今天我的搬 wa 工出事了

KiwiVM has detected the following process on this server:
[getty] /usr/bin/bsd-port/getty

This process is a malware binary installed on the server with the sole purpose to perform abuse (DoS attacks, spamming, etc).
Seems like this server has been compromised and therefore it has been suspended to prevent further damage.

List of processes

827270 init init
827271 kthreadd/210090

827272 khelper/210090

827435 udevd /sbin/udevd -d
827902 dbus-daemon dbus-daemon --system
827924 NetworkManager NetworkManager --pid-file=/var/run/NetworkManager/NetworkManager.pid
827929 modem-manager /usr/sbin/modem-manager
827955 wpa_supplicant /usr/sbin/wpa_supplicant -c /etc/wpa_supplicant/wpa_supplicant.conf -B -u -f /var/log/wpa_supplicant.log -P /var/run/wpa_supplicant.pid
827982 cupsd cupsd -C /etc/cups/cupsd.conf
827994 hald hald
827995 hald-runner hald-runner
828055 pcscd pcscd
828072 sshd /usr/sbin/sshd
828079 yg666 /root/yg666
828222 getty /usr/bin/bsd-port/getty
828260 .sshd /usr/bin/.sshd

Conntrack table (1 lines)

ipv4 2 udp 17 24 src=45.78.40.192 dst=8.8.8.8 sport=44782 dport=53 src=8.8.8.8 dst=45.78.40.192 sport=53 dport=44782 mark=0 secmark=0 use=2

这两天想折腾下 CentOS 的远程桌面，于是安装了 vnc ， KDE
用了 putty 、 flashFxp 、 vnc 等软件连接 vps
搬 wa 工页面显示可以有 3 次荡机机会， 3 次后就要到 17 年 1 月才解封。
我一下子就用了两次，后来重新安装了 OS
然而我不明白上面的信息的具体情是什么，只知道有个 getty 做怪