All my sites using PHP load extremely slow, I contacted support and they replied saying my scripts get killed by The Process Watcher daemon for using up too many resources.
Everything was fine until a few days ago, and I didn’t change anything since then. I used the ssh script to look for abusive IPs but there were none.
I looked in the domains log file and I see a bunch of sites all ending in .rr.nu/ like these:
Are these domains attacking my sites?
Can anyone advise on what to do next?