Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Docker infection?

Featured Replies

Yesterday I noticed my cpu was maxed out and found a docker that I had not added was running. "zealous_wu".  I stopped and removed it and everything returned to normal.  this morning i have another docker that appeared 2 hours ago called "fervent_roentgen".

Is my system infected and what should I do?

  • Community Expert

Have you allowed access to your server from outside your LAN?

 

Go to Tools - Diagnostics and attach the complete Diagnostics ZIP file to your NEXT post in this thread.

  • Community Expert

Not much to see in syslog since immediately after reboot.

 

1 hour ago, trurl said:

Have you allowed access to your server from outside your LAN?

 

@Touchy

 

Have you put your server in the DMZ or have you allowed outside access to your machine?

Docker containers are titled with an adjective followed by a scientist by default if they are unnamed locally.

  • Community Expert
2 minutes ago, sparklyballs said:

Docker containers are titled with an adjective followed by a scientist by default if they are unnamed locally.

I know docker created those names. We suspect someone has hacked the user and created a docker on their machine, likely crypto mining or some such. Other cases of that and even worse happening to new users lately, hence the link Squid posted above.

12 minutes ago, trurl said:

I know docker created those names. We suspect someone has hacked the user and created a docker on their machine, likely crypto mining or some such. Other cases of that and even worse happening to new users lately, hence the link Squid posted above.

 

Need to run

Quote

docker ps -a

 

to get the image name that the container is using and find out where the image is coming from and what it is.

Edited by sparklyballs
code block

  • Author

Thank you guys.  I had port 8080 and 80 open since I was making some adjustments remotely.  I've now removed those port forwards so we'll see how that goes.

Archived

This topic is now archived and is closed to further replies.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.