Strange File Found In My XS: /files/py2
There's a copy of my XS site on my computer and inside the "files" folder there's no file called "py2" but in the live version of my site there is and I'm writing here to seek an understanding of what that file is please.
Apparently it was created on 30Aug and when I view it in Notepad, there are lots of symbols and the following text amongst those symbols:
Quote:
v ƒë�ÿЋ�ƒøÿuôX[ÉÃU‰åSè [Ã�� PèªûÿÿY[Éà � � � [+] getting root shell
/bin/sh [-] execle
prctl() suidsafe exploit
(C) Julien TINNES
/proc/self/exe [-] readlink This is not fatal, rewrite the exploit
[-] signal [+] Installed signal handler
/etc/cron.d [-] chdir [-] prtctl Is you kernel version >= 2.6.13 ?
[+] We are suidsafe dumpable!
/etc/cron.d/core
[-] cronstring is too small
[+] Malicious string forged
[-] fork [+] Segfaulting child
[-] kill [+] Waiting for exploit to succeed (~%ld seconds)
[-] It looks like the exploit failed
The current owner of the file is: Webserver
I've stuck the file here:
http://europeclubitalia.net/xs/uploads/
I would greatly appreciate an explanation of what the function of this file might be.
Thanks in advance
Melbourne
kkkk
