /bin/sleep 60 0::/system.slice/cron.service root 2392 572 00:00:00 00:51 860116 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:48 861203 sleep 60 - root 0 0 00:00:00 00:29 869693 [kworker/7:1-events] 0::/system.slice/php7.4-fpm.service www-data 251528 43828 00:00:00 00:26 871727 php-fpm: pool www 0::/system.slice/cron.service root 4284 564 00:00:00 00:25 871836 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:24 872773 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:22 873822 /bin/sleep 60 0::/system.slice/cron.service root 5908 2376 00:00:00 00:18 875784 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 231688 6808 00:00:00 00:18 875788 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2416 00:00:00 00:18 875812 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 6324 00:00:00 00:18 875815 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2384 00:00:00 00:18 875847 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 84224 8436 00:00:00 00:18 875852 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 00:18 875892 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 452884 8016 00:00:00 00:18 875896 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2388 00:00:00 00:18 875914 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6440 00:00:00 00:18 875917 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2560 00:00:00 00:17 875956 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6332 00:00:00 00:17 875963 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2324 00:00:00 00:17 875993 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6344 00:00:00 00:17 875996 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 99636 32200 00:00:00 00:17 876165 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 564 00:00:00 00:08 880844 /bin/sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:06 881898 /bin/sleep 60 0::/system.slice/cron.service root 5840 1420 00:00:00 00:02 883903 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11208 00:00:00 00:02 883904 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8992 --header Origin: https://127.0.0.1:8992 --header Sec-WebSocket-Key: NzM1Nzo0NDQ4 --header Sec-WebSocket-Version: 13 https://127.0.0.1:8992/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:02 883905 wc -l 0::/system.slice/cron.service root 99636 31984 00:00:00 00:02 883913 /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 4284 508 00:00:00 00:02 883964 sleep 8 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 884176 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 884268 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 884332 sleep 1 0::/system.slice/xinetd.service root 6172 3692 00:00:00 00:01 884333 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 884450 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 884464 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 884465 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 884480 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 884589 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 884781 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 884814 sleep 0.1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 884819 sleep 1 0::/system.slice/cron.service root 4284 508 00:00:00 00:00 884838 sleep 0.1 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 884859 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/cron.service root 5244 2908 00:00:00 00:00 884861 jq -c .[] | sort_by(.mdm_id, .tag) | .[] 0::/system.slice/cron.service root 5708 1452 00:00:00 00:00 884862 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5244 2972 00:00:00 00:00 884864 jq .dispositivos.windows 0::/system.slice/apache2.service www-data 261884 46004 00:00:00 3-13:50:36 972577 /usr/sbin/apache2 -k start 0::/system.slice/mariadb.service mysql 3004656 327128 01:48:55 07:57:11 1080747 /usr/sbin/mariadbd 0::/system.slice/ntp.service ntp 74496 3332 00:00:01 07:56:58 1085854 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/cron.service root 5556 2756 00:00:07 07:56:56 1086346 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3208 00:00:00 07:56:30 1097110 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/cron.service root 5840 3288 00:06:52 1-07:41:30 1504048 /bin/bash /opt/imtlazarus/mdms/set_add_apps - root 0 0 00:00:01 02:02:29 1911051 [kworker/0:0-events] 0::/system.slice/cron.service root 5908 2296 00:00:00 20:12:29 2739238 /usr/bin/SCREEN -A -m -d -S nxfilter10001 ./startup.sh 0::/system.slice/cron.service root 5908 2280 00:00:00 20:12:29 2739261 /usr/bin/SCREEN -A -m -d -S nxfilterx1101 ./startup.sh 0::/system.slice/cron.service root 2480 544 00:00:00 20:12:29 2739284 /bin/sh ./startup.sh 0::/system.slice/cron.service root 2480 480 00:00:00 20:12:29 2739289 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2304 00:00:00 20:12:29 2739314 /usr/bin/SCREEN -A -m -d -S nxfilterx1102 ./startup.sh 0::/system.slice/cron.service root 2480 484 00:00:00 20:12:29 2739341 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5062688 290780 00:05:35 20:12:29 2739348 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilter10001/nxd.jar:/opt/imtlazarus/nxfilters/nxfilter10001//lib/*: nxd.Main 0::/system.slice/cron.service root 5059604 311752 00:05:14 20:12:29 2739351 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1101/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1101//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2272 00:00:00 20:12:29 2739352 /usr/bin/SCREEN -A -m -d -S nxfilterx1103 ./startup.sh 0::/system.slice/cron.service root 2480 548 00:00:00 20:12:29 2739390 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5050352 285176 00:05:11 20:12:29 2739393 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1102/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1102//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2308 00:00:00 20:12:29 2739404 /usr/bin/SCREEN -A -m -d -S nxfilterx1104 ./startup.sh 0::/system.slice/cron.service root 5908 2300 00:00:00 20:12:29 2739424 /usr/bin/SCREEN -A -m -d -S nxfilterx1105 ./startup.sh 0::/system.slice/cron.service root 5060632 297304 00:05:07 20:12:29 2739426 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1103/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1103//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 540 00:00:00 20:12:29 2739441 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2248 00:00:00 20:12:29 2739454 /usr/bin/SCREEN -A -m -d -S nxfilterx1106 ./startup.sh 0::/system.slice/cron.service root 2480 488 00:00:00 20:12:29 2739471 /bin/sh ./startup.sh 0::/system.slice/cron.service root 2480 540 00:00:00 20:12:29 2739481 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5051380 188460 00:06:54 20:12:29 2739528 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1106/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1106//lib/*: nxd.Main 0::/system.slice/cron.service root 5054464 173980 00:06:49 20:12:29 2739539 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1104/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1104//lib/*: nxd.Main 0::/system.slice/cron.service root 5054684 192776 00:07:20 20:12:29 2739555 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1105/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1105//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2452 00:00:00 20:12:28 2739633 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874684 40984 00:00:04 20:12:28 2739686 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2324 00:00:00 20:12:28 2740047 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 5012 00:00:00 20:12:28 2740075 sudo ./webhookstart 0::/system.slice/cron.service root 2480 548 00:00:00 20:12:28 2740187 sh ./webhookstart 0::/system.slice/cron.service root 40104 35128 00:00:10 20:12:28 2740197 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2356 00:00:03 20:12:27 2740914 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13324 00:00:00 20:12:27 2740920 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55180 00:01:09 20:12:26 2741261 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2316 00:00:03 20:12:25 2742479 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13292 00:00:00 20:12:25 2742490 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383216 55068 00:01:09 20:12:25 2742858 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2380 00:00:00 20:12:24 2743101 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 9088 00:00:06 20:12:24 2743104 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2368 00:00:00 20:12:24 2743149 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 8972 00:00:59 20:12:24 2743156 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2324 00:00:00 20:12:24 2743174 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 504576 62476 00:01:06 20:12:24 2743184 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2364 00:00:00 20:12:24 2743213 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 11756 00:01:05 20:12:24 2743219 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2384 00:00:00 20:12:24 2743265 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11744 00:01:03 20:12:24 2743283 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2360 00:00:00 20:12:24 2743315 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 10312 00:01:03 20:12:24 2743319 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2336 00:00:00 20:12:23 2743370 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 9340 00:01:00 20:12:23 2743374 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/apache2.service www-data 262020 46216 00:00:02 16-15:50:50 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 46356 00:00:02 16-15:50:49 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262020 46288 00:00:02 16-15:50:49 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:19:29 3028181 [kworker/6:2-events] 0::/system.slice/packagekit.service root 288308 6312 00:00:29 54-19:18:10 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4312 00:00:05 54-19:18:10 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:03 03:42:29 3508087 [kworker/3:1-events] - root 0 0 00:00:03 03:38:29 3613955 [kworker/2:2-events] 0::/system.slice/rsyslog.service root 442724 4072 00:12:50 15-07:17:28 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 73984 43776 00:56:01 15-07:17:12 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 3336 00:00:03 15-07:17:09 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 2080 00:00:00 15-07:16:03 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10632 00:43:12 15-07:16:03 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10468 00:00:35 15-07:16:03 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8916 00:00:00 15-07:16:03 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 6748 00:00:00 15-07:16:03 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5852 00:00:00 15-07:16:03 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5536 00:00:00 15-07:16:03 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2340 00:00:00 15-07:16:02 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2340 00:00:00 15-07:16:02 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3920 00:05:39 15-07:16:02 3789195 /usr/bin/monit -c /etc/monit/monitrc - root 0 0 00:00:00 44:29 3932356 [kworker/4:1-events] - root 0 0 00:00:01 44:24 3934493 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 42:29 3980107 [kworker/7:2-events] - root 0 0 00:00:05 06:04:29 4015557 [kworker/5:1-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 57407sec preferred_lft 57407sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-17 22:12 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f27936813Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.23 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11288 12:18:40 52-22:09:18 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 52-22:09:18 2 [kthreadd] - root 0 0 00:00:00 52-22:09:18 3 [rcu_gp] - root 0 0 00:00:00 52-22:09:18 4 [rcu_par_gp] - root 0 0 00:00:00 52-22:09:18 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 52-22:09:18 8 [mm_percpu_wq] - root 0 0 00:00:00 52-22:09:18 9 [rcu_tasks_rude_] - root 0 0 00:00:00 52-22:09:18 10 [rcu_tasks_trace] - root 0 0 00:26:33 52-22:09:18 11 [ksoftirqd/0] - root 0 0 01:23:52 52-22:09:18 12 [rcu_sched] - root 0 0 00:00:56 52-22:09:18 13 [migration/0] - root 0 0 00:00:00 52-22:09:18 15 [cpuhp/0] - root 0 0 00:00:00 52-22:09:18 16 [cpuhp/1] - root 0 0 00:00:57 52-22:09:18 17 [migration/1] - root 0 0 00:26:31 52-22:09:18 18 [ksoftirqd/1] - root 0 0 00:00:00 52-22:09:18 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 52-22:09:18 21 [cpuhp/2] - root 0 0 00:00:57 52-22:09:18 22 [migration/2] - root 0 0 00:26:28 52-22:09:18 23 [ksoftirqd/2] - root 0 0 00:00:00 52-22:09:18 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 52-22:09:18 26 [cpuhp/3] - root 0 0 00:00:57 52-22:09:18 27 [migration/3] - root 0 0 00:26:28 52-22:09:18 28 [ksoftirqd/3] - root 0 0 00:00:00 52-22:09:18 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 52-22:09:18 31 [cpuhp/4] - root 0 0 00:00:57 52-22:09:18 32 [migration/4] - root 0 0 00:26:27 52-22:09:18 33 [ksoftirqd/4] - root 0 0 00:00:00 52-22:09:18 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 52-22:09:18 36 [cpuhp/5] - root 0 0 00:00:57 52-22:09:18 37 [migration/5] - root 0 0 00:26:28 52-22:09:18 38 [ksoftirqd/5] - root 0 0 00:00:00 52-22:09:18 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 52-22:09:18 41 [cpuhp/6] - root 0 0 00:00:57 52-22:09:18 42 [migration/6] - root 0 0 00:26:27 52-22:09:18 43 [ksoftirqd/6] - root 0 0 00:00:00 52-22:09:18 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 52-22:09:18 46 [cpuhp/7] - root 0 0 00:00:57 52-22:09:18 47 [migration/7] - root 0 0 00:26:49 52-22:09:18 48 [ksoftirqd/7] - root 0 0 00:00:00 52-22:09:18 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 52-22:09:18 56 [kdevtmpfs] - root 0 0 00:00:00 52-22:09:18 57 [netns] - root 0 0 00:15:07 52-22:09:18 58 [kauditd] - root 0 0 00:00:05 52-22:09:18 59 [khungtaskd] - root 0 0 00:00:00 52-22:09:18 60 [oom_reaper] - root 0 0 00:00:00 52-22:09:18 61 [writeback] - root 0 0 00:01:43 52-22:09:18 62 [kcompactd0] - root 0 0 00:00:00 52-22:09:18 63 [ksmd] - root 0 0 00:04:43 52-22:09:18 64 [khugepaged] - root 0 0 00:00:00 52-22:09:18 84 [kintegrityd] - root 0 0 00:00:00 52-22:09:18 85 [kblockd] - root 0 0 00:00:00 52-22:09:18 86 [blkcg_punt_bio] - root 0 0 00:00:54 52-22:09:17 88 [kworker/0:1H-kblockd] - root 0 0 00:04:11 52-22:09:17 94 [kswapd0] - root 0 0 00:00:00 52-22:09:17 95 [kthrotld] - root 0 0 00:00:00 52-22:09:17 96 [acpi_thermal_pm] - root 0 0 00:00:00 52-22:09:17 97 [nvme-wq] - root 0 0 00:00:00 52-22:09:17 98 [nvme-reset-wq] - root 0 0 00:00:00 52-22:09:17 99 [nvme-delete-wq] - root 0 0 00:00:54 52-22:09:17 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 52-22:09:17 101 [ipv6_addrconf] - root 0 0 00:00:00 52-22:09:17 110 [kstrp] - root 0 0 00:00:00 52-22:09:17 115 [kworker/u17:0] - root 0 0 00:00:53 52-22:09:17 137 [kworker/5:1H-kblockd] - root 0 0 00:00:54 52-22:09:17 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 52-22:09:17 168 [ata_sff] - root 0 0 00:00:00 52-22:09:17 169 [scsi_eh_0] - root 0 0 00:00:00 52-22:09:17 170 [scsi_tmf_0] - root 0 0 00:00:00 52-22:09:17 171 [scsi_eh_1] - root 0 0 00:00:00 52-22:09:17 172 [scsi_tmf_1] - root 0 0 00:00:00 52-22:09:16 174 [scsi_eh_2] - root 0 0 00:00:00 52-22:09:16 175 [scsi_tmf_2] - root 0 0 00:00:54 52-22:09:16 178 [kworker/6:1H-kblockd] - root 0 0 00:00:53 52-22:09:16 203 [kworker/3:1H-kblockd] - root 0 0 00:12:54 52-22:09:16 205 [jbd2/sda1-8] - root 0 0 00:00:00 52-22:09:16 206 [ext4-rsv-conver] - root 0 0 00:00:54 52-22:09:16 223 [kworker/1:1H-kblockd] - root 0 0 00:00:54 52-22:09:16 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 52-22:09:15 356 [cryptd] 0::/system.slice/auditd.service root 13328 2196 00:53:33 52-22:09:15 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2768 00:00:00 52-22:09:14 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3644 00:05:29 52-22:09:13 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2940 00:02:11 52-22:09:13 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1029924 59544 03:56:26 52-22:09:13 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2296 00:00:00 52-22:09:13 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3992 00:02:24 52-22:09:13 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2092 09:01:21 52-22:09:13 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19172 05:49:03 52-22:09:13 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5464 00:00:59 52-22:09:13 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 524 00:00:00 52-22:09:12 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 416 00:00:00 52-22:09:12 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3600 00:00:00 52-22:09:12 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8164 5808 00:00:06 52-22:09:12 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 52-22:09:12 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2056 00:00:25 52-22:09:12 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2144 00:01:56 52-22:09:11 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2616 00:37:58 52-22:08:43 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2652 03:04:07 52-22:08:43 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2548 04:15:10 52-22:08:43 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2468 00:03:05 52-22:08:43 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2664 04:39:41 52-22:08:43 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2504 00:06:49 52-22:08:43 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2596 03:33:43 52-22:08:43 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2612 04:16:30 52-22:08:43 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5964 2676 04:41:20 52-22:08:43 2739 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5836 2420 13:33:54 52-22:08:43 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2576 13:26:29 52-22:08:43 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2544 13:27:38 52-22:08:43 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2524 03:47:49 52-22:08:43 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2728 04:33:09 52-22:08:43 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2524 01:10:09 52-22:08:43 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2692 04:42:30 52-22:08:43 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2528 02:31:28 52-22:08:43 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 46808 00:00:49 14-18:30:02 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 45872 00:00:01 14-18:30:02 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262016 45896 00:00:01 14-18:30:02 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261900 46184 00:00:02 14-18:30:02 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 45732 00:00:01 14-18:30:02 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262032 45932 00:00:02 14-18:30:02 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261892 45624 00:00:01 14-18:27:00 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:30:44 177295 [kworker/0:2-events] 0::/system.slice/php7.4-fpm.service root 232272 27896 00:05:02 40-12:59:10 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) 0::/system.slice/ntp.service ntp 74496 3348 00:00:04 20:08:44 621680 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 2471400 198604 03:51:49 20:08:42 622637 /usr/sbin/mariadbd - root 0 0 00:00:01 01:11:44 667581 [kworker/2:0-events] - root 0 0 00:00:01 01:09:43 715511 [kworker/7:0-events] 0::/system.slice/apache2.service www-data 261884 45428 00:00:00 1-14:47:51 972577 /usr/sbin/apache2 -k start - root 0 0 00:00:01 54:44 1096762 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 39:44 1493763 [kworker/1:0-events] 0::/system.slice/cron.service root 5556 2540 00:01:18 3-08:59:30 1982116 /usr/sbin/cron -f - root 0 0 00:00:00 20:58 1988436 [kworker/u16:2-flush-8:0] 0::/system.slice/cron.service root 5708 3000 00:00:05 3-08:58:44 2007824 /bin/bash /opt/imtlazarus/system/controlcron.scr - root 0 0 00:00:05 05:39:44 2135340 [kworker/5:1-events] - root 0 0 00:00:00 13:44 2163193 [kworker/0:0-events] - root 0 0 00:00:02 02:55:43 2171567 [kworker/6:1-cgroup_destroy] - root 0 0 00:00:00 12:44 2197486 [kworker/4:1-events] - root 0 0 00:00:00 11:04 2242506 [kworker/1:1] - root 0 0 00:00:00 11:04 2242520 [kworker/3:2-events] - root 0 0 00:00:00 10:38 2253203 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 09:43 2275472 [kworker/5:0-events] - root 0 0 00:00:00 09:22 2289628 [kworker/6:2-events] - root 0 0 00:00:04 05:33:44 2290083 [kworker/4:2-events] - root 0 0 00:00:00 08:43 2313418 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 06:44 2359271 [kworker/2:1-events] - root 0 0 00:00:00 05:43 2379759 [kworker/3:0-events] 0::/system.slice/cron.service root 6128 3436 00:00:04 04:44 2399411 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 03:44 2423847 [kworker/4:0-cgroup_destroy] - root 0 0 00:00:00 02:45 2453901 [kworker/7:2-events] - root 0 0 00:00:00 02:29 2463225 [kworker/u16:0-flush-8:0] 0::/system.slice/cron.service root 5908 2396 00:00:00 01:40 2489220 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8860 00:00:00 01:40 2489227 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:40 2489240 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8780 00:00:00 01:40 2489244 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:40 2489266 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8920 00:00:00 01:40 2489275 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2404 00:00:00 01:40 2489306 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8884 00:00:00 01:40 2489309 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2572 00:00:00 01:40 2489334 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6872 00:00:00 01:40 2489338 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2380 00:00:00 01:39 2489357 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8808 00:00:00 01:39 2489361 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2368 00:00:00 01:39 2489414 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6784 00:00:00 01:39 2489416 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 500 00:00:00 00:59 2504823 /bin/sleep 60 - root 0 0 00:00:00 00:46 2509710 [kworker/6:0-cgroup_destroy] 0::/system.slice/cron.service root 2392 504 00:00:00 00:31 2516450 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:31 2516486 sleep 60 0::/system.slice/cron.service root 2392 564 00:00:00 00:29 2517226 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:17 2521841 sleep 60 0::/system.slice/php7.4-fpm.service www-data 232572 14644 00:00:00 00:06 2525791 php-fpm: pool www 0::/system.slice/cron.service root 2392 560 00:00:00 00:04 2526730 /bin/sleep 5 0::/system.slice/cron.service root 4284 564 00:00:00 00:03 2527025 sleep 8 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 2527346 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:02 2527460 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11256 00:00:00 00:02 2527461 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8227 --header Origin: https://127.0.0.1:8227 --header Sec-WebSocket-Key: MTc2OTc6MTE2ODI= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8227/ -k 0::/system.slice/cron.service root 4288 500 00:00:00 00:02 2527462 wc -l 0::/system.slice/cron.service root 4072 3216 00:00:00 00:02 2527475 /bin/bash ./statusmdm 0::/system.slice/xinetd.service root 6180 3672 00:00:00 00:02 2527503 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 2392 500 00:00:00 00:02 2527529 /bin/sleep 60 0::/system.slice/cron.service root 4284 564 00:00:00 00:02 2527620 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:02 2527654 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2527736 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2527771 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2527867 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2527875 sleep 1 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 2527889 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2527962 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2528007 sleep 2 0::/system.slice/cron.service root 4284 496 00:00:00 00:01 2528023 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2528033 sleep 0.1 0::/system.slice/cron.service root 6128 1812 00:00:00 00:00 2528037 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2920 00:00:00 00:00 2528039 jq -c . 0::/system.slice/xinetd.service root 6676 1200 00:00:00 00:00 2528054 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/apache2.service www-data 262020 46288 00:00:01 14-16:48:05 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 46372 00:00:02 14-16:48:04 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262020 46328 00:00:02 14-16:48:04 2762588 /usr/sbin/apache2 -k start 0::/system.slice/packagekit.service root 288308 6432 00:00:28 52-20:15:25 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4340 00:00:05 52-20:15:25 3036680 /usr/libexec/polkitd --no-debug 0::/system.slice/cron.service root 5908 2356 00:00:00 21:09:44 3224424 /usr/bin/SCREEN -A -m -d -S nxfilter10001 ./startup.sh 0::/system.slice/cron.service root 2480 576 00:00:00 21:09:44 3224474 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2292 00:00:00 21:09:44 3224482 /usr/bin/SCREEN -A -m -d -S nxfilterx1101 ./startup.sh 0::/system.slice/cron.service root 5908 2232 00:00:00 21:09:44 3224522 /usr/bin/SCREEN -A -m -d -S nxfilterx1102 ./startup.sh 0::/system.slice/cron.service root 5062688 275968 00:06:05 21:09:44 3224529 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilter10001/nxd.jar:/opt/imtlazarus/nxfilters/nxfilter10001//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 572 00:00:00 21:09:44 3224535 /bin/sh ./startup.sh 0::/system.slice/cron.service root 2480 580 00:00:00 21:09:44 3224579 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2336 00:00:00 21:09:44 3224598 /usr/bin/SCREEN -A -m -d -S nxfilterx1103 ./startup.sh 0::/system.slice/cron.service root 5059604 290196 00:05:47 21:09:44 3224631 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1101/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1101//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 580 00:00:00 21:09:44 3224642 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2320 00:00:00 21:09:44 3224651 /usr/bin/SCREEN -A -m -d -S nxfilterx1104 ./startup.sh 0::/system.slice/cron.service root 5060632 284448 00:05:44 21:09:44 3224665 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1102/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1102//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2292 00:00:00 21:09:44 3224670 /usr/bin/SCREEN -A -m -d -S nxfilterx1105 ./startup.sh 0::/system.slice/cron.service root 5062688 292976 00:06:09 21:09:44 3224675 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1103/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1103//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 576 00:00:00 21:09:44 3224687 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2336 00:00:00 21:09:44 3224689 /usr/bin/SCREEN -A -m -d -S nxfilterx1106 ./startup.sh 0::/system.slice/cron.service root 2480 576 00:00:00 21:09:44 3224713 /bin/sh ./startup.sh 0::/system.slice/cron.service root 2480 576 00:00:00 21:09:44 3224715 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5064744 184924 00:07:46 21:09:44 3224740 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1104/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1104//lib/*: nxd.Main 0::/system.slice/cron.service root 5052628 178532 00:07:36 21:09:44 3224765 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1106/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1106//lib/*: nxd.Main 0::/system.slice/cron.service root 5051380 197548 00:07:34 21:09:44 3224766 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1105/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1105//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2348 00:00:00 21:09:43 3224804 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11988 4928 00:00:00 21:09:43 3224829 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 21:09:43 3224894 sh ./webhookstart 0::/system.slice/cron.service root 40104 35152 00:00:11 21:09:43 3224917 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2388 00:00:03 21:09:40 3227983 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13232 00:00:00 21:09:40 3227989 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2392 00:00:03 21:09:40 3228002 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13276 00:00:00 21:09:40 3228006 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 55372 00:01:16 21:09:39 3228298 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383216 57388 00:01:16 21:09:39 3228367 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2328 00:00:00 21:09:38 3228518 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 10840 00:00:07 21:09:38 3228520 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2392 00:00:00 21:09:38 3228574 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 11624 00:01:04 21:09:38 3228576 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2416 00:00:00 21:09:38 3228639 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 512200 70664 00:01:13 21:09:38 3228645 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2344 00:00:00 21:09:38 3228694 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 13048 00:01:10 21:09:38 3228698 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2360 00:00:00 21:09:38 3228734 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 12548 00:01:09 21:09:38 3228746 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2332 00:00:00 21:09:38 3228794 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12556 00:01:09 21:09:38 3228812 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2380 00:00:00 21:09:38 3228827 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 453972 11252 00:01:06 21:09:38 3228833 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2564 00:00:00 21:08:45 3257220 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 874548 41448 00:00:05 21:08:45 3257237 /usr/sbin/node server.js 0::/system.slice/rsyslog.service root 442724 4364 00:11:10 13-08:14:43 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 303716 229720 00:48:51 13-08:14:27 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 3392 00:00:02 13-08:14:24 3745512 /lib/systemd/systemd-udevd 0::/system.slice/nginx.service root 67644 2096 00:00:00 13-08:13:18 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10696 00:26:31 13-08:13:18 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10528 00:00:21 13-08:13:18 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8976 00:00:00 13-08:13:18 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 6808 00:00:00 13-08:13:18 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5884 00:00:00 13-08:13:18 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5568 00:00:00 13-08:13:18 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2364 00:00:00 13-08:13:17 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2364 00:00:00 13-08:13:17 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 4024 00:04:55 13-08:13:17 3789195 /usr/bin/monit -c /etc/monit/monitrc Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 82365sec preferred_lft 82365sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-15 23:09 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f7185930eFound public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.23 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11240 11:49:53 50-20:35:20 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:03 50-20:35:20 2 [kthreadd] - root 0 0 00:00:00 50-20:35:20 3 [rcu_gp] - root 0 0 00:00:00 50-20:35:20 4 [rcu_par_gp] - root 0 0 00:00:00 50-20:35:20 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 50-20:35:20 8 [mm_percpu_wq] - root 0 0 00:00:00 50-20:35:20 9 [rcu_tasks_rude_] - root 0 0 00:00:00 50-20:35:20 10 [rcu_tasks_trace] - root 0 0 00:25:48 50-20:35:20 11 [ksoftirqd/0] - root 0 0 01:20:42 50-20:35:20 12 [rcu_sched] - root 0 0 00:00:55 50-20:35:20 13 [migration/0] - root 0 0 00:00:00 50-20:35:20 15 [cpuhp/0] - root 0 0 00:00:00 50-20:35:20 16 [cpuhp/1] - root 0 0 00:00:55 50-20:35:20 17 [migration/1] - root 0 0 00:25:46 50-20:35:20 18 [ksoftirqd/1] - root 0 0 00:00:00 50-20:35:20 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 50-20:35:20 21 [cpuhp/2] - root 0 0 00:00:55 50-20:35:20 22 [migration/2] - root 0 0 00:25:44 50-20:35:20 23 [ksoftirqd/2] - root 0 0 00:00:00 50-20:35:20 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 50-20:35:20 26 [cpuhp/3] - root 0 0 00:00:56 50-20:35:20 27 [migration/3] - root 0 0 00:25:43 50-20:35:20 28 [ksoftirqd/3] - root 0 0 00:00:00 50-20:35:20 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 50-20:35:20 31 [cpuhp/4] - root 0 0 00:00:56 50-20:35:20 32 [migration/4] - root 0 0 00:25:43 50-20:35:20 33 [ksoftirqd/4] - root 0 0 00:00:00 50-20:35:20 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 50-20:35:20 36 [cpuhp/5] - root 0 0 00:00:56 50-20:35:20 37 [migration/5] - root 0 0 00:25:43 50-20:35:20 38 [ksoftirqd/5] - root 0 0 00:00:00 50-20:35:20 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 50-20:35:20 41 [cpuhp/6] - root 0 0 00:00:56 50-20:35:20 42 [migration/6] - root 0 0 00:25:43 50-20:35:20 43 [ksoftirqd/6] - root 0 0 00:00:00 50-20:35:20 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 50-20:35:20 46 [cpuhp/7] - root 0 0 00:00:56 50-20:35:20 47 [migration/7] - root 0 0 00:26:04 50-20:35:20 48 [ksoftirqd/7] - root 0 0 00:00:00 50-20:35:20 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 50-20:35:20 56 [kdevtmpfs] - root 0 0 00:00:00 50-20:35:20 57 [netns] - root 0 0 00:15:07 50-20:35:20 58 [kauditd] - root 0 0 00:00:05 50-20:35:20 59 [khungtaskd] - root 0 0 00:00:00 50-20:35:20 60 [oom_reaper] - root 0 0 00:00:00 50-20:35:20 61 [writeback] - root 0 0 00:01:39 50-20:35:20 62 [kcompactd0] - root 0 0 00:00:00 50-20:35:20 63 [ksmd] - root 0 0 00:04:31 50-20:35:20 64 [khugepaged] - root 0 0 00:00:00 50-20:35:20 84 [kintegrityd] - root 0 0 00:00:00 50-20:35:20 85 [kblockd] - root 0 0 00:00:00 50-20:35:20 86 [blkcg_punt_bio] - root 0 0 00:00:53 50-20:35:19 88 [kworker/0:1H-kblockd] - root 0 0 00:04:10 50-20:35:19 94 [kswapd0] - root 0 0 00:00:00 50-20:35:19 95 [kthrotld] - root 0 0 00:00:00 50-20:35:19 96 [acpi_thermal_pm] - root 0 0 00:00:00 50-20:35:19 97 [nvme-wq] - root 0 0 00:00:00 50-20:35:19 98 [nvme-reset-wq] - root 0 0 00:00:00 50-20:35:19 99 [nvme-delete-wq] - root 0 0 00:00:52 50-20:35:19 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 50-20:35:19 101 [ipv6_addrconf] - root 0 0 00:00:00 50-20:35:19 110 [kstrp] - root 0 0 00:00:00 50-20:35:19 115 [kworker/u17:0] - root 0 0 00:00:52 50-20:35:19 137 [kworker/5:1H-kblockd] - root 0 0 00:00:53 50-20:35:19 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 50-20:35:19 168 [ata_sff] - root 0 0 00:00:00 50-20:35:19 169 [scsi_eh_0] - root 0 0 00:00:00 50-20:35:19 170 [scsi_tmf_0] - root 0 0 00:00:00 50-20:35:19 171 [scsi_eh_1] - root 0 0 00:00:00 50-20:35:19 172 [scsi_tmf_1] - root 0 0 00:00:00 50-20:35:18 174 [scsi_eh_2] - root 0 0 00:00:00 50-20:35:18 175 [scsi_tmf_2] - root 0 0 00:00:53 50-20:35:18 178 [kworker/6:1H-kblockd] - root 0 0 00:00:52 50-20:35:18 203 [kworker/3:1H-kblockd] - root 0 0 00:12:32 50-20:35:18 205 [jbd2/sda1-8] - root 0 0 00:00:00 50-20:35:18 206 [ext4-rsv-conver] - root 0 0 00:00:53 50-20:35:18 223 [kworker/1:1H-kblockd] - root 0 0 00:00:52 50-20:35:18 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 50-20:35:17 356 [cryptd] 0::/system.slice/auditd.service root 13328 2196 00:53:32 50-20:35:17 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2768 00:00:00 50-20:35:16 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3644 00:05:20 50-20:35:15 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2940 00:02:05 50-20:35:15 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1027036 56860 03:46:58 50-20:35:15 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2296 00:00:00 50-20:35:15 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 3992 00:02:18 50-20:35:15 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2092 08:42:12 50-20:35:15 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19172 05:36:24 50-20:35:15 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5464 00:00:56 50-20:35:15 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 524 00:00:00 50-20:35:14 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 416 00:00:00 50-20:35:14 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3600 00:00:00 50-20:35:14 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8164 5808 00:00:06 50-20:35:14 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2068 00:00:00 50-20:35:14 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2056 00:00:24 50-20:35:14 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2144 00:01:51 50-20:35:13 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2616 00:36:32 50-20:34:45 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2652 02:57:01 50-20:34:45 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2544 04:05:18 50-20:34:45 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2468 00:02:58 50-20:34:45 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2664 04:28:59 50-20:34:45 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2504 00:06:33 50-20:34:45 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2596 03:25:34 50-20:34:45 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2612 04:06:37 50-20:34:45 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5964 2676 04:30:33 50-20:34:45 2739 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5836 2420 13:01:05 50-20:34:45 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2576 12:53:47 50-20:34:45 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2544 12:54:47 50-20:34:45 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2524 03:39:00 50-20:34:45 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2728 04:22:55 50-20:34:45 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2524 01:07:26 50-20:34:45 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2692 04:31:45 50-20:34:45 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2528 02:25:34 50-20:34:45 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs - root 0 0 00:00:00 35:45 29847 [kworker/5:2-events] 0::/system.slice/apache2.service root 260924 46812 00:00:41 12-16:56:04 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 45864 00:00:01 12-16:56:04 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262008 45736 00:00:01 12-16:56:04 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261900 46164 00:00:01 12-16:56:04 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 45724 00:00:01 12-16:56:04 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 45752 00:00:01 12-16:56:04 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261892 45544 00:00:01 12-16:53:02 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:01 29:41 184042 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 26:46 265634 [kworker/3:0-events] - root 0 0 00:00:00 18:46 478235 [kworker/3:2-events] - root 0 0 00:00:00 15:46 549663 [kworker/7:1-cgroup_destroy] 0::/system.slice/php7.4-fpm.service root 232272 27788 00:04:45 38-11:25:12 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:00 13:42 600670 [kworker/u16:1-ext4-rsv-conversion] - root 0 0 00:00:00 12:46 629324 [kworker/0:0-events] - root 0 0 00:00:00 11:46 649518 [kworker/2:1-events] - root 0 0 00:00:00 09:46 704022 [kworker/5:1-cgroup_destroy] - root 0 0 00:00:00 07:46 757507 [kworker/4:0-events] - root 0 0 00:00:00 06:46 781151 [kworker/6:0-events] - root 0 0 00:00:00 05:46 805262 [kworker/1:0-events] - root 0 0 00:00:00 04:41 843280 [kworker/u16:2-flush-8:0] - root 0 0 00:00:00 04:19 857852 [kworker/5:0-events] - root 0 0 00:00:00 01:46 909824 [kworker/3:1-events] 0::/system.slice/cron.service root 5908 2344 00:00:00 01:31 914888 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8868 00:00:00 01:31 914898 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2384 00:00:00 01:31 914936 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8972 00:00:00 01:31 914938 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:31 914961 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8924 00:00:00 01:31 914963 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2388 00:00:00 01:31 914983 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6880 00:00:00 01:31 914987 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2316 00:00:00 01:31 915004 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6828 00:00:00 01:31 915006 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2376 00:00:00 01:31 915025 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6928 00:00:00 01:31 915031 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:31 915056 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6892 00:00:00 01:31 915058 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 560 00:00:00 00:53 927435 /bin/sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:51 928069 /bin/sleep 60 0::/system.slice/cron.service root 10880 3664 00:00:00 00:48 929004 /usr/sbin/CRON -f 0::/system.slice/cron.service root 2480 512 00:00:00 00:47 929190 /bin/sh -c /opt/imtlazarus/system/webtest > /dev/null 2>&1 0::/system.slice/cron.service root 5708 2872 00:00:00 00:47 929279 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 5708 2012 00:00:00 00:47 929559 /bin/bash /opt/imtlazarus/system/webtest 0::/system.slice/cron.service root 93704 10000 00:00:00 00:47 929562 curl -k -i -s https://internal.imtlazarus.com/lazarus/access.php 0::/system.slice/cron.service root 5268 708 00:00:00 00:47 929563 grep 502 Bad Gateway 0::/system.slice/cron.service root 5708 3188 00:00:00 00:47 929636 /bin/bash /opt/imtlazarus/manager/manager-accounts-updater 0::/system.slice/cron.service root 5708 3128 00:00:00 00:47 929662 /bin/bash /opt/imtlazarus/manager/manager-disposerv-updater 0::/system.slice/cron.service root 6128 3596 00:00:00 00:47 929702 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 4284 500 00:00:00 00:46 930391 sleep 85 0::/system.slice/cron.service root 4284 560 00:00:00 00:46 930421 sleep 72 - root 0 0 00:00:00 00:46 930522 [kworker/7:0-events] 0::/system.slice/cron.service root 4284 496 00:00:00 00:35 934881 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:26 938277 sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:23 939468 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:21 940206 /bin/sleep 60 0::/system.slice/cron.service root 4284 500 00:00:00 00:03 947273 /bin/sleep 5 0::/system.slice/cron.service root 4284 496 00:00:00 00:03 947469 sleep 8 0::/system.slice/cron.service root 4284 560 00:00:00 00:01 947990 sleep 2 0::/system.slice/xinetd.service root 6172 3548 00:00:00 00:01 948131 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 948179 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 948318 sleep 2 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 948376 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 948403 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 948496 sleep 1 0::/system.slice/cron.service root 4284 496 00:00:00 00:00 948548 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 948567 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 948568 sleep 0.1 0::/system.slice/cron.service root 5968 1580 00:00:00 00:00 948580 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 6128 1836 00:00:00 00:00 948581 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr 0::/system.slice/cron.service root 5244 2920 00:00:00 00:00 948585 jq .dispositivos.ios 0::/system.slice/cron.service root 5244 3040 00:00:00 00:00 948586 jq -c . 0::/system.slice/cron.service root 5836 1332 00:00:00 00:00 948610 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5244 2940 00:00:00 00:00 948612 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1204 00:00:00 00:00 948615 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 - root 0 0 00:00:02 02:35:46 1112788 [kworker/7:2-events] 0::/system.slice/ntp.service ntp 74496 3168 00:00:04 18:34:46 1124178 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 4593580 321332 04:16:26 18:34:44 1125593 /usr/sbin/mariadbd 0::/system.slice/cron.service root 5556 2640 00:00:29 1-07:25:32 1982116 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 3104 00:00:02 1-07:24:46 2007824 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/apache2.service www-data 261888 46072 00:00:01 12-15:14:07 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 46348 00:00:01 12-15:14:06 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262016 46276 00:00:01 12-15:14:06 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:25:45 2929580 [kworker/2:2-events] 0::/system.slice/packagekit.service root 288308 6448 00:00:26 50-18:41:27 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4340 00:00:05 50-18:41:27 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:02 01:12:56 3265644 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:03 03:38:46 3665592 [kworker/0:2-events] 0::/system.slice/cron.service root 5908 2428 00:00:00 19:35:46 3717367 /usr/bin/SCREEN -A -m -d -S nxfilter10001 ./startup.sh 0::/system.slice/cron.service root 2480 424 00:00:00 19:35:46 3717408 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2296 00:00:00 19:35:46 3717418 /usr/bin/SCREEN -A -m -d -S nxfilterx1101 ./startup.sh 0::/system.slice/cron.service root 2480 488 00:00:00 19:35:46 3717453 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5062840 302688 00:05:42 19:35:46 3717467 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilter10001/nxd.jar:/opt/imtlazarus/nxfilters/nxfilter10001//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2256 00:00:00 19:35:46 3717468 /usr/bin/SCREEN -A -m -d -S nxfilterx1102 ./startup.sh 0::/system.slice/cron.service root 2480 492 00:00:00 19:35:46 3717511 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5050352 295820 00:05:19 19:35:46 3717516 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1101/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1101//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2260 00:00:00 19:35:46 3717521 /usr/bin/SCREEN -A -m -d -S nxfilterx1103 ./startup.sh 0::/system.slice/cron.service root 2480 492 00:00:00 19:35:46 3717560 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2272 00:00:00 19:35:46 3717564 /usr/bin/SCREEN -A -m -d -S nxfilterx1104 ./startup.sh 0::/system.slice/cron.service root 5050352 293604 00:05:10 19:35:46 3717570 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1102/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1102//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2456 00:00:00 19:35:46 3717595 /usr/bin/SCREEN -A -m -d -S nxfilterx1105 ./startup.sh 0::/system.slice/cron.service root 2480 428 00:00:00 19:35:46 3717596 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2248 00:00:00 19:35:46 3717614 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 5062688 281812 00:05:39 19:35:46 3717622 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1103/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1103//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 424 00:00:00 19:35:46 3717638 /bin/sh ./startup.sh 0::/system.slice/cron.service root 874184 40332 00:00:04 19:35:46 3717646 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2228 00:00:00 19:35:46 3717648 /usr/bin/SCREEN -A -m -d -S nxfilterx1106 ./startup.sh 0::/system.slice/cron.service root 5054464 185372 00:07:05 19:35:46 3717657 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1104/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1104//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 492 00:00:00 19:35:46 3717682 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5051380 185480 00:07:05 19:35:46 3717727 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1105/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1105//lib/*: nxd.Main 0::/system.slice/cron.service root 5051380 180868 00:06:58 19:35:46 3717757 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1106/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1106//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2208 00:00:00 19:35:46 3717778 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 11984 4868 00:00:00 19:35:46 3717812 sudo ./webhookstart 0::/system.slice/cron.service root 2480 488 00:00:00 19:35:46 3717947 sh ./webhookstart 0::/system.slice/cron.service root 40104 35040 00:00:10 19:35:46 3717968 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2240 00:00:00 19:35:45 3718696 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 6988 00:00:06 19:35:45 3718714 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2284 00:00:00 19:35:45 3718767 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9820 00:00:57 19:35:45 3718784 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2312 00:00:00 19:35:45 3718844 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 508932 64440 00:01:07 19:35:45 3718856 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2252 00:00:00 19:35:44 3718920 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 12856 00:01:03 19:35:44 3718933 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2252 00:00:00 19:35:44 3719001 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11352 00:01:02 19:35:44 3719014 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2276 00:00:00 19:35:44 3719101 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 10176 00:01:02 19:35:44 3719106 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2288 00:00:00 19:35:44 3719174 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11364 00:00:59 19:35:44 3719185 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 5908 2288 00:00:03 19:35:43 3720603 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13288 00:00:00 19:35:43 3720609 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2352 00:00:03 19:35:43 3720622 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13472 00:00:00 19:35:43 3720627 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383208 54724 00:01:09 19:35:42 3721046 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 54796 00:01:10 19:35:42 3721054 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/rsyslog.service root 442724 4220 00:09:23 11-06:40:45 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 283468 214128 00:41:08 11-06:40:29 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 3404 00:00:02 11-06:40:26 3745512 /lib/systemd/systemd-udevd - root 0 0 00:00:00 52:47 3786725 [kworker/1:2-events] 0::/system.slice/nginx.service root 67644 2096 00:00:00 11-06:39:20 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10696 00:25:13 11-06:39:20 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10528 00:00:21 11-06:39:20 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 8976 00:00:00 11-06:39:20 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 6808 00:00:00 11-06:39:20 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 5884 00:00:00 11-06:39:20 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 5568 00:00:00 11-06:39:20 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2364 00:00:00 11-06:39:19 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2364 00:00:00 11-06:39:19 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 3772 00:04:07 11-06:39:19 3789195 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/apache2.service www-data 261896 46216 00:00:01 12-11:46:05 4082679 /usr/sbin/apache2 -k start - root 0 0 00:00:05 06:04:46 4084435 [kworker/4:2-events] - root 0 0 00:00:03 03:19:46 4161037 [kworker/6:2-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 70197sec preferred_lft 70197sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-13 21:35 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730f3daf3047Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.23 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11820 11:24:18 49-00:08:54 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:02 49-00:08:54 2 [kthreadd] - root 0 0 00:00:00 49-00:08:54 3 [rcu_gp] - root 0 0 00:00:00 49-00:08:54 4 [rcu_par_gp] - root 0 0 00:00:00 49-00:08:54 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 49-00:08:54 8 [mm_percpu_wq] - root 0 0 00:00:00 49-00:08:54 9 [rcu_tasks_rude_] - root 0 0 00:00:00 49-00:08:54 10 [rcu_tasks_trace] - root 0 0 00:25:08 49-00:08:54 11 [ksoftirqd/0] - root 0 0 01:17:59 49-00:08:54 12 [rcu_sched] - root 0 0 00:00:53 49-00:08:54 13 [migration/0] - root 0 0 00:00:00 49-00:08:54 15 [cpuhp/0] - root 0 0 00:00:00 49-00:08:54 16 [cpuhp/1] - root 0 0 00:00:54 49-00:08:54 17 [migration/1] - root 0 0 00:25:07 49-00:08:54 18 [ksoftirqd/1] - root 0 0 00:00:00 49-00:08:54 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 49-00:08:54 21 [cpuhp/2] - root 0 0 00:00:54 49-00:08:54 22 [migration/2] - root 0 0 00:25:05 49-00:08:54 23 [ksoftirqd/2] - root 0 0 00:00:00 49-00:08:54 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 49-00:08:54 26 [cpuhp/3] - root 0 0 00:00:54 49-00:08:54 27 [migration/3] - root 0 0 00:25:04 49-00:08:54 28 [ksoftirqd/3] - root 0 0 00:00:00 49-00:08:54 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 49-00:08:54 31 [cpuhp/4] - root 0 0 00:00:54 49-00:08:54 32 [migration/4] - root 0 0 00:25:04 49-00:08:54 33 [ksoftirqd/4] - root 0 0 00:00:00 49-00:08:54 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 49-00:08:54 36 [cpuhp/5] - root 0 0 00:00:54 49-00:08:54 37 [migration/5] - root 0 0 00:25:03 49-00:08:54 38 [ksoftirqd/5] - root 0 0 00:00:00 49-00:08:54 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 49-00:08:54 41 [cpuhp/6] - root 0 0 00:00:54 49-00:08:54 42 [migration/6] - root 0 0 00:25:04 49-00:08:54 43 [ksoftirqd/6] - root 0 0 00:00:00 49-00:08:54 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 49-00:08:54 46 [cpuhp/7] - root 0 0 00:00:54 49-00:08:54 47 [migration/7] - root 0 0 00:25:21 49-00:08:54 48 [ksoftirqd/7] - root 0 0 00:00:00 49-00:08:54 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 49-00:08:54 56 [kdevtmpfs] - root 0 0 00:00:00 49-00:08:54 57 [netns] - root 0 0 00:15:07 49-00:08:54 58 [kauditd] - root 0 0 00:00:04 49-00:08:54 59 [khungtaskd] - root 0 0 00:00:00 49-00:08:54 60 [oom_reaper] - root 0 0 00:00:00 49-00:08:54 61 [writeback] - root 0 0 00:01:36 49-00:08:54 62 [kcompactd0] - root 0 0 00:00:00 49-00:08:54 63 [ksmd] - root 0 0 00:04:16 49-00:08:54 64 [khugepaged] - root 0 0 00:00:00 49-00:08:54 84 [kintegrityd] - root 0 0 00:00:00 49-00:08:54 85 [kblockd] - root 0 0 00:00:00 49-00:08:54 86 [blkcg_punt_bio] - root 0 0 00:00:50 49-00:08:53 88 [kworker/0:1H-kblockd] - root 0 0 00:04:04 49-00:08:53 94 [kswapd0] - root 0 0 00:00:00 49-00:08:53 95 [kthrotld] - root 0 0 00:00:00 49-00:08:53 96 [acpi_thermal_pm] - root 0 0 00:00:00 49-00:08:53 97 [nvme-wq] - root 0 0 00:00:00 49-00:08:53 98 [nvme-reset-wq] - root 0 0 00:00:00 49-00:08:53 99 [nvme-delete-wq] - root 0 0 00:00:49 49-00:08:53 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 49-00:08:53 101 [ipv6_addrconf] - root 0 0 00:00:00 49-00:08:53 110 [kstrp] - root 0 0 00:00:00 49-00:08:53 115 [kworker/u17:0] - root 0 0 00:00:49 49-00:08:53 137 [kworker/5:1H-kblockd] - root 0 0 00:00:49 49-00:08:53 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 49-00:08:53 168 [ata_sff] - root 0 0 00:00:00 49-00:08:53 169 [scsi_eh_0] - root 0 0 00:00:00 49-00:08:53 170 [scsi_tmf_0] - root 0 0 00:00:00 49-00:08:53 171 [scsi_eh_1] - root 0 0 00:00:00 49-00:08:53 172 [scsi_tmf_1] - root 0 0 00:00:00 49-00:08:52 174 [scsi_eh_2] - root 0 0 00:00:00 49-00:08:52 175 [scsi_tmf_2] - root 0 0 00:00:49 49-00:08:52 178 [kworker/6:1H-kblockd] - root 0 0 00:00:49 49-00:08:52 203 [kworker/3:1H-kblockd] - root 0 0 00:12:08 49-00:08:52 205 [jbd2/sda1-8] - root 0 0 00:00:00 49-00:08:52 206 [ext4-rsv-conver] - root 0 0 00:00:50 49-00:08:52 223 [kworker/1:1H-kblockd] - root 0 0 00:00:49 49-00:08:52 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 49-00:08:51 356 [cryptd] 0::/system.slice/auditd.service root 13328 2196 00:53:32 49-00:08:51 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2776 00:00:00 49-00:08:50 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3708 00:05:12 49-00:08:49 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2956 00:02:01 49-00:08:49 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1009120 44280 03:34:19 49-00:08:49 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2300 00:00:00 49-00:08:49 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 4236 00:02:14 49-00:08:49 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2108 08:25:25 49-00:08:49 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19212 05:25:05 49-00:08:49 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5480 00:00:53 49-00:08:49 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 540 00:00:00 49-00:08:48 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 460 00:00:00 49-00:08:48 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3640 00:00:00 49-00:08:48 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8152 5804 00:00:06 49-00:08:48 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2076 00:00:00 49-00:08:48 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2056 00:00:23 49-00:08:48 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2144 00:01:46 49-00:08:47 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2648 00:35:18 49-00:08:19 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2676 02:50:51 49-00:08:19 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2576 03:56:43 49-00:08:19 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2512 00:02:51 49-00:08:19 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2696 04:19:39 49-00:08:19 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2548 00:06:19 49-00:08:19 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2624 03:18:30 49-00:08:19 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2648 03:58:00 49-00:08:19 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5964 2720 04:21:09 49-00:08:19 2739 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5836 2452 12:32:23 49-00:08:19 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2620 12:25:09 49-00:08:19 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2584 12:26:04 49-00:08:19 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2568 03:31:19 49-00:08:19 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2752 04:14:01 49-00:08:19 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2564 01:05:03 49-00:08:19 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2720 04:22:23 49-00:08:19 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2568 02:20:24 49-00:08:19 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 49320 00:00:35 10-20:29:38 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 46732 00:00:01 10-20:29:38 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262008 46652 00:00:01 10-20:29:38 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 47256 00:00:01 10-20:29:38 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 46652 00:00:01 10-20:29:38 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 46744 00:00:01 10-20:29:38 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261892 46504 00:00:01 10-20:26:36 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:06 06:44:20 165034 [kworker/6:0-events] 0::/system.slice/php7.4-fpm.service root 232272 34060 00:04:21 36-14:58:46 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:01 01:03:22 689318 [kworker/u16:1-ext4-rsv-conversion] 0::/system.slice/ntp.service ntp 74496 3916 00:00:05 22:08:20 1129333 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 4634416 334640 04:22:28 22:08:18 1130664 /usr/sbin/mariadbd - root 0 0 00:00:02 03:13:19 1477047 [kworker/5:2-events] - root 0 0 00:00:07 08:31:20 1574136 [kworker/1:1-events] - root 0 0 00:00:00 22:20 1781320 [kworker/3:1-events] - root 0 0 00:00:00 16:21 1935108 [kworker/u16:3-ext4-rsv-conversion] - root 0 0 00:00:00 15:20 1955863 [kworker/4:0-events] - root 0 0 00:00:00 13:20 2001298 [kworker/5:0-cgroup_destroy] - root 0 0 00:00:00 11:20 2066244 [kworker/1:2-events] - root 0 0 00:00:00 09:19 2116041 [kworker/2:0-cgroup_destroy] - root 0 0 00:00:00 09:19 2116215 [kworker/u16:0-flush-8:0] - root 0 0 00:00:00 09:19 2116244 [kworker/7:2-cgroup_destroy] - root 0 0 00:00:00 08:59 2129514 [kworker/0:1-cgroup_destroy] - root 0 0 00:00:00 06:20 2200188 [kworker/6:2-events] - root 0 0 00:00:00 05:20 2220731 [kworker/4:2-events] 0::/system.slice/cron.service root 6128 3456 00:00:04 04:20 2241074 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 03:20 2267601 [kworker/7:1-cgroup_destroy] - root 0 0 00:00:00 01:55 2316134 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 01:20 2330098 [kworker/5:1-events] 0::/system.slice/cron.service root 5908 2428 00:00:00 01:07 2335612 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6792 00:00:00 01:07 2335615 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2364 00:00:00 01:07 2335637 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6808 00:00:00 01:07 2335640 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2380 00:00:00 01:07 2335672 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8816 00:00:00 01:07 2335680 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2408 00:00:00 01:07 2335744 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6872 00:00:00 01:07 2335748 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2404 00:00:00 01:07 2335770 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6852 00:00:00 01:07 2335774 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2392 00:00:00 01:07 2335800 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6852 00:00:00 01:07 2335806 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2360 00:00:00 01:07 2335821 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 6816 00:00:00 01:07 2335825 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 2392 500 00:00:00 00:57 2339418 /bin/sleep 60 0::/system.slice/cron.service root 2392 508 00:00:00 00:55 2340188 /bin/sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:31 2349647 sleep 60 0::/system.slice/cron.service root 2392 500 00:00:00 00:28 2350750 /bin/sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:26 2351526 /bin/sleep 60 - root 0 0 00:00:00 00:20 2354479 [kworker/2:2-events] 0::/system.slice/cron.service root 4284 568 00:00:00 00:09 2359352 sleep 60 0::/system.slice/cron.service root 4284 504 00:00:00 00:04 2361183 sleep 8 0::/system.slice/php7.4-fpm.service www-data 232572 19156 00:00:00 00:03 2361481 php-fpm: pool www 0::/system.slice/cron.service root 4080 3044 00:00:00 00:03 2361579 /bin/bash ./statusdispolock 0::/system.slice/cron.service root 4284 568 00:00:00 00:02 2361742 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:02 2361918 sleep 2 0::/system.slice/cron.service root 4284 500 00:00:00 00:01 2362101 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2362144 sleep 2 0::/system.slice/xinetd.service root 6172 3508 00:00:00 00:01 2362148 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2362224 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2362239 sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2362301 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2362316 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2362317 sleep 1 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 2362355 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11164 00:00:00 00:01 2362356 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:8226 --header Origin: https://127.0.0.1:8226 --header Sec-WebSocket-Key: MzI2MTg6MTY4NTE= --header Sec-WebSocket-Version: 13 https://127.0.0.1:8226/ -k 0::/system.slice/cron.service root 4288 572 00:00:00 00:01 2362357 wc -l 0::/system.slice/cron.service root 4068 3232 00:00:00 00:01 2362374 /bin/bash ./statustunnel 0::/system.slice/cron.service root 4284 572 00:00:00 00:01 2362387 sleep 2 0::/system.slice/cron.service root 2392 504 00:00:00 00:01 2362412 /bin/sleep 5 0::/system.slice/cron.service root 4284 508 00:00:00 00:01 2362438 sleep 1 0::/system.slice/cron.service root 2392 568 00:00:00 00:01 2362450 /bin/sleep 2 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2362451 sleep 0.1 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 2362481 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 - root 0 0 00:00:02 02:30:20 2614028 [kworker/3:2-events] - root 0 0 00:00:02 02:27:20 2685097 [kworker/7:0-events] 0::/system.slice/apache2.service www-data 261888 46484 00:00:01 10-18:47:41 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 47344 00:00:01 10-18:47:40 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261884 47136 00:00:01 10-18:47:40 2762588 /usr/sbin/apache2 -k start 0::/system.slice/packagekit.service root 288308 6712 00:00:25 48-22:15:01 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4448 00:00:04 48-22:15:01 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:01 02:12:20 3088568 [kworker/0:0-events] 0::/system.slice/cron.service root 5908 2248 00:00:00 23:09:20 3727995 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 875704 43968 00:00:05 23:09:20 3728019 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2268 00:00:00 23:09:20 3728108 /usr/bin/SCREEN -A -m -d -S nxfilter10001 ./startup.sh 0::/system.slice/cron.service root 2480 504 00:00:00 23:09:20 3728131 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2268 00:00:00 23:09:20 3728145 /usr/bin/SCREEN -A -m -d -S nxfilterx1101 ./startup.sh 0::/system.slice/cron.service root 2480 508 00:00:00 23:09:20 3728162 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5062688 270412 00:06:11 23:09:20 3728169 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilter10001/nxd.jar:/opt/imtlazarus/nxfilters/nxfilter10001//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2400 00:00:00 23:09:20 3728177 /usr/bin/SCREEN -A -m -d -S nxfilterx1102 ./startup.sh 0::/system.slice/cron.service root 5052408 291756 00:05:51 23:09:20 3728187 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1101/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1101//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2304 00:00:00 23:09:20 3728199 /usr/bin/SCREEN -A -m -d -S nxfilterx1103 ./startup.sh 0::/system.slice/cron.service root 2480 512 00:00:00 23:09:20 3728208 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2372 00:00:00 23:09:20 3728222 /usr/bin/SCREEN -A -m -d -S nxfilterx1104 ./startup.sh 0::/system.slice/cron.service root 5050352 267828 00:05:49 23:09:20 3728242 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1102/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1102//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 508 00:00:00 23:09:20 3728246 /bin/sh ./startup.sh 0::/system.slice/cron.service root 2480 572 00:00:00 23:09:20 3728247 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2312 00:00:00 23:09:20 3728270 /usr/bin/SCREEN -A -m -d -S nxfilterx1105 ./startup.sh 0::/system.slice/cron.service root 5908 2296 00:00:00 23:09:20 3728308 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 5054464 179788 00:07:40 23:09:20 3728313 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1104/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1104//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2268 00:00:00 23:09:20 3728345 /usr/bin/SCREEN -A -m -d -S nxfilterx1106 ./startup.sh 0::/system.slice/cron.service root 2480 572 00:00:00 23:09:20 3728354 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5063240 266248 00:06:20 23:09:20 3728361 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1103/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1103//lib/*: nxd.Main 0::/system.slice/cron.service root 11984 4780 00:00:00 23:09:20 3728365 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 23:09:20 3728377 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5060632 190716 00:07:45 23:09:20 3728440 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1105/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1105//lib/*: nxd.Main 0::/system.slice/cron.service root 5051600 184836 00:07:43 23:09:20 3728453 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1106/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1106//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 508 00:00:00 23:09:20 3728527 sh ./webhookstart 0::/system.slice/cron.service root 40104 35100 00:00:11 23:09:20 3728546 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2352 00:00:03 23:09:17 3731301 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13352 00:00:00 23:09:17 3731306 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2420 00:00:03 23:09:17 3731314 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13288 00:00:00 23:09:17 3731315 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55084 00:01:18 23:09:16 3731710 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 383212 55356 00:01:18 23:09:16 3731798 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2408 00:00:00 23:09:16 3731870 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8940 00:00:07 23:09:16 3731873 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2368 00:00:00 23:09:16 3731930 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9832 00:01:06 23:09:16 3731932 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2552 00:00:00 23:09:16 3731993 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 510024 68200 00:01:17 23:09:16 3731997 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2356 00:00:00 23:09:15 3732074 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 9828 00:01:14 23:09:15 3732094 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2520 00:00:00 23:09:15 3732128 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11968 00:01:11 23:09:15 3732131 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2372 00:00:00 23:09:15 3732211 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12512 00:01:11 23:09:15 3732218 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2376 00:00:00 23:09:15 3732274 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11972 00:01:08 23:09:15 3732285 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/rsyslog.service root 442724 4976 00:07:48 9-10:14:19 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 319732 230424 00:34:19 9-10:14:03 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 4076 00:00:01 9-10:14:00 3745512 /lib/systemd/systemd-udevd 0::/system.slice/cron.service root 5556 2504 00:00:32 1-09:54:05 3761875 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 2872 00:00:02 1-09:53:21 3785505 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/nginx.service root 67644 2516 00:00:00 9-10:12:54 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10772 00:09:02 9-10:12:54 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10768 00:00:03 9-10:12:54 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 9612 00:00:00 9-10:12:54 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 7444 00:00:00 9-10:12:54 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 6416 00:00:00 9-10:12:54 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 6100 00:00:00 9-10:12:54 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2876 00:00:00 9-10:12:53 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2876 00:00:00 9-10:12:53 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 4284 00:03:25 9-10:12:53 3789195 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/apache2.service www-data 261896 47192 00:00:01 10-15:19:39 4082679 /usr/sbin/apache2 -k start - root 0 0 00:00:03 04:12:20 4137985 [kworker/2:1-events] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 76267sec preferred_lft 76267sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-12 01:09 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb08750b90f550cd2bd86548601372730fc4a8a055Found public CheckMk agent: Version: 1.6.0p15 AgentOS: linux Hostname: vps-42830f3f AgentDirectory: /etc/check_mk DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/lib/check_mk_agent/plugins LocalDirectory: /usr/lib/check_mk_agent/local OnlyFrom: Found Systemd service list through CheckMk: [list-unit-files] UNIT FILE STATE VENDOR PRESET proc-sys-fs-binfmt_misc.automount static - -.mount generated - boot-efi.mount generated - dev-hugepages.mount static - dev-mqueue.mount static - proc-sys-fs-binfmt_misc.mount disabled disabled sys-fs-fuse-connections.mount static - sys-kernel-config.mount static - sys-kernel-debug.mount static - sys-kernel-tracing.mount static - resolvconf-pull-resolved.path enabled enabled systemd-ask-password-console.path static - systemd-ask-password-wall.path static - apache-htcacheclean.service disabled enabled apache-htcacheclean@.service disabled enabled apache2.service enabled enabled apache2@.service disabled enabled apparmor.service enabled enabled apt-daily-upgrade.service static - apt-daily.service static - auditd.service enabled enabled autovt@.service alias - bootlogs.service masked enabled bootmisc.service masked enabled brightness.service masked enabled check_mk@.service static - checkfs.service masked enabled checkroot-bootclean.service masked enabled checkroot.service masked enabled chrony.service masked enabled chronyd.service masked enabled cloud-config.service enabled enabled cloud-final.service enabled enabled cloud-init-local.service enabled enabled cloud-init.service enabled enabled console-getty.service disabled disabled console-setup.service enabled enabled container-getty@.service static - cron.service enabled enabled cryptdisks-early.service masked enabled cryptdisks.service masked enabled dbus-org.freedesktop.hostname1.service alias - dbus-org.freedesktop.locale1.service alias - dbus-org.freedesktop.login1.service alias - dbus-org.freedesktop.timedate1.service alias - dbus.service static - debug-shell.service disabled disabled e2scrub@.service static - e2scrub_all.service static - e2scrub_fail@.service static - e2scrub_reap.service enabled enabled emergency.service static - fail2ban.service enabled enabled fstrim.service static - getty-static.service static - getty@.service enabled enabled halt.service masked enabled hostname.service masked enabled hwclock.service masked enabled ifup@.service static - ifupdown-pre.service static - ifupdown-wait-online.service disabled enabled imtlazarus.service generated - inetd.service alias - initrd-cleanup.service static - initrd-parse-etc.service static - initrd-switch-root.service static - initrd-udevadm-cleanup-db.service static - irqbalance.service enabled enabled keyboard-setup.service enabled enabled killprocs.service masked enabled kmod-static-nodes.service static - kmod.service alias - logrotate.service static - mariadb.service enabled enabled mariadb@.service disabled enabled micromdm.service disabled enabled modprobe@.service static - mongod.service enabled enabled monit.service generated - mount-configfs.service masked enabled mountall-bootclean.service masked enabled mountall.service masked enabled mountdevsubfs.service masked enabled mountkernfs.service masked enabled mountnfs-bootclean.service masked enabled mountnfs.service masked enabled mysql.service alias - mysqld.service alias - networking.service enabled enabled nftables.service disabled enabled nginx.service enabled enabled ntp.service enabled enabled openvpn-client@.service disabled enabled openvpn-server@.service disabled enabled openvpn.service enabled enabled openvpn@.service indirect enabled packagekit-offline-update.service static - packagekit.service static - pcscd.service indirect enabled php7.4-fpm.service enabled enabled phpsessionclean.service static - polkit.service static - procps.service alias - qemu-guest-agent.service static - quotaon.service static - rc-local.service enabled-runtime enabled rc.local.service masked enabled rc.service masked enabled rcS.service masked enabled reboot.service masked enabled rescue.service static - resolvconf-pull-resolved.service enabled enabled resolvconf.service enabled enabled rmnologin.service masked enabled rsync.service enabled enabled rsyslog.service enabled enabled screen-cleanup.service masked enabled sendmail.service generated - sendsigs.service masked enabled serial-getty@.service indirect enabled shellinabox.service generated - single.service masked enabled ssh.service enabled enabled ssh@.service static - sshd.service alias - sudo.service masked enabled syslog.service alias - system-update-cleanup.service static - systemd-ask-password-console.service static - systemd-ask-password-wall.service static - systemd-backlight@.service static - systemd-binfmt.service static - systemd-bless-boot.service static - systemd-boot-check-no-failures.service disabled disabled systemd-boot-system-token.service static - systemd-exit.service static - systemd-fsck-root.service enabled-runtime enabled systemd-fsck@.service static - systemd-fsckd.service static - systemd-growfs@-.service generated - systemd-halt.service static - systemd-hibernate-resume@.service static - systemd-hibernate.service static - systemd-hostnamed.service static - systemd-hwdb-update.service static - systemd-hybrid-sleep.service static - systemd-initctl.service static - systemd-journal-flush.service static - systemd-journald.service static - systemd-journald@.service static - systemd-kexec.service static - systemd-localed.service static - systemd-logind.service static - systemd-machine-id-commit.service static - systemd-modules-load.service static - systemd-network-generator.service disabled disabled systemd-networkd-wait-online.service disabled disabled systemd-networkd.service disabled enabled systemd-poweroff.service static - systemd-pstore.service enabled enabled systemd-quotacheck.service static - systemd-random-seed.service static - systemd-reboot.service static - systemd-remount-fs.service enabled-runtime enabled systemd-resolved.service disabled enabled systemd-rfkill.service static - systemd-suspend-then-hibernate.service static - systemd-suspend.service static - systemd-sysctl.service static - systemd-sysusers.service static - systemd-time-wait-sync.service disabled disabled systemd-timedated.service static - systemd-tmpfiles-clean.service static - systemd-tmpfiles-setup-dev.service static - systemd-tmpfiles-setup.service static - systemd-udev-settle.service static - systemd-udev-trigger.service static - systemd-udevd.service static - systemd-update-utmp-runlevel.service static - systemd-update-utmp.service static - systemd-user-sessions.service static - systemd-volatile-root.service static - udev.service alias - umountfs.service masked enabled umountnfs.service masked enabled umountroot.service masked enabled unattended-upgrades.service enabled enabled unscd.service enabled enabled urandom.service masked enabled user-runtime-dir@.service static - user@.service static - uuidd.service indirect enabled x11-common.service masked enabled xinetd.service generated - machine.slice static - system-systemd\x2dcryptsetup.slice static - user.slice static - check_mk.socket disabled enabled dbus.socket static - pcscd.socket enabled enabled ssh.socket disabled enabled syslog.socket static - systemd-fsckd.socket static - systemd-initctl.socket static - systemd-journald-audit.socket static - systemd-journald-dev-log.socket static - systemd-journald-varlink@.socket static - systemd-journald.socket static - systemd-journald@.socket static - systemd-networkd.socket disabled enabled systemd-rfkill.socket static - systemd-udevd-control.socket static - systemd-udevd-kernel.socket static - uuidd.socket enabled enabled swapfile1.swap generated - basic.target static - blockdev@.target static - bluetooth.target static - boot-complete.target static - cloud-config.target static - cloud-init.target enabled-runtime enabled cryptsetup-pre.target static - cryptsetup.target static - ctrl-alt-del.target alias - default.target alias - emergency.target static - exit.target disabled disabled final.target static - first-boot-complete.target static - getty-pre.target static - getty.target static - graphical.target static - halt.target disabled disabled hibernate.target static - hybrid-sleep.target static - initrd-fs.target static - initrd-root-device.target static - initrd-root-fs.target static - initrd-switch-root.target static - initrd.target static - kexec.target disabled disabled local-fs-pre.target static - local-fs.target static - multi-user.target static - network-online.target static - network-pre.target static - network.target static - nss-lookup.target static - nss-user-lookup.target static - paths.target static - poweroff.target disabled disabled printer.target static - reboot.target disabled enabled remote-cryptsetup.target disabled enabled remote-fs-pre.target static - remote-fs.target enabled enabled rescue-ssh.target static - rescue.target static - rpcbind.target static - runlevel0.target alias - runlevel1.target alias - runlevel2.target alias - runlevel3.target alias - runlevel4.target alias - runlevel5.target alias - runlevel6.target alias - shutdown.target static - sigpwr.target static - sleep.target static - slices.target static - smartcard.target static - sockets.target static - sound.target static - suspend-then-hibernate.target static - suspend.target static - swap.target static - sysinit.target static - system-update-pre.target static - system-update.target static - time-set.target static - time-sync.target static - timers.target static - umount.target static - usb-gadget.target static - apt-daily-upgrade.timer enabled enabled apt-daily.timer enabled enabled e2scrub_all.timer enabled enabled fstrim.timer enabled enabled logrotate.timer enabled enabled phpsessionclean.timer enabled enabled systemd-tmpfiles-clean.timer static - 292 unit files listed. [all] UNIT LOAD ACTIVE SUB DESCRIPTION proc-sys-fs-binfmt_misc.automount loaded active waiting Arbitrary Executable File Formats File System Automount Point dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2did-scsi\x2d0QEMU_QEMU_HARDDISK_drive\x2dscsi0\x2d0\x2d0\x2d0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-26e893fc\x2d03c9\x2d6049\x2db821\x2d276c1f0b03a4.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpartuuid-6012acae\x2da51d\x2dc14f\x2dbb91\x2ddbbfb6cf0f77.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2dpartuuid-e6842644\x2dbb59\x2d324a\x2dbff6\x2df7d01b8b2cb2.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0.device loaded active plugged QEMU_HARDDISK dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart1.device loaded active plugged QEMU_HARDDISK 1 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart14.device loaded active plugged QEMU_HARDDISK 14 dev-disk-by\x2dpath-pci\x2d0000:00:04.0\x2dscsi\x2d0:0:0:0\x2dpart15.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-5AAB\x2d8FB0.device loaded active plugged QEMU_HARDDISK 15 dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.device loaded active plugged QEMU_HARDDISK 1 dev-sda.device loaded active plugged QEMU_HARDDISK dev-sda1.device loaded active plugged QEMU_HARDDISK 1 dev-sda14.device loaded active plugged QEMU_HARDDISK 14 dev-sda15.device loaded active plugged QEMU_HARDDISK 15 dev-ttyS0.device loaded active plugged /dev/ttyS0 dev-ttyS1.device loaded active plugged /dev/ttyS1 dev-ttyS2.device loaded active plugged /dev/ttyS2 dev-ttyS3.device loaded active plugged /dev/ttyS3 dev-virtio\x2dports-org.qemu.guest_agent.0.device loaded active plugged /dev/virtio-ports/org.qemu.guest_agent.0 dev-vport2p1.device loaded active plugged /dev/vport2p1 sys-devices-pci0000:00-0000:00:03.0-virtio0-net-ens3.device loaded active plugged Virtio network device sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda1.device loaded active plugged QEMU_HARDDISK 1 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda14.device loaded active plugged QEMU_HARDDISK 14 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda-sda15.device loaded active plugged QEMU_HARDDISK 15 sys-devices-pci0000:00-0000:00:04.0-virtio1-host2-target2:0:0-2:0:0:0-block-sda.device loaded active plugged QEMU_HARDDISK sys-devices-pci0000:00-0000:00:05.0-virtio2-virtio\x2dports-vport2p1.device loaded active plugged /sys/devices/pci0000:00/0000:00:05.0/virtio2/virtio-ports/vport2p1 sys-devices-platform-serial8250-tty-ttyS1.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS1 sys-devices-platform-serial8250-tty-ttyS2.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS2 sys-devices-platform-serial8250-tty-ttyS3.device loaded active plugged /sys/devices/platform/serial8250/tty/ttyS3 sys-devices-pnp0-00:04-tty-ttyS0.device loaded active plugged /sys/devices/pnp0/00:04/tty/ttyS0 sys-module-configfs.device loaded active plugged /sys/module/configfs sys-module-fuse.device loaded active plugged /sys/module/fuse sys-subsystem-net-devices-ens3.device loaded active plugged Virtio network device -.mount loaded active mounted Root Mount boot-efi.mount loaded active mounted /boot/efi dev-hugepages.mount loaded active mounted Huge Pages File System dev-mqueue.mount loaded active mounted POSIX Message Queue File System * home.mount not-found inactive dead home.mount proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System sys-fs-fuse-connections.mount loaded active mounted FUSE Control File System sys-kernel-config.mount loaded active mounted Kernel Configuration File System sys-kernel-debug.mount loaded active mounted Kernel Debug File System sys-kernel-tracing.mount loaded active mounted Kernel Trace File System * tmp.mount not-found inactive dead tmp.mount systemd-ask-password-console.path loaded active waiting Dispatch Password Requests to Console Directory Watch systemd-ask-password-wall.path loaded active waiting Forward Password Requests to Wall Directory Watch init.scope loaded active running System and Service Manager apache2.service loaded active running The Apache HTTP Server apparmor.service loaded active exited Load AppArmor profiles apt-daily-upgrade.service loaded inactive dead Daily apt upgrade and clean activities apt-daily.service loaded inactive dead Daily apt download activities auditd.service loaded active running Security Auditing Service * chrony.service masked inactive dead chrony.service * chronyd.service masked inactive dead chronyd.service cloud-config.service loaded active exited Apply the settings specified in cloud-config cloud-final.service loaded active exited Execute cloud user/final scripts cloud-init-local.service loaded active exited Initial cloud-init job (pre-networking) cloud-init.service loaded active exited Initial cloud-init job (metadata service crawler) * connman.service not-found inactive dead connman.service * console-screen.service not-found inactive dead console-screen.service console-setup.service loaded active exited Set console font and keymap cron.service loaded active running Regular background program processing daemon dbus.service loaded active running D-Bus System Message Bus * display-manager.service not-found inactive dead display-manager.service e2scrub_all.service loaded inactive dead Online ext4 Metadata Check for All Filesystems e2scrub_reap.service loaded inactive dead Remove Stale Online ext4 Metadata Check Snapshots emergency.service loaded inactive dead Emergency Shell fail2ban.service loaded active running Fail2Ban Service * firewalld.service not-found inactive dead firewalld.service fstrim.service loaded inactive dead Discard unused blocks on filesystems from /etc/fstab getty-static.service loaded inactive dead getty on tty2-tty6 if dbus and logind are not available getty@tty1.service loaded active running Getty on tty1 * hv_kvp_daemon.service not-found inactive dead hv_kvp_daemon.service ifupdown-pre.service loaded active exited Helper to synchronize boot up for ifupdown imtlazarus.service loaded active exited LSB: IMTLazarus * ip6tables.service not-found inactive dead ip6tables.service * ipsec.service not-found inactive dead ipsec.service * ipset.service not-found inactive dead ipset.service * iptables.service not-found inactive dead iptables.service irqbalance.service loaded active running irqbalance daemon * kbd.service not-found inactive dead kbd.service keyboard-setup.service loaded active exited Set the console keyboard layout kmod-static-nodes.service loaded active exited Create list of static device nodes for the current kernel logrotate.service loaded inactive dead Rotate log files mariadb.service loaded active running MariaDB 10.5.23 database server modprobe@configfs.service loaded inactive dead Load Kernel Module configfs modprobe@drm.service loaded inactive dead Load Kernel Module drm modprobe@fuse.service loaded inactive dead Load Kernel Module fuse mongod.service loaded active running MongoDB Database Server monit.service loaded active running LSB: service and resource monitoring daemon networking.service loaded active exited Raise network interfaces * NetworkManager.service not-found inactive dead NetworkManager.service nftables.service loaded inactive dead nftables nginx.service loaded active running A high performance web server and a reverse proxy server ntp.service loaded active running Network Time Service openvpn.service loaded active exited OpenVPN service openvpn@openvpncertun.service loaded inactive dead OpenVPN connection to openvpncertun packagekit.service loaded active running PackageKit Daemon pcscd.service loaded inactive dead PC/SC Smart Card Daemon php7.4-fpm.service loaded active running The PHP 7.4 FastCGI Process Manager phpsessionclean.service loaded inactive dead Clean php session files * plymouth-quit-wait.service not-found inactive dead plymouth-quit-wait.service * plymouth-start.service not-found inactive dead plymouth-start.service polkit.service loaded active running Authorization Manager qemu-guest-agent.service loaded active running QEMU Guest Agent rc-local.service loaded active exited /etc/rc.local Compatibility rescue.service loaded inactive dead Rescue Shell resolvconf.service loaded active exited Nameserver information manager rsync.service loaded inactive dead fast remote file copy program daemon rsyslog.service loaded active running System Logging Service sendmail.service loaded active running LSB: powerful, efficient, and scalable Mail Transport Agent serial-getty@ttyS0.service loaded active running Serial Getty on ttyS0 shellinabox.service loaded active running LSB: Shell In A Box Daemon * snapd.seeded.service not-found inactive dead snapd.seeded.service ssh.service loaded active running OpenBSD Secure Shell server * sshd-keygen.service not-found inactive dead sshd-keygen.service systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats systemd-boot-system-token.service loaded inactive dead Store a System Token in an EFI Variable systemd-fsck-root.service loaded inactive dead File System Check on Root Device systemd-fsckd.service loaded inactive dead File System Check Daemon to report status systemd-growfs@-.service loaded active exited Grow File System on / systemd-hwdb-update.service loaded inactive dead Rebuild Hardware Database systemd-initctl.service loaded inactive dead initctl Compatibility Daemon systemd-journal-flush.service loaded active exited Flush Journal to Persistent Storage systemd-journald.service loaded active running Journal Service systemd-logind.service loaded active running User Login Management systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk systemd-modules-load.service loaded active exited Load Kernel Modules systemd-networkd-wait-online.service loaded inactive dead Wait for Network to be Configured systemd-networkd.service loaded inactive dead Network Service systemd-pstore.service loaded inactive dead Platform Persistent Storage Archival systemd-random-seed.service loaded active exited Load/Save Random Seed systemd-remount-fs.service loaded active exited Remount Root and Kernel File Systems systemd-sysctl.service loaded active exited Apply Kernel Variables systemd-sysusers.service loaded active exited Create System Users * systemd-timesyncd.service not-found inactive dead systemd-timesyncd.service systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories systemd-tmpfiles-setup-dev.service loaded active exited Create Static Device Nodes in /dev systemd-tmpfiles-setup.service loaded active exited Create Volatile Files and Directories systemd-udev-trigger.service loaded active exited Coldplug All udev Devices systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files * systemd-update-done.service not-found inactive dead systemd-update-done.service systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes systemd-update-utmp.service loaded active exited Update UTMP about System Boot/Shutdown systemd-user-sessions.service loaded active exited Permit User Sessions * systemd-vconsole-setup.service not-found inactive dead systemd-vconsole-setup.service unattended-upgrades.service loaded active running Unattended Upgrades Shutdown unscd.service loaded active running Name Service Cache Daemon uuidd.service loaded inactive dead Daemon for generating UUIDs xinetd.service loaded active running LSB: Starts or stops the xinetd daemon. -.slice loaded active active Root Slice system-getty.slice loaded active active system-getty.slice system-modprobe.slice loaded active active system-modprobe.slice system-openvpn.slice loaded active active system-openvpn.slice system-serial\x2dgetty.slice loaded active active system-serial\x2dgetty.slice system-systemd\x2dgrowfs.slice loaded active active system-systemd\x2dgrowfs.slice system.slice loaded active active System Slice user.slice loaded active active User and Session Slice dbus.socket loaded active running D-Bus System Message Bus Socket pcscd.socket loaded active listening PC/SC Smart Card Daemon Activation Socket syslog.socket loaded active running Syslog Socket systemd-fsckd.socket loaded active listening fsck to fsckd communication Socket systemd-initctl.socket loaded active listening initctl Compatibility Named Pipe systemd-journald-audit.socket loaded active running Journal Audit Socket systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log) systemd-journald.socket loaded active running Journal Socket systemd-networkd.socket loaded inactive dead Network Service Netlink Socket systemd-udevd-control.socket loaded active running udev Control Socket systemd-udevd-kernel.socket loaded active running udev Kernel Socket uuidd.socket loaded active listening UUID daemon activation socket swapfile1.swap loaded active active /swapfile1 * all.target not-found inactive dead all.target basic.target loaded active active Basic System blockdev@dev-disk-by\x2duuid-5AAB\x2d8FB0.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/5AAB-8FB0 blockdev@dev-disk-by\x2duuid-eb7d5afb\x2da5d2\x2d41b8\x2dae40\x2d789814f87c3e.target loaded inactive dead Block Device Preparation for /dev/disk/by-uuid/eb7d5afb-a5d2-41b8-ae40-789814f87c3e blockdev@dev-sda15.target loaded inactive dead Block Device Preparation for /dev/sda15 cloud-config.target loaded active active Cloud-config availability cloud-init.target loaded active active Cloud-init target cryptsetup.target loaded active active Local Encrypted Volumes emergency.target loaded inactive dead Emergency Mode first-boot-complete.target loaded inactive dead First Boot Complete getty-pre.target loaded inactive dead Login Prompts (Pre) getty.target loaded active active Login Prompts graphical.target loaded active active Graphical Interface local-fs-pre.target loaded active active Local File Systems (Pre) local-fs.target loaded active active Local File Systems multi-user.target loaded active active Multi-User System network-online.target loaded active active Network is Online network-pre.target loaded active active Network (Pre) network.target loaded active active Network nss-lookup.target loaded inactive dead Host and Network Name Lookups nss-user-lookup.target loaded inactive dead User and Group Name Lookups paths.target loaded active active Paths remote-fs-pre.target loaded inactive dead Remote File Systems (Pre) remote-fs.target loaded active active Remote File Systems rescue.target loaded inactive dead Rescue Mode shutdown.target loaded inactive dead Shutdown slices.target loaded active active Slices sockets.target loaded active active Sockets swap.target loaded active active Swap sysinit.target loaded active active System Initialization time-set.target loaded inactive dead System Time Set time-sync.target loaded inactive dead System Time Synchronized timers.target loaded active active Timers umount.target loaded inactive dead Unmount All Filesystems apt-daily-upgrade.timer loaded active waiting Daily apt upgrade and clean activities apt-daily.timer loaded active waiting Daily apt download activities e2scrub_all.timer loaded active waiting Periodic ext4 Online Metadata Check for All Filesystems fstrim.timer loaded active waiting Discard unused blocks once a week logrotate.timer loaded active waiting Daily rotation of log files phpsessionclean.timer loaded active waiting Clean PHP session files every 30 mins systemd-tmpfiles-clean.timer loaded active waiting Daily Cleanup of Temporary Directories Found linux process list through CheckMk: [header] CGROUP USER VSZ RSS TIME ELAPSED PID COMMAND 0::/init.scope root 167416 11828 11:21:13 48-18:48:03 1 /lib/systemd/systemd --system --deserialize 23 - root 0 0 00:00:02 48-18:48:03 2 [kthreadd] - root 0 0 00:00:00 48-18:48:03 3 [rcu_gp] - root 0 0 00:00:00 48-18:48:03 4 [rcu_par_gp] - root 0 0 00:00:00 48-18:48:03 6 [kworker/0:0H-events_highpri] - root 0 0 00:00:00 48-18:48:03 8 [mm_percpu_wq] - root 0 0 00:00:00 48-18:48:03 9 [rcu_tasks_rude_] - root 0 0 00:00:00 48-18:48:03 10 [rcu_tasks_trace] - root 0 0 00:25:04 48-18:48:03 11 [ksoftirqd/0] - root 0 0 01:17:41 48-18:48:03 12 [rcu_sched] - root 0 0 00:00:53 48-18:48:03 13 [migration/0] - root 0 0 00:00:00 48-18:48:03 15 [cpuhp/0] - root 0 0 00:00:00 48-18:48:03 16 [cpuhp/1] - root 0 0 00:00:54 48-18:48:03 17 [migration/1] - root 0 0 00:25:03 48-18:48:03 18 [ksoftirqd/1] - root 0 0 00:00:00 48-18:48:03 20 [kworker/1:0H-events_highpri] - root 0 0 00:00:00 48-18:48:03 21 [cpuhp/2] - root 0 0 00:00:54 48-18:48:03 22 [migration/2] - root 0 0 00:25:00 48-18:48:03 23 [ksoftirqd/2] - root 0 0 00:00:00 48-18:48:03 25 [kworker/2:0H-events_highpri] - root 0 0 00:00:00 48-18:48:03 26 [cpuhp/3] - root 0 0 00:00:54 48-18:48:03 27 [migration/3] - root 0 0 00:25:00 48-18:48:03 28 [ksoftirqd/3] - root 0 0 00:00:00 48-18:48:03 30 [kworker/3:0H-kblockd] - root 0 0 00:00:00 48-18:48:03 31 [cpuhp/4] - root 0 0 00:00:54 48-18:48:03 32 [migration/4] - root 0 0 00:24:59 48-18:48:03 33 [ksoftirqd/4] - root 0 0 00:00:00 48-18:48:03 35 [kworker/4:0H-events_highpri] - root 0 0 00:00:00 48-18:48:03 36 [cpuhp/5] - root 0 0 00:00:54 48-18:48:03 37 [migration/5] - root 0 0 00:24:59 48-18:48:03 38 [ksoftirqd/5] - root 0 0 00:00:00 48-18:48:03 40 [kworker/5:0H-events_highpri] - root 0 0 00:00:00 48-18:48:03 41 [cpuhp/6] - root 0 0 00:00:54 48-18:48:03 42 [migration/6] - root 0 0 00:24:59 48-18:48:03 43 [ksoftirqd/6] - root 0 0 00:00:00 48-18:48:03 45 [kworker/6:0H-events_highpri] - root 0 0 00:00:00 48-18:48:03 46 [cpuhp/7] - root 0 0 00:00:54 48-18:48:03 47 [migration/7] - root 0 0 00:25:16 48-18:48:03 48 [ksoftirqd/7] - root 0 0 00:00:00 48-18:48:03 50 [kworker/7:0H-kblockd] - root 0 0 00:00:00 48-18:48:03 56 [kdevtmpfs] - root 0 0 00:00:00 48-18:48:03 57 [netns] - root 0 0 00:15:07 48-18:48:03 58 [kauditd] - root 0 0 00:00:04 48-18:48:03 59 [khungtaskd] - root 0 0 00:00:00 48-18:48:03 60 [oom_reaper] - root 0 0 00:00:00 48-18:48:03 61 [writeback] - root 0 0 00:01:35 48-18:48:03 62 [kcompactd0] - root 0 0 00:00:00 48-18:48:03 63 [ksmd] - root 0 0 00:04:15 48-18:48:03 64 [khugepaged] - root 0 0 00:00:00 48-18:48:03 84 [kintegrityd] - root 0 0 00:00:00 48-18:48:03 85 [kblockd] - root 0 0 00:00:00 48-18:48:03 86 [blkcg_punt_bio] - root 0 0 00:00:49 48-18:48:02 88 [kworker/0:1H-kblockd] - root 0 0 00:04:04 48-18:48:02 94 [kswapd0] - root 0 0 00:00:00 48-18:48:02 95 [kthrotld] - root 0 0 00:00:00 48-18:48:02 96 [acpi_thermal_pm] - root 0 0 00:00:00 48-18:48:02 97 [nvme-wq] - root 0 0 00:00:00 48-18:48:02 98 [nvme-reset-wq] - root 0 0 00:00:00 48-18:48:02 99 [nvme-delete-wq] - root 0 0 00:00:49 48-18:48:02 100 [kworker/2:1H-kblockd] - root 0 0 00:00:00 48-18:48:02 101 [ipv6_addrconf] - root 0 0 00:00:00 48-18:48:02 110 [kstrp] - root 0 0 00:00:00 48-18:48:02 115 [kworker/u17:0] - root 0 0 00:00:48 48-18:48:02 137 [kworker/5:1H-kblockd] - root 0 0 00:00:49 48-18:48:02 153 [kworker/4:1H-kblockd] - root 0 0 00:00:00 48-18:48:02 168 [ata_sff] - root 0 0 00:00:00 48-18:48:02 169 [scsi_eh_0] - root 0 0 00:00:00 48-18:48:02 170 [scsi_tmf_0] - root 0 0 00:00:00 48-18:48:02 171 [scsi_eh_1] - root 0 0 00:00:00 48-18:48:02 172 [scsi_tmf_1] - root 0 0 00:00:00 48-18:48:01 174 [scsi_eh_2] - root 0 0 00:00:00 48-18:48:01 175 [scsi_tmf_2] - root 0 0 00:00:49 48-18:48:01 178 [kworker/6:1H-kblockd] - root 0 0 00:00:49 48-18:48:01 203 [kworker/3:1H-kblockd] - root 0 0 00:12:06 48-18:48:01 205 [jbd2/sda1-8] - root 0 0 00:00:00 48-18:48:01 206 [ext4-rsv-conver] - root 0 0 00:00:50 48-18:48:01 223 [kworker/1:1H-kblockd] - root 0 0 00:00:49 48-18:48:01 250 [kworker/7:1H-kblockd] - root 0 0 00:00:00 48-18:48:00 356 [cryptd] 0::/system.slice/auditd.service root 13328 2196 00:53:32 48-18:48:00 430 /sbin/auditd 0::/system.slice/networking.service root 99884 2776 00:00:00 48-18:47:59 510 /sbin/dhclient -4 -v -i -pf /run/dhclient.ens3.pid -lf /var/lib/dhcp/dhclient.ens3.leases -I -df /var/lib/dhcp/dhclient6.ens3.leases ens3 0::/system.slice/dbus.service messagebus 8500 3708 00:05:12 48-18:47:58 642 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only 0::/system.slice/irqbalance.service root 82692 2956 00:02:00 48-18:47:58 655 /usr/sbin/irqbalance --foreground 0::/system.slice/mongod.service mongodb 1004388 41780 03:33:18 48-18:47:58 661 /usr/bin/mongod --config /etc/mongod.conf 0::/system.slice/qemu-guest-agent.service root 80060 2300 00:00:00 48-18:47:58 690 /usr/sbin/qemu-ga 0::/system.slice/systemd-logind.service root 13724 4236 00:02:13 48-18:47:58 723 /lib/systemd/systemd-logind 0::/system.slice/unscd.service unscd 6260 2108 08:23:28 48-18:47:58 729 /usr/sbin/nscd -d 0::/system.slice/fail2ban.service root 395292 19212 05:23:46 48-18:47:58 800 /usr/bin/python3 /usr/bin/fail2ban-server -xf start 0::/system.slice/ssh.service root 13272 5480 00:00:53 48-18:47:58 813 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups 0::/system.slice/system-getty.slice/getty@tty1.service root 2792 540 00:00:00 48-18:47:57 872 /sbin/agetty -o -p -- \u --noclear tty1 linux 0::/system.slice/system-serial\x2dgetty.slice/serial-getty@ttyS0.service root 4316 460 00:00:00 48-18:47:57 873 /sbin/agetty -o -p -- \u --keep-baud 115200,57600,38400,9600 ttyS0 vt220 0::/system.slice/unattended-upgrades.service root 106020 3640 00:00:00 48-18:47:57 900 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal 0::/system.slice/shellinabox.service shellinabox 8152 5804 00:00:06 48-18:47:57 953 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/shellinabox.service shellinabox 7132 2076 00:00:00 48-18:47:57 954 /usr/bin/shellinaboxd -q --background=/var/run/shellinaboxd.pid -c /var/lib/shellinabox -p 4200 -u shellinabox -g shellinabox --user-css Black on White:+/etc/shellinabox/options-enabled/00+Black on White.css,White On Black:-/etc/shellinabox/options-enabled/00_White On Black.css;Color Terminal:+/etc/shellinabox/options-enabled/01+Color Terminal.css,Monochrome:-/etc/shellinabox/options-enabled/01_Monochrome.css --no-beep 0::/system.slice/xinetd.service root 9644 2056 00:00:23 48-18:47:57 1126 /usr/sbin/xinetd -pidfile /run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6 0::/system.slice/sendmail.service root 19416 2144 00:01:46 48-18:47:56 1294 sendmail: MTA: accepting connections 0::/system.slice/cron.service root 5840 2648 00:35:09 48-18:47:28 2677 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 5968 2676 02:50:08 48-18:47:28 2696 /bin/bash /opt/imtlazarus/mdms/set_remove_nosafari 0::/system.slice/cron.service root 5840 2576 03:55:44 48-18:47:28 2703 /bin/bash /opt/imtlazarus/mdms/set_remove_imtlr 0::/system.slice/cron.service root 5708 2512 00:02:50 48-18:47:28 2705 /bin/bash /opt/imtlazarus/mdms/set_micromdm_profiles 0::/system.slice/cron.service root 5964 2696 04:18:34 48-18:47:28 2709 /bin/bash /opt/imtlazarus/mdms/set_remove_apps 0::/system.slice/cron.service root 5708 2548 00:06:18 48-18:47:28 2713 /bin/bash /opt/imtlazarus/system/system-cierraprime.scr 0::/system.slice/cron.service root 5972 2624 03:17:41 48-18:47:28 2728 /bin/bash /opt/imtlazarus/mdms/set_airdrop 0::/system.slice/cron.service root 5840 2648 03:57:01 48-18:47:28 2738 /bin/bash /opt/imtlazarus/mdms/set_add_imtlr 0::/system.slice/cron.service root 5964 2720 04:20:03 48-18:47:28 2739 /bin/bash /opt/imtlazarus/mdms/set_add_apps 0::/system.slice/cron.service root 5836 2452 12:29:03 48-18:47:28 2752 /bin/bash /opt/imtlazarus/mdms/set_desktop 0::/system.slice/cron.service root 5836 2620 12:21:49 48-18:47:28 2767 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5708 2584 12:22:44 48-18:47:28 2769 /bin/bash /opt/imtlazarus/mdms/set_winapps 0::/system.slice/cron.service root 5840 2568 03:30:26 48-18:47:28 2774 /bin/bash /opt/imtlazarus/firewall/set_screenblock 0::/system.slice/cron.service root 6092 2752 04:12:59 48-18:47:28 2787 /bin/bash /opt/imtlazarus/mdms/set_youtube_app 0::/system.slice/cron.service root 5836 2564 01:04:47 48-18:47:28 2833 /bin/bash /opt/imtlazarus/mdms/set_chromelock 0::/system.slice/cron.service root 6092 2720 04:21:17 48-18:47:28 2842 /bin/bash /opt/imtlazarus/mdms/set_camara 0::/system.slice/cron.service root 5840 2568 02:19:49 48-18:47:28 2847 /bin/bash /opt/imtlazarus/mdms/set_fixtabs 0::/system.slice/apache2.service root 260924 49368 00:00:34 10-15:08:47 56425 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262028 46732 00:00:01 10-15:08:47 56473 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262008 46648 00:00:01 10-15:08:47 56474 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 47256 00:00:01 10-15:08:47 56475 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 262024 46652 00:00:01 10-15:08:47 56476 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 46744 00:00:01 10-15:08:47 56477 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261892 46504 00:00:01 10-15:05:45 143233 /usr/sbin/apache2 -k start - root 0 0 00:00:01 01:23:29 165034 [kworker/6:0-events] - root 0 0 00:00:01 01:19:29 277158 [kworker/4:1-events] 0::/system.slice/php7.4-fpm.service root 232272 34612 00:04:19 36-09:37:55 568484 php-fpm: master process (/etc/php/7.4/fpm/php-fpm.conf) - root 0 0 00:00:02 01:02:19 723112 [kworker/u16:0-ext4-rsv-conversion] - root 0 0 00:00:00 57:29 855083 [kworker/5:0-mm_percpu_wq] 0::/system.slice/ntp.service ntp 74496 3916 00:00:03 16:47:29 1129333 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 110:117 0::/system.slice/mariadb.service mysql 4643012 333572 03:23:23 16:47:27 1130664 /usr/sbin/mariadbd - root 0 0 00:00:00 33:28 1471080 [kworker/7:0-events] - root 0 0 00:00:02 03:10:29 1574136 [kworker/1:1-mm_percpu_wq] - root 0 0 00:00:01 29:25 1590182 [kworker/u16:3-flush-8:0] - root 0 0 00:00:04 05:48:29 1633430 [kworker/7:1-events] - root 0 0 00:00:00 26:29 1664190 [kworker/1:2-events] - root 0 0 00:00:00 24:29 1712695 [kworker/3:2-events] - root 0 0 00:00:00 18:29 1870463 [kworker/3:0-events] - root 0 0 00:00:00 12:48 2014686 [kworker/u16:2-ext4-rsv-conversion] - root 0 0 00:00:00 12:30 2023825 [kworker/4:0] - root 0 0 00:00:00 11:29 2058506 [kworker/6:1-cgroup_destroy] - root 0 0 00:00:00 10:29 2085576 [kworker/5:2-cgroup_destroy] - root 0 0 00:00:00 07:29 2160165 [kworker/0:0-cgroup_destroy] - root 0 0 00:00:00 06:29 2193299 [kworker/2:1-cgroup_destroy] - root 0 0 00:00:00 04:30 2234291 [kworker/6:2-cgroup_destroy] 0::/system.slice/cron.service root 6128 3512 00:00:03 03:29 2254889 /bin/bash /opt/imtlazarus/formularios/formularios-getformularios.scr - root 0 0 00:00:00 03:28 2255740 [kworker/3:1-events] 0::/system.slice/php7.4-fpm.service www-data 255704 52636 00:00:01 02:59 2272723 php-fpm: pool www 0::/system.slice/php7.4-fpm.service www-data 256200 53180 00:00:00 02:43 2282110 php-fpm: pool www 0::/system.slice/cron.service root 4284 504 00:00:00 00:50 2340865 sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:33 2347420 /bin/sleep 60 0::/system.slice/cron.service root 2392 504 00:00:00 00:31 2348223 /bin/sleep 60 - root 0 0 00:00:00 00:29 2349614 [kworker/1:0-events] 0::/system.slice/cron.service root 5908 2380 00:00:00 00:27 2350723 /usr/bin/SCREEN -A -m -d -S WSFILTER2 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8376 00:00:00 00:27 2350730 ./websocketd --port=8992 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:27 2350749 /usr/bin/SCREEN -A -m -d -S WSFILTER3 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 8776 00:00:00 00:27 2350752 ./websocketd --port=8993 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2344 00:00:00 00:27 2350770 /usr/bin/SCREEN -A -m -d -S WSFILTER4 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 379152 6732 00:00:00 00:27 2350772 ./websocketd --port=8994 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_filter.php 0::/system.slice/cron.service root 5908 2368 00:00:00 00:27 2350818 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9001 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 972272 9600 00:00:00 00:27 2350825 ./websocketd --port=9001 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2352 00:00:00 00:27 2350841 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9002 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 379152 8804 00:00:00 00:27 2350845 ./websocketd --port=9002 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2420 00:00:00 00:27 2350858 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9003 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 231688 8744 00:00:00 00:27 2350860 ./websocketd --port=9003 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 5908 2376 00:00:00 00:27 2350909 /usr/bin/SCREEN -A -m -d -S WSDEVICEINFO9004 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 84224 6444 00:00:00 00:27 2350920 ./websocketd --port=9004 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 99636 32032 00:00:00 00:26 2350986 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 103732 36164 00:00:00 00:26 2351017 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 103732 35308 00:00:00 00:26 2351026 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 99636 31856 00:00:00 00:24 2351941 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 504 00:00:00 00:19 2353782 sleep 60 0::/system.slice/cron.service root 2392 568 00:00:00 00:17 2354559 /bin/sleep 60 0::/system.slice/cron.service root 2392 572 00:00:00 00:15 2355305 /bin/sleep 60 0::/system.slice/cron.service root 4284 568 00:00:00 00:07 2358765 sleep 8 0::/system.slice/cron.service root 4284 504 00:00:00 00:02 2360574 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2360764 sleep 2 0::/system.slice/cron.service root 5840 1420 00:00:00 00:01 2360807 /bin/bash /opt/imtlazarus/system/controlwebsocketd.scr 0::/system.slice/cron.service root 20656 11240 00:00:00 00:01 2360809 /usr/bin/curl --silent --include --no-buffer --max-time 2 --header Connection: Upgrade --header Upgrade: websocket --header Host: 127.0.0.1:9003 --header Origin: https://127.0.0.1:9003 --header Sec-WebSocket-Key: MTg1NDo2NDcz --header Sec-WebSocket-Version: 13 https://127.0.0.1:9003/ -k 0::/system.slice/cron.service root 4288 568 00:00:00 00:01 2360810 wc -l 0::/system.slice/cron.service root 99636 31588 00:00:00 00:01 2360823 /usr/bin/php ./ws_device_info.php 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2360926 sleep 2 0::/system.slice/xinetd.service root 6180 3592 00:00:00 00:01 2360952 /bin/bash /usr/bin/check_mk_agent 0::/system.slice/cron.service root 4284 568 00:00:00 00:01 2360973 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:01 2361031 sleep 1 0::/system.slice/cron.service root 4284 564 00:00:00 00:01 2361084 sleep 1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2361121 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2361139 sleep 1 0::/system.slice/cron.service root 4284 504 00:00:00 00:00 2361186 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2361262 sleep 2 0::/system.slice/cron.service root 4284 564 00:00:00 00:00 2361290 sleep 1 0::/system.slice/cron.service root 4284 500 00:00:00 00:00 2361311 sleep 0.1 0::/system.slice/cron.service root 4284 568 00:00:00 00:00 2361320 sleep 0.1 0::/system.slice/cron.service root 5244 3032 00:00:00 00:00 2361323 jq -c .[] 0::/system.slice/cron.service root 5836 1404 00:00:00 00:00 2361324 /bin/bash /opt/imtlazarus/mdms/set_lock 0::/system.slice/cron.service root 5244 2948 00:00:00 00:00 2361326 jq .dispositivos.windows 0::/system.slice/xinetd.service root 6676 1144 00:00:00 00:00 2361341 ps ax -o cgroup:512,user:32,vsz,rss,cputime,etime,pid,command --columns 10000 0::/system.slice/apache2.service www-data 261888 46484 00:00:01 10-13:26:50 2762214 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261896 47344 00:00:01 10-13:26:49 2762587 /usr/sbin/apache2 -k start 0::/system.slice/apache2.service www-data 261884 47104 00:00:01 10-13:26:49 2762588 /usr/sbin/apache2 -k start - root 0 0 00:00:01 02:18:29 2926622 [kworker/0:2-events] 0::/system.slice/packagekit.service root 288308 6712 00:00:25 48-16:54:10 3036673 /usr/libexec/packagekitd 0::/system.slice/polkit.service root 233440 4448 00:00:04 48-16:54:10 3036680 /usr/libexec/polkitd --no-debug - root 0 0 00:00:01 02:05:29 3269782 [kworker/2:0-events] 0::/system.slice/cron.service root 5908 2248 00:00:00 17:48:29 3727995 /usr/bin/SCREEN -A -m -d -S SCREENSHARE /usr/sbin/node server.js 0::/system.slice/cron.service root 873656 39704 00:00:04 17:48:29 3728019 /usr/sbin/node server.js 0::/system.slice/cron.service root 5908 2268 00:00:00 17:48:29 3728108 /usr/bin/SCREEN -A -m -d -S nxfilter10001 ./startup.sh 0::/system.slice/cron.service root 2480 504 00:00:00 17:48:29 3728131 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2268 00:00:00 17:48:29 3728145 /usr/bin/SCREEN -A -m -d -S nxfilterx1101 ./startup.sh 0::/system.slice/cron.service root 2480 508 00:00:00 17:48:29 3728162 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5061660 286144 00:04:53 17:48:29 3728169 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilter10001/nxd.jar:/opt/imtlazarus/nxfilters/nxfilter10001//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2400 00:00:00 17:48:29 3728177 /usr/bin/SCREEN -A -m -d -S nxfilterx1102 ./startup.sh 0::/system.slice/cron.service root 5052408 316108 00:04:37 17:48:29 3728187 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1101/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1101//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2304 00:00:00 17:48:29 3728199 /usr/bin/SCREEN -A -m -d -S nxfilterx1103 ./startup.sh 0::/system.slice/cron.service root 2480 512 00:00:00 17:48:29 3728208 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2372 00:00:00 17:48:29 3728222 /usr/bin/SCREEN -A -m -d -S nxfilterx1104 ./startup.sh 0::/system.slice/cron.service root 5050352 283748 00:04:35 17:48:29 3728242 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1102/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1102//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 508 00:00:00 17:48:29 3728246 /bin/sh ./startup.sh 0::/system.slice/cron.service root 2480 572 00:00:00 17:48:29 3728247 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5908 2312 00:00:00 17:48:29 3728270 /usr/bin/SCREEN -A -m -d -S nxfilterx1105 ./startup.sh 0::/system.slice/cron.service root 5908 2296 00:00:00 17:48:29 3728308 /usr/bin/SCREEN -A -m -d -S webhookstart sudo ./webhookstart 0::/system.slice/cron.service root 5054464 173420 00:06:02 17:48:29 3728313 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1104/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1104//lib/*: nxd.Main 0::/system.slice/cron.service root 5908 2268 00:00:00 17:48:29 3728345 /usr/bin/SCREEN -A -m -d -S nxfilterx1106 ./startup.sh 0::/system.slice/cron.service root 2480 572 00:00:00 17:48:29 3728354 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5063240 286992 00:04:59 17:48:29 3728361 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1103/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1103//lib/*: nxd.Main 0::/system.slice/cron.service root 11984 4828 00:00:00 17:48:29 3728365 sudo ./webhookstart 0::/system.slice/cron.service root 2480 508 00:00:00 17:48:29 3728377 /bin/sh ./startup.sh 0::/system.slice/cron.service root 5051380 183312 00:06:05 17:48:29 3728440 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1105/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1105//lib/*: nxd.Main 0::/system.slice/cron.service root 5051600 175992 00:06:04 17:48:29 3728453 java -Djava.net.preferIPv4Stack=true -Xmx512m -Djava.security.egd=file:/dev/./urandom -cp /opt/imtlazarus/nxfilters/nxfilterx1106/nxd.jar:/opt/imtlazarus/nxfilters/nxfilterx1106//lib/*: nxd.Main 0::/system.slice/cron.service root 2480 508 00:00:00 17:48:29 3728527 sh ./webhookstart 0::/system.slice/cron.service root 40104 35132 00:00:08 17:48:29 3728546 /usr/bin/python3 /usr/bin/flask run 0::/system.slice/cron.service root 5908 2352 00:00:02 17:48:26 3731301 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 14376 13352 00:00:00 17:48:26 3731306 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 5908 2420 00:00:03 17:48:26 3731314 /usr/bin/SCREEN -c deny.conf -L -A -m -d -S mitmdump_deny2 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 14376 13288 00:00:00 17:48:26 3731315 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 383212 55144 00:01:01 17:48:25 3731710 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8032 0::/system.slice/cron.service root 309224 54972 00:01:01 17:48:25 3731798 ./mitmdump -s redirect_requests_deny.py --ssl-insecure --no-http2 -p 8042 0::/system.slice/cron.service root 5908 2408 00:00:00 17:48:25 3731870 /usr/bin/SCREEN -A -m -d -S WEBSOCKETD ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 379152 8916 00:00:05 17:48:25 3731873 ./websocketd --port=8123 ./respu 0::/system.slice/cron.service root 5908 2368 00:00:00 17:48:25 3731930 /usr/bin/SCREEN -A -m -d -S WINCHROME ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 379152 9732 00:00:51 17:48:25 3731932 ./websocketd --port=8224 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./winchrome 0::/system.slice/cron.service root 5908 2552 00:00:00 17:48:25 3731993 /usr/bin/SCREEN -A -m -d -S STATUSDISPOLOCK ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 498044 55968 00:00:57 17:48:25 3731997 ./websocketd --port=8225 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusdispolock 0::/system.slice/cron.service root 5908 2356 00:00:00 17:48:24 3732074 /usr/bin/SCREEN -A -m -d -S STATUSTUNNEL ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 453972 9808 00:00:57 17:48:24 3732094 ./websocketd --port=8226 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statustunnel 0::/system.slice/cron.service root 5908 2520 00:00:00 17:48:24 3732128 /usr/bin/SCREEN -A -m -d -S STATUSMDM ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 748900 11900 00:00:55 17:48:24 3732131 ./websocketd --port=8227 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusmdm 0::/system.slice/cron.service root 5908 2372 00:00:00 17:48:24 3732211 /usr/bin/SCREEN -A -m -d -S STATUSSCREENSHOT ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 748900 12504 00:00:55 17:48:24 3732218 ./websocketd --port=8228 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key ./statusscreenshot 0::/system.slice/cron.service root 5908 2376 00:00:00 17:48:24 3732274 /usr/bin/SCREEN -A -m -d -S WSIMTFUSION ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/cron.service root 452884 11912 00:00:52 17:48:24 3732285 ./websocketd --port=8991 --ssl --sslcert /opt/imtlazarus/certificados-redalia/ServerCertificate.cer --sslkey /opt/imtlazarus/certificados-redalia/private.key /usr/bin/php ./ws_imtfusion.php 0::/system.slice/rsyslog.service root 442724 4996 00:07:37 9-04:53:28 3736834 /usr/sbin/rsyslogd -n -iNONE 0::/system.slice/systemd-journald.service root 393568 287432 00:33:31 9-04:53:12 3744550 /lib/systemd/systemd-journald 0::/system.slice/systemd-udevd.service root 19036 4076 00:00:01 9-04:53:09 3745512 /lib/systemd/systemd-udevd 0::/system.slice/cron.service root 5556 2552 00:00:27 1-04:33:14 3761875 /usr/sbin/cron -f 0::/system.slice/cron.service root 5708 2948 00:00:01 1-04:32:30 3785505 /bin/bash /opt/imtlazarus/system/controlcron.scr 0::/system.slice/nginx.service root 67644 2516 00:00:00 9-04:52:03 3789125 nginx: master process /usr/sbin/nginx -g daemon on; master_process on; 0::/system.slice/nginx.service www-data 70972 10772 00:08:42 9-04:52:03 3789126 nginx: worker process 0::/system.slice/nginx.service www-data 71508 10768 00:00:03 9-04:52:03 3789127 nginx: worker process 0::/system.slice/nginx.service www-data 71100 9612 00:00:00 9-04:52:03 3789128 nginx: worker process 0::/system.slice/nginx.service www-data 68664 7444 00:00:00 9-04:52:03 3789129 nginx: worker process 0::/system.slice/nginx.service www-data 68916 6416 00:00:00 9-04:52:03 3789130 nginx: worker process 0::/system.slice/nginx.service www-data 68052 6100 00:00:00 9-04:52:03 3789131 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2876 00:00:00 9-04:52:02 3789132 nginx: worker process 0::/system.slice/nginx.service www-data 67956 2876 00:00:00 9-04:52:02 3789133 nginx: worker process 0::/system.slice/monit.service root 10412 4284 00:03:21 9-04:52:02 3789195 /usr/bin/monit -c /etc/monit/monitrc 0::/system.slice/apache2.service www-data 261896 47192 00:00:01 10-09:58:48 4082679 /usr/sbin/apache2 -k start Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether fa:16:3e:c2:48:66 brd ff:ff:ff:ff:ff:ff altname enp0s3 inet 217.182.71.146/32 brd 217.182.71.146 scope global dynamic ens3 valid_lft 53822sec preferred_lft 53822sec inet6 fe80::f816:3eff:fec2:4866/64 scope link valid_lft forever preferred_lft forever [end_iplink]Found on 2024-09-11 19:48
-
Open service 217.182.71.146:443
2024-11-20 14:23
HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 20 Nov 2024 14:23:50 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Expires: Tue, 01 Jul 2001 06:00:00 GMT Last-Modified: Wed, 20 Nov 2024 14:23:50 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache Strict-Transport-Security: max-age=60000; includeSubDomains Page title: ACCESS DENIED: <!doctype html> <html lang="en"> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta name="description" content=""> <meta name="author" content="IMTLazarus"> <link rel="icon" href="//arula.imtlazarus.com/lazarus/favicon.png"> <title>ACCESS DENIED: </title> <!-- Bootstrap 5.0 core CSS --> <link href="https://arula.imtlazarus.com//assets/dist/css/bootstrap.min.css?id=" rel="stylesheet"> <!-- Bootstrap 4.1 core CSS --> <link href="https://arula.imtlazarus.com//dist/css/bootstrap.min.css?id=" rel="stylesheet"> <script src="https://code.jquery.com/jquery-3.5.1.min.js?id="></script> <script src="https://arula.imtlazarus.com//assets/dist/js/bootstrap.bundle.min.js?id="></script> <script async src="https://cdn.jsdelivr.net/npm/masonry-layout@4.2.2/dist/masonry.pkgd.min.js" integrity="sha384-GNFwBvfVxBkLMJpYMOABq3c+d3KnQxudP/mGPkzpZSTYykLBNsZEnG2D9G/X/+7D" crossorigin="anonymous"></script> <!-- Custom styles for this template --> <link href="https://fonts.googleapis.com/css?family=Playfair+Display:700,900&display=swap" rel="stylesheet"> <!-- Font Awesome --> <!--<script src="https://kit.fontawesome.com/a2918372b5.js" crossorigin="anonymous"></script>--> <link href="//use.fontawesome.com/releases/v5.13.0/css/all.css?id=948165860" rel="stylesheet" type="text/css" /> <link href="https://arula.imtlazarus.com//css/g_common.css?id=" rel="stylesheet"> <!-- Google Fonts --> <link rel="preconnect" href="https://fonts.googleapis.com"> <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin> <!-- Lato & Roboto Font --> <link href="https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;0,900;1,100;1,300;1,400;1,700;1,900&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap" rel="stylesheet"> <!-- My custom css --> <link href="https://arula.imtlazarus.com//css/access_denied.css?id=" rel="stylesheet"> </head> <body> <div id="top_bar" class="header-nav sticky-top navgar-light bg-white"> <div id="logos"> <img src="/lazarus/img/client/1_logo.png?id="403225 /> </div> </div> <main role="main" id="main" class="container"> <div id="access_denied">ACCESS DENIED</div> <div id="info_bloqueo"> <div class="flip-card-container-permanent"> <div class="flip-card"> <div class="card-front"> <!-- sÃmbolo de prohibido grande --> <div id="forbidden_sign"> <i class="fas fa-times"></i> </div> </div> <div class="card-back"> <div> <i id="forbidden_sign_timer" class="fas fa-times"></i> </div> <div> <i class="fas fa-hourglass-half"></i> <b><span id="timer">99:99:99</span></b> </div> </div> </div> </div> <!-- /flip-card-container --> <div> <p>For security reasons the page has been blocked: <strong></strong></p> <br /> <div class="bloqueo warning"> <h4>You do not have permission to access the requested page</h4> <b><p style="font-size: 16px;">Security established from the educational center (24 hours)</p></b> </div> </div> <br /> <br /> <div> If you think that is an error, send a request to the administrator </div> <br /> <br /> </div><!-- fin pagina_bloqueo !--> </div> </main> <div id="waves_container"> <!--Waves Container--> <div> <svg class="waves" xmlns="http://www.w3.org/2000/svgFound 2024-11-20 by HttpPluginCreate report
-
Open service 217.182.71.146:9004
2024-11-20 08:04
HTTP/1.1 404 Not Found Content-Type: text/plain; charset=utf-8 Date: Wed, 20 Nov 2024 08:04:34 GMT Content-Length: 19 Connection: close 404 page not found
Found 2024-11-20 by HttpPluginCreate report
*.imtlazarus.comimtlazarus.com
CN:
*.imtlazarus.com
Not before:
2024-08-03 00:00
Not after:
2025-09-03 23:59
Domain summary
No record