Host 95.154.235.20
United Kingdom
Iomart Cloud Services Limited
-
CheckMK monitoring endpoint publicly available
An open CheckMK agent is publicly available.
This could leak sensitive information such as :
- Process list ( maybe credentials )
- Network interfaces
- Running services
- Firewall rules
- Internal OS configuration
https://docs.checkmk.com/latest/en/wato_monitoringagents.html
First seen 2022-06-17 22:12
Last seen 2024-12-21 22:06
Open for 917 days-
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501fb434dadFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:53:02/1482-06:53:32,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1482-06:53:32,2) [kthreadd] (root,0,0,00:00:00/1482-06:53:32,4) [kworker/0:0H] (root,0,0,00:16:02/1482-06:53:32,6) [ksoftirqd/0] (root,0,0,00:01:18/1482-06:53:32,7) [migration/0] (root,0,0,00:00:00/1482-06:53:32,8) [rcu_bh] (root,0,0,19:15:28/1482-06:53:32,9) [rcu_sched] (root,0,0,00:00:00/1482-06:53:32,10) [lru-add-drain] (root,0,0,00:06:32/1482-06:53:32,11) [watchdog/0] (root,0,0,00:06:35/1482-06:53:32,12) [watchdog/1] (root,0,0,00:01:16/1482-06:53:32,13) [migration/1] (root,0,0,00:13:37/1482-06:53:32,14) [ksoftirqd/1] (root,0,0,00:00:00/1482-06:53:32,16) [kworker/1:0H] (root,0,0,00:05:51/1482-06:53:32,17) [watchdog/2] (root,0,0,00:01:16/1482-06:53:32,18) [migration/2] (root,0,0,00:13:28/1482-06:53:32,19) [ksoftirqd/2] (root,0,0,00:00:00/1482-06:53:32,21) [kworker/2:0H] (root,0,0,00:05:52/1482-06:53:32,22) [watchdog/3] (root,0,0,00:01:17/1482-06:53:32,23) [migration/3] (root,0,0,00:14:05/1482-06:53:32,24) [ksoftirqd/3] (root,0,0,00:00:00/1482-06:53:32,26) [kworker/3:0H] (root,0,0,00:05:30/1482-06:53:32,27) [watchdog/4] (root,0,0,00:11:32/1482-06:53:32,28) [migration/4] (root,0,0,00:49:00/1482-06:53:32,29) [ksoftirqd/4] (root,0,0,00:00:00/1482-06:53:32,31) [kworker/4:0H] (root,0,0,00:05:44/1482-06:53:32,32) [watchdog/5] (root,0,0,00:11:19/1482-06:53:32,33) [migration/5] (root,0,0,00:55:09/1482-06:53:32,34) [ksoftirqd/5] (root,0,0,00:00:00/1482-06:53:32,36) [kworker/5:0H] (root,0,0,00:05:35/1482-06:53:32,37) [watchdog/6] (root,0,0,00:11:01/1482-06:53:32,38) [migration/6] (root,0,0,00:55:45/1482-06:53:32,39) [ksoftirqd/6] (root,0,0,00:00:00/1482-06:53:32,41) [kworker/6:0H] (root,0,0,00:06:02/1482-06:53:32,42) [watchdog/7] (root,0,0,00:11:20/1482-06:53:32,43) [migration/7] (root,0,0,01:04:48/1482-06:53:32,44) [ksoftirqd/7] (root,0,0,00:00:00/1482-06:53:32,46) [kworker/7:0H] (root,0,0,00:00:00/1482-06:53:32,48) [kdevtmpfs] (root,0,0,00:00:00/1482-06:53:32,49) [netns] (root,0,0,00:00:44/1482-06:53:32,50) [khungtaskd] (root,0,0,00:00:00/1482-06:53:32,51) [writeback] (root,0,0,00:00:00/1482-06:53:32,52) [kintegrityd] (root,0,0,00:00:00/1482-06:53:32,53) [bioset] (root,0,0,00:00:00/1482-06:53:32,54) [bioset] (root,0,0,00:00:00/1482-06:53:32,55) [bioset] (root,0,0,00:00:00/1482-06:53:32,56) [kblockd] (root,0,0,00:00:00/1482-06:53:32,57) [md] (root,0,0,00:00:00/1482-06:53:32,58) [edac-poller] (root,0,0,00:00:00/1482-06:53:32,59) [watchdogd] (root,0,0,00:00:00/1482-06:53:32,66) [kswapd0] (root,0,0,00:00:00/1482-06:53:32,67) [ksmd] (root,0,0,00:08:41/1482-06:53:32,68) [khugepaged] (root,0,0,00:00:00/1482-06:53:32,69) [crypto] (root,0,0,00:00:00/1482-06:53:32,77) [kthrotld] (root,0,0,00:00:00/1482-06:53:32,79) [kmpath_rdacd] (root,0,0,00:00:00/1482-06:53:32,80) [kaluad] (root,0,0,00:00:00/1482-06:53:31,82) [kpsmoused] (root,0,0,00:00:00/1482-06:53:31,89) [ipv6_addrconf] (root,0,0,00:00:00/1482-06:53:31,102) [deferwq] (root,0,0,00:13:55/1482-06:53:31,139) [kauditd] (root,0,0,00:00:00/1482-06:53:30,281) [scsi_eh_0] (root,0,0,00:00:00/1482-06:53:30,282) [scsi_tmf_0] (root,0,0,00:00:00/1482-06:53:30,291) [ixgbe] (root,0,0,00:00:00/1482-06:53:30,304) [poll_megasas0_s] (root,0,0,00:00:00/1482-06:53:30,306) [ttm_swap] (root,0,0,06:04:47/1482-06:53:29,337) [jbd2/sda3-8] (root,0,0,00:00:00/1482-06:53:29,338) [ext4-rsv-conver] (root,149788,91976,02:31:44/1482-06:53:28,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:55/1482-05:38:25,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28508,1-08:23:31/1482-05:38:25,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11088,13:43:21/1482-05:38:11,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1482-06:53:28,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1482-06:53:28,527) [jbd2/sda2-8] (root,0,0,00:00:00/1482-06:53:28,528) [ext4-rsv-conver] (root,55532,1060,00:30:38/1482-06:53:28,573) /sbin/auditd (polkitd,613004,14012,02:48:30/1482-06:53:28,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,04:02:13/1482-06:53:28,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:20:13/1482-06:53:28,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:22:51/1482-06:53:28,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:34:02/1482-06:53:28,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1482-05:38:01,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1482-05:38:00,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,315468,2-00:35:45/1482-05:38:00,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:42/1482-06:53:25,930) [kworker/3:1H] (root,112900,4352,00:00:04/1482-06:53:19,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:38/1482-06:53:19,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:40/1482-06:53:19,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1482-06:53:18,1643) [kworker/6:1H] (root,0,0,00:00:40/1482-06:53:08,1646) [kworker/1:1H] (root,0,0,00:00:39/1482-06:52:44,1673) [kworker/0:1H] (root,0,0,00:00:48/1482-06:52:10,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1482-06:51:05,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/28:47,1936) [kworker/u16:0] (postfix,89848,4084,00:00:00/01:22:19,3932) pickup -l -t unix -u (apache,378176,12932,00:00:02/6-18:32:03,3950) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/07:03:25,6366) [kworker/1:2] (root,0,0,00:00:00/20:47,6383) [kworker/u16:1] (root,574280,19564,02:55:25/1482-06:50:54,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:03/3-22:18:23,7540) [kworker/5:1] (root,740476,52100,02:25:54/1482-06:50:54,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/17:25,8117) [kworker/2:2] (root,110204,848,00:00:00/347-12:40:50,8910) /sbin/agetty --noclear tty1 linux (apache,378180,12944,00:00:01/4-20:17:03,10964) /usr/sbin/httpd -DFOREGROUND (apache,378176,12924,00:00:01/4-20:17:02,10966) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/07:52:26,11187) [kworker/4:0] (root,0,0,00:00:00/03:01:24,13021) [kworker/4:1] (root,0,0,00:00:00/08:25,13203) [kworker/1:1] (root,0,0,00:00:00/07:25,13721) [kworker/0:0] (root,0,0,00:00:15/1482-06:50:46,13987) [kworker/7:1H] (root,0,0,00:00:09/1482-06:45:41,14018) [kworker/4:1H] (root,0,0,00:00:00/06:25,14345) [kworker/3:2] (root,0,0,00:00:00/05:25,14871) [kworker/5:2] (root,0,0,00:00:43/1482-06:50:38,14909) [kworker/2:1H] (root,0,0,00:00:00/04:52:25,15304) [kworker/2:0] (onapp,98460,1984,00:00:01/22:06:25,16338) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368180,97344,00:00:10/22:06:25,16339) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,378180,13348,00:00:01/5-02:49:29,16608) /usr/sbin/httpd -DFOREGROUND (onapp,368168,97288,00:00:10/22:05:25,16880) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/01:47,17050) [kworker/u16:2] (onapp,283912,11652,00:00:00/22:04:32,17420) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/00:26,17751) [kworker/7:2] (root,115412,1648,00:00:00/00:00,18164) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,18183) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,18184) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (ntp,25732,2012,00:22:25/1482-06:20:36,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19256,01:13:26/1482-06:20:16,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,19:09:02/1482-06:18:57,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:56/1482-06:18:57,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:18/1482-06:15:46,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378308,13352,00:00:01/5-05:36:42,19738) /usr/sbin/httpd -DFOREGROUND (apache,378192,13348,00:00:02/6-15:11:15,19931) /usr/sbin/httpd -DFOREGROUND (apache,378176,12932,00:00:02/6-15:10:53,20099) /usr/sbin/httpd -DFOREGROUND (onapp,911892,41524,04:31:37/468-02:33:50,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:22:26/468-02:33:50,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/1-01:40:23,25555) [kworker/3:1] (apache,278296,9096,00:00:07/6-18:50:25,26009) /usr/sbin/httpd -DFOREGROUND (apache,378316,13364,00:00:02/6-18:50:25,26011) /usr/sbin/httpd -DFOREGROUND (apache,378180,12932,00:00:02/6-18:50:25,26014) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/40:25,27635) [kworker/7:1] (root,0,0,00:00:02/2-13:06:25,27650) [kworker/6:1] (root,0,0,00:00:00/37:25,29262) [kworker/6:2] (root,0,0,00:00:00/11:08:25,30259) [kworker/0:2] (onapp,1516408,10248,01:31:47/57-08:28:42,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:01/1-14:56:25,31176) [kworker/7:0] (apache,378180,12908,00:00:01/3-11:02:57,31871) /usr/sbin/httpd -DFOREGROUND Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-21 22:06 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501633fd24eFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:52:04/1480-09:43:55,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1480-09:43:55,2) [kthreadd] (root,0,0,00:00:00/1480-09:43:55,4) [kworker/0:0H] (root,0,0,00:16:01/1480-09:43:55,6) [ksoftirqd/0] (root,0,0,00:01:18/1480-09:43:55,7) [migration/0] (root,0,0,00:00:00/1480-09:43:55,8) [rcu_bh] (root,0,0,19:14:19/1480-09:43:55,9) [rcu_sched] (root,0,0,00:00:00/1480-09:43:55,10) [lru-add-drain] (root,0,0,00:06:32/1480-09:43:55,11) [watchdog/0] (root,0,0,00:06:34/1480-09:43:55,12) [watchdog/1] (root,0,0,00:01:16/1480-09:43:55,13) [migration/1] (root,0,0,00:13:36/1480-09:43:55,14) [ksoftirqd/1] (root,0,0,00:00:00/1480-09:43:55,16) [kworker/1:0H] (root,0,0,00:05:51/1480-09:43:55,17) [watchdog/2] (root,0,0,00:01:16/1480-09:43:55,18) [migration/2] (root,0,0,00:13:27/1480-09:43:55,19) [ksoftirqd/2] (root,0,0,00:00:00/1480-09:43:55,21) [kworker/2:0H] (root,0,0,00:05:52/1480-09:43:55,22) [watchdog/3] (root,0,0,00:01:17/1480-09:43:55,23) [migration/3] (root,0,0,00:14:04/1480-09:43:55,24) [ksoftirqd/3] (root,0,0,00:00:00/1480-09:43:55,26) [kworker/3:0H] (root,0,0,00:05:30/1480-09:43:55,27) [watchdog/4] (root,0,0,00:11:32/1480-09:43:55,28) [migration/4] (root,0,0,00:48:57/1480-09:43:55,29) [ksoftirqd/4] (root,0,0,00:00:00/1480-09:43:55,31) [kworker/4:0H] (root,0,0,00:05:44/1480-09:43:55,32) [watchdog/5] (root,0,0,00:11:18/1480-09:43:55,33) [migration/5] (root,0,0,00:55:06/1480-09:43:55,34) [ksoftirqd/5] (root,0,0,00:00:00/1480-09:43:55,36) [kworker/5:0H] (root,0,0,00:05:34/1480-09:43:55,37) [watchdog/6] (root,0,0,00:11:00/1480-09:43:55,38) [migration/6] (root,0,0,00:55:42/1480-09:43:55,39) [ksoftirqd/6] (root,0,0,00:00:00/1480-09:43:55,41) [kworker/6:0H] (root,0,0,00:06:01/1480-09:43:55,42) [watchdog/7] (root,0,0,00:11:19/1480-09:43:55,43) [migration/7] (root,0,0,01:04:44/1480-09:43:55,44) [ksoftirqd/7] (root,0,0,00:00:00/1480-09:43:55,46) [kworker/7:0H] (root,0,0,00:00:00/1480-09:43:55,48) [kdevtmpfs] (root,0,0,00:00:00/1480-09:43:55,49) [netns] (root,0,0,00:00:43/1480-09:43:55,50) [khungtaskd] (root,0,0,00:00:00/1480-09:43:55,51) [writeback] (root,0,0,00:00:00/1480-09:43:55,52) [kintegrityd] (root,0,0,00:00:00/1480-09:43:55,53) [bioset] (root,0,0,00:00:00/1480-09:43:55,54) [bioset] (root,0,0,00:00:00/1480-09:43:55,55) [bioset] (root,0,0,00:00:00/1480-09:43:55,56) [kblockd] (root,0,0,00:00:00/1480-09:43:55,57) [md] (root,0,0,00:00:00/1480-09:43:55,58) [edac-poller] (root,0,0,00:00:00/1480-09:43:55,59) [watchdogd] (root,0,0,00:00:00/1480-09:43:55,66) [kswapd0] (root,0,0,00:00:00/1480-09:43:55,67) [ksmd] (root,0,0,00:08:40/1480-09:43:55,68) [khugepaged] (root,0,0,00:00:00/1480-09:43:55,69) [crypto] (root,0,0,00:00:00/1480-09:43:55,77) [kthrotld] (root,0,0,00:00:00/1480-09:43:55,79) [kmpath_rdacd] (root,0,0,00:00:00/1480-09:43:55,80) [kaluad] (root,0,0,00:00:00/1480-09:43:54,82) [kpsmoused] (root,0,0,00:00:00/1480-09:43:54,89) [ipv6_addrconf] (root,0,0,00:00:00/1480-09:43:54,102) [deferwq] (root,0,0,00:13:54/1480-09:43:54,139) [kauditd] (root,0,0,00:00:00/1480-09:43:53,281) [scsi_eh_0] (root,0,0,00:00:00/1480-09:43:53,282) [scsi_tmf_0] (root,0,0,00:00:00/1480-09:43:53,291) [ixgbe] (root,0,0,00:00:00/1480-09:43:53,304) [poll_megasas0_s] (root,0,0,00:00:00/1480-09:43:53,306) [ttm_swap] (root,0,0,06:04:39/1480-09:43:52,337) [jbd2/sda3-8] (root,0,0,00:00:00/1480-09:43:52,338) [ext4-rsv-conver] (root,63636,23168,02:31:31/1480-09:43:51,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:52/1480-08:28:48,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28504,1-08:21:01/1480-08:28:48,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11084,13:42:18/1480-08:28:34,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1480-09:43:51,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1480-09:43:51,527) [jbd2/sda2-8] (root,0,0,00:00:00/1480-09:43:51,528) [ext4-rsv-conver] (root,55532,1060,00:30:36/1480-09:43:51,573) /sbin/auditd (polkitd,613004,14012,02:48:17/1480-09:43:51,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,04:01:53/1480-09:43:51,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:19:57/1480-09:43:51,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:22:15/1480-09:43:51,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:59/1480-09:43:51,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1480-08:28:24,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1480-08:28:23,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,315468,2-00:31:35/1480-08:28:23,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:42/1480-09:43:48,930) [kworker/3:1H] (root,0,0,00:00:00/24:49,1094) [kworker/6:2] (root,112900,4352,00:00:04/1480-09:43:42,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:37/1480-09:43:42,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:40/1480-09:43:42,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1480-09:43:41,1643) [kworker/6:1H] (root,0,0,00:00:40/1480-09:43:31,1646) [kworker/1:1H] (root,0,0,00:00:39/1480-09:43:07,1673) [kworker/0:1H] (root,0,0,00:00:48/1480-09:42:33,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1480-09:41:28,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/22:10,2654) [kworker/u16:0] (root,0,0,00:00:01/1-07:04:48,2671) [kworker/7:1] (root,0,0,00:00:00/19:48,3852) [kworker/4:1] (root,0,0,00:00:00/02:14:48,3874) [kworker/3:1] (apache,378176,12932,00:00:01/4-21:22:26,3950) /usr/sbin/httpd -DFOREGROUND (postfix,89848,4084,00:00:00/01:14:28,5467) pickup -l -t unix -u (root,0,0,00:00:00/16:48,5577) [kworker/7:0] (root,0,0,00:00:00/15:04,6621) [kworker/u16:1] (root,574280,19564,02:55:12/1480-09:41:17,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:01/2-01:08:46,7540) [kworker/5:1] (root,734372,19460,02:25:43/1480-09:41:17,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/345-15:31:13,8910) /sbin/agetty --noclear tty1 linux (apache,378180,12932,00:00:00/2-23:07:26,10964) /usr/sbin/httpd -DFOREGROUND (apache,378176,12924,00:00:00/2-23:07:25,10966) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/15:26:48,12015) [kworker/3:0] (root,0,0,00:00:00/04:48,12284) [kworker/5:0] (root,0,0,00:00:00/04:09,12730) [kworker/u16:2] (root,0,0,00:00:00/02:48,13398) [kworker/7:2] (root,0,0,00:00:15/1480-09:41:09,13987) [kworker/7:1H] (root,0,0,00:00:09/1480-09:36:04,14018) [kworker/4:1H] (root,0,0,00:00:43/1480-09:41:01,14909) [kworker/2:1H] (root,115412,1652,00:00:00/00:00,15021) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,15040) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,15041) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/56:48,15340) [kworker/1:1] (onapp,98460,1984,00:00:00/56:48,15368) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363084,91944,00:00:00/56:48,15369) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363184,92032,00:00:01/55:48,15911) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11636,00:00:00/54:55,16454) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (apache,378180,13344,00:00:01/3-05:39:52,16608) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/15:18:38,16684) [kworker/0:1] (ntp,25732,2012,00:22:23/1480-09:10:59,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19256,01:13:21/1480-09:10:39,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,19:07:35/1480-09:09:20,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:51/1480-09:09:20,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:16/1480-09:06:09,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378308,13340,00:00:01/3-08:27:05,19738) /usr/sbin/httpd -DFOREGROUND (apache,378192,13348,00:00:01/4-18:01:38,19931) /usr/sbin/httpd -DFOREGROUND (apache,378176,12928,00:00:01/4-18:01:16,20099) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/46:49,21105) [kworker/0:0] (onapp,911892,41524,04:30:53/466-05:24:13,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:22:20/466-05:24:13,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/10:14:49,25442) [kworker/2:1] (apache,278296,9096,00:00:05/4-21:40:48,26009) /usr/sbin/httpd -DFOREGROUND (apache,378316,13364,00:00:01/4-21:40:48,26011) /usr/sbin/httpd -DFOREGROUND (apache,378180,12932,00:00:01/4-21:40:48,26014) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/17:53:48,26687) [kworker/1:2] (root,0,0,00:00:00/15:56:48,27650) [kworker/6:1] (root,0,0,00:00:00/01:26:49,30857) [kworker/5:2] (onapp,1516404,10164,01:28:52/55-11:19:05,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (apache,378180,12872,00:00:00/1-13:53:20,31871) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/26:48,32340) [kworker/2:2] (root,0,0,00:00:00/04:16:48,32422) [kworker/4:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-20 00:56 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735017ee6d200Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:51:04/1478-10:23:39,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1478-10:23:39,2) [kthreadd] (root,0,0,00:00:00/1478-10:23:39,4) [kworker/0:0H] (root,0,0,00:15:59/1478-10:23:39,6) [ksoftirqd/0] (root,0,0,00:01:17/1478-10:23:39,7) [migration/0] (root,0,0,00:00:00/1478-10:23:39,8) [rcu_bh] (root,0,0,19:12:59/1478-10:23:39,9) [rcu_sched] (root,0,0,00:00:00/1478-10:23:39,10) [lru-add-drain] (root,0,0,00:06:31/1478-10:23:39,11) [watchdog/0] (root,0,0,00:06:34/1478-10:23:39,12) [watchdog/1] (root,0,0,00:01:16/1478-10:23:39,13) [migration/1] (root,0,0,00:13:35/1478-10:23:39,14) [ksoftirqd/1] (root,0,0,00:00:00/1478-10:23:39,16) [kworker/1:0H] (root,0,0,00:05:50/1478-10:23:39,17) [watchdog/2] (root,0,0,00:01:16/1478-10:23:39,18) [migration/2] (root,0,0,00:13:26/1478-10:23:39,19) [ksoftirqd/2] (root,0,0,00:00:00/1478-10:23:39,21) [kworker/2:0H] (root,0,0,00:05:52/1478-10:23:39,22) [watchdog/3] (root,0,0,00:01:17/1478-10:23:39,23) [migration/3] (root,0,0,00:14:03/1478-10:23:39,24) [ksoftirqd/3] (root,0,0,00:00:00/1478-10:23:39,26) [kworker/3:0H] (root,0,0,00:05:29/1478-10:23:39,27) [watchdog/4] (root,0,0,00:11:31/1478-10:23:39,28) [migration/4] (root,0,0,00:48:54/1478-10:23:39,29) [ksoftirqd/4] (root,0,0,00:00:00/1478-10:23:39,31) [kworker/4:0H] (root,0,0,00:05:43/1478-10:23:39,32) [watchdog/5] (root,0,0,00:11:17/1478-10:23:39,33) [migration/5] (root,0,0,00:55:03/1478-10:23:39,34) [ksoftirqd/5] (root,0,0,00:00:00/1478-10:23:39,36) [kworker/5:0H] (root,0,0,00:05:34/1478-10:23:39,37) [watchdog/6] (root,0,0,00:11:00/1478-10:23:39,38) [migration/6] (root,0,0,00:55:39/1478-10:23:39,39) [ksoftirqd/6] (root,0,0,00:00:00/1478-10:23:39,41) [kworker/6:0H] (root,0,0,00:06:01/1478-10:23:39,42) [watchdog/7] (root,0,0,00:11:18/1478-10:23:39,43) [migration/7] (root,0,0,01:04:40/1478-10:23:39,44) [ksoftirqd/7] (root,0,0,00:00:00/1478-10:23:39,46) [kworker/7:0H] (root,0,0,00:00:00/1478-10:23:39,48) [kdevtmpfs] (root,0,0,00:00:00/1478-10:23:39,49) [netns] (root,0,0,00:00:43/1478-10:23:39,50) [khungtaskd] (root,0,0,00:00:00/1478-10:23:39,51) [writeback] (root,0,0,00:00:00/1478-10:23:39,52) [kintegrityd] (root,0,0,00:00:00/1478-10:23:39,53) [bioset] (root,0,0,00:00:00/1478-10:23:39,54) [bioset] (root,0,0,00:00:00/1478-10:23:39,55) [bioset] (root,0,0,00:00:00/1478-10:23:39,56) [kblockd] (root,0,0,00:00:00/1478-10:23:39,57) [md] (root,0,0,00:00:00/1478-10:23:39,58) [edac-poller] (root,0,0,00:00:00/1478-10:23:39,59) [watchdogd] (root,0,0,00:00:00/1478-10:23:39,66) [kswapd0] (root,0,0,00:00:00/1478-10:23:39,67) [ksmd] (root,0,0,00:08:39/1478-10:23:39,68) [khugepaged] (root,0,0,00:00:00/1478-10:23:39,69) [crypto] (root,0,0,00:00:00/1478-10:23:39,77) [kthrotld] (root,0,0,00:00:00/1478-10:23:39,79) [kmpath_rdacd] (root,0,0,00:00:00/1478-10:23:39,80) [kaluad] (root,0,0,00:00:00/1478-10:23:38,82) [kpsmoused] (root,0,0,00:00:00/1478-10:23:38,89) [ipv6_addrconf] (root,0,0,00:00:00/1478-10:23:38,102) [deferwq] (root,0,0,00:13:53/1478-10:23:38,139) [kauditd] (root,0,0,00:00:00/1478-10:23:37,281) [scsi_eh_0] (root,0,0,00:00:00/1478-10:23:37,282) [scsi_tmf_0] (root,0,0,00:00:00/1478-10:23:37,291) [ixgbe] (root,0,0,00:00:00/1478-10:23:37,304) [poll_megasas0_s] (root,0,0,00:00:00/1478-10:23:37,306) [ttm_swap] (root,0,0,06:04:30/1478-10:23:36,337) [jbd2/sda3-8] (root,0,0,00:00:00/1478-10:23:36,338) [ext4-rsv-conver] (root,80020,41280,02:31:19/1478-10:23:35,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:50/1478-09:08:32,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28500,1-08:18:24/1478-09:08:32,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11084,13:41:12/1478-09:08:18,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1478-10:23:35,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1478-10:23:35,527) [jbd2/sda2-8] (root,0,0,00:00:00/1478-10:23:35,528) [ext4-rsv-conver] (root,55532,1060,00:30:33/1478-10:23:35,573) /sbin/auditd (polkitd,613004,14012,02:48:03/1478-10:23:35,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,04:01:34/1478-10:23:35,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:19:41/1478-10:23:35,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:21:39/1478-10:23:35,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:56/1478-10:23:35,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1478-09:08:08,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1478-09:08:07,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,321308,2-00:27:12/1478-09:08:07,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:00/05:37,878) [kworker/u16:0] (root,0,0,00:00:42/1478-10:23:32,930) [kworker/3:1H] (root,112900,4352,00:00:04/1478-10:23:26,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/04:33,1448) [kworker/3:1] (root,89708,2212,00:08:37/1478-10:23:26,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:40/1478-10:23:26,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1478-10:23:25,1643) [kworker/6:1H] (root,0,0,00:00:40/1478-10:23:15,1646) [kworker/1:1H] (root,0,0,00:00:39/1478-10:22:51,1673) [kworker/0:1H] (root,0,0,00:00:48/1478-10:22:17,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1478-10:21:12,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/03:32,2049) [kworker/0:2] (apache,378176,12900,00:00:00/2-22:02:10,3950) /usr/sbin/httpd -DFOREGROUND (root,115412,1652,00:00:00/00:00,4186) /bin/bash /usr/bin/check_mk_agent (root,51732,1684,00:00:00/00:00,4206) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,4207) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/54:32,5659) [kworker/7:2] (root,0,0,00:00:04/3-18:06:33,6591) [kworker/7:0] (root,574280,19564,02:54:58/1478-10:21:01,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:00/01:48:30,7540) [kworker/5:1] (root,737196,29332,02:25:31/1478-10:21:01,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/343-16:10:57,8910) /sbin/agetty --noclear tty1 linux (apache,378180,12824,00:00:00/23:47:10,10964) /usr/sbin/httpd -DFOREGROUND (apache,378176,12800,00:00:00/23:47:09,10966) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/42:32,12369) [kworker/2:0] (root,0,0,00:00:02/1-23:42:33,12852) [kworker/6:0] (root,0,0,00:00:00/16:59:32,13514) [kworker/3:0] (root,0,0,00:00:15/1478-10:20:53,13987) [kworker/7:1H] (root,0,0,00:00:09/1478-10:15:48,14018) [kworker/4:1H] (root,0,0,00:00:00/39:33,14094) [kworker/1:1] (onapp,98460,1984,00:00:00/01:36:32,14330) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363232,92196,00:00:01/01:36:32,14331) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:43/1478-10:20:45,14909) [kworker/2:1H] (onapp,363232,92384,00:00:01/01:35:32,14948) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11652,00:00:00/01:34:46,15388) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:03/2-05:22:33,15741) [kworker/4:0] (postfix,89848,4080,00:00:00/36:01,16217) pickup -l -t unix -u (apache,378180,13248,00:00:00/1-06:19:36,16608) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:32:33,16630) [kworker/0:1] (ntp,25732,2012,00:22:21/1478-09:50:43,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19256,01:13:15/1478-09:50:23,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,19:06:02/1478-09:49:04,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:45/1478-09:49:04,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:14/1478-09:45:53,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378308,13260,00:00:00/1-09:06:49,19738) /usr/sbin/httpd -DFOREGROUND (apache,378192,13328,00:00:01/2-18:41:22,19931) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:26:31,20081) [kworker/1:2] (apache,378176,12872,00:00:00/2-18:41:01,20097) /usr/sbin/httpd -DFOREGROUND (apache,378176,12872,00:00:00/2-18:41:00,20099) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/03:18:31,21754) [kworker/0:0] (root,0,0,00:00:00/25:32,22061) [kworker/2:2] (root,0,0,00:00:00/23:30,23186) [kworker/3:2] (onapp,911892,41524,04:30:07/464-06:03:57,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:22:15/464-06:03:57,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:03/3-03:09:32,25064) [kworker/5:2] (apache,278296,9096,00:00:03/2-22:20:32,26009) /usr/sbin/httpd -DFOREGROUND (apache,378316,13340,00:00:01/2-22:20:32,26011) /usr/sbin/httpd -DFOREGROUND (apache,378180,12884,00:00:01/2-22:20:32,26014) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/13:26,28993) [kworker/4:2] (onapp,1516232,10140,01:25:46/53-11:58:49,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/02:04:31,30982) [kworker/u16:2] (root,0,0,00:00:00/06:33,32696) [kworker/6:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-18 01:36 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735019f268b1fFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:50:00/1476-08:38:07,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1476-08:38:07,2) [kthreadd] (root,0,0,00:00:00/1476-08:38:07,4) [kworker/0:0H] (root,0,0,00:15:58/1476-08:38:07,6) [ksoftirqd/0] (root,0,0,00:01:17/1476-08:38:07,7) [migration/0] (root,0,0,00:00:00/1476-08:38:07,8) [rcu_bh] (root,0,0,19:11:34/1476-08:38:07,9) [rcu_sched] (root,0,0,00:00:00/1476-08:38:07,10) [lru-add-drain] (root,0,0,00:06:30/1476-08:38:07,11) [watchdog/0] (root,0,0,00:06:33/1476-08:38:07,12) [watchdog/1] (root,0,0,00:01:16/1476-08:38:07,13) [migration/1] (root,0,0,00:13:34/1476-08:38:07,14) [ksoftirqd/1] (root,0,0,00:00:00/1476-08:38:07,16) [kworker/1:0H] (root,0,0,00:05:50/1476-08:38:07,17) [watchdog/2] (root,0,0,00:01:16/1476-08:38:07,18) [migration/2] (root,0,0,00:13:25/1476-08:38:07,19) [ksoftirqd/2] (root,0,0,00:00:00/1476-08:38:07,21) [kworker/2:0H] (root,0,0,00:05:51/1476-08:38:07,22) [watchdog/3] (root,0,0,00:01:17/1476-08:38:07,23) [migration/3] (root,0,0,00:14:01/1476-08:38:07,24) [ksoftirqd/3] (root,0,0,00:00:00/1476-08:38:07,26) [kworker/3:0H] (root,0,0,00:05:29/1476-08:38:07,27) [watchdog/4] (root,0,0,00:11:30/1476-08:38:07,28) [migration/4] (root,0,0,00:48:51/1476-08:38:07,29) [ksoftirqd/4] (root,0,0,00:00:00/1476-08:38:07,31) [kworker/4:0H] (root,0,0,00:05:43/1476-08:38:07,32) [watchdog/5] (root,0,0,00:11:16/1476-08:38:07,33) [migration/5] (root,0,0,00:54:59/1476-08:38:07,34) [ksoftirqd/5] (root,0,0,00:00:00/1476-08:38:07,36) [kworker/5:0H] (root,0,0,00:05:33/1476-08:38:07,37) [watchdog/6] (root,0,0,00:10:59/1476-08:38:07,38) [migration/6] (root,0,0,00:55:35/1476-08:38:07,39) [ksoftirqd/6] (root,0,0,00:00:00/1476-08:38:07,41) [kworker/6:0H] (root,0,0,00:06:00/1476-08:38:07,42) [watchdog/7] (root,0,0,00:11:17/1476-08:38:07,43) [migration/7] (root,0,0,01:04:35/1476-08:38:07,44) [ksoftirqd/7] (root,0,0,00:00:00/1476-08:38:07,46) [kworker/7:0H] (root,0,0,00:00:00/1476-08:38:07,48) [kdevtmpfs] (root,0,0,00:00:00/1476-08:38:07,49) [netns] (root,0,0,00:00:43/1476-08:38:07,50) [khungtaskd] (root,0,0,00:00:00/1476-08:38:07,51) [writeback] (root,0,0,00:00:00/1476-08:38:07,52) [kintegrityd] (root,0,0,00:00:00/1476-08:38:07,53) [bioset] (root,0,0,00:00:00/1476-08:38:07,54) [bioset] (root,0,0,00:00:00/1476-08:38:07,55) [bioset] (root,0,0,00:00:00/1476-08:38:07,56) [kblockd] (root,0,0,00:00:00/1476-08:38:07,57) [md] (root,0,0,00:00:00/1476-08:38:07,58) [edac-poller] (root,0,0,00:00:00/1476-08:38:07,59) [watchdogd] (root,0,0,00:00:00/1476-08:38:07,66) [kswapd0] (root,0,0,00:00:00/1476-08:38:07,67) [ksmd] (root,0,0,00:08:39/1476-08:38:07,68) [khugepaged] (root,0,0,00:00:00/1476-08:38:07,69) [crypto] (root,0,0,00:00:00/1476-08:38:07,77) [kthrotld] (root,0,0,00:00:00/1476-08:38:07,79) [kmpath_rdacd] (root,0,0,00:00:00/1476-08:38:07,80) [kaluad] (root,0,0,00:00:00/1476-08:38:06,82) [kpsmoused] (root,0,0,00:00:00/1476-08:38:06,89) [ipv6_addrconf] (root,0,0,00:00:00/1476-08:38:06,102) [deferwq] (root,0,0,00:13:52/1476-08:38:06,139) [kauditd] (root,0,0,00:00:00/1476-08:38:05,281) [scsi_eh_0] (root,0,0,00:00:00/1476-08:38:05,282) [scsi_tmf_0] (root,0,0,00:00:00/1476-08:38:05,291) [ixgbe] (root,0,0,00:00:00/1476-08:38:05,304) [poll_megasas0_s] (root,0,0,00:00:00/1476-08:38:05,306) [ttm_swap] (root,0,0,06:04:21/1476-08:38:04,337) [jbd2/sda3-8] (root,0,0,00:00:00/1476-08:38:04,338) [ext4-rsv-conver] (root,104596,56240,02:31:07/1476-08:38:03,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:47/1476-07:23:00,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28500,1-08:15:40/1476-07:23:00,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11084,13:40:03/1476-07:22:46,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1476-08:38:03,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1476-08:38:03,527) [jbd2/sda2-8] (root,0,0,00:00:00/1476-08:38:03,528) [ext4-rsv-conver] (root,55532,1060,00:30:31/1476-08:38:03,573) /sbin/auditd (polkitd,613004,14012,02:47:49/1476-08:38:03,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,04:01:13/1476-08:38:03,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:19:24/1476-08:38:03,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:21:02/1476-08:38:03,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:53/1476-08:38:03,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1476-07:22:36,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1476-07:22:35,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,319260,2-00:22:37/1476-07:22:35,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:42/1476-08:38:00,930) [kworker/3:1H] (root,112900,4352,00:00:04/1476-08:37:54,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/09:48:01,1367) [kworker/0:0] (root,89708,2212,00:08:36/1476-08:37:54,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:40/1476-08:37:54,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1476-08:37:53,1643) [kworker/6:1H] (root,0,0,00:00:40/1476-08:37:43,1646) [kworker/1:1H] (root,0,0,00:00:39/1476-08:37:19,1673) [kworker/0:1H] (root,0,0,00:00:48/1476-08:36:45,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1476-08:35:40,1750) /usr/lib/systemd/systemd-udevd (apache,378176,12632,00:00:00/20:16:38,3950) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/04:00,5950) [kworker/7:2] (root,0,0,00:00:01/1-16:21:01,6591) [kworker/7:0] (root,574280,19564,02:54:43/1476-08:35:29,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:00/01:00,7588) [kworker/1:1] (root,740688,37276,02:25:19/1476-08:35:29,7698) /usr/sbin/rsyslogd -n (root,115412,1648,00:00:00/00:00,8280) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,8299) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,8300) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/03:50:04,8378) [kworker/u16:2] (root,110204,848,00:00:00/341-14:25:25,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/01:51:00,10518) [kworker/2:0] (postfix,89848,4084,00:00:00/52:32,11145) pickup -l -t unix -u (root,0,0,00:00:00/51:00,11825) [kworker/5:1] (root,0,0,00:00:00/50:01,12440) [kworker/7:1] (onapp,98460,1980,00:00:01/23:51:00,12611) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368180,97340,00:00:11/23:51:00,12612) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368080,97304,00:00:11/23:50:00,13229) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11652,00:00:00/23:49:02,13703) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:15/1476-08:35:21,13987) [kworker/7:1H] (root,0,0,00:00:09/1476-08:30:16,14018) [kworker/4:1H] (root,0,0,00:00:00/01:43:59,14526) [kworker/3:2] (root,0,0,00:00:43/1476-08:35:13,14909) [kworker/2:1H] (root,0,0,00:00:01/03:38:08,15150) [kworker/u16:0] (root,0,0,00:00:00/03:37:01,15741) [kworker/4:0] (root,0,0,00:00:01/1-20:51:00,16552) [kworker/1:0] (root,0,0,00:00:02/2-16:01:00,17338) [kworker/6:1] (ntp,25732,2012,00:22:20/1476-08:05:11,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19252,01:13:09/1476-08:04:51,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,19:04:25/1476-08:03:32,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:39/1476-08:03:32,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:12/1476-08:00:21,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378192,12788,00:00:00/16:55:50,19931) /usr/sbin/httpd -DFOREGROUND (apache,378176,12736,00:00:00/16:55:29,20097) /usr/sbin/httpd -DFOREGROUND (apache,378176,12556,00:00:00/16:55:28,20099) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/35:56,20613) [kworker/1:2] (root,0,0,00:00:00/33:00,22019) [kworker/6:0] (onapp,911892,43548,04:29:19/462-04:18:25,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:22:09/462-04:18:25,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:01/1-01:24:00,25064) [kworker/5:2] (root,0,0,00:00:00/26:00,25984) [kworker/3:0] (apache,278296,9096,00:00:00/20:35:00,26009) /usr/sbin/httpd -DFOREGROUND (apache,378180,12832,00:00:00/20:35:00,26010) /usr/sbin/httpd -DFOREGROUND (apache,378180,12804,00:00:00/20:35:00,26011) /usr/sbin/httpd -DFOREGROUND (apache,378180,12772,00:00:00/20:35:00,26012) /usr/sbin/httpd -DFOREGROUND (apache,378180,12744,00:00:00/20:35:00,26013) /usr/sbin/httpd -DFOREGROUND (apache,378180,12796,00:00:00/20:35:00,26014) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/08:05:01,26827) [kworker/2:2] (onapp,1516228,10128,01:22:21/51-10:13:17,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/01:14:00,31374) [kworker/4:2] (root,0,0,00:00:00/15:59,31626) [kworker/0:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-15 23:51 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735013f1fd977Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:48:58/1474-08:12:58,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1474-08:12:58,2) [kthreadd] (root,0,0,00:00:00/1474-08:12:58,4) [kworker/0:0H] (root,0,0,00:15:57/1474-08:12:58,6) [ksoftirqd/0] (root,0,0,00:01:17/1474-08:12:58,7) [migration/0] (root,0,0,00:00:00/1474-08:12:58,8) [rcu_bh] (root,0,0,19:10:15/1474-08:12:58,9) [rcu_sched] (root,0,0,00:00:00/1474-08:12:58,10) [lru-add-drain] (root,0,0,00:06:30/1474-08:12:58,11) [watchdog/0] (root,0,0,00:06:33/1474-08:12:58,12) [watchdog/1] (root,0,0,00:01:16/1474-08:12:58,13) [migration/1] (root,0,0,00:13:33/1474-08:12:58,14) [ksoftirqd/1] (root,0,0,00:00:00/1474-08:12:58,16) [kworker/1:0H] (root,0,0,00:05:49/1474-08:12:58,17) [watchdog/2] (root,0,0,00:01:15/1474-08:12:58,18) [migration/2] (root,0,0,00:13:24/1474-08:12:58,19) [ksoftirqd/2] (root,0,0,00:00:00/1474-08:12:58,21) [kworker/2:0H] (root,0,0,00:05:51/1474-08:12:58,22) [watchdog/3] (root,0,0,00:01:16/1474-08:12:58,23) [migration/3] (root,0,0,00:14:00/1474-08:12:58,24) [ksoftirqd/3] (root,0,0,00:00:00/1474-08:12:58,26) [kworker/3:0H] (root,0,0,00:05:28/1474-08:12:58,27) [watchdog/4] (root,0,0,00:11:29/1474-08:12:58,28) [migration/4] (root,0,0,00:48:48/1474-08:12:58,29) [ksoftirqd/4] (root,0,0,00:00:00/1474-08:12:58,31) [kworker/4:0H] (root,0,0,00:05:42/1474-08:12:58,32) [watchdog/5] (root,0,0,00:11:15/1474-08:12:58,33) [migration/5] (root,0,0,00:54:56/1474-08:12:58,34) [ksoftirqd/5] (root,0,0,00:00:00/1474-08:12:58,36) [kworker/5:0H] (root,0,0,00:05:33/1474-08:12:58,37) [watchdog/6] (root,0,0,00:10:58/1474-08:12:58,38) [migration/6] (root,0,0,00:55:32/1474-08:12:58,39) [ksoftirqd/6] (root,0,0,00:00:00/1474-08:12:58,41) [kworker/6:0H] (root,0,0,00:06:00/1474-08:12:58,42) [watchdog/7] (root,0,0,00:11:16/1474-08:12:58,43) [migration/7] (root,0,0,01:04:30/1474-08:12:58,44) [ksoftirqd/7] (root,0,0,00:00:00/1474-08:12:58,46) [kworker/7:0H] (root,0,0,00:00:00/1474-08:12:58,48) [kdevtmpfs] (root,0,0,00:00:00/1474-08:12:58,49) [netns] (root,0,0,00:00:43/1474-08:12:58,50) [khungtaskd] (root,0,0,00:00:00/1474-08:12:58,51) [writeback] (root,0,0,00:00:00/1474-08:12:58,52) [kintegrityd] (root,0,0,00:00:00/1474-08:12:58,53) [bioset] (root,0,0,00:00:00/1474-08:12:58,54) [bioset] (root,0,0,00:00:00/1474-08:12:58,55) [bioset] (root,0,0,00:00:00/1474-08:12:58,56) [kblockd] (root,0,0,00:00:00/1474-08:12:58,57) [md] (root,0,0,00:00:00/1474-08:12:58,58) [edac-poller] (root,0,0,00:00:00/1474-08:12:58,59) [watchdogd] (root,0,0,00:00:00/1474-08:12:58,66) [kswapd0] (root,0,0,00:00:00/1474-08:12:58,67) [ksmd] (root,0,0,00:08:38/1474-08:12:58,68) [khugepaged] (root,0,0,00:00:00/1474-08:12:58,69) [crypto] (root,0,0,00:00:00/1474-08:12:58,77) [kthrotld] (root,0,0,00:00:00/1474-08:12:58,79) [kmpath_rdacd] (root,0,0,00:00:00/1474-08:12:58,80) [kaluad] (root,0,0,00:00:00/1474-08:12:57,82) [kpsmoused] (root,0,0,00:00:00/1474-08:12:57,89) [ipv6_addrconf] (root,0,0,00:00:00/1474-08:12:57,102) [deferwq] (root,0,0,00:13:51/1474-08:12:57,139) [kauditd] (root,0,0,00:00:00/1474-08:12:56,281) [scsi_eh_0] (root,0,0,00:00:00/1474-08:12:56,282) [scsi_tmf_0] (root,0,0,00:00:00/1474-08:12:56,291) [ixgbe] (root,0,0,00:00:00/1474-08:12:56,304) [poll_megasas0_s] (root,0,0,00:00:00/1474-08:12:56,306) [ttm_swap] (root,0,0,06:04:12/1474-08:12:55,337) [jbd2/sda3-8] (root,0,0,00:00:00/1474-08:12:55,338) [ext4-rsv-conver] (root,125208,72620,02:30:54/1474-08:12:54,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:45/1474-06:57:51,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28500,1-08:13:00/1474-06:57:51,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11080,13:38:55/1474-06:57:37,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1474-08:12:54,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1474-08:12:54,527) [jbd2/sda2-8] (root,0,0,00:00:00/1474-08:12:54,528) [ext4-rsv-conver] (root,55532,1060,00:30:28/1474-08:12:54,573) /sbin/auditd (polkitd,613004,14012,02:47:35/1474-08:12:54,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,04:00:53/1474-08:12:54,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:19:07/1474-08:12:54,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:20:24/1474-08:12:54,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:51/1474-08:12:54,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1474-06:57:27,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1474-06:57:26,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,319260,2-00:18:41/1474-06:57:26,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:42/1474-08:12:51,930) [kworker/3:1H] (root,112900,4352,00:00:04/1474-08:12:45,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:35/1474-08:12:45,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:40/1474-08:12:45,1463) qmgr -l -t unix -u (root,0,0,00:00:00/01:39:51,1574) [kworker/5:2] (root,0,0,00:00:14/1474-08:12:44,1643) [kworker/6:1H] (root,0,0,00:00:39/1474-08:12:34,1646) [kworker/1:1H] (root,0,0,00:00:39/1474-08:12:10,1673) [kworker/0:1H] (root,0,0,00:00:48/1474-08:11:36,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1474-08:10:31,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/01:39:23,1842) [kworker/u16:0] (apache,378176,12916,00:00:01/5-19:49:08,3608) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/36:51,4594) [kworker/3:0] (root,0,0,00:00:02/2-03:24:52,6788) [kworker/7:2] (root,574280,19564,02:54:29/1474-08:10:20,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,736700,47416,02:25:07/1474-08:10:20,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/30:53,7901) [kworker/6:2] (root,110204,848,00:00:00/339-14:00:16,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/01:25:51,9408) [kworker/4:0] (root,0,0,00:00:01/16:46:52,9868) [kworker/4:1] (onapp,98460,1980,00:00:01/23:25:51,12167) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368172,97296,00:00:11/23:25:51,12168) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368184,97400,00:00:11/23:24:51,12786) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11652,00:00:00/23:23:40,13328) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/20:51,13664) [kworker/0:0] (root,0,0,00:00:15/1474-08:10:12,13987) [kworker/7:1H] (root,0,0,00:00:09/1474-08:05:07,14018) [kworker/4:1H] (root,0,0,00:00:43/1474-08:10:04,14909) [kworker/2:1H] (root,0,0,00:00:00/15:35:51,17338) [kworker/6:1] (ntp,25732,2012,00:22:18/1474-07:40:02,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19244,01:13:02/1474-07:39:42,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,19:02:50/1474-07:38:23,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:34/1474-07:38:23,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:09/1474-07:35:12,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378176,12888,00:00:01/5-16:26:38,20143) /usr/sbin/httpd -DFOREGROUND (apache,378176,12936,00:00:01/5-16:26:37,20145) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:02:55,20806) [kworker/u16:2] (root,0,0,00:00:00/17:24:51,20881) [kworker/1:1] (root,0,0,00:00:00/02:02:52,21061) [kworker/0:1] (root,0,0,00:00:00/08:45:51,21217) [kworker/5:1] (onapp,911892,41524,04:28:32/460-03:53:16,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:22:03/460-03:53:16,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378176,12864,00:00:00/3-22:05:42,24229) /usr/sbin/httpd -DFOREGROUND (apache,378176,12884,00:00:00/3-22:05:41,24231) /usr/sbin/httpd -DFOREGROUND (apache,378176,12892,00:00:00/3-22:05:40,24233) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:56:51,24427) [kworker/7:1] (root,0,0,00:00:00/00:51,24861) [kworker/0:2] (onapp,225656,8988,00:00:00/00:00,25252) /usr/bin/perl /omd/sites/onapp/lib/pnp4nagios/process_perfdata.pl -n -c /omd/sites/onapp/etc/pnp4nagios/process_perfdata.cfg -b /omd/sites/onapp/var/pnp4nagios/spool//perfdata.1734132345 (root,115412,1652,00:00:00/00:00,25261) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,25280) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,25281) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,278296,9088,00:00:06/5-20:07:52,25538) /usr/sbin/httpd -DFOREGROUND (apache,378176,12900,00:00:01/5-20:07:52,25551) /usr/sbin/httpd -DFOREGROUND (apache,378176,12904,00:00:01/5-20:07:52,25552) /usr/sbin/httpd -DFOREGROUND (apache,378176,12876,00:00:01/5-20:07:52,25553) /usr/sbin/httpd -DFOREGROUND (apache,378176,12928,00:00:01/5-20:07:52,25554) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/1-01:54:52,25622) [kworker/2:1] (root,0,0,00:00:00/56:51,25740) [kworker/2:2] (root,0,0,00:00:00/04:42:52,28268) [kworker/3:1] (postfix,89848,4084,00:00:00/49:25,29909) pickup -l -t unix -u (onapp,1516228,10108,01:19:02/49-09:48:08,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/45:51,31913) [kworker/1:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-13 23:25 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501533e7f5cFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:47:56/1472-07:03:30,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1472-07:03:30,2) [kthreadd] (root,0,0,00:00:00/1472-07:03:30,4) [kworker/0:0H] (root,0,0,00:15:56/1472-07:03:30,6) [ksoftirqd/0] (root,0,0,00:01:17/1472-07:03:30,7) [migration/0] (root,0,0,00:00:00/1472-07:03:30,8) [rcu_bh] (root,0,0,19:08:54/1472-07:03:30,9) [rcu_sched] (root,0,0,00:00:00/1472-07:03:30,10) [lru-add-drain] (root,0,0,00:06:29/1472-07:03:30,11) [watchdog/0] (root,0,0,00:06:32/1472-07:03:30,12) [watchdog/1] (root,0,0,00:01:16/1472-07:03:30,13) [migration/1] (root,0,0,00:13:32/1472-07:03:30,14) [ksoftirqd/1] (root,0,0,00:00:00/1472-07:03:30,16) [kworker/1:0H] (root,0,0,00:05:49/1472-07:03:30,17) [watchdog/2] (root,0,0,00:01:15/1472-07:03:30,18) [migration/2] (root,0,0,00:13:22/1472-07:03:30,19) [ksoftirqd/2] (root,0,0,00:00:00/1472-07:03:30,21) [kworker/2:0H] (root,0,0,00:05:50/1472-07:03:30,22) [watchdog/3] (root,0,0,00:01:16/1472-07:03:30,23) [migration/3] (root,0,0,00:13:59/1472-07:03:30,24) [ksoftirqd/3] (root,0,0,00:00:00/1472-07:03:30,26) [kworker/3:0H] (root,0,0,00:05:28/1472-07:03:30,27) [watchdog/4] (root,0,0,00:11:28/1472-07:03:30,28) [migration/4] (root,0,0,00:48:45/1472-07:03:30,29) [ksoftirqd/4] (root,0,0,00:00:00/1472-07:03:30,31) [kworker/4:0H] (root,0,0,00:05:42/1472-07:03:30,32) [watchdog/5] (root,0,0,00:11:14/1472-07:03:30,33) [migration/5] (root,0,0,00:54:53/1472-07:03:30,34) [ksoftirqd/5] (root,0,0,00:00:00/1472-07:03:30,36) [kworker/5:0H] (root,0,0,00:05:33/1472-07:03:30,37) [watchdog/6] (root,0,0,00:10:57/1472-07:03:30,38) [migration/6] (root,0,0,00:55:28/1472-07:03:30,39) [ksoftirqd/6] (root,0,0,00:00:00/1472-07:03:30,41) [kworker/6:0H] (root,0,0,00:05:59/1472-07:03:30,42) [watchdog/7] (root,0,0,00:11:16/1472-07:03:30,43) [migration/7] (root,0,0,01:04:26/1472-07:03:30,44) [ksoftirqd/7] (root,0,0,00:00:00/1472-07:03:30,46) [kworker/7:0H] (root,0,0,00:00:00/1472-07:03:30,48) [kdevtmpfs] (root,0,0,00:00:00/1472-07:03:30,49) [netns] (root,0,0,00:00:43/1472-07:03:30,50) [khungtaskd] (root,0,0,00:00:00/1472-07:03:30,51) [writeback] (root,0,0,00:00:00/1472-07:03:30,52) [kintegrityd] (root,0,0,00:00:00/1472-07:03:30,53) [bioset] (root,0,0,00:00:00/1472-07:03:30,54) [bioset] (root,0,0,00:00:00/1472-07:03:30,55) [bioset] (root,0,0,00:00:00/1472-07:03:30,56) [kblockd] (root,0,0,00:00:00/1472-07:03:30,57) [md] (root,0,0,00:00:00/1472-07:03:30,58) [edac-poller] (root,0,0,00:00:00/1472-07:03:30,59) [watchdogd] (root,0,0,00:00:00/1472-07:03:30,66) [kswapd0] (root,0,0,00:00:00/1472-07:03:30,67) [ksmd] (root,0,0,00:08:37/1472-07:03:30,68) [khugepaged] (root,0,0,00:00:00/1472-07:03:30,69) [crypto] (root,0,0,00:00:00/1472-07:03:30,77) [kthrotld] (root,0,0,00:00:00/1472-07:03:30,79) [kmpath_rdacd] (root,0,0,00:00:00/1472-07:03:30,80) [kaluad] (root,0,0,00:00:00/1472-07:03:29,82) [kpsmoused] (root,0,0,00:00:00/1472-07:03:29,89) [ipv6_addrconf] (root,0,0,00:00:00/1472-07:03:29,102) [deferwq] (root,0,0,00:13:50/1472-07:03:29,139) [kauditd] (root,0,0,00:00:00/1472-07:03:28,281) [scsi_eh_0] (root,0,0,00:00:00/1472-07:03:28,282) [scsi_tmf_0] (root,0,0,00:00:00/1472-07:03:28,291) [ixgbe] (root,0,0,00:00:00/1472-07:03:28,304) [poll_megasas0_s] (root,0,0,00:00:00/1472-07:03:28,306) [ttm_swap] (root,0,0,06:04:04/1472-07:03:27,337) [jbd2/sda3-8] (root,0,0,00:00:00/1472-07:03:27,338) [ext4-rsv-conver] (root,149768,88260,02:30:41/1472-07:03:26,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:42/1472-05:48:23,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28496,1-08:10:17/1472-05:48:23,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11080,13:37:46/1472-05:48:09,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1472-07:03:26,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1472-07:03:26,527) [jbd2/sda2-8] (root,0,0,00:00:00/1472-07:03:26,528) [ext4-rsv-conver] (root,55532,1060,00:30:26/1472-07:03:26,573) /sbin/auditd (polkitd,613004,14012,02:47:21/1472-07:03:26,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,04:00:35/1472-07:03:26,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:18:50/1472-07:03:26,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:19:47/1472-07:03:26,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:48/1472-07:03:26,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1472-05:47:59,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1472-05:47:58,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,319168,2-00:14:39/1472-05:47:58,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1472-07:03:23,930) [kworker/3:1H] (root,112900,4352,00:00:04/1472-07:03:17,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:35/1472-07:03:17,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:40/1472-07:03:17,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1472-07:03:16,1643) [kworker/6:1H] (root,0,0,00:00:39/1472-07:03:06,1646) [kworker/1:1H] (root,0,0,00:00:39/1472-07:02:42,1673) [kworker/0:1H] (root,0,0,00:00:48/1472-07:02:08,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1472-07:01:03,1750) /usr/lib/systemd/systemd-udevd (apache,378176,12860,00:00:01/3-18:39:40,3608) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-04:15:24,3988) [kworker/1:1] (root,0,0,00:00:01/1-07:08:24,3989) [kworker/6:0] (root,0,0,00:00:00/02:17:19,5638) [kworker/u16:2] (root,0,0,00:00:00/02:15:24,6788) [kworker/7:2] (root,574280,19564,02:54:14/1472-07:00:52,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:00/01:16:23,7571) [kworker/0:1] (root,740604,49844,02:24:55/1472-07:00:52,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/01:15:23,8107) [kworker/5:2] (root,0,0,00:00:02/2-02:11:23,8799) [kworker/5:1] (root,110204,848,00:00:00/337-12:50:48,8910) /sbin/agetty --noclear tty1 linux (onapp,98460,1984,00:00:01/22:16:23,11483) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368228,97340,00:00:10/22:16:23,11484) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368076,97300,00:00:11/22:15:23,12023) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11656,00:00:00/22:14:33,12364) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/08:23,13456) [kworker/7:1] (root,0,0,00:00:14/1472-07:00:44,13987) [kworker/7:1H] (root,0,0,00:00:09/1472-06:55:39,14018) [kworker/4:1H] (root,0,0,00:00:03/07:47:31,14204) [kworker/u16:0] (root,0,0,00:00:43/1472-07:00:36,14909) [kworker/2:1H] (root,0,0,00:00:00/01:58:23,16391) [kworker/4:2] (root,0,0,00:00:00/02:24,16821) [kworker/5:0] (postfix,89848,4084,00:00:00/01:54,16857) pickup -l -t unix -u (root,0,0,00:00:00/01:24,17352) [kworker/7:0] (root,115412,1648,00:00:00/00:00,18037) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,18056) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,18057) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (ntp,25732,2012,00:22:16/1472-06:30:34,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19244,01:12:56/1472-06:30:14,18605) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:54:23,18626) [kworker/0:0] (onapp,216524,22168,19:01:14/1472-06:28:55,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:08:28/1472-06:28:55,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:07/1472-06:25:44,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378176,12844,00:00:00/3-15:17:10,20143) /usr/sbin/httpd -DFOREGROUND (apache,378176,12868,00:00:00/3-15:17:09,20145) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-02:46:23,21674) [kworker/4:0] (root,0,0,00:00:00/01:46:23,23126) [kworker/2:2] (onapp,911892,41524,04:27:44/458-02:43:48,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:57/458-02:43:48,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378176,12836,00:00:00/1-20:56:14,24229) /usr/sbin/httpd -DFOREGROUND (apache,378176,12760,00:00:00/1-20:56:13,24231) /usr/sbin/httpd -DFOREGROUND (apache,378176,12804,00:00:00/1-20:56:12,24233) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/46:24,24477) [kworker/3:1] (apache,278296,9088,00:00:04/3-18:58:24,25538) /usr/sbin/httpd -DFOREGROUND (apache,378176,12848,00:00:01/3-18:58:24,25551) /usr/sbin/httpd -DFOREGROUND (apache,378176,12896,00:00:01/3-18:58:24,25552) /usr/sbin/httpd -DFOREGROUND (apache,378176,12864,00:00:01/3-18:58:24,25553) /usr/sbin/httpd -DFOREGROUND (apache,378176,12876,00:00:01/3-18:58:24,25554) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/13:11:23,26770) [kworker/2:1] (root,0,0,00:00:00/04:31:23,27481) [kworker/6:1] (root,0,0,00:00:00/40:23,27834) [kworker/1:2] (root,0,0,00:00:00/07:23:24,27927) [kworker/3:2] (onapp,1516224,10084,01:15:41/47-08:38:40,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-11 22:16 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735018e23bbb7Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:46:54/1470-06:59:02,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1470-06:59:02,2) [kthreadd] (root,0,0,00:00:00/1470-06:59:02,4) [kworker/0:0H] (root,0,0,00:15:55/1470-06:59:02,6) [ksoftirqd/0] (root,0,0,00:01:17/1470-06:59:02,7) [migration/0] (root,0,0,00:00:00/1470-06:59:02,8) [rcu_bh] (root,0,0,19:07:31/1470-06:59:02,9) [rcu_sched] (root,0,0,00:00:00/1470-06:59:02,10) [lru-add-drain] (root,0,0,00:06:29/1470-06:59:02,11) [watchdog/0] (root,0,0,00:06:32/1470-06:59:02,12) [watchdog/1] (root,0,0,00:01:16/1470-06:59:02,13) [migration/1] (root,0,0,00:13:30/1470-06:59:02,14) [ksoftirqd/1] (root,0,0,00:00:00/1470-06:59:02,16) [kworker/1:0H] (root,0,0,00:05:48/1470-06:59:02,17) [watchdog/2] (root,0,0,00:01:15/1470-06:59:02,18) [migration/2] (root,0,0,00:13:21/1470-06:59:02,19) [ksoftirqd/2] (root,0,0,00:00:00/1470-06:59:02,21) [kworker/2:0H] (root,0,0,00:05:50/1470-06:59:02,22) [watchdog/3] (root,0,0,00:01:16/1470-06:59:02,23) [migration/3] (root,0,0,00:13:58/1470-06:59:02,24) [ksoftirqd/3] (root,0,0,00:00:00/1470-06:59:02,26) [kworker/3:0H] (root,0,0,00:05:28/1470-06:59:02,27) [watchdog/4] (root,0,0,00:11:28/1470-06:59:02,28) [migration/4] (root,0,0,00:48:41/1470-06:59:02,29) [ksoftirqd/4] (root,0,0,00:00:00/1470-06:59:02,31) [kworker/4:0H] (root,0,0,00:05:41/1470-06:59:02,32) [watchdog/5] (root,0,0,00:11:14/1470-06:59:02,33) [migration/5] (root,0,0,00:54:49/1470-06:59:02,34) [ksoftirqd/5] (root,0,0,00:00:00/1470-06:59:02,36) [kworker/5:0H] (root,0,0,00:05:32/1470-06:59:02,37) [watchdog/6] (root,0,0,00:10:56/1470-06:59:02,38) [migration/6] (root,0,0,00:55:25/1470-06:59:02,39) [ksoftirqd/6] (root,0,0,00:00:00/1470-06:59:02,41) [kworker/6:0H] (root,0,0,00:05:59/1470-06:59:02,42) [watchdog/7] (root,0,0,00:11:15/1470-06:59:02,43) [migration/7] (root,0,0,01:04:21/1470-06:59:02,44) [ksoftirqd/7] (root,0,0,00:00:00/1470-06:59:02,46) [kworker/7:0H] (root,0,0,00:00:00/1470-06:59:02,48) [kdevtmpfs] (root,0,0,00:00:00/1470-06:59:02,49) [netns] (root,0,0,00:00:43/1470-06:59:02,50) [khungtaskd] (root,0,0,00:00:00/1470-06:59:02,51) [writeback] (root,0,0,00:00:00/1470-06:59:02,52) [kintegrityd] (root,0,0,00:00:00/1470-06:59:02,53) [bioset] (root,0,0,00:00:00/1470-06:59:02,54) [bioset] (root,0,0,00:00:00/1470-06:59:02,55) [bioset] (root,0,0,00:00:00/1470-06:59:02,56) [kblockd] (root,0,0,00:00:00/1470-06:59:02,57) [md] (root,0,0,00:00:00/1470-06:59:02,58) [edac-poller] (root,0,0,00:00:00/1470-06:59:02,59) [watchdogd] (root,0,0,00:00:00/1470-06:59:02,66) [kswapd0] (root,0,0,00:00:00/1470-06:59:02,67) [ksmd] (root,0,0,00:08:37/1470-06:59:02,68) [khugepaged] (root,0,0,00:00:00/1470-06:59:02,69) [crypto] (root,0,0,00:00:00/1470-06:59:02,77) [kthrotld] (root,0,0,00:00:00/1470-06:59:02,79) [kmpath_rdacd] (root,0,0,00:00:00/1470-06:59:02,80) [kaluad] (root,0,0,00:00:00/1470-06:59:01,82) [kpsmoused] (root,0,0,00:00:00/1470-06:59:01,89) [ipv6_addrconf] (root,0,0,00:00:00/1470-06:59:01,102) [deferwq] (root,0,0,00:13:49/1470-06:59:01,139) [kauditd] (root,0,0,00:00:00/1470-06:59:00,281) [scsi_eh_0] (root,0,0,00:00:00/1470-06:59:00,282) [scsi_tmf_0] (root,0,0,00:00:00/1470-06:59:00,291) [ixgbe] (root,0,0,00:00:00/1470-06:59:00,304) [poll_megasas0_s] (root,0,0,00:00:00/1470-06:59:00,306) [ttm_swap] (root,0,0,06:03:55/1470-06:58:59,337) [jbd2/sda3-8] (root,0,0,00:00:00/1470-06:58:59,338) [ext4-rsv-conver] (root,47252,14964,02:30:28/1470-06:58:58,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:40/1470-05:43:55,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28496,1-08:07:39/1470-05:43:55,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11080,13:36:40/1470-05:43:41,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1470-06:58:58,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1470-06:58:58,527) [jbd2/sda2-8] (root,0,0,00:00:00/1470-06:58:58,528) [ext4-rsv-conver] (root,55532,1060,00:30:23/1470-06:58:58,573) /sbin/auditd (polkitd,613004,14012,02:47:07/1470-06:58:58,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,04:00:16/1470-06:58:58,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:18:33/1470-06:58:58,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:19:11/1470-06:58:58,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:45/1470-06:58:58,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1470-05:43:31,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1470-05:43:30,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,317120,2-00:10:12/1470-05:43:30,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1470-06:58:55,930) [kworker/3:1H] (root,112900,4352,00:00:04/1470-06:58:49,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:34/1470-06:58:49,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:39/1470-06:58:49,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1470-06:58:48,1643) [kworker/6:1H] (root,0,0,00:00:39/1470-06:58:38,1646) [kworker/1:1H] (root,0,0,00:00:39/1470-06:58:14,1673) [kworker/0:1H] (root,0,0,00:00:48/1470-06:57:40,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1470-06:56:35,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/03:16:54,1796) [kworker/2:0] (root,0,0,00:00:00/05:10:55,2517) [kworker/4:1] (apache,378176,12836,00:00:00/1-18:35:12,3608) /usr/sbin/httpd -DFOREGROUND (postfix,89848,4080,00:00:00/19:27,4192) pickup -l -t unix -u (root,0,0,00:00:00/15:55,6381) [kworker/1:0] (root,0,0,00:00:00/15:39,6417) [kworker/u16:1] (root,574280,19564,02:54:00/1470-06:56:24,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,730924,15580,02:24:42/1470-06:56:24,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/12:55,8015) [kworker/0:1] (root,0,0,00:00:00/01:09:55,8427) [kworker/7:2] (root,0,0,00:00:00/11:55,8630) [kworker/2:1] (root,0,0,00:00:00/02:06:55,8799) [kworker/5:1] (root,110204,848,00:00:00/335-12:46:20,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/10:00,9728) [kworker/7:0] (root,0,0,00:00:00/20:17:56,10902) [kworker/3:0] (root,0,0,00:00:00/06:56,11449) [kworker/6:0] (onapp,98460,1984,00:00:01/22:11:55,11493) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368232,97348,00:00:10/22:11:55,11494) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368120,97336,00:00:10/22:10:55,12031) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11652,00:00:00/22:09:56,12628) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:14/1470-06:56:16,13987) [kworker/7:1H] (root,0,0,00:00:09/1470-06:51:11,14018) [kworker/4:1H] (root,0,0,00:00:43/1470-06:56:08,14909) [kworker/2:1H] (root,115412,1648,00:00:00/00:00,15394) /bin/bash /usr/bin/check_mk_agent (root,51732,1692,00:00:00/00:00,15413) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,15414) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (ntp,25732,2012,00:22:14/1470-06:26:06,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:02/2-05:39:55,18344) [kworker/6:2] (root,377912,19244,01:12:50/1470-06:25:46,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:59:40/1470-06:24:27,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:22/1470-06:24:27,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:05/1470-06:21:16,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378176,12804,00:00:00/1-15:12:42,20143) /usr/sbin/httpd -DFOREGROUND (apache,378176,12816,00:00:00/1-15:12:41,20145) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/47:56,20814) [kworker/5:0] (root,0,0,00:00:01/2-10:20:56,22382) [kworker/0:0] (onapp,911892,41524,04:26:57/456-02:39:20,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:51/456-02:39:20,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/02:36:53,24310) [kworker/1:2] (apache,278296,9088,00:00:02/1-18:53:56,25538) /usr/sbin/httpd -DFOREGROUND (apache,378176,12840,00:00:00/1-18:53:56,25551) /usr/sbin/httpd -DFOREGROUND (apache,378176,12852,00:00:00/1-18:53:56,25552) /usr/sbin/httpd -DFOREGROUND (apache,378176,12856,00:00:00/1-18:53:56,25553) /usr/sbin/httpd -DFOREGROUND (apache,378176,12852,00:00:00/1-18:53:56,25554) /usr/sbin/httpd -DFOREGROUND (apache,378176,12820,00:00:00/1-18:53:56,25556) /usr/sbin/httpd -DFOREGROUND (apache,378176,12844,00:00:00/1-17:51:11,28301) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/34:16,28371) [kworker/u16:0] (root,0,0,00:00:00/31:55,29797) [kworker/3:1] (onapp,1516228,10048,01:12:23/45-08:34:12,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/01:25:55,31823) [kworker/4:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-09 22:11 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350124be289fFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:45:56/1468-08:55:31,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1468-08:55:31,2) [kthreadd] (root,0,0,00:00:00/1468-08:55:31,4) [kworker/0:0H] (root,0,0,00:15:54/1468-08:55:31,6) [ksoftirqd/0] (root,0,0,00:01:17/1468-08:55:31,7) [migration/0] (root,0,0,00:00:00/1468-08:55:31,8) [rcu_bh] (root,0,0,19:06:14/1468-08:55:31,9) [rcu_sched] (root,0,0,00:00:00/1468-08:55:31,10) [lru-add-drain] (root,0,0,00:06:28/1468-08:55:31,11) [watchdog/0] (root,0,0,00:06:31/1468-08:55:31,12) [watchdog/1] (root,0,0,00:01:16/1468-08:55:31,13) [migration/1] (root,0,0,00:13:29/1468-08:55:31,14) [ksoftirqd/1] (root,0,0,00:00:00/1468-08:55:31,16) [kworker/1:0H] (root,0,0,00:05:48/1468-08:55:31,17) [watchdog/2] (root,0,0,00:01:15/1468-08:55:31,18) [migration/2] (root,0,0,00:13:20/1468-08:55:31,19) [ksoftirqd/2] (root,0,0,00:00:00/1468-08:55:31,21) [kworker/2:0H] (root,0,0,00:05:49/1468-08:55:31,22) [watchdog/3] (root,0,0,00:01:16/1468-08:55:31,23) [migration/3] (root,0,0,00:13:57/1468-08:55:31,24) [ksoftirqd/3] (root,0,0,00:00:00/1468-08:55:31,26) [kworker/3:0H] (root,0,0,00:05:27/1468-08:55:31,27) [watchdog/4] (root,0,0,00:11:27/1468-08:55:31,28) [migration/4] (root,0,0,00:48:39/1468-08:55:31,29) [ksoftirqd/4] (root,0,0,00:00:00/1468-08:55:31,31) [kworker/4:0H] (root,0,0,00:05:41/1468-08:55:31,32) [watchdog/5] (root,0,0,00:11:13/1468-08:55:31,33) [migration/5] (root,0,0,00:54:46/1468-08:55:31,34) [ksoftirqd/5] (root,0,0,00:00:00/1468-08:55:31,36) [kworker/5:0H] (root,0,0,00:05:32/1468-08:55:31,37) [watchdog/6] (root,0,0,00:10:56/1468-08:55:31,38) [migration/6] (root,0,0,00:55:22/1468-08:55:31,39) [ksoftirqd/6] (root,0,0,00:00:00/1468-08:55:31,41) [kworker/6:0H] (root,0,0,00:05:58/1468-08:55:31,42) [watchdog/7] (root,0,0,00:11:14/1468-08:55:31,43) [migration/7] (root,0,0,01:04:17/1468-08:55:31,44) [ksoftirqd/7] (root,0,0,00:00:00/1468-08:55:31,46) [kworker/7:0H] (root,0,0,00:00:00/1468-08:55:31,48) [kdevtmpfs] (root,0,0,00:00:00/1468-08:55:31,49) [netns] (root,0,0,00:00:43/1468-08:55:31,50) [khungtaskd] (root,0,0,00:00:00/1468-08:55:31,51) [writeback] (root,0,0,00:00:00/1468-08:55:31,52) [kintegrityd] (root,0,0,00:00:00/1468-08:55:31,53) [bioset] (root,0,0,00:00:00/1468-08:55:31,54) [bioset] (root,0,0,00:00:00/1468-08:55:31,55) [bioset] (root,0,0,00:00:00/1468-08:55:31,56) [kblockd] (root,0,0,00:00:00/1468-08:55:31,57) [md] (root,0,0,00:00:00/1468-08:55:31,58) [edac-poller] (root,0,0,00:00:00/1468-08:55:31,59) [watchdogd] (root,0,0,00:00:00/1468-08:55:31,66) [kswapd0] (root,0,0,00:00:00/1468-08:55:31,67) [ksmd] (root,0,0,00:08:36/1468-08:55:31,68) [khugepaged] (root,0,0,00:00:00/1468-08:55:31,69) [crypto] (root,0,0,00:00:00/1468-08:55:31,77) [kthrotld] (root,0,0,00:00:00/1468-08:55:31,79) [kmpath_rdacd] (root,0,0,00:00:00/1468-08:55:31,80) [kaluad] (root,0,0,00:00:00/1468-08:55:30,82) [kpsmoused] (root,0,0,00:00:00/1468-08:55:30,89) [ipv6_addrconf] (root,0,0,00:00:00/1468-08:55:30,102) [deferwq] (root,0,0,00:13:48/1468-08:55:30,139) [kauditd] (root,0,0,00:00:00/1468-08:55:29,281) [scsi_eh_0] (root,0,0,00:00:00/1468-08:55:29,282) [scsi_tmf_0] (root,0,0,00:00:00/1468-08:55:29,291) [ixgbe] (root,0,0,00:00:00/1468-08:55:29,304) [poll_megasas0_s] (root,0,0,00:00:00/1468-08:55:29,306) [ttm_swap] (root,0,0,06:03:46/1468-08:55:28,337) [jbd2/sda3-8] (root,0,0,00:00:00/1468-08:55:28,338) [ext4-rsv-conver] (root,71828,34964,02:30:16/1468-08:55:27,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:37/1468-07:40:24,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28492,1-08:05:07/1468-07:40:24,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11080,13:35:36/1468-07:40:10,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1468-08:55:27,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1468-08:55:27,527) [jbd2/sda2-8] (root,0,0,00:00:00/1468-08:55:27,528) [ext4-rsv-conver] (root,55532,1060,00:30:21/1468-08:55:27,573) /sbin/auditd (polkitd,613004,14012,02:46:54/1468-08:55:27,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:59:57/1468-08:55:27,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:18:17/1468-08:55:27,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:18:36/1468-08:55:27,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:42/1468-08:55:27,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1468-07:40:00,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1468-07:39:59,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,313024,2-00:05:58/1468-07:39:59,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (apache,278296,9076,00:00:08/6-20:36:24,731) /usr/sbin/httpd -DFOREGROUND (apache,378180,12876,00:00:02/6-20:36:24,734) /usr/sbin/httpd -DFOREGROUND (apache,378180,12876,00:00:02/6-20:36:24,735) /usr/sbin/httpd -DFOREGROUND (apache,378180,12880,00:00:02/6-20:36:24,736) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:05/4-08:06:21,895) [kworker/7:0] (root,0,0,00:00:41/1468-08:55:24,930) [kworker/3:1H] (root,0,0,00:00:00/10:02:24,1111) [kworker/1:2] (root,112900,4352,00:00:04/1468-08:55:18,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:33/1468-08:55:18,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:39/1468-08:55:18,1463) qmgr -l -t unix -u (root,0,0,00:00:00/02:20:24,1591) [kworker/5:1] (root,0,0,00:00:14/1468-08:55:17,1643) [kworker/6:1H] (root,0,0,00:00:39/1468-08:55:07,1646) [kworker/1:1H] (root,0,0,00:00:39/1468-08:54:43,1673) [kworker/0:1H] (root,0,0,00:00:48/1468-08:54:09,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1468-08:53:04,1750) /usr/lib/systemd/systemd-udevd (apache,378180,13296,00:00:01/4-22:27:20,2819) /usr/sbin/httpd -DFOREGROUND (apache,378180,12872,00:00:02/6-20:30:42,3909) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/08:57:24,5311) [kworker/3:0] (apache,378176,13312,00:00:02/6-10:48:25,7138) /usr/sbin/httpd -DFOREGROUND (apache,378176,13260,00:00:00/2-03:07:20,7299) /usr/sbin/httpd -DFOREGROUND (apache,378176,12836,00:00:01/2-03:07:19,7304) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:53:47/1468-08:52:53,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:00/14:24,7594) [kworker/7:2] (root,734320,25644,02:24:31/1468-08:52:53,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/333-14:42:49,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/11:24,9317) [kworker/1:1] (root,0,0,00:00:00/08:24,11091) [kworker/6:0] (onapp,98460,1984,00:00:00/08:24,11110) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,361236,90228,00:00:00/08:24,11111) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/07:25,11641) [kworker/2:0] (onapp,361148,90088,00:00:00/07:24,11648) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/07:21,11657) [kworker/u16:1] (root,0,0,00:00:02/1-12:36:24,11732) [kworker/4:1] (onapp,283912,11636,00:00:00/06:30,12177) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:14/1468-08:52:45,13987) [kworker/7:1H] (root,0,0,00:00:09/1468-08:47:40,14018) [kworker/4:1H] (root,0,0,00:00:43/1468-08:52:37,14909) [kworker/2:1H] (postfix,89848,4084,00:00:00/57:53,15582) pickup -l -t unix -u (root,0,0,00:00:00/00:24,15669) [kworker/5:0] (root,115412,1648,00:00:00/00:00,15760) /bin/bash /usr/bin/check_mk_agent (root,51732,1692,00:00:00/00:00,15779) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,15780) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,378184,12880,00:00:02/6-17:14:41,16758) /usr/sbin/httpd -DFOREGROUND (apache,378180,13308,00:00:02/6-17:14:40,16760) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/54:22,17574) [kworker/3:2] (ntp,25732,2012,00:22:12/1468-08:22:35,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:00/07:36:24,18344) [kworker/6:2] (root,377912,19236,01:12:44/1468-08:22:15,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:58:10/1468-08:20:56,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:08:17/1468-08:20:56,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:03/1468-08:17:45,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/49:25,20405) [kworker/0:2] (root,0,0,00:00:00/12:17:25,22382) [kworker/0:0] (root,0,0,00:00:00/12:16:24,22910) [kworker/5:2] (onapp,911892,41524,04:26:11/454-04:35:49,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:46/454-04:35:49,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/40:31,25352) [kworker/4:2] (root,0,0,00:00:02/07:18:15,28428) [kworker/u16:0] (root,0,0,00:00:00/21:39:25,30062) [kworker/2:2] (onapp,1516228,11132,01:09:15/43-10:30:41,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-08 00:08 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735012c333477Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:44:55/1466-09:26:39,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1466-09:26:39,2) [kthreadd] (root,0,0,00:00:00/1466-09:26:39,4) [kworker/0:0H] (root,0,0,00:15:53/1466-09:26:39,6) [ksoftirqd/0] (root,0,0,00:01:17/1466-09:26:39,7) [migration/0] (root,0,0,00:00:00/1466-09:26:39,8) [rcu_bh] (root,0,0,19:04:54/1466-09:26:39,9) [rcu_sched] (root,0,0,00:00:00/1466-09:26:39,10) [lru-add-drain] (root,0,0,00:06:28/1466-09:26:39,11) [watchdog/0] (root,0,0,00:06:31/1466-09:26:39,12) [watchdog/1] (root,0,0,00:01:15/1466-09:26:39,13) [migration/1] (root,0,0,00:13:28/1466-09:26:39,14) [ksoftirqd/1] (root,0,0,00:00:00/1466-09:26:39,16) [kworker/1:0H] (root,0,0,00:05:47/1466-09:26:39,17) [watchdog/2] (root,0,0,00:01:15/1466-09:26:39,18) [migration/2] (root,0,0,00:13:19/1466-09:26:39,19) [ksoftirqd/2] (root,0,0,00:00:00/1466-09:26:39,21) [kworker/2:0H] (root,0,0,00:05:49/1466-09:26:39,22) [watchdog/3] (root,0,0,00:01:16/1466-09:26:39,23) [migration/3] (root,0,0,00:13:56/1466-09:26:39,24) [ksoftirqd/3] (root,0,0,00:00:00/1466-09:26:39,26) [kworker/3:0H] (root,0,0,00:05:27/1466-09:26:39,27) [watchdog/4] (root,0,0,00:11:26/1466-09:26:39,28) [migration/4] (root,0,0,00:48:36/1466-09:26:39,29) [ksoftirqd/4] (root,0,0,00:00:00/1466-09:26:39,31) [kworker/4:0H] (root,0,0,00:05:40/1466-09:26:39,32) [watchdog/5] (root,0,0,00:11:12/1466-09:26:39,33) [migration/5] (root,0,0,00:54:43/1466-09:26:39,34) [ksoftirqd/5] (root,0,0,00:00:00/1466-09:26:39,36) [kworker/5:0H] (root,0,0,00:05:31/1466-09:26:39,37) [watchdog/6] (root,0,0,00:10:55/1466-09:26:39,38) [migration/6] (root,0,0,00:55:19/1466-09:26:39,39) [ksoftirqd/6] (root,0,0,00:00:00/1466-09:26:39,41) [kworker/6:0H] (root,0,0,00:05:58/1466-09:26:39,42) [watchdog/7] (root,0,0,00:11:13/1466-09:26:39,43) [migration/7] (root,0,0,01:04:13/1466-09:26:39,44) [ksoftirqd/7] (root,0,0,00:00:00/1466-09:26:39,46) [kworker/7:0H] (root,0,0,00:00:00/1466-09:26:39,48) [kdevtmpfs] (root,0,0,00:00:00/1466-09:26:39,49) [netns] (root,0,0,00:00:43/1466-09:26:39,50) [khungtaskd] (root,0,0,00:00:00/1466-09:26:39,51) [writeback] (root,0,0,00:00:00/1466-09:26:39,52) [kintegrityd] (root,0,0,00:00:00/1466-09:26:39,53) [bioset] (root,0,0,00:00:00/1466-09:26:39,54) [bioset] (root,0,0,00:00:00/1466-09:26:39,55) [bioset] (root,0,0,00:00:00/1466-09:26:39,56) [kblockd] (root,0,0,00:00:00/1466-09:26:39,57) [md] (root,0,0,00:00:00/1466-09:26:39,58) [edac-poller] (root,0,0,00:00:00/1466-09:26:39,59) [watchdogd] (root,0,0,00:00:00/1466-09:26:39,66) [kswapd0] (root,0,0,00:00:00/1466-09:26:39,67) [ksmd] (root,0,0,00:08:35/1466-09:26:39,68) [khugepaged] (root,0,0,00:00:00/1466-09:26:39,69) [crypto] (root,0,0,00:00:00/1466-09:26:39,77) [kthrotld] (root,0,0,00:00:00/1466-09:26:39,79) [kmpath_rdacd] (root,0,0,00:00:00/1466-09:26:39,80) [kaluad] (root,0,0,00:00:00/1466-09:26:38,82) [kpsmoused] (root,0,0,00:00:00/1466-09:26:38,89) [ipv6_addrconf] (root,0,0,00:00:00/1466-09:26:38,102) [deferwq] (root,0,0,00:13:47/1466-09:26:38,139) [kauditd] (root,0,0,00:00:00/1466-09:26:37,281) [scsi_eh_0] (root,0,0,00:00:00/1466-09:26:37,282) [scsi_tmf_0] (root,0,0,00:00:00/1466-09:26:37,291) [ixgbe] (root,0,0,00:00:00/1466-09:26:37,304) [poll_megasas0_s] (root,0,0,00:00:00/1466-09:26:37,306) [ttm_swap] (root,0,0,06:03:38/1466-09:26:36,337) [jbd2/sda3-8] (root,0,0,00:00:00/1466-09:26:36,338) [ext4-rsv-conver] (root,104576,53844,02:30:04/1466-09:26:35,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:35/1466-08:11:32,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28492,1-08:02:30/1466-08:11:32,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11076,13:34:30/1466-08:11:18,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1466-09:26:35,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1466-09:26:35,527) [jbd2/sda2-8] (root,0,0,00:00:00/1466-09:26:35,528) [ext4-rsv-conver] (root,55532,1060,00:30:19/1466-09:26:35,573) /sbin/auditd (polkitd,613004,14012,02:46:40/1466-09:26:35,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:59:37/1466-09:26:35,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:18:01/1466-09:26:35,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:18:00/1466-09:26:35,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:39/1466-09:26:35,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1466-08:11:08,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1466-08:11:07,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,325312,2-00:01:35/1466-08:11:07,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (apache,278296,9076,00:00:05/4-21:07:32,731) /usr/sbin/httpd -DFOREGROUND (apache,378180,12876,00:00:01/4-21:07:32,734) /usr/sbin/httpd -DFOREGROUND (apache,378180,12876,00:00:01/4-21:07:32,735) /usr/sbin/httpd -DFOREGROUND (apache,378180,12876,00:00:02/4-21:07:32,736) /usr/sbin/httpd -DFOREGROUND (root,115412,1648,00:00:00/00:00,752) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,771) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,772) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:02/2-08:37:29,895) [kworker/7:0] (root,0,0,00:00:41/1466-09:26:32,930) [kworker/3:1H] (root,112900,4352,00:00:04/1466-09:26:26,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/07:39:32,1320) [kworker/4:0] (root,89708,2212,00:08:32/1466-09:26:26,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:39/1466-09:26:26,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1466-09:26:25,1643) [kworker/6:1H] (root,0,0,00:00:39/1466-09:26:15,1646) [kworker/1:1H] (root,0,0,00:00:39/1466-09:25:51,1673) [kworker/0:1H] (root,0,0,00:00:48/1466-09:25:17,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1466-09:24:12,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:01/1-07:38:33,1953) [kworker/2:0] (apache,378180,13072,00:00:01/2-22:58:28,2819) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:50:33,3238) [kworker/1:2] (root,0,0,00:00:00/22:57:32,3620) [kworker/0:2] (apache,378180,12872,00:00:01/4-21:01:50,3909) /usr/sbin/httpd -DFOREGROUND (apache,378176,13084,00:00:01/4-11:19:33,7138) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/14:12:33,7223) [kworker/3:2] (apache,378176,12908,00:00:00/03:38:28,7299) /usr/sbin/httpd -DFOREGROUND (apache,378176,12576,00:00:00/03:38:27,7304) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:53:33/1466-09:24:01,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740644,36308,02:24:19/1466-09:24:01,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/331-15:13:57,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/42:32,9067) [kworker/7:1] (root,0,0,00:00:00/01:38:32,9978) [kworker/4:1] (onapp,98460,1976,00:00:00/39:32,10849) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362424,91408,00:00:00/39:32,10850) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/38:33,11379) [kworker/6:1] (onapp,362776,91776,00:00:00/38:32,11386) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11640,00:00:00/37:09,12013) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/01:34:35,12219) [kworker/u16:2] (root,0,0,00:00:05/5-00:36:32,12598) [kworker/5:2] (root,0,0,00:00:00/34:32,13717) [kworker/3:0] (root,0,0,00:00:14/1466-09:23:53,13987) [kworker/7:1H] (root,0,0,00:00:09/1466-09:18:48,14018) [kworker/4:1H] (root,0,0,00:00:00/33:33,14312) [kworker/0:1] (root,0,0,00:00:43/1466-09:23:45,14909) [kworker/2:1H] (root,0,0,00:00:00/29:32,16590) [kworker/5:1] (apache,378184,12876,00:00:01/4-17:45:49,16758) /usr/sbin/httpd -DFOREGROUND (apache,378180,13084,00:00:02/4-17:45:48,16760) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:22:10/1466-08:53:43,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19236,01:12:38/1466-08:53:23,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:56:37/1466-08:52:04,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:11/1466-08:52:04,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:25:01/1466-08:48:53,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/02:12:33,23280) [kworker/1:1] (onapp,911892,41524,04:25:25/452-05:06:57,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:40/452-05:06:57,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (postfix,89848,4084,00:00:00/10:49,26903) pickup -l -t unix -u (root,0,0,00:00:00/18:25:30,27041) [kworker/6:0] (root,0,0,00:00:00/07:19,28938) [kworker/u16:1] (root,0,0,00:00:00/05:31,30038) [kworker/2:2] (root,0,0,00:00:00/04:32,30568) [kworker/0:0] (onapp,1516224,9996,01:06:01/41-11:01:49,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-06 00:39 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501bec53000Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:43:54/1464-09:08:22,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1464-09:08:22,2) [kthreadd] (root,0,0,00:00:00/1464-09:08:22,4) [kworker/0:0H] (root,0,0,00:15:51/1464-09:08:22,6) [ksoftirqd/0] (root,0,0,00:01:17/1464-09:08:22,7) [migration/0] (root,0,0,00:00:00/1464-09:08:22,8) [rcu_bh] (root,0,0,19:03:32/1464-09:08:22,9) [rcu_sched] (root,0,0,00:00:00/1464-09:08:22,10) [lru-add-drain] (root,0,0,00:06:27/1464-09:08:22,11) [watchdog/0] (root,0,0,00:06:30/1464-09:08:22,12) [watchdog/1] (root,0,0,00:01:15/1464-09:08:22,13) [migration/1] (root,0,0,00:13:27/1464-09:08:22,14) [ksoftirqd/1] (root,0,0,00:00:00/1464-09:08:22,16) [kworker/1:0H] (root,0,0,00:05:47/1464-09:08:22,17) [watchdog/2] (root,0,0,00:01:15/1464-09:08:22,18) [migration/2] (root,0,0,00:13:18/1464-09:08:22,19) [ksoftirqd/2] (root,0,0,00:00:00/1464-09:08:22,21) [kworker/2:0H] (root,0,0,00:05:48/1464-09:08:22,22) [watchdog/3] (root,0,0,00:01:16/1464-09:08:22,23) [migration/3] (root,0,0,00:13:55/1464-09:08:22,24) [ksoftirqd/3] (root,0,0,00:00:00/1464-09:08:22,26) [kworker/3:0H] (root,0,0,00:05:26/1464-09:08:22,27) [watchdog/4] (root,0,0,00:11:25/1464-09:08:22,28) [migration/4] (root,0,0,00:48:33/1464-09:08:22,29) [ksoftirqd/4] (root,0,0,00:00:00/1464-09:08:22,31) [kworker/4:0H] (root,0,0,00:05:40/1464-09:08:22,32) [watchdog/5] (root,0,0,00:11:11/1464-09:08:22,33) [migration/5] (root,0,0,00:54:39/1464-09:08:22,34) [ksoftirqd/5] (root,0,0,00:00:00/1464-09:08:22,36) [kworker/5:0H] (root,0,0,00:05:31/1464-09:08:22,37) [watchdog/6] (root,0,0,00:10:54/1464-09:08:22,38) [migration/6] (root,0,0,00:55:15/1464-09:08:22,39) [ksoftirqd/6] (root,0,0,00:00:00/1464-09:08:22,41) [kworker/6:0H] (root,0,0,00:05:57/1464-09:08:22,42) [watchdog/7] (root,0,0,00:11:12/1464-09:08:22,43) [migration/7] (root,0,0,01:04:08/1464-09:08:22,44) [ksoftirqd/7] (root,0,0,00:00:00/1464-09:08:22,46) [kworker/7:0H] (root,0,0,00:00:00/1464-09:08:22,48) [kdevtmpfs] (root,0,0,00:00:00/1464-09:08:22,49) [netns] (root,0,0,00:00:43/1464-09:08:22,50) [khungtaskd] (root,0,0,00:00:00/1464-09:08:22,51) [writeback] (root,0,0,00:00:00/1464-09:08:22,52) [kintegrityd] (root,0,0,00:00:00/1464-09:08:22,53) [bioset] (root,0,0,00:00:00/1464-09:08:22,54) [bioset] (root,0,0,00:00:00/1464-09:08:22,55) [bioset] (root,0,0,00:00:00/1464-09:08:22,56) [kblockd] (root,0,0,00:00:00/1464-09:08:22,57) [md] (root,0,0,00:00:00/1464-09:08:22,58) [edac-poller] (root,0,0,00:00:00/1464-09:08:22,59) [watchdogd] (root,0,0,00:00:00/1464-09:08:22,66) [kswapd0] (root,0,0,00:00:00/1464-09:08:22,67) [ksmd] (root,0,0,00:08:34/1464-09:08:22,68) [khugepaged] (root,0,0,00:00:00/1464-09:08:22,69) [crypto] (root,0,0,00:00:00/1464-09:08:22,77) [kthrotld] (root,0,0,00:00:00/1464-09:08:22,79) [kmpath_rdacd] (root,0,0,00:00:00/1464-09:08:22,80) [kaluad] (root,0,0,00:00:00/1464-09:08:21,82) [kpsmoused] (root,0,0,00:00:00/1464-09:08:21,89) [ipv6_addrconf] (root,0,0,00:00:00/1464-09:08:21,102) [deferwq] (root,0,0,00:13:45/1464-09:08:21,139) [kauditd] (root,0,0,00:00:00/1464-09:08:20,281) [scsi_eh_0] (root,0,0,00:00:00/1464-09:08:20,282) [scsi_tmf_0] (root,0,0,00:00:00/1464-09:08:20,291) [ixgbe] (root,0,0,00:00:00/1464-09:08:20,304) [poll_megasas0_s] (root,0,0,00:00:00/1464-09:08:20,306) [ttm_swap] (root,0,0,06:03:29/1464-09:08:19,337) [jbd2/sda3-8] (root,0,0,00:00:00/1464-09:08:19,338) [ext4-rsv-conver] (root,125204,70176,02:29:50/1464-09:08:18,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:32/1464-07:53:15,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28488,1-07:59:50/1464-07:53:15,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11076,13:33:22/1464-07:53:01,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1464-09:08:18,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1464-09:08:18,527) [jbd2/sda2-8] (root,0,0,00:00:00/1464-09:08:18,528) [ext4-rsv-conver] (root,55532,1060,00:30:16/1464-09:08:18,573) /sbin/auditd (polkitd,613004,14012,02:46:26/1464-09:08:18,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:59:16/1464-09:08:18,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:17:44/1464-09:08:18,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:17:22/1464-09:08:18,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:37/1464-09:08:18,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1464-07:52:51,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1464-07:52:50,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,321216,1-23:57:07/1464-07:52:50,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (apache,278296,9076,00:00:03/2-20:49:15,731) /usr/sbin/httpd -DFOREGROUND (apache,378180,12868,00:00:00/2-20:49:15,734) /usr/sbin/httpd -DFOREGROUND (apache,378180,12860,00:00:01/2-20:49:15,735) /usr/sbin/httpd -DFOREGROUND (apache,378180,12860,00:00:01/2-20:49:15,736) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/08:19:12,895) [kworker/7:0] (root,0,0,00:00:41/1464-09:08:15,930) [kworker/3:1H] (root,112900,4352,00:00:04/1464-09:08:09,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:32/1464-09:08:09,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:39/1464-09:08:09,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1464-09:08:08,1643) [kworker/6:1H] (root,0,0,00:00:39/1464-09:07:58,1646) [kworker/1:1H] (root,0,0,00:00:39/1464-09:07:34,1673) [kworker/0:1H] (root,0,0,00:00:48/1464-09:07:00,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1464-09:05:55,1750) /usr/lib/systemd/systemd-udevd (apache,378180,12836,00:00:00/22:40:11,2819) /usr/sbin/httpd -DFOREGROUND (apache,378176,12780,00:00:00/22:40:10,2821) /usr/sbin/httpd -DFOREGROUND (apache,378180,12872,00:00:00/2-20:43:33,3909) /usr/sbin/httpd -DFOREGROUND (apache,378176,12848,00:00:00/2-11:01:16,7138) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:53:18/1464-09:05:44,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,736696,42848,02:24:07/1464-09:05:44,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/329-14:55:40,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/10:56:15,9839) [kworker/3:0] (root,0,0,00:00:00/21:15,10641) [kworker/4:2] (onapp,98460,1984,00:00:00/21:15,10664) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362020,91156,00:00:00/21:15,10665) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/20:15,11275) [kworker/6:0] (onapp,362276,91296,00:00:00/20:15,11282) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/05:07:16,11621) [kworker/4:0] (onapp,283912,11636,00:00:00/18:49,11833) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/01:16:32,11874) [kworker/u16:0] (root,0,0,00:00:02/3-00:18:15,12598) [kworker/5:2] (root,0,0,00:00:00/16:15,13609) [kworker/5:0] (root,0,0,00:00:14/1464-09:05:36,13987) [kworker/7:1H] (root,0,0,00:00:09/1464-09:00:31,14018) [kworker/4:1H] (postfix,89848,4084,00:00:00/14:30,14434) pickup -l -t unix -u (root,0,0,00:00:43/1464-09:05:28,14909) [kworker/2:1H] (root,0,0,00:00:00/01:09:15,16072) [kworker/2:2] (root,0,0,00:00:00/11:16,16388) [kworker/0:2] (apache,378180,12840,00:00:00/2-17:27:33,16756) /usr/sbin/httpd -DFOREGROUND (apache,378184,12872,00:00:00/2-17:27:32,16758) /usr/sbin/httpd -DFOREGROUND (apache,378180,12860,00:00:00/2-17:27:31,16760) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-13:35:16,17912) [kworker/1:0] (ntp,25732,2012,00:22:08/1464-08:35:26,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19236,01:12:32/1464-08:35:06,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:55:03/1464-08:33:47,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:06/1464-08:33:47,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/05:51:16,19244) [kworker/2:1] (root,27168,1132,00:24:59/1464-08:30:36,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/03:15,20890) [kworker/5:1] (root,115412,1648,00:00:00/00:00,22812) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,22831) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,22832) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (onapp,911892,41524,04:24:38/450-04:48:40,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:34/450-04:48:40,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/51:16,26135) [kworker/1:2] (root,0,0,00:00:00/02:42:18,28222) [kworker/u16:1] (root,0,0,00:00:01/2-02:42:16,28377) [kworker/6:2] (root,0,0,00:00:00/02:41:16,28881) [kworker/0:0] (root,0,0,00:00:00/02:41:15,28884) [kworker/7:2] (onapp,1516072,9848,01:02:44/39-10:43:32,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/40:15,32367) [kworker/3:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-04 00:21 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350122b2c0f5Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:42:54/1462-09:51:51,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1462-09:51:51,2) [kthreadd] (root,0,0,00:00:00/1462-09:51:51,4) [kworker/0:0H] (root,0,0,00:15:50/1462-09:51:51,6) [ksoftirqd/0] (root,0,0,00:01:16/1462-09:51:51,7) [migration/0] (root,0,0,00:00:00/1462-09:51:51,8) [rcu_bh] (root,0,0,19:02:19/1462-09:51:51,9) [rcu_sched] (root,0,0,00:00:00/1462-09:51:51,10) [lru-add-drain] (root,0,0,00:06:27/1462-09:51:51,11) [watchdog/0] (root,0,0,00:06:29/1462-09:51:51,12) [watchdog/1] (root,0,0,00:01:15/1462-09:51:51,13) [migration/1] (root,0,0,00:13:26/1462-09:51:51,14) [ksoftirqd/1] (root,0,0,00:00:00/1462-09:51:51,16) [kworker/1:0H] (root,0,0,00:05:46/1462-09:51:51,17) [watchdog/2] (root,0,0,00:01:15/1462-09:51:51,18) [migration/2] (root,0,0,00:13:17/1462-09:51:51,19) [ksoftirqd/2] (root,0,0,00:00:00/1462-09:51:51,21) [kworker/2:0H] (root,0,0,00:05:48/1462-09:51:51,22) [watchdog/3] (root,0,0,00:01:16/1462-09:51:51,23) [migration/3] (root,0,0,00:13:53/1462-09:51:51,24) [ksoftirqd/3] (root,0,0,00:00:00/1462-09:51:51,26) [kworker/3:0H] (root,0,0,00:05:26/1462-09:51:51,27) [watchdog/4] (root,0,0,00:11:24/1462-09:51:51,28) [migration/4] (root,0,0,00:48:29/1462-09:51:51,29) [ksoftirqd/4] (root,0,0,00:00:00/1462-09:51:51,31) [kworker/4:0H] (root,0,0,00:05:39/1462-09:51:51,32) [watchdog/5] (root,0,0,00:11:10/1462-09:51:51,33) [migration/5] (root,0,0,00:54:36/1462-09:51:51,34) [ksoftirqd/5] (root,0,0,00:00:00/1462-09:51:51,36) [kworker/5:0H] (root,0,0,00:05:30/1462-09:51:51,37) [watchdog/6] (root,0,0,00:10:53/1462-09:51:51,38) [migration/6] (root,0,0,00:55:12/1462-09:51:51,39) [ksoftirqd/6] (root,0,0,00:00:00/1462-09:51:51,41) [kworker/6:0H] (root,0,0,00:05:57/1462-09:51:51,42) [watchdog/7] (root,0,0,00:11:12/1462-09:51:51,43) [migration/7] (root,0,0,01:04:03/1462-09:51:51,44) [ksoftirqd/7] (root,0,0,00:00:00/1462-09:51:51,46) [kworker/7:0H] (root,0,0,00:00:00/1462-09:51:51,48) [kdevtmpfs] (root,0,0,00:00:00/1462-09:51:51,49) [netns] (root,0,0,00:00:43/1462-09:51:51,50) [khungtaskd] (root,0,0,00:00:00/1462-09:51:51,51) [writeback] (root,0,0,00:00:00/1462-09:51:51,52) [kintegrityd] (root,0,0,00:00:00/1462-09:51:51,53) [bioset] (root,0,0,00:00:00/1462-09:51:51,54) [bioset] (root,0,0,00:00:00/1462-09:51:51,55) [bioset] (root,0,0,00:00:00/1462-09:51:51,56) [kblockd] (root,0,0,00:00:00/1462-09:51:51,57) [md] (root,0,0,00:00:00/1462-09:51:51,58) [edac-poller] (root,0,0,00:00:00/1462-09:51:51,59) [watchdogd] (root,0,0,00:00:00/1462-09:51:51,66) [kswapd0] (root,0,0,00:00:00/1462-09:51:51,67) [ksmd] (root,0,0,00:08:34/1462-09:51:51,68) [khugepaged] (root,0,0,00:00:00/1462-09:51:51,69) [crypto] (root,0,0,00:00:00/1462-09:51:51,77) [kthrotld] (root,0,0,00:00:00/1462-09:51:51,79) [kmpath_rdacd] (root,0,0,00:00:00/1462-09:51:51,80) [kaluad] (root,0,0,00:00:00/1462-09:51:50,82) [kpsmoused] (root,0,0,00:00:00/1462-09:51:50,89) [ipv6_addrconf] (root,0,0,00:00:00/1462-09:51:50,102) [deferwq] (root,0,0,00:13:44/1462-09:51:50,139) [kauditd] (root,0,0,00:00:00/1462-09:51:49,281) [scsi_eh_0] (root,0,0,00:00:00/1462-09:51:49,282) [scsi_tmf_0] (root,0,0,00:00:00/1462-09:51:49,291) [ixgbe] (root,0,0,00:00:00/1462-09:51:49,304) [poll_megasas0_s] (root,0,0,00:00:00/1462-09:51:49,306) [ttm_swap] (root,0,0,06:03:21/1462-09:51:48,337) [jbd2/sda3-8] (root,0,0,00:00:00/1462-09:51:48,338) [ext4-rsv-conver] (root,145524,88036,02:29:38/1462-09:51:47,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:30/1462-08:36:44,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28488,1-07:57:14/1462-08:36:44,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11076,13:32:16/1462-08:36:30,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1462-09:51:47,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1462-09:51:47,527) [jbd2/sda2-8] (root,0,0,00:00:00/1462-09:51:47,528) [ext4-rsv-conver] (root,55532,1060,00:30:14/1462-09:51:47,573) /sbin/auditd (polkitd,613004,14012,02:46:13/1462-09:51:47,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:58:58/1462-09:51:47,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:17:27/1462-09:51:47,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:16:46/1462-09:51:47,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:34/1462-09:51:47,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1462-08:36:20,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1462-08:36:19,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,321204,1-23:52:45/1462-08:36:19,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (apache,278296,9076,00:00:01/21:32:44,731) /usr/sbin/httpd -DFOREGROUND (apache,378176,12736,00:00:00/21:32:44,732) /usr/sbin/httpd -DFOREGROUND (apache,378180,12796,00:00:00/21:32:44,733) /usr/sbin/httpd -DFOREGROUND (apache,378180,12816,00:00:00/21:32:44,734) /usr/sbin/httpd -DFOREGROUND (apache,378180,12820,00:00:00/21:32:44,735) /usr/sbin/httpd -DFOREGROUND (apache,378180,12816,00:00:00/21:32:44,736) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:41/1462-09:51:44,930) [kworker/3:1H] (root,112900,4352,00:00:04/1462-09:51:38,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:31/1462-09:51:38,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:39/1462-09:51:38,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1462-09:51:37,1643) [kworker/6:1H] (root,0,0,00:00:39/1462-09:51:27,1646) [kworker/1:1H] (root,0,0,00:00:39/1462-09:51:03,1673) [kworker/0:1H] (root,0,0,00:00:47/1462-09:50:29,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1462-09:49:24,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/22:44,1803) [kworker/4:1] (postfix,89848,4080,00:00:00/01:19:53,1926) pickup -l -t unix -u (root,0,0,00:00:00/03:13:57,2687) [kworker/5:0] (apache,378180,12772,00:00:00/21:27:02,3909) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/17:45,4543) [kworker/2:2] (root,0,0,00:00:01/14:41:44,4968) [kworker/4:2] (root,0,0,00:00:00/01:10:45,7066) [kworker/7:0] (apache,378176,12700,00:00:00/11:44:45,7138) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:53:05/1462-09:49:13,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740688,42664,02:23:55/1462-09:49:13,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/327-15:39:09,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/03:58:57,9897) [kworker/7:1] (onapp,98460,1984,00:00:00/01:04:44,10501) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363180,92036,00:00:01/01:04:44,10502) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362984,91948,00:00:01/01:03:44,11043) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11640,00:00:00/01:02:46,11590) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/04:44,11874) [kworker/4:0] (root,0,0,00:00:00/03:44,12416) [kworker/7:2] (root,0,0,00:00:00/1-01:01:44,12598) [kworker/5:2] (root,0,0,00:00:00/02:45,13019) [kworker/0:2] (root,0,0,00:00:14/1462-09:49:05,13987) [kworker/7:1H] (root,0,0,00:00:09/1462-09:44:00,14018) [kworker/4:1H] (root,115412,1648,00:00:00/00:00,14467) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,14486) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,14487) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:43/1462-09:48:57,14909) [kworker/2:1H] (root,0,0,00:00:00/56:09,15267) [kworker/u16:0] (apache,378180,12764,00:00:00/18:11:02,16756) /usr/sbin/httpd -DFOREGROUND (apache,378184,12748,00:00:00/18:11:01,16758) /usr/sbin/httpd -DFOREGROUND (apache,378180,12604,00:00:00/18:11:00,16760) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/15:16:45,17628) [kworker/0:0] (ntp,25732,2012,00:22:07/1462-09:18:55,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:00/50:49,18440) [kworker/u16:2] (root,377912,19236,01:12:26/1462-09:18:35,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:53:30/1462-09:17:16,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:08:00/1462-09:17:16,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:56/1462-09:14:05,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/47:57,20077) [kworker/6:1] (root,0,0,00:00:00/07:28:44,21502) [kworker/2:1] (onapp,911892,41524,04:23:52/448-05:32:09,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:28/448-05:32:09,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/35:44,26823) [kworker/1:0] (root,0,0,00:00:00/34:45,27437) [kworker/0:1] (root,0,0,00:00:00/03:25:45,28377) [kworker/6:2] (root,0,0,00:00:00/30:45,29667) [kworker/3:2] (onapp,1516072,9844,00:59:42/37-11:27:01,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/06:13:45,31174) [kworker/3:1] (root,0,0,00:00:00/1-02:22:41,31829) [kworker/1:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-12-02 01:04 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501d61369ceFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:41:53/1460-09:13:04,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1460-09:13:04,2) [kthreadd] (root,0,0,00:00:00/1460-09:13:04,4) [kworker/0:0H] (root,0,0,00:15:49/1460-09:13:04,6) [ksoftirqd/0] (root,0,0,00:01:16/1460-09:13:04,7) [migration/0] (root,0,0,00:00:00/1460-09:13:04,8) [rcu_bh] (root,0,0,19:01:05/1460-09:13:04,9) [rcu_sched] (root,0,0,00:00:00/1460-09:13:04,10) [lru-add-drain] (root,0,0,00:06:26/1460-09:13:04,11) [watchdog/0] (root,0,0,00:06:29/1460-09:13:04,12) [watchdog/1] (root,0,0,00:01:15/1460-09:13:04,13) [migration/1] (root,0,0,00:13:25/1460-09:13:04,14) [ksoftirqd/1] (root,0,0,00:00:00/1460-09:13:04,16) [kworker/1:0H] (root,0,0,00:05:46/1460-09:13:04,17) [watchdog/2] (root,0,0,00:01:15/1460-09:13:04,18) [migration/2] (root,0,0,00:13:16/1460-09:13:04,19) [ksoftirqd/2] (root,0,0,00:00:00/1460-09:13:04,21) [kworker/2:0H] (root,0,0,00:05:47/1460-09:13:04,22) [watchdog/3] (root,0,0,00:01:16/1460-09:13:04,23) [migration/3] (root,0,0,00:13:52/1460-09:13:04,24) [ksoftirqd/3] (root,0,0,00:00:00/1460-09:13:04,26) [kworker/3:0H] (root,0,0,00:05:25/1460-09:13:04,27) [watchdog/4] (root,0,0,00:11:23/1460-09:13:04,28) [migration/4] (root,0,0,00:48:26/1460-09:13:04,29) [ksoftirqd/4] (root,0,0,00:00:00/1460-09:13:04,31) [kworker/4:0H] (root,0,0,00:05:39/1460-09:13:04,32) [watchdog/5] (root,0,0,00:11:10/1460-09:13:04,33) [migration/5] (root,0,0,00:54:33/1460-09:13:04,34) [ksoftirqd/5] (root,0,0,00:00:00/1460-09:13:04,36) [kworker/5:0H] (root,0,0,00:05:30/1460-09:13:04,37) [watchdog/6] (root,0,0,00:10:52/1460-09:13:04,38) [migration/6] (root,0,0,00:55:09/1460-09:13:04,39) [ksoftirqd/6] (root,0,0,00:00:00/1460-09:13:04,41) [kworker/6:0H] (root,0,0,00:05:56/1460-09:13:04,42) [watchdog/7] (root,0,0,00:11:11/1460-09:13:04,43) [migration/7] (root,0,0,01:03:59/1460-09:13:04,44) [ksoftirqd/7] (root,0,0,00:00:00/1460-09:13:04,46) [kworker/7:0H] (root,0,0,00:00:00/1460-09:13:04,48) [kdevtmpfs] (root,0,0,00:00:00/1460-09:13:04,49) [netns] (root,0,0,00:00:43/1460-09:13:04,50) [khungtaskd] (root,0,0,00:00:00/1460-09:13:04,51) [writeback] (root,0,0,00:00:00/1460-09:13:04,52) [kintegrityd] (root,0,0,00:00:00/1460-09:13:04,53) [bioset] (root,0,0,00:00:00/1460-09:13:04,54) [bioset] (root,0,0,00:00:00/1460-09:13:04,55) [bioset] (root,0,0,00:00:00/1460-09:13:04,56) [kblockd] (root,0,0,00:00:00/1460-09:13:04,57) [md] (root,0,0,00:00:00/1460-09:13:04,58) [edac-poller] (root,0,0,00:00:00/1460-09:13:04,59) [watchdogd] (root,0,0,00:00:00/1460-09:13:04,66) [kswapd0] (root,0,0,00:00:00/1460-09:13:04,67) [ksmd] (root,0,0,00:08:33/1460-09:13:04,68) [khugepaged] (root,0,0,00:00:00/1460-09:13:04,69) [crypto] (root,0,0,00:00:00/1460-09:13:04,77) [kthrotld] (root,0,0,00:00:00/1460-09:13:04,79) [kmpath_rdacd] (root,0,0,00:00:00/1460-09:13:04,80) [kaluad] (root,0,0,00:00:00/1460-09:13:03,82) [kpsmoused] (root,0,0,00:00:00/1460-09:13:03,89) [ipv6_addrconf] (root,0,0,00:00:00/1460-09:13:03,102) [deferwq] (root,0,0,00:13:43/1460-09:13:03,139) [kauditd] (root,0,0,00:00:00/1460-09:13:02,281) [scsi_eh_0] (root,0,0,00:00:00/1460-09:13:02,282) [scsi_tmf_0] (root,0,0,00:00:00/1460-09:13:02,291) [ixgbe] (root,0,0,00:00:00/1460-09:13:02,304) [poll_megasas0_s] (root,0,0,00:00:00/1460-09:13:02,306) [ttm_swap] (root,0,0,06:03:12/1460-09:13:01,337) [jbd2/sda3-8] (root,0,0,00:00:00/1460-09:13:01,338) [ext4-rsv-conver] (root,55444,17380,02:29:26/1460-09:13:00,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:28/1460-07:57:57,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28488,1-07:54:41/1460-07:57:57,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11072,13:31:08/1460-07:57:43,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1460-09:13:00,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1460-09:13:00,527) [jbd2/sda2-8] (root,0,0,00:00:00/1460-09:13:00,528) [ext4-rsv-conver] (root,55532,1060,00:30:11/1460-09:13:00,573) /sbin/auditd (polkitd,613004,14012,02:45:59/1460-09:13:00,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:58:38/1460-09:13:00,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:17:11/1460-09:13:00,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:16:10/1460-09:13:00,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:31/1460-09:13:00,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1460-07:57:33,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1460-07:57:32,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,321204,1-23:48:15/1460-07:57:32,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1460-09:12:57,930) [kworker/3:1H] (root,112900,4352,00:00:04/1460-09:12:51,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:30/1460-09:12:51,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:39/1460-09:12:51,1463) qmgr -l -t unix -u (root,0,0,00:00:14/1460-09:12:50,1643) [kworker/6:1H] (root,0,0,00:00:39/1460-09:12:40,1646) [kworker/1:1H] (root,0,0,00:00:39/1460-09:12:16,1673) [kworker/0:1H] (root,0,0,00:00:47/1460-09:11:42,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1460-09:10:37,1750) /usr/lib/systemd/systemd-udevd (apache,378192,12852,00:00:00/1-20:29:13,1802) /usr/sbin/httpd -DFOREGROUND (apache,378192,12948,00:00:00/1-20:29:12,1804) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/04:08:57,1957) [kworker/3:2] (root,0,0,00:00:00/16:57,2796) [kworker/3:1] (root,0,0,00:00:00/15:57,3436) [kworker/7:1] (root,0,0,00:00:00/15:56,3448) [kworker/4:2] (root,0,0,00:00:00/15:56,3451) [kworker/0:0] (root,0,0,00:00:00/01:07:57,6499) [kworker/6:2] (root,0,0,00:00:00/18:24:58,6811) [kworker/5:0] (root,574280,19564,02:52:50/1460-09:10:26,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,734584,16604,02:23:43/1460-09:10:26,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/04:55:57,7897) [kworker/2:0] (root,110204,848,00:00:00/325-15:00:22,8910) /sbin/agetty --noclear tty1 linux (postfix,89848,4084,00:00:00/01:03:01,9202) pickup -l -t unix -u (root,0,0,00:00:00/05:38,9223) [kworker/u16:0] (root,0,0,00:00:00/02:57,10692) [kworker/2:2] (root,115412,1648,00:00:00/00:00,12508) /bin/bash /usr/bin/check_mk_agent (root,51732,1684,00:00:00/00:00,12527) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,12528) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:14/1460-09:10:18,13987) [kworker/7:1H] (root,0,0,00:00:09/1460-09:05:13,14018) [kworker/4:1H] (apache,378192,12892,00:00:01/5-17:16:20,14325) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:43/1460-09:10:10,14909) [kworker/2:1H] (apache,278296,9064,00:00:06/5-21:03:58,15635) /usr/sbin/httpd -DFOREGROUND (apache,378192,12996,00:00:01/5-21:03:58,15636) /usr/sbin/httpd -DFOREGROUND (apache,378192,12876,00:00:01/5-21:03:58,15637) /usr/sbin/httpd -DFOREGROUND (apache,378192,12908,00:00:01/5-21:03:58,15638) /usr/sbin/httpd -DFOREGROUND (apache,378200,12884,00:00:01/5-21:03:58,15639) /usr/sbin/httpd -DFOREGROUND (apache,378192,12928,00:00:01/5-21:03:58,15640) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:45:56,16118) [kworker/1:1] (ntp,25732,2012,00:22:05/1460-08:40:08,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:01/1-19:01:57,18361) [kworker/0:2] (root,377912,19224,01:12:20/1460-08:39:48,18605) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:40:57,18944) [kworker/6:0] (onapp,216524,22168,18:51:55/1460-08:38:29,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:07:54/1460-08:38:29,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:55/1460-08:35:18,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (onapp,911892,43548,04:23:04/446-04:53:22,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:23/446-04:53:22,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378192,12876,00:00:01/3-20:47:37,24401) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:32:56,24713) [kworker/5:1] (apache,378200,12768,00:00:00/1-09:13:49,25397) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/33:32,25697) [kworker/u16:1] (root,0,0,00:00:00/30:58,27145) [kworker/4:1] (root,0,0,00:00:01/1-08:08:56,29353) [kworker/7:0] (root,0,0,00:00:00/25:58,30018) [kworker/1:2] (onapp,98460,1980,00:00:00/25:58,30046) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362280,91296,00:00:00/25:58,30047) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362468,91384,00:00:00/24:57,30587) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,1516076,9664,00:56:34/35-10:48:14,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,283912,11636,00:00:00/24:03,31156) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/22:57,31774) [kworker/2:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-30 00:25 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501ac43111aFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:40:52/1458-09:41:18,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1458-09:41:18,2) [kthreadd] (root,0,0,00:00:00/1458-09:41:18,4) [kworker/0:0H] (root,0,0,00:15:48/1458-09:41:18,6) [ksoftirqd/0] (root,0,0,00:01:16/1458-09:41:18,7) [migration/0] (root,0,0,00:00:00/1458-09:41:18,8) [rcu_bh] (root,0,0,18:59:50/1458-09:41:18,9) [rcu_sched] (root,0,0,00:00:00/1458-09:41:18,10) [lru-add-drain] (root,0,0,00:06:26/1458-09:41:18,11) [watchdog/0] (root,0,0,00:06:28/1458-09:41:18,12) [watchdog/1] (root,0,0,00:01:15/1458-09:41:18,13) [migration/1] (root,0,0,00:13:24/1458-09:41:18,14) [ksoftirqd/1] (root,0,0,00:00:00/1458-09:41:18,16) [kworker/1:0H] (root,0,0,00:05:45/1458-09:41:18,17) [watchdog/2] (root,0,0,00:01:14/1458-09:41:18,18) [migration/2] (root,0,0,00:13:15/1458-09:41:18,19) [ksoftirqd/2] (root,0,0,00:00:00/1458-09:41:18,21) [kworker/2:0H] (root,0,0,00:05:47/1458-09:41:18,22) [watchdog/3] (root,0,0,00:01:15/1458-09:41:18,23) [migration/3] (root,0,0,00:13:51/1458-09:41:18,24) [ksoftirqd/3] (root,0,0,00:00:00/1458-09:41:18,26) [kworker/3:0H] (root,0,0,00:05:25/1458-09:41:18,27) [watchdog/4] (root,0,0,00:11:23/1458-09:41:18,28) [migration/4] (root,0,0,00:48:23/1458-09:41:18,29) [ksoftirqd/4] (root,0,0,00:00:00/1458-09:41:18,31) [kworker/4:0H] (root,0,0,00:05:38/1458-09:41:18,32) [watchdog/5] (root,0,0,00:11:09/1458-09:41:18,33) [migration/5] (root,0,0,00:54:29/1458-09:41:18,34) [ksoftirqd/5] (root,0,0,00:00:00/1458-09:41:18,36) [kworker/5:0H] (root,0,0,00:05:29/1458-09:41:18,37) [watchdog/6] (root,0,0,00:10:52/1458-09:41:18,38) [migration/6] (root,0,0,00:55:05/1458-09:41:18,39) [ksoftirqd/6] (root,0,0,00:00:00/1458-09:41:18,41) [kworker/6:0H] (root,0,0,00:05:56/1458-09:41:18,42) [watchdog/7] (root,0,0,00:11:10/1458-09:41:18,43) [migration/7] (root,0,0,01:03:55/1458-09:41:18,44) [ksoftirqd/7] (root,0,0,00:00:00/1458-09:41:18,46) [kworker/7:0H] (root,0,0,00:00:00/1458-09:41:18,48) [kdevtmpfs] (root,0,0,00:00:00/1458-09:41:18,49) [netns] (root,0,0,00:00:43/1458-09:41:18,50) [khungtaskd] (root,0,0,00:00:00/1458-09:41:18,51) [writeback] (root,0,0,00:00:00/1458-09:41:18,52) [kintegrityd] (root,0,0,00:00:00/1458-09:41:18,53) [bioset] (root,0,0,00:00:00/1458-09:41:18,54) [bioset] (root,0,0,00:00:00/1458-09:41:18,55) [bioset] (root,0,0,00:00:00/1458-09:41:18,56) [kblockd] (root,0,0,00:00:00/1458-09:41:18,57) [md] (root,0,0,00:00:00/1458-09:41:18,58) [edac-poller] (root,0,0,00:00:00/1458-09:41:18,59) [watchdogd] (root,0,0,00:00:00/1458-09:41:18,66) [kswapd0] (root,0,0,00:00:00/1458-09:41:18,67) [ksmd] (root,0,0,00:08:32/1458-09:41:18,68) [khugepaged] (root,0,0,00:00:00/1458-09:41:18,69) [crypto] (root,0,0,00:00:00/1458-09:41:18,77) [kthrotld] (root,0,0,00:00:00/1458-09:41:18,79) [kmpath_rdacd] (root,0,0,00:00:00/1458-09:41:18,80) [kaluad] (root,0,0,00:00:00/1458-09:41:17,82) [kpsmoused] (root,0,0,00:00:00/1458-09:41:17,89) [ipv6_addrconf] (root,0,0,00:00:00/1458-09:41:17,102) [deferwq] (root,0,0,00:13:42/1458-09:41:17,139) [kauditd] (root,0,0,00:00:00/1458-09:41:16,281) [scsi_eh_0] (root,0,0,00:00:00/1458-09:41:16,282) [scsi_tmf_0] (root,0,0,00:00:00/1458-09:41:16,291) [ixgbe] (root,0,0,00:00:00/1458-09:41:16,304) [poll_megasas0_s] (root,0,0,00:00:00/1458-09:41:16,306) [ttm_swap] (root,0,0,06:03:03/1458-09:41:15,337) [jbd2/sda3-8] (root,0,0,00:00:00/1458-09:41:15,338) [ext4-rsv-conver] (root,71828,35032,02:29:13/1458-09:41:14,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:25/1458-08:26:11,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28484,1-07:52:04/1458-08:26:11,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11072,13:30:02/1458-08:25:57,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1458-09:41:14,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1458-09:41:14,527) [jbd2/sda2-8] (root,0,0,00:00:00/1458-09:41:14,528) [ext4-rsv-conver] (root,55532,1060,00:30:09/1458-09:41:14,573) /sbin/auditd (polkitd,613004,14012,02:45:45/1458-09:41:14,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:58:19/1458-09:41:14,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:16:55/1458-09:41:14,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:15:34/1458-09:41:14,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:28/1458-09:41:14,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1458-08:25:47,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1458-08:25:46,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,351880,1-23:43:52/1458-08:25:46,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1458-09:41:11,930) [kworker/3:1H] (root,112900,4352,00:00:04/1458-09:41:05,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:30/1458-09:41:05,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:39/1458-09:41:05,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1458-09:41:04,1643) [kworker/6:1H] (root,0,0,00:00:39/1458-09:40:54,1646) [kworker/1:1H] (root,0,0,00:00:39/1458-09:40:30,1673) [kworker/0:1H] (root,0,0,00:00:47/1458-09:39:56,1674) [kworker/5:1H] (root,0,0,00:00:02/2-07:32:11,1715) [kworker/2:2] (root,45408,1780,00:00:00/1458-09:38:51,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/44:11,3639) [kworker/2:0] (root,0,0,00:00:00/13:09:11,5994) [kworker/3:0] (root,574280,19564,02:52:36/1458-09:38:40,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,737616,25844,02:23:31/1458-09:38:40,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/323-15:28:36,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/30:57,11124) [kworker/u16:2] (root,0,0,00:00:00/03:23:11,11328) [kworker/5:2] (root,0,0,00:00:00/04:20:12,11694) [kworker/7:1] (root,0,0,00:00:00/01:24:12,13421) [kworker/4:2] (root,0,0,00:00:14/1458-09:38:32,13987) [kworker/7:1H] (root,0,0,00:00:09/1458-09:33:27,14018) [kworker/4:1H] (apache,378192,12880,00:00:01/3-17:44:34,14325) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:43/1458-09:38:24,14909) [kworker/2:1H] (root,0,0,00:00:00/23:09,15400) [kworker/3:2] (root,0,0,00:00:00/02:18:09,15457) [kworker/5:0] (apache,278296,9064,00:00:04/3-21:32:12,15635) /usr/sbin/httpd -DFOREGROUND (apache,378192,12880,00:00:01/3-21:32:12,15636) /usr/sbin/httpd -DFOREGROUND (apache,378192,12852,00:00:01/3-21:32:12,15637) /usr/sbin/httpd -DFOREGROUND (apache,378192,12900,00:00:01/3-21:32:12,15638) /usr/sbin/httpd -DFOREGROUND (apache,378200,12884,00:00:01/3-21:32:12,15639) /usr/sbin/httpd -DFOREGROUND (apache,378192,12872,00:00:01/3-21:32:12,15640) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:02/1-09:58:09,16370) [kworker/4:0] (apache,378192,12896,00:00:01/3-21:30:30,16699) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:22:03/1458-09:08:22,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19224,01:12:14/1458-09:08:02,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:50:22/1458-09:06:43,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:07:49/1458-09:06:43,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:52/1458-09:03:32,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/09:51:11,20029) [kworker/1:2] (postfix,89848,4084,00:00:00/12:59,21221) pickup -l -t unix -u (root,0,0,00:00:00/12:11,21585) [kworker/0:2] (root,0,0,00:00:00/10:12,22692) [kworker/7:2] (root,0,0,00:00:00/01:07:09,22891) [kworker/1:1] (onapp,911892,41524,04:22:19/444-05:21:36,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:17/444-05:21:36,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/01:05:40,23860) [kworker/6:0] (apache,378192,12820,00:00:00/1-21:15:52,24399) /usr/sbin/httpd -DFOREGROUND (apache,378192,12836,00:00:00/1-21:15:51,24401) /usr/sbin/httpd -DFOREGROUND (apache,378192,12920,00:00:01/3-16:25:22,26282) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:57:08,27369) [kworker/u16:0] (root,0,0,00:00:00/06:44:12,27958) [kworker/0:0] (root,115412,1644,00:00:00/00:00,28481) /bin/bash /usr/bin/check_mk_agent (root,51732,1692,00:00:00/00:00,28500) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,28501) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/19:10:12,29905) [kworker/6:1] (onapp,98460,1984,00:00:00/54:11,30263) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363184,92040,00:00:00/54:11,30264) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363184,91940,00:00:01/53:11,30800) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,1516072,9800,00:53:21/33-11:16:28,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,283912,11640,00:00:00/52:29,31325) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-28 00:54 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350116bdca80Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:39:51/1456-09:47:16,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1456-09:47:16,2) [kthreadd] (root,0,0,00:00:00/1456-09:47:16,4) [kworker/0:0H] (root,0,0,00:15:47/1456-09:47:16,6) [ksoftirqd/0] (root,0,0,00:01:16/1456-09:47:16,7) [migration/0] (root,0,0,00:00:00/1456-09:47:16,8) [rcu_bh] (root,0,0,18:58:35/1456-09:47:16,9) [rcu_sched] (root,0,0,00:00:00/1456-09:47:16,10) [lru-add-drain] (root,0,0,00:06:25/1456-09:47:16,11) [watchdog/0] (root,0,0,00:06:28/1456-09:47:16,12) [watchdog/1] (root,0,0,00:01:15/1456-09:47:16,13) [migration/1] (root,0,0,00:13:22/1456-09:47:16,14) [ksoftirqd/1] (root,0,0,00:00:00/1456-09:47:16,16) [kworker/1:0H] (root,0,0,00:05:45/1456-09:47:16,17) [watchdog/2] (root,0,0,00:01:14/1456-09:47:16,18) [migration/2] (root,0,0,00:13:14/1456-09:47:16,19) [ksoftirqd/2] (root,0,0,00:00:00/1456-09:47:16,21) [kworker/2:0H] (root,0,0,00:05:46/1456-09:47:16,22) [watchdog/3] (root,0,0,00:01:15/1456-09:47:16,23) [migration/3] (root,0,0,00:13:50/1456-09:47:16,24) [ksoftirqd/3] (root,0,0,00:00:00/1456-09:47:16,26) [kworker/3:0H] (root,0,0,00:05:24/1456-09:47:16,27) [watchdog/4] (root,0,0,00:11:22/1456-09:47:16,28) [migration/4] (root,0,0,00:48:20/1456-09:47:16,29) [ksoftirqd/4] (root,0,0,00:00:00/1456-09:47:16,31) [kworker/4:0H] (root,0,0,00:05:38/1456-09:47:16,32) [watchdog/5] (root,0,0,00:11:08/1456-09:47:16,33) [migration/5] (root,0,0,00:54:26/1456-09:47:16,34) [ksoftirqd/5] (root,0,0,00:00:00/1456-09:47:16,36) [kworker/5:0H] (root,0,0,00:05:29/1456-09:47:16,37) [watchdog/6] (root,0,0,00:10:51/1456-09:47:16,38) [migration/6] (root,0,0,00:55:02/1456-09:47:16,39) [ksoftirqd/6] (root,0,0,00:00:00/1456-09:47:16,41) [kworker/6:0H] (root,0,0,00:05:55/1456-09:47:16,42) [watchdog/7] (root,0,0,00:11:09/1456-09:47:16,43) [migration/7] (root,0,0,01:03:50/1456-09:47:16,44) [ksoftirqd/7] (root,0,0,00:00:00/1456-09:47:16,46) [kworker/7:0H] (root,0,0,00:00:00/1456-09:47:16,48) [kdevtmpfs] (root,0,0,00:00:00/1456-09:47:16,49) [netns] (root,0,0,00:00:43/1456-09:47:16,50) [khungtaskd] (root,0,0,00:00:00/1456-09:47:16,51) [writeback] (root,0,0,00:00:00/1456-09:47:16,52) [kintegrityd] (root,0,0,00:00:00/1456-09:47:16,53) [bioset] (root,0,0,00:00:00/1456-09:47:16,54) [bioset] (root,0,0,00:00:00/1456-09:47:16,55) [bioset] (root,0,0,00:00:00/1456-09:47:16,56) [kblockd] (root,0,0,00:00:00/1456-09:47:16,57) [md] (root,0,0,00:00:00/1456-09:47:16,58) [edac-poller] (root,0,0,00:00:00/1456-09:47:16,59) [watchdogd] (root,0,0,00:00:00/1456-09:47:16,66) [kswapd0] (root,0,0,00:00:00/1456-09:47:16,67) [ksmd] (root,0,0,00:08:32/1456-09:47:16,68) [khugepaged] (root,0,0,00:00:00/1456-09:47:16,69) [crypto] (root,0,0,00:00:00/1456-09:47:16,77) [kthrotld] (root,0,0,00:00:00/1456-09:47:16,79) [kmpath_rdacd] (root,0,0,00:00:00/1456-09:47:16,80) [kaluad] (root,0,0,00:00:00/1456-09:47:15,82) [kpsmoused] (root,0,0,00:00:00/1456-09:47:15,89) [ipv6_addrconf] (root,0,0,00:00:00/1456-09:47:15,102) [deferwq] (root,0,0,00:13:41/1456-09:47:15,139) [kauditd] (root,0,0,00:00:00/1456-09:47:14,281) [scsi_eh_0] (root,0,0,00:00:00/1456-09:47:14,282) [scsi_tmf_0] (root,0,0,00:00:00/1456-09:47:14,291) [ixgbe] (root,0,0,00:00:00/1456-09:47:14,304) [poll_megasas0_s] (root,0,0,00:00:00/1456-09:47:14,306) [ttm_swap] (root,0,0,06:02:55/1456-09:47:13,337) [jbd2/sda3-8] (root,0,0,00:00:00/1456-09:47:13,338) [ext4-rsv-conver] (root,104596,52788,02:29:01/1456-09:47:12,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:22/1456-08:32:09,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28484,1-07:49:26/1456-08:32:09,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11072,13:28:55/1456-08:31:55,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1456-09:47:12,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1456-09:47:12,527) [jbd2/sda2-8] (root,0,0,00:00:00/1456-09:47:12,528) [ext4-rsv-conver] (root,55532,1060,00:30:07/1456-09:47:12,573) /sbin/auditd (polkitd,613004,14012,02:45:31/1456-09:47:12,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:57:59/1456-09:47:12,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:16:38/1456-09:47:12,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:14:57/1456-09:47:12,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:25/1456-09:47:12,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1456-08:31:45,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1456-08:31:44,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,351860,1-23:39:26/1456-08:31:44,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1456-09:47:09,930) [kworker/3:1H] (root,112900,4352,00:00:04/1456-09:47:03,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/55:09,1319) [kworker/0:2] (root,89708,2212,00:08:29/1456-09:47:03,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:38/1456-09:47:03,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1456-09:47:02,1643) [kworker/6:1H] (root,0,0,00:00:39/1456-09:46:52,1646) [kworker/1:1H] (root,0,0,00:00:39/1456-09:46:28,1673) [kworker/0:1H] (root,0,0,00:00:47/1456-09:45:54,1674) [kworker/5:1H] (root,0,0,00:00:00/07:38:09,1715) [kworker/2:2] (root,45408,1780,00:00:00/1456-09:44:49,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/50:09,4103) [kworker/7:1] (root,0,0,00:00:00/50:09,4120) [kworker/2:1] (root,0,0,00:00:00/48:10,5243) [kworker/1:0] (root,0,0,00:00:00/45:44,6619) [kworker/u16:0] (root,574280,19564,02:52:22/1456-09:44:38,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740668,35588,02:23:19/1456-09:44:38,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/321-15:34:34,8910) /sbin/agetty --noclear tty1 linux (postfix,89848,4080,00:00:00/40:56,9360) pickup -l -t unix -u (root,0,0,00:00:00/04:30:10,9949) [kworker/0:0] (root,0,0,00:00:00/03:28:45,12071) [kworker/u16:1] (root,0,0,00:00:00/35:09,12550) [kworker/1:2] (root,0,0,00:00:14/1456-09:44:30,13987) [kworker/7:1H] (root,0,0,00:00:09/1456-09:39:25,14018) [kworker/4:1H] (apache,378192,12876,00:00:00/1-17:50:32,14325) /usr/sbin/httpd -DFOREGROUND (apache,378192,12872,00:00:00/1-17:50:31,14329) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:43/1456-09:44:22,14909) [kworker/2:1H] (root,0,0,00:00:00/30:10,15320) [kworker/6:0] (apache,278296,9064,00:00:02/1-21:38:10,15635) /usr/sbin/httpd -DFOREGROUND (apache,378192,12800,00:00:00/1-21:38:10,15636) /usr/sbin/httpd -DFOREGROUND (apache,378192,12816,00:00:00/1-21:38:10,15637) /usr/sbin/httpd -DFOREGROUND (apache,378192,12900,00:00:00/1-21:38:10,15638) /usr/sbin/httpd -DFOREGROUND (apache,378200,12844,00:00:00/1-21:38:10,15639) /usr/sbin/httpd -DFOREGROUND (apache,378192,12820,00:00:00/1-21:38:10,15640) /usr/sbin/httpd -DFOREGROUND (apache,378192,12868,00:00:00/1-21:37:14,16147) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/28:09,16456) [kworker/3:1] (apache,378192,12856,00:00:00/1-21:36:28,16699) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:22:01/1456-09:14:20,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19224,01:12:08/1456-09:14:00,18605) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/08:05:09,18879) [kworker/7:0] (onapp,216524,22168,18:48:49/1456-09:12:41,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:07:43/1456-09:12:41,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:50/1456-09:09:30,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/04:10:41,20986) [kworker/5:0] (root,0,0,00:00:00/02:15:09,21008) [kworker/3:2] (root,0,0,00:00:00/12:47:10,22682) [kworker/4:0] (onapp,911892,41524,04:21:32/442-05:27:34,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:11/442-05:27:34,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378192,12808,00:00:00/1-16:31:20,26282) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:04:07,27335) [kworker/6:2] (root,0,0,00:00:00/04:10,29867) [kworker/1:1] (root,0,0,00:00:00/01:00:10,30710) [kworker/4:2] (onapp,98460,1984,00:00:00/01:00:10,30735) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363180,92036,00:00:01/01:00:10,30736) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,1516072,9764,00:50:06/31-11:22:26,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/01:57:10,31113) [kworker/5:2] (onapp,362980,91928,00:00:01/59:09,31372) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11636,00:00:00/58:06,32118) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,115412,1652,00:00:00/00:00,32489) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,32508) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,32509) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-26 01:00 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350195db4c25Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:38:49/1454-09:26:33,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1454-09:26:33,2) [kthreadd] (root,0,0,00:00:00/1454-09:26:33,4) [kworker/0:0H] (root,0,0,00:15:46/1454-09:26:33,6) [ksoftirqd/0] (root,0,0,00:01:16/1454-09:26:33,7) [migration/0] (root,0,0,00:00:00/1454-09:26:33,8) [rcu_bh] (root,0,0,18:57:20/1454-09:26:33,9) [rcu_sched] (root,0,0,00:00:00/1454-09:26:33,10) [lru-add-drain] (root,0,0,00:06:25/1454-09:26:33,11) [watchdog/0] (root,0,0,00:06:27/1454-09:26:33,12) [watchdog/1] (root,0,0,00:01:15/1454-09:26:33,13) [migration/1] (root,0,0,00:13:21/1454-09:26:33,14) [ksoftirqd/1] (root,0,0,00:00:00/1454-09:26:33,16) [kworker/1:0H] (root,0,0,00:05:44/1454-09:26:33,17) [watchdog/2] (root,0,0,00:01:14/1454-09:26:33,18) [migration/2] (root,0,0,00:13:13/1454-09:26:33,19) [ksoftirqd/2] (root,0,0,00:00:00/1454-09:26:33,21) [kworker/2:0H] (root,0,0,00:05:46/1454-09:26:33,22) [watchdog/3] (root,0,0,00:01:15/1454-09:26:33,23) [migration/3] (root,0,0,00:13:49/1454-09:26:33,24) [ksoftirqd/3] (root,0,0,00:00:00/1454-09:26:33,26) [kworker/3:0H] (root,0,0,00:05:24/1454-09:26:33,27) [watchdog/4] (root,0,0,00:11:21/1454-09:26:33,28) [migration/4] (root,0,0,00:48:17/1454-09:26:33,29) [ksoftirqd/4] (root,0,0,00:00:00/1454-09:26:33,31) [kworker/4:0H] (root,0,0,00:05:38/1454-09:26:33,32) [watchdog/5] (root,0,0,00:11:07/1454-09:26:33,33) [migration/5] (root,0,0,00:54:23/1454-09:26:33,34) [ksoftirqd/5] (root,0,0,00:00:00/1454-09:26:33,36) [kworker/5:0H] (root,0,0,00:05:28/1454-09:26:33,37) [watchdog/6] (root,0,0,00:10:50/1454-09:26:33,38) [migration/6] (root,0,0,00:54:59/1454-09:26:33,39) [ksoftirqd/6] (root,0,0,00:00:00/1454-09:26:33,41) [kworker/6:0H] (root,0,0,00:05:55/1454-09:26:33,42) [watchdog/7] (root,0,0,00:11:08/1454-09:26:33,43) [migration/7] (root,0,0,01:03:46/1454-09:26:33,44) [ksoftirqd/7] (root,0,0,00:00:00/1454-09:26:33,46) [kworker/7:0H] (root,0,0,00:00:00/1454-09:26:33,48) [kdevtmpfs] (root,0,0,00:00:00/1454-09:26:33,49) [netns] (root,0,0,00:00:43/1454-09:26:33,50) [khungtaskd] (root,0,0,00:00:00/1454-09:26:33,51) [writeback] (root,0,0,00:00:00/1454-09:26:33,52) [kintegrityd] (root,0,0,00:00:00/1454-09:26:33,53) [bioset] (root,0,0,00:00:00/1454-09:26:33,54) [bioset] (root,0,0,00:00:00/1454-09:26:33,55) [bioset] (root,0,0,00:00:00/1454-09:26:33,56) [kblockd] (root,0,0,00:00:00/1454-09:26:33,57) [md] (root,0,0,00:00:00/1454-09:26:33,58) [edac-poller] (root,0,0,00:00:00/1454-09:26:33,59) [watchdogd] (root,0,0,00:00:00/1454-09:26:33,66) [kswapd0] (root,0,0,00:00:00/1454-09:26:33,67) [ksmd] (root,0,0,00:08:31/1454-09:26:33,68) [khugepaged] (root,0,0,00:00:00/1454-09:26:33,69) [crypto] (root,0,0,00:00:00/1454-09:26:33,77) [kthrotld] (root,0,0,00:00:00/1454-09:26:33,79) [kmpath_rdacd] (root,0,0,00:00:00/1454-09:26:33,80) [kaluad] (root,0,0,00:00:00/1454-09:26:32,82) [kpsmoused] (root,0,0,00:00:00/1454-09:26:32,89) [ipv6_addrconf] (root,0,0,00:00:00/1454-09:26:32,102) [deferwq] (root,0,0,00:13:40/1454-09:26:32,139) [kauditd] (root,0,0,00:00:00/1454-09:26:31,281) [scsi_eh_0] (root,0,0,00:00:00/1454-09:26:31,282) [scsi_tmf_0] (root,0,0,00:00:00/1454-09:26:31,291) [ixgbe] (root,0,0,00:00:00/1454-09:26:31,304) [poll_megasas0_s] (root,0,0,00:00:00/1454-09:26:31,306) [ttm_swap] (root,0,0,06:02:46/1454-09:26:30,337) [jbd2/sda3-8] (root,0,0,00:00:00/1454-09:26:30,338) [ext4-rsv-conver] (root,125208,69472,02:28:48/1454-09:26:29,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:20/1454-08:11:26,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28480,1-07:46:46/1454-08:11:26,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11072,13:27:48/1454-08:11:12,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1454-09:26:29,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1454-09:26:29,527) [jbd2/sda2-8] (root,0,0,00:00:00/1454-09:26:29,528) [ext4-rsv-conver] (root,55532,1060,00:30:04/1454-09:26:29,573) /sbin/auditd (polkitd,613004,14012,02:45:18/1454-09:26:29,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:57:40/1454-09:26:29,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:16:21/1454-09:26:29,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:14:20/1454-09:26:29,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:22/1454-09:26:29,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1454-08:11:02,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1454-08:11:01,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,353760,1-23:35:07/1454-08:11:01,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (apache,378180,12680,00:00:00/15:00:35,741) /usr/sbin/httpd -DFOREGROUND (apache,378180,12764,00:00:00/15:00:30,780) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:41/1454-09:26:26,930) [kworker/3:1H] (root,112900,4352,00:00:04/1454-09:26:20,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:28/1454-09:26:20,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:38/1454-09:26:20,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1454-09:26:19,1643) [kworker/6:1H] (root,0,0,00:00:39/1454-09:26:09,1646) [kworker/1:1H] (root,0,0,00:00:39/1454-09:25:45,1673) [kworker/0:1H] (root,0,0,00:00:47/1454-09:25:11,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1454-09:24:06,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:02/1-22:39:27,2068) [kworker/7:0] (root,0,0,00:00:01/1-14:57:25,2827) [kworker/0:0] (apache,378180,12744,00:00:00/16:50:52,3642) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:24:26,6147) [kworker/4:0] (root,574280,19564,02:52:08/1454-09:23:55,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,736724,42252,02:23:07/1454-09:23:55,7698) /usr/sbin/rsyslogd -n (apache,278296,9056,00:00:08/6-21:30:26,8286) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/22:27:26,8531) [kworker/2:0] (root,0,0,00:00:00/11:53:27,8874) [kworker/3:1] (root,110204,848,00:00:00/319-15:13:51,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/03:12:01,10604) [kworker/5:0] (root,0,0,00:00:00/08:55:27,11699) [kworker/4:1] (root,0,0,00:00:00/01:14:26,11733) [kworker/3:2] (root,0,0,00:00:14/1454-09:23:47,13987) [kworker/7:1H] (root,0,0,00:00:09/1454-09:18:42,14018) [kworker/4:1H] (root,0,0,00:00:42/1454-09:23:39,14909) [kworker/2:1H] (root,0,0,00:00:00/10:26,15389) [kworker/1:0] (root,0,0,00:00:00/02:04:26,16001) [kworker/2:2] (ntp,25732,2012,00:21:59/1454-08:53:37,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19212,01:12:02/1454-08:53:17,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:47:14/1454-08:51:58,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:07:38/1454-08:51:58,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/09:39:26,19326) [kworker/1:2] (root,27168,1132,00:24:48/1454-08:48:47,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,115412,1648,00:00:00/00:00,21422) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,21441) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,21442) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/56:26,21805) [kworker/0:2] (onapp,911892,43548,04:20:46/440-05:06:51,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:21:05/440-05:06:51,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378044,12304,00:00:00/01:51:00,23688) /usr/sbin/httpd -DFOREGROUND (apache,378180,12304,00:00:00/01:50:59,23692) /usr/sbin/httpd -DFOREGROUND (apache,378184,12304,00:00:00/01:50:59,23693) /usr/sbin/httpd -DFOREGROUND (apache,378044,12304,00:00:00/01:50:58,23700) /usr/sbin/httpd -DFOREGROUND (apache,378180,12600,00:00:00/01:50:58,23701) /usr/sbin/httpd -DFOREGROUND (apache,378180,12624,00:00:00/01:50:58,23702) /usr/sbin/httpd -DFOREGROUND (apache,378180,12844,00:00:01/5-22:55:37,25070) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/48:36,26232) [kworker/u16:0] (root,0,0,00:00:00/02:41:26,27530) [kworker/7:2] (root,0,0,00:00:00/44:26,28526) [kworker/5:1] (root,0,0,00:00:00/01:40:33,29361) [kworker/u16:1] (root,0,0,00:00:02/2-12:14:26,29522) [kworker/6:0] (postfix,89848,4080,00:00:00/42:11,29792) pickup -l -t unix -u (onapp,1515944,9596,00:46:52/29-11:01:43,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/39:26,31330) [kworker/6:1] (onapp,98460,1984,00:00:00/39:26,31369) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362424,91408,00:00:00/39:26,31370) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362776,91776,00:00:00/38:26,31984) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11644,00:00:00/37:08,32742) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-24 00:39 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350146288ac8Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:37:47/1452-08:35:25,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1452-08:35:25,2) [kthreadd] (root,0,0,00:00:00/1452-08:35:25,4) [kworker/0:0H] (root,0,0,00:15:45/1452-08:35:25,6) [ksoftirqd/0] (root,0,0,00:01:16/1452-08:35:25,7) [migration/0] (root,0,0,00:00:00/1452-08:35:25,8) [rcu_bh] (root,0,0,18:56:04/1452-08:35:25,9) [rcu_sched] (root,0,0,00:00:00/1452-08:35:25,10) [lru-add-drain] (root,0,0,00:06:24/1452-08:35:25,11) [watchdog/0] (root,0,0,00:06:27/1452-08:35:25,12) [watchdog/1] (root,0,0,00:01:15/1452-08:35:25,13) [migration/1] (root,0,0,00:13:20/1452-08:35:25,14) [ksoftirqd/1] (root,0,0,00:00:00/1452-08:35:25,16) [kworker/1:0H] (root,0,0,00:05:44/1452-08:35:25,17) [watchdog/2] (root,0,0,00:01:14/1452-08:35:25,18) [migration/2] (root,0,0,00:13:11/1452-08:35:25,19) [ksoftirqd/2] (root,0,0,00:00:00/1452-08:35:25,21) [kworker/2:0H] (root,0,0,00:05:45/1452-08:35:25,22) [watchdog/3] (root,0,0,00:01:15/1452-08:35:25,23) [migration/3] (root,0,0,00:13:48/1452-08:35:25,24) [ksoftirqd/3] (root,0,0,00:00:00/1452-08:35:25,26) [kworker/3:0H] (root,0,0,00:05:23/1452-08:35:25,27) [watchdog/4] (root,0,0,00:11:20/1452-08:35:25,28) [migration/4] (root,0,0,00:48:14/1452-08:35:25,29) [ksoftirqd/4] (root,0,0,00:00:00/1452-08:35:25,31) [kworker/4:0H] (root,0,0,00:05:37/1452-08:35:25,32) [watchdog/5] (root,0,0,00:11:06/1452-08:35:25,33) [migration/5] (root,0,0,00:54:19/1452-08:35:25,34) [ksoftirqd/5] (root,0,0,00:00:00/1452-08:35:25,36) [kworker/5:0H] (root,0,0,00:05:28/1452-08:35:25,37) [watchdog/6] (root,0,0,00:10:49/1452-08:35:25,38) [migration/6] (root,0,0,00:54:55/1452-08:35:25,39) [ksoftirqd/6] (root,0,0,00:00:00/1452-08:35:25,41) [kworker/6:0H] (root,0,0,00:05:54/1452-08:35:25,42) [watchdog/7] (root,0,0,00:11:07/1452-08:35:25,43) [migration/7] (root,0,0,01:03:41/1452-08:35:25,44) [ksoftirqd/7] (root,0,0,00:00:00/1452-08:35:25,46) [kworker/7:0H] (root,0,0,00:00:00/1452-08:35:25,48) [kdevtmpfs] (root,0,0,00:00:00/1452-08:35:25,49) [netns] (root,0,0,00:00:43/1452-08:35:25,50) [khungtaskd] (root,0,0,00:00:00/1452-08:35:25,51) [writeback] (root,0,0,00:00:00/1452-08:35:25,52) [kintegrityd] (root,0,0,00:00:00/1452-08:35:25,53) [bioset] (root,0,0,00:00:00/1452-08:35:25,54) [bioset] (root,0,0,00:00:00/1452-08:35:25,55) [bioset] (root,0,0,00:00:00/1452-08:35:25,56) [kblockd] (root,0,0,00:00:00/1452-08:35:25,57) [md] (root,0,0,00:00:00/1452-08:35:25,58) [edac-poller] (root,0,0,00:00:00/1452-08:35:25,59) [watchdogd] (root,0,0,00:00:00/1452-08:35:25,66) [kswapd0] (root,0,0,00:00:00/1452-08:35:25,67) [ksmd] (root,0,0,00:08:30/1452-08:35:25,68) [khugepaged] (root,0,0,00:00:00/1452-08:35:25,69) [crypto] (root,0,0,00:00:00/1452-08:35:25,77) [kthrotld] (root,0,0,00:00:00/1452-08:35:25,79) [kmpath_rdacd] (root,0,0,00:00:00/1452-08:35:25,80) [kaluad] (root,0,0,00:00:00/1452-08:35:24,82) [kpsmoused] (root,0,0,00:00:00/1452-08:35:24,89) [ipv6_addrconf] (root,0,0,00:00:00/1452-08:35:24,102) [deferwq] (root,0,0,00:13:39/1452-08:35:24,139) [kauditd] (root,0,0,00:00:00/1452-08:35:23,281) [scsi_eh_0] (root,0,0,00:00:00/1452-08:35:23,282) [scsi_tmf_0] (root,0,0,00:00:00/1452-08:35:23,291) [ixgbe] (root,0,0,00:00:00/1452-08:35:23,304) [poll_megasas0_s] (root,0,0,00:00:00/1452-08:35:23,306) [ttm_swap] (onapp,283912,11656,00:00:00/23:46:19,311) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,06:02:38/1452-08:35:22,337) [jbd2/sda3-8] (root,0,0,00:00:00/1452-08:35:22,338) [ext4-rsv-conver] (root,141564,85988,02:28:36/1452-08:35:21,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:17/1452-07:20:18,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28480,1-07:44:05/1452-07:20:18,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11068,13:26:40/1452-07:20:04,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1452-08:35:21,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1452-08:35:21,527) [jbd2/sda2-8] (root,0,0,00:00:00/1452-08:35:21,528) [ext4-rsv-conver] (root,55532,1060,00:30:02/1452-08:35:21,573) /sbin/auditd (polkitd,613004,14012,02:45:03/1452-08:35:21,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:57:20/1452-08:35:21,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:16:04/1452-08:35:21,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:13:43/1452-08:35:21,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:19/1452-08:35:21,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1452-07:19:54,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1452-07:19:53,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,353708,1-23:30:37/1452-07:19:53,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1452-08:35:18,930) [kworker/3:1H] (root,112900,4352,00:00:04/1452-08:35:12,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:28/1452-08:35:12,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:38/1452-08:35:12,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1452-08:35:11,1643) [kworker/6:1H] (root,0,0,00:00:39/1452-08:35:01,1646) [kworker/1:1H] (root,0,0,00:00:39/1452-08:34:37,1673) [kworker/0:1H] (root,0,0,00:00:47/1452-08:34:03,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1452-08:32:58,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/38:17,3494) [kworker/3:1] (root,0,0,00:00:00/37:18,4101) [kworker/2:1] (root,0,0,00:00:00/05:24:19,4538) [kworker/1:1] (root,0,0,00:00:00/01:33:13,5029) [kworker/u16:0] (root,0,0,00:00:00/33:17,6357) [kworker/1:2] (root,0,0,00:00:00/32:19,6870) [kworker/4:2] (root,574280,19564,02:51:53/1452-08:32:47,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740392,44116,02:22:55/1452-08:32:47,7698) /usr/sbin/rsyslogd -n (apache,278296,9056,00:00:05/4-20:39:18,8286) /usr/sbin/httpd -DFOREGROUND (root,110204,848,00:00:00/317-14:22:43,8910) /sbin/agetty --noclear tty1 linux (apache,378184,12888,00:00:00/2-03:21:07,9046) /usr/sbin/httpd -DFOREGROUND (apache,378180,12808,00:00:00/2-03:21:07,9047) /usr/sbin/httpd -DFOREGROUND (apache,378180,12844,00:00:00/1-22:28:41,12138) /usr/sbin/httpd -DFOREGROUND (apache,378180,12728,00:00:00/1-22:28:40,12140) /usr/sbin/httpd -DFOREGROUND (apache,378180,12832,00:00:00/1-22:28:40,12141) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:18:18,13361) [kworker/5:1] (root,0,0,00:00:14/1452-08:32:39,13987) [kworker/7:1H] (root,0,0,00:00:09/1452-08:27:34,14018) [kworker/4:1H] (root,0,0,00:00:00/20:29:18,14106) [kworker/3:2] (root,0,0,00:00:00/19:19,14157) [kworker/0:0] (root,0,0,00:00:42/1452-08:32:31,14909) [kworker/2:1H] (postfix,89848,4080,00:00:00/13:01,17690) pickup -l -t unix -u (root,0,0,00:00:00/12:18,18048) [kworker/7:0] (ntp,25732,2012,00:21:57/1452-08:02:29,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19212,01:11:55/1452-08:02:09,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:45:39/1452-08:00:50,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:07:32/1452-08:00:50,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:46/1452-07:57:39,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/07:48:19,20772) [kworker/4:0] (root,0,0,00:00:03/2-21:13:19,21578) [kworker/5:0] (root,0,0,00:00:00/04:53:18,22022) [kworker/0:1] (root,0,0,00:00:00/04:54,22374) [kworker/6:1] (root,0,0,00:00:00/03:18,23118) [kworker/5:2] (onapp,911892,41524,04:19:58/438-04:15:43,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (root,0,0,00:00:01/1-05:48:18,23643) [kworker/7:1] (onapp,229860,828,00:20:59/438-04:15:43,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/00:18,24743) [kworker/1:0] (apache,378180,12840,00:00:01/3-22:04:39,25013) /usr/sbin/httpd -DFOREGROUND (root,115412,1644,00:00:00/00:00,25043) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,25062) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,25063) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,378180,12828,00:00:01/3-22:04:29,25070) /usr/sbin/httpd -DFOREGROUND (apache,378180,12820,00:00:01/3-22:04:29,25071) /usr/sbin/httpd -DFOREGROUND (apache,378180,12828,00:00:01/3-22:04:29,25073) /usr/sbin/httpd -DFOREGROUND (apache,378180,12832,00:00:00/3-22:04:24,25087) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:51:19,25754) [kworker/2:0] (root,0,0,00:00:00/01:48:18,28856) [kworker/6:2] (root,0,0,00:00:00/50:18,29005) [kworker/u16:1] (root,0,0,00:00:00/11:23:18,29522) [kworker/6:0] (onapp,1515976,9396,00:43:35/27-10:10:35,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,98460,1984,00:00:01/23:48:18,31693) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368124,97332,00:00:11/23:48:18,31694) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368128,97300,00:00:11/23:47:18,32307) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-21 23:48 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501744db588Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:36:46/1450-09:00:33,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1450-09:00:33,2) [kthreadd] (root,0,0,00:00:00/1450-09:00:33,4) [kworker/0:0H] (root,0,0,00:15:43/1450-09:00:33,6) [ksoftirqd/0] (root,0,0,00:01:16/1450-09:00:33,7) [migration/0] (root,0,0,00:00:00/1450-09:00:33,8) [rcu_bh] (root,0,0,18:54:46/1450-09:00:33,9) [rcu_sched] (root,0,0,00:00:00/1450-09:00:33,10) [lru-add-drain] (root,0,0,00:06:23/1450-09:00:33,11) [watchdog/0] (root,0,0,00:06:26/1450-09:00:33,12) [watchdog/1] (root,0,0,00:01:14/1450-09:00:33,13) [migration/1] (root,0,0,00:13:19/1450-09:00:33,14) [ksoftirqd/1] (root,0,0,00:00:00/1450-09:00:33,16) [kworker/1:0H] (root,0,0,00:05:44/1450-09:00:33,17) [watchdog/2] (root,0,0,00:01:14/1450-09:00:33,18) [migration/2] (root,0,0,00:13:10/1450-09:00:33,19) [ksoftirqd/2] (root,0,0,00:00:00/1450-09:00:33,21) [kworker/2:0H] (root,0,0,00:05:45/1450-09:00:33,22) [watchdog/3] (root,0,0,00:01:15/1450-09:00:33,23) [migration/3] (root,0,0,00:13:47/1450-09:00:33,24) [ksoftirqd/3] (root,0,0,00:00:00/1450-09:00:33,26) [kworker/3:0H] (root,0,0,00:05:23/1450-09:00:33,27) [watchdog/4] (root,0,0,00:11:19/1450-09:00:33,28) [migration/4] (root,0,0,00:48:11/1450-09:00:33,29) [ksoftirqd/4] (root,0,0,00:00:00/1450-09:00:33,31) [kworker/4:0H] (root,0,0,00:05:37/1450-09:00:33,32) [watchdog/5] (root,0,0,00:11:06/1450-09:00:33,33) [migration/5] (root,0,0,00:54:16/1450-09:00:33,34) [ksoftirqd/5] (root,0,0,00:00:00/1450-09:00:33,36) [kworker/5:0H] (root,0,0,00:05:28/1450-09:00:33,37) [watchdog/6] (root,0,0,00:10:48/1450-09:00:33,38) [migration/6] (root,0,0,00:54:52/1450-09:00:33,39) [ksoftirqd/6] (root,0,0,00:00:00/1450-09:00:33,41) [kworker/6:0H] (root,0,0,00:05:54/1450-09:00:33,42) [watchdog/7] (root,0,0,00:11:07/1450-09:00:33,43) [migration/7] (root,0,0,01:03:37/1450-09:00:33,44) [ksoftirqd/7] (root,0,0,00:00:00/1450-09:00:33,46) [kworker/7:0H] (root,0,0,00:00:00/1450-09:00:33,48) [kdevtmpfs] (root,0,0,00:00:00/1450-09:00:33,49) [netns] (root,0,0,00:00:43/1450-09:00:33,50) [khungtaskd] (root,0,0,00:00:00/1450-09:00:33,51) [writeback] (root,0,0,00:00:00/1450-09:00:33,52) [kintegrityd] (root,0,0,00:00:00/1450-09:00:33,53) [bioset] (root,0,0,00:00:00/1450-09:00:33,54) [bioset] (root,0,0,00:00:00/1450-09:00:33,55) [bioset] (root,0,0,00:00:00/1450-09:00:33,56) [kblockd] (root,0,0,00:00:00/1450-09:00:33,57) [md] (root,0,0,00:00:00/1450-09:00:33,58) [edac-poller] (root,0,0,00:00:00/1450-09:00:33,59) [watchdogd] (root,0,0,00:00:00/1450-09:00:33,66) [kswapd0] (root,0,0,00:00:00/1450-09:00:33,67) [ksmd] (root,0,0,00:08:29/1450-09:00:33,68) [khugepaged] (root,0,0,00:00:00/1450-09:00:33,69) [crypto] (root,0,0,00:00:00/1450-09:00:33,77) [kthrotld] (root,0,0,00:00:00/1450-09:00:33,79) [kmpath_rdacd] (root,0,0,00:00:00/1450-09:00:33,80) [kaluad] (root,0,0,00:00:00/1450-09:00:32,82) [kpsmoused] (root,0,0,00:00:00/1450-09:00:32,89) [ipv6_addrconf] (root,0,0,00:00:00/1450-09:00:32,102) [deferwq] (root,0,0,00:13:38/1450-09:00:32,139) [kauditd] (root,0,0,00:00:00/1450-09:00:31,281) [scsi_eh_0] (root,0,0,00:00:00/1450-09:00:31,282) [scsi_tmf_0] (root,0,0,00:00:00/1450-09:00:31,291) [ixgbe] (root,0,0,00:00:00/1450-09:00:31,304) [poll_megasas0_s] (root,0,0,00:00:00/1450-09:00:31,306) [ttm_swap] (root,0,0,06:02:29/1450-09:00:30,337) [jbd2/sda3-8] (root,0,0,00:00:00/1450-09:00:30,338) [ext4-rsv-conver] (root,47252,13636,02:28:23/1450-09:00:29,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:14/1450-07:45:26,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28476,1-07:41:28/1450-07:45:26,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11068,13:25:34/1450-07:45:12,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1450-09:00:29,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1450-09:00:29,527) [jbd2/sda2-8] (root,0,0,00:00:00/1450-09:00:29,528) [ext4-rsv-conver] (root,55532,1060,00:29:59/1450-09:00:29,573) /sbin/auditd (polkitd,613004,14012,02:44:50/1450-09:00:29,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:57:00/1450-09:00:29,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:15:48/1450-09:00:29,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:13:07/1450-09:00:29,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:16/1450-09:00:29,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1450-07:45:02,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1450-07:45:01,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,347564,1-23:26:13/1450-07:45:01,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1450-09:00:26,930) [kworker/3:1H] (root,112900,4352,00:00:04/1450-09:00:20,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:27/1450-09:00:20,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:38/1450-09:00:20,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1450-09:00:19,1643) [kworker/6:1H] (root,0,0,00:00:39/1450-09:00:09,1646) [kworker/1:1H] (root,0,0,00:00:39/1450-08:59:45,1673) [kworker/0:1H] (root,0,0,00:00:47/1450-08:59:11,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1450-08:58:06,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/03:27,4912) [kworker/0:0] (root,0,0,00:00:00/03:27,4917) [kworker/4:2] (postfix,89848,4080,00:00:00/01:00:02,5595) pickup -l -t unix -u (root,0,0,00:00:00/59:24,5746) [kworker/1:1] (root,115412,1652,00:00:00/00:00,7294) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,7313) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,7314) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,574280,19564,02:51:39/1450-08:57:55,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,731320,14864,02:22:43/1450-08:57:55,7698) /usr/sbin/rsyslogd -n (apache,278296,9056,00:00:03/2-21:04:26,8286) /usr/sbin/httpd -DFOREGROUND (root,110204,848,00:00:00/315-14:47:51,8910) /sbin/agetty --noclear tty1 linux (apache,378180,12580,00:00:00/03:46:16,9045) /usr/sbin/httpd -DFOREGROUND (apache,378184,12304,00:00:00/03:46:15,9046) /usr/sbin/httpd -DFOREGROUND (apache,378180,12316,00:00:00/03:46:15,9047) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/17:12:26,9210) [kworker/3:1] (root,0,0,00:00:14/1450-08:57:47,13987) [kworker/7:1H] (root,0,0,00:00:09/1450-08:52:42,14018) [kworker/4:1H] (root,0,0,00:00:00/43:27,14702) [kworker/6:2] (root,0,0,00:00:42/1450-08:57:39,14909) [kworker/2:1H] (root,0,0,00:00:02/1-09:18:07,16792) [kworker/4:1] (root,0,0,00:00:00/02:34:27,17057) [kworker/1:0] (root,0,0,00:00:00/37:18,18207) [kworker/u16:1] (ntp,25732,2012,00:21:56/1450-08:27:37,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19212,01:11:49/1450-08:27:17,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:44:06/1450-08:25:58,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:07:26/1450-08:25:58,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/07:18:26,19278) [kworker/0:2] (root,27168,1132,00:24:44/1450-08:22:47,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/21:38:27,21578) [kworker/5:0] (root,0,0,00:00:02/2-10:05:26,22469) [kworker/6:1] (onapp,911892,43548,04:19:12/436-04:40:51,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:54/436-04:40:51,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/27:17,23803) [kworker/u16:0] (root,0,0,00:00:00/26:25,24172) [kworker/2:2] (apache,378180,12816,00:00:00/1-22:29:48,24990) /usr/sbin/httpd -DFOREGROUND (apache,378180,12828,00:00:00/1-22:29:47,25013) /usr/sbin/httpd -DFOREGROUND (apache,378180,12768,00:00:00/1-22:29:37,25070) /usr/sbin/httpd -DFOREGROUND (apache,378180,12780,00:00:00/1-22:29:37,25071) /usr/sbin/httpd -DFOREGROUND (apache,378180,12796,00:00:00/1-22:29:37,25073) /usr/sbin/httpd -DFOREGROUND (apache,378180,12824,00:00:00/1-22:29:37,25074) /usr/sbin/httpd -DFOREGROUND (apache,378180,12796,00:00:00/1-22:29:32,25087) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/23:25,25898) [kworker/7:0] (root,0,0,00:00:00/06:08:26,26296) [kworker/7:1] (root,0,0,00:00:00/21:27,27007) [kworker/3:0] (root,0,0,00:00:00/20:27,27527) [kworker/0:1] (root,0,0,00:00:00/02:12:27,29375) [kworker/5:1] (root,0,0,00:00:01/1-09:52:24,29892) [kworker/2:0] (onapp,1515976,9232,00:40:22/25-10:35:43,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,98460,1984,00:00:00/13:27,31551) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,361668,90680,00:00:00/13:27,31552) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/12:26,32086) [kworker/4:0] (onapp,361604,90600,00:00:00/12:26,32093) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11636,00:00:00/11:32,32638) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-20 00:13 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350146ce5361Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:35:45/1448-09:01:22,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1448-09:01:22,2) [kthreadd] (root,0,0,00:00:00/1448-09:01:22,4) [kworker/0:0H] (root,0,0,00:15:42/1448-09:01:22,6) [ksoftirqd/0] (root,0,0,00:01:16/1448-09:01:22,7) [migration/0] (root,0,0,00:00:00/1448-09:01:22,8) [rcu_bh] (root,0,0,18:53:25/1448-09:01:22,9) [rcu_sched] (root,0,0,00:00:00/1448-09:01:22,10) [lru-add-drain] (root,0,0,00:06:23/1448-09:01:22,11) [watchdog/0] (root,0,0,00:06:26/1448-09:01:22,12) [watchdog/1] (root,0,0,00:01:14/1448-09:01:22,13) [migration/1] (root,0,0,00:13:18/1448-09:01:22,14) [ksoftirqd/1] (root,0,0,00:00:00/1448-09:01:22,16) [kworker/1:0H] (root,0,0,00:05:43/1448-09:01:22,17) [watchdog/2] (root,0,0,00:01:14/1448-09:01:22,18) [migration/2] (root,0,0,00:13:09/1448-09:01:22,19) [ksoftirqd/2] (root,0,0,00:00:00/1448-09:01:22,21) [kworker/2:0H] (root,0,0,00:05:44/1448-09:01:22,22) [watchdog/3] (root,0,0,00:01:15/1448-09:01:22,23) [migration/3] (root,0,0,00:13:46/1448-09:01:22,24) [ksoftirqd/3] (root,0,0,00:00:00/1448-09:01:22,26) [kworker/3:0H] (root,0,0,00:05:23/1448-09:01:22,27) [watchdog/4] (root,0,0,00:11:19/1448-09:01:22,28) [migration/4] (root,0,0,00:48:08/1448-09:01:22,29) [ksoftirqd/4] (root,0,0,00:00:00/1448-09:01:22,31) [kworker/4:0H] (root,0,0,00:05:36/1448-09:01:22,32) [watchdog/5] (root,0,0,00:11:05/1448-09:01:22,33) [migration/5] (root,0,0,00:54:13/1448-09:01:22,34) [ksoftirqd/5] (root,0,0,00:00:00/1448-09:01:22,36) [kworker/5:0H] (root,0,0,00:05:27/1448-09:01:22,37) [watchdog/6] (root,0,0,00:10:47/1448-09:01:22,38) [migration/6] (root,0,0,00:54:48/1448-09:01:22,39) [ksoftirqd/6] (root,0,0,00:00:00/1448-09:01:22,41) [kworker/6:0H] (root,0,0,00:05:53/1448-09:01:22,42) [watchdog/7] (root,0,0,00:11:06/1448-09:01:22,43) [migration/7] (root,0,0,01:03:32/1448-09:01:22,44) [ksoftirqd/7] (root,0,0,00:00:00/1448-09:01:22,46) [kworker/7:0H] (root,0,0,00:00:00/1448-09:01:22,48) [kdevtmpfs] (root,0,0,00:00:00/1448-09:01:22,49) [netns] (root,0,0,00:00:43/1448-09:01:22,50) [khungtaskd] (root,0,0,00:00:00/1448-09:01:22,51) [writeback] (root,0,0,00:00:00/1448-09:01:22,52) [kintegrityd] (root,0,0,00:00:00/1448-09:01:22,53) [bioset] (root,0,0,00:00:00/1448-09:01:22,54) [bioset] (root,0,0,00:00:00/1448-09:01:22,55) [bioset] (root,0,0,00:00:00/1448-09:01:22,56) [kblockd] (root,0,0,00:00:00/1448-09:01:22,57) [md] (root,0,0,00:00:00/1448-09:01:22,58) [edac-poller] (root,0,0,00:00:00/1448-09:01:22,59) [watchdogd] (root,0,0,00:00:00/1448-09:01:22,66) [kswapd0] (root,0,0,00:00:00/1448-09:01:22,67) [ksmd] (root,0,0,00:08:29/1448-09:01:22,68) [khugepaged] (root,0,0,00:00:00/1448-09:01:22,69) [crypto] (root,0,0,00:00:00/1448-09:01:22,77) [kthrotld] (root,0,0,00:00:00/1448-09:01:22,79) [kmpath_rdacd] (root,0,0,00:00:00/1448-09:01:22,80) [kaluad] (root,0,0,00:00:00/1448-09:01:21,82) [kpsmoused] (root,0,0,00:00:00/1448-09:01:21,89) [ipv6_addrconf] (root,0,0,00:00:00/1448-09:01:21,102) [deferwq] (root,0,0,00:13:37/1448-09:01:21,139) [kauditd] (root,0,0,00:00:00/1448-09:01:20,281) [scsi_eh_0] (root,0,0,00:00:00/1448-09:01:20,282) [scsi_tmf_0] (root,0,0,00:00:00/1448-09:01:20,291) [ixgbe] (root,0,0,00:00:00/1448-09:01:20,304) [poll_megasas0_s] (root,0,0,00:00:00/1448-09:01:20,306) [ttm_swap] (root,0,0,06:02:20/1448-09:01:19,337) [jbd2/sda3-8] (root,0,0,00:00:00/1448-09:01:19,338) [ext4-rsv-conver] (root,71828,31092,02:28:11/1448-09:01:18,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:11/1448-07:46:15,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28476,1-07:38:48/1448-07:46:15,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11068,13:24:27/1448-07:46:01,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/11:15,501) [kworker/3:2] (root,0,0,00:00:00/11:14,517) [kworker/0:2] (root,0,0,00:00:00/1448-09:01:18,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1448-09:01:18,527) [jbd2/sda2-8] (root,0,0,00:00:00/1448-09:01:18,528) [ext4-rsv-conver] (root,55532,1060,00:29:57/1448-09:01:18,573) /sbin/auditd (polkitd,613004,14012,02:44:36/1448-09:01:18,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:56:40/1448-09:01:18,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:15:31/1448-09:01:18,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:12:31/1448-09:01:18,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:14/1448-09:01:18,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1448-07:45:51,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1448-07:45:50,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,337308,1-23:21:47/1448-07:45:50,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1448-09:01:15,930) [kworker/3:1H] (root,112900,4352,00:00:04/1448-09:01:09,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:26/1448-09:01:09,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:38/1448-09:01:09,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1448-09:01:08,1643) [kworker/6:1H] (root,0,0,00:00:39/1448-09:00:58,1646) [kworker/1:1H] (root,0,0,00:00:39/1448-09:00:34,1673) [kworker/0:1H] (root,0,0,00:00:47/1448-09:00:00,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1448-08:58:55,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:02/06:50:46,2755) [kworker/u16:2] (root,0,0,00:00:00/05:56,3686) [kworker/7:0] (root,0,0,00:00:00/04:15,4610) [kworker/1:1] (root,0,0,00:00:00/04:15,4615) [kworker/0:0] (root,0,0,00:00:00/01:15,6257) [kworker/2:1] (root,0,0,00:00:00/01:56:16,6324) [kworker/1:0] (root,115412,1648,00:00:00/00:00,7030) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,7049) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,7050) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,574280,19564,02:51:25/1448-08:58:44,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,737568,23644,02:22:31/1448-08:58:44,7698) /usr/sbin/rsyslogd -n (apache,278296,9056,00:00:01/21:05:15,8286) /usr/sbin/httpd -DFOREGROUND (apache,378180,12688,00:00:00/21:05:15,8287) /usr/sbin/httpd -DFOREGROUND (apache,378180,12708,00:00:00/21:05:15,8288) /usr/sbin/httpd -DFOREGROUND (apache,378180,12768,00:00:00/21:05:15,8289) /usr/sbin/httpd -DFOREGROUND (apache,378184,12740,00:00:00/21:05:15,8290) /usr/sbin/httpd -DFOREGROUND (apache,378188,12796,00:00:00/21:05:15,8291) /usr/sbin/httpd -DFOREGROUND (root,110204,848,00:00:00/313-14:48:40,8910) /sbin/agetty --noclear tty1 linux (apache,378180,12708,00:00:00/20:04:10,10211) /usr/sbin/httpd -DFOREGROUND (apache,378184,12600,00:00:00/20:04:09,10213) /usr/sbin/httpd -DFOREGROUND (apache,378180,12768,00:00:00/20:04:08,10215) /usr/sbin/httpd -DFOREGROUND (apache,378184,12752,00:00:00/20:04:07,10217) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:48:15,10819) [kworker/4:1] (root,0,0,00:00:00/01:48:14,10826) [kworker/5:0] (root,0,0,00:00:00/21:53:13,13653) [kworker/1:2] (root,0,0,00:00:14/1448-08:58:36,13987) [kworker/7:1H] (root,0,0,00:00:09/1448-08:53:31,14018) [kworker/4:1H] (root,0,0,00:00:42/1448-08:58:28,14909) [kworker/2:1H] (apache,378192,12544,00:00:00/20:51:45,15777) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/41:15,16045) [kworker/2:2] (root,0,0,00:00:00/15:03:14,17559) [kworker/0:1] (ntp,25732,2012,00:21:54/1448-08:28:26,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:00/10:13:15,18487) [kworker/2:0] (root,377912,19208,01:11:43/1448-08:28:06,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:42:32/1448-08:26:47,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:07:21/1448-08:26:47,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/09:14:16,19250) [kworker/4:0] (root,27168,1132,00:24:42/1448-08:23:36,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/14:02:16,19458) [kworker/7:2] (root,0,0,00:00:00/02:29:14,20117) [kworker/3:0] (root,0,0,00:00:00/10:06:15,22469) [kworker/6:1] (onapp,911892,41524,04:18:26/434-04:41:40,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:48/434-04:41:40,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (postfix,89848,4084,00:00:00/01:22:45,25006) pickup -l -t unix -u (root,0,0,00:00:02/2-01:21:16,25753) [kworker/5:2] (onapp,1515976,9244,00:37:09/23-10:36:32,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/03:07:26,30976) [kworker/u16:0] (onapp,98460,1984,00:00:00/14:16,31259) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,361768,90768,00:00:00/14:16,31260) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/13:15,31794) [kworker/6:2] (onapp,361616,90720,00:00:00/13:15,31801) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11640,00:00:00/12:17,32270) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-18 00:14 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501cefff70bFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:34:43/1446-07:48:17,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1446-07:48:17,2) [kthreadd] (root,0,0,00:00:00/1446-07:48:17,4) [kworker/0:0H] (root,0,0,00:15:41/1446-07:48:17,6) [ksoftirqd/0] (root,0,0,00:01:16/1446-07:48:17,7) [migration/0] (root,0,0,00:00:00/1446-07:48:17,8) [rcu_bh] (root,0,0,18:52:06/1446-07:48:17,9) [rcu_sched] (root,0,0,00:00:00/1446-07:48:17,10) [lru-add-drain] (root,0,0,00:06:22/1446-07:48:17,11) [watchdog/0] (root,0,0,00:06:25/1446-07:48:17,12) [watchdog/1] (root,0,0,00:01:14/1446-07:48:17,13) [migration/1] (root,0,0,00:13:16/1446-07:48:17,14) [ksoftirqd/1] (root,0,0,00:00:00/1446-07:48:17,16) [kworker/1:0H] (root,0,0,00:05:43/1446-07:48:17,17) [watchdog/2] (root,0,0,00:01:14/1446-07:48:17,18) [migration/2] (root,0,0,00:13:08/1446-07:48:17,19) [ksoftirqd/2] (root,0,0,00:00:00/1446-07:48:17,21) [kworker/2:0H] (root,0,0,00:05:44/1446-07:48:17,22) [watchdog/3] (root,0,0,00:01:15/1446-07:48:17,23) [migration/3] (root,0,0,00:13:44/1446-07:48:17,24) [ksoftirqd/3] (root,0,0,00:00:00/1446-07:48:17,26) [kworker/3:0H] (root,0,0,00:05:22/1446-07:48:17,27) [watchdog/4] (root,0,0,00:11:18/1446-07:48:17,28) [migration/4] (root,0,0,00:48:04/1446-07:48:17,29) [ksoftirqd/4] (root,0,0,00:00:00/1446-07:48:17,31) [kworker/4:0H] (root,0,0,00:05:36/1446-07:48:17,32) [watchdog/5] (root,0,0,00:11:04/1446-07:48:17,33) [migration/5] (root,0,0,00:54:10/1446-07:48:17,34) [ksoftirqd/5] (root,0,0,00:00:00/1446-07:48:17,36) [kworker/5:0H] (root,0,0,00:05:27/1446-07:48:17,37) [watchdog/6] (root,0,0,00:10:47/1446-07:48:17,38) [migration/6] (root,0,0,00:54:45/1446-07:48:17,39) [ksoftirqd/6] (root,0,0,00:00:00/1446-07:48:17,41) [kworker/6:0H] (root,0,0,00:05:53/1446-07:48:17,42) [watchdog/7] (root,0,0,00:11:05/1446-07:48:17,43) [migration/7] (root,0,0,01:03:28/1446-07:48:17,44) [ksoftirqd/7] (root,0,0,00:00:00/1446-07:48:17,46) [kworker/7:0H] (root,0,0,00:00:00/1446-07:48:17,48) [kdevtmpfs] (root,0,0,00:00:00/1446-07:48:17,49) [netns] (root,0,0,00:00:42/1446-07:48:17,50) [khungtaskd] (root,0,0,00:00:00/1446-07:48:17,51) [writeback] (root,0,0,00:00:00/1446-07:48:17,52) [kintegrityd] (root,0,0,00:00:00/1446-07:48:17,53) [bioset] (root,0,0,00:00:00/1446-07:48:17,54) [bioset] (root,0,0,00:00:00/1446-07:48:17,55) [bioset] (root,0,0,00:00:00/1446-07:48:17,56) [kblockd] (root,0,0,00:00:00/1446-07:48:17,57) [md] (root,0,0,00:00:00/1446-07:48:17,58) [edac-poller] (root,0,0,00:00:00/1446-07:48:17,59) [watchdogd] (root,0,0,00:00:00/1446-07:48:17,66) [kswapd0] (root,0,0,00:00:00/1446-07:48:17,67) [ksmd] (root,0,0,00:08:28/1446-07:48:17,68) [khugepaged] (root,0,0,00:00:00/1446-07:48:17,69) [crypto] (root,0,0,00:00:00/1446-07:48:17,77) [kthrotld] (root,0,0,00:00:00/1446-07:48:17,79) [kmpath_rdacd] (root,0,0,00:00:00/1446-07:48:17,80) [kaluad] (root,0,0,00:00:00/1446-07:48:16,82) [kpsmoused] (root,0,0,00:00:00/1446-07:48:16,89) [ipv6_addrconf] (root,0,0,00:00:00/1446-07:48:16,102) [deferwq] (root,0,0,00:13:35/1446-07:48:16,139) [kauditd] (root,0,0,00:00:00/1446-07:48:15,281) [scsi_eh_0] (root,0,0,00:00:00/1446-07:48:15,282) [scsi_tmf_0] (root,0,0,00:00:00/1446-07:48:15,291) [ixgbe] (root,0,0,00:00:00/1446-07:48:15,304) [poll_megasas0_s] (root,0,0,00:00:00/1446-07:48:15,306) [ttm_swap] (root,0,0,06:02:11/1446-07:48:14,337) [jbd2/sda3-8] (root,0,0,00:00:00/1446-07:48:14,338) [ext4-rsv-conver] (root,88192,46412,02:27:58/1446-07:48:13,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:08/1446-06:33:10,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28472,1-07:36:05/1446-06:33:10,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11064,13:23:18/1446-06:32:56,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1446-07:48:13,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1446-07:48:13,527) [jbd2/sda2-8] (root,0,0,00:00:00/1446-07:48:13,528) [ext4-rsv-conver] (root,55532,1060,00:29:55/1446-07:48:13,573) /sbin/auditd (polkitd,613004,14012,02:44:22/1446-07:48:13,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:56:20/1446-07:48:13,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:15:14/1446-07:48:13,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:11:53/1446-07:48:13,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:11/1446-07:48:13,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1446-06:32:46,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1446-06:32:45,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,327064,1-23:17:15/1446-06:32:45,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:00/02:48:01,702) [kworker/u16:2] (root,0,0,00:00:41/1446-07:48:10,930) [kworker/3:1H] (root,0,0,00:00:00/52:10,1086) [kworker/1:0] (root,112900,4352,00:00:04/1446-07:48:04,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:25/1446-07:48:04,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:38/1446-07:48:04,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1446-07:48:03,1643) [kworker/6:1H] (root,0,0,00:00:39/1446-07:47:53,1646) [kworker/1:1H] (root,0,0,00:00:38/1446-07:47:29,1673) [kworker/0:1H] (root,0,0,00:00:47/1446-07:46:55,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1446-07:45:50,1750) /usr/lib/systemd/systemd-udevd (root,574280,19564,02:51:10/1446-07:45:39,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740644,32360,02:22:19/1446-07:45:39,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/01:37:36,7893) [kworker/u16:1] (root,0,0,00:00:00/21:47:11,8095) [kworker/3:2] (root,0,0,00:00:00/39:10,8348) [kworker/7:2] (root,110204,848,00:00:00/311-13:35:35,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/38:10,8944) [kworker/2:1] (apache,378196,12848,00:00:01/3-18:51:15,9279) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/05:21:09,11671) [kworker/0:1] (postfix,89848,4080,00:00:00/31:38,12544) pickup -l -t unix -u (root,0,0,00:00:00/31:10,12825) [kworker/4:0] (root,0,0,00:00:00/1-00:31:10,12919) [kworker/2:0] (root,0,0,00:00:00/30:10,13439) [kworker/3:0] (root,0,0,00:00:14/1446-07:45:31,13987) [kworker/7:1H] (root,0,0,00:00:09/1446-07:40:26,14018) [kworker/4:1H] (root,0,0,00:00:42/1446-07:45:23,14909) [kworker/2:1H] (apache,378196,13296,00:00:01/5-16:42:26,15907) /usr/sbin/httpd -DFOREGROUND (apache,378196,13256,00:00:01/5-16:42:25,15909) /usr/sbin/httpd -DFOREGROUND (apache,378196,13288,00:00:01/5-16:42:24,15926) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:21:52/1446-07:15:21,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19204,01:11:37/1446-07:15:01,18605) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/08:01:11,18844) [kworker/4:1] (onapp,216524,22168,18:40:56/1446-07:13:42,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:07:15/1446-07:13:42,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:39/1446-07:10:31,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/15:08,21796) [kworker/0:0] (apache,378064,12804,00:00:00/3-02:08:13,22639) /usr/sbin/httpd -DFOREGROUND (apache,378064,12812,00:00:00/3-02:08:12,22641) /usr/sbin/httpd -DFOREGROUND (onapp,911892,41524,04:17:38/432-03:28:35,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:42/432-03:28:35,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/08:11,25753) [kworker/5:2] (root,0,0,00:00:01/1-10:41:10,26267) [kworker/1:1] (apache,278296,9044,00:00:06/5-19:16:11,26594) /usr/sbin/httpd -DFOREGROUND (apache,378196,13296,00:00:01/5-19:16:11,26595) /usr/sbin/httpd -DFOREGROUND (apache,378196,13264,00:00:01/5-19:16:11,26596) /usr/sbin/httpd -DFOREGROUND (apache,378212,13300,00:00:01/5-19:16:11,26597) /usr/sbin/httpd -DFOREGROUND (apache,378212,13332,00:00:01/5-19:16:11,26598) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:01:10,28316) [kworker/6:2] (root,0,0,00:00:00/02:11,29100) [kworker/5:1] (root,0,0,00:00:00/20:11:10,29569) [kworker/5:0] (root,0,0,00:00:00/01:10,29648) [kworker/6:0] (root,0,0,00:00:00/12:29:10,30253) [kworker/7:0] (root,115412,1652,00:00:00/00:00,30341) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,30360) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,30361) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (onapp,1515972,9192,00:33:50/21-09:23:27,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,98460,1980,00:00:01/23:01:11,31121) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368168,97388,00:00:11/23:01:11,31122) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368168,97332,00:00:11/23:00:11,31648) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11648,00:00:00/22:59:08,32269) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/01:51:09,32694) [kworker/6:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-15 23:01 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350169c299aaFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:33:39/1444-06:11:32,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1444-06:11:32,2) [kthreadd] (root,0,0,00:00:00/1444-06:11:32,4) [kworker/0:0H] (root,0,0,00:15:40/1444-06:11:32,6) [ksoftirqd/0] (root,0,0,00:01:15/1444-06:11:32,7) [migration/0] (root,0,0,00:00:00/1444-06:11:32,8) [rcu_bh] (root,0,0,18:50:43/1444-06:11:32,9) [rcu_sched] (root,0,0,00:00:00/1444-06:11:32,10) [lru-add-drain] (root,0,0,00:06:22/1444-06:11:32,11) [watchdog/0] (root,0,0,00:06:25/1444-06:11:32,12) [watchdog/1] (root,0,0,00:01:14/1444-06:11:32,13) [migration/1] (root,0,0,00:13:15/1444-06:11:32,14) [ksoftirqd/1] (root,0,0,00:00:00/1444-06:11:32,16) [kworker/1:0H] (root,0,0,00:05:42/1444-06:11:32,17) [watchdog/2] (root,0,0,00:01:14/1444-06:11:32,18) [migration/2] (root,0,0,00:13:07/1444-06:11:32,19) [ksoftirqd/2] (root,0,0,00:00:00/1444-06:11:32,21) [kworker/2:0H] (root,0,0,00:05:43/1444-06:11:32,22) [watchdog/3] (root,0,0,00:01:15/1444-06:11:32,23) [migration/3] (root,0,0,00:13:43/1444-06:11:32,24) [ksoftirqd/3] (root,0,0,00:00:00/1444-06:11:32,26) [kworker/3:0H] (root,0,0,00:05:22/1444-06:11:32,27) [watchdog/4] (root,0,0,00:11:17/1444-06:11:32,28) [migration/4] (root,0,0,00:48:01/1444-06:11:32,29) [ksoftirqd/4] (root,0,0,00:00:00/1444-06:11:32,31) [kworker/4:0H] (root,0,0,00:05:35/1444-06:11:32,32) [watchdog/5] (root,0,0,00:11:03/1444-06:11:32,33) [migration/5] (root,0,0,00:54:06/1444-06:11:32,34) [ksoftirqd/5] (root,0,0,00:00:00/1444-06:11:32,36) [kworker/5:0H] (root,0,0,00:05:26/1444-06:11:32,37) [watchdog/6] (root,0,0,00:10:46/1444-06:11:32,38) [migration/6] (root,0,0,00:54:42/1444-06:11:32,39) [ksoftirqd/6] (root,0,0,00:00:00/1444-06:11:32,41) [kworker/6:0H] (root,0,0,00:05:52/1444-06:11:32,42) [watchdog/7] (root,0,0,00:11:04/1444-06:11:32,43) [migration/7] (root,0,0,01:03:23/1444-06:11:32,44) [ksoftirqd/7] (root,0,0,00:00:00/1444-06:11:32,46) [kworker/7:0H] (root,0,0,00:00:00/1444-06:11:32,48) [kdevtmpfs] (root,0,0,00:00:00/1444-06:11:32,49) [netns] (root,0,0,00:00:42/1444-06:11:32,50) [khungtaskd] (root,0,0,00:00:00/1444-06:11:32,51) [writeback] (root,0,0,00:00:00/1444-06:11:32,52) [kintegrityd] (root,0,0,00:00:00/1444-06:11:32,53) [bioset] (root,0,0,00:00:00/1444-06:11:32,54) [bioset] (root,0,0,00:00:00/1444-06:11:32,55) [bioset] (root,0,0,00:00:00/1444-06:11:32,56) [kblockd] (root,0,0,00:00:00/1444-06:11:32,57) [md] (root,0,0,00:00:00/1444-06:11:32,58) [edac-poller] (root,0,0,00:00:00/1444-06:11:32,59) [watchdogd] (root,0,0,00:00:00/1444-06:11:32,66) [kswapd0] (root,0,0,00:00:00/1444-06:11:32,67) [ksmd] (root,0,0,00:08:27/1444-06:11:32,68) [khugepaged] (root,0,0,00:00:00/1444-06:11:32,69) [crypto] (root,0,0,00:00:00/1444-06:11:32,77) [kthrotld] (root,0,0,00:00:00/1444-06:11:32,79) [kmpath_rdacd] (root,0,0,00:00:00/1444-06:11:32,80) [kaluad] (root,0,0,00:00:00/1444-06:11:31,82) [kpsmoused] (root,0,0,00:00:00/1444-06:11:31,89) [ipv6_addrconf] (root,0,0,00:00:00/1444-06:11:31,102) [deferwq] (root,0,0,00:13:34/1444-06:11:31,139) [kauditd] (root,0,0,00:00:00/1444-06:11:30,281) [scsi_eh_0] (root,0,0,00:00:00/1444-06:11:30,282) [scsi_tmf_0] (root,0,0,00:00:00/1444-06:11:30,291) [ixgbe] (root,0,0,00:00:00/1444-06:11:30,304) [poll_megasas0_s] (root,0,0,00:00:00/1444-06:11:30,306) [ttm_swap] (root,0,0,06:02:02/1444-06:11:29,337) [jbd2/sda3-8] (root,0,0,00:00:00/1444-06:11:29,338) [ext4-rsv-conver] (root,108828,60996,02:27:45/1444-06:11:28,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:06/1444-04:56:25,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28472,1-07:33:22/1444-04:56:25,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11064,13:22:09/1444-04:56:11,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1444-06:11:28,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1444-06:11:28,527) [jbd2/sda2-8] (root,0,0,00:00:00/1444-06:11:28,528) [ext4-rsv-conver] (root,55532,1060,00:29:52/1444-06:11:28,573) /sbin/auditd (polkitd,613004,14012,02:44:08/1444-06:11:28,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:56:01/1444-06:11:28,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:14:57/1444-06:11:28,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:11:15/1444-06:11:28,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:08/1444-06:11:28,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1444-04:56:01,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1444-04:56:00,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,316820,1-23:13:05/1444-04:56:00,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1444-06:11:25,930) [kworker/3:1H] (root,112900,4352,00:00:04/1444-06:11:19,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:25/1444-06:11:19,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:38/1444-06:11:19,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1444-06:11:18,1643) [kworker/6:1H] (root,0,0,00:00:39/1444-06:11:08,1646) [kworker/1:1H] (root,0,0,00:00:38/1444-06:10:44,1673) [kworker/0:1H] (root,0,0,00:00:47/1444-06:10:10,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1444-06:09:05,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/02:06:08,1811) [kworker/u16:1] (root,0,0,00:00:00/07:25,3778) [kworker/2:1] (root,0,0,00:00:00/19:19:25,3954) [kworker/5:1] (root,0,0,00:00:00/05:51:25,4521) [kworker/4:0] (root,0,0,00:00:00/01:26,7114) [kworker/3:0] (root,574280,19564,02:50:56/1444-06:08:54,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:00/01:55:26,7694) [kworker/4:2] (root,736704,40740,02:22:06/1444-06:08:54,7698) /usr/sbin/rsyslogd -n (root,115412,1648,00:00:00/00:00,8087) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,8106) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,8107) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (postfix,89848,4084,00:00:00/56:53,8134) pickup -l -t unix -u (root,0,0,00:00:00/22:04:25,8285) [kworker/0:1] (root,110204,848,00:00:00/309-11:58:50,8910) /sbin/agetty --noclear tty1 linux (apache,378196,12820,00:00:00/1-17:14:30,9279) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/54:25,9636) [kworker/6:1] (root,0,0,00:00:02/2-11:21:26,12951) [kworker/7:2] (root,0,0,00:00:14/1444-06:08:46,13987) [kworker/7:1H] (root,0,0,00:00:09/1444-06:03:41,14018) [kworker/4:1H] (root,0,0,00:00:42/1444-06:08:38,14909) [kworker/2:1H] (apache,378196,13292,00:00:01/3-15:05:41,15907) /usr/sbin/httpd -DFOREGROUND (apache,378196,13256,00:00:01/3-15:05:40,15909) /usr/sbin/httpd -DFOREGROUND (apache,378196,13280,00:00:01/3-15:05:39,15926) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/09:18:23,17806) [kworker/3:1] (root,0,0,00:00:00/39:25,17978) [kworker/1:1] (ntp,25732,2012,00:21:50/1444-05:38:36,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19204,01:11:31/1444-05:38:16,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:39:19/1444-05:36:57,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:07:09/1444-05:36:57,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:37/1444-05:33:46,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/34:06,21054) [kworker/u16:2] (apache,378064,12732,00:00:00/1-00:31:28,22639) /usr/sbin/httpd -DFOREGROUND (apache,378064,12748,00:00:00/1-00:31:27,22641) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:27:23,23379) [kworker/1:2] (onapp,911892,41524,04:16:49/430-01:51:50,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:36/430-01:51:50,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/01:24:24,25115) [kworker/3:2] (root,0,0,00:00:00/24:26,26536) [kworker/7:1] (apache,278296,9044,00:00:04/3-17:39:26,26594) /usr/sbin/httpd -DFOREGROUND (apache,378196,13296,00:00:01/3-17:39:26,26595) /usr/sbin/httpd -DFOREGROUND (apache,378196,13264,00:00:01/3-17:39:26,26596) /usr/sbin/httpd -DFOREGROUND (apache,378212,13300,00:00:01/3-17:39:26,26597) /usr/sbin/httpd -DFOREGROUND (apache,378212,13304,00:00:01/3-17:39:26,26598) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/23:25,27088) [kworker/0:0] (root,0,0,00:00:00/22:25,27691) [kworker/5:0] (root,0,0,00:00:00/06:04:25,29630) [kworker/6:0] (root,0,0,00:00:01/1-19:30:26,29875) [kworker/2:0] (onapp,98460,1980,00:00:01/21:24:25,30735) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368124,97360,00:00:10/21:24:25,30736) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,1515868,9040,00:30:32/19-07:46:42,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,368232,97396,00:00:10/21:23:25,31300) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11652,00:00:00/21:22:23,31906) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-13 21:24 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735016ca97425Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:32:43/1442-09:07:01,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1442-09:07:01,2) [kthreadd] (root,0,0,00:00:00/1442-09:07:01,4) [kworker/0:0H] (root,0,0,00:15:39/1442-09:07:01,6) [ksoftirqd/0] (root,0,0,00:01:15/1442-09:07:01,7) [migration/0] (root,0,0,00:00:00/1442-09:07:01,8) [rcu_bh] (root,0,0,18:49:20/1442-09:07:01,9) [rcu_sched] (root,0,0,00:00:00/1442-09:07:01,10) [lru-add-drain] (root,0,0,00:06:21/1442-09:07:01,11) [watchdog/0] (root,0,0,00:06:24/1442-09:07:01,12) [watchdog/1] (root,0,0,00:01:14/1442-09:07:01,13) [migration/1] (root,0,0,00:13:14/1442-09:07:01,14) [ksoftirqd/1] (root,0,0,00:00:00/1442-09:07:01,16) [kworker/1:0H] (root,0,0,00:05:42/1442-09:07:01,17) [watchdog/2] (root,0,0,00:01:13/1442-09:07:01,18) [migration/2] (root,0,0,00:13:06/1442-09:07:01,19) [ksoftirqd/2] (root,0,0,00:00:00/1442-09:07:01,21) [kworker/2:0H] (root,0,0,00:05:43/1442-09:07:01,22) [watchdog/3] (root,0,0,00:01:14/1442-09:07:01,23) [migration/3] (root,0,0,00:13:42/1442-09:07:01,24) [ksoftirqd/3] (root,0,0,00:00:00/1442-09:07:01,26) [kworker/3:0H] (root,0,0,00:05:21/1442-09:07:01,27) [watchdog/4] (root,0,0,00:11:16/1442-09:07:01,28) [migration/4] (root,0,0,00:47:59/1442-09:07:01,29) [ksoftirqd/4] (root,0,0,00:00:00/1442-09:07:01,31) [kworker/4:0H] (root,0,0,00:05:35/1442-09:07:01,32) [watchdog/5] (root,0,0,00:11:02/1442-09:07:01,33) [migration/5] (root,0,0,00:54:03/1442-09:07:01,34) [ksoftirqd/5] (root,0,0,00:00:00/1442-09:07:01,36) [kworker/5:0H] (root,0,0,00:05:26/1442-09:07:01,37) [watchdog/6] (root,0,0,00:10:45/1442-09:07:01,38) [migration/6] (root,0,0,00:54:38/1442-09:07:01,39) [ksoftirqd/6] (root,0,0,00:00:00/1442-09:07:01,41) [kworker/6:0H] (root,0,0,00:05:52/1442-09:07:01,42) [watchdog/7] (root,0,0,00:11:03/1442-09:07:01,43) [migration/7] (root,0,0,01:03:19/1442-09:07:01,44) [ksoftirqd/7] (root,0,0,00:00:00/1442-09:07:01,46) [kworker/7:0H] (root,0,0,00:00:00/1442-09:07:01,48) [kdevtmpfs] (root,0,0,00:00:00/1442-09:07:01,49) [netns] (root,0,0,00:00:42/1442-09:07:01,50) [khungtaskd] (root,0,0,00:00:00/1442-09:07:01,51) [writeback] (root,0,0,00:00:00/1442-09:07:01,52) [kintegrityd] (root,0,0,00:00:00/1442-09:07:01,53) [bioset] (root,0,0,00:00:00/1442-09:07:01,54) [bioset] (root,0,0,00:00:00/1442-09:07:01,55) [bioset] (root,0,0,00:00:00/1442-09:07:01,56) [kblockd] (root,0,0,00:00:00/1442-09:07:01,57) [md] (root,0,0,00:00:00/1442-09:07:01,58) [edac-poller] (root,0,0,00:00:00/1442-09:07:01,59) [watchdogd] (root,0,0,00:00:00/1442-09:07:01,66) [kswapd0] (root,0,0,00:00:00/1442-09:07:01,67) [ksmd] (root,0,0,00:08:27/1442-09:07:01,68) [khugepaged] (root,0,0,00:00:00/1442-09:07:01,69) [crypto] (root,0,0,00:00:00/1442-09:07:01,77) [kthrotld] (root,0,0,00:00:00/1442-09:07:01,79) [kmpath_rdacd] (root,0,0,00:00:00/1442-09:07:01,80) [kaluad] (root,0,0,00:00:00/1442-09:07:00,82) [kpsmoused] (root,0,0,00:00:00/1442-09:07:00,89) [ipv6_addrconf] (root,0,0,00:00:00/1442-09:07:00,102) [deferwq] (root,0,0,00:13:33/1442-09:07:00,139) [kauditd] (root,0,0,00:00:00/1442-09:06:59,281) [scsi_eh_0] (root,0,0,00:00:00/1442-09:06:59,282) [scsi_tmf_0] (root,0,0,00:00:00/1442-09:06:59,291) [ixgbe] (root,0,0,00:00:00/1442-09:06:59,304) [poll_megasas0_s] (root,0,0,00:00:00/1442-09:06:59,306) [ttm_swap] (root,0,0,06:01:54/1442-09:06:58,337) [jbd2/sda3-8] (root,0,0,00:00:00/1442-09:06:58,338) [ext4-rsv-conver] (root,141560,83340,02:27:34/1442-09:06:57,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:04/1442-07:51:54,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28468,1-07:30:53/1442-07:51:54,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11064,13:21:07/1442-07:51:40,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1442-09:06:57,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1442-09:06:57,527) [jbd2/sda2-8] (root,0,0,00:00:00/1442-09:06:57,528) [ext4-rsv-conver] (root,0,0,00:00:00/05:02:55,533) [kworker/2:2] (root,55532,1060,00:29:50/1442-09:06:57,573) /sbin/auditd (root,0,0,00:00:04/4-00:14:54,603) [kworker/5:2] (polkitd,613004,14012,02:43:55/1442-09:06:57,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:55:42/1442-09:06:57,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:14:41/1442-09:06:57,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:10:41/1442-09:06:57,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:05/1442-09:06:57,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1442-07:51:30,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1442-07:51:29,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,310648,1-23:09:11/1442-07:51:29,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1442-09:06:54,930) [kworker/3:1H] (root,112900,4352,00:00:04/1442-09:06:48,1115) /usr/sbin/sshd -D (root,0,0,00:00:01/1-15:34:54,1344) [kworker/3:0] (root,89708,2212,00:08:24/1442-09:06:48,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:37/1442-09:06:48,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1442-09:06:47,1643) [kworker/6:1H] (root,0,0,00:00:39/1442-09:06:37,1646) [kworker/1:1H] (root,0,0,00:00:38/1442-09:06:13,1673) [kworker/0:1H] (root,0,0,00:00:47/1442-09:05:39,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1442-09:04:34,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/01:09:52,1961) [kworker/u16:2] (root,0,0,00:00:00/03:02:55,3265) [kworker/5:0] (root,0,0,00:00:00/09:55,3392) [kworker/7:1] (root,0,0,00:00:00/01:03:54,5337) [kworker/0:0] (root,574280,19564,02:50:42/1442-09:04:23,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,736444,30228,02:21:55/1442-09:04:23,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/00:55,8482) [kworker/0:1] (root,110204,848,00:00:00/307-14:54:19,8910) /sbin/agetty --noclear tty1 linux (root,115412,1652,00:00:00/00:00,9270) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,9289) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,9290) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (postfix,89848,4084,00:00:00/54:11,10694) pickup -l -t unix -u (root,0,0,00:00:00/14:16:55,12951) [kworker/7:2] (root,0,0,00:00:00/48:54,13768) [kworker/6:2] (root,0,0,00:00:14/1442-09:04:15,13987) [kworker/7:1H] (root,0,0,00:00:09/1442-08:59:10,14018) [kworker/4:1H] (root,0,0,00:00:42/1442-09:04:07,14909) [kworker/2:1H] (apache,378196,12812,00:00:00/1-18:01:10,15907) /usr/sbin/httpd -DFOREGROUND (apache,378196,12808,00:00:00/1-18:01:09,15909) /usr/sbin/httpd -DFOREGROUND (apache,378196,12812,00:00:00/1-18:01:08,15926) /usr/sbin/httpd -DFOREGROUND (apache,378196,12760,00:00:00/1-18:01:07,15931) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/44:54,16003) [kworker/0:2] (ntp,25732,2012,00:21:48/1442-08:34:05,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19204,01:11:25/1442-08:33:45,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:37:51/1442-08:32:26,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:07:04/1442-08:32:26,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:03/2-02:32:52,19085) [kworker/4:1] (root,27168,1132,00:24:35/1442-08:29:15,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (onapp,911892,43548,04:16:06/428-04:47:19,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:31/428-04:47:19,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:01/03:23:03,24020) [kworker/u16:1] (apache,278296,9044,00:00:02/1-20:34:55,26594) /usr/sbin/httpd -DFOREGROUND (apache,378196,12776,00:00:00/1-20:34:55,26595) /usr/sbin/httpd -DFOREGROUND (apache,378196,12796,00:00:00/1-20:34:55,26596) /usr/sbin/httpd -DFOREGROUND (apache,378212,12856,00:00:00/1-20:34:55,26597) /usr/sbin/httpd -DFOREGROUND (apache,378212,12816,00:00:00/1-20:34:55,26598) /usr/sbin/httpd -DFOREGROUND (apache,378184,12864,00:00:00/1-20:34:55,26599) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/14:49:54,26750) [kworker/1:0] (apache,378196,12800,00:00:00/1-20:33:54,27187) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:19:54,27296) [kworker/4:0] (root,0,0,00:00:00/19:54,29978) [kworker/3:2] (onapp,98460,1980,00:00:00/19:54,30002) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362028,90996,00:00:00/19:54,30003) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/19:53,30009) [kworker/2:1] (onapp,361996,91156,00:00:00/18:54,30623) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/01:15:54,30882) [kworker/6:0] (onapp,1515872,8820,00:27:35/17-10:42:11,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,283912,11636,00:00:00/17:54,31173) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/01:12:55,32678) [kworker/1:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-12 00:19 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501260051a3Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:31:41/1440-08:54:08,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1440-08:54:08,2) [kthreadd] (root,0,0,00:00:00/1440-08:54:08,4) [kworker/0:0H] (root,0,0,00:15:38/1440-08:54:08,6) [ksoftirqd/0] (root,0,0,00:01:15/1440-08:54:08,7) [migration/0] (root,0,0,00:00:00/1440-08:54:08,8) [rcu_bh] (root,0,0,18:47:42/1440-08:54:08,9) [rcu_sched] (root,0,0,00:00:00/1440-08:54:08,10) [lru-add-drain] (root,0,0,00:06:21/1440-08:54:08,11) [watchdog/0] (root,0,0,00:06:24/1440-08:54:08,12) [watchdog/1] (root,0,0,00:01:14/1440-08:54:08,13) [migration/1] (root,0,0,00:13:13/1440-08:54:08,14) [ksoftirqd/1] (root,0,0,00:00:00/1440-08:54:08,16) [kworker/1:0H] (root,0,0,00:05:41/1440-08:54:08,17) [watchdog/2] (root,0,0,00:01:13/1440-08:54:08,18) [migration/2] (root,0,0,00:13:05/1440-08:54:08,19) [ksoftirqd/2] (root,0,0,00:00:00/1440-08:54:08,21) [kworker/2:0H] (root,0,0,00:05:42/1440-08:54:08,22) [watchdog/3] (root,0,0,00:01:14/1440-08:54:08,23) [migration/3] (root,0,0,00:13:41/1440-08:54:08,24) [ksoftirqd/3] (root,0,0,00:00:00/1440-08:54:08,26) [kworker/3:0H] (root,0,0,00:05:21/1440-08:54:08,27) [watchdog/4] (root,0,0,00:11:15/1440-08:54:08,28) [migration/4] (root,0,0,00:47:56/1440-08:54:08,29) [ksoftirqd/4] (root,0,0,00:00:00/1440-08:54:08,31) [kworker/4:0H] (root,0,0,00:05:34/1440-08:54:08,32) [watchdog/5] (root,0,0,00:11:01/1440-08:54:08,33) [migration/5] (root,0,0,00:54:00/1440-08:54:08,34) [ksoftirqd/5] (root,0,0,00:00:00/1440-08:54:08,36) [kworker/5:0H] (root,0,0,00:05:25/1440-08:54:08,37) [watchdog/6] (root,0,0,00:10:44/1440-08:54:08,38) [migration/6] (root,0,0,00:54:35/1440-08:54:08,39) [ksoftirqd/6] (root,0,0,00:00:00/1440-08:54:08,41) [kworker/6:0H] (root,0,0,00:05:51/1440-08:54:08,42) [watchdog/7] (root,0,0,00:11:02/1440-08:54:08,43) [migration/7] (root,0,0,01:03:15/1440-08:54:08,44) [ksoftirqd/7] (root,0,0,00:00:00/1440-08:54:08,46) [kworker/7:0H] (root,0,0,00:00:00/1440-08:54:08,48) [kdevtmpfs] (root,0,0,00:00:00/1440-08:54:08,49) [netns] (root,0,0,00:00:42/1440-08:54:08,50) [khungtaskd] (root,0,0,00:00:00/1440-08:54:08,51) [writeback] (root,0,0,00:00:00/1440-08:54:08,52) [kintegrityd] (root,0,0,00:00:00/1440-08:54:08,53) [bioset] (root,0,0,00:00:00/1440-08:54:08,54) [bioset] (root,0,0,00:00:00/1440-08:54:08,55) [bioset] (root,0,0,00:00:00/1440-08:54:08,56) [kblockd] (root,0,0,00:00:00/1440-08:54:08,57) [md] (root,0,0,00:00:00/1440-08:54:08,58) [edac-poller] (root,0,0,00:00:00/1440-08:54:08,59) [watchdogd] (root,0,0,00:00:00/1440-08:54:08,66) [kswapd0] (root,0,0,00:00:00/1440-08:54:08,67) [ksmd] (root,0,0,00:08:26/1440-08:54:08,68) [khugepaged] (root,0,0,00:00:00/1440-08:54:08,69) [crypto] (root,0,0,00:00:00/1440-08:54:08,77) [kthrotld] (root,0,0,00:00:00/1440-08:54:08,79) [kmpath_rdacd] (root,0,0,00:00:00/1440-08:54:08,80) [kaluad] (root,0,0,00:00:00/1440-08:54:07,82) [kpsmoused] (root,0,0,00:00:00/1440-08:54:07,89) [ipv6_addrconf] (root,0,0,00:00:00/1440-08:54:07,102) [deferwq] (root,0,0,00:13:32/1440-08:54:07,139) [kauditd] (root,0,0,00:00:00/1440-08:54:06,281) [scsi_eh_0] (root,0,0,00:00:00/1440-08:54:06,282) [scsi_tmf_0] (root,0,0,00:00:00/1440-08:54:06,291) [ixgbe] (root,0,0,00:00:00/1440-08:54:06,304) [poll_megasas0_s] (root,0,0,00:00:00/1440-08:54:06,306) [ttm_swap] (root,0,0,06:01:46/1440-08:54:05,337) [jbd2/sda3-8] (root,0,0,00:00:00/1440-08:54:05,338) [ext4-rsv-conver] (root,47252,10504,02:27:22/1440-08:54:04,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:32:01/1440-07:39:01,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28468,1-07:28:14/1440-07:39:01,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11064,13:19:59/1440-07:38:47,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1440-08:54:04,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1440-08:54:04,527) [jbd2/sda2-8] (root,0,0,00:00:00/1440-08:54:04,528) [ext4-rsv-conver] (root,55532,1060,00:29:47/1440-08:54:04,573) /sbin/auditd (root,0,0,00:00:02/2-00:02:01,603) [kworker/5:2] (polkitd,613004,14012,02:43:41/1440-08:54:04,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:55:23/1440-08:54:04,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:14:25/1440-08:54:04,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:10:05/1440-08:54:04,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:33:02/1440-08:54:04,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1440-07:38:37,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1440-07:38:36,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5692960,360888,1-23:04:42/1440-07:38:36,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,115412,1652,00:00:00/00:00,881) /bin/bash /usr/bin/check_mk_agent (root,51732,1692,00:00:00/00:00,900) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,901) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:41/1440-08:54:01,930) [kworker/3:1H] (root,112900,4352,00:00:04/1440-08:53:55,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:23/1440-08:53:55,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:37/1440-08:53:55,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1440-08:53:54,1643) [kworker/6:1H] (root,0,0,00:00:38/1440-08:53:44,1646) [kworker/1:1H] (root,0,0,00:00:38/1440-08:53:20,1673) [kworker/0:1H] (root,0,0,00:00:47/1440-08:52:46,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1440-08:51:41,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/54:01,2790) [kworker/u16:0] (apache,378052,12860,00:00:02/6-18:10:55,4102) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:50:28/1440-08:51:30,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,734492,13212,02:21:43/1440-08:51:30,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:01/1-05:31:01,8140) [kworker/6:2] (root,0,0,00:00:00/01:41:02,8691) [kworker/3:1] (root,110204,848,00:00:00/305-14:41:26,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/40:59,10042) [kworker/2:2] (root,0,0,00:00:14/1440-08:51:22,13987) [kworker/7:1H] (root,0,0,00:00:09/1440-08:46:17,14018) [kworker/4:1H] (root,0,0,00:00:00/03:24:59,14895) [kworker/1:1] (root,0,0,00:00:42/1440-08:51:14,14909) [kworker/2:1H] (root,0,0,00:00:00/01:24:01,18228) [kworker/6:0] (ntp,25732,2012,00:21:46/1440-08:21:12,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:00/25:59,18469) [kworker/3:0] (root,377912,19192,01:11:19/1440-08:20:52,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:36:17/1440-08:19:33,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:06:58/1440-08:19:33,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/02:19:59,19085) [kworker/4:1] (root,0,0,00:00:00/07:07:01,19434) [kworker/7:1] (root,27168,1132,00:24:33/1440-08:16:22,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/01:21:45,19579) [kworker/u16:2] (root,0,0,00:00:00/17:01,23473) [kworker/4:0] (onapp,911892,43548,04:15:19/426-04:34:26,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:25/426-04:34:26,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/03:05:59,25525) [kworker/0:0] (apache,278164,9032,00:00:08/6-20:24:02,26379) /usr/sbin/httpd -DFOREGROUND (apache,378060,12880,00:00:02/6-20:24:02,26381) /usr/sbin/httpd -DFOREGROUND (apache,378184,12876,00:00:02/6-20:24:02,26382) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:07:02,26404) [kworker/7:0] (root,0,0,00:00:00/05:57:01,26576) [kworker/2:1] (root,0,0,00:00:00/08:02,28532) [kworker/1:0] (root,0,0,00:00:00/07:01,29105) [kworker/5:1] (onapp,98460,1980,00:00:00/07:01,29133) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,361232,90136,00:00:00/07:01,29134) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/02:02:00,29226) [kworker/0:1] (apache,378060,12828,00:00:00/1-22:12:57,29565) /usr/sbin/httpd -DFOREGROUND (apache,378052,12756,00:00:00/1-22:12:57,29566) /usr/sbin/httpd -DFOREGROUND (apache,378060,12792,00:00:00/1-22:12:57,29567) /usr/sbin/httpd -DFOREGROUND (apache,378052,12832,00:00:00/1-22:12:57,29568) /usr/sbin/httpd -DFOREGROUND (apache,378060,12824,00:00:00/1-22:12:57,29570) /usr/sbin/httpd -DFOREGROUND (apache,378052,12816,00:00:00/1-22:12:57,29571) /usr/sbin/httpd -DFOREGROUND (apache,378060,12828,00:00:00/1-22:12:57,29572) /usr/sbin/httpd -DFOREGROUND (onapp,361232,90064,00:00:00/06:01,29760) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (postfix,89848,4080,00:00:00/01:03:11,29928) pickup -l -t unix -u (onapp,283912,11636,00:00:00/04:52,30501) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (onapp,1515868,10000,00:24:21/15-10:29:18,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/04:01,30922) [kworker/0:2] (root,0,0,00:00:00/02:01,32098) [kworker/7:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-10 00:07 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735019a49edaeFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:30:39/1438-08:16:54,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1438-08:16:54,2) [kthreadd] (root,0,0,00:00:00/1438-08:16:54,4) [kworker/0:0H] (root,0,0,00:15:36/1438-08:16:54,6) [ksoftirqd/0] (root,0,0,00:01:15/1438-08:16:54,7) [migration/0] (root,0,0,00:00:00/1438-08:16:54,8) [rcu_bh] (root,0,0,18:45:59/1438-08:16:54,9) [rcu_sched] (root,0,0,00:00:00/1438-08:16:54,10) [lru-add-drain] (root,0,0,00:06:20/1438-08:16:54,11) [watchdog/0] (root,0,0,00:06:23/1438-08:16:54,12) [watchdog/1] (root,0,0,00:01:14/1438-08:16:54,13) [migration/1] (root,0,0,00:13:12/1438-08:16:54,14) [ksoftirqd/1] (root,0,0,00:00:00/1438-08:16:54,16) [kworker/1:0H] (root,0,0,00:05:41/1438-08:16:54,17) [watchdog/2] (root,0,0,00:01:13/1438-08:16:54,18) [migration/2] (root,0,0,00:13:04/1438-08:16:54,19) [ksoftirqd/2] (root,0,0,00:00:00/1438-08:16:54,21) [kworker/2:0H] (root,0,0,00:05:42/1438-08:16:54,22) [watchdog/3] (root,0,0,00:01:14/1438-08:16:54,23) [migration/3] (root,0,0,00:13:40/1438-08:16:54,24) [ksoftirqd/3] (root,0,0,00:00:00/1438-08:16:54,26) [kworker/3:0H] (root,0,0,00:05:20/1438-08:16:54,27) [watchdog/4] (root,0,0,00:11:14/1438-08:16:54,28) [migration/4] (root,0,0,00:47:53/1438-08:16:54,29) [ksoftirqd/4] (root,0,0,00:00:00/1438-08:16:54,31) [kworker/4:0H] (root,0,0,00:05:34/1438-08:16:54,32) [watchdog/5] (root,0,0,00:11:01/1438-08:16:54,33) [migration/5] (root,0,0,00:53:56/1438-08:16:54,34) [ksoftirqd/5] (root,0,0,00:00:00/1438-08:16:54,36) [kworker/5:0H] (root,0,0,00:05:25/1438-08:16:54,37) [watchdog/6] (root,0,0,00:10:43/1438-08:16:54,38) [migration/6] (root,0,0,00:54:31/1438-08:16:54,39) [ksoftirqd/6] (root,0,0,00:00:00/1438-08:16:54,41) [kworker/6:0H] (root,0,0,00:05:51/1438-08:16:54,42) [watchdog/7] (root,0,0,00:11:02/1438-08:16:54,43) [migration/7] (root,0,0,01:03:10/1438-08:16:54,44) [ksoftirqd/7] (root,0,0,00:00:00/1438-08:16:54,46) [kworker/7:0H] (root,0,0,00:00:00/1438-08:16:54,48) [kdevtmpfs] (root,0,0,00:00:00/1438-08:16:54,49) [netns] (root,0,0,00:00:42/1438-08:16:54,50) [khungtaskd] (root,0,0,00:00:00/1438-08:16:54,51) [writeback] (root,0,0,00:00:00/1438-08:16:54,52) [kintegrityd] (root,0,0,00:00:00/1438-08:16:54,53) [bioset] (root,0,0,00:00:00/1438-08:16:54,54) [bioset] (root,0,0,00:00:00/1438-08:16:54,55) [bioset] (root,0,0,00:00:00/1438-08:16:54,56) [kblockd] (root,0,0,00:00:00/1438-08:16:54,57) [md] (root,0,0,00:00:00/1438-08:16:54,58) [edac-poller] (root,0,0,00:00:00/1438-08:16:54,59) [watchdogd] (root,0,0,00:00:00/1438-08:16:54,66) [kswapd0] (root,0,0,00:00:00/1438-08:16:54,67) [ksmd] (root,0,0,00:08:25/1438-08:16:54,68) [khugepaged] (root,0,0,00:00:00/1438-08:16:54,69) [crypto] (root,0,0,00:00:00/1438-08:16:54,77) [kthrotld] (root,0,0,00:00:00/1438-08:16:54,79) [kmpath_rdacd] (root,0,0,00:00:00/1438-08:16:54,80) [kaluad] (root,0,0,00:00:00/1438-08:16:53,82) [kpsmoused] (root,0,0,00:00:00/1438-08:16:53,89) [ipv6_addrconf] (root,0,0,00:00:00/1438-08:16:53,102) [deferwq] (root,0,0,00:13:31/1438-08:16:53,139) [kauditd] (root,0,0,00:00:00/1438-08:16:52,281) [scsi_eh_0] (root,0,0,00:00:00/1438-08:16:52,282) [scsi_tmf_0] (root,0,0,00:00:00/1438-08:16:52,291) [ixgbe] (root,0,0,00:00:00/1438-08:16:52,304) [poll_megasas0_s] (root,0,0,00:00:00/1438-08:16:52,306) [ttm_swap] (root,0,0,06:01:37/1438-08:16:51,337) [jbd2/sda3-8] (root,0,0,00:00:00/1438-08:16:51,338) [ext4-rsv-conver] (root,0,0,00:00:00/01:19:47,348) [kworker/1:2] (root,63636,26452,02:27:09/1438-08:16:50,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:59/1438-07:01:47,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28468,1-07:25:33/1438-07:01:47,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11056,13:18:51/1438-07:01:33,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1438-08:16:50,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1438-08:16:50,527) [jbd2/sda2-8] (root,0,0,00:00:00/1438-08:16:50,528) [ext4-rsv-conver] (root,55532,1060,00:29:45/1438-08:16:50,573) /sbin/auditd (polkitd,613004,14012,02:43:27/1438-08:16:50,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:55:03/1438-08:16:50,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:14:08/1438-08:16:50,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:09:28/1438-08:16:50,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:59/1438-08:16:50,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1438-07:01:23,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1438-07:01:22,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5692960,360880,1-23:00:26/1438-07:01:22,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:41/1438-08:16:47,930) [kworker/3:1H] (root,0,0,00:00:00/12:49:48,1099) [kworker/3:1] (root,112900,4352,00:00:04/1438-08:16:41,1115) /usr/sbin/sshd -D (apache,378204,13288,00:00:01/4-16:41:21,1168) /usr/sbin/httpd -DFOREGROUND (apache,378184,13308,00:00:01/4-16:41:19,1171) /usr/sbin/httpd -DFOREGROUND (root,89708,2212,00:08:23/1438-08:16:41,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:37/1438-08:16:41,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1438-08:16:40,1643) [kworker/6:1H] (root,0,0,00:00:38/1438-08:16:30,1646) [kworker/1:1H] (root,0,0,00:00:38/1438-08:16:06,1673) [kworker/0:1H] (root,0,0,00:00:47/1438-08:15:32,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1438-08:14:27,1750) /usr/lib/systemd/systemd-udevd (apache,378052,12848,00:00:01/4-17:33:41,4102) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/03:08:26,4144) [kworker/u16:0] (apache,378052,12900,00:00:00/1-23:17:33,4422) /usr/sbin/httpd -DFOREGROUND (apache,378204,13260,00:00:01/2-23:16:21,5411) /usr/sbin/httpd -DFOREGROUND (apache,378060,12848,00:00:00/2-23:16:20,5416) /usr/sbin/httpd -DFOREGROUND (apache,378052,12844,00:00:01/3-20:23:32,5447) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/11:47,6277) [kworker/2:0] (root,574280,19564,02:50:14/1438-08:14:16,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,0,0,00:00:01/1-10:42:47,7569) [kworker/1:0] (root,734464,21296,02:21:30/1438-08:14:16,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/303-14:04:12,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/02:59:48,8991) [kworker/5:0] (root,0,0,00:00:01/1-05:51:47,9309) [kworker/2:1] (root,0,0,00:00:00/05:47,9640) [kworker/0:0] (root,0,0,00:00:00/59:47,11659) [kworker/3:0] (root,0,0,00:00:00/57:47,12790) [kworker/6:0] (onapp,0,0,00:00:00/00:01,12917) [nagios] <defunct> (onapp,1515872,6400,00:00:00/00:01,12919) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,1515872,6400,00:00:00/00:01,12921) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,73768,29024,00:00:00/00:01,12922) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/hv2.c1.onapp (onapp,73092,28228,00:00:00/00:01,12923) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/hv5.c1.onapp (root,115412,1648,00:00:00/00:00,13111) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,13130) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,13131) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/12:26:47,13958) [kworker/0:1] (root,0,0,00:00:14/1438-08:14:08,13987) [kworker/7:1H] (root,0,0,00:00:09/1438-08:09:03,14018) [kworker/4:1H] (root,0,0,00:00:42/1438-08:14:00,14909) [kworker/2:1H] (root,0,0,00:00:02/2-07:34:48,16140) [kworker/7:2] (root,0,0,00:00:00/01:45:47,18168) [kworker/7:1] (ntp,25732,2012,00:21:44/1438-07:43:58,18284) /usr/sbin/ntpd -u ntp:ntp -g (postfix,89848,4080,00:00:00/47:58,18316) pickup -l -t unix -u (root,377912,19192,01:11:13/1438-07:43:38,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:34:42/1438-07:42:19,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:06:52/1438-07:42:19,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:31/1438-07:39:08,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/10:18:47,21196) [kworker/4:0] (root,0,0,00:00:00/08:22:48,21591) [kworker/6:1] (onapp,911892,43548,04:14:31/424-03:57:12,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:19/424-03:57:12,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/01:31:54,25937) [kworker/u16:2] (apache,278164,9032,00:00:05/4-19:46:48,26379) /usr/sbin/httpd -DFOREGROUND (apache,378060,12872,00:00:01/4-19:46:48,26381) /usr/sbin/httpd -DFOREGROUND (apache,378184,12868,00:00:01/4-19:46:48,26382) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-01:29:48,26972) [kworker/5:1] (apache,378052,12884,00:00:01/4-19:43:09,28541) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/28:47,28981) [kworker/4:2] (onapp,98460,1984,00:00:01/23:29:48,29698) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368180,97396,00:00:11/23:29:48,29699) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368068,97304,00:00:11/23:28:47,30321) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11648,00:00:00/23:27:55,30781) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (onapp,1515868,8492,00:21:07/13-09:52:04,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-07 23:29 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350170f4999cFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:29:35/1436-05:55:46,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1436-05:55:46,2) [kthreadd] (root,0,0,00:00:00/1436-05:55:46,4) [kworker/0:0H] (root,0,0,00:15:35/1436-05:55:46,6) [ksoftirqd/0] (root,0,0,00:01:15/1436-05:55:46,7) [migration/0] (root,0,0,00:00:00/1436-05:55:46,8) [rcu_bh] (root,0,0,18:44:22/1436-05:55:46,9) [rcu_sched] (root,0,0,00:00:00/1436-05:55:46,10) [lru-add-drain] (root,0,0,00:06:20/1436-05:55:46,11) [watchdog/0] (root,0,0,00:06:22/1436-05:55:46,12) [watchdog/1] (root,0,0,00:01:14/1436-05:55:46,13) [migration/1] (root,0,0,00:13:11/1436-05:55:46,14) [ksoftirqd/1] (root,0,0,00:00:00/1436-05:55:46,16) [kworker/1:0H] (root,0,0,00:05:40/1436-05:55:46,17) [watchdog/2] (root,0,0,00:01:13/1436-05:55:46,18) [migration/2] (root,0,0,00:13:02/1436-05:55:46,19) [ksoftirqd/2] (root,0,0,00:00:00/1436-05:55:46,21) [kworker/2:0H] (root,0,0,00:05:41/1436-05:55:46,22) [watchdog/3] (root,0,0,00:01:14/1436-05:55:46,23) [migration/3] (root,0,0,00:13:39/1436-05:55:46,24) [ksoftirqd/3] (root,0,0,00:00:00/1436-05:55:46,26) [kworker/3:0H] (root,0,0,00:05:20/1436-05:55:46,27) [watchdog/4] (root,0,0,00:11:14/1436-05:55:46,28) [migration/4] (root,0,0,00:47:49/1436-05:55:46,29) [ksoftirqd/4] (root,0,0,00:00:00/1436-05:55:46,31) [kworker/4:0H] (root,0,0,00:05:33/1436-05:55:46,32) [watchdog/5] (root,0,0,00:11:00/1436-05:55:46,33) [migration/5] (root,0,0,00:53:53/1436-05:55:46,34) [ksoftirqd/5] (root,0,0,00:00:00/1436-05:55:46,36) [kworker/5:0H] (root,0,0,00:05:24/1436-05:55:46,37) [watchdog/6] (root,0,0,00:10:42/1436-05:55:46,38) [migration/6] (root,0,0,00:54:28/1436-05:55:46,39) [ksoftirqd/6] (root,0,0,00:00:00/1436-05:55:46,41) [kworker/6:0H] (root,0,0,00:05:50/1436-05:55:46,42) [watchdog/7] (root,0,0,00:11:01/1436-05:55:46,43) [migration/7] (root,0,0,01:03:06/1436-05:55:46,44) [ksoftirqd/7] (root,0,0,00:00:00/1436-05:55:46,46) [kworker/7:0H] (root,0,0,00:00:00/1436-05:55:46,48) [kdevtmpfs] (root,0,0,00:00:00/1436-05:55:46,49) [netns] (root,0,0,00:00:42/1436-05:55:46,50) [khungtaskd] (root,0,0,00:00:00/1436-05:55:46,51) [writeback] (root,0,0,00:00:00/1436-05:55:46,52) [kintegrityd] (root,0,0,00:00:00/1436-05:55:46,53) [bioset] (root,0,0,00:00:00/1436-05:55:46,54) [bioset] (root,0,0,00:00:00/1436-05:55:46,55) [bioset] (root,0,0,00:00:00/1436-05:55:46,56) [kblockd] (root,0,0,00:00:00/1436-05:55:46,57) [md] (root,0,0,00:00:00/1436-05:55:46,58) [edac-poller] (root,0,0,00:00:00/1436-05:55:46,59) [watchdogd] (root,0,0,00:00:00/1436-05:55:46,66) [kswapd0] (root,0,0,00:00:00/1436-05:55:46,67) [ksmd] (root,0,0,00:08:24/1436-05:55:46,68) [khugepaged] (root,0,0,00:00:00/1436-05:55:46,69) [crypto] (root,0,0,00:00:00/1436-05:55:46,77) [kthrotld] (root,0,0,00:00:00/1436-05:55:46,79) [kmpath_rdacd] (root,0,0,00:00:00/1436-05:55:46,80) [kaluad] (root,0,0,00:00:00/1436-05:55:45,82) [kpsmoused] (root,0,0,00:00:00/1436-05:55:45,89) [ipv6_addrconf] (root,0,0,00:00:00/1436-05:55:45,102) [deferwq] (root,0,0,00:13:30/1436-05:55:45,139) [kauditd] (root,0,0,00:00:00/1436-05:55:44,281) [scsi_eh_0] (root,0,0,00:00:00/1436-05:55:44,282) [scsi_tmf_0] (root,0,0,00:00:00/1436-05:55:44,291) [ixgbe] (root,0,0,00:00:00/1436-05:55:44,304) [poll_megasas0_s] (root,0,0,00:00:00/1436-05:55:44,306) [ttm_swap] (root,0,0,06:01:28/1436-05:55:43,337) [jbd2/sda3-8] (root,0,0,00:00:00/1436-05:55:43,338) [ext4-rsv-conver] (root,80020,40188,02:26:56/1436-05:55:42,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:56/1436-04:40:39,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28464,1-07:22:48/1436-04:40:39,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11056,13:17:41/1436-04:40:25,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1436-05:55:42,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1436-05:55:42,527) [jbd2/sda2-8] (root,0,0,00:00:00/1436-05:55:42,528) [ext4-rsv-conver] (root,55532,1060,00:29:42/1436-05:55:42,573) /sbin/auditd (polkitd,613004,14012,02:43:12/1436-05:55:42,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:54:43/1436-05:55:42,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:13:50/1436-05:55:42,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:08:49/1436-05:55:42,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:56/1436-05:55:42,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1436-04:40:15,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1436-04:40:14,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5692960,360152,1-22:56:00/1436-04:40:14,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:40/1436-05:55:39,930) [kworker/3:1H] (root,112900,4352,00:00:04/1436-05:55:33,1115) /usr/sbin/sshd -D (apache,378052,12828,00:00:00/2-14:20:13,1168) /usr/sbin/httpd -DFOREGROUND (apache,378184,12868,00:00:00/2-14:20:11,1171) /usr/sbin/httpd -DFOREGROUND (root,89708,2212,00:08:22/1436-05:55:33,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:37/1436-05:55:33,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1436-05:55:32,1643) [kworker/6:1H] (root,0,0,00:00:38/1436-05:55:22,1646) [kworker/1:1H] (root,0,0,00:00:38/1436-05:54:58,1673) [kworker/0:1H] (root,0,0,00:00:47/1436-05:54:24,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1436-05:53:19,1750) /usr/lib/systemd/systemd-udevd (apache,378052,12816,00:00:00/2-15:12:33,4102) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/16:08:40,4311) [kworker/1:1] (apache,378060,12612,00:00:00/20:55:13,5411) /usr/sbin/httpd -DFOREGROUND (apache,378060,12724,00:00:00/20:55:12,5416) /usr/sbin/httpd -DFOREGROUND (apache,378052,12828,00:00:00/1-18:02:24,5447) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:41:40,5732) [kworker/5:0] (root,574280,19564,02:49:59/1436-05:53:08,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740688,28744,02:21:18/1436-05:53:08,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/301-11:43:04,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:01/02:31:30,10218) [kworker/u16:0] (root,0,0,00:00:00/19:46:39,11365) [kworker/3:1] (root,0,0,00:00:00/10:08:40,12298) [kworker/0:0] (root,0,0,00:00:01/1-15:53:40,13225) [kworker/2:2] (root,0,0,00:00:14/1436-05:53:00,13987) [kworker/7:1H] (root,0,0,00:00:09/1436-05:47:55,14018) [kworker/4:1H] (postfix,89848,4080,00:00:00/28:46,14204) pickup -l -t unix -u (root,0,0,00:00:00/27:39,14869) [kworker/7:1] (root,0,0,00:00:42/1436-05:52:52,14909) [kworker/2:1H] (root,0,0,00:00:05/4-20:38:39,15064) [kworker/5:1] (root,0,0,00:00:00/05:13:40,16140) [kworker/7:2] (root,0,0,00:00:00/23:38,17105) [kworker/6:2] (root,0,0,00:00:00/23:38,17107) [kworker/0:2] (root,0,0,00:00:00/04:13:34,17655) [kworker/4:1] (ntp,25732,2012,00:21:42/1436-05:22:50,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:00/01:18:40,18567) [kworker/1:0] (root,377912,19192,01:11:07/1436-05:22:30,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:33:03/1436-05:21:11,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:06:46/1436-05:21:11,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/19:38,19329) [kworker/u16:2] (root,27168,1132,00:24:29/1436-05:18:00,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/16:39,21057) [kworker/2:0] (onapp,911892,41524,04:13:42/422-01:36:04,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:13/422-01:36:04,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/07:40,26057) [kworker/3:2] (apache,278164,9032,00:00:03/2-17:25:40,26379) /usr/sbin/httpd -DFOREGROUND (apache,378184,12828,00:00:00/2-17:25:40,26380) /usr/sbin/httpd -DFOREGROUND (apache,378060,12852,00:00:00/2-17:25:40,26381) /usr/sbin/httpd -DFOREGROUND (apache,378184,12856,00:00:00/2-17:25:40,26382) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-03:57:39,26892) [kworker/6:0] (apache,378052,12880,00:00:00/2-17:22:01,28541) /usr/sbin/httpd -DFOREGROUND (onapp,98460,1984,00:00:01/21:08:40,29907) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368292,97400,00:00:10/21:08:40,29908) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:01/1-00:58:39,30262) [kworker/4:2] (onapp,368232,97340,00:00:10/21:07:40,30449) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,1515872,6264,00:00:00/00:01,30476) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,1515872,6264,00:00:00/00:01,30478) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,71544,26736,00:00:00/00:01,30479) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/hv4.c1.onapp (onapp,1515872,6264,00:00:00/00:01,30480) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,71220,26348,00:00:00/00:01,30481) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/bu1.c1.onapp (onapp,1515872,6264,00:00:00/00:01,30482) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,73092,28224,00:00:00/00:01,30483) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/hv7.c1.onapp (onapp,1515872,6264,00:00:00/00:01,30484) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,74044,28864,00:00:00/00:01,30485) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/hv3.c1.onapp (onapp,1515872,6264,00:00:00/00:01,30486) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,73952,28960,00:00:00/00:01,30487) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/hv1.c1.onapp (onapp,73760,28696,00:00:00/00:01,30488) /omd/sites/onapp/bin/python /omd/sites/onapp/var/check_mk/precompiled/hv6.c1.onapp (root,115412,1648,00:00:00/00:00,30526) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,30545) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,30546) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (onapp,1515868,8320,00:17:46/11-07:30:56,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,283912,11648,00:00:00/21:06:47,30998) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-05 21:08 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735013fb29769Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:28:34/1434-06:03:44,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:14/1434-06:03:44,2) [kthreadd] (root,0,0,00:00:00/1434-06:03:44,4) [kworker/0:0H] (root,0,0,00:15:34/1434-06:03:44,6) [ksoftirqd/0] (root,0,0,00:01:15/1434-06:03:44,7) [migration/0] (root,0,0,00:00:00/1434-06:03:44,8) [rcu_bh] (root,0,0,18:42:58/1434-06:03:44,9) [rcu_sched] (root,0,0,00:00:00/1434-06:03:44,10) [lru-add-drain] (root,0,0,00:06:19/1434-06:03:44,11) [watchdog/0] (root,0,0,00:06:22/1434-06:03:44,12) [watchdog/1] (root,0,0,00:01:13/1434-06:03:44,13) [migration/1] (root,0,0,00:13:09/1434-06:03:44,14) [ksoftirqd/1] (root,0,0,00:00:00/1434-06:03:44,16) [kworker/1:0H] (root,0,0,00:05:40/1434-06:03:44,17) [watchdog/2] (root,0,0,00:01:13/1434-06:03:44,18) [migration/2] (root,0,0,00:13:01/1434-06:03:44,19) [ksoftirqd/2] (root,0,0,00:00:00/1434-06:03:44,21) [kworker/2:0H] (root,0,0,00:05:41/1434-06:03:44,22) [watchdog/3] (root,0,0,00:01:14/1434-06:03:44,23) [migration/3] (root,0,0,00:13:37/1434-06:03:44,24) [ksoftirqd/3] (root,0,0,00:00:00/1434-06:03:44,26) [kworker/3:0H] (root,0,0,00:05:19/1434-06:03:44,27) [watchdog/4] (root,0,0,00:11:13/1434-06:03:44,28) [migration/4] (root,0,0,00:47:46/1434-06:03:44,29) [ksoftirqd/4] (root,0,0,00:00:00/1434-06:03:44,31) [kworker/4:0H] (root,0,0,00:05:33/1434-06:03:44,32) [watchdog/5] (root,0,0,00:10:59/1434-06:03:44,33) [migration/5] (root,0,0,00:53:49/1434-06:03:44,34) [ksoftirqd/5] (root,0,0,00:00:00/1434-06:03:44,36) [kworker/5:0H] (root,0,0,00:05:24/1434-06:03:44,37) [watchdog/6] (root,0,0,00:10:42/1434-06:03:44,38) [migration/6] (root,0,0,00:54:24/1434-06:03:44,39) [ksoftirqd/6] (root,0,0,00:00:00/1434-06:03:44,41) [kworker/6:0H] (root,0,0,00:05:50/1434-06:03:44,42) [watchdog/7] (root,0,0,00:11:00/1434-06:03:44,43) [migration/7] (root,0,0,01:03:02/1434-06:03:44,44) [ksoftirqd/7] (root,0,0,00:00:00/1434-06:03:44,46) [kworker/7:0H] (root,0,0,00:00:00/1434-06:03:44,48) [kdevtmpfs] (root,0,0,00:00:00/1434-06:03:44,49) [netns] (root,0,0,00:00:42/1434-06:03:44,50) [khungtaskd] (root,0,0,00:00:00/1434-06:03:44,51) [writeback] (root,0,0,00:00:00/1434-06:03:44,52) [kintegrityd] (root,0,0,00:00:00/1434-06:03:44,53) [bioset] (root,0,0,00:00:00/1434-06:03:44,54) [bioset] (root,0,0,00:00:00/1434-06:03:44,55) [bioset] (root,0,0,00:00:00/1434-06:03:44,56) [kblockd] (root,0,0,00:00:00/1434-06:03:44,57) [md] (root,0,0,00:00:00/1434-06:03:44,58) [edac-poller] (root,0,0,00:00:00/1434-06:03:44,59) [watchdogd] (root,0,0,00:00:00/1434-06:03:44,66) [kswapd0] (root,0,0,00:00:00/1434-06:03:44,67) [ksmd] (root,0,0,00:08:24/1434-06:03:44,68) [khugepaged] (root,0,0,00:00:00/1434-06:03:44,69) [crypto] (root,0,0,00:00:00/1434-06:03:44,77) [kthrotld] (root,0,0,00:00:00/1434-06:03:44,79) [kmpath_rdacd] (root,0,0,00:00:00/1434-06:03:44,80) [kaluad] (root,0,0,00:00:00/1434-06:03:43,82) [kpsmoused] (root,0,0,00:00:00/1434-06:03:43,89) [ipv6_addrconf] (root,0,0,00:00:00/1434-06:03:43,102) [deferwq] (root,0,0,00:13:29/1434-06:03:43,139) [kauditd] (root,0,0,00:00:00/1434-06:03:42,281) [scsi_eh_0] (root,0,0,00:00:00/1434-06:03:42,282) [scsi_tmf_0] (root,0,0,00:00:00/1434-06:03:42,291) [ixgbe] (root,0,0,00:00:00/1434-06:03:42,304) [poll_megasas0_s] (root,0,0,00:00:00/1434-06:03:42,306) [ttm_swap] (root,0,0,06:01:20/1434-06:03:41,337) [jbd2/sda3-8] (root,0,0,00:00:00/1434-06:03:41,338) [ext4-rsv-conver] (root,104596,58048,02:26:44/1434-06:03:40,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:54/1434-04:48:37,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28464,1-07:20:10/1434-04:48:37,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11048,13:16:36/1434-04:48:23,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1434-06:03:40,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1434-06:03:40,527) [jbd2/sda2-8] (root,0,0,00:00:00/1434-06:03:40,528) [ext4-rsv-conver] (root,55532,1060,00:29:40/1434-06:03:40,573) /sbin/auditd (polkitd,613004,14012,02:42:59/1434-06:03:40,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:54:23/1434-06:03:40,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:13:34/1434-06:03:40,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,07:08:13/1434-06:03:40,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:53/1434-06:03:40,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1434-04:48:13,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1434-04:48:12,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,353496,1-22:51:48/1434-04:48:12,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:00/03:38,891) [kworker/7:1] (root,0,0,00:00:40/1434-06:03:37,930) [kworker/3:1H] (root,0,0,00:00:02/1-06:46:38,1045) [kworker/4:0] (root,112900,4352,00:00:04/1434-06:03:31,1115) /usr/sbin/sshd -D (apache,378052,12516,00:00:00/14:28:11,1168) /usr/sbin/httpd -DFOREGROUND (apache,378184,12672,00:00:00/14:28:09,1171) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:45,1447) [kworker/u16:0] (root,89708,2212,00:08:21/1434-06:03:31,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:37/1434-06:03:31,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1434-06:03:30,1643) [kworker/6:1H] (root,0,0,00:00:38/1434-06:03:20,1646) [kworker/1:1H] (root,0,0,00:00:38/1434-06:02:56,1673) [kworker/0:1H] (root,0,0,00:00:47/1434-06:02:22,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1434-06:01:17,1750) /usr/lib/systemd/systemd-udevd (postfix,89848,4084,00:00:00/58:39,2364) pickup -l -t unix -u (root,115412,1648,00:00:00/00:00,3058) /bin/bash /usr/bin/check_mk_agent (root,51732,1684,00:00:00/00:00,3077) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,3078) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,378052,12672,00:00:00/15:20:31,4102) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:52:04,4842) [kworker/u16:1] (root,0,0,00:00:00/07:34:38,6595) [kworker/7:2] (root,574280,19564,02:49:45/1434-06:01:06,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740684,38784,02:21:06/1434-06:01:06,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/299-11:51:02,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/46:37,9140) [kworker/7:0] (root,0,0,00:00:01/2-02:40:35,10085) [kworker/0:2] (root,0,0,00:00:00/43:37,10777) [kworker/5:0] (root,0,0,00:00:14/1434-06:00:58,13987) [kworker/7:1H] (root,0,0,00:00:09/1434-05:55:53,14018) [kworker/4:1H] (root,0,0,00:00:42/1434-06:00:50,14909) [kworker/2:1H] (root,0,0,00:00:03/2-20:46:37,15064) [kworker/5:1] (ntp,25732,2012,00:21:41/1434-05:30:48,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377912,19188,01:11:01/1434-05:30:28,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216524,22168,18:31:30/1434-05:29:09,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:06:41/1434-05:29:09,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:24:27/1434-05:25:58,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/26:38,20325) [kworker/4:1] (root,0,0,00:00:01/1-05:13:38,20838) [kworker/2:0] (root,0,0,00:00:00/02:16:38,23286) [kworker/1:1] (onapp,911892,43548,04:12:56/420-01:44:02,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:20:07/420-01:44:02,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/03:13:36,23671) [kworker/3:0] (root,0,0,00:00:01/03:11:37,24802) [kworker/u16:2] (root,0,0,00:00:00/16:37,25915) [kworker/2:1] (root,0,0,00:00:01/1-09:52:38,26117) [kworker/3:2] (root,0,0,00:00:00/20:25:37,26366) [kworker/6:1] (apache,278164,9032,00:00:00/17:33:38,26379) /usr/sbin/httpd -DFOREGROUND (apache,378052,12736,00:00:00/17:33:38,26380) /usr/sbin/httpd -DFOREGROUND (apache,378060,12776,00:00:00/17:33:38,26381) /usr/sbin/httpd -DFOREGROUND (apache,378184,12684,00:00:00/17:33:38,26382) /usr/sbin/httpd -DFOREGROUND (apache,378052,12712,00:00:00/17:33:38,26383) /usr/sbin/httpd -DFOREGROUND (apache,378060,12716,00:00:00/17:33:38,26384) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/15:37,26458) [kworker/0:0] (root,0,0,00:00:00/02:09:38,27267) [kworker/6:2] (apache,378052,12708,00:00:00/17:29:59,28541) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:08:37,29156) [kworker/1:2] (onapp,98460,1984,00:00:01/21:16:38,29834) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368120,97332,00:00:10/21:16:38,29835) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368184,97392,00:00:10/21:15:38,30453) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,1515868,8168,00:14:36/9-07:38:54,30886) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,283912,11648,00:00:00/21:14:39,30945) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-11-03 21:16 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735019854ae52Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:15:42/1405-07:17:38,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1405-07:17:38,2) [kthreadd] (root,0,0,00:00:00/1405-07:17:38,4) [kworker/0:0H] (root,0,0,00:15:17/1405-07:17:38,6) [ksoftirqd/0] (root,0,0,00:01:13/1405-07:17:38,7) [migration/0] (root,0,0,00:00:00/1405-07:17:38,8) [rcu_bh] (root,0,0,18:23:22/1405-07:17:38,9) [rcu_sched] (root,0,0,00:00:00/1405-07:17:38,10) [lru-add-drain] (root,0,0,00:06:11/1405-07:17:38,11) [watchdog/0] (root,0,0,00:06:14/1405-07:17:38,12) [watchdog/1] (root,0,0,00:01:12/1405-07:17:38,13) [migration/1] (root,0,0,00:12:52/1405-07:17:38,14) [ksoftirqd/1] (root,0,0,00:00:00/1405-07:17:38,16) [kworker/1:0H] (root,0,0,00:05:33/1405-07:17:38,17) [watchdog/2] (root,0,0,00:01:11/1405-07:17:38,18) [migration/2] (root,0,0,00:12:44/1405-07:17:38,19) [ksoftirqd/2] (root,0,0,00:00:00/1405-07:17:38,21) [kworker/2:0H] (root,0,0,00:05:34/1405-07:17:38,22) [watchdog/3] (root,0,0,00:01:12/1405-07:17:38,23) [migration/3] (root,0,0,00:13:20/1405-07:17:38,24) [ksoftirqd/3] (root,0,0,00:00:00/1405-07:17:38,26) [kworker/3:0H] (root,0,0,00:05:13/1405-07:17:38,27) [watchdog/4] (root,0,0,00:11:01/1405-07:17:38,28) [migration/4] (root,0,0,00:47:02/1405-07:17:38,29) [ksoftirqd/4] (root,0,0,00:00:00/1405-07:17:38,31) [kworker/4:0H] (root,0,0,00:05:26/1405-07:17:38,32) [watchdog/5] (root,0,0,00:10:47/1405-07:17:38,33) [migration/5] (root,0,0,00:53:00/1405-07:17:38,34) [ksoftirqd/5] (root,0,0,00:00:00/1405-07:17:38,36) [kworker/5:0H] (root,0,0,00:05:17/1405-07:17:38,37) [watchdog/6] (root,0,0,00:10:30/1405-07:17:38,38) [migration/6] (root,0,0,00:53:35/1405-07:17:38,39) [ksoftirqd/6] (root,0,0,00:00:00/1405-07:17:38,41) [kworker/6:0H] (root,0,0,00:05:43/1405-07:17:38,42) [watchdog/7] (root,0,0,00:10:48/1405-07:17:38,43) [migration/7] (root,0,0,01:01:59/1405-07:17:38,44) [ksoftirqd/7] (root,0,0,00:00:00/1405-07:17:38,46) [kworker/7:0H] (root,0,0,00:00:00/1405-07:17:38,48) [kdevtmpfs] (root,0,0,00:00:00/1405-07:17:38,49) [netns] (root,0,0,00:00:41/1405-07:17:38,50) [khungtaskd] (root,0,0,00:00:00/1405-07:17:38,51) [writeback] (root,0,0,00:00:00/1405-07:17:38,52) [kintegrityd] (root,0,0,00:00:00/1405-07:17:38,53) [bioset] (root,0,0,00:00:00/1405-07:17:38,54) [bioset] (root,0,0,00:00:00/1405-07:17:38,55) [bioset] (root,0,0,00:00:00/1405-07:17:38,56) [kblockd] (root,0,0,00:00:00/1405-07:17:38,57) [md] (root,0,0,00:00:00/1405-07:17:38,58) [edac-poller] (root,0,0,00:00:00/1405-07:17:38,59) [watchdogd] (root,0,0,00:00:00/1405-07:17:38,66) [kswapd0] (root,0,0,00:00:00/1405-07:17:38,67) [ksmd] (root,0,0,00:08:14/1405-07:17:38,68) [khugepaged] (root,0,0,00:00:00/1405-07:17:38,69) [crypto] (root,0,0,00:00:00/1405-07:17:38,77) [kthrotld] (root,0,0,00:00:00/1405-07:17:38,79) [kmpath_rdacd] (root,0,0,00:00:00/1405-07:17:38,80) [kaluad] (root,0,0,00:00:00/1405-07:17:37,82) [kpsmoused] (root,0,0,00:00:00/1405-07:17:37,89) [ipv6_addrconf] (root,0,0,00:00:00/1405-07:17:37,102) [deferwq] (root,0,0,00:13:13/1405-07:17:37,139) [kauditd] (root,0,0,00:00:00/1405-07:17:36,281) [scsi_eh_0] (root,0,0,00:00:00/1405-07:17:36,282) [scsi_tmf_0] (root,0,0,00:00:00/1405-07:17:36,291) [ixgbe] (root,0,0,00:00:00/1405-07:17:36,304) [poll_megasas0_s] (root,0,0,00:00:00/1405-07:17:36,306) [ttm_swap] (root,0,0,05:59:23/1405-07:17:35,337) [jbd2/sda3-8] (root,0,0,00:00:00/1405-07:17:35,338) [ext4-rsv-conver] (root,141512,86020,02:23:39/1405-07:17:34,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:21/1405-06:02:31,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28436,1-06:41:58/1405-06:02:31,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11032,13:00:33/1405-06:02:17,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1405-07:17:34,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1405-07:17:34,527) [jbd2/sda2-8] (root,0,0,00:00:00/1405-07:17:34,528) [ext4-rsv-conver] (root,55532,1060,00:29:05/1405-07:17:34,573) /sbin/auditd (polkitd,613004,14012,02:39:40/1405-07:17:34,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:49:34/1405-07:17:34,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:09:35/1405-07:17:34,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:59:24/1405-07:17:34,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:16/1405-07:17:34,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1405-06:02:07,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1405-06:02:06,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,355308,1-21:51:35/1405-06:02:06,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:40/1405-07:17:31,930) [kworker/3:1H] (root,112900,4352,00:00:04/1405-07:17:25,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:11/1405-07:17:25,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:35/1405-07:17:25,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1405-07:17:24,1643) [kworker/6:1H] (root,0,0,00:00:37/1405-07:17:14,1646) [kworker/1:1H] (root,0,0,00:00:37/1405-07:16:50,1673) [kworker/0:1H] (root,0,0,00:00:46/1405-07:16:16,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1405-07:15:11,1750) /usr/lib/systemd/systemd-udevd (postfix,89848,4080,00:00:00/00:07,1938) pickup -l -t unix -u (root,115412,1652,00:00:00/00:00,1990) /bin/bash /usr/bin/check_mk_agent (root,51732,1692,00:00:00/00:00,2009) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,2010) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:04/3-01:48:32,2505) [kworker/4:1] (root,0,0,00:00:00/20:00:31,2928) [kworker/1:2] (root,0,0,00:00:00/16:50:32,3148) [kworker/5:0] (root,0,0,00:00:00/01:00:32,3373) [kworker/5:2] (apache,378048,13064,00:00:00/06:11:12,6275) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:46:20/1405-07:15:00,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740384,26896,02:18:12/1405-07:15:00,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/270-13:04:56,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/1-00:00:31,9448) [kworker/2:1] (root,0,0,00:00:00/48:11,9725) [kworker/u16:1] (root,0,0,00:00:00/1-01:00:32,11171) [kworker/0:2] (apache,378056,12232,00:00:00/42:23,12547) /usr/sbin/httpd -DFOREGROUND (apache,378184,12476,00:00:00/42:22,12548) /usr/sbin/httpd -DFOREGROUND (apache,378056,12476,00:00:00/42:21,12561) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/07:00:31,13420) [kworker/2:0] (root,0,0,00:00:13/1405-07:14:52,13987) [kworker/7:1H] (root,0,0,00:00:08/1405-07:09:47,14018) [kworker/4:1H] (root,0,0,00:00:01/1-22:00:31,14536) [kworker/7:0] (root,0,0,00:00:41/1405-07:14:44,14909) [kworker/2:1H] (apache,278164,8980,00:00:08/6-19:59:31,18040) /usr/sbin/httpd -DFOREGROUND (apache,378052,12836,00:00:02/6-19:59:31,18045) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:21:14/1405-06:44:42,18284) /usr/sbin/ntpd -u ntp:ntp -g (apache,378048,12252,00:00:00/30:48,18380) /usr/sbin/httpd -DFOREGROUND (root,377780,19140,01:09:33/1405-06:44:22,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1523068,16868,05:30:35/198-08:19:29,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,18:08:53/1405-06:43:03,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:05:19/1405-06:43:03,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/29:32,19207) [kworker/4:2] (root,27168,1132,00:23:56/1405-06:39:52,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/01:30:31,20362) [kworker/6:1] (root,0,0,00:00:00/02:30:31,22037) [kworker/1:1] (onapp,781044,40416,04:01:26/391-02:57:56,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:44/391-02:57:56,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378052,12820,00:00:02/6-19:46:50,24461) /usr/sbin/httpd -DFOREGROUND (apache,378200,13248,00:00:02/6-19:46:49,24499) /usr/sbin/httpd -DFOREGROUND (onapp,98460,1984,00:00:01/23:30:31,24798) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368180,97392,00:00:11/23:30:31,24799) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368068,97360,00:00:11/23:29:31,25286) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/04:30:32,25342) [kworker/7:2] (onapp,288112,15088,00:00:00/23:28:36,25764) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/16:05:32,26171) [kworker/3:1] (root,0,0,00:00:00/05:30:31,27027) [kworker/3:2] (root,0,0,00:00:02/04:27:09,27078) [kworker/u16:2] (root,0,0,00:00:00/1-01:30:32,28136) [kworker/6:2] (root,0,0,00:00:00/06:29:32,29236) [kworker/0:1] (apache,378192,13156,00:00:00/1-06:42:58,30274) /usr/sbin/httpd -DFOREGROUND (apache,378192,13260,00:00:01/3-06:07:55,31257) /usr/sbin/httpd -DFOREGROUND Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-10-05 22:30 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501dbf60570Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:15:13/1403-08:31:22,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1403-08:31:22,2) [kthreadd] (root,0,0,00:00:00/1403-08:31:22,4) [kworker/0:0H] (root,0,0,00:15:16/1403-08:31:22,6) [ksoftirqd/0] (root,0,0,00:01:13/1403-08:31:22,7) [migration/0] (root,0,0,00:00:00/1403-08:31:22,8) [rcu_bh] (root,0,0,18:22:04/1403-08:31:22,9) [rcu_sched] (root,0,0,00:00:00/1403-08:31:22,10) [lru-add-drain] (root,0,0,00:06:11/1403-08:31:22,11) [watchdog/0] (root,0,0,00:06:14/1403-08:31:22,12) [watchdog/1] (root,0,0,00:01:11/1403-08:31:22,13) [migration/1] (root,0,0,00:12:51/1403-08:31:22,14) [ksoftirqd/1] (root,0,0,00:00:00/1403-08:31:22,16) [kworker/1:0H] (root,0,0,00:05:32/1403-08:31:22,17) [watchdog/2] (root,0,0,00:01:11/1403-08:31:22,18) [migration/2] (root,0,0,00:12:43/1403-08:31:22,19) [ksoftirqd/2] (root,0,0,00:00:00/1403-08:31:22,21) [kworker/2:0H] (root,0,0,00:05:33/1403-08:31:22,22) [watchdog/3] (root,0,0,00:01:12/1403-08:31:22,23) [migration/3] (root,0,0,00:13:19/1403-08:31:22,24) [ksoftirqd/3] (root,0,0,00:00:00/1403-08:31:22,26) [kworker/3:0H] (root,0,0,00:05:12/1403-08:31:22,27) [watchdog/4] (root,0,0,00:11:00/1403-08:31:22,28) [migration/4] (root,0,0,00:46:59/1403-08:31:22,29) [ksoftirqd/4] (root,0,0,00:00:00/1403-08:31:22,31) [kworker/4:0H] (root,0,0,00:05:26/1403-08:31:22,32) [watchdog/5] (root,0,0,00:10:46/1403-08:31:22,33) [migration/5] (root,0,0,00:52:57/1403-08:31:22,34) [ksoftirqd/5] (root,0,0,00:00:00/1403-08:31:22,36) [kworker/5:0H] (root,0,0,00:05:17/1403-08:31:22,37) [watchdog/6] (root,0,0,00:10:29/1403-08:31:22,38) [migration/6] (root,0,0,00:53:32/1403-08:31:22,39) [ksoftirqd/6] (root,0,0,00:00:00/1403-08:31:22,41) [kworker/6:0H] (root,0,0,00:05:42/1403-08:31:22,42) [watchdog/7] (root,0,0,00:10:47/1403-08:31:22,43) [migration/7] (root,0,0,01:01:55/1403-08:31:22,44) [ksoftirqd/7] (root,0,0,00:00:00/1403-08:31:22,46) [kworker/7:0H] (root,0,0,00:00:00/1403-08:31:22,48) [kdevtmpfs] (root,0,0,00:00:00/1403-08:31:22,49) [netns] (root,0,0,00:00:41/1403-08:31:22,50) [khungtaskd] (root,0,0,00:00:00/1403-08:31:22,51) [writeback] (root,0,0,00:00:00/1403-08:31:22,52) [kintegrityd] (root,0,0,00:00:00/1403-08:31:22,53) [bioset] (root,0,0,00:00:00/1403-08:31:22,54) [bioset] (root,0,0,00:00:00/1403-08:31:22,55) [bioset] (root,0,0,00:00:00/1403-08:31:22,56) [kblockd] (root,0,0,00:00:00/1403-08:31:22,57) [md] (root,0,0,00:00:00/1403-08:31:22,58) [edac-poller] (root,0,0,00:00:00/1403-08:31:22,59) [watchdogd] (root,0,0,00:00:00/1403-08:31:22,66) [kswapd0] (root,0,0,00:00:00/1403-08:31:22,67) [ksmd] (root,0,0,00:08:13/1403-08:31:22,68) [khugepaged] (root,0,0,00:00:00/1403-08:31:22,69) [crypto] (root,0,0,00:00:00/1403-08:31:22,77) [kthrotld] (root,0,0,00:00:00/1403-08:31:22,79) [kmpath_rdacd] (root,0,0,00:00:00/1403-08:31:22,80) [kaluad] (root,0,0,00:00:00/1403-08:31:21,82) [kpsmoused] (root,0,0,00:00:00/1403-08:31:21,89) [ipv6_addrconf] (root,0,0,00:00:00/1403-08:31:21,102) [deferwq] (root,0,0,00:13:12/1403-08:31:21,139) [kauditd] (root,0,0,00:00:00/1403-08:31:20,281) [scsi_eh_0] (root,0,0,00:00:00/1403-08:31:20,282) [scsi_tmf_0] (root,0,0,00:00:00/1403-08:31:20,291) [ixgbe] (root,0,0,00:00:00/1403-08:31:20,304) [poll_megasas0_s] (root,0,0,00:00:00/1403-08:31:20,306) [ttm_swap] (root,0,0,05:59:15/1403-08:31:19,337) [jbd2/sda3-8] (root,0,0,00:00:00/1403-08:31:19,338) [ext4-rsv-conver] (root,0,0,00:00:00/44:16,341) [kworker/2:1] (onapp,98460,1984,00:00:00/44:15,363) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362424,91420,00:00:00/44:15,364) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,63616,21964,02:23:28/1403-08:31:18,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:18/1403-07:16:15,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28436,1-06:39:23/1403-07:16:15,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11024,12:59:26/1403-07:16:01,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1403-08:31:18,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1403-08:31:18,527) [jbd2/sda2-8] (root,0,0,00:00:00/1403-08:31:18,528) [ext4-rsv-conver] (root,55532,1060,00:29:03/1403-08:31:18,573) /sbin/auditd (polkitd,613004,14012,02:39:28/1403-08:31:18,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:49:14/1403-08:31:18,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:09:20/1403-08:31:18,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:58:52/1403-08:31:18,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:13/1403-08:31:18,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1403-07:15:51,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1403-07:15:50,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,351204,1-21:47:27/1403-07:15:50,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:40/1403-08:31:15,930) [kworker/3:1H] (root,0,0,00:00:00/43:16,939) [kworker/7:1] (onapp,363032,91924,00:00:00/43:15,946) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,112900,4352,00:00:04/1403-08:31:09,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:10/1403-08:31:09,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:35/1403-08:31:09,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1403-08:31:08,1643) [kworker/6:1H] (root,0,0,00:00:37/1403-08:30:58,1646) [kworker/1:1H] (root,0,0,00:00:37/1403-08:30:34,1673) [kworker/0:1H] (root,0,0,00:00:46/1403-08:30:00,1674) [kworker/5:1H] (onapp,283912,11636,00:00:00/42:03,1707) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,45408,1780,00:00:00/1403-08:28:55,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/41:15,2005) [kworker/6:2] (root,0,0,00:00:01/1-03:02:16,2505) [kworker/4:1] (root,0,0,00:00:00/02:43:15,4242) [kworker/5:2] (root,0,0,00:00:00/34:16,5731) [kworker/0:0] (root,0,0,00:00:00/03:43:15,5956) [kworker/4:2] (postfix,89848,4084,00:00:00/01:35:49,6457) pickup -l -t unix -u (root,0,0,00:00:00/03:41:16,6996) [kworker/1:0] (root,574280,19564,02:46:07/1403-08:28:44,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,734468,19132,02:18:01/1403-08:28:44,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/28:37,8529) [kworker/u16:2] (root,110204,848,00:00:00/268-14:18:40,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:01/2-03:59:15,12606) [kworker/7:2] (root,0,0,00:00:13/1403-08:28:36,13987) [kworker/7:1H] (root,0,0,00:00:08/1403-08:23:31,14018) [kworker/4:1H] (apache,378052,12784,00:00:00/2-22:55:05,14779) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:41/1403-08:28:28,14909) [kworker/2:1H] (root,0,0,00:00:00/14:16,15935) [kworker/3:0] (root,0,0,00:00:00/14:15,15939) [kworker/u16:1] (root,0,0,00:00:01/1-19:26:16,16511) [kworker/5:1] (apache,278164,8980,00:00:05/4-21:13:15,18040) /usr/sbin/httpd -DFOREGROUND (apache,378048,12816,00:00:01/4-21:13:15,18042) /usr/sbin/httpd -DFOREGROUND (apache,378048,12816,00:00:01/4-21:13:15,18043) /usr/sbin/httpd -DFOREGROUND (apache,378052,12784,00:00:01/4-21:13:15,18044) /usr/sbin/httpd -DFOREGROUND (apache,378052,12796,00:00:01/4-21:13:15,18045) /usr/sbin/httpd -DFOREGROUND (apache,378052,12784,00:00:01/4-21:13:15,18046) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:21:12/1403-07:58:26,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19140,01:09:27/1403-07:58:06,18605) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/03:18:15,18789) [kworker/0:1] (onapp,1523068,16792,05:27:17/196-09:33:13,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,18:07:21/1403-07:56:47,18985) python /omd/sites/onapp/bin/mkeventd (root,0,0,00:00:01/2-12:13:16,19043) [kworker/3:2] (onapp,98460,5016,01:05:14/1403-07:56:47,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:54/1403-07:53:36,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:04/5-16:07:16,20909) [kworker/6:1] (root,0,0,00:00:00/03:15,21504) [kworker/4:0] (root,0,0,00:00:00/03:13,21528) [kworker/u16:0] (apache,378052,12812,00:00:01/4-21:05:26,21999) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/18:59:15,23089) [kworker/1:2] (root,115412,1648,00:00:00/00:00,23488) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,23507) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,23508) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (onapp,781044,40492,04:00:41/389-04:11:40,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:38/389-04:11:40,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378052,12796,00:00:01/4-21:00:34,24461) /usr/sbin/httpd -DFOREGROUND (apache,378052,12796,00:00:01/4-21:00:33,24499) /usr/sbin/httpd -DFOREGROUND (apache,378052,12628,00:00:00/1-07:21:39,31257) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/2-09:41:16,32012) [kworker/2:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-10-03 23:44 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501ec8e7bdcFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:14:43/1401-07:44:10,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1401-07:44:10,2) [kthreadd] (root,0,0,00:00:00/1401-07:44:10,4) [kworker/0:0H] (root,0,0,00:15:15/1401-07:44:10,6) [ksoftirqd/0] (root,0,0,00:01:13/1401-07:44:10,7) [migration/0] (root,0,0,00:00:00/1401-07:44:10,8) [rcu_bh] (root,0,0,18:20:46/1401-07:44:10,9) [rcu_sched] (root,0,0,00:00:00/1401-07:44:10,10) [lru-add-drain] (root,0,0,00:06:10/1401-07:44:10,11) [watchdog/0] (root,0,0,00:06:13/1401-07:44:10,12) [watchdog/1] (root,0,0,00:01:11/1401-07:44:10,13) [migration/1] (root,0,0,00:12:50/1401-07:44:10,14) [ksoftirqd/1] (root,0,0,00:00:00/1401-07:44:10,16) [kworker/1:0H] (root,0,0,00:05:32/1401-07:44:10,17) [watchdog/2] (root,0,0,00:01:11/1401-07:44:10,18) [migration/2] (root,0,0,00:12:42/1401-07:44:10,19) [ksoftirqd/2] (root,0,0,00:00:00/1401-07:44:10,21) [kworker/2:0H] (root,0,0,00:05:33/1401-07:44:10,22) [watchdog/3] (root,0,0,00:01:12/1401-07:44:10,23) [migration/3] (root,0,0,00:13:18/1401-07:44:10,24) [ksoftirqd/3] (root,0,0,00:00:00/1401-07:44:10,26) [kworker/3:0H] (root,0,0,00:05:12/1401-07:44:10,27) [watchdog/4] (root,0,0,00:10:59/1401-07:44:10,28) [migration/4] (root,0,0,00:46:56/1401-07:44:10,29) [ksoftirqd/4] (root,0,0,00:00:00/1401-07:44:10,31) [kworker/4:0H] (root,0,0,00:05:25/1401-07:44:10,32) [watchdog/5] (root,0,0,00:10:46/1401-07:44:10,33) [migration/5] (root,0,0,00:52:54/1401-07:44:10,34) [ksoftirqd/5] (root,0,0,00:00:00/1401-07:44:10,36) [kworker/5:0H] (root,0,0,00:05:16/1401-07:44:10,37) [watchdog/6] (root,0,0,00:10:28/1401-07:44:10,38) [migration/6] (root,0,0,00:53:28/1401-07:44:10,39) [ksoftirqd/6] (root,0,0,00:00:00/1401-07:44:10,41) [kworker/6:0H] (root,0,0,00:05:42/1401-07:44:10,42) [watchdog/7] (root,0,0,00:10:46/1401-07:44:10,43) [migration/7] (root,0,0,01:01:51/1401-07:44:10,44) [ksoftirqd/7] (root,0,0,00:00:00/1401-07:44:10,46) [kworker/7:0H] (root,0,0,00:00:00/1401-07:44:10,48) [kdevtmpfs] (root,0,0,00:00:00/1401-07:44:10,49) [netns] (root,0,0,00:00:41/1401-07:44:10,50) [khungtaskd] (root,0,0,00:00:00/1401-07:44:10,51) [writeback] (root,0,0,00:00:00/1401-07:44:10,52) [kintegrityd] (root,0,0,00:00:00/1401-07:44:10,53) [bioset] (root,0,0,00:00:00/1401-07:44:10,54) [bioset] (root,0,0,00:00:00/1401-07:44:10,55) [bioset] (root,0,0,00:00:00/1401-07:44:10,56) [kblockd] (root,0,0,00:00:00/1401-07:44:10,57) [md] (root,0,0,00:00:00/1401-07:44:10,58) [edac-poller] (root,0,0,00:00:00/1401-07:44:10,59) [watchdogd] (root,0,0,00:00:00/1401-07:44:10,66) [kswapd0] (root,0,0,00:00:00/1401-07:44:10,67) [ksmd] (root,0,0,00:08:13/1401-07:44:10,68) [khugepaged] (root,0,0,00:00:00/1401-07:44:10,69) [crypto] (root,0,0,00:00:00/1401-07:44:10,77) [kthrotld] (root,0,0,00:00:00/1401-07:44:10,79) [kmpath_rdacd] (root,0,0,00:00:00/1401-07:44:10,80) [kaluad] (root,0,0,00:00:00/1401-07:44:09,82) [kpsmoused] (root,0,0,00:00:00/1401-07:44:09,89) [ipv6_addrconf] (root,0,0,00:00:00/1401-07:44:09,102) [deferwq] (root,0,0,00:13:11/1401-07:44:09,139) [kauditd] (root,0,0,00:00:00/1401-07:44:08,281) [scsi_eh_0] (root,0,0,00:00:00/1401-07:44:08,282) [scsi_tmf_0] (root,0,0,00:00:00/1401-07:44:08,291) [ixgbe] (root,0,0,00:00:00/1401-07:44:08,304) [poll_megasas0_s] (root,0,0,00:00:00/1401-07:44:08,306) [ttm_swap] (root,0,0,05:59:07/1401-07:44:07,337) [jbd2/sda3-8] (root,0,0,00:00:00/1401-07:44:07,338) [ext4-rsv-conver] (root,80020,40092,02:23:17/1401-07:44:06,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:15/1401-06:29:03,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28432,1-06:36:42/1401-06:29:03,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11024,12:58:18/1401-06:28:49,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1401-07:44:06,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1401-07:44:06,527) [jbd2/sda2-8] (root,0,0,00:00:00/1401-07:44:06,528) [ext4-rsv-conver] (root,55532,1060,00:29:00/1401-07:44:06,573) /sbin/auditd (polkitd,613004,14012,02:39:15/1401-07:44:06,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:48:54/1401-07:44:06,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:09:05/1401-07:44:06,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:58:19/1401-07:44:06,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:10/1401-07:44:06,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1401-06:28:39,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1401-06:28:38,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,340964,1-21:43:11/1401-06:28:38,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1401-07:44:03,930) [kworker/3:1H] (root,112900,4352,00:00:04/1401-07:43:57,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:10/1401-07:43:57,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:35/1401-07:43:57,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1401-07:43:56,1643) [kworker/6:1H] (root,0,0,00:00:37/1401-07:43:46,1646) [kworker/1:1H] (root,0,0,00:00:37/1401-07:43:22,1673) [kworker/0:1H] (root,0,0,00:00:46/1401-07:42:48,1674) [kworker/5:1H] (root,0,0,00:00:00/01:27:03,1704) [kworker/2:2] (root,0,0,00:00:00/01:27:03,1708) [kworker/6:0] (root,45408,1780,00:00:00/1401-07:41:43,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:01/1-13:18:04,2431) [kworker/1:2] (root,0,0,00:00:00/20:21:04,4685) [kworker/5:0] (root,0,0,00:00:00/13:17,7015) [kworker/u16:1] (root,574280,19564,02:45:52/1401-07:41:32,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,737548,28908,02:17:49/1401-07:41:32,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/266-13:31:28,8910) /sbin/agetty --noclear tty1 linux (postfix,89848,4080,00:00:00/01:10:33,10054) pickup -l -t unix -u (root,0,0,00:00:00/06:55,10268) [kworker/u16:2] (root,0,0,00:00:00/01:06:54,12091) [kworker/4:2] (root,0,0,00:00:00/03:12:03,12606) [kworker/7:2] (root,0,0,00:00:00/01:05:03,12878) [kworker/0:0] (root,115412,1644,00:00:00/00:00,13687) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,13706) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,13707) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:13/1401-07:41:24,13987) [kworker/7:1H] (root,0,0,00:00:08/1401-07:36:19,14018) [kworker/4:1H] (apache,378052,12688,00:00:00/22:07:53,14779) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:41/1401-07:41:16,14909) [kworker/2:1H] (root,0,0,00:00:00/56:03,17440) [kworker/3:0] (apache,278164,8980,00:00:03/2-20:26:03,18040) /usr/sbin/httpd -DFOREGROUND (apache,378048,12736,00:00:00/2-20:26:03,18042) /usr/sbin/httpd -DFOREGROUND (apache,378048,12768,00:00:00/2-20:26:03,18043) /usr/sbin/httpd -DFOREGROUND (apache,378052,12760,00:00:00/2-20:26:03,18044) /usr/sbin/httpd -DFOREGROUND (apache,378052,12776,00:00:00/2-20:26:03,18045) /usr/sbin/httpd -DFOREGROUND (apache,378052,12764,00:00:00/2-20:26:03,18046) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:21:10/1401-07:11:14,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,0,0,00:00:00/01:57:03,18536) [kworker/7:0] (root,377780,19140,01:09:21/1401-07:10:54,18605) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:02/1-15:56:03,18761) [kworker/4:0] (onapp,1522924,16792,05:23:51/194-08:46:01,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,18:05:46/1401-07:09:35,18985) python /omd/sites/onapp/bin/mkeventd (root,0,0,00:00:00/11:26:04,19043) [kworker/3:2] (root,0,0,00:00:00/01:56:04,19052) [kworker/1:0] (onapp,98460,4952,01:05:08/1401-07:09:35,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:52/1401-07:06:24,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/1-03:13:03,20543) [kworker/0:1] (root,0,0,00:00:02/3-15:20:04,20909) [kworker/6:1] (apache,378052,12764,00:00:00/2-20:18:14,21999) /usr/sbin/httpd -DFOREGROUND (onapp,98460,1984,00:00:01/23:57:03,23593) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368136,97312,00:00:11/23:57:03,23594) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,781044,40464,03:59:54/387-03:24:28,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:32/387-03:24:28,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,368284,97388,00:00:11/23:56:03,24092) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,378052,12772,00:00:00/2-20:13:22,24461) /usr/sbin/httpd -DFOREGROUND (apache,378052,12772,00:00:00/2-20:13:21,24499) /usr/sbin/httpd -DFOREGROUND (onapp,283912,11648,00:00:00/23:55:08,24590) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/08:54:04,32012) [kworker/2:0] (root,0,0,00:00:00/27:03,32347) [kworker/5:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-10-01 22:57 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501c1758d81Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:14:14/1399-08:05:57,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1399-08:05:57,2) [kthreadd] (root,0,0,00:00:00/1399-08:05:57,4) [kworker/0:0H] (root,0,0,00:15:13/1399-08:05:57,6) [ksoftirqd/0] (root,0,0,00:01:13/1399-08:05:57,7) [migration/0] (root,0,0,00:00:00/1399-08:05:57,8) [rcu_bh] (root,0,0,18:19:29/1399-08:05:57,9) [rcu_sched] (root,0,0,00:00:00/1399-08:05:57,10) [lru-add-drain] (root,0,0,00:06:10/1399-08:05:57,11) [watchdog/0] (root,0,0,00:06:13/1399-08:05:57,12) [watchdog/1] (root,0,0,00:01:11/1399-08:05:57,13) [migration/1] (root,0,0,00:12:49/1399-08:05:57,14) [ksoftirqd/1] (root,0,0,00:00:00/1399-08:05:57,16) [kworker/1:0H] (root,0,0,00:05:31/1399-08:05:57,17) [watchdog/2] (root,0,0,00:01:11/1399-08:05:57,18) [migration/2] (root,0,0,00:12:41/1399-08:05:57,19) [ksoftirqd/2] (root,0,0,00:00:00/1399-08:05:57,21) [kworker/2:0H] (root,0,0,00:05:32/1399-08:05:57,22) [watchdog/3] (root,0,0,00:01:12/1399-08:05:57,23) [migration/3] (root,0,0,00:13:17/1399-08:05:57,24) [ksoftirqd/3] (root,0,0,00:00:00/1399-08:05:57,26) [kworker/3:0H] (root,0,0,00:05:11/1399-08:05:57,27) [watchdog/4] (root,0,0,00:10:58/1399-08:05:57,28) [migration/4] (root,0,0,00:46:53/1399-08:05:57,29) [ksoftirqd/4] (root,0,0,00:00:00/1399-08:05:57,31) [kworker/4:0H] (root,0,0,00:05:25/1399-08:05:57,32) [watchdog/5] (root,0,0,00:10:45/1399-08:05:57,33) [migration/5] (root,0,0,00:52:51/1399-08:05:57,34) [ksoftirqd/5] (root,0,0,00:00:00/1399-08:05:57,36) [kworker/5:0H] (root,0,0,00:05:16/1399-08:05:57,37) [watchdog/6] (root,0,0,00:10:28/1399-08:05:57,38) [migration/6] (root,0,0,00:53:25/1399-08:05:57,39) [ksoftirqd/6] (root,0,0,00:00:00/1399-08:05:57,41) [kworker/6:0H] (root,0,0,00:05:41/1399-08:05:57,42) [watchdog/7] (root,0,0,00:10:46/1399-08:05:57,43) [migration/7] (root,0,0,01:01:46/1399-08:05:57,44) [ksoftirqd/7] (root,0,0,00:00:00/1399-08:05:57,46) [kworker/7:0H] (root,0,0,00:00:00/1399-08:05:57,48) [kdevtmpfs] (root,0,0,00:00:00/1399-08:05:57,49) [netns] (root,0,0,00:00:41/1399-08:05:57,50) [khungtaskd] (root,0,0,00:00:00/1399-08:05:57,51) [writeback] (root,0,0,00:00:00/1399-08:05:57,52) [kintegrityd] (root,0,0,00:00:00/1399-08:05:57,53) [bioset] (root,0,0,00:00:00/1399-08:05:57,54) [bioset] (root,0,0,00:00:00/1399-08:05:57,55) [bioset] (root,0,0,00:00:00/1399-08:05:57,56) [kblockd] (root,0,0,00:00:00/1399-08:05:57,57) [md] (root,0,0,00:00:00/1399-08:05:57,58) [edac-poller] (root,0,0,00:00:00/1399-08:05:57,59) [watchdogd] (root,0,0,00:00:00/1399-08:05:57,66) [kswapd0] (root,0,0,00:00:00/1399-08:05:57,67) [ksmd] (root,0,0,00:08:12/1399-08:05:57,68) [khugepaged] (root,0,0,00:00:00/1399-08:05:57,69) [crypto] (root,0,0,00:00:00/1399-08:05:57,77) [kthrotld] (root,0,0,00:00:00/1399-08:05:57,79) [kmpath_rdacd] (root,0,0,00:00:00/1399-08:05:57,80) [kaluad] (root,0,0,00:00:00/1399-08:05:56,82) [kpsmoused] (root,0,0,00:00:00/1399-08:05:56,89) [ipv6_addrconf] (root,0,0,00:00:00/1399-08:05:56,102) [deferwq] (root,0,0,00:13:10/1399-08:05:56,139) [kauditd] (root,0,0,00:00:00/1399-08:05:55,281) [scsi_eh_0] (root,0,0,00:00:00/1399-08:05:55,282) [scsi_tmf_0] (root,0,0,00:00:00/1399-08:05:55,291) [ixgbe] (root,0,0,00:00:00/1399-08:05:55,304) [poll_megasas0_s] (root,0,0,00:00:00/1399-08:05:55,306) [ttm_swap] (root,0,0,05:58:59/1399-08:05:54,337) [jbd2/sda3-8] (root,0,0,00:00:00/1399-08:05:54,338) [ext4-rsv-conver] (root,104576,60036,02:23:06/1399-08:05:53,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:12/1399-06:50:50,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28432,1-06:34:05/1399-06:50:50,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11024,12:57:12/1399-06:50:36,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1399-08:05:53,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1399-08:05:53,527) [jbd2/sda2-8] (root,0,0,00:00:00/1399-08:05:53,528) [ext4-rsv-conver] (root,55532,1060,00:28:58/1399-08:05:53,573) /sbin/auditd (polkitd,613004,14012,02:39:03/1399-08:05:53,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:48:35/1399-08:05:53,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:08:50/1399-08:05:53,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:57:46/1399-08:05:53,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:08/1399-08:05:53,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1399-06:50:26,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1399-06:50:25,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,332768,1-21:39:00/1399-06:50:25,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1399-08:05:50,930) [kworker/3:1H] (root,112900,4352,00:00:04/1399-08:05:44,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:09/1399-08:05:44,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:35/1399-08:05:44,1463) qmgr -l -t unix -u (postfix,89848,4084,00:00:00/14:06,1476) pickup -l -t unix -u (root,0,0,00:00:13/1399-08:05:43,1643) [kworker/6:1H] (root,0,0,00:00:37/1399-08:05:33,1646) [kworker/1:1H] (root,0,0,00:00:37/1399-08:05:09,1673) [kworker/0:1H] (root,0,0,00:00:46/1399-08:04:35,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1399-08:03:30,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/08:50,4458) [kworker/2:2] (root,0,0,00:00:00/03:17:51,4524) [kworker/6:0] (root,0,0,00:00:01/1-15:08:50,5443) [kworker/5:2] (root,0,0,00:00:00/04:18:51,5732) [kworker/5:0] (root,0,0,00:00:00/01:05:51,7256) [kworker/3:1] (root,574280,19564,02:45:38/1399-08:03:19,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740088,37208,02:17:38/1399-08:03:19,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/264-13:53:15,8910) /sbin/agetty --noclear tty1 linux (root,115412,1648,00:00:00/00:00,9023) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,9042) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,9043) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/15:48:48,9448) [kworker/4:1] (root,0,0,00:00:00/1-04:22:51,11781) [kworker/3:0] (root,0,0,00:00:00/57:01,11832) [kworker/u16:0] (root,0,0,00:00:00/17:48:50,12817) [kworker/1:1] (root,0,0,00:00:13/1399-08:03:11,13987) [kworker/7:1H] (root,0,0,00:00:08/1399-07:58:06,14018) [kworker/4:1H] (root,0,0,00:00:41/1399-08:03:03,14909) [kworker/2:1H] (root,0,0,00:00:00/48:51,15991) [kworker/7:1] (apache,278164,8980,00:00:01/20:47:50,18040) /usr/sbin/httpd -DFOREGROUND (apache,378048,12704,00:00:00/20:47:50,18042) /usr/sbin/httpd -DFOREGROUND (apache,378048,12672,00:00:00/20:47:50,18043) /usr/sbin/httpd -DFOREGROUND (apache,378052,12704,00:00:00/20:47:50,18044) /usr/sbin/httpd -DFOREGROUND (apache,378052,12720,00:00:00/20:47:50,18045) /usr/sbin/httpd -DFOREGROUND (apache,378052,12716,00:00:00/20:47:50,18046) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:21:09/1399-07:33:01,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19140,01:09:16/1399-07:32:41,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522928,16700,05:20:30/192-09:07:48,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,18:04:13/1399-07:31:22,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4952,01:05:03/1399-07:31:22,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:49/1399-07:28:11,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:01/1-15:41:51,20909) [kworker/6:1] (apache,378052,12704,00:00:00/20:40:01,21999) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40416,03:59:08/385-03:46:15,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:26/385-03:46:15,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,378052,12628,00:00:00/20:35:09,24461) /usr/sbin/httpd -DFOREGROUND (apache,378052,12696,00:00:00/20:35:08,24499) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/07:54:51,24933) [kworker/0:1] (root,0,0,00:00:00/05:44:50,26637) [kworker/1:2] (root,0,0,00:00:00/12:03:51,27188) [kworker/2:1] (root,0,0,00:00:00/02:33:00,27532) [kworker/u16:2] (root,0,0,00:00:00/18:18:51,29814) [kworker/0:0] (root,0,0,00:00:00/11:55:51,31239) [kworker/7:0] (onapp,98460,1984,00:00:00/18:51,31337) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,361972,90860,00:00:00/18:51,31338) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/17:51,31818) [kworker/4:0] (onapp,362008,91148,00:00:00/17:50,31825) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11636,00:00:00/16:52,32322) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-29 23:18 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501f83cf2a0Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:13:44/1397-07:01:37,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1397-07:01:37,2) [kthreadd] (root,0,0,00:00:00/1397-07:01:37,4) [kworker/0:0H] (root,0,0,00:15:12/1397-07:01:37,6) [ksoftirqd/0] (root,0,0,00:01:12/1397-07:01:37,7) [migration/0] (root,0,0,00:00:00/1397-07:01:37,8) [rcu_bh] (root,0,0,18:17:47/1397-07:01:37,9) [rcu_sched] (root,0,0,00:00:00/1397-07:01:37,10) [lru-add-drain] (root,0,0,00:06:09/1397-07:01:37,11) [watchdog/0] (root,0,0,00:06:12/1397-07:01:37,12) [watchdog/1] (root,0,0,00:01:11/1397-07:01:37,13) [migration/1] (root,0,0,00:12:47/1397-07:01:37,14) [ksoftirqd/1] (root,0,0,00:00:00/1397-07:01:37,16) [kworker/1:0H] (root,0,0,00:05:31/1397-07:01:37,17) [watchdog/2] (root,0,0,00:01:11/1397-07:01:37,18) [migration/2] (root,0,0,00:12:40/1397-07:01:37,19) [ksoftirqd/2] (root,0,0,00:00:00/1397-07:01:37,21) [kworker/2:0H] (root,0,0,00:05:32/1397-07:01:37,22) [watchdog/3] (root,0,0,00:01:12/1397-07:01:37,23) [migration/3] (root,0,0,00:13:16/1397-07:01:37,24) [ksoftirqd/3] (root,0,0,00:00:00/1397-07:01:37,26) [kworker/3:0H] (root,0,0,00:05:11/1397-07:01:37,27) [watchdog/4] (root,0,0,00:10:58/1397-07:01:37,28) [migration/4] (root,0,0,00:46:49/1397-07:01:37,29) [ksoftirqd/4] (root,0,0,00:00:00/1397-07:01:37,31) [kworker/4:0H] (root,0,0,00:05:24/1397-07:01:37,32) [watchdog/5] (root,0,0,00:10:44/1397-07:01:37,33) [migration/5] (root,0,0,00:52:47/1397-07:01:37,34) [ksoftirqd/5] (root,0,0,00:00:00/1397-07:01:37,36) [kworker/5:0H] (root,0,0,00:05:15/1397-07:01:37,37) [watchdog/6] (root,0,0,00:10:27/1397-07:01:37,38) [migration/6] (root,0,0,00:53:22/1397-07:01:37,39) [ksoftirqd/6] (root,0,0,00:00:00/1397-07:01:37,41) [kworker/6:0H] (root,0,0,00:05:41/1397-07:01:37,42) [watchdog/7] (root,0,0,00:10:45/1397-07:01:37,43) [migration/7] (root,0,0,01:01:42/1397-07:01:37,44) [ksoftirqd/7] (root,0,0,00:00:00/1397-07:01:37,46) [kworker/7:0H] (root,0,0,00:00:00/1397-07:01:37,48) [kdevtmpfs] (root,0,0,00:00:00/1397-07:01:37,49) [netns] (root,0,0,00:00:41/1397-07:01:37,50) [khungtaskd] (root,0,0,00:00:00/1397-07:01:37,51) [writeback] (root,0,0,00:00:00/1397-07:01:37,52) [kintegrityd] (root,0,0,00:00:00/1397-07:01:37,53) [bioset] (root,0,0,00:00:00/1397-07:01:37,54) [bioset] (root,0,0,00:00:00/1397-07:01:37,55) [bioset] (root,0,0,00:00:00/1397-07:01:37,56) [kblockd] (root,0,0,00:00:00/1397-07:01:37,57) [md] (root,0,0,00:00:00/1397-07:01:37,58) [edac-poller] (root,0,0,00:00:00/1397-07:01:37,59) [watchdogd] (root,0,0,00:00:00/1397-07:01:37,66) [kswapd0] (root,0,0,00:00:00/1397-07:01:37,67) [ksmd] (root,0,0,00:08:12/1397-07:01:37,68) [khugepaged] (root,0,0,00:00:00/1397-07:01:37,69) [crypto] (root,0,0,00:00:00/1397-07:01:37,77) [kthrotld] (root,0,0,00:00:00/1397-07:01:37,79) [kmpath_rdacd] (root,0,0,00:00:00/1397-07:01:37,80) [kaluad] (root,0,0,00:00:00/1397-07:01:36,82) [kpsmoused] (root,0,0,00:00:00/1397-07:01:36,89) [ipv6_addrconf] (root,0,0,00:00:00/1397-07:01:36,102) [deferwq] (root,0,0,00:13:09/1397-07:01:36,139) [kauditd] (root,0,0,00:00:00/1397-07:01:35,281) [scsi_eh_0] (root,0,0,00:00:00/1397-07:01:35,282) [scsi_tmf_0] (root,0,0,00:00:00/1397-07:01:35,291) [ixgbe] (root,0,0,00:00:00/1397-07:01:35,304) [poll_megasas0_s] (root,0,0,00:00:00/1397-07:01:35,306) [ttm_swap] (root,0,0,05:58:51/1397-07:01:34,337) [jbd2/sda3-8] (root,0,0,00:00:00/1397-07:01:34,338) [ext4-rsv-conver] (root,137496,78532,02:22:55/1397-07:01:33,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:10/1397-05:46:30,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28432,1-06:31:24/1397-05:46:30,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11020,12:56:04/1397-05:46:16,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1397-07:01:33,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1397-07:01:33,527) [jbd2/sda2-8] (root,0,0,00:00:00/1397-07:01:33,528) [ext4-rsv-conver] (root,55532,1060,00:28:55/1397-07:01:33,573) /sbin/auditd (polkitd,613004,14012,02:38:50/1397-07:01:33,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:48:14/1397-07:01:33,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:08:35/1397-07:01:33,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:57:12/1397-07:01:33,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:05/1397-07:01:33,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1397-05:46:06,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1397-05:46:05,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,324576,1-21:34:41/1397-05:46:05,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1397-07:01:30,930) [kworker/3:1H] (root,112900,4352,00:00:04/1397-07:01:24,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:08/1397-07:01:24,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:34/1397-07:01:24,1463) qmgr -l -t unix -u (root,0,0,00:00:00/44:31,1637) [kworker/5:1] (root,0,0,00:00:13/1397-07:01:23,1643) [kworker/6:1H] (root,0,0,00:00:37/1397-07:01:13,1646) [kworker/1:1H] (root,0,0,00:00:00/44:30,1653) [kworker/2:0] (root,0,0,00:00:37/1397-07:00:49,1673) [kworker/0:1H] (root,0,0,00:00:46/1397-07:00:15,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1397-06:59:10,1750) /usr/lib/systemd/systemd-udevd (apache,378044,12824,00:00:01/5-17:33:48,5783) /usr/sbin/httpd -DFOREGROUND (apache,378044,12812,00:00:01/5-17:33:46,5784) /usr/sbin/httpd -DFOREGROUND (apache,378044,12712,00:00:00/1-01:55:18,6963) /usr/sbin/httpd -DFOREGROUND (apache,378044,12632,00:00:00/1-01:55:16,6965) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:45:24/1397-06:58:59,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740680,18992,02:17:26/1397-06:58:59,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/262-12:48:55,8910) /sbin/agetty --noclear tty1 linux (apache,278164,8968,00:00:06/5-19:31:30,10373) /usr/sbin/httpd -DFOREGROUND (apache,378044,12804,00:00:01/5-19:31:30,10375) /usr/sbin/httpd -DFOREGROUND (apache,378044,12796,00:00:01/5-19:31:30,10376) /usr/sbin/httpd -DFOREGROUND (apache,378044,12836,00:00:01/5-19:31:30,10378) /usr/sbin/httpd -DFOREGROUND (apache,378044,12844,00:00:01/5-19:30:43,10868) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/06:42:31,12889) [kworker/3:1] (root,0,0,00:00:13/1397-06:58:51,13987) [kworker/7:1H] (root,0,0,00:00:08/1397-06:53:46,14018) [kworker/4:1H] (root,0,0,00:00:00/19:29,14336) [kworker/0:2] (root,0,0,00:00:41/1397-06:58:43,14909) [kworker/2:1H] (root,0,0,00:00:00/13:31,17396) [kworker/1:2] (ntp,25732,2012,00:21:07/1397-06:28:41,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19128,01:09:09/1397-06:28:21,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522924,16728,05:17:06/190-08:03:28,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,18:02:37/1397-06:27:02,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:04:57/1397-06:27:02,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/01:13:31,19114) [kworker/3:2] (root,0,0,00:00:00/09:37,19387) [kworker/u16:1] (root,27168,1132,00:23:47/1397-06:23:51,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/04:22:31,19706) [kworker/5:0] (postfix,89848,4084,00:00:00/01:11:44,19862) pickup -l -t unix -u (root,0,0,00:00:01/1-06:46:30,20616) [kworker/7:1] (root,0,0,00:00:00/03:31,22561) [kworker/4:0] (apache,378044,12752,00:00:00/2-02:41:33,22850) /usr/sbin/httpd -DFOREGROUND (apache,378044,12784,00:00:01/4-10:28:22,23232) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40416,03:58:21/383-02:41:55,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:21/383-02:41:55,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/04:14:31,23785) [kworker/4:2] (root,0,0,00:00:03/3-23:54:30,24137) [kworker/6:2] (root,0,0,00:00:02/3-01:48:31,24172) [kworker/2:1] (root,115412,1652,00:00:00/00:01,24294) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,24313) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,24314) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (onapp,98460,1980,00:00:01/23:14:30,24438) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368284,97396,00:00:11/23:14:30,24439) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/13:43:31,24954) [kworker/0:1] (onapp,283912,11652,00:00:00/23:12:30,25470) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/05:13:31,25955) [kworker/6:1] (onapp,368236,97348,00:00:11/23:11:21,25983) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/09:24:30,27159) [kworker/1:1] (root,0,0,00:00:03/2-13:03:30,28123) [kworker/4:1] (root,0,0,00:00:00/52:52,29425) [kworker/u16:2] (root,0,0,00:00:00/09:13:31,32715) [kworker/7:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-27 22:14 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501db28cb55Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:13:12/1395-05:26:56,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1395-05:26:56,2) [kthreadd] (root,0,0,00:00:00/1395-05:26:56,4) [kworker/0:0H] (root,0,0,00:15:11/1395-05:26:56,6) [ksoftirqd/0] (root,0,0,00:01:12/1395-05:26:56,7) [migration/0] (root,0,0,00:00:00/1395-05:26:56,8) [rcu_bh] (root,0,0,18:16:06/1395-05:26:56,9) [rcu_sched] (root,0,0,00:00:00/1395-05:26:56,10) [lru-add-drain] (root,0,0,00:06:09/1395-05:26:56,11) [watchdog/0] (root,0,0,00:06:11/1395-05:26:56,12) [watchdog/1] (root,0,0,00:01:11/1395-05:26:56,13) [migration/1] (root,0,0,00:12:46/1395-05:26:56,14) [ksoftirqd/1] (root,0,0,00:00:00/1395-05:26:56,16) [kworker/1:0H] (root,0,0,00:05:30/1395-05:26:56,17) [watchdog/2] (root,0,0,00:01:11/1395-05:26:56,18) [migration/2] (root,0,0,00:12:39/1395-05:26:56,19) [ksoftirqd/2] (root,0,0,00:00:00/1395-05:26:56,21) [kworker/2:0H] (root,0,0,00:05:31/1395-05:26:56,22) [watchdog/3] (root,0,0,00:01:12/1395-05:26:56,23) [migration/3] (root,0,0,00:13:15/1395-05:26:56,24) [ksoftirqd/3] (root,0,0,00:00:00/1395-05:26:56,26) [kworker/3:0H] (root,0,0,00:05:11/1395-05:26:56,27) [watchdog/4] (root,0,0,00:10:57/1395-05:26:56,28) [migration/4] (root,0,0,00:46:46/1395-05:26:56,29) [ksoftirqd/4] (root,0,0,00:00:00/1395-05:26:56,31) [kworker/4:0H] (root,0,0,00:05:24/1395-05:26:56,32) [watchdog/5] (root,0,0,00:10:43/1395-05:26:56,33) [migration/5] (root,0,0,00:52:44/1395-05:26:56,34) [ksoftirqd/5] (root,0,0,00:00:00/1395-05:26:56,36) [kworker/5:0H] (root,0,0,00:05:15/1395-05:26:56,37) [watchdog/6] (root,0,0,00:10:26/1395-05:26:56,38) [migration/6] (root,0,0,00:53:18/1395-05:26:56,39) [ksoftirqd/6] (root,0,0,00:00:00/1395-05:26:56,41) [kworker/6:0H] (root,0,0,00:05:40/1395-05:26:56,42) [watchdog/7] (root,0,0,00:10:44/1395-05:26:56,43) [migration/7] (root,0,0,01:01:37/1395-05:26:56,44) [ksoftirqd/7] (root,0,0,00:00:00/1395-05:26:56,46) [kworker/7:0H] (root,0,0,00:00:00/1395-05:26:56,48) [kdevtmpfs] (root,0,0,00:00:00/1395-05:26:56,49) [netns] (root,0,0,00:00:41/1395-05:26:56,50) [khungtaskd] (root,0,0,00:00:00/1395-05:26:56,51) [writeback] (root,0,0,00:00:00/1395-05:26:56,52) [kintegrityd] (root,0,0,00:00:00/1395-05:26:56,53) [bioset] (root,0,0,00:00:00/1395-05:26:56,54) [bioset] (root,0,0,00:00:00/1395-05:26:56,55) [bioset] (root,0,0,00:00:00/1395-05:26:56,56) [kblockd] (root,0,0,00:00:00/1395-05:26:56,57) [md] (root,0,0,00:00:00/1395-05:26:56,58) [edac-poller] (root,0,0,00:00:00/1395-05:26:56,59) [watchdogd] (root,0,0,00:00:00/1395-05:26:56,66) [kswapd0] (root,0,0,00:00:00/1395-05:26:56,67) [ksmd] (root,0,0,00:08:11/1395-05:26:56,68) [khugepaged] (root,0,0,00:00:00/1395-05:26:56,69) [crypto] (root,0,0,00:00:00/1395-05:26:56,77) [kthrotld] (root,0,0,00:00:00/1395-05:26:56,79) [kmpath_rdacd] (root,0,0,00:00:00/1395-05:26:56,80) [kaluad] (root,0,0,00:00:00/1395-05:26:55,82) [kpsmoused] (root,0,0,00:00:00/1395-05:26:55,89) [ipv6_addrconf] (root,0,0,00:00:00/1395-05:26:55,102) [deferwq] (root,0,0,00:13:07/1395-05:26:55,139) [kauditd] (root,0,0,00:00:00/1395-05:26:54,281) [scsi_eh_0] (root,0,0,00:00:00/1395-05:26:54,282) [scsi_tmf_0] (root,0,0,00:00:00/1395-05:26:54,291) [ixgbe] (root,0,0,00:00:00/1395-05:26:54,304) [poll_megasas0_s] (root,0,0,00:00:00/1395-05:26:54,306) [ttm_swap] (root,0,0,05:58:43/1395-05:26:53,337) [jbd2/sda3-8] (root,0,0,00:00:00/1395-05:26:53,338) [ext4-rsv-conver] (root,47252,10664,02:22:43/1395-05:26:52,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:08/1395-04:11:49,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28428,1-06:28:40/1395-04:11:49,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11020,12:54:55/1395-04:11:35,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1395-05:26:52,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1395-05:26:52,527) [jbd2/sda2-8] (root,0,0,00:00:00/1395-05:26:52,528) [ext4-rsv-conver] (root,55532,1060,00:28:53/1395-05:26:52,573) /sbin/auditd (polkitd,613004,14012,02:38:36/1395-05:26:52,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:47:54/1395-05:26:52,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:08:19/1395-05:26:52,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:56:37/1395-05:26:52,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:32:02/1395-05:26:52,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1395-04:11:25,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1395-04:11:24,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,322528,1-21:30:20/1395-04:11:24,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1395-05:26:49,930) [kworker/3:1H] (root,112900,4352,00:00:04/1395-05:26:43,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:07/1395-05:26:43,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:34/1395-05:26:43,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1395-05:26:42,1643) [kworker/6:1H] (root,0,0,00:00:37/1395-05:26:32,1646) [kworker/1:1H] (root,0,0,00:00:37/1395-05:26:08,1673) [kworker/0:1H] (root,0,0,00:00:46/1395-05:25:34,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1395-05:24:29,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/39:50,4244) [kworker/3:1] (apache,378044,12812,00:00:01/3-15:59:07,5783) /usr/sbin/httpd -DFOREGROUND (apache,378044,12800,00:00:01/3-15:59:05,5784) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:39:50,5873) [kworker/6:1] (onapp,98460,1980,00:00:01/21:39:49,5921) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368376,97472,00:00:10/21:39:49,5922) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368072,97320,00:00:10/21:38:49,6491) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:01/1-09:12:50,6719) [kworker/1:0] (onapp,283912,11648,00:00:00/21:37:46,6966) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,574280,19564,02:45:09/1395-05:24:18,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,731344,13328,02:17:14/1395-05:24:18,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/260-11:14:14,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/06:49:49,9053) [kworker/0:0] (root,0,0,00:00:00/03:39:50,9160) [kworker/5:2] (root,0,0,00:00:00/03:38:50,9719) [kworker/2:2] (apache,278164,8968,00:00:04/3-17:56:49,10373) /usr/sbin/httpd -DFOREGROUND (apache,378044,12800,00:00:01/3-17:56:49,10374) /usr/sbin/httpd -DFOREGROUND (apache,378044,12796,00:00:01/3-17:56:49,10375) /usr/sbin/httpd -DFOREGROUND (apache,378044,12780,00:00:01/3-17:56:49,10376) /usr/sbin/httpd -DFOREGROUND (apache,378044,12828,00:00:01/3-17:56:49,10378) /usr/sbin/httpd -DFOREGROUND (apache,378044,12764,00:00:01/3-17:56:02,10868) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/18:17:46,12474) [kworker/7:0] (root,0,0,00:00:13/1395-05:24:10,13987) [kworker/7:1H] (root,0,0,00:00:08/1395-05:19:05,14018) [kworker/4:1H] (root,0,0,00:00:00/08:45:50,14378) [kworker/5:1] (root,0,0,00:00:41/1395-05:24:02,14909) [kworker/2:1H] (root,0,0,00:00:00/18:09:50,16568) [kworker/3:2] (root,0,0,00:00:00/15:02,17037) [kworker/u16:0] (ntp,25732,2012,00:21:05/1395-04:54:00,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19128,01:09:03/1395-04:53:40,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522796,16676,05:13:37/188-06:28:47,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,18:01:00/1395-04:52:21,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:04:51/1395-04:52:21,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:45/1395-04:49:10,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/09:49,19656) [kworker/4:2] (root,0,0,00:00:00/09:03,20010) [kworker/u16:1] (root,0,0,00:00:00/09:36:49,20682) [kworker/0:2] (apache,378044,11996,00:00:00/01:06:52,22850) /usr/sbin/httpd -DFOREGROUND (apache,378044,11984,00:00:00/01:06:51,22851) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:09:50,22950) [kworker/7:1] (apache,378044,12740,00:00:00/2-08:53:41,23232) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40460,03:57:34/381-01:07:14,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:15/381-01:07:14,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:01/1-22:19:49,24137) [kworker/6:2] (root,0,0,00:00:00/1-00:13:50,24172) [kworker/2:1] (root,0,0,00:00:00/03:09:49,24623) [kworker/1:2] (root,115412,1652,00:00:00/00:00,24750) /bin/bash /usr/bin/check_mk_agent (root,51732,1692,00:00:00/00:00,24769) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,24770) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/11:28:49,28123) [kworker/4:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-25 20:39 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735015870c322Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:12:44/1393-07:20:10,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1393-07:20:10,2) [kthreadd] (root,0,0,00:00:00/1393-07:20:10,4) [kworker/0:0H] (root,0,0,00:15:10/1393-07:20:10,6) [ksoftirqd/0] (root,0,0,00:01:12/1393-07:20:10,7) [migration/0] (root,0,0,00:00:00/1393-07:20:10,8) [rcu_bh] (root,0,0,18:14:49/1393-07:20:10,9) [rcu_sched] (root,0,0,00:00:00/1393-07:20:10,10) [lru-add-drain] (root,0,0,00:06:08/1393-07:20:10,11) [watchdog/0] (root,0,0,00:06:11/1393-07:20:10,12) [watchdog/1] (root,0,0,00:01:11/1393-07:20:10,13) [migration/1] (root,0,0,00:12:45/1393-07:20:10,14) [ksoftirqd/1] (root,0,0,00:00:00/1393-07:20:10,16) [kworker/1:0H] (root,0,0,00:05:30/1393-07:20:10,17) [watchdog/2] (root,0,0,00:01:11/1393-07:20:10,18) [migration/2] (root,0,0,00:12:38/1393-07:20:10,19) [ksoftirqd/2] (root,0,0,00:00:00/1393-07:20:10,21) [kworker/2:0H] (root,0,0,00:05:31/1393-07:20:10,22) [watchdog/3] (root,0,0,00:01:11/1393-07:20:10,23) [migration/3] (root,0,0,00:13:14/1393-07:20:10,24) [ksoftirqd/3] (root,0,0,00:00:00/1393-07:20:10,26) [kworker/3:0H] (root,0,0,00:05:10/1393-07:20:10,27) [watchdog/4] (root,0,0,00:10:56/1393-07:20:10,28) [migration/4] (root,0,0,00:46:43/1393-07:20:10,29) [ksoftirqd/4] (root,0,0,00:00:00/1393-07:20:10,31) [kworker/4:0H] (root,0,0,00:05:23/1393-07:20:10,32) [watchdog/5] (root,0,0,00:10:42/1393-07:20:10,33) [migration/5] (root,0,0,00:52:40/1393-07:20:10,34) [ksoftirqd/5] (root,0,0,00:00:00/1393-07:20:10,36) [kworker/5:0H] (root,0,0,00:05:15/1393-07:20:10,37) [watchdog/6] (root,0,0,00:10:25/1393-07:20:10,38) [migration/6] (root,0,0,00:53:15/1393-07:20:10,39) [ksoftirqd/6] (root,0,0,00:00:00/1393-07:20:10,41) [kworker/6:0H] (root,0,0,00:05:40/1393-07:20:10,42) [watchdog/7] (root,0,0,00:10:43/1393-07:20:10,43) [migration/7] (root,0,0,01:01:33/1393-07:20:10,44) [ksoftirqd/7] (root,0,0,00:00:00/1393-07:20:10,46) [kworker/7:0H] (root,0,0,00:00:00/1393-07:20:10,48) [kdevtmpfs] (root,0,0,00:00:00/1393-07:20:10,49) [netns] (root,0,0,00:00:41/1393-07:20:10,50) [khungtaskd] (root,0,0,00:00:00/1393-07:20:10,51) [writeback] (root,0,0,00:00:00/1393-07:20:10,52) [kintegrityd] (root,0,0,00:00:00/1393-07:20:10,53) [bioset] (root,0,0,00:00:00/1393-07:20:10,54) [bioset] (root,0,0,00:00:00/1393-07:20:10,55) [bioset] (root,0,0,00:00:00/1393-07:20:10,56) [kblockd] (root,0,0,00:00:00/1393-07:20:10,57) [md] (root,0,0,00:00:00/1393-07:20:10,58) [edac-poller] (root,0,0,00:00:00/1393-07:20:10,59) [watchdogd] (root,0,0,00:00:00/1393-07:20:10,66) [kswapd0] (root,0,0,00:00:00/1393-07:20:10,67) [ksmd] (root,0,0,00:08:10/1393-07:20:10,68) [khugepaged] (root,0,0,00:00:00/1393-07:20:10,69) [crypto] (root,0,0,00:00:00/1393-07:20:10,77) [kthrotld] (root,0,0,00:00:00/1393-07:20:10,79) [kmpath_rdacd] (root,0,0,00:00:00/1393-07:20:10,80) [kaluad] (root,0,0,00:00:00/1393-07:20:09,82) [kpsmoused] (root,0,0,00:00:00/1393-07:20:09,89) [ipv6_addrconf] (root,0,0,00:00:00/1393-07:20:09,102) [deferwq] (root,0,0,00:13:06/1393-07:20:09,139) [kauditd] (root,0,0,00:00:00/1393-07:20:08,281) [scsi_eh_0] (root,0,0,00:00:00/1393-07:20:08,282) [scsi_tmf_0] (root,0,0,00:00:00/1393-07:20:08,291) [ixgbe] (root,0,0,00:00:00/1393-07:20:08,304) [poll_megasas0_s] (root,0,0,00:00:00/1393-07:20:08,306) [ttm_swap] (root,0,0,05:58:35/1393-07:20:07,337) [jbd2/sda3-8] (root,0,0,00:00:00/1393-07:20:07,338) [ext4-rsv-conver] (root,75932,32508,02:22:32/1393-07:20:06,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:05/1393-06:05:03,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28428,1-06:26:08/1393-06:05:03,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11020,12:53:51/1393-06:04:49,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1393-07:20:06,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1393-07:20:06,527) [jbd2/sda2-8] (root,0,0,00:00:00/1393-07:20:06,528) [ext4-rsv-conver] (root,55532,1060,00:28:51/1393-07:20:06,573) /sbin/auditd (polkitd,613004,14012,02:38:24/1393-07:20:06,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:47:36/1393-07:20:06,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:08:05/1393-07:20:06,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:56:05/1393-07:20:06,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:59/1393-07:20:06,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1393-06:04:39,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1393-06:04:38,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,322512,1-21:26:17/1393-06:04:38,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1393-07:20:03,930) [kworker/3:1H] (root,112900,4352,00:00:04/1393-07:19:57,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:07/1393-07:19:57,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:34/1393-07:19:57,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1393-07:19:56,1643) [kworker/6:1H] (root,0,0,00:00:37/1393-07:19:46,1646) [kworker/1:1H] (root,0,0,00:00:37/1393-07:19:22,1673) [kworker/0:1H] (root,0,0,00:00:46/1393-07:18:48,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1393-07:17:43,1750) /usr/lib/systemd/systemd-udevd (apache,378044,12764,00:00:00/1-13:40:18,5388) /usr/sbin/httpd -DFOREGROUND (apache,378044,12788,00:00:00/1-17:52:21,5783) /usr/sbin/httpd -DFOREGROUND (apache,378044,12736,00:00:00/1-17:52:19,5784) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:44:56/1393-07:17:32,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,737592,24452,02:17:03/1393-07:17:32,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/16:33:04,7863) [kworker/4:1] (root,110204,848,00:00:00/258-13:07:28,8910) /sbin/agetty --noclear tty1 linux (apache,278164,8968,00:00:02/1-19:50:03,10373) /usr/sbin/httpd -DFOREGROUND (apache,378044,12784,00:00:00/1-19:50:03,10374) /usr/sbin/httpd -DFOREGROUND (apache,378044,12796,00:00:00/1-19:50:03,10375) /usr/sbin/httpd -DFOREGROUND (apache,378044,12756,00:00:00/1-19:50:03,10376) /usr/sbin/httpd -DFOREGROUND (apache,378044,12812,00:00:00/1-19:50:03,10377) /usr/sbin/httpd -DFOREGROUND (apache,378044,12780,00:00:00/1-19:50:03,10378) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-18:46:04,10764) [kworker/5:0] (apache,378044,12756,00:00:00/1-19:49:16,10868) /usr/sbin/httpd -DFOREGROUND (postfix,89848,4084,00:00:00/34:07,13206) pickup -l -t unix -u (root,0,0,00:00:00/33:04,13825) [kworker/1:1] (root,0,0,00:00:13/1393-07:17:24,13987) [kworker/7:1H] (root,0,0,00:00:08/1393-07:12:19,14018) [kworker/4:1H] (root,0,0,00:00:00/32:04,14314) [kworker/7:0] (root,0,0,00:00:41/1393-07:17:16,14909) [kworker/2:1H] (root,0,0,00:00:00/01:32:04,15945) [kworker/5:2] (root,0,0,00:00:00/1-03:50:04,16350) [kworker/3:0] (root,0,0,00:00:00/20:28:03,16695) [kworker/1:2] (root,0,0,00:00:00/02:33:03,17138) [kworker/0:2] (root,0,0,00:00:00/25:46,17439) [kworker/u16:2] (ntp,25732,2012,00:21:03/1393-06:47:14,18284) /usr/sbin/ntpd -u ntp:ntp -g (onapp,98460,1980,00:00:01/23:33:03,18411) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368172,97388,00:00:11/23:33:03,18412) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,377780,19128,01:08:58/1393-06:46:54,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522784,16640,05:10:22/186-08:22:01,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,17:59:30/1393-06:45:35,18985) python /omd/sites/onapp/bin/mkeventd (onapp,368132,97304,00:00:11/23:32:03,19008) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,98460,5016,01:04:46/1393-06:45:35,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:43/1393-06:42:24,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (onapp,283912,11648,00:00:00/23:31:02,19484) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:01/1-16:18:04,21890) [kworker/7:2] (root,0,0,00:00:01/1-21:33:04,22312) [kworker/6:0] (apache,378044,12484,00:00:00/10:46:55,23232) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40416,03:56:50/379-03:00:28,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:09/379-03:00:28,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/13:03,24137) [kworker/6:2] (root,0,0,00:00:00/06:32:04,24241) [kworker/3:2] (root,0,0,00:00:00/1-03:27:03,28165) [kworker/2:0] (root,0,0,00:00:00/03:03,29230) [kworker/5:1] (root,0,0,00:00:00/01:46,29741) [kworker/u16:1] (root,0,0,00:00:00/16:53:03,30059) [kworker/0:1] (root,0,0,00:00:00/01:04:18,30139) [kworker/u16:0] (root,115412,1652,00:00:00/00:00,30843) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,30862) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,30863) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/03:07:17,32114) [kworker/2:1] (root,0,0,00:00:00/02:03:04,32524) [kworker/4:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-23 22:33 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735011804e35bFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:12:13/1391-05:45:08,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1391-05:45:08,2) [kthreadd] (root,0,0,00:00:00/1391-05:45:08,4) [kworker/0:0H] (root,0,0,00:15:08/1391-05:45:08,6) [ksoftirqd/0] (root,0,0,00:01:12/1391-05:45:08,7) [migration/0] (root,0,0,00:00:00/1391-05:45:08,8) [rcu_bh] (root,0,0,18:13:18/1391-05:45:08,9) [rcu_sched] (root,0,0,00:00:00/1391-05:45:08,10) [lru-add-drain] (root,0,0,00:06:08/1391-05:45:08,11) [watchdog/0] (root,0,0,00:06:10/1391-05:45:08,12) [watchdog/1] (root,0,0,00:01:11/1391-05:45:08,13) [migration/1] (root,0,0,00:12:44/1391-05:45:08,14) [ksoftirqd/1] (root,0,0,00:00:00/1391-05:45:08,16) [kworker/1:0H] (root,0,0,00:05:29/1391-05:45:08,17) [watchdog/2] (root,0,0,00:01:10/1391-05:45:08,18) [migration/2] (root,0,0,00:12:37/1391-05:45:08,19) [ksoftirqd/2] (root,0,0,00:00:00/1391-05:45:08,21) [kworker/2:0H] (root,0,0,00:05:30/1391-05:45:08,22) [watchdog/3] (root,0,0,00:01:11/1391-05:45:08,23) [migration/3] (root,0,0,00:13:12/1391-05:45:08,24) [ksoftirqd/3] (root,0,0,00:00:00/1391-05:45:08,26) [kworker/3:0H] (root,0,0,00:05:10/1391-05:45:08,27) [watchdog/4] (root,0,0,00:10:55/1391-05:45:08,28) [migration/4] (root,0,0,00:46:40/1391-05:45:08,29) [ksoftirqd/4] (root,0,0,00:00:00/1391-05:45:08,31) [kworker/4:0H] (root,0,0,00:05:23/1391-05:45:08,32) [watchdog/5] (root,0,0,00:10:41/1391-05:45:08,33) [migration/5] (root,0,0,00:52:37/1391-05:45:08,34) [ksoftirqd/5] (root,0,0,00:00:00/1391-05:45:08,36) [kworker/5:0H] (root,0,0,00:05:14/1391-05:45:08,37) [watchdog/6] (root,0,0,00:10:24/1391-05:45:08,38) [migration/6] (root,0,0,00:53:11/1391-05:45:08,39) [ksoftirqd/6] (root,0,0,00:00:00/1391-05:45:08,41) [kworker/6:0H] (root,0,0,00:05:39/1391-05:45:08,42) [watchdog/7] (root,0,0,00:10:42/1391-05:45:08,43) [migration/7] (root,0,0,01:01:29/1391-05:45:08,44) [ksoftirqd/7] (root,0,0,00:00:00/1391-05:45:08,46) [kworker/7:0H] (root,0,0,00:00:00/1391-05:45:08,48) [kdevtmpfs] (root,0,0,00:00:00/1391-05:45:08,49) [netns] (root,0,0,00:00:41/1391-05:45:08,50) [khungtaskd] (root,0,0,00:00:00/1391-05:45:08,51) [writeback] (root,0,0,00:00:00/1391-05:45:08,52) [kintegrityd] (root,0,0,00:00:00/1391-05:45:08,53) [bioset] (root,0,0,00:00:00/1391-05:45:08,54) [bioset] (root,0,0,00:00:00/1391-05:45:08,55) [bioset] (root,0,0,00:00:00/1391-05:45:08,56) [kblockd] (root,0,0,00:00:00/1391-05:45:08,57) [md] (root,0,0,00:00:00/1391-05:45:08,58) [edac-poller] (root,0,0,00:00:00/1391-05:45:08,59) [watchdogd] (root,0,0,00:00:00/1391-05:45:08,66) [kswapd0] (root,0,0,00:00:00/1391-05:45:08,67) [ksmd] (root,0,0,00:08:10/1391-05:45:08,68) [khugepaged] (root,0,0,00:00:00/1391-05:45:08,69) [crypto] (root,0,0,00:00:00/1391-05:45:08,77) [kthrotld] (root,0,0,00:00:00/1391-05:45:08,79) [kmpath_rdacd] (root,0,0,00:00:00/1391-05:45:08,80) [kaluad] (root,0,0,00:00:00/1391-05:45:07,82) [kpsmoused] (root,0,0,00:00:00/1391-05:45:07,89) [ipv6_addrconf] (root,0,0,00:00:00/1391-05:45:07,102) [deferwq] (root,0,0,00:13:05/1391-05:45:07,139) [kauditd] (root,0,0,00:00:00/1391-05:45:06,281) [scsi_eh_0] (root,0,0,00:00:00/1391-05:45:06,282) [scsi_tmf_0] (root,0,0,00:00:00/1391-05:45:06,291) [ixgbe] (root,0,0,00:00:00/1391-05:45:06,304) [poll_megasas0_s] (root,0,0,00:00:00/1391-05:45:06,306) [ttm_swap] (root,0,0,05:58:26/1391-05:45:05,337) [jbd2/sda3-8] (root,0,0,00:00:00/1391-05:45:05,338) [ext4-rsv-conver] (root,88172,48972,02:22:21/1391-05:45:04,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:03/1391-04:30:01,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28424,1-06:23:24/1391-04:30:01,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11020,12:52:43/1391-04:29:47,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1391-05:45:04,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1391-05:45:04,527) [jbd2/sda2-8] (root,0,0,00:00:00/1391-05:45:04,528) [ext4-rsv-conver] (root,55532,1060,00:28:48/1391-05:45:04,573) /sbin/auditd (polkitd,613004,14012,02:38:11/1391-05:45:04,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:47:15/1391-05:45:04,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:07:49/1391-05:45:04,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:55:31/1391-05:45:04,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:56/1391-05:45:04,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1391-04:29:37,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1391-04:29:36,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,322492,1-21:21:55/1391-04:29:36,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (onapp,283912,11648,00:00:00/21:56:01,833) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:39/1391-05:45:01,930) [kworker/3:1H] (apache,378052,12784,00:00:01/3-08:52:34,1104) /usr/sbin/httpd -DFOREGROUND (apache,378048,13184,00:00:01/3-08:52:33,1105) /usr/sbin/httpd -DFOREGROUND (root,112900,4352,00:00:04/1391-05:44:55,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:06/1391-05:44:55,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:34/1391-05:44:55,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1391-05:44:54,1643) [kworker/6:1H] (root,0,0,00:00:37/1391-05:44:44,1646) [kworker/1:1H] (root,0,0,00:00:37/1391-05:44:20,1673) [kworker/0:1H] (root,0,0,00:00:46/1391-05:43:46,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1391-05:42:41,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/04:55:02,5821) [kworker/0:2] (root,0,0,00:00:00/05:58:01,5851) [kworker/3:1] (root,574280,19564,02:44:41/1391-05:42:30,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740600,34060,02:16:51/1391-05:42:30,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/256-11:32:26,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/02:40:02,10411) [kworker/2:1] (root,0,0,00:00:00/08:55:02,12474) [kworker/1:2] (apache,378048,12768,00:00:00/1-23:51:59,12752) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/28:02,13215) [kworker/6:0] (root,0,0,00:00:13/1391-05:42:22,13987) [kworker/7:1H] (root,0,0,00:00:08/1391-05:37:17,14018) [kworker/4:1H] (root,0,0,00:00:00/01:28:02,14902) [kworker/4:2] (root,0,0,00:00:40/1391-05:42:14,14909) [kworker/2:1H] (apache,278164,8976,00:00:07/6-18:33:02,15334) /usr/sbin/httpd -DFOREGROUND (apache,378048,12780,00:00:02/6-18:33:02,15339) /usr/sbin/httpd -DFOREGROUND (apache,378052,13244,00:00:02/6-18:33:02,15342) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/21:44,16316) [kworker/u16:2] (root,0,0,00:00:00/11:57:01,16376) [kworker/4:0] (root,0,0,00:00:01/1-21:38:01,16760) [kworker/5:1] (root,0,0,00:00:00/12:58:00,17482) [kworker/3:2] (root,0,0,00:00:00/02:25:01,18105) [kworker/5:0] (ntp,25732,2012,00:21:01/1391-05:12:12,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19116,01:08:51/1391-05:11:52,18605) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/1-07:53:01,18651) [kworker/0:0] (onapp,1522780,16628,05:06:48/184-06:46:59,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,17:57:54/1391-05:10:33,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:04:40/1391-05:10:33,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:41/1391-05:07:22,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378048,13240,00:00:02/6-18:24:55,19467) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/15:15,19836) [kworker/u16:0] (apache,378048,12788,00:00:01/6-17:14:17,23418) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40416,03:56:02/377-01:25:26,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:18:03/377-01:25:26,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:04/4-20:58:02,24898) [kworker/7:0] (apache,378052,12616,00:00:00/14:49:16,25385) /usr/sbin/httpd -DFOREGROUND (apache,378052,12768,00:00:01/4-04:01:46,27240) /usr/sbin/httpd -DFOREGROUND (apache,378048,12760,00:00:01/4-04:01:45,27241) /usr/sbin/httpd -DFOREGROUND (root,115412,1652,00:00:00/00:00,27547) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,27566) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,27567) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (postfix,89848,4080,00:00:00/01:01:03,28668) pickup -l -t unix -u (root,0,0,00:00:00/1-02:15:01,30136) [kworker/1:0] (root,0,0,00:00:00/58:02,30213) [kworker/7:1] (root,0,0,00:00:00/18:49:01,31997) [kworker/2:2] (onapp,98460,1984,00:00:01/21:58:01,32169) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368128,97340,00:00:10/21:58:01,32170) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/07:13:01,32311) [kworker/6:2] (onapp,368080,97308,00:00:10/21:57:01,32735) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-21 20:58 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501c04c3c30Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:11:43/1389-05:46:18,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1389-05:46:18,2) [kthreadd] (root,0,0,00:00:00/1389-05:46:18,4) [kworker/0:0H] (root,0,0,00:15:07/1389-05:46:18,6) [ksoftirqd/0] (root,0,0,00:01:12/1389-05:46:18,7) [migration/0] (root,0,0,00:00:00/1389-05:46:18,8) [rcu_bh] (root,0,0,18:11:50/1389-05:46:18,9) [rcu_sched] (root,0,0,00:00:00/1389-05:46:18,10) [lru-add-drain] (root,0,0,00:06:07/1389-05:46:18,11) [watchdog/0] (root,0,0,00:06:10/1389-05:46:18,12) [watchdog/1] (root,0,0,00:01:11/1389-05:46:18,13) [migration/1] (root,0,0,00:12:43/1389-05:46:18,14) [ksoftirqd/1] (root,0,0,00:00:00/1389-05:46:18,16) [kworker/1:0H] (root,0,0,00:05:29/1389-05:46:18,17) [watchdog/2] (root,0,0,00:01:10/1389-05:46:18,18) [migration/2] (root,0,0,00:12:36/1389-05:46:18,19) [ksoftirqd/2] (root,0,0,00:00:00/1389-05:46:18,21) [kworker/2:0H] (root,0,0,00:05:30/1389-05:46:18,22) [watchdog/3] (root,0,0,00:01:11/1389-05:46:18,23) [migration/3] (root,0,0,00:13:11/1389-05:46:18,24) [ksoftirqd/3] (root,0,0,00:00:00/1389-05:46:18,26) [kworker/3:0H] (root,0,0,00:05:09/1389-05:46:18,27) [watchdog/4] (root,0,0,00:10:54/1389-05:46:18,28) [migration/4] (root,0,0,00:46:37/1389-05:46:18,29) [ksoftirqd/4] (root,0,0,00:00:00/1389-05:46:18,31) [kworker/4:0H] (root,0,0,00:05:22/1389-05:46:18,32) [watchdog/5] (root,0,0,00:10:41/1389-05:46:18,33) [migration/5] (root,0,0,00:52:33/1389-05:46:18,34) [ksoftirqd/5] (root,0,0,00:00:00/1389-05:46:18,36) [kworker/5:0H] (root,0,0,00:05:14/1389-05:46:18,37) [watchdog/6] (root,0,0,00:10:23/1389-05:46:18,38) [migration/6] (root,0,0,00:53:08/1389-05:46:18,39) [ksoftirqd/6] (root,0,0,00:00:00/1389-05:46:18,41) [kworker/6:0H] (root,0,0,00:05:39/1389-05:46:18,42) [watchdog/7] (root,0,0,00:10:41/1389-05:46:18,43) [migration/7] (root,0,0,01:01:25/1389-05:46:18,44) [ksoftirqd/7] (root,0,0,00:00:00/1389-05:46:18,46) [kworker/7:0H] (root,0,0,00:00:00/1389-05:46:18,48) [kdevtmpfs] (root,0,0,00:00:00/1389-05:46:18,49) [netns] (root,0,0,00:00:41/1389-05:46:18,50) [khungtaskd] (root,0,0,00:00:00/1389-05:46:18,51) [writeback] (root,0,0,00:00:00/1389-05:46:18,52) [kintegrityd] (root,0,0,00:00:00/1389-05:46:18,53) [bioset] (root,0,0,00:00:00/1389-05:46:18,54) [bioset] (root,0,0,00:00:00/1389-05:46:18,55) [bioset] (root,0,0,00:00:00/1389-05:46:18,56) [kblockd] (root,0,0,00:00:00/1389-05:46:18,57) [md] (root,0,0,00:00:00/1389-05:46:18,58) [edac-poller] (root,0,0,00:00:00/1389-05:46:18,59) [watchdogd] (root,0,0,00:00:00/1389-05:46:18,66) [kswapd0] (root,0,0,00:00:00/1389-05:46:18,67) [ksmd] (root,0,0,00:08:09/1389-05:46:18,68) [khugepaged] (root,0,0,00:00:00/1389-05:46:18,69) [crypto] (root,0,0,00:00:00/1389-05:46:18,77) [kthrotld] (root,0,0,00:00:00/1389-05:46:18,79) [kmpath_rdacd] (root,0,0,00:00:00/1389-05:46:18,80) [kaluad] (root,0,0,00:00:00/1389-05:46:17,82) [kpsmoused] (root,0,0,00:00:00/1389-05:46:17,89) [ipv6_addrconf] (root,0,0,00:00:00/1389-05:46:17,102) [deferwq] (root,0,0,00:13:04/1389-05:46:17,139) [kauditd] (root,0,0,00:00:00/1389-05:46:16,281) [scsi_eh_0] (root,0,0,00:00:00/1389-05:46:16,282) [scsi_tmf_0] (root,0,0,00:00:00/1389-05:46:16,291) [ixgbe] (root,0,0,00:00:00/1389-05:46:16,304) [poll_megasas0_s] (root,0,0,00:00:00/1389-05:46:16,306) [ttm_swap] (root,0,0,05:58:18/1389-05:46:15,337) [jbd2/sda3-8] (root,0,0,00:00:00/1389-05:46:15,338) [ext4-rsv-conver] (root,0,0,00:00:00/04:29:11,360) [kworker/1:2] (root,129312,68348,02:22:10/1389-05:46:14,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:31:01/1389-04:31:11,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28424,1-06:20:45/1389-04:31:11,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11016,12:51:36/1389-04:30:57,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1389-05:46:14,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1389-05:46:14,527) [jbd2/sda2-8] (root,0,0,00:00:00/1389-05:46:14,528) [ext4-rsv-conver] (root,55532,1060,00:28:46/1389-05:46:14,573) /sbin/auditd (polkitd,613004,14012,02:37:59/1389-05:46:14,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:46:56/1389-05:46:14,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:07:35/1389-05:46:14,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:54:58/1389-05:46:14,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:53/1389-05:46:14,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1389-04:30:47,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1389-04:30:46,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,322488,1-21:17:42/1389-04:30:46,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1389-05:46:11,930) [kworker/3:1H] (apache,378052,12708,00:00:00/1-08:53:44,1104) /usr/sbin/httpd -DFOREGROUND (apache,378048,12716,00:00:00/1-08:53:43,1105) /usr/sbin/httpd -DFOREGROUND (root,112900,4352,00:00:04/1389-05:46:05,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/15:25,1197) [kworker/6:1] (root,89708,2212,00:08:05/1389-05:46:05,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:34/1389-05:46:05,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1389-05:46:04,1643) [kworker/6:1H] (root,0,0,00:00:37/1389-05:45:54,1646) [kworker/1:1H] (root,0,0,00:00:37/1389-05:45:30,1673) [kworker/0:1H] (root,0,0,00:00:46/1389-05:44:56,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1389-05:43:51,1750) /usr/lib/systemd/systemd-udevd (root,574280,19564,02:44:27/1389-05:43:40,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740096,29400,02:16:40/1389-05:43:40,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/02:12,7920) [kworker/0:2] (root,0,0,00:00:00/01:12,8385) [kworker/1:0] (root,110204,848,00:00:00/254-11:33:36,8910) /sbin/agetty --noclear tty1 linux (root,115412,1648,00:00:00/00:00,8980) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,8999) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,9000) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/1-05:29:11,9071) [kworker/0:1] (root,0,0,00:00:00/58:12,11671) [kworker/0:0] (root,0,0,00:00:01/04:06:26,12001) [kworker/u16:0] (root,0,0,00:00:00/01:59:11,12697) [kworker/2:2] (onapp,98460,1984,00:00:01/21:59:12,12740) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368100,97300,00:00:10/21:59:12,12741) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/03:00:59,13075) [kworker/u16:2] (onapp,368188,97340,00:00:10/21:58:11,13231) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11652,00:00:00/21:57:15,13727) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:13/1389-05:43:32,13987) [kworker/7:1H] (root,0,0,00:00:08/1389-05:38:27,14018) [kworker/4:1H] (root,0,0,00:00:00/01:56:11,14312) [kworker/5:1] (root,0,0,00:00:40/1389-05:43:24,14909) [kworker/2:1H] (apache,278164,8976,00:00:05/4-18:34:12,15334) /usr/sbin/httpd -DFOREGROUND (apache,378048,12768,00:00:01/4-18:34:12,15338) /usr/sbin/httpd -DFOREGROUND (apache,378048,12748,00:00:01/4-18:34:12,15339) /usr/sbin/httpd -DFOREGROUND (apache,378048,13244,00:00:01/4-18:34:12,15341) /usr/sbin/httpd -DFOREGROUND (apache,378052,13196,00:00:01/4-18:34:12,15342) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/14:29:12,16955) [kworker/4:2] (root,0,0,00:00:00/04:59:11,17418) [kworker/1:1] (ntp,25732,2012,00:20:59/1389-05:13:22,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19116,01:08:45/1389-05:13:02,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522784,16584,05:03:21/182-06:48:09,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,17:56:20/1389-05:11:43,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:04:35/1389-05:11:43,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:39/1389-05:08:32,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378048,12748,00:00:01/4-18:26:05,19467) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/06:59:11,20784) [kworker/3:2] (root,0,0,00:00:00/03:45:25,22976) [kworker/6:0] (apache,378048,12768,00:00:01/4-17:15:27,23418) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40460,03:55:16/375-01:26:36,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:17:57/375-01:26:36,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:02/2-23:06:11,24558) [kworker/5:2] (root,0,0,00:00:02/2-20:59:12,24898) [kworker/7:0] (root,0,0,00:00:00/08:57:12,25020) [kworker/3:0] (root,0,0,00:00:00/29:12,26521) [kworker/7:2] (root,0,0,00:00:02/3-05:21:12,26601) [kworker/2:1] (apache,378052,12752,00:00:00/2-04:02:56,27240) /usr/sbin/httpd -DFOREGROUND (apache,378048,12732,00:00:00/2-04:02:55,27241) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:29:12,29545) [kworker/4:1] (postfix,89848,4080,00:00:00/01:24:13,30686) pickup -l -t unix -u Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-19 20:59 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501d34bb77cFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:11:14/1387-05:32:10,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1387-05:32:10,2) [kthreadd] (root,0,0,00:00:00/1387-05:32:10,4) [kworker/0:0H] (root,0,0,00:15:06/1387-05:32:10,6) [ksoftirqd/0] (root,0,0,00:01:12/1387-05:32:10,7) [migration/0] (root,0,0,00:00:00/1387-05:32:10,8) [rcu_bh] (root,0,0,18:10:21/1387-05:32:10,9) [rcu_sched] (root,0,0,00:00:00/1387-05:32:10,10) [lru-add-drain] (root,0,0,00:06:07/1387-05:32:10,11) [watchdog/0] (root,0,0,00:06:09/1387-05:32:10,12) [watchdog/1] (root,0,0,00:01:11/1387-05:32:10,13) [migration/1] (root,0,0,00:12:41/1387-05:32:10,14) [ksoftirqd/1] (root,0,0,00:00:00/1387-05:32:10,16) [kworker/1:0H] (root,0,0,00:05:28/1387-05:32:10,17) [watchdog/2] (root,0,0,00:01:10/1387-05:32:10,18) [migration/2] (root,0,0,00:12:34/1387-05:32:10,19) [ksoftirqd/2] (root,0,0,00:00:00/1387-05:32:10,21) [kworker/2:0H] (root,0,0,00:05:29/1387-05:32:10,22) [watchdog/3] (root,0,0,00:01:11/1387-05:32:10,23) [migration/3] (root,0,0,00:13:10/1387-05:32:10,24) [ksoftirqd/3] (root,0,0,00:00:00/1387-05:32:10,26) [kworker/3:0H] (root,0,0,00:05:09/1387-05:32:10,27) [watchdog/4] (root,0,0,00:10:53/1387-05:32:10,28) [migration/4] (root,0,0,00:46:33/1387-05:32:10,29) [ksoftirqd/4] (root,0,0,00:00:00/1387-05:32:10,31) [kworker/4:0H] (root,0,0,00:05:22/1387-05:32:10,32) [watchdog/5] (root,0,0,00:10:40/1387-05:32:10,33) [migration/5] (root,0,0,00:52:30/1387-05:32:10,34) [ksoftirqd/5] (root,0,0,00:00:00/1387-05:32:10,36) [kworker/5:0H] (root,0,0,00:05:13/1387-05:32:10,37) [watchdog/6] (root,0,0,00:10:23/1387-05:32:10,38) [migration/6] (root,0,0,00:53:05/1387-05:32:10,39) [ksoftirqd/6] (root,0,0,00:00:00/1387-05:32:10,41) [kworker/6:0H] (root,0,0,00:05:38/1387-05:32:10,42) [watchdog/7] (root,0,0,00:10:40/1387-05:32:10,43) [migration/7] (root,0,0,01:01:20/1387-05:32:10,44) [ksoftirqd/7] (root,0,0,00:00:00/1387-05:32:10,46) [kworker/7:0H] (root,0,0,00:00:00/1387-05:32:10,48) [kdevtmpfs] (root,0,0,00:00:00/1387-05:32:10,49) [netns] (root,0,0,00:00:41/1387-05:32:10,50) [khungtaskd] (root,0,0,00:00:00/1387-05:32:10,51) [writeback] (root,0,0,00:00:00/1387-05:32:10,52) [kintegrityd] (root,0,0,00:00:00/1387-05:32:10,53) [bioset] (root,0,0,00:00:00/1387-05:32:10,54) [bioset] (root,0,0,00:00:00/1387-05:32:10,55) [bioset] (root,0,0,00:00:00/1387-05:32:10,56) [kblockd] (root,0,0,00:00:00/1387-05:32:10,57) [md] (root,0,0,00:00:00/1387-05:32:10,58) [edac-poller] (root,0,0,00:00:00/1387-05:32:10,59) [watchdogd] (root,0,0,00:00:00/1387-05:32:10,66) [kswapd0] (root,0,0,00:00:00/1387-05:32:10,67) [ksmd] (root,0,0,00:08:08/1387-05:32:10,68) [khugepaged] (root,0,0,00:00:00/1387-05:32:10,69) [crypto] (root,0,0,00:00:00/1387-05:32:10,77) [kthrotld] (root,0,0,00:00:00/1387-05:32:10,79) [kmpath_rdacd] (root,0,0,00:00:00/1387-05:32:10,80) [kaluad] (root,0,0,00:00:00/1387-05:32:09,82) [kpsmoused] (root,0,0,00:00:00/1387-05:32:09,89) [ipv6_addrconf] (root,0,0,00:00:00/1387-05:32:09,102) [deferwq] (root,0,0,00:13:03/1387-05:32:09,139) [kauditd] (root,0,0,00:00:00/1387-05:32:08,281) [scsi_eh_0] (root,0,0,00:00:00/1387-05:32:08,282) [scsi_tmf_0] (root,0,0,00:00:00/1387-05:32:08,291) [ixgbe] (root,0,0,00:00:00/1387-05:32:08,304) [poll_megasas0_s] (root,0,0,00:00:00/1387-05:32:08,306) [ttm_swap] (root,0,0,05:58:09/1387-05:32:07,337) [jbd2/sda3-8] (root,0,0,00:00:00/1387-05:32:07,338) [ext4-rsv-conver] (root,39060,5524,02:21:59/1387-05:32:06,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:30:59/1387-04:17:03,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28420,1-06:18:07/1387-04:17:03,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11016,12:50:30/1387-04:16:49,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1387-05:32:06,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1387-05:32:06,527) [jbd2/sda2-8] (root,0,0,00:00:00/1387-05:32:06,528) [ext4-rsv-conver] (root,55532,1060,00:28:43/1387-05:32:06,573) /sbin/auditd (polkitd,613004,14012,02:37:46/1387-05:32:06,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:46:36/1387-05:32:06,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:07:20/1387-05:32:06,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:54:25/1387-05:32:06,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:50/1387-05:32:06,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1387-04:16:39,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1387-04:16:38,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,322488,1-21:13:28/1387-04:16:38,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:00/01:31:15,771) [kworker/u16:0] (root,0,0,00:00:39/1387-05:32:03,930) [kworker/3:1H] (root,112900,4352,00:00:04/1387-05:31:57,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:05/1387-05:31:57,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:34/1387-05:31:57,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1387-05:31:56,1643) [kworker/6:1H] (root,0,0,00:00:37/1387-05:31:46,1646) [kworker/1:1H] (root,0,0,00:00:37/1387-05:31:22,1673) [kworker/0:1H] (root,0,0,00:00:46/1387-05:30:48,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1387-05:29:43,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/06:44:03,2404) [kworker/6:2] (root,0,0,00:00:00/15:03,7311) [kworker/7:1] (root,574280,19564,02:44:13/1387-05:29:32,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,731408,9364,02:16:28/1387-05:29:32,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/252-11:19:28,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/01:15:03,8994) [kworker/3:1] (root,0,0,00:00:00/12:45:04,11697) [kworker/4:1] (root,0,0,00:00:00/03:15:04,12308) [kworker/4:0] (root,0,0,00:00:00/01:07:04,13070) [kworker/2:2] (root,0,0,00:00:13/1387-05:29:24,13987) [kworker/7:1H] (root,0,0,00:00:08/1387-05:24:19,14018) [kworker/4:1H] (root,0,0,00:00:00/01:18,14373) [kworker/u16:1] (root,0,0,00:00:40/1387-05:29:16,14909) [kworker/2:1H] (root,115412,1648,00:00:00/00:00,14982) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,15001) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,15002) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,278164,8976,00:00:03/2-18:20:04,15334) /usr/sbin/httpd -DFOREGROUND (apache,378048,12764,00:00:01/2-18:20:04,15338) /usr/sbin/httpd -DFOREGROUND (apache,378048,12748,00:00:00/2-18:20:04,15339) /usr/sbin/httpd -DFOREGROUND (apache,378048,12808,00:00:01/2-18:20:04,15340) /usr/sbin/httpd -DFOREGROUND (apache,378048,13196,00:00:01/2-18:20:04,15341) /usr/sbin/httpd -DFOREGROUND (apache,378052,13168,00:00:01/2-18:20:04,15342) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-20:13:04,15743) [kworker/3:2] (apache,378048,12732,00:00:00/2-14:05:22,16105) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:02:59,16754) [kworker/u16:2] (ntp,25732,2012,00:20:58/1387-04:59:14,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19116,01:08:39/1387-04:58:54,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522784,16524,04:59:48/180-06:34:01,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,17:54:46/1387-04:57:35,18985) python /omd/sites/onapp/bin/mkeventd (root,0,0,00:00:00/07:15:03,19008) [kworker/0:0] (onapp,98460,5016,01:04:29/1387-04:57:35,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:36/1387-04:54:24,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378048,12744,00:00:01/2-18:11:57,19467) /usr/sbin/httpd -DFOREGROUND (apache,378048,12768,00:00:00/2-17:01:19,23418) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40456,03:54:30/373-01:12:28,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:17:51/373-01:12:28,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/22:52:03,24558) [kworker/5:2] (root,0,0,00:00:00/44:04,24788) [kworker/5:1] (root,0,0,00:00:00/20:45:04,24898) [kworker/7:0] (root,0,0,00:00:00/02:49:03,25571) [kworker/1:1] (root,0,0,00:00:00/01:45:03,25938) [kworker/0:2] (onapp,98460,1980,00:00:01/21:45:04,26455) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368176,97392,00:00:10/21:45:04,26456) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:01/1-05:07:04,26601) [kworker/2:1] (root,0,0,00:00:04/5-10:09:04,26664) [kworker/6:0] (onapp,368144,97292,00:00:10/21:44:04,27025) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,378052,12544,00:00:00/03:48:48,27240) /usr/sbin/httpd -DFOREGROUND (apache,378048,12460,00:00:00/03:48:47,27241) /usr/sbin/httpd -DFOREGROUND (onapp,283912,11652,00:00:00/21:43:09,27449) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/04:45:04,30951) [kworker/1:0] (postfix,89848,4084,00:00:00/01:32:00,32640) pickup -l -t unix -u Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-17 20:45 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350192eb509dFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:10:44/1385-05:23:17,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1385-05:23:17,2) [kthreadd] (root,0,0,00:00:00/1385-05:23:17,4) [kworker/0:0H] (root,0,0,00:15:04/1385-05:23:17,6) [ksoftirqd/0] (root,0,0,00:01:12/1385-05:23:17,7) [migration/0] (root,0,0,00:00:00/1385-05:23:17,8) [rcu_bh] (root,0,0,18:08:55/1385-05:23:17,9) [rcu_sched] (root,0,0,00:00:00/1385-05:23:17,10) [lru-add-drain] (root,0,0,00:06:06/1385-05:23:17,11) [watchdog/0] (root,0,0,00:06:09/1385-05:23:17,12) [watchdog/1] (root,0,0,00:01:11/1385-05:23:17,13) [migration/1] (root,0,0,00:12:40/1385-05:23:17,14) [ksoftirqd/1] (root,0,0,00:00:00/1385-05:23:17,16) [kworker/1:0H] (root,0,0,00:05:28/1385-05:23:17,17) [watchdog/2] (root,0,0,00:01:10/1385-05:23:17,18) [migration/2] (root,0,0,00:12:33/1385-05:23:17,19) [ksoftirqd/2] (root,0,0,00:00:00/1385-05:23:17,21) [kworker/2:0H] (root,0,0,00:05:29/1385-05:23:17,22) [watchdog/3] (root,0,0,00:01:11/1385-05:23:17,23) [migration/3] (root,0,0,00:13:09/1385-05:23:17,24) [ksoftirqd/3] (root,0,0,00:00:00/1385-05:23:17,26) [kworker/3:0H] (root,0,0,00:05:08/1385-05:23:17,27) [watchdog/4] (root,0,0,00:10:52/1385-05:23:17,28) [migration/4] (root,0,0,00:46:30/1385-05:23:17,29) [ksoftirqd/4] (root,0,0,00:00:00/1385-05:23:17,31) [kworker/4:0H] (root,0,0,00:05:21/1385-05:23:17,32) [watchdog/5] (root,0,0,00:10:39/1385-05:23:17,33) [migration/5] (root,0,0,00:52:26/1385-05:23:17,34) [ksoftirqd/5] (root,0,0,00:00:00/1385-05:23:17,36) [kworker/5:0H] (root,0,0,00:05:13/1385-05:23:17,37) [watchdog/6] (root,0,0,00:10:22/1385-05:23:17,38) [migration/6] (root,0,0,00:53:01/1385-05:23:17,39) [ksoftirqd/6] (root,0,0,00:00:00/1385-05:23:17,41) [kworker/6:0H] (root,0,0,00:05:38/1385-05:23:17,42) [watchdog/7] (root,0,0,00:10:40/1385-05:23:17,43) [migration/7] (root,0,0,01:01:16/1385-05:23:17,44) [ksoftirqd/7] (root,0,0,00:00:00/1385-05:23:17,46) [kworker/7:0H] (root,0,0,00:00:00/1385-05:23:17,48) [kdevtmpfs] (root,0,0,00:00:00/1385-05:23:17,49) [netns] (root,0,0,00:00:41/1385-05:23:17,50) [khungtaskd] (root,0,0,00:00:00/1385-05:23:17,51) [writeback] (root,0,0,00:00:00/1385-05:23:17,52) [kintegrityd] (root,0,0,00:00:00/1385-05:23:17,53) [bioset] (root,0,0,00:00:00/1385-05:23:17,54) [bioset] (root,0,0,00:00:00/1385-05:23:17,55) [bioset] (root,0,0,00:00:00/1385-05:23:17,56) [kblockd] (root,0,0,00:00:00/1385-05:23:17,57) [md] (root,0,0,00:00:00/1385-05:23:17,58) [edac-poller] (root,0,0,00:00:00/1385-05:23:17,59) [watchdogd] (root,0,0,00:00:00/1385-05:23:17,66) [kswapd0] (root,0,0,00:00:00/1385-05:23:17,67) [ksmd] (root,0,0,00:08:08/1385-05:23:17,68) [khugepaged] (root,0,0,00:00:00/1385-05:23:17,69) [crypto] (root,0,0,00:00:00/1385-05:23:17,77) [kthrotld] (root,0,0,00:00:00/1385-05:23:17,79) [kmpath_rdacd] (root,0,0,00:00:00/1385-05:23:17,80) [kaluad] (root,0,0,00:00:00/1385-05:23:16,82) [kpsmoused] (root,0,0,00:00:00/1385-05:23:16,89) [ipv6_addrconf] (root,0,0,00:00:00/1385-05:23:16,102) [deferwq] (root,0,0,00:13:02/1385-05:23:16,139) [kauditd] (root,0,0,00:00:00/1385-05:23:15,281) [scsi_eh_0] (root,0,0,00:00:00/1385-05:23:15,282) [scsi_tmf_0] (root,0,0,00:00:00/1385-05:23:15,291) [ixgbe] (root,0,0,00:00:00/1385-05:23:15,304) [poll_megasas0_s] (root,0,0,00:00:00/1385-05:23:15,306) [ttm_swap] (root,0,0,05:58:01/1385-05:23:14,337) [jbd2/sda3-8] (root,0,0,00:00:00/1385-05:23:14,338) [ext4-rsv-conver] (root,55440,21172,02:21:47/1385-05:23:13,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:30:57/1385-04:08:10,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28420,1-06:15:29/1385-04:08:10,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11016,12:49:24/1385-04:07:56,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1385-05:23:13,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1385-05:23:13,527) [jbd2/sda2-8] (root,0,0,00:00:00/1385-05:23:13,528) [ext4-rsv-conver] (root,55532,1060,00:28:41/1385-05:23:13,573) /sbin/auditd (polkitd,613004,14012,02:37:33/1385-05:23:13,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:46:16/1385-05:23:13,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:07:05/1385-05:23:13,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:53:52/1385-05:23:13,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:48/1385-05:23:13,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1385-04:07:46,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1385-04:07:45,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,316344,1-21:09:42/1385-04:07:45,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1385-05:23:10,930) [kworker/3:1H] (root,0,0,00:00:04/4-12:06:11,1053) [kworker/7:2] (root,112900,4352,00:00:04/1385-05:23:04,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:04/1385-05:23:04,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:34/1385-05:23:04,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1385-05:23:03,1643) [kworker/6:1H] (root,0,0,00:00:37/1385-05:22:53,1646) [kworker/1:1H] (root,0,0,00:00:37/1385-05:22:29,1673) [kworker/0:1H] (root,0,0,00:00:46/1385-05:21:55,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1385-05:20:50,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/37:41,4452) [kworker/u16:0] (root,0,0,00:00:01/2-10:32:10,4608) [kworker/3:1] (root,0,0,00:00:00/36:11,5442) [kworker/2:1] (root,0,0,00:00:00/35:11,6003) [kworker/3:0] (root,0,0,00:00:00/01:36:11,7075) [kworker/0:0] (onapp,98460,1984,00:00:01/21:36:11,7358) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368132,97348,00:00:10/21:36:11,7359) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,574280,19564,02:43:58/1385-05:20:39,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,734388,18752,02:16:16/1385-05:20:39,7698) /usr/sbin/rsyslogd -n (onapp,368076,97304,00:00:10/21:35:10,7856) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11648,00:00:00/21:34:04,8409) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,110204,848,00:00:00/250-11:10:35,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/22:36:10,9010) [kworker/1:2] (root,0,0,00:00:00/02:35:10,9324) [kworker/4:2] (root,0,0,00:00:00/17:17:10,10683) [kworker/5:1] (root,0,0,00:00:00/14:06:11,11293) [kworker/4:0] (root,0,0,00:00:00/04:36:10,11850) [kworker/5:2] (root,0,0,00:00:00/21:39,12707) [kworker/u16:2] (root,0,0,00:00:13/1385-05:20:31,13987) [kworker/7:1H] (root,0,0,00:00:08/1385-05:15:26,14018) [kworker/4:1H] (root,0,0,00:00:40/1385-05:20:23,14909) [kworker/2:1H] (apache,278164,8976,00:00:00/18:11:11,15334) /usr/sbin/httpd -DFOREGROUND (apache,378048,12608,00:00:00/18:11:11,15338) /usr/sbin/httpd -DFOREGROUND (apache,378048,12580,00:00:00/18:11:11,15339) /usr/sbin/httpd -DFOREGROUND (apache,378048,12700,00:00:00/18:11:11,15340) /usr/sbin/httpd -DFOREGROUND (apache,378048,12656,00:00:00/18:11:11,15341) /usr/sbin/httpd -DFOREGROUND (apache,378052,12580,00:00:00/18:11:11,15342) /usr/sbin/httpd -DFOREGROUND (apache,378048,12624,00:00:00/13:56:30,16102) /usr/sbin/httpd -DFOREGROUND (apache,378048,12552,00:00:00/13:56:29,16105) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/07:35:10,17296) [kworker/0:1] (ntp,25732,2012,00:20:56/1385-04:50:21,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19116,01:08:34/1385-04:50:01,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522788,16524,04:56:15/178-06:25:08,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,17:53:12/1385-04:48:42,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:04:23/1385-04:48:42,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:34/1385-04:45:31,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378048,12616,00:00:00/18:03:04,19467) /usr/sbin/httpd -DFOREGROUND (postfix,89848,4084,00:00:00/04:58,21408) pickup -l -t unix -u (root,0,0,00:00:00/01:06:10,22531) [kworker/7:1] (apache,378048,12592,00:00:00/16:52:26,23418) /usr/sbin/httpd -DFOREGROUND (onapp,781044,40416,03:53:43/371-01:03:35,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (root,0,0,00:00:00/00:31,23640) [kworker/u16:1] (onapp,229860,828,00:17:46/371-01:03:35,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/02:06:11,24174) [kworker/1:0] (root,115412,1652,00:00:00/00:00,24235) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,24254) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,24255) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/10:28:26,25673) [kworker/6:2] (root,0,0,00:00:02/3-10:00:11,26664) [kworker/6:0] (root,0,0,00:00:00/13:35:10,27075) [kworker/2:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-15 20:36 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501b863c4c8Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:10:16/1383-07:13:19,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1383-07:13:19,2) [kthreadd] (root,0,0,00:00:00/1383-07:13:19,4) [kworker/0:0H] (root,0,0,00:15:03/1383-07:13:19,6) [ksoftirqd/0] (root,0,0,00:01:12/1383-07:13:19,7) [migration/0] (root,0,0,00:00:00/1383-07:13:19,8) [rcu_bh] (root,0,0,18:07:34/1383-07:13:19,9) [rcu_sched] (root,0,0,00:00:00/1383-07:13:19,10) [lru-add-drain] (root,0,0,00:06:06/1383-07:13:19,11) [watchdog/0] (root,0,0,00:06:08/1383-07:13:19,12) [watchdog/1] (root,0,0,00:01:10/1383-07:13:19,13) [migration/1] (root,0,0,00:12:39/1383-07:13:19,14) [ksoftirqd/1] (root,0,0,00:00:00/1383-07:13:19,16) [kworker/1:0H] (root,0,0,00:05:28/1383-07:13:19,17) [watchdog/2] (root,0,0,00:01:10/1383-07:13:19,18) [migration/2] (root,0,0,00:12:32/1383-07:13:19,19) [ksoftirqd/2] (root,0,0,00:00:00/1383-07:13:19,21) [kworker/2:0H] (root,0,0,00:05:29/1383-07:13:19,22) [watchdog/3] (root,0,0,00:01:11/1383-07:13:19,23) [migration/3] (root,0,0,00:13:08/1383-07:13:19,24) [ksoftirqd/3] (root,0,0,00:00:00/1383-07:13:19,26) [kworker/3:0H] (root,0,0,00:05:08/1383-07:13:19,27) [watchdog/4] (root,0,0,00:10:52/1383-07:13:19,28) [migration/4] (root,0,0,00:46:27/1383-07:13:19,29) [ksoftirqd/4] (root,0,0,00:00:00/1383-07:13:19,31) [kworker/4:0H] (root,0,0,00:05:21/1383-07:13:19,32) [watchdog/5] (root,0,0,00:10:38/1383-07:13:19,33) [migration/5] (root,0,0,00:52:23/1383-07:13:19,34) [ksoftirqd/5] (root,0,0,00:00:00/1383-07:13:19,36) [kworker/5:0H] (root,0,0,00:05:12/1383-07:13:19,37) [watchdog/6] (root,0,0,00:10:21/1383-07:13:19,38) [migration/6] (root,0,0,00:52:58/1383-07:13:19,39) [ksoftirqd/6] (root,0,0,00:00:00/1383-07:13:19,41) [kworker/6:0H] (root,0,0,00:05:37/1383-07:13:19,42) [watchdog/7] (root,0,0,00:10:39/1383-07:13:19,43) [migration/7] (root,0,0,01:01:12/1383-07:13:19,44) [ksoftirqd/7] (root,0,0,00:00:00/1383-07:13:19,46) [kworker/7:0H] (root,0,0,00:00:00/1383-07:13:19,48) [kdevtmpfs] (root,0,0,00:00:00/1383-07:13:19,49) [netns] (root,0,0,00:00:41/1383-07:13:19,50) [khungtaskd] (root,0,0,00:00:00/1383-07:13:19,51) [writeback] (root,0,0,00:00:00/1383-07:13:19,52) [kintegrityd] (root,0,0,00:00:00/1383-07:13:19,53) [bioset] (root,0,0,00:00:00/1383-07:13:19,54) [bioset] (root,0,0,00:00:00/1383-07:13:19,55) [bioset] (root,0,0,00:00:00/1383-07:13:19,56) [kblockd] (root,0,0,00:00:00/1383-07:13:19,57) [md] (root,0,0,00:00:00/1383-07:13:19,58) [edac-poller] (root,0,0,00:00:00/1383-07:13:19,59) [watchdogd] (root,0,0,00:00:00/1383-07:13:19,66) [kswapd0] (root,0,0,00:00:00/1383-07:13:19,67) [ksmd] (root,0,0,00:08:07/1383-07:13:19,68) [khugepaged] (root,0,0,00:00:00/1383-07:13:19,69) [crypto] (root,0,0,00:00:00/1383-07:13:19,77) [kthrotld] (root,0,0,00:00:00/1383-07:13:19,79) [kmpath_rdacd] (root,0,0,00:00:00/1383-07:13:19,80) [kaluad] (root,0,0,00:00:00/1383-07:13:18,82) [kpsmoused] (root,0,0,00:00:00/1383-07:13:18,89) [ipv6_addrconf] (root,0,0,00:00:00/1383-07:13:18,102) [deferwq] (root,0,0,00:13:01/1383-07:13:18,139) [kauditd] (root,0,0,00:00:00/1383-07:13:17,281) [scsi_eh_0] (root,0,0,00:00:00/1383-07:13:17,282) [scsi_tmf_0] (root,0,0,00:00:00/1383-07:13:17,291) [ixgbe] (root,0,0,00:00:00/1383-07:13:17,304) [poll_megasas0_s] (root,0,0,00:00:00/1383-07:13:17,306) [ttm_swap] (root,0,0,05:57:53/1383-07:13:16,337) [jbd2/sda3-8] (root,0,0,00:00:00/1383-07:13:16,338) [ext4-rsv-conver] (root,80016,42752,02:21:37/1383-07:13:15,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:30:54/1383-05:58:12,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28416,1-06:12:57/1383-05:58:12,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11012,12:48:20/1383-05:57:58,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1383-07:13:15,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1383-07:13:15,527) [jbd2/sda2-8] (root,0,0,00:00:00/1383-07:13:15,528) [ext4-rsv-conver] (root,55532,1060,00:28:39/1383-07:13:15,573) /sbin/auditd (polkitd,613004,14012,02:37:21/1383-07:13:15,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:45:56/1383-07:13:15,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:06:51/1383-07:13:15,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:53:21/1383-07:13:15,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:45/1383-07:13:15,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1383-05:57:48,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1383-05:57:47,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,316344,1-21:06:23/1383-05:57:47,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1383-07:13:12,930) [kworker/3:1H] (root,0,0,00:00:02/2-13:56:13,1053) [kworker/7:2] (root,112900,4352,00:00:04/1383-07:13:06,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:03/1383-07:13:06,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:33/1383-07:13:06,1463) qmgr -l -t unix -u (root,0,0,00:00:00/03:00:13,1477) [kworker/3:2] (root,0,0,00:00:13/1383-07:13:05,1643) [kworker/6:1H] (root,0,0,00:00:37/1383-07:12:55,1646) [kworker/1:1H] (root,0,0,00:00:37/1383-07:12:31,1673) [kworker/0:1H] (root,0,0,00:00:46/1383-07:11:57,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1383-07:10:52,1750) /usr/lib/systemd/systemd-udevd (apache,278164,8948,00:00:06/5-19:43:12,2996) /usr/sbin/httpd -DFOREGROUND (apache,378052,12784,00:00:01/5-11:16:11,3696) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/13:26:13,3932) [kworker/4:1] (root,0,0,00:00:00/12:22:12,4608) [kworker/3:1] (apache,378180,12536,00:00:00/08:09:30,4855) /usr/sbin/httpd -DFOREGROUND (apache,378048,12436,00:00:00/08:04:59,6986) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,02:43:45/1383-07:10:41,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,737580,30600,02:16:05/1383-07:10:41,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:01/03:50:36,7732) [kworker/u16:1] (apache,378048,12552,00:00:00/08:01:58,8568) /usr/sbin/httpd -DFOREGROUND (root,110204,848,00:00:00/248-13:00:37,8910) /sbin/agetty --noclear tty1 linux (postfix,89848,4080,00:00:00/36:49,9894) pickup -l -t unix -u (apache,378052,12436,00:00:00/07:58:57,10093) /usr/sbin/httpd -DFOREGROUND (apache,378052,12576,00:00:00/07:57:27,11032) /usr/sbin/httpd -DFOREGROUND (apache,378180,12684,00:00:00/1-19:43:02,11068) /usr/sbin/httpd -DFOREGROUND (apache,378052,12540,00:00:00/07:55:57,11704) /usr/sbin/httpd -DFOREGROUND (apache,378052,12464,00:00:00/07:52:55,13217) /usr/sbin/httpd -DFOREGROUND (apache,378052,12440,00:00:00/07:52:55,13218) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:13/1383-07:10:33,13987) [kworker/7:1H] (root,0,0,00:00:08/1383-07:05:28,14018) [kworker/4:1H] (root,0,0,00:00:40/1383-07:10:25,14909) [kworker/2:1H] (root,0,0,00:00:00/26:12,15504) [kworker/6:1] (root,0,0,00:00:00/01:26:12,17159) [kworker/4:2] (ntp,25732,2012,00:20:54/1383-06:40:23,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19108,01:08:28/1383-06:40:03,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522632,16476,04:52:51/176-08:15:10,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,17:51:42/1383-06:38:44,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:04:18/1383-06:38:44,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:32/1383-06:35:33,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (onapp,98460,1984,00:00:01/23:26:12,19909) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368228,97444,00:00:11/23:26:12,19910) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/01:19:13,20811) [kworker/0:1] (onapp,284964,13872,00:00:00/23:24:13,20891) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/03:25:13,20985) [kworker/2:0] (onapp,781044,40456,03:52:59/369-02:53:37,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:17:40/369-02:53:37,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/04:23:12,23685) [kworker/1:2] (root,0,0,00:00:02/3-02:50:13,23796) [kworker/2:1] (root,0,0,00:00:00/09:48,23813) [kworker/u16:2] (root,0,0,00:00:00/12:46:12,24514) [kworker/5:0] (root,0,0,00:00:01/1-11:50:13,26664) [kworker/6:0] (onapp,368152,97348,00:00:11/23:12:52,26812) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,115412,1652,00:00:00/00:00,29023) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,29042) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,29043) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/02:06:12,29131) [kworker/5:2] (root,0,0,00:00:00/1-03:20:13,29518) [kworker/1:1] (root,0,0,00:00:00/09:26:12,30160) [kworker/0:0] (root,0,0,00:00:00/06:16:31,30562) [kworker/7:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-13 22:26 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350178058235Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:09:48/1381-08:10:10,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1381-08:10:10,2) [kthreadd] (root,0,0,00:00:00/1381-08:10:10,4) [kworker/0:0H] (root,0,0,00:15:02/1381-08:10:10,6) [ksoftirqd/0] (root,0,0,00:01:12/1381-08:10:10,7) [migration/0] (root,0,0,00:00:00/1381-08:10:10,8) [rcu_bh] (root,0,0,18:06:14/1381-08:10:10,9) [rcu_sched] (root,0,0,00:00:00/1381-08:10:10,10) [lru-add-drain] (root,0,0,00:06:05/1381-08:10:10,11) [watchdog/0] (root,0,0,00:06:08/1381-08:10:10,12) [watchdog/1] (root,0,0,00:01:10/1381-08:10:10,13) [migration/1] (root,0,0,00:12:38/1381-08:10:10,14) [ksoftirqd/1] (root,0,0,00:00:00/1381-08:10:10,16) [kworker/1:0H] (root,0,0,00:05:27/1381-08:10:10,17) [watchdog/2] (root,0,0,00:01:10/1381-08:10:10,18) [migration/2] (root,0,0,00:12:31/1381-08:10:10,19) [ksoftirqd/2] (root,0,0,00:00:00/1381-08:10:10,21) [kworker/2:0H] (root,0,0,00:05:28/1381-08:10:10,22) [watchdog/3] (root,0,0,00:01:11/1381-08:10:10,23) [migration/3] (root,0,0,00:13:07/1381-08:10:10,24) [ksoftirqd/3] (root,0,0,00:00:00/1381-08:10:10,26) [kworker/3:0H] (root,0,0,00:05:07/1381-08:10:10,27) [watchdog/4] (root,0,0,00:10:51/1381-08:10:10,28) [migration/4] (root,0,0,00:46:24/1381-08:10:10,29) [ksoftirqd/4] (root,0,0,00:00:00/1381-08:10:10,31) [kworker/4:0H] (root,0,0,00:05:21/1381-08:10:10,32) [watchdog/5] (root,0,0,00:10:37/1381-08:10:10,33) [migration/5] (root,0,0,00:52:20/1381-08:10:10,34) [ksoftirqd/5] (root,0,0,00:00:00/1381-08:10:10,36) [kworker/5:0H] (root,0,0,00:05:12/1381-08:10:10,37) [watchdog/6] (root,0,0,00:10:20/1381-08:10:10,38) [migration/6] (root,0,0,00:52:55/1381-08:10:10,39) [ksoftirqd/6] (root,0,0,00:00:00/1381-08:10:10,41) [kworker/6:0H] (root,0,0,00:05:37/1381-08:10:10,42) [watchdog/7] (root,0,0,00:10:38/1381-08:10:10,43) [migration/7] (root,0,0,01:01:08/1381-08:10:10,44) [ksoftirqd/7] (root,0,0,00:00:00/1381-08:10:10,46) [kworker/7:0H] (root,0,0,00:00:00/1381-08:10:10,48) [kdevtmpfs] (root,0,0,00:00:00/1381-08:10:10,49) [netns] (root,0,0,00:00:41/1381-08:10:10,50) [khungtaskd] (root,0,0,00:00:00/1381-08:10:10,51) [writeback] (root,0,0,00:00:00/1381-08:10:10,52) [kintegrityd] (root,0,0,00:00:00/1381-08:10:10,53) [bioset] (root,0,0,00:00:00/1381-08:10:10,54) [bioset] (root,0,0,00:00:00/1381-08:10:10,55) [bioset] (root,0,0,00:00:00/1381-08:10:10,56) [kblockd] (root,0,0,00:00:00/1381-08:10:10,57) [md] (root,0,0,00:00:00/1381-08:10:10,58) [edac-poller] (root,0,0,00:00:00/1381-08:10:10,59) [watchdogd] (root,0,0,00:00:00/1381-08:10:10,66) [kswapd0] (root,0,0,00:00:00/1381-08:10:10,67) [ksmd] (root,0,0,00:08:06/1381-08:10:10,68) [khugepaged] (root,0,0,00:00:00/1381-08:10:10,69) [crypto] (root,0,0,00:00:00/1381-08:10:10,77) [kthrotld] (root,0,0,00:00:00/1381-08:10:10,79) [kmpath_rdacd] (root,0,0,00:00:00/1381-08:10:10,80) [kaluad] (root,0,0,00:00:00/1381-08:10:09,82) [kpsmoused] (root,0,0,00:00:00/1381-08:10:09,89) [ipv6_addrconf] (root,0,0,00:00:00/1381-08:10:09,102) [deferwq] (root,0,0,00:13:00/1381-08:10:09,139) [kauditd] (root,0,0,00:00:00/1381-08:10:08,281) [scsi_eh_0] (root,0,0,00:00:00/1381-08:10:08,282) [scsi_tmf_0] (root,0,0,00:00:00/1381-08:10:08,291) [ixgbe] (root,0,0,00:00:00/1381-08:10:08,304) [poll_megasas0_s] (root,0,0,00:00:00/1381-08:10:08,306) [ttm_swap] (root,0,0,05:57:45/1381-08:10:07,337) [jbd2/sda3-8] (root,0,0,00:00:00/1381-08:10:07,338) [ext4-rsv-conver] (root,116976,64036,02:21:27/1381-08:10:06,417) /usr/lib/systemd/systemd-journald (root,301156,4128,00:30:52/1381-06:55:03,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28416,1-06:10:21/1381-06:55:03,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11012,12:47:15/1381-06:54:49,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1381-08:10:06,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1381-08:10:06,527) [jbd2/sda2-8] (root,0,0,00:00:00/1381-08:10:06,528) [ext4-rsv-conver] (root,55532,1060,00:28:36/1381-08:10:06,573) /sbin/auditd (polkitd,613004,14012,02:37:09/1381-08:10:06,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:45:39/1381-08:10:06,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:06:36/1381-08:10:06,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:52:49/1381-08:10:06,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:42/1381-08:10:06,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1381-06:54:39,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1381-06:54:38,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,334776,1-21:03:01/1381-06:54:38,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1381-08:10:03,930) [kworker/3:1H] (root,0,0,00:00:00/14:53:04,1053) [kworker/7:2] (root,112900,4352,00:00:04/1381-08:09:57,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:02/1381-08:09:57,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:33/1381-08:09:57,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1381-08:09:56,1643) [kworker/6:1H] (root,0,0,00:00:37/1381-08:09:46,1646) [kworker/1:1H] (root,0,0,00:00:37/1381-08:09:22,1673) [kworker/0:1H] (root,0,0,00:00:46/1381-08:08:48,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1381-08:07:43,1750) /usr/lib/systemd/systemd-udevd (apache,278164,8948,00:00:04/3-20:40:03,2996) /usr/sbin/httpd -DFOREGROUND (apache,378048,12780,00:00:01/3-20:40:03,2999) /usr/sbin/httpd -DFOREGROUND (apache,378048,12812,00:00:01/3-20:40:03,3000) /usr/sbin/httpd -DFOREGROUND (apache,378052,12820,00:00:01/3-20:39:40,3036) /usr/sbin/httpd -DFOREGROUND (apache,378052,12768,00:00:01/3-12:13:02,3696) /usr/sbin/httpd -DFOREGROUND (apache,378048,12768,00:00:01/3-12:13:01,3697) /usr/sbin/httpd -DFOREGROUND (apache,378184,12848,00:00:01/3-12:13:00,3698) /usr/sbin/httpd -DFOREGROUND (apache,378048,12740,00:00:00/3-04:47:28,5404) /usr/sbin/httpd -DFOREGROUND (root,115412,1648,00:00:00/00:00,5484) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,5503) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,5504) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,378048,12580,00:00:00/18:54:45,5683) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/03:08:03,6137) [kworker/6:1] (root,574280,19564,02:43:31/1381-08:07:32,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740092,35572,02:15:55/1381-08:07:32,7698) /usr/sbin/rsyslogd -n (apache,378048,12708,00:00:00/1-10:37:01,7890) /usr/sbin/httpd -DFOREGROUND (root,110204,848,00:00:00/246-13:57:28,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:00/53:04,10540) [kworker/3:0] (root,0,0,00:00:00/49:29,12075) [kworker/u16:1] (root,0,0,00:00:00/48:02,13057) [kworker/1:2] (root,0,0,00:00:13/1381-08:07:24,13987) [kworker/7:1H] (root,0,0,00:00:08/1381-08:02:19,14018) [kworker/4:1H] (root,0,0,00:00:40/1381-08:07:16,14909) [kworker/2:1H] (ntp,25732,2012,00:20:52/1381-07:37:14,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19108,01:08:22/1381-07:36:54,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522632,16288,04:49:22/174-09:12:01,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (onapp,216524,22168,17:50:10/1381-07:35:35,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,4948,01:04:13/1381-07:35:35,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:01/1-15:31:03,19169) [kworker/3:2] (root,27168,1132,00:23:31/1381-07:32:24,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:04/5-07:52:46,20530) [kworker/5:2] (root,0,0,00:00:00/18:23:03,22962) [kworker/0:2] (onapp,781044,40460,03:52:13/367-03:50:28,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:17:34/367-03:50:28,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/1-03:47:04,23796) [kworker/2:1] (root,0,0,00:00:00/23:04,25891) [kworker/2:2] (onapp,98460,1984,00:00:00/23:03,25911) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362116,91040,00:00:00/23:03,25912) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362280,91136,00:00:00/22:03,26401) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/13:00:04,26528) [kworker/4:1] (onapp,283912,11640,00:00:00/21:00,26955) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (apache,378048,12688,00:00:00/1-06:49:01,27625) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/18:02,28565) [kworker/5:1] (root,0,0,00:00:01/1-20:27:04,29096) [kworker/1:1] (postfix,89848,4080,00:00:00/15:37,29610) pickup -l -t unix -u (root,0,0,00:00:00/15:25,30039) [kworker/6:2] (root,0,0,00:00:00/01:16:43,30683) [kworker/u16:0] (root,0,0,00:00:00/13:03,31185) [kworker/7:0] (root,0,0,00:00:00/03:22:04,31274) [kworker/0:1] (root,0,0,00:00:00/01:14:04,32126) [kworker/4:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-11 23:23 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735018309b4dfFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3996,06:09:21/1379-11:49:54,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:13/1379-11:49:54,2) [kthreadd] (root,0,0,00:00:00/1379-11:49:54,4) [kworker/0:0H] (root,0,0,00:15:00/1379-11:49:54,6) [ksoftirqd/0] (root,0,0,00:01:12/1379-11:49:54,7) [migration/0] (root,0,0,00:00:00/1379-11:49:54,8) [rcu_bh] (root,0,0,18:05:03/1379-11:49:54,9) [rcu_sched] (root,0,0,00:00:00/1379-11:49:54,10) [lru-add-drain] (root,0,0,00:06:05/1379-11:49:54,11) [watchdog/0] (root,0,0,00:06:07/1379-11:49:54,12) [watchdog/1] (root,0,0,00:01:10/1379-11:49:54,13) [migration/1] (root,0,0,00:12:37/1379-11:49:54,14) [ksoftirqd/1] (root,0,0,00:00:00/1379-11:49:54,16) [kworker/1:0H] (root,0,0,00:05:27/1379-11:49:54,17) [watchdog/2] (root,0,0,00:01:10/1379-11:49:54,18) [migration/2] (root,0,0,00:12:30/1379-11:49:54,19) [ksoftirqd/2] (root,0,0,00:00:00/1379-11:49:54,21) [kworker/2:0H] (root,0,0,00:05:28/1379-11:49:54,22) [watchdog/3] (root,0,0,00:01:11/1379-11:49:54,23) [migration/3] (root,0,0,00:13:06/1379-11:49:54,24) [ksoftirqd/3] (root,0,0,00:00:00/1379-11:49:54,26) [kworker/3:0H] (root,0,0,00:05:07/1379-11:49:54,27) [watchdog/4] (root,0,0,00:10:50/1379-11:49:54,28) [migration/4] (root,0,0,00:46:21/1379-11:49:54,29) [ksoftirqd/4] (root,0,0,00:00:00/1379-11:49:54,31) [kworker/4:0H] (root,0,0,00:05:20/1379-11:49:54,32) [watchdog/5] (root,0,0,00:10:37/1379-11:49:54,33) [migration/5] (root,0,0,00:52:17/1379-11:49:54,34) [ksoftirqd/5] (root,0,0,00:00:00/1379-11:49:54,36) [kworker/5:0H] (root,0,0,00:05:11/1379-11:49:54,37) [watchdog/6] (root,0,0,00:10:19/1379-11:49:54,38) [migration/6] (root,0,0,00:52:52/1379-11:49:54,39) [ksoftirqd/6] (root,0,0,00:00:00/1379-11:49:54,41) [kworker/6:0H] (root,0,0,00:05:36/1379-11:49:54,42) [watchdog/7] (root,0,0,00:10:37/1379-11:49:54,43) [migration/7] (root,0,0,01:01:04/1379-11:49:54,44) [ksoftirqd/7] (root,0,0,00:00:00/1379-11:49:54,46) [kworker/7:0H] (root,0,0,00:00:00/1379-11:49:54,48) [kdevtmpfs] (root,0,0,00:00:00/1379-11:49:54,49) [netns] (root,0,0,00:00:40/1379-11:49:54,50) [khungtaskd] (root,0,0,00:00:00/1379-11:49:54,51) [writeback] (root,0,0,00:00:00/1379-11:49:54,52) [kintegrityd] (root,0,0,00:00:00/1379-11:49:54,53) [bioset] (root,0,0,00:00:00/1379-11:49:54,54) [bioset] (root,0,0,00:00:00/1379-11:49:54,55) [bioset] (root,0,0,00:00:00/1379-11:49:54,56) [kblockd] (root,0,0,00:00:00/1379-11:49:54,57) [md] (root,0,0,00:00:00/1379-11:49:54,58) [edac-poller] (root,0,0,00:00:00/1379-11:49:54,59) [watchdogd] (root,0,0,00:00:00/1379-11:49:54,66) [kswapd0] (root,0,0,00:00:00/1379-11:49:54,67) [ksmd] (root,0,0,00:08:06/1379-11:49:54,68) [khugepaged] (root,0,0,00:00:00/1379-11:49:54,69) [crypto] (root,0,0,00:00:00/1379-11:49:54,77) [kthrotld] (root,0,0,00:00:00/1379-11:49:54,79) [kmpath_rdacd] (root,0,0,00:00:00/1379-11:49:54,80) [kaluad] (root,0,0,00:00:00/1379-11:49:53,82) [kpsmoused] (root,0,0,00:00:00/1379-11:49:53,89) [ipv6_addrconf] (root,0,0,00:00:00/1379-11:49:53,102) [deferwq] (root,0,0,00:12:59/1379-11:49:53,139) [kauditd] (root,0,0,00:00:00/1379-11:49:52,281) [scsi_eh_0] (root,0,0,00:00:00/1379-11:49:52,282) [scsi_tmf_0] (root,0,0,00:00:00/1379-11:49:52,291) [ixgbe] (root,0,0,00:00:00/1379-11:49:52,304) [poll_megasas0_s] (root,0,0,00:00:00/1379-11:49:52,306) [ttm_swap] (root,0,0,05:57:37/1379-11:49:51,337) [jbd2/sda3-8] (root,0,0,00:00:00/1379-11:49:51,338) [ext4-rsv-conver] (root,115412,1652,00:00:00/00:00,413) /bin/bash /usr/bin/check_mk_agent (root,39060,5972,02:21:18/1379-11:49:50,417) /usr/lib/systemd/systemd-journald (root,51732,1660,00:00:00/00:00,433) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,434) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,301156,4128,00:30:50/1379-10:34:47,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,28416,1-06:07:55/1379-10:34:47,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,11012,12:46:13/1379-10:34:33,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/1379-11:49:50,524) [kvm-irqfd-clean] (root,0,0,00:00:00/1379-11:49:50,527) [jbd2/sda2-8] (root,0,0,00:00:00/1379-11:49:50,528) [ext4-rsv-conver] (root,0,0,00:00:00/11:33:48,563) [kworker/0:1] (root,55532,1060,00:28:34/1379-11:49:50,573) /sbin/auditd (polkitd,613004,14012,02:36:58/1379-11:49:50,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1304,03:45:22/1379-11:49:50,613) /usr/sbin/irqbalance --foreground (root,26516,1884,03:06:23/1379-11:49:50,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,06:52:19/1379-11:49:50,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:31:39/1379-11:49:50,624) /usr/sbin/crond -n (root,799724,19864,00:00:00/1379-10:34:23,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/1379-10:34:22,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,332728,1-20:59:41/1379-10:34:22,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:39/1379-11:49:47,930) [kworker/3:1H] (root,112900,4352,00:00:04/1379-11:49:41,1115) /usr/sbin/sshd -D (root,89708,2212,00:08:02/1379-11:49:41,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:01:33/1379-11:49:41,1463) qmgr -l -t unix -u (root,0,0,00:00:13/1379-11:49:40,1643) [kworker/6:1H] (root,0,0,00:00:37/1379-11:49:30,1646) [kworker/1:1H] (root,0,0,00:00:37/1379-11:49:06,1673) [kworker/0:1H] (root,0,0,00:00:46/1379-11:48:32,1674) [kworker/5:1H] (root,45408,1780,00:00:00/1379-11:47:27,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/57:47,2824) [kworker/4:2] (apache,278164,8948,00:00:02/2-00:19:47,2996) /usr/sbin/httpd -DFOREGROUND (apache,378052,12720,00:00:00/2-00:19:47,2998) /usr/sbin/httpd -DFOREGROUND (apache,378048,12744,00:00:00/2-00:19:47,2999) /usr/sbin/httpd -DFOREGROUND (apache,378048,12724,00:00:00/2-00:19:47,3000) /usr/sbin/httpd -DFOREGROUND (apache,378052,12752,00:00:00/2-00:19:24,3036) /usr/sbin/httpd -DFOREGROUND (postfix,89848,4084,00:00:00/57:01,3317) pickup -l -t unix -u (apache,378052,12704,00:00:00/1-15:52:46,3696) /usr/sbin/httpd -DFOREGROUND (apache,378048,12716,00:00:00/1-15:52:45,3697) /usr/sbin/httpd -DFOREGROUND (apache,378184,12816,00:00:00/1-15:52:44,3698) /usr/sbin/httpd -DFOREGROUND (apache,378052,12704,00:00:00/1-15:52:43,3699) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/03:01:47,4028) [kworker/7:0] (onapp,98460,1980,00:00:00/04:02:47,5095) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,364008,93172,00:00:02/04:02:47,5096) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,378048,12692,00:00:00/1-08:27:12,5404) /usr/sbin/httpd -DFOREGROUND (onapp,364220,93228,00:00:02/04:01:47,5589) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11656,00:00:00/04:00:42,6139) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,574280,19564,02:43:18/1379-11:47:16,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,731336,9768,02:15:44/1379-11:47:16,7698) /usr/sbin/rsyslogd -n (root,110204,848,00:00:00/244-17:37:12,8910) /sbin/agetty --noclear tty1 linux (root,0,0,00:00:01/1-20:56:48,9842) [kworker/2:0] (root,0,0,00:00:00/42:13,10601) [kworker/u16:0] (root,0,0,00:00:01/1-17:42:48,12078) [kworker/7:1] (root,0,0,00:00:00/01:42:48,12206) [kworker/3:2] (root,0,0,00:00:13/1379-11:47:08,13987) [kworker/7:1H] (root,0,0,00:00:08/1379-11:42:03,14018) [kworker/4:1H] (root,0,0,00:00:40/1379-11:47:00,14909) [kworker/2:1H] (root,0,0,00:00:02/3-12:43:30,16471) [kworker/6:0] (ntp,25732,2012,00:20:51/1379-11:16:58,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,377780,19108,01:08:16/1379-11:16:38,18605) /usr/sbin/httpd -DFOREGROUND (onapp,1522632,16420,04:46:05/172-12:51:45,18796) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/26:48,18833) [kworker/5:0] (onapp,216524,22168,17:48:44/1379-11:15:19,18985) python /omd/sites/onapp/bin/mkeventd (onapp,98460,5016,01:04:07/1379-11:15:19,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:23:29/1379-11:12:08,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,378048,12744,00:00:00/1-20:36:36,20092) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:03/3-11:32:30,20530) [kworker/5:2] (root,0,0,00:00:00/03:32:48,20636) [kworker/0:0] (root,0,0,00:00:00/03:28:48,22668) [kworker/2:1] (root,0,0,00:00:00/01:20:38,23462) [kworker/u16:2] (onapp,781044,40416,03:51:31/365-07:30:12,23618) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,828,00:17:29/365-07:30:12,23662) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/03:24:47,24718) [kworker/4:1] (root,0,0,00:00:00/01:14:09,26892) [kworker/6:2] (root,0,0,00:00:00/1-03:32:47,27315) [kworker/3:1] (root,0,0,00:00:00/08:32:48,28646) [kworker/1:2] (root,0,0,00:00:00/06:48,29096) [kworker/1:1] (root,0,0,00:00:00/02:48,31137) [kworker/5:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2024-09-10 03:02 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501485a62baFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:50:08/861-01:55:52,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:09/861-01:55:52,2) [kthreadd] (root,0,0,00:00:00/861-01:55:52,4) [kworker/0:0H] (root,0,0,00:09:08/861-01:55:52,6) [ksoftirqd/0] (root,0,0,00:00:42/861-01:55:52,7) [migration/0] (root,0,0,00:00:00/861-01:55:52,8) [rcu_bh] (root,0,0,11:31:05/861-01:55:52,9) [rcu_sched] (root,0,0,00:00:00/861-01:55:52,10) [lru-add-drain] (root,0,0,00:03:48/861-01:55:52,11) [watchdog/0] (root,0,0,00:03:49/861-01:55:52,12) [watchdog/1] (root,0,0,00:00:41/861-01:55:52,13) [migration/1] (root,0,0,00:07:21/861-01:55:52,14) [ksoftirqd/1] (root,0,0,00:00:00/861-01:55:52,16) [kworker/1:0H] (root,0,0,00:03:24/861-01:55:52,17) [watchdog/2] (root,0,0,00:00:41/861-01:55:52,18) [migration/2] (root,0,0,00:07:15/861-01:55:52,19) [ksoftirqd/2] (root,0,0,00:00:00/861-01:55:52,21) [kworker/2:0H] (root,0,0,00:03:24/861-01:55:52,22) [watchdog/3] (root,0,0,00:00:41/861-01:55:52,23) [migration/3] (root,0,0,00:07:47/861-01:55:52,24) [ksoftirqd/3] (root,0,0,00:00:00/861-01:55:52,26) [kworker/3:0H] (root,0,0,00:03:11/861-01:55:52,27) [watchdog/4] (root,0,0,00:06:43/861-01:55:52,28) [migration/4] (root,0,0,00:28:25/861-01:55:52,29) [ksoftirqd/4] (root,0,0,00:00:00/861-01:55:52,31) [kworker/4:0H] (root,0,0,00:03:20/861-01:55:52,32) [watchdog/5] (root,0,0,00:06:34/861-01:55:52,33) [migration/5] (root,0,0,00:32:06/861-01:55:52,34) [ksoftirqd/5] (root,0,0,00:00:00/861-01:55:52,36) [kworker/5:0H] (root,0,0,00:03:14/861-01:55:52,37) [watchdog/6] (root,0,0,00:06:22/861-01:55:52,38) [migration/6] (root,0,0,00:32:56/861-01:55:52,39) [ksoftirqd/6] (root,0,0,00:00:00/861-01:55:52,41) [kworker/6:0H] (root,0,0,00:03:29/861-01:55:52,42) [watchdog/7] (root,0,0,00:06:32/861-01:55:52,43) [migration/7] (root,0,0,00:37:48/861-01:55:52,44) [ksoftirqd/7] (root,0,0,00:00:00/861-01:55:52,46) [kworker/7:0H] (root,0,0,00:00:00/861-01:55:52,48) [kdevtmpfs] (root,0,0,00:00:00/861-01:55:52,49) [netns] (root,0,0,00:00:25/861-01:55:52,50) [khungtaskd] (root,0,0,00:00:00/861-01:55:52,51) [writeback] (root,0,0,00:00:00/861-01:55:52,52) [kintegrityd] (root,0,0,00:00:00/861-01:55:52,53) [bioset] (root,0,0,00:00:00/861-01:55:52,54) [bioset] (root,0,0,00:00:00/861-01:55:52,55) [bioset] (root,0,0,00:00:00/861-01:55:52,56) [kblockd] (root,0,0,00:00:00/861-01:55:52,57) [md] (root,0,0,00:00:00/861-01:55:52,58) [edac-poller] (root,0,0,00:00:00/861-01:55:52,59) [watchdogd] (root,0,0,00:00:00/861-01:55:52,66) [kswapd0] (root,0,0,00:00:00/861-01:55:52,67) [ksmd] (root,0,0,00:05:02/861-01:55:52,68) [khugepaged] (root,0,0,00:00:00/861-01:55:52,69) [crypto] (root,0,0,00:00:00/861-01:55:52,77) [kthrotld] (root,0,0,00:00:00/861-01:55:52,79) [kmpath_rdacd] (root,0,0,00:00:00/861-01:55:52,80) [kaluad] (root,0,0,00:00:00/861-01:55:51,82) [kpsmoused] (root,0,0,00:00:00/861-01:55:51,89) [ipv6_addrconf] (root,0,0,00:00:00/861-01:55:51,102) [deferwq] (root,0,0,00:08:12/861-01:55:51,139) [kauditd] (root,0,0,00:00:00/861-01:55:50,281) [scsi_eh_0] (root,0,0,00:00:00/861-01:55:50,282) [scsi_tmf_0] (root,0,0,00:00:00/861-01:55:50,291) [ixgbe] (root,0,0,00:00:00/861-01:55:50,304) [poll_megasas0_s] (root,0,0,00:00:00/861-01:55:50,306) [ttm_swap] (root,0,0,03:28:15/861-01:55:49,337) [jbd2/sda3-8] (root,0,0,00:00:00/861-01:55:49,338) [ext4-rsv-conver] (root,116992,62624,01:29:21/861-01:55:48,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:19:08/861-00:40:45,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27940,18:45:59/861-00:40:45,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10620,07:58:54/861-00:40:31,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/861-01:55:48,524) [kvm-irqfd-clean] (root,0,0,00:00:00/861-01:55:48,527) [jbd2/sda2-8] (root,0,0,00:00:00/861-01:55:48,528) [ext4-rsv-conver] (root,55532,1060,00:17:58/861-01:55:48,573) /sbin/auditd (polkitd,613004,14012,01:39:04/861-01:55:48,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,02:19:31/861-01:55:48,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:57:33/861-01:55:48,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,04:19:53/861-01:55:48,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:19:56/861-01:55:48,624) /usr/sbin/crond -n (root,110204,848,00:00:00/861-01:55:48,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/861-00:40:21,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/861-00:40:20,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,318420,1-03:47:36/861-00:40:20,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:24/861-01:55:45,930) [kworker/3:1H] (root,112900,4352,00:00:04/861-01:55:39,1115) /usr/sbin/sshd -D (root,89708,2212,00:05:01/861-01:55:39,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:58/861-01:55:39,1463) qmgr -l -t unix -u (root,0,0,00:00:08/861-01:55:38,1643) [kworker/6:1H] (root,0,0,00:00:22/861-01:55:28,1646) [kworker/1:1H] (root,0,0,00:00:23/861-01:55:04,1673) [kworker/0:1H] (root,0,0,00:00:31/861-01:54:30,1674) [kworker/5:1H] (root,34960,1744,00:00:00/861-01:53:25,1750) /usr/lib/systemd/systemd-udevd (apache,277364,8148,00:00:01/1-14:42:46,3218) /usr/sbin/httpd -DFOREGROUND (apache,377248,11888,00:00:00/1-14:42:46,3219) /usr/sbin/httpd -DFOREGROUND (apache,377244,12316,00:00:00/1-14:42:46,3220) /usr/sbin/httpd -DFOREGROUND (apache,377244,12296,00:00:00/1-14:42:46,3221) /usr/sbin/httpd -DFOREGROUND (apache,377244,12284,00:00:00/1-14:42:46,3222) /usr/sbin/httpd -DFOREGROUND (apache,377248,11896,00:00:00/1-14:42:46,3223) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/11:15:33,3440) [kworker/3:1] (root,574280,19564,01:42:09/861-01:53:14,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740088,38444,01:24:57/861-01:53:14,7698) /usr/sbin/rsyslogd -n (postfix,89848,4080,00:00:00/38:47,10426) pickup -l -t unix -u (root,0,0,00:00:00/38:46,10500) [kworker/7:1] (root,0,0,00:00:07/861-01:53:06,13987) [kworker/7:1H] (root,0,0,00:00:05/861-01:48:01,14018) [kworker/4:1H] (root,0,0,00:00:00/31:45,14456) [kworker/3:0] (root,0,0,00:00:24/861-01:52:58,14909) [kworker/2:1H] (root,0,0,00:00:00/09:58:45,15002) [kworker/7:0] (apache,377248,12280,00:00:00/1-14:17:02,17724) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:13:08/861-01:22:56,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376980,18304,00:42:39/861-01:22:36,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,11:07:15/861-01:21:17,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,56048,10:27:20/861-01:21:17,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:40:51/861-01:21:17,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,5016,00:40:02/861-01:21:17,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/13:38:46,19232) [kworker/2:2] (root,27168,1132,00:14:46/861-01:18:06,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,377248,12248,00:00:00/1-12:20:16,19616) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/04:08:46,20211) [kworker/2:1] (root,0,0,00:00:00/19:48,21142) [kworker/4:0] (root,0,0,00:00:00/15:50,23285) [kworker/u16:2] (root,0,0,00:00:00/02:08:45,23914) [kworker/0:2] (root,0,0,00:00:00/02:08:45,23917) [kworker/1:0] (root,0,0,00:00:00/1-02:43:50,24432) [kworker/1:1] (onapp,1516320,8024,00:10:47/5-04:57:42,25612) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/01:07:46,26401) [kworker/5:0] (root,0,0,00:00:00/09:50,26677) [kworker/u16:1] (root,0,0,00:00:00/06:47:49,26697) [kworker/4:1] (root,0,0,00:00:00/18:08:46,26969) [kworker/6:0] (onapp,98460,1984,00:00:00/18:08:46,26971) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368076,97304,00:00:09/18:08:46,26972) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/08:45,27517) [kworker/6:2] (onapp,368144,97352,00:00:08/18:07:45,27556) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,377244,11804,00:00:00/1-04:29:51,28669) /usr/sbin/httpd -DFOREGROUND (apache,377244,11648,00:00:00/1-04:29:46,28776) /usr/sbin/httpd -DFOREGROUND (apache,377244,11832,00:00:00/1-04:29:44,28870) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/14:17:49,29246) [kworker/0:0] (onapp,283912,11664,00:00:00/18:04:48,29265) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/20:53:49,29906) [kworker/5:2] (root,0,0,00:00:00/03:48,30317) [kworker/u16:0] (root,115412,1648,00:00:00/00:00,32590) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,32609) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,32610) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2023-04-10 17:08 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501375a1c2bFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:43:19/836-09:29:45,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:08/836-09:29:45,2) [kthreadd] (root,0,0,00:00:00/836-09:29:45,4) [kworker/0:0H] (root,0,0,00:08:53/836-09:29:45,6) [ksoftirqd/0] (root,0,0,00:00:41/836-09:29:45,7) [migration/0] (root,0,0,00:00:00/836-09:29:45,8) [rcu_bh] (root,0,0,11:09:35/836-09:29:45,9) [rcu_sched] (root,0,0,00:00:00/836-09:29:45,10) [lru-add-drain] (root,0,0,00:03:41/836-09:29:45,11) [watchdog/0] (root,0,0,00:03:42/836-09:29:45,12) [watchdog/1] (root,0,0,00:00:40/836-09:29:45,13) [migration/1] (root,0,0,00:07:08/836-09:29:45,14) [ksoftirqd/1] (root,0,0,00:00:00/836-09:29:45,16) [kworker/1:0H] (root,0,0,00:03:18/836-09:29:45,17) [watchdog/2] (root,0,0,00:00:39/836-09:29:45,18) [migration/2] (root,0,0,00:07:01/836-09:29:45,19) [ksoftirqd/2] (root,0,0,00:00:00/836-09:29:45,21) [kworker/2:0H] (root,0,0,00:03:18/836-09:29:45,22) [watchdog/3] (root,0,0,00:00:40/836-09:29:45,23) [migration/3] (root,0,0,00:07:34/836-09:29:45,24) [ksoftirqd/3] (root,0,0,00:00:00/836-09:29:45,26) [kworker/3:0H] (root,0,0,00:03:06/836-09:29:45,27) [watchdog/4] (root,0,0,00:06:30/836-09:29:45,28) [migration/4] (root,0,0,00:27:25/836-09:29:45,29) [ksoftirqd/4] (root,0,0,00:00:00/836-09:29:45,31) [kworker/4:0H] (root,0,0,00:03:14/836-09:29:45,32) [watchdog/5] (root,0,0,00:06:21/836-09:29:45,33) [migration/5] (root,0,0,00:30:59/836-09:29:45,34) [ksoftirqd/5] (root,0,0,00:00:00/836-09:29:45,36) [kworker/5:0H] (root,0,0,00:03:09/836-09:29:45,37) [watchdog/6] (root,0,0,00:06:09/836-09:29:45,38) [migration/6] (root,0,0,00:31:51/836-09:29:45,39) [ksoftirqd/6] (root,0,0,00:00:00/836-09:29:45,41) [kworker/6:0H] (root,0,0,00:03:24/836-09:29:45,42) [watchdog/7] (root,0,0,00:06:19/836-09:29:45,43) [migration/7] (root,0,0,00:36:29/836-09:29:45,44) [ksoftirqd/7] (root,0,0,00:00:00/836-09:29:45,46) [kworker/7:0H] (root,0,0,00:00:00/836-09:29:45,48) [kdevtmpfs] (root,0,0,00:00:00/836-09:29:45,49) [netns] (root,0,0,00:00:24/836-09:29:45,50) [khungtaskd] (root,0,0,00:00:00/836-09:29:45,51) [writeback] (root,0,0,00:00:00/836-09:29:45,52) [kintegrityd] (root,0,0,00:00:00/836-09:29:45,53) [bioset] (root,0,0,00:00:00/836-09:29:45,54) [bioset] (root,0,0,00:00:00/836-09:29:45,55) [bioset] (root,0,0,00:00:00/836-09:29:45,56) [kblockd] (root,0,0,00:00:00/836-09:29:45,57) [md] (root,0,0,00:00:00/836-09:29:45,58) [edac-poller] (root,0,0,00:00:00/836-09:29:45,59) [watchdogd] (root,0,0,00:00:00/836-09:29:45,66) [kswapd0] (root,0,0,00:00:00/836-09:29:45,67) [ksmd] (root,0,0,00:04:53/836-09:29:45,68) [khugepaged] (root,0,0,00:00:00/836-09:29:45,69) [crypto] (root,0,0,00:00:00/836-09:29:45,77) [kthrotld] (root,0,0,00:00:00/836-09:29:45,79) [kmpath_rdacd] (root,0,0,00:00:00/836-09:29:45,80) [kaluad] (root,0,0,00:00:00/836-09:29:44,82) [kpsmoused] (root,0,0,00:00:00/836-09:29:44,89) [ipv6_addrconf] (root,0,0,00:00:00/836-09:29:44,102) [deferwq] (root,0,0,00:07:58/836-09:29:44,139) [kauditd] (root,0,0,00:00:00/836-09:29:43,281) [scsi_eh_0] (root,0,0,00:00:00/836-09:29:43,282) [scsi_tmf_0] (root,0,0,00:00:00/836-09:29:43,291) [ixgbe] (root,0,0,00:00:00/836-09:29:43,304) [poll_megasas0_s] (root,0,0,00:00:00/836-09:29:43,306) [ttm_swap] (root,0,0,03:17:38/836-09:29:42,337) [jbd2/sda3-8] (root,0,0,00:00:00/836-09:29:42,338) [ext4-rsv-conver] (root,137440,75632,01:26:43/836-09:29:41,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:18:37/836-08:14:38,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27896,18:13:22/836-08:14:38,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10600,07:45:18/836-08:14:24,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/836-09:29:41,524) [kvm-irqfd-clean] (root,0,0,00:00:00/836-09:29:41,527) [jbd2/sda2-8] (root,0,0,00:00:00/836-09:29:41,528) [ext4-rsv-conver] (root,55532,1060,00:17:27/836-09:29:41,573) /sbin/auditd (polkitd,613004,14012,01:36:13/836-09:29:41,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,02:15:31/836-09:29:41,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:54:10/836-09:29:41,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,04:12:24/836-09:29:41,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:19:22/836-09:29:41,624) /usr/sbin/crond -n (root,110204,848,00:00:00/836-09:29:41,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/836-08:14:14,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/836-08:14:13,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,336656,1-02:58:32/836-08:14:13,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:00/01:32:30,757) [kworker/1:1] (root,0,0,00:00:23/836-09:29:38,930) [kworker/3:1H] (root,112900,4352,00:00:04/836-09:29:32,1115) /usr/sbin/sshd -D (root,89708,2212,00:04:52/836-09:29:32,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:56/836-09:29:32,1463) qmgr -l -t unix -u (root,0,0,00:00:08/836-09:29:31,1643) [kworker/6:1H] (root,0,0,00:00:22/836-09:29:21,1646) [kworker/1:1H] (root,0,0,00:00:22/836-09:28:57,1673) [kworker/0:1H] (root,0,0,00:00:30/836-09:28:23,1674) [kworker/5:1H] (root,34960,1744,00:00:00/836-09:27:18,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/32:38,2708) [kworker/5:0] (root,0,0,00:00:00/31:50,3187) [kworker/u16:0] (root,0,0,00:00:00/18:24:39,5212) [kworker/4:0] (root,0,0,00:00:00/25:29,6979) [kworker/7:0] (apache,377272,12288,00:00:00/12:36:48,7371) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/09:49:33,7392) [kworker/5:2] (root,574280,19564,01:39:13/836-09:27:07,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,740544,43636,01:22:27/836-09:27:07,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/21:32,9234) [kworker/3:0] (apache,377112,11608,00:00:00/10:42:37,9387) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/19:28,10387) [kworker/0:2] (postfix,89848,4084,00:00:00/16:19,12046) pickup -l -t unix -u (root,0,0,00:00:00/01:12:21,12259) [kworker/7:1] (root,0,0,00:00:00/01:09:27,13939) [kworker/2:2] (root,0,0,00:00:07/836-09:26:59,13987) [kworker/7:1H] (root,0,0,00:00:05/836-09:21:54,14018) [kworker/4:1H] (root,0,0,00:00:00/12:39,14153) [kworker/3:2] (root,0,0,00:00:24/836-09:26:51,14909) [kworker/2:1H] (apache,277364,8104,00:00:05/4-21:19:39,17275) /usr/sbin/httpd -DFOREGROUND (apache,377276,12364,00:00:01/4-21:19:39,17280) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/05:50,18028) [kworker/u16:2] (ntp,25732,2012,00:12:46/836-08:56:49,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376980,18264,00:41:26/836-08:56:29,18605) /usr/sbin/httpd -DFOREGROUND (apache,377256,12304,00:00:01/3-17:18:12,18675) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,10:48:12/836-08:55:10,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,54940,10:04:10/836-08:55:10,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:39:40/836-08:55:10,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,5016,00:38:53/836-08:55:10,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:14:21/836-08:51:59,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,377268,12420,00:00:01/4-21:15:23,19538) /usr/sbin/httpd -DFOREGROUND (apache,377272,11772,00:00:00/12:15:40,20321) /usr/sbin/httpd -DFOREGROUND (onapp,1516356,7228,00:01:04/12:15:04,20631) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/01:28,20708) [kworker/1:2] (root,0,0,00:00:00/09:25:25,21323) [kworker/1:0] (root,0,0,00:00:00/56:29,21416) [kworker/4:1] (root,11692,1296,00:00:00/00:00,21467) /bin/bash (root,62568,13684,00:00:00/00:00,21472) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare --auto (root,115412,1648,00:00:00/00:00,21496) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,21515) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,21516) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,377256,11768,00:00:00/12:12:12,22380) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:49:26,23429) [kworker/6:1] (root,0,0,00:00:00/04:37:24,24413) [kworker/2:1] (apache,377124,11376,00:00:00/02:43:20,24834) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/04:36:31,24947) [kworker/6:0] (apache,377124,11548,00:00:00/02:39:39,26912) /usr/sbin/httpd -DFOREGROUND (apache,377264,12172,00:00:00/11:07:14,27481) /usr/sbin/httpd -DFOREGROUND (onapp,98460,1988,00:00:00/42:38,29260) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362976,91928,00:00:00/42:38,29261) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,362420,91400,00:00:00/41:38,29938) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/02:34:22,30034) [kworker/0:1] (onapp,283912,11636,00:00:00/38:29,31740) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2023-03-17 00:42 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501dc479e4bFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:36:30/807-16:46:48,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:08/807-16:46:48,2) [kthreadd] (root,0,0,00:00:00/807-16:46:48,4) [kworker/0:0H] (root,0,0,00:08:32/807-16:46:48,6) [ksoftirqd/0] (root,0,0,00:00:39/807-16:46:48,7) [migration/0] (root,0,0,00:00:00/807-16:46:48,8) [rcu_bh] (root,0,0,10:46:15/807-16:46:48,9) [rcu_sched] (root,0,0,00:00:00/807-16:46:48,10) [lru-add-drain] (root,0,0,00:03:34/807-16:46:48,11) [watchdog/0] (root,0,0,00:03:35/807-16:46:48,12) [watchdog/1] (root,0,0,00:00:38/807-16:46:48,13) [migration/1] (root,0,0,00:06:50/807-16:46:48,14) [ksoftirqd/1] (root,0,0,00:00:00/807-16:46:48,16) [kworker/1:0H] (root,0,0,00:03:11/807-16:46:48,17) [watchdog/2] (root,0,0,00:00:38/807-16:46:48,18) [migration/2] (root,0,0,00:06:44/807-16:46:48,19) [ksoftirqd/2] (root,0,0,00:00:00/807-16:46:48,21) [kworker/2:0H] (root,0,0,00:03:12/807-16:46:48,22) [watchdog/3] (root,0,0,00:00:38/807-16:46:48,23) [migration/3] (root,0,0,00:07:15/807-16:46:48,24) [ksoftirqd/3] (root,0,0,00:00:00/807-16:46:48,26) [kworker/3:0H] (root,0,0,00:03:00/807-16:46:48,27) [watchdog/4] (root,0,0,00:06:16/807-16:46:48,28) [migration/4] (root,0,0,00:26:22/807-16:46:48,29) [ksoftirqd/4] (root,0,0,00:00:00/807-16:46:48,31) [kworker/4:0H] (root,0,0,00:03:07/807-16:46:48,32) [watchdog/5] (root,0,0,00:06:08/807-16:46:48,33) [migration/5] (root,0,0,00:29:47/807-16:46:48,34) [ksoftirqd/5] (root,0,0,00:00:00/807-16:46:48,36) [kworker/5:0H] (root,0,0,00:03:02/807-16:46:48,37) [watchdog/6] (root,0,0,00:05:56/807-16:46:48,38) [migration/6] (root,0,0,00:30:38/807-16:46:48,39) [ksoftirqd/6] (root,0,0,00:00:00/807-16:46:48,41) [kworker/6:0H] (root,0,0,00:03:17/807-16:46:48,42) [watchdog/7] (root,0,0,00:06:06/807-16:46:48,43) [migration/7] (root,0,0,00:35:02/807-16:46:48,44) [ksoftirqd/7] (root,0,0,00:00:00/807-16:46:48,46) [kworker/7:0H] (root,0,0,00:00:00/807-16:46:48,48) [kdevtmpfs] (root,0,0,00:00:00/807-16:46:48,49) [netns] (root,0,0,00:00:24/807-16:46:48,50) [khungtaskd] (root,0,0,00:00:00/807-16:46:48,51) [writeback] (root,0,0,00:00:00/807-16:46:48,52) [kintegrityd] (root,0,0,00:00:00/807-16:46:48,53) [bioset] (root,0,0,00:00:00/807-16:46:48,54) [bioset] (root,0,0,00:00:00/807-16:46:48,55) [bioset] (root,0,0,00:00:00/807-16:46:48,56) [kblockd] (root,0,0,00:00:00/807-16:46:48,57) [md] (root,0,0,00:00:00/807-16:46:48,58) [edac-poller] (root,0,0,00:00:00/807-16:46:48,59) [watchdogd] (root,0,0,00:00:00/807-16:46:48,66) [kswapd0] (root,0,0,00:00:00/807-16:46:48,67) [ksmd] (root,0,0,00:04:43/807-16:46:48,68) [khugepaged] (root,0,0,00:00:00/807-16:46:48,69) [crypto] (root,0,0,00:00:00/807-16:46:48,77) [kthrotld] (root,0,0,00:00:00/807-16:46:48,79) [kmpath_rdacd] (root,0,0,00:00:00/807-16:46:48,80) [kaluad] (root,0,0,00:00:00/807-16:46:47,82) [kpsmoused] (root,0,0,00:00:00/807-16:46:47,89) [ipv6_addrconf] (root,0,0,00:00:00/807-16:46:47,102) [deferwq] (root,0,0,00:07:42/807-16:46:47,139) [kauditd] (root,0,0,00:00:00/807-16:46:46,281) [scsi_eh_0] (root,0,0,00:00:00/807-16:46:46,282) [scsi_tmf_0] (root,0,0,00:00:00/807-16:46:46,291) [ixgbe] (root,0,0,00:00:00/807-16:46:46,304) [poll_megasas0_s] (root,0,0,00:00:00/807-16:46:46,306) [ttm_swap] (root,0,0,03:07:09/807-16:46:45,337) [jbd2/sda3-8] (root,0,0,00:00:00/807-16:46:45,338) [ext4-rsv-conver] (root,137420,76548,01:24:00/807-16:46:44,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:18:03/807-15:31:41,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27884,17:36:09/807-15:31:41,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10584,07:29:28/807-15:31:27,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/807-16:46:44,524) [kvm-irqfd-clean] (root,0,0,00:00:00/807-16:46:44,527) [jbd2/sda2-8] (root,0,0,00:00:00/807-16:46:44,528) [ext4-rsv-conver] (root,55532,1060,00:16:52/807-16:46:44,573) /sbin/auditd (polkitd,613004,14012,01:33:09/807-16:46:44,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,02:10:47/807-16:46:44,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:50:33/807-16:46:44,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,04:04:24/807-16:46:44,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:18:44/807-16:46:44,624) /usr/sbin/crond -n (root,110204,848,00:00:00/807-16:46:44,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/807-15:31:17,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/807-15:31:16,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5692960,396212,1-02:03:59/807-15:31:16,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:22/807-16:46:41,930) [kworker/3:1H] (root,112900,4352,00:00:04/807-16:46:35,1115) /usr/sbin/sshd -D (root,89708,2212,00:04:42/807-16:46:35,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:54/807-16:46:35,1463) qmgr -l -t unix -u (root,0,0,00:00:08/807-16:46:34,1643) [kworker/6:1H] (root,0,0,00:00:21/807-16:46:24,1646) [kworker/1:1H] (root,0,0,00:00:21/807-16:46:00,1673) [kworker/0:1H] (root,0,0,00:00:28/807-16:45:26,1674) [kworker/5:1H] (root,34960,1744,00:00:00/807-16:44:21,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/21:58,2020) [kworker/u16:0] (postfix,89848,4080,00:00:00/20:38,3096) pickup -l -t unix -u (onapp,98460,1984,00:00:00/07:59:41,4835) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,365908,94916,00:00:04/07:59:41,4836) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,365816,94912,00:00:04/07:58:41,5349) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11632,00:00:00/07:56:02,6458) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,574280,19564,01:35:50/807-16:44:10,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,739688,46912,01:19:42/807-16:44:10,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/06:56:41,7707) [kworker/3:2] (root,0,0,00:00:00/18:29:42,8156) [kworker/3:0] (apache,277228,8060,00:00:04/4-04:24:41,8510) /usr/sbin/httpd -DFOREGROUND (apache,377112,11804,00:00:01/4-04:24:41,8551) /usr/sbin/httpd -DFOREGROUND (apache,377112,11852,00:00:01/4-04:24:41,8554) /usr/sbin/httpd -DFOREGROUND (apache,377112,11824,00:00:01/4-04:24:41,8555) /usr/sbin/httpd -DFOREGROUND (apache,377112,11836,00:00:01/4-04:24:41,8557) /usr/sbin/httpd -DFOREGROUND (apache,377112,11844,00:00:01/4-04:24:41,8558) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/03:59:41,9797) [kworker/6:1] (apache,377112,11836,00:00:01/4-00:30:10,9807) /usr/sbin/httpd -DFOREGROUND (apache,377112,11824,00:00:01/4-00:30:09,9808) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/08:40,9815) [kworker/5:0] (root,0,0,00:00:00/01:58:42,12709) [kworker/0:0] (root,0,0,00:00:00/59:42,13413) [kworker/4:1] (root,0,0,00:00:07/807-16:44:02,13987) [kworker/7:1H] (root,0,0,00:00:05/807-16:38:57,14018) [kworker/4:1H] (root,11692,1292,00:00:00/00:00,14483) /bin/bash (root,73288,21056,00:00:00/00:00,14489) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare --auto (root,71988,20512,00:00:00/00:00,14514) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare onapp (root,115412,1648,00:00:00/00:00,14516) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,14536) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,14537) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:01/2-03:04:43,14721) [kworker/7:1] (root,0,0,00:00:00/57:23,14788) [kworker/u16:2] (root,0,0,00:00:23/807-16:43:54,14909) [kworker/2:1H] (onapp,1516908,9552,01:18:46/37-20:48:39,16603) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:01/20:09:42,16911) [kworker/4:0] (apache,377112,11808,00:00:01/4-04:07:54,17664) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:12:21/807-16:13:52,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376844,18220,00:40:01/807-16:13:32,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,10:26:01/807-16:12:13,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,54672,09:39:31/807-16:12:13,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:38:17/807-16:12:13,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,5016,00:37:33/807-16:12:13,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:13:53/807-16:09:02,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/1-02:49:25,19842) [kworker/6:2] (root,0,0,00:00:01/2-08:38:41,22111) [kworker/0:1] (root,0,0,00:00:00/05:30:42,23426) [kworker/5:2] (root,0,0,00:00:00/03:33:40,24523) [kworker/7:0] (root,0,0,00:00:00/03:30:42,25993) [kworker/2:1] (root,0,0,00:00:00/02:30:42,27186) [kworker/2:2] (root,0,0,00:00:00/01:29:34,29229) [kworker/1:0] (root,0,0,00:00:01/2-01:36:42,31603) [kworker/1:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2023-02-16 07:59 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735016b05088cFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:24:08/755-10:39:35,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:08/755-10:39:35,2) [kthreadd] (root,0,0,00:00:00/755-10:39:35,4) [kworker/0:0H] (root,0,0,00:07:56/755-10:39:35,6) [ksoftirqd/0] (root,0,0,00:00:36/755-10:39:35,7) [migration/0] (root,0,0,00:00:00/755-10:39:35,8) [rcu_bh] (root,0,0,10:00:15/755-10:39:35,9) [rcu_sched] (root,0,0,00:00:00/755-10:39:35,10) [lru-add-drain] (root,0,0,00:03:20/755-10:39:35,11) [watchdog/0] (root,0,0,00:03:21/755-10:39:35,12) [watchdog/1] (root,0,0,00:00:35/755-10:39:35,13) [migration/1] (root,0,0,00:06:21/755-10:39:35,14) [ksoftirqd/1] (root,0,0,00:00:00/755-10:39:35,16) [kworker/1:0H] (root,0,0,00:02:59/755-10:39:35,17) [watchdog/2] (root,0,0,00:00:35/755-10:39:35,18) [migration/2] (root,0,0,00:06:14/755-10:39:35,19) [ksoftirqd/2] (root,0,0,00:00:00/755-10:39:35,21) [kworker/2:0H] (root,0,0,00:02:59/755-10:39:35,22) [watchdog/3] (root,0,0,00:00:36/755-10:39:35,23) [migration/3] (root,0,0,00:06:43/755-10:39:35,24) [ksoftirqd/3] (root,0,0,00:00:00/755-10:39:35,26) [kworker/3:0H] (root,0,0,00:02:48/755-10:39:35,27) [watchdog/4] (root,0,0,00:05:49/755-10:39:35,28) [migration/4] (root,0,0,00:24:27/755-10:39:35,29) [ksoftirqd/4] (root,0,0,00:00:00/755-10:39:35,31) [kworker/4:0H] (root,0,0,00:02:55/755-10:39:35,32) [watchdog/5] (root,0,0,00:05:41/755-10:39:35,33) [migration/5] (root,0,0,00:27:37/755-10:39:35,34) [ksoftirqd/5] (root,0,0,00:00:00/755-10:39:35,36) [kworker/5:0H] (root,0,0,00:02:50/755-10:39:35,37) [watchdog/6] (root,0,0,00:05:31/755-10:39:35,38) [migration/6] (root,0,0,00:28:27/755-10:39:35,39) [ksoftirqd/6] (root,0,0,00:00:00/755-10:39:35,41) [kworker/6:0H] (root,0,0,00:03:04/755-10:39:35,42) [watchdog/7] (root,0,0,00:05:40/755-10:39:35,43) [migration/7] (root,0,0,00:32:24/755-10:39:35,44) [ksoftirqd/7] (root,0,0,00:00:00/755-10:39:35,46) [kworker/7:0H] (root,0,0,00:00:00/755-10:39:35,48) [kdevtmpfs] (root,0,0,00:00:00/755-10:39:35,49) [netns] (root,0,0,00:00:22/755-10:39:35,50) [khungtaskd] (root,0,0,00:00:00/755-10:39:35,51) [writeback] (root,0,0,00:00:00/755-10:39:35,52) [kintegrityd] (root,0,0,00:00:00/755-10:39:35,53) [bioset] (root,0,0,00:00:00/755-10:39:35,54) [bioset] (root,0,0,00:00:00/755-10:39:35,55) [bioset] (root,0,0,00:00:00/755-10:39:35,56) [kblockd] (root,0,0,00:00:00/755-10:39:35,57) [md] (root,0,0,00:00:00/755-10:39:35,58) [edac-poller] (root,0,0,00:00:00/755-10:39:35,59) [watchdogd] (root,0,0,00:00:00/755-10:39:35,66) [kswapd0] (root,0,0,00:00:00/755-10:39:35,67) [ksmd] (root,0,0,00:04:23/755-10:39:35,68) [khugepaged] (root,0,0,00:00:00/755-10:39:35,69) [crypto] (root,0,0,00:00:00/755-10:39:35,77) [kthrotld] (root,0,0,00:00:00/755-10:39:35,79) [kmpath_rdacd] (root,0,0,00:00:00/755-10:39:35,80) [kaluad] (root,0,0,00:00:00/755-10:39:34,82) [kpsmoused] (root,0,0,00:00:00/755-10:39:34,89) [ipv6_addrconf] (root,0,0,00:00:00/755-10:39:34,102) [deferwq] (root,0,0,00:07:13/755-10:39:34,139) [kauditd] (root,0,0,00:00:00/755-10:39:33,281) [scsi_eh_0] (root,0,0,00:00:00/755-10:39:33,282) [scsi_tmf_0] (root,0,0,00:00:00/755-10:39:33,291) [ixgbe] (root,0,0,00:00:00/755-10:39:33,304) [poll_megasas0_s] (root,0,0,00:00:00/755-10:39:33,306) [ttm_swap] (root,0,0,02:47:56/755-10:39:32,337) [jbd2/sda3-8] (root,0,0,00:00:00/755-10:39:32,338) [ext4-rsv-conver] (root,116908,66008,01:19:07/755-10:39:31,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:17:00/755-09:24:28,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27828,16:28:36/755-09:24:28,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10544,07:00:42/755-09:24:14,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/755-10:39:31,524) [kvm-irqfd-clean] (root,0,0,00:00:00/755-10:39:31,527) [jbd2/sda2-8] (root,0,0,00:00:00/755-10:39:31,528) [ext4-rsv-conver] (root,55532,1060,00:15:48/755-10:39:31,573) /sbin/auditd (polkitd,613004,14012,01:27:34/755-10:39:31,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,02:02:11/755-10:39:31,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:44:01/755-10:39:31,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,03:49:51/755-10:39:31,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:17:32/755-10:39:31,624) /usr/sbin/crond -n (root,110204,848,00:00:00/755-10:39:31,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/755-09:24:04,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/755-09:24:03,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,320180,1-00:22:13/755-09:24:03,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:21/755-10:39:28,930) [kworker/3:1H] (root,0,0,00:00:00/01:52:29,957) [kworker/7:0] (onapp,98460,1980,00:00:00/01:52:29,958) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,363188,92400,00:00:01/01:52:29,959) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,112900,4352,00:00:04/755-10:39:22,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/01:51:28,1152) [kworker/1:0] (onapp,363232,92396,00:00:01/01:50:29,1312) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,89708,2212,00:04:24/755-10:39:22,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:51/755-10:39:22,1463) qmgr -l -t unix -u (root,0,0,00:00:07/755-10:39:21,1643) [kworker/6:1H] (root,0,0,00:00:20/755-10:39:11,1646) [kworker/1:1H] (root,0,0,00:00:20/755-10:38:47,1673) [kworker/0:1H] (root,0,0,00:00:26/755-10:38:13,1674) [kworker/5:1H] (root,34960,1744,00:00:00/755-10:37:08,1750) /usr/lib/systemd/systemd-udevd (onapp,283912,11628,00:00:00/01:48:26,1948) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/01:42:28,5113) [kworker/0:2] (root,0,0,00:00:00/1-02:46:29,5358) [kworker/3:0] (root,574280,19564,01:29:38/755-10:36:57,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (onapp,1516592,9396,01:17:18/37-09:41:24,7570) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,737184,44208,01:14:41/755-10:36:57,7698) /usr/sbin/rsyslogd -n (apache,277228,7988,00:00:01/22:22:29,10680) /usr/sbin/httpd -DFOREGROUND (apache,377112,11672,00:00:00/22:22:29,10681) /usr/sbin/httpd -DFOREGROUND (apache,377112,11752,00:00:00/22:22:29,10682) /usr/sbin/httpd -DFOREGROUND (apache,377116,11648,00:00:00/22:22:29,10683) /usr/sbin/httpd -DFOREGROUND (apache,377112,11672,00:00:00/22:22:29,10684) /usr/sbin/httpd -DFOREGROUND (apache,377112,11684,00:00:00/22:22:29,10685) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/26:18,13110) [kworker/u16:1] (root,0,0,00:00:06/755-10:36:49,13987) [kworker/7:1H] (root,0,0,00:00:04/755-10:31:44,14018) [kworker/4:1H] (root,0,0,00:00:21/755-10:36:41,14909) [kworker/2:1H] (root,0,0,00:00:00/03:51:29,15016) [kworker/6:1] (postfix,89848,4080,00:00:00/22:51,15222) pickup -l -t unix -u (apache,377112,11244,00:00:00/09:18:17,15251) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/22:29,15300) [kworker/3:1] (root,0,0,00:00:00/01:22:29,15847) [kworker/4:0] (root,0,0,00:00:00/03:47:28,17000) [kworker/2:1] (apache,377116,11688,00:00:00/22:09:00,18016) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:11:35/755-10:06:39,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376844,18144,00:37:27/755-10:06:19,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,09:45:36/755-10:05:00,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,49020,08:53:53/755-10:05:00,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (root,0,0,00:00:01/2-05:45:24,19006) [kworker/5:0] (onapp,229860,824,00:35:46/755-10:05:00,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,4952,00:35:08/755-10:05:00,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:01/1-12:51:28,19202) [kworker/2:0] (root,27168,1132,00:13:02/755-10:01:49,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/11:18,20416) [kworker/u16:2] (root,0,0,00:00:00/10:22:28,21183) [kworker/5:1] (root,0,0,00:00:00/04:46:29,21513) [kworker/7:1] (root,0,0,00:00:01/1-15:52:29,22827) [kworker/6:0] (root,0,0,00:00:00/00:18,24198) [kworker/u16:0] (onapp,225656,8992,00:00:00/00:00,24269) /usr/bin/perl /omd/sites/onapp/lib/pnp4nagios/process_perfdata.pl -n -c /omd/sites/onapp/etc/pnp4nagios/process_perfdata.cfg -b /omd/sites/onapp/var/pnp4nagios/spool//perfdata.1672019547 (onapp,0,0,00:00:00/00:00,24397) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24399) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24401) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24403) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24405) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24406) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24407) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24412) [nagios] <defunct> (onapp,0,0,00:00:00/00:00,24414) [nagios] <defunct> (root,11692,1292,00:00:00/00:00,24442) /bin/bash (root,66344,17580,00:00:00/00:00,24448) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare --auto (root,115412,1652,00:00:00/00:00,24472) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,24491) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,24492) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (apache,377112,11696,00:00:00/19:52:25,25200) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/1-06:22:29,26961) [kworker/0:0] (root,0,0,00:00:00/07:52:28,28179) [kworker/4:1] (root,0,0,00:00:00/22:50:21,28905) [kworker/1:1] (apache,377112,11472,00:00:00/12:10:40,30231) /usr/sbin/httpd -DFOREGROUND Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-12-26 01:52 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735019acd8156Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:21:32/744-12:21:49,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:08/744-12:21:49,2) [kthreadd] (root,0,0,00:00:00/744-12:21:49,4) [kworker/0:0H] (root,0,0,00:07:49/744-12:21:49,6) [ksoftirqd/0] (root,0,0,00:00:36/744-12:21:49,7) [migration/0] (root,0,0,00:00:00/744-12:21:49,8) [rcu_bh] (root,0,0,09:51:05/744-12:21:49,9) [rcu_sched] (root,0,0,00:00:00/744-12:21:49,10) [lru-add-drain] (root,0,0,00:03:17/744-12:21:49,11) [watchdog/0] (root,0,0,00:03:18/744-12:21:49,12) [watchdog/1] (root,0,0,00:00:35/744-12:21:49,13) [migration/1] (root,0,0,00:06:14/744-12:21:49,14) [ksoftirqd/1] (root,0,0,00:00:00/744-12:21:49,16) [kworker/1:0H] (root,0,0,00:02:56/744-12:21:49,17) [watchdog/2] (root,0,0,00:00:35/744-12:21:49,18) [migration/2] (root,0,0,00:06:08/744-12:21:49,19) [ksoftirqd/2] (root,0,0,00:00:00/744-12:21:49,21) [kworker/2:0H] (root,0,0,00:02:57/744-12:21:49,22) [watchdog/3] (root,0,0,00:00:35/744-12:21:49,23) [migration/3] (root,0,0,00:06:36/744-12:21:49,24) [ksoftirqd/3] (root,0,0,00:00:00/744-12:21:49,26) [kworker/3:0H] (root,0,0,00:02:46/744-12:21:49,27) [watchdog/4] (root,0,0,00:05:44/744-12:21:49,28) [migration/4] (root,0,0,00:24:04/744-12:21:49,29) [ksoftirqd/4] (root,0,0,00:00:00/744-12:21:49,31) [kworker/4:0H] (root,0,0,00:02:53/744-12:21:49,32) [watchdog/5] (root,0,0,00:05:36/744-12:21:49,33) [migration/5] (root,0,0,00:27:10/744-12:21:49,34) [ksoftirqd/5] (root,0,0,00:00:00/744-12:21:49,36) [kworker/5:0H] (root,0,0,00:02:48/744-12:21:49,37) [watchdog/6] (root,0,0,00:05:26/744-12:21:49,38) [migration/6] (root,0,0,00:28:00/744-12:21:49,39) [ksoftirqd/6] (root,0,0,00:00:00/744-12:21:49,41) [kworker/6:0H] (root,0,0,00:03:01/744-12:21:49,42) [watchdog/7] (root,0,0,00:05:35/744-12:21:49,43) [migration/7] (root,0,0,00:31:44/744-12:21:49,44) [ksoftirqd/7] (root,0,0,00:00:00/744-12:21:49,46) [kworker/7:0H] (root,0,0,00:00:00/744-12:21:49,48) [kdevtmpfs] (root,0,0,00:00:00/744-12:21:49,49) [netns] (root,0,0,00:00:22/744-12:21:49,50) [khungtaskd] (root,0,0,00:00:00/744-12:21:49,51) [writeback] (root,0,0,00:00:00/744-12:21:49,52) [kintegrityd] (root,0,0,00:00:00/744-12:21:49,53) [bioset] (root,0,0,00:00:00/744-12:21:49,54) [bioset] (root,0,0,00:00:00/744-12:21:49,55) [bioset] (root,0,0,00:00:00/744-12:21:49,56) [kblockd] (root,0,0,00:00:00/744-12:21:49,57) [md] (root,0,0,00:00:00/744-12:21:49,58) [edac-poller] (root,0,0,00:00:00/744-12:21:49,59) [watchdogd] (root,0,0,00:00:00/744-12:21:49,66) [kswapd0] (root,0,0,00:00:00/744-12:21:49,67) [ksmd] (root,0,0,00:04:19/744-12:21:49,68) [khugepaged] (root,0,0,00:00:00/744-12:21:49,69) [crypto] (root,0,0,00:00:00/744-12:21:49,77) [kthrotld] (root,0,0,00:00:00/744-12:21:49,79) [kmpath_rdacd] (root,0,0,00:00:00/744-12:21:49,80) [kaluad] (root,0,0,00:00:00/744-12:21:48,82) [kpsmoused] (root,0,0,00:00:00/744-12:21:48,89) [ipv6_addrconf] (root,0,0,00:00:00/744-12:21:48,102) [deferwq] (root,0,0,00:07:07/744-12:21:48,139) [kauditd] (root,0,0,00:00:00/744-12:21:47,281) [scsi_eh_0] (root,0,0,00:00:00/744-12:21:47,282) [scsi_tmf_0] (root,0,0,00:00:00/744-12:21:47,291) [ixgbe] (root,0,0,00:00:00/744-12:21:47,304) [poll_megasas0_s] (root,0,0,00:00:00/744-12:21:47,306) [ttm_swap] (root,0,0,02:44:08/744-12:21:46,337) [jbd2/sda3-8] (root,0,0,00:00:00/744-12:21:46,338) [ext4-rsv-conver] (root,96396,50820,01:18:04/744-12:21:45,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:16:47/744-11:06:42,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27812,16:14:35/744-11:06:42,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10532,06:54:40/744-11:06:28,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/744-12:21:45,524) [kvm-irqfd-clean] (root,0,0,00:00:00/744-12:21:45,527) [jbd2/sda2-8] (root,0,0,00:00:00/744-12:21:45,528) [ext4-rsv-conver] (root,55532,1060,00:15:35/744-12:21:45,573) /sbin/auditd (polkitd,613004,14012,01:26:23/744-12:21:45,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,02:00:27/744-12:21:45,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:42:38/744-12:21:45,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,03:46:47/744-12:21:45,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:17:16/744-12:21:45,624) /usr/sbin/crond -n (root,110204,848,00:00:00/744-12:21:45,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/744-11:06:18,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/744-11:06:17,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,322440,1-00:00:16/744-11:06:17,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:21/744-12:21:42,930) [kworker/3:1H] (root,112900,4352,00:00:04/744-12:21:36,1115) /usr/sbin/sshd -D (apache,277096,7964,00:00:04/3-23:46:42,1407) /usr/sbin/httpd -DFOREGROUND (apache,377128,12172,00:00:01/3-23:46:42,1408) /usr/sbin/httpd -DFOREGROUND (apache,377128,12168,00:00:01/3-23:46:42,1409) /usr/sbin/httpd -DFOREGROUND (apache,377168,12172,00:00:01/3-23:46:42,1410) /usr/sbin/httpd -DFOREGROUND (apache,377128,12200,00:00:01/3-23:46:42,1411) /usr/sbin/httpd -DFOREGROUND (apache,377128,12136,00:00:01/3-23:46:42,1412) /usr/sbin/httpd -DFOREGROUND (root,89708,2212,00:04:20/744-12:21:36,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:50/744-12:21:36,1463) qmgr -l -t unix -u (root,115412,1644,00:00:00/00:00,1531) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,1550) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,1551) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:07/744-12:21:35,1643) [kworker/6:1H] (root,0,0,00:00:19/744-12:21:25,1646) [kworker/1:1H] (root,0,0,00:00:19/744-12:21:01,1673) [kworker/0:1H] (root,0,0,00:00:26/744-12:20:27,1674) [kworker/5:1H] (root,34960,1744,00:00:00/744-12:19:22,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/55:18,2719) [kworker/u16:0] (root,0,0,00:00:00/06:41:10,4167) [kworker/2:2] (apache,377128,12188,00:00:01/3-23:41:13,4677) /usr/sbin/httpd -DFOREGROUND (apache,376984,11648,00:00:00/2-21:34:25,4827) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/08:34:42,5378) [kworker/3:1] (root,0,0,00:00:00/08:34:36,5389) [kworker/4:2] (root,574280,19564,01:28:21/744-12:19:11,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (onapp,1516580,8676,00:55:26/26-11:23:38,7570) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,737504,35040,01:13:38/744-12:19:11,7698) /usr/sbin/rsyslogd -n (onapp,98460,1984,00:00:00/03:34:43,10952) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,364012,93124,00:00:02/03:34:43,10953) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (postfix,89848,4080,00:00:00/01:35:48,12540) pickup -l -t unix -u (onapp,283912,11632,00:00:00/03:30:58,13085) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/01:34:42,13104) [kworker/0:1] (root,0,0,00:00:00/01:33:42,13696) [kworker/2:1] (root,0,0,00:00:06/744-12:19:03,13987) [kworker/7:1H] (root,0,0,00:00:04/744-12:13:58,14018) [kworker/4:1H] (root,0,0,00:00:00/34:43,14167) [kworker/3:2] (root,123360,724,00:00:00/33:43,14741) /usr/sbin/anacron -s (root,0,0,00:00:21/744-12:18:55,14909) [kworker/2:1H] (root,0,0,00:00:00/10:12:36,15585) [kworker/6:1] (onapp,364004,92960,00:00:02/03:22:43,17771) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/14:00:40,17948) [kworker/0:0] (ntp,25732,2012,00:11:26/744-11:48:53,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376844,18124,00:36:55/744-11:48:33,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,09:37:10/744-11:47:14,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,49020,08:44:15/744-11:47:14,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:35:14/744-11:47:14,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,5016,00:34:37/744-11:47:14,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:12:51/744-11:44:03,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/1-00:34:43,20508) [kworker/1:2] (apache,377136,12192,00:00:01/3-20:18:04,20776) /usr/sbin/httpd -DFOREGROUND (apache,377136,12140,00:00:01/3-20:18:03,20777) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:17:43,22667) [kworker/5:0] (root,0,0,00:00:00/09:58:10,23907) [kworker/7:1] (root,0,0,00:00:00/14:10,25803) [kworker/u16:1] (apache,377132,12180,00:00:00/3-03:41:40,26371) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:10:42,26468) [kworker/5:2] (root,0,0,00:00:00/02:08:43,26555) [kworker/6:0] (root,0,0,00:00:00/03:05:10,27661) [kworker/4:1] (root,0,0,00:00:00/03:04:43,27738) [kworker/1:0] (root,0,0,00:00:00/04:42,30874) [kworker/7:0] (root,0,0,00:00:00/23:17:42,31183) [kworker/7:2] (root,0,0,00:00:00/03:32,31490) [kworker/u16:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-12-15 03:34 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf4673501bdf5c437Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:20:39/740-22:04:36,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:08/740-22:04:36,2) [kthreadd] (root,0,0,00:00:00/740-22:04:36,4) [kworker/0:0H] (root,0,0,00:07:46/740-22:04:36,6) [ksoftirqd/0] (root,0,0,00:00:36/740-22:04:36,7) [migration/0] (root,0,0,00:00:00/740-22:04:36,8) [rcu_bh] (root,0,0,09:48:02/740-22:04:36,9) [rcu_sched] (root,0,0,00:00:00/740-22:04:36,10) [lru-add-drain] (root,0,0,00:03:16/740-22:04:36,11) [watchdog/0] (root,0,0,00:03:17/740-22:04:36,12) [watchdog/1] (root,0,0,00:00:35/740-22:04:36,13) [migration/1] (root,0,0,00:06:12/740-22:04:36,14) [ksoftirqd/1] (root,0,0,00:00:00/740-22:04:36,16) [kworker/1:0H] (root,0,0,00:02:55/740-22:04:36,17) [watchdog/2] (root,0,0,00:00:34/740-22:04:36,18) [migration/2] (root,0,0,00:06:05/740-22:04:36,19) [ksoftirqd/2] (root,0,0,00:00:00/740-22:04:36,21) [kworker/2:0H] (root,0,0,00:02:56/740-22:04:36,22) [watchdog/3] (root,0,0,00:00:35/740-22:04:36,23) [migration/3] (root,0,0,00:06:34/740-22:04:36,24) [ksoftirqd/3] (root,0,0,00:00:00/740-22:04:36,26) [kworker/3:0H] (root,0,0,00:02:45/740-22:04:36,27) [watchdog/4] (root,0,0,00:05:42/740-22:04:36,28) [migration/4] (root,0,0,00:23:56/740-22:04:36,29) [ksoftirqd/4] (root,0,0,00:00:00/740-22:04:36,31) [kworker/4:0H] (root,0,0,00:02:52/740-22:04:36,32) [watchdog/5] (root,0,0,00:05:35/740-22:04:36,33) [migration/5] (root,0,0,00:27:01/740-22:04:36,34) [ksoftirqd/5] (root,0,0,00:00:00/740-22:04:36,36) [kworker/5:0H] (root,0,0,00:02:47/740-22:04:36,37) [watchdog/6] (root,0,0,00:05:24/740-22:04:36,38) [migration/6] (root,0,0,00:27:51/740-22:04:36,39) [ksoftirqd/6] (root,0,0,00:00:00/740-22:04:36,41) [kworker/6:0H] (root,0,0,00:03:00/740-22:04:36,42) [watchdog/7] (root,0,0,00:05:33/740-22:04:36,43) [migration/7] (root,0,0,00:31:32/740-22:04:36,44) [ksoftirqd/7] (root,0,0,00:00:00/740-22:04:36,46) [kworker/7:0H] (root,0,0,00:00:00/740-22:04:36,48) [kdevtmpfs] (root,0,0,00:00:00/740-22:04:36,49) [netns] (root,0,0,00:00:22/740-22:04:36,50) [khungtaskd] (root,0,0,00:00:00/740-22:04:36,51) [writeback] (root,0,0,00:00:00/740-22:04:36,52) [kintegrityd] (root,0,0,00:00:00/740-22:04:36,53) [bioset] (root,0,0,00:00:00/740-22:04:36,54) [bioset] (root,0,0,00:00:00/740-22:04:36,55) [bioset] (root,0,0,00:00:00/740-22:04:36,56) [kblockd] (root,0,0,00:00:00/740-22:04:36,57) [md] (root,0,0,00:00:00/740-22:04:36,58) [edac-poller] (root,0,0,00:00:00/740-22:04:36,59) [watchdogd] (root,0,0,00:00:00/740-22:04:36,66) [kswapd0] (root,0,0,00:00:00/740-22:04:36,67) [ksmd] (root,0,0,00:04:18/740-22:04:36,68) [khugepaged] (root,0,0,00:00:00/740-22:04:36,69) [crypto] (root,0,0,00:00:00/740-22:04:36,77) [kthrotld] (root,0,0,00:00:00/740-22:04:36,79) [kmpath_rdacd] (root,0,0,00:00:00/740-22:04:36,80) [kaluad] (root,0,0,00:00:00/740-22:04:35,82) [kpsmoused] (root,0,0,00:00:00/740-22:04:35,89) [ipv6_addrconf] (root,0,0,00:00:00/740-22:04:35,102) [deferwq] (root,0,0,00:07:05/740-22:04:35,139) [kauditd] (root,0,0,00:00:00/740-22:04:34,281) [scsi_eh_0] (root,0,0,00:00:00/740-22:04:34,282) [scsi_tmf_0] (root,0,0,00:00:00/740-22:04:34,291) [ixgbe] (root,0,0,00:00:00/740-22:04:34,304) [poll_megasas0_s] (root,0,0,00:00:00/740-22:04:34,306) [ttm_swap] (root,0,0,02:42:53/740-22:04:33,337) [jbd2/sda3-8] (root,0,0,00:00:00/740-22:04:33,338) [ext4-rsv-conver] (root,55440,17872,01:17:43/740-22:04:32,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:16:42/740-20:49:29,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27812,16:09:53/740-20:49:29,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10532,06:52:40/740-20:49:15,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/740-22:04:32,524) [kvm-irqfd-clean] (root,0,0,00:00:00/740-22:04:32,527) [jbd2/sda2-8] (root,0,0,00:00:00/740-22:04:32,528) [ext4-rsv-conver] (root,55532,1060,00:15:30/740-22:04:32,573) /sbin/auditd (polkitd,613004,14012,01:25:59/740-22:04:32,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,01:59:53/740-22:04:32,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:42:11/740-22:04:32,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,03:45:45/740-22:04:32,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:17:11/740-22:04:32,624) /usr/sbin/crond -n (root,110204,848,00:00:00/740-22:04:32,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/740-20:49:05,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/740-20:49:04,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,320392,23:53:02/740-20:49:04,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:20/740-22:04:29,930) [kworker/3:1H] (root,112900,4352,00:00:04/740-22:04:23,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/47:29,1239) [kworker/6:0] (apache,277096,7964,00:00:00/09:29:29,1407) /usr/sbin/httpd -DFOREGROUND (apache,376984,11484,00:00:00/09:29:29,1408) /usr/sbin/httpd -DFOREGROUND (apache,376984,11628,00:00:00/09:29:29,1409) /usr/sbin/httpd -DFOREGROUND (apache,377000,11556,00:00:00/09:29:29,1410) /usr/sbin/httpd -DFOREGROUND (apache,376992,11540,00:00:00/09:29:29,1411) /usr/sbin/httpd -DFOREGROUND (apache,376984,11496,00:00:00/09:29:29,1412) /usr/sbin/httpd -DFOREGROUND (root,89708,2212,00:04:19/740-22:04:23,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:50/740-22:04:23,1463) qmgr -l -t unix -u (root,0,0,00:00:07/740-22:04:22,1643) [kworker/6:1H] (root,0,0,00:00:19/740-22:04:12,1646) [kworker/1:1H] (root,0,0,00:00:19/740-22:03:48,1673) [kworker/0:1H] (root,0,0,00:00:26/740-22:03:14,1674) [kworker/5:1H] (root,34960,1744,00:00:00/740-22:02:09,1750) /usr/lib/systemd/systemd-udevd (onapp,98460,1988,00:00:00/13:17:29,3623) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368076,97060,00:00:06/13:17:29,3624) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368072,97012,00:00:06/13:16:29,4145) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,376984,11476,00:00:00/09:24:00,4677) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:01/1-09:34:16,5353) [kworker/4:1] (onapp,283912,11636,00:00:00/13:13:45,5778) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/16:06:29,6475) [kworker/0:1] (root,574280,19564,01:27:56/740-22:01:58,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (onapp,1516556,8380,00:48:13/22-21:06:25,7570) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,728180,16968,01:13:17/740-22:01:58,7698) /usr/sbin/rsyslogd -n (root,0,0,00:00:00/08:16:30,9705) [kworker/3:0] (root,0,0,00:00:00/05:17:30,12436) [kworker/1:1] (root,0,0,00:00:06/740-22:01:50,13987) [kworker/7:1H] (root,0,0,00:00:04/740-21:56:45,14018) [kworker/4:1H] (root,0,0,00:00:21/740-22:01:42,14909) [kworker/2:1H] (postfix,89848,4080,00:00:00/21:58,15547) pickup -l -t unix -u (root,0,0,00:00:00/02:17:30,15607) [kworker/0:0] (root,0,0,00:00:00/17:30,17875) [kworker/4:0] (ntp,25732,2012,00:11:23/740-21:31:40,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376844,18124,00:36:44/740-21:31:20,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,09:34:23/740-21:30:01,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,49020,08:41:04/740-21:30:01,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:35:04/740-21:30:01,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,5016,00:34:27/740-21:30:01,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:12:48/740-21:26:50,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/16:40:23,19889) [kworker/5:2] (root,0,0,00:00:00/13:59,20096) [kworker/u16:0] (root,0,0,00:00:00/01:11:25,20103) [kworker/5:0] (apache,376984,11468,00:00:00/06:00:51,20776) /usr/sbin/httpd -DFOREGROUND (apache,376984,11516,00:00:00/06:00:50,20777) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/1-01:17:29,23059) [kworker/6:1] (root,0,0,00:00:00/08:02,23336) [kworker/u16:2] (root,0,0,00:00:00/23:17:29,25091) [kworker/2:1] (root,0,0,00:00:00/03:56:24,25205) [kworker/1:0] (root,0,0,00:00:00/02:19,26417) [kworker/u16:1] (root,11692,1292,00:00:00/00:01,28011) /bin/bash (root,66344,17580,00:00:00/00:01,28016) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare --auto (root,115412,1648,00:00:00/00:00,28041) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,28060) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,28061) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:01/1-14:37:22,29905) [kworker/3:1] (root,0,0,00:00:00/02:47:30,31334) [kworker/7:0] (root,0,0,00:00:00/1-01:59:20,32075) [kworker/7:2] (root,0,0,00:00:00/01:47:30,32394) [kworker/2:2] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-12-11 13:17 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735015f8e56bdFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:16:04/722-04:11:17,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:07/722-04:11:17,2) [kthreadd] (root,0,0,00:00:00/722-04:11:17,4) [kworker/0:0H] (root,0,0,00:07:34/722-04:11:17,6) [ksoftirqd/0] (root,0,0,00:00:35/722-04:11:17,7) [migration/0] (root,0,0,00:00:00/722-04:11:17,8) [rcu_bh] (root,0,0,09:31:31/722-04:11:17,9) [rcu_sched] (root,0,0,00:00:00/722-04:11:17,10) [lru-add-drain] (root,0,0,00:03:11/722-04:11:17,11) [watchdog/0] (root,0,0,00:03:12/722-04:11:17,12) [watchdog/1] (root,0,0,00:00:34/722-04:11:17,13) [migration/1] (root,0,0,00:06:03/722-04:11:17,14) [ksoftirqd/1] (root,0,0,00:00:00/722-04:11:17,16) [kworker/1:0H] (root,0,0,00:02:51/722-04:11:17,17) [watchdog/2] (root,0,0,00:00:33/722-04:11:17,18) [migration/2] (root,0,0,00:05:56/722-04:11:17,19) [ksoftirqd/2] (root,0,0,00:00:00/722-04:11:17,21) [kworker/2:0H] (root,0,0,00:02:51/722-04:11:17,22) [watchdog/3] (root,0,0,00:00:34/722-04:11:17,23) [migration/3] (root,0,0,00:06:23/722-04:11:17,24) [ksoftirqd/3] (root,0,0,00:00:00/722-04:11:17,26) [kworker/3:0H] (root,0,0,00:02:41/722-04:11:17,27) [watchdog/4] (root,0,0,00:05:32/722-04:11:17,28) [migration/4] (root,0,0,00:23:16/722-04:11:17,29) [ksoftirqd/4] (root,0,0,00:00:00/722-04:11:17,31) [kworker/4:0H] (root,0,0,00:02:48/722-04:11:17,32) [watchdog/5] (root,0,0,00:05:25/722-04:11:17,33) [migration/5] (root,0,0,00:26:15/722-04:11:17,34) [ksoftirqd/5] (root,0,0,00:00:00/722-04:11:17,36) [kworker/5:0H] (root,0,0,00:02:43/722-04:11:17,37) [watchdog/6] (root,0,0,00:05:15/722-04:11:17,38) [migration/6] (root,0,0,00:27:04/722-04:11:17,39) [ksoftirqd/6] (root,0,0,00:00:00/722-04:11:17,41) [kworker/6:0H] (root,0,0,00:02:56/722-04:11:17,42) [watchdog/7] (root,0,0,00:05:24/722-04:11:17,43) [migration/7] (root,0,0,00:30:40/722-04:11:17,44) [ksoftirqd/7] (root,0,0,00:00:00/722-04:11:17,46) [kworker/7:0H] (root,0,0,00:00:00/722-04:11:17,48) [kdevtmpfs] (root,0,0,00:00:00/722-04:11:17,49) [netns] (root,0,0,00:00:21/722-04:11:17,50) [khungtaskd] (root,0,0,00:00:00/722-04:11:17,51) [writeback] (root,0,0,00:00:00/722-04:11:17,52) [kintegrityd] (root,0,0,00:00:00/722-04:11:17,53) [bioset] (root,0,0,00:00:00/722-04:11:17,54) [bioset] (root,0,0,00:00:00/722-04:11:17,55) [bioset] (root,0,0,00:00:00/722-04:11:17,56) [kblockd] (root,0,0,00:00:00/722-04:11:17,57) [md] (root,0,0,00:00:00/722-04:11:17,58) [edac-poller] (root,0,0,00:00:00/722-04:11:17,59) [watchdogd] (root,0,0,00:00:00/722-04:11:17,66) [kswapd0] (root,0,0,00:00:00/722-04:11:17,67) [ksmd] (root,0,0,00:04:11/722-04:11:17,68) [khugepaged] (root,0,0,00:00:00/722-04:11:17,69) [crypto] (root,0,0,00:00:00/722-04:11:17,77) [kthrotld] (root,0,0,00:00:00/722-04:11:17,79) [kmpath_rdacd] (root,0,0,00:00:00/722-04:11:17,80) [kaluad] (root,0,0,00:00:00/722-04:11:16,82) [kpsmoused] (root,0,0,00:00:00/722-04:11:16,89) [ipv6_addrconf] (root,0,0,00:00:00/722-04:11:16,102) [deferwq] (root,0,0,00:06:54/722-04:11:16,139) [kauditd] (root,0,0,00:00:00/722-04:11:15,281) [scsi_eh_0] (root,0,0,00:00:00/722-04:11:15,282) [scsi_tmf_0] (root,0,0,00:00:00/722-04:11:15,291) [ixgbe] (root,0,0,00:00:00/722-04:11:15,304) [poll_megasas0_s] (root,0,0,00:00:00/722-04:11:15,306) [ttm_swap] (apache,277096,7932,00:00:03/2-15:48:10,335) /usr/sbin/httpd -DFOREGROUND (apache,376976,11676,00:00:00/2-15:48:10,336) /usr/sbin/httpd -DFOREGROUND (root,0,0,02:36:20/722-04:11:14,337) [jbd2/sda3-8] (root,0,0,00:00:00/722-04:11:14,338) [ext4-rsv-conver] (apache,376976,11692,00:00:00/2-15:48:10,339) /usr/sbin/httpd -DFOREGROUND (apache,376976,11672,00:00:00/2-15:48:10,340) /usr/sbin/httpd -DFOREGROUND (apache,376976,11692,00:00:01/2-15:48:10,341) /usr/sbin/httpd -DFOREGROUND (apache,376976,11688,00:00:00/2-15:48:10,342) /usr/sbin/httpd -DFOREGROUND (root,141492,82284,01:15:55/722-04:11:13,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:16:20/722-02:56:10,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27580,15:45:29/722-02:56:10,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10520,06:42:21/722-02:55:56,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/722-04:11:13,524) [kvm-irqfd-clean] (root,0,0,00:00:00/722-04:11:13,527) [jbd2/sda2-8] (root,0,0,00:00:00/722-04:11:13,528) [ext4-rsv-conver] (root,55532,1060,00:15:07/722-04:11:13,573) /sbin/auditd (polkitd,613004,14012,01:23:55/722-04:11:13,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,01:56:54/722-04:11:13,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:39:45/722-04:11:13,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,03:40:22/722-04:11:13,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:16:47/722-04:11:13,624) /usr/sbin/crond -n (root,110204,848,00:00:00/722-04:11:13,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/722-02:55:46,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/722-02:55:45,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,340696,23:16:15/722-02:55:45,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:20/722-04:11:10,930) [kworker/3:1H] (root,112900,4352,00:00:04/722-04:11:04,1115) /usr/sbin/sshd -D (root,89708,2212,00:04:13/722-04:11:04,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:49/722-04:11:04,1463) qmgr -l -t unix -u (root,0,0,00:00:07/722-04:11:03,1643) [kworker/6:1H] (root,0,0,00:00:19/722-04:10:53,1646) [kworker/1:1H] (root,0,0,00:00:19/722-04:10:29,1673) [kworker/0:1H] (root,0,0,00:00:25/722-04:09:55,1674) [kworker/5:1H] (root,34960,1744,00:00:00/722-04:08:50,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/13:58,4147) [kworker/4:0] (onapp,98460,1980,00:00:01/19:24:10,5537) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368180,97364,00:00:10/19:24:10,5538) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/02:06:53,5605) [kworker/u16:0] (root,0,0,00:00:00/03:04:10,5790) [kworker/7:2] (apache,376976,11696,00:00:00/2-15:38:03,6016) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,01:25:42/722-04:08:39,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (onapp,1516120,7000,00:09:14/4-03:13:06,7570) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,739944,54140,01:11:27/722-04:08:39,7698) /usr/sbin/rsyslogd -n (onapp,283912,11632,00:00:00/19:19:46,8059) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/10:41:11,8274) [kworker/1:1] (root,0,0,00:00:00/01:57:11,11019) [kworker/2:0] (root,11692,1296,00:00:00/00:00,12106) /bin/bash (root,73288,21056,00:00:00/00:00,12112) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare --auto (root,53404,9144,00:00:00/00:00,12137) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare onapp (root,115412,1652,00:00:00/00:00,12138) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,12157) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,12158) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:06/722-04:08:31,13987) [kworker/7:1H] (root,0,0,00:00:04/722-04:03:26,14018) [kworker/4:1H] (root,0,0,00:00:20/722-04:08:23,14909) [kworker/2:1H] (apache,376976,11512,00:00:00/11:26:40,15012) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:48:11,16060) [kworker/0:2] (postfix,89848,4080,00:00:00/46:23,18177) pickup -l -t unix -u (apache,376992,11664,00:00:00/2-14:18:36,18184) /usr/sbin/httpd -DFOREGROUND (ntp,25732,2012,00:11:06/722-03:38:21,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376712,18092,00:35:49/722-03:38:01,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,09:19:53/722-03:36:42,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,48984,08:24:15/722-03:36:42,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:34:10/722-03:36:42,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,5016,00:33:35/722-03:36:42,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:12:29/722-03:33:31,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/03:36:10,20180) [kworker/3:1] (root,0,0,00:00:00/14:10:01,20231) [kworker/5:1] (root,0,0,00:00:00/08:24:10,20371) [kworker/6:1] (root,0,0,00:00:00/40:51,21469) [kworker/u16:1] (root,0,0,00:00:03/3-11:18:00,24258) [kworker/6:2] (root,0,0,00:00:00/1-04:24:11,26144) [kworker/0:0] (root,0,0,00:00:00/28:11,28548) [kworker/1:2] (root,0,0,00:00:00/02:23:10,28769) [kworker/3:0] (root,0,0,00:00:00/01:24:10,29484) [kworker/7:1] (root,0,0,00:00:00/01:23:11,30097) [kworker/2:1] (root,0,0,00:00:00/23:11,31403) [kworker/5:0] (onapp,368180,97388,00:00:08/18:38:03,31420) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/11:54:11,31762) [kworker/4:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-11-22 19:24 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735014e2b01deFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:11:57/706-22:55:15,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:07/706-22:55:15,2) [kthreadd] (root,0,0,00:00:00/706-22:55:15,4) [kworker/0:0H] (root,0,0,00:07:25/706-22:55:15,6) [ksoftirqd/0] (root,0,0,00:00:34/706-22:55:15,7) [migration/0] (root,0,0,00:00:00/706-22:55:15,8) [rcu_bh] (root,0,0,09:17:10/706-22:55:15,9) [rcu_sched] (root,0,0,00:00:00/706-22:55:15,10) [lru-add-drain] (root,0,0,00:03:07/706-22:55:15,11) [watchdog/0] (root,0,0,00:03:08/706-22:55:15,12) [watchdog/1] (root,0,0,00:00:33/706-22:55:15,13) [migration/1] (root,0,0,00:05:56/706-22:55:15,14) [ksoftirqd/1] (root,0,0,00:00:00/706-22:55:15,16) [kworker/1:0H] (root,0,0,00:02:47/706-22:55:15,17) [watchdog/2] (root,0,0,00:00:33/706-22:55:15,18) [migration/2] (root,0,0,00:05:49/706-22:55:15,19) [ksoftirqd/2] (root,0,0,00:00:00/706-22:55:15,21) [kworker/2:0H] (root,0,0,00:02:48/706-22:55:15,22) [watchdog/3] (root,0,0,00:00:33/706-22:55:15,23) [migration/3] (root,0,0,00:06:16/706-22:55:15,24) [ksoftirqd/3] (root,0,0,00:00:00/706-22:55:15,26) [kworker/3:0H] (root,0,0,00:02:37/706-22:55:15,27) [watchdog/4] (root,0,0,00:05:24/706-22:55:15,28) [migration/4] (root,0,0,00:22:40/706-22:55:15,29) [ksoftirqd/4] (root,0,0,00:00:00/706-22:55:15,31) [kworker/4:0H] (root,0,0,00:02:44/706-22:55:15,32) [watchdog/5] (root,0,0,00:05:17/706-22:55:15,33) [migration/5] (root,0,0,00:25:36/706-22:55:15,34) [ksoftirqd/5] (root,0,0,00:00:00/706-22:55:15,36) [kworker/5:0H] (root,0,0,00:02:40/706-22:55:15,37) [watchdog/6] (root,0,0,00:05:07/706-22:55:15,38) [migration/6] (root,0,0,00:26:27/706-22:55:15,39) [ksoftirqd/6] (root,0,0,00:00:00/706-22:55:15,41) [kworker/6:0H] (root,0,0,00:02:52/706-22:55:15,42) [watchdog/7] (root,0,0,00:05:16/706-22:55:15,43) [migration/7] (root,0,0,00:30:01/706-22:55:15,44) [ksoftirqd/7] (root,0,0,00:00:00/706-22:55:15,46) [kworker/7:0H] (root,0,0,00:00:00/706-22:55:15,48) [kdevtmpfs] (root,0,0,00:00:00/706-22:55:15,49) [netns] (root,0,0,00:00:21/706-22:55:15,50) [khungtaskd] (root,0,0,00:00:00/706-22:55:15,51) [writeback] (root,0,0,00:00:00/706-22:55:15,52) [kintegrityd] (root,0,0,00:00:00/706-22:55:15,53) [bioset] (root,0,0,00:00:00/706-22:55:15,54) [bioset] (root,0,0,00:00:00/706-22:55:15,55) [bioset] (root,0,0,00:00:00/706-22:55:15,56) [kblockd] (root,0,0,00:00:00/706-22:55:15,57) [md] (root,0,0,00:00:00/706-22:55:15,58) [edac-poller] (root,0,0,00:00:00/706-22:55:15,59) [watchdogd] (root,0,0,00:00:00/706-22:55:15,66) [kswapd0] (root,0,0,00:00:00/706-22:55:15,67) [ksmd] (root,0,0,00:04:06/706-22:55:15,68) [khugepaged] (root,0,0,00:00:00/706-22:55:15,69) [crypto] (root,0,0,00:00:00/706-22:55:15,77) [kthrotld] (root,0,0,00:00:00/706-22:55:15,79) [kmpath_rdacd] (root,0,0,00:00:00/706-22:55:15,80) [kaluad] (root,0,0,00:00:00/706-22:55:14,82) [kpsmoused] (root,0,0,00:00:00/706-22:55:14,89) [ipv6_addrconf] (root,0,0,00:00:00/706-22:55:14,102) [deferwq] (root,0,0,00:06:46/706-22:55:14,139) [kauditd] (root,0,0,00:00:00/706-22:55:13,281) [scsi_eh_0] (root,0,0,00:00:00/706-22:55:13,282) [scsi_tmf_0] (root,0,0,00:00:00/706-22:55:13,291) [ixgbe] (root,0,0,00:00:00/706-22:55:13,304) [poll_megasas0_s] (root,0,0,00:00:00/706-22:55:13,306) [ttm_swap] (root,0,0,02:31:04/706-22:55:12,337) [jbd2/sda3-8] (root,0,0,00:00:00/706-22:55:12,338) [ext4-rsv-conver] (root,133412,81064,01:14:20/706-22:55:11,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:16:02/706-21:40:08,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27784,15:25:40/706-21:40:08,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10500,06:33:58/706-21:39:54,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/706-22:55:11,524) [kvm-irqfd-clean] (root,0,0,00:00:00/706-22:55:11,527) [jbd2/sda2-8] (root,0,0,00:00:00/706-22:55:11,528) [ext4-rsv-conver] (root,55532,1060,00:14:48/706-22:55:11,573) /sbin/auditd (polkitd,613004,14012,01:22:11/706-22:55:11,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,01:54:20/706-22:55:11,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:37:42/706-22:55:11,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,03:35:49/706-22:55:11,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:16:25/706-22:55:11,624) /usr/sbin/crond -n (root,110204,848,00:00:00/706-22:55:11,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/706-21:39:44,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/706-21:39:43,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,318160,22:48:10/706-21:39:43,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:20/706-22:55:08,930) [kworker/3:1H] (root,112900,4352,00:00:04/706-22:55:02,1115) /usr/sbin/sshd -D (onapp,368072,97216,00:00:06/13:36:09,1270) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,89708,2208,00:04:07/706-22:55:02,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:48/706-22:55:02,1463) qmgr -l -t unix -u (root,0,0,00:00:07/706-22:55:01,1643) [kworker/6:1H] (root,0,0,00:00:18/706-22:54:51,1646) [kworker/1:1H] (root,0,0,00:00:19/706-22:54:27,1673) [kworker/0:1H] (root,0,0,00:00:24/706-22:53:53,1674) [kworker/5:1H] (root,34960,1744,00:00:00/706-22:52:48,1750) /usr/lib/systemd/systemd-udevd (apache,277096,7912,00:00:01/1-10:49:09,2053) /usr/sbin/httpd -DFOREGROUND (apache,376984,11732,00:00:00/1-10:49:09,2057) /usr/sbin/httpd -DFOREGROUND (apache,376984,11736,00:00:00/1-10:49:09,2058) /usr/sbin/httpd -DFOREGROUND (apache,376984,11692,00:00:00/1-10:49:09,2059) /usr/sbin/httpd -DFOREGROUND (apache,376984,11700,00:00:00/1-10:49:09,2060) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/59:05,2380) [kworker/5:2] (root,0,0,00:00:00/10:39:59,2543) [kworker/0:1] (root,0,0,00:00:00/00:02,3029) [kworker/5:1] (root,115412,1648,00:00:00/00:00,3294) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,3313) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,928,00:00:00/00:00,3314) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/57:01,3564) [kworker/6:2] (root,0,0,00:00:00/53:59,5287) [kworker/3:2] (root,574280,19564,01:23:53/706-22:52:37,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,736720,49736,01:09:56/706-22:52:37,7698) /usr/sbin/rsyslogd -n (apache,376988,11712,00:00:00/1-05:46:42,9391) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/09:28:00,10384) [kworker/3:1] (postfix,89848,4084,00:00:00/44:48,10505) pickup -l -t unix -u (root,0,0,00:00:00/42:26,11885) [kworker/u16:1] (root,0,0,00:00:00/17:05:59,13330) [kworker/5:0] (root,0,0,00:00:06/706-22:52:29,13987) [kworker/7:1H] (root,0,0,00:00:04/706-22:47:24,14018) [kworker/4:1H] (root,0,0,00:00:00/38:08,14196) [kworker/1:1] (root,0,0,00:00:20/706-22:52:21,14909) [kworker/2:1H] (onapp,98460,1980,00:00:00/14:08:09,15671) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368540,97540,00:00:07/14:08:09,15672) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,376988,11448,00:00:00/23:44:31,17498) /usr/sbin/httpd -DFOREGROUND (onapp,283912,11632,00:00:00/14:03:56,18160) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/09:13:59,18189) [kworker/7:2] (ntp,25732,2012,00:10:52/706-22:22:19,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376712,18072,00:35:04/706-22:21:59,18605) /usr/sbin/httpd -DFOREGROUND (apache,376984,11476,00:00:00/13:04:41,18956) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,09:08:07/706-22:20:40,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,48984,08:10:42/706-22:20:40,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:33:26/706-22:20:40,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (apache,376984,11572,00:00:00/13:04:40,19044) /usr/sbin/httpd -DFOREGROUND (apache,376984,11468,00:00:00/13:04:39,19045) /usr/sbin/httpd -DFOREGROUND (onapp,98460,5016,00:32:53/706-22:20:40,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:12:13/706-22:17:29,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/24:59,21397) [kworker/2:2] (onapp,1516512,8156,00:38:29/19-19:21:16,22136) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/21:31,23592) [kworker/u16:2] (root,0,0,00:00:00/01:15:03,25751) [kworker/1:0] (root,0,0,00:00:00/11:52:59,26498) [kworker/4:2] (root,0,0,00:00:00/12:55,28152) [kworker/4:0] (root,0,0,00:00:00/07:57:59,28357) [kworker/6:1] (root,0,0,00:00:00/06:01:59,28466) [kworker/2:0] (root,0,0,00:00:00/01:08:08,29708) [kworker/0:0] (root,0,0,00:00:00/07:09,31442) [kworker/7:0] (apache,376980,11680,00:00:00/1-09:55:42,32155) /usr/sbin/httpd -DFOREGROUND Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-11-07 14:08 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735015a8a84cdFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,03:07:18/690-13:03:09,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:07/690-13:03:09,2) [kthreadd] (root,0,0,00:00:00/690-13:03:09,4) [kworker/0:0H] (root,0,0,00:07:13/690-13:03:09,6) [ksoftirqd/0] (root,0,0,00:00:33/690-13:03:09,7) [migration/0] (root,0,0,00:00:00/690-13:03:09,8) [rcu_bh] (root,0,0,09:02:54/690-13:03:09,9) [rcu_sched] (root,0,0,00:00:00/690-13:03:09,10) [lru-add-drain] (root,0,0,00:03:03/690-13:03:09,11) [watchdog/0] (root,0,0,00:03:04/690-13:03:09,12) [watchdog/1] (root,0,0,00:00:32/690-13:03:09,13) [migration/1] (root,0,0,00:05:46/690-13:03:09,14) [ksoftirqd/1] (root,0,0,00:00:00/690-13:03:09,16) [kworker/1:0H] (root,0,0,00:02:43/690-13:03:09,17) [watchdog/2] (root,0,0,00:00:32/690-13:03:09,18) [migration/2] (root,0,0,00:05:40/690-13:03:09,19) [ksoftirqd/2] (root,0,0,00:00:00/690-13:03:09,21) [kworker/2:0H] (root,0,0,00:02:44/690-13:03:09,22) [watchdog/3] (root,0,0,00:00:32/690-13:03:09,23) [migration/3] (root,0,0,00:06:06/690-13:03:09,24) [ksoftirqd/3] (root,0,0,00:00:00/690-13:03:09,26) [kworker/3:0H] (root,0,0,00:02:34/690-13:03:09,27) [watchdog/4] (root,0,0,00:05:17/690-13:03:09,28) [migration/4] (root,0,0,00:22:02/690-13:03:09,29) [ksoftirqd/4] (root,0,0,00:00:00/690-13:03:09,31) [kworker/4:0H] (root,0,0,00:02:40/690-13:03:09,32) [watchdog/5] (root,0,0,00:05:09/690-13:03:09,33) [migration/5] (root,0,0,00:24:54/690-13:03:09,34) [ksoftirqd/5] (root,0,0,00:00:00/690-13:03:09,36) [kworker/5:0H] (root,0,0,00:02:36/690-13:03:09,37) [watchdog/6] (root,0,0,00:05:00/690-13:03:09,38) [migration/6] (root,0,0,00:25:44/690-13:03:09,39) [ksoftirqd/6] (root,0,0,00:00:00/690-13:03:09,41) [kworker/6:0H] (root,0,0,00:02:48/690-13:03:09,42) [watchdog/7] (root,0,0,00:05:08/690-13:03:09,43) [migration/7] (root,0,0,00:29:12/690-13:03:09,44) [ksoftirqd/7] (root,0,0,00:00:00/690-13:03:09,46) [kworker/7:0H] (root,0,0,00:00:00/690-13:03:09,48) [kdevtmpfs] (root,0,0,00:00:00/690-13:03:09,49) [netns] (root,0,0,00:00:20/690-13:03:09,50) [khungtaskd] (root,0,0,00:00:00/690-13:03:09,51) [writeback] (root,0,0,00:00:00/690-13:03:09,52) [kintegrityd] (root,0,0,00:00:00/690-13:03:09,53) [bioset] (root,0,0,00:00:00/690-13:03:09,54) [bioset] (root,0,0,00:00:00/690-13:03:09,55) [bioset] (root,0,0,00:00:00/690-13:03:09,56) [kblockd] (root,0,0,00:00:00/690-13:03:09,57) [md] (root,0,0,00:00:00/690-13:03:09,58) [edac-poller] (root,0,0,00:00:00/690-13:03:09,59) [watchdogd] (root,0,0,00:00:00/690-13:03:09,66) [kswapd0] (root,0,0,00:00:00/690-13:03:09,67) [ksmd] (root,0,0,00:04:00/690-13:03:09,68) [khugepaged] (root,0,0,00:00:00/690-13:03:09,69) [crypto] (root,0,0,00:00:00/690-13:03:09,77) [kthrotld] (root,0,0,00:00:00/690-13:03:09,79) [kmpath_rdacd] (root,0,0,00:00:00/690-13:03:09,80) [kaluad] (root,0,0,00:00:00/690-13:03:08,82) [kpsmoused] (root,0,0,00:00:00/690-13:03:08,89) [ipv6_addrconf] (root,0,0,00:00:00/690-13:03:08,102) [deferwq] (root,0,0,00:06:37/690-13:03:08,139) [kauditd] (root,0,0,00:00:00/690-13:03:07,281) [scsi_eh_0] (root,0,0,00:00:00/690-13:03:07,282) [scsi_tmf_0] (root,0,0,00:00:00/690-13:03:07,291) [ixgbe] (root,0,0,00:00:00/690-13:03:07,304) [poll_megasas0_s] (root,0,0,00:00:00/690-13:03:07,306) [ttm_swap] (root,0,0,02:25:42/690-13:03:06,337) [jbd2/sda3-8] (root,0,0,00:00:00/690-13:03:06,338) [ext4-rsv-conver] (root,63636,25288,01:12:39/690-13:03:05,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:15:42/690-11:48:02,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27772,15:04:08/690-11:48:02,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10488,06:24:52/690-11:47:48,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:01/03:36:19,519) [kworker/u16:0] (root,0,0,00:00:00/690-13:03:05,524) [kvm-irqfd-clean] (root,0,0,00:00:00/690-13:03:05,527) [jbd2/sda2-8] (root,0,0,00:00:00/690-13:03:05,528) [ext4-rsv-conver] (root,55532,1060,00:14:28/690-13:03:05,573) /sbin/auditd (polkitd,613004,14012,01:20:17/690-13:03:05,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,01:51:36/690-13:03:05,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:35:25/690-13:03:05,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,03:30:48/690-13:03:05,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:16:02/690-13:03:05,624) /usr/sbin/crond -n (root,110204,848,00:00:00/690-13:03:05,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/690-11:47:38,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/690-11:47:37,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,326352,22:17:11/690-11:47:37,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:19/690-13:03:02,930) [kworker/3:1H] (root,112900,4352,00:00:04/690-13:02:56,1115) /usr/sbin/sshd -D (root,89708,2208,00:04:02/690-13:02:56,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:46/690-13:02:56,1463) qmgr -l -t unix -u (root,0,0,00:00:00/03:34:53,1565) [kworker/3:1] (root,0,0,00:00:07/690-13:02:55,1643) [kworker/6:1H] (root,0,0,00:00:18/690-13:02:45,1646) [kworker/1:1H] (root,0,0,00:00:18/690-13:02:21,1673) [kworker/0:1H] (root,0,0,00:00:24/690-13:01:47,1674) [kworker/5:1H] (root,34960,1744,00:00:00/690-13:00:42,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/06:27:53,2096) [kworker/6:2] (root,574280,19564,01:21:57/690-13:00:31,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,734400,20588,01:08:18/690-13:00:31,7698) /usr/sbin/rsyslogd -n (postfix,89848,4080,00:00:00/28:08,8189) pickup -l -t unix -u (root,0,0,00:00:00/04:19:56,8624) [kworker/1:0] (root,0,0,00:00:00/01:24:53,9096) [kworker/7:0] (onapp,98460,1984,00:00:00/05:16:02,9535) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,364728,93796,00:00:03/05:16:02,9536) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/06:13:59,9741) [kworker/5:0] (onapp,364672,93744,00:00:02/05:15:02,10106) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11640,00:00:00/05:11:56,12002) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:00/03:15:03,12492) [kworker/3:2] (root,0,0,00:00:00/02:16:03,12964) [kworker/0:2] (root,0,0,00:00:00/18:53,13471) [kworker/5:2] (root,0,0,00:00:00/01:16:03,13818) [kworker/4:1] (root,0,0,00:00:06/690-13:00:23,13987) [kworker/7:1H] (root,0,0,00:00:04/690-12:55:18,14018) [kworker/4:1H] (root,0,0,00:00:00/16:02,14859) [kworker/0:1] (root,0,0,00:00:20/690-13:00:15,14909) [kworker/2:1H] (root,0,0,00:00:00/15:03,15499) [kworker/2:0] (apache,277096,7896,00:00:07/6-01:48:02,17447) /usr/sbin/httpd -DFOREGROUND (apache,376976,12088,00:00:01/6-01:48:02,17448) /usr/sbin/httpd -DFOREGROUND (apache,377124,12128,00:00:02/6-01:48:02,17449) /usr/sbin/httpd -DFOREGROUND (apache,376980,11652,00:00:02/6-01:48:02,17450) /usr/sbin/httpd -DFOREGROUND (apache,376976,12108,00:00:02/6-01:48:02,17452) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/02:07:38,17639) [kworker/u16:1] (root,0,0,00:00:00/01:08:48,18148) [kworker/1:2] (ntp,25732,2012,00:10:37/690-12:30:13,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376712,18036,00:34:15/690-12:29:53,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,08:55:26/690-12:28:34,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,48704,07:56:33/690-12:28:34,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:32:39/690-12:28:34,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,5016,00:32:07/690-12:28:34,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:11:57/690-12:25:23,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (apache,376980,12100,00:00:01/6-01:43:52,19793) /usr/sbin/httpd -DFOREGROUND (apache,376976,12108,00:00:01/3-09:29:41,21765) /usr/sbin/httpd -DFOREGROUND (apache,376976,12072,00:00:01/3-09:29:40,21766) /usr/sbin/httpd -DFOREGROUND (onapp,1516172,7224,00:06:37/3-09:29:10,22136) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/03:02,22286) [kworker/4:2] (root,0,0,00:00:00/02:03,22767) [kworker/0:0] (root,11692,1292,00:00:00/00:00,23982) /bin/bash (root,64160,15200,00:00:00/00:00,23988) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare --auto (root,115412,1664,00:00:00/00:00,24011) /bin/bash /usr/bin/check_mk_agent (root,115412,1652,00:00:00/00:00,24041) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,24076) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,24077) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/13:24:53,29309) [kworker/7:1] (root,0,0,00:00:00/01:45:03,30236) [kworker/2:1] (root,0,0,00:00:00/46:02,30731) [kworker/6:0] (root,0,0,00:00:00/11:25:53,30789) [kworker/4:0] (apache,376976,11676,00:00:01/5-18:34:59,31309) /usr/sbin/httpd -DFOREGROUND (apache,376976,12092,00:00:01/5-18:34:58,31310) /usr/sbin/httpd -DFOREGROUND (apache,377124,12132,00:00:01/6-00:23:20,32029) /usr/sbin/httpd -DFOREGROUND Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-10-22 04:16 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf467350154e2cd2cFound public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3976,02:54:47/646-19:08:16,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:06/646-19:08:16,2) [kthreadd] (root,0,0,00:00:00/646-19:08:16,4) [kworker/0:0H] (root,0,0,00:06:40/646-19:08:16,6) [ksoftirqd/0] (root,0,0,00:00:31/646-19:08:16,7) [migration/0] (root,0,0,00:00:00/646-19:08:16,8) [rcu_bh] (root,0,0,08:24:24/646-19:08:16,9) [rcu_sched] (root,0,0,00:00:00/646-19:08:16,10) [lru-add-drain] (root,0,0,00:02:51/646-19:08:16,11) [watchdog/0] (root,0,0,00:02:52/646-19:08:16,12) [watchdog/1] (root,0,0,00:00:30/646-19:08:16,13) [migration/1] (root,0,0,00:05:19/646-19:08:16,14) [ksoftirqd/1] (root,0,0,00:00:00/646-19:08:16,16) [kworker/1:0H] (root,0,0,00:02:33/646-19:08:16,17) [watchdog/2] (root,0,0,00:00:30/646-19:08:16,18) [migration/2] (root,0,0,00:05:13/646-19:08:16,19) [ksoftirqd/2] (root,0,0,00:00:00/646-19:08:16,21) [kworker/2:0H] (root,0,0,00:02:34/646-19:08:16,22) [watchdog/3] (root,0,0,00:00:30/646-19:08:16,23) [migration/3] (root,0,0,00:05:37/646-19:08:16,24) [ksoftirqd/3] (root,0,0,00:00:00/646-19:08:16,26) [kworker/3:0H] (root,0,0,00:02:24/646-19:08:16,27) [watchdog/4] (root,0,0,00:04:55/646-19:08:16,28) [migration/4] (root,0,0,00:20:28/646-19:08:16,29) [ksoftirqd/4] (root,0,0,00:00:00/646-19:08:16,31) [kworker/4:0H] (root,0,0,00:02:30/646-19:08:16,32) [watchdog/5] (root,0,0,00:04:48/646-19:08:16,33) [migration/5] (root,0,0,00:23:05/646-19:08:16,34) [ksoftirqd/5] (root,0,0,00:00:00/646-19:08:16,36) [kworker/5:0H] (root,0,0,00:02:26/646-19:08:16,37) [watchdog/6] (root,0,0,00:04:39/646-19:08:16,38) [migration/6] (root,0,0,00:23:57/646-19:08:16,39) [ksoftirqd/6] (root,0,0,00:00:00/646-19:08:16,41) [kworker/6:0H] (root,0,0,00:02:38/646-19:08:16,42) [watchdog/7] (root,0,0,00:04:47/646-19:08:16,43) [migration/7] (root,0,0,00:27:16/646-19:08:16,44) [ksoftirqd/7] (root,0,0,00:00:00/646-19:08:16,46) [kworker/7:0H] (root,0,0,00:00:00/646-19:08:16,48) [kdevtmpfs] (root,0,0,00:00:00/646-19:08:16,49) [netns] (root,0,0,00:00:19/646-19:08:16,50) [khungtaskd] (root,0,0,00:00:00/646-19:08:16,51) [writeback] (root,0,0,00:00:00/646-19:08:16,52) [kintegrityd] (root,0,0,00:00:00/646-19:08:16,53) [bioset] (root,0,0,00:00:00/646-19:08:16,54) [bioset] (root,0,0,00:00:00/646-19:08:16,55) [bioset] (root,0,0,00:00:00/646-19:08:16,56) [kblockd] (root,0,0,00:00:00/646-19:08:16,57) [md] (root,0,0,00:00:00/646-19:08:16,58) [edac-poller] (root,0,0,00:00:00/646-19:08:16,59) [watchdogd] (root,0,0,00:00:00/646-19:08:16,66) [kswapd0] (root,0,0,00:00:00/646-19:08:16,67) [ksmd] (root,0,0,00:03:45/646-19:08:16,68) [khugepaged] (root,0,0,00:00:00/646-19:08:16,69) [crypto] (root,0,0,00:00:00/646-19:08:16,77) [kthrotld] (root,0,0,00:00:00/646-19:08:16,79) [kmpath_rdacd] (root,0,0,00:00:00/646-19:08:16,80) [kaluad] (root,0,0,00:00:00/646-19:08:15,82) [kpsmoused] (root,0,0,00:00:00/646-19:08:15,89) [ipv6_addrconf] (root,0,0,00:00:00/646-19:08:15,102) [deferwq] (root,0,0,00:06:12/646-19:08:15,139) [kauditd] (root,0,0,00:00:00/646-19:08:14,281) [scsi_eh_0] (root,0,0,00:00:00/646-19:08:14,282) [scsi_tmf_0] (root,0,0,00:00:00/646-19:08:14,291) [ixgbe] (root,0,0,00:00:00/646-19:08:14,304) [poll_megasas0_s] (root,0,0,00:00:00/646-19:08:14,306) [ttm_swap] (root,0,0,02:11:32/646-19:08:13,337) [jbd2/sda3-8] (root,0,0,00:00:00/646-19:08:13,338) [ext4-rsv-conver] (root,104584,54868,01:07:51/646-19:08:12,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:14:47/646-17:53:09,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27712,14:06:35/646-17:53:09,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10460,06:00:40/646-17:52:55,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/646-19:08:12,524) [kvm-irqfd-clean] (root,0,0,00:00:00/646-19:08:12,527) [jbd2/sda2-8] (root,0,0,00:00:00/646-19:08:12,528) [ext4-rsv-conver] (root,55532,1060,00:13:33/646-19:08:12,573) /sbin/auditd (polkitd,613004,14012,01:15:08/646-19:08:12,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,01:44:35/646-19:08:12,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:29:16/646-19:08:12,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,03:17:16/646-19:08:12,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:15:00/646-19:08:12,624) /usr/sbin/crond -n (root,110204,848,00:00:00/646-19:08:12,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/646-17:52:45,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/646-17:52:44,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,348500,20:52:18/646-17:52:44,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:18/646-19:08:09,930) [kworker/3:1H] (root,112900,4352,00:00:04/646-19:08:03,1115) /usr/sbin/sshd -D (root,0,0,00:00:00/1-00:20:09,1363) [kworker/3:0] (root,89708,2208,00:03:46/646-19:08:03,1458) /usr/libexec/postfix/master -w (postfix,89988,4272,00:00:43/646-19:08:03,1463) qmgr -l -t unix -u (root,0,0,00:00:06/646-19:08:02,1643) [kworker/6:1H] (root,0,0,00:00:17/646-19:07:52,1646) [kworker/1:1H] (root,0,0,00:00:17/646-19:07:28,1673) [kworker/0:1H] (root,0,0,00:00:22/646-19:06:54,1674) [kworker/5:1H] (root,34960,1744,00:00:00/646-19:05:49,1750) /usr/lib/systemd/systemd-udevd (root,0,0,00:00:00/1-00:19:03,2086) [kworker/1:0] (root,0,0,00:00:00/01:50:09,2279) [kworker/0:0] (root,0,0,00:00:00/51:09,2550) [kworker/6:0] (root,0,0,00:00:01/2-18:15:10,2987) [kworker/0:1] (apache,376852,11568,00:00:01/4-07:17:43,5312) /usr/sbin/httpd -DFOREGROUND (apache,376852,11596,00:00:01/4-07:17:41,5314) /usr/sbin/httpd -DFOREGROUND (apache,376852,11568,00:00:01/4-07:17:40,5315) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/03:39:09,6993) [kworker/5:1] (root,574280,19564,01:16:48/646-19:05:38,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,737604,37060,01:03:52/646-19:05:38,7698) /usr/sbin/rsyslogd -n (onapp,98460,1984,00:00:00/11:21:09,10852) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,367304,96268,00:00:05/11:21:09,10853) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (apache,276964,7812,00:00:04/4-08:06:10,10924) /usr/sbin/httpd -DFOREGROUND (apache,376852,11592,00:00:01/4-08:06:10,10925) /usr/sbin/httpd -DFOREGROUND (apache,376852,11600,00:00:00/4-08:06:10,10926) /usr/sbin/httpd -DFOREGROUND (apache,376984,11628,00:00:01/4-08:06:10,10928) /usr/sbin/httpd -DFOREGROUND (apache,376984,11616,00:00:01/4-08:06:10,10929) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/11:20:10,11361) [kworker/1:2] (onapp,367156,96264,00:00:05/11:20:09,11366) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,283912,11632,00:00:00/11:17:10,13091) /usr/bin/php-cgi -d session.save_handler=files -d session.save_path=/omd/sites/onapp/tmp/php/session -d upload_tmp_dir=/omd/sites/onapp/tmp/php/upload -d soap.wsdl_cache_dir=/omd/sites/onapp/tmp/php/wsdl-cache -d safe_mode=Off -d mysql.default_socket=/omd/sites/onapp/tmp/run/mysqld/mysqld.sock (root,0,0,00:00:06/646-19:05:30,13987) [kworker/7:1H] (root,0,0,00:00:04/646-19:00:25,14018) [kworker/4:1H] (root,0,0,00:00:18/646-19:05:22,14909) [kworker/2:1H] (apache,376852,11560,00:00:01/4-07:59:09,14941) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:23:46,17018) [kworker/u16:2] (root,0,0,00:00:00/02:21:10,17615) [kworker/3:1] (root,0,0,00:00:00/01:21:10,18265) [kworker/2:1] (ntp,25732,2012,00:09:56/646-18:35:20,18284) /usr/sbin/ntpd -u ntp:ntp -g (root,376580,17972,00:32:06/646-18:35:00,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,08:21:36/646-18:33:41,18985) python /omd/sites/onapp/bin/mkeventd (onapp,970160,48496,07:19:57/646-18:33:41,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:30:32/646-18:33:41,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (root,0,0,00:00:00/21:09,19080) [kworker/7:2] (onapp,98460,4956,00:30:06/646-18:33:41,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:11:11/646-18:30:30,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (onapp,1516232,7132,00:03:41/1-23:10:05,21055) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:01/2-07:56:02,21493) [kworker/5:0] (postfix,89848,4080,00:00:00/01:14:40,22095) pickup -l -t unix -u (root,0,0,00:00:00/1-05:32:08,23248) [kworker/6:2] (root,0,0,00:00:00/01:10:10,24402) [kworker/4:2] (root,0,0,00:00:00/1-04:28:10,26266) [kworker/7:0] (root,0,0,00:00:00/03:57:52,29326) [kworker/2:0] (root,0,0,00:00:01/1-04:20:10,30674) [kworker/4:0] (apache,376852,11544,00:00:00/2-01:47:38,30841) /usr/sbin/httpd -DFOREGROUND (apache,376852,11536,00:00:00/2-01:47:37,30842) /usr/sbin/httpd -DFOREGROUND (root,115412,1652,00:00:00/00:00,31018) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,31037) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,31038) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/57:23,31493) [kworker/u16:1] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-09-08 10:21 -
Severity: high
Fingerprint: 03cb82e6f6a6b45342c4bbcb4b4d50b4afb72cef0b083b4cf46735018bbd9284Found public CheckMk agent: Version: 1.4.0p31 AgentOS: linux Hostname: nagios.c1.onapp.iomart.com AgentDirectory: /etc/check-mk-agent DataDirectory: /var/lib/check_mk_agent SpoolDirectory: /var/lib/check_mk_agent/spool PluginsDirectory: /usr/share/check-mk-agent/plugins LocalDirectory: /usr/share/check-mk-agent/local OnlyFrom: Found process list through CheckMk: (root,191104,3960,02:35:12/564-06:59:09,1) /usr/lib/systemd/systemd --system --deserialize 17 (root,0,0,00:00:06/564-06:59:09,2) [kthreadd] (root,0,0,00:00:00/564-06:59:09,4) [kworker/0:0H] (root,0,0,00:05:49/564-06:59:09,6) [ksoftirqd/0] (root,0,0,00:00:26/564-06:59:09,7) [migration/0] (root,0,0,00:00:00/564-06:59:09,8) [rcu_bh] (root,0,0,07:15:13/564-06:59:09,9) [rcu_sched] (root,0,0,00:00:00/564-06:59:09,10) [lru-add-drain] (root,0,0,00:02:29/564-06:59:09,11) [watchdog/0] (root,0,0,00:02:30/564-06:59:09,12) [watchdog/1] (root,0,0,00:00:26/564-06:59:09,13) [migration/1] (root,0,0,00:04:36/564-06:59:09,14) [ksoftirqd/1] (root,0,0,00:00:00/564-06:59:09,16) [kworker/1:0H] (root,0,0,00:02:13/564-06:59:09,17) [watchdog/2] (root,0,0,00:00:25/564-06:59:09,18) [migration/2] (root,0,0,00:04:29/564-06:59:09,19) [ksoftirqd/2] (root,0,0,00:00:00/564-06:59:09,21) [kworker/2:0H] (root,0,0,00:02:14/564-06:59:09,22) [watchdog/3] (root,0,0,00:00:26/564-06:59:09,23) [migration/3] (root,0,0,00:04:50/564-06:59:09,24) [ksoftirqd/3] (root,0,0,00:00:00/564-06:59:09,26) [kworker/3:0H] (root,0,0,00:02:06/564-06:59:09,27) [watchdog/4] (root,0,0,00:04:15/564-06:59:09,28) [migration/4] (root,0,0,00:17:37/564-06:59:09,29) [ksoftirqd/4] (root,0,0,00:00:00/564-06:59:09,31) [kworker/4:0H] (root,0,0,00:02:11/564-06:59:09,32) [watchdog/5] (root,0,0,00:04:09/564-06:59:09,33) [migration/5] (root,0,0,00:19:52/564-06:59:09,34) [ksoftirqd/5] (root,0,0,00:00:00/564-06:59:09,36) [kworker/5:0H] (root,0,0,00:02:07/564-06:59:09,37) [watchdog/6] (root,0,0,00:04:01/564-06:59:09,38) [migration/6] (root,0,0,00:20:37/564-06:59:09,39) [ksoftirqd/6] (root,0,0,00:00:00/564-06:59:09,41) [kworker/6:0H] (root,0,0,00:02:17/564-06:59:09,42) [watchdog/7] (root,0,0,00:04:08/564-06:59:09,43) [migration/7] (root,0,0,00:23:20/564-06:59:09,44) [ksoftirqd/7] (root,0,0,00:00:00/564-06:59:09,46) [kworker/7:0H] (root,0,0,00:00:00/564-06:59:09,48) [kdevtmpfs] (root,0,0,00:00:00/564-06:59:09,49) [netns] (root,0,0,00:00:16/564-06:59:09,50) [khungtaskd] (root,0,0,00:00:00/564-06:59:09,51) [writeback] (root,0,0,00:00:00/564-06:59:09,52) [kintegrityd] (root,0,0,00:00:00/564-06:59:09,53) [bioset] (root,0,0,00:00:00/564-06:59:09,54) [bioset] (root,0,0,00:00:00/564-06:59:09,55) [bioset] (root,0,0,00:00:00/564-06:59:09,56) [kblockd] (root,0,0,00:00:00/564-06:59:09,57) [md] (root,0,0,00:00:00/564-06:59:09,58) [edac-poller] (root,0,0,00:00:00/564-06:59:09,59) [watchdogd] (root,0,0,00:00:00/564-06:59:09,66) [kswapd0] (root,0,0,00:00:00/564-06:59:09,67) [ksmd] (root,0,0,00:03:14/564-06:59:09,68) [khugepaged] (root,0,0,00:00:00/564-06:59:09,69) [crypto] (root,0,0,00:00:00/564-06:59:09,77) [kthrotld] (root,0,0,00:00:00/564-06:59:09,79) [kmpath_rdacd] (root,0,0,00:00:00/564-06:59:09,80) [kaluad] (root,0,0,00:00:00/564-06:59:08,82) [kpsmoused] (root,0,0,00:00:00/564-06:59:08,89) [ipv6_addrconf] (root,0,0,00:00:00/564-06:59:08,102) [deferwq] (root,0,0,00:05:25/564-06:59:08,139) [kauditd] (root,0,0,00:00:00/564-06:59:07,281) [scsi_eh_0] (root,0,0,00:00:00/564-06:59:07,282) [scsi_tmf_0] (root,0,0,00:00:00/564-06:59:07,291) [ixgbe] (root,0,0,00:00:00/564-06:59:07,304) [poll_megasas0_s] (root,0,0,00:00:00/564-06:59:07,306) [ttm_swap] (root,0,0,01:48:07/564-06:59:06,337) [jbd2/sda3-8] (root,0,0,00:00:00/564-06:59:06,338) [ext4-rsv-conver] (root,96384,52740,00:59:54/564-06:59:05,417) /usr/lib/systemd/systemd-journald (root,301156,4104,00:12:58/564-05:44:02,444) /opt/dell/srvadmin/sbin/dsm_sa_eventmgrd (root,1135996,27660,12:18:04/564-05:44:02,455) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,441848,10396,05:14:47/564-05:43:48,492) /opt/dell/srvadmin/sbin/dsm_sa_snmpd (root,0,0,00:00:00/564-06:59:05,524) [kvm-irqfd-clean] (root,0,0,00:00:00/564-06:59:05,527) [jbd2/sda2-8] (root,0,0,00:00:00/564-06:59:05,528) [ext4-rsv-conver] (root,55532,1060,00:11:51/564-06:59:05,573) /sbin/auditd (polkitd,613004,14012,01:06:10/564-06:59:05,612) /usr/lib/polkit-1/polkitd --no-debug (root,21672,1272,01:31:05/564-06:59:05,613) /usr/sbin/irqbalance --foreground (root,26516,1884,01:18:48/564-06:59:05,614) /usr/lib/systemd/systemd-logind (dbus,58244,2524,02:54:01/564-06:59:05,616) /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation (root,126420,1648,00:13:04/564-06:59:05,624) /usr/sbin/crond -n (root,110204,848,00:00:00/564-06:59:05,637) /sbin/agetty --noclear tty1 linux (root,799724,19864,00:00:00/564-05:43:38,651) /opt/dell/srvadmin/sbin/dsm_sa_datamgrd (root,138548,884,00:00:00/564-05:43:37,671) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,5627424,353996,18:09:40/564-05:43:37,672) /opt/dell/srvadmin/sbin/dsm_om_connsvcd -run (root,0,0,00:00:00/18:17:02,701) [kworker/3:1] (root,0,0,00:00:15/564-06:59:02,930) [kworker/3:1H] (root,112900,4352,00:00:04/564-06:58:56,1115) /usr/sbin/sshd -D (root,89708,2208,00:03:18/564-06:58:56,1458) /usr/libexec/postfix/master -w (postfix,89880,4084,00:00:38/564-06:58:56,1463) qmgr -l -t unix -u (root,0,0,00:00:05/564-06:58:55,1643) [kworker/6:1H] (root,0,0,00:00:15/564-06:58:45,1646) [kworker/1:1H] (root,0,0,00:00:15/564-06:58:21,1673) [kworker/0:1H] (root,0,0,00:00:19/564-06:57:47,1674) [kworker/5:1H] (root,34960,1744,00:00:00/564-06:56:42,1750) /usr/lib/systemd/systemd-udevd (onapp,98460,1768,00:00:01/23:12:03,2815) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (onapp,368572,97508,00:00:11/23:12:03,2816) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/10:12:03,4329) [kworker/5:1] (root,0,0,00:00:00/07:12:03,4613) [kworker/7:0] (root,0,0,00:00:00/03:12:03,4973) [kworker/7:1] (root,0,0,00:00:00/07:11:03,5176) [kworker/3:0] (root,0,0,00:00:00/12:03,5279) [kworker/1:2] (root,0,0,00:00:00/02:11:02,5635) [kworker/4:2] (root,0,0,00:00:00/01:11:02,5733) [kworker/6:2] (root,0,0,00:00:01/1-05:03:56,6710) [kworker/4:1] (root,0,0,00:00:02/3-21:51:46,6937) [kworker/0:2] (root,0,0,00:00:00/11:07:02,7002) [kworker/6:1] (apache,376992,11668,00:00:01/5-16:44:07,7418) /usr/sbin/httpd -DFOREGROUND (apache,376984,11668,00:00:01/5-16:44:06,7419) /usr/sbin/httpd -DFOREGROUND (apache,377012,12144,00:00:01/5-16:44:05,7420) /usr/sbin/httpd -DFOREGROUND (root,574280,19564,01:07:01/564-06:56:31,7479) /usr/bin/python2 -Es /usr/sbin/tuned -l -P (root,737580,35920,00:55:54/564-06:56:31,7698) /usr/sbin/rsyslogd -n (root,182504,2532,00:00:00/00:02,11763) /usr/sbin/CROND -n (onapp,113280,1448,00:00:00/00:02,11767) /bin/bash -c ticket.py PROCESS; ticket.py ALERT (onapp,172104,20956,00:00:00/00:02,11804) python /usr/local/bin/ticket.py PROCESS (root,11692,1296,00:00:00/00:00,12007) /bin/bash (root,73288,21052,00:00:00/00:00,12012) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare --auto (root,71692,19836,00:00:00/00:00,12038) /omd/versions/1.6.0p19.cre/bin/python /usr/bin/omd status --bare onapp (root,115412,1652,00:00:00/00:00,12040) /bin/bash /usr/bin/check_mk_agent (root,51732,1688,00:00:00/00:00,12060) ps ax -o user:32,vsz,rss,cputime,etime,pid,command --columns 10000 (root,13324,932,00:00:00/00:00,12061) sed -e 1d -e s/ *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) *\([^ ]*\) */(\1,\2,\3,\4\/\5,\6) / (root,0,0,00:00:00/23:52:51,13225) [kworker/5:2] (root,0,0,00:00:05/564-06:56:23,13987) [kworker/7:1H] (root,0,0,00:00:03/564-06:51:18,14018) [kworker/4:1H] (root,0,0,00:00:16/564-06:56:15,14909) [kworker/2:1H] (onapp,368108,97296,00:00:11/22:46:03,16955) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,0,0,00:00:00/13:47:50,17046) [kworker/2:1] (ntp,25732,2012,00:08:40/564-06:26:13,18284) /usr/sbin/ntpd -u ntp:ntp -g (apache,276828,7684,00:00:06/5-19:23:02,18505) /usr/sbin/httpd -DFOREGROUND (apache,377004,11672,00:00:01/5-19:23:02,18506) /usr/sbin/httpd -DFOREGROUND (apache,376992,11684,00:00:01/5-19:23:02,18507) /usr/sbin/httpd -DFOREGROUND (apache,376992,12084,00:00:01/5-19:23:02,18508) /usr/sbin/httpd -DFOREGROUND (apache,376992,11672,00:00:01/5-19:23:02,18510) /usr/sbin/httpd -DFOREGROUND (root,376444,17844,00:28:01/564-06:25:53,18605) /usr/sbin/httpd -DFOREGROUND (onapp,216388,21900,07:17:38/564-06:24:34,18985) python /omd/sites/onapp/bin/mkeventd (onapp,773552,34764,06:14:27/564-06:24:34,18991) /omd/sites/onapp/bin/rrdcached -t 4 -w 3600 -z 1800 -f 7200 -s onapp -m 660 -l unix:/omd/sites/onapp/tmp/run/rrdcached.sock -p /omd/sites/onapp/tmp/rrdcached.pid -j /omd/sites/onapp/var/rrdcached -o /omd/sites/onapp/var/log/rrdcached.log (onapp,229860,824,00:26:33/564-06:24:34,19010) /omd/sites/onapp/bin/npcd -d -f /omd/sites/onapp/etc/pnp4nagios/npcd.cfg (onapp,98460,4952,00:26:16/564-06:24:34,19084) /usr/sbin/httpd -f /omd/sites/onapp/etc/apache/apache.conf (root,27168,1132,00:09:43/564-06:21:23,19452) /usr/sbin/xinetd -stayalive -pidfile /var/run/xinetd.pid (root,0,0,00:00:00/45:39,19515) [kworker/u16:1] (postfix,89848,4080,00:00:00/43:42,20556) pickup -l -t unix -u (root,0,0,00:00:00/07:40:03,21882) [kworker/1:1] (apache,376992,11700,00:00:01/5-19:16:53,21959) /usr/sbin/httpd -DFOREGROUND (apache,376984,11564,00:00:00/17:37:14,22307) /usr/sbin/httpd -DFOREGROUND (apache,376992,11972,00:00:00/17:37:13,22311) /usr/sbin/httpd -DFOREGROUND (root,0,0,00:00:00/01:36:03,24539) [kworker/0:1] (onapp,1516468,8220,00:41:47/23-13:00:58,26063) /omd/sites/onapp/bin/nagios -ud /omd/sites/onapp/tmp/nagios/nagios.cfg (root,0,0,00:00:00/02:26:56,29556) [kworker/2:2] (root,0,0,00:00:00/24:31,31001) [kworker/u16:0] Found network interfaces through CheckMk: [start_iplink] 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: em1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:20 brd ff:ff:ff:ff:ff:ff 3: em2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 10:98:36:b3:b7:21 brd ff:ff:ff:ff:ff:ff 4: p2p1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ec brd ff:ff:ff:ff:ff:ff 5: p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff 6: p2p2.12@p2p2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000 link/ether 00:1b:21:bf:1c:ee brd ff:ff:ff:ff:ff:ff [end_iplink]Found on 2022-06-17 22:12
Domain summary
No record