HEX
Server: nginx/1.22.0
System: Linux iZuf6jdxbygmf6cco977lcZ 5.10.84-10.4.al8.x86_64 #1 SMP Tue Apr 12 12:31:07 CST 2022 x86_64
User: root (0)
PHP: 7.4.29
Disabled: passthru,exec,system,chroot,chgrp,chown,shell_exec,proc_open,proc_get_status,ini_alter,ini_restore,dl,readlink,symlink,popepassthru,stream_socket_server,fsocket,popen
$ pwd: /usr/local/aegis/PythonLoader/data/
Upload Files
File: //usr/local/aegis/PythonLoader/data/data.1196580.4
2024-10-17 12:20:02 [Info] ====================Start Python Loader : 01_43, Mar 20 2024 16:37:49====================
2024-10-17 12:20:02 [Info] Aegis root path is /usr/local/aegis
2024-10-17 12:20:02 [Info] Report thread
2024-10-17 12:20:02 [Info] Monitor thread
2024-10-17 12:20:02 [Info] timer 1 magic num is 0x734d74654e433731, interval is 5000ms, class name is 17CNetMsgHandlerMgr
2024-10-17 12:20:02 [Info] Ipc init: 0, IpcModName: Rtap1985104041729138802
2024-10-17 12:20:02 [Info] timer 2 magic num is 0x6f68747950433431, interval is 10000ms, class name is 14CPythonNetWork
2024-10-17 12:20:02 [Info] yundun connected
2024-10-17 12:20:03 [Info] Connect Yundun ipc server return state is 0
2024-10-17 12:20:03 [Info] Preload ids to config.
2024-10-17 12:20:03 [Info] start DownLoadBuffer update.aegis.aliyun.com/download/SecureCheck/Formal/linux64/rtap_cfg.data.md5
2024-10-17 12:20:03 [Info] start do http get request for update.aegis.aliyun.com/download/SecureCheck/Formal/linux64/rtap_cfg.data.md5
2024-10-17 12:20:03 [Info] start post buffer update.aegis.aliyun.com/file_policy/file
2024-10-17 12:20:03 [Info] http request success : https://update-vpc.aegis.aliyuncs.com/file_policy/file, http code : 200, curl ret : 0
2024-10-17 12:20:03 [Info] http request success : https://aegis.alicdn.com/rtap_file/official/release/linux64/rtap_cfg.data.md5, http code : 200, curl ret : 0
2024-10-17 12:20:03 [Info] http download from redirect url success with https://aegis.alicdn.com/rtap_file/official/release/linux64/rtap_cfg.data.md5
2024-10-17 12:20:06 [Info] Loader thread
2024-10-17 12:20:06 [Info] Remove Dump File Num:0
2024-10-17 12:20:06 [Info] Log file num: 301
2024-10-17 12:20:06 [Info] Remove log file num: 1
2024-10-17 12:20:06 [Info] run folder number is 0
2024-10-17 12:20:08 [Info] recvmsg:HELLO
2024-10-17 12:20:08 [Info] recvmsg:WORK
2024-10-17 12:20:08 [Info] item: --linux-autorun-check
2024-10-17 12:20:08 [Info] run folder is /usr/local/aegis/PythonLoader/plugin
2024-10-17 12:20:08 [Info] start DownLoadBuffer update.aegis.aliyun.com/download/SecureCheck/Formal/linux64/plugin/linux-autorun-check.py.md5
2024-10-17 12:20:08 [Info] start do http get request for update.aegis.aliyun.com/download/SecureCheck/Formal/linux64/plugin/linux-autorun-check.py.md5
2024-10-17 12:20:08 [Info] start post buffer update.aegis.aliyun.com/file_policy/file
2024-10-17 12:20:08 [Info] http request success : https://update-vpc.aegis.aliyuncs.com/file_policy/file, http code : 200, curl ret : 0
2024-10-17 12:20:08 [Info] http request success : https://aegis.alicdn.com/rtap_file/official/release/linux64/plugin/linux-autorun-check.py.md5, http code : 200, curl ret : 0
2024-10-17 12:20:08 [Info] http download from redirect url success with https://aegis.alicdn.com/rtap_file/official/release/linux64/plugin/linux-autorun-check.py.md5
2024-10-17 12:20:08 [Info] Prepare stage1: --linux-autorun-check
2024-10-17 12:20:08 [Info] Prepare stage2
2024-10-17 12:20:08 [Info] Prepare stage3
2024-10-17 12:20:12 [Info] Prepare stage4
2024-10-17 12:20:12 [Info] stage5: --linux-autorun-check
2024-10-17 12:20:12 [Info] Loader after check
2024-10-17 12:20:17 [Info] get GetCpuUse avg[0]
2024-10-17 12:20:23 [Info] recvmsg:EXIT
2024-10-17 12:20:23 [Info] Recv Exit Msg,Exit...
@ Telegram