Hi,
Our server seems to be hacked now again - and I am looising confidence in this solution.
Suddenly MySQL-started to mess up - and won´t start at all now. Mail can´t be checked and all DirectAdmin password is not working.
The positive sides: FTP is working. VMWare Infrastructure Client can be accessed, but the seems to be running constantly at 30-40%. Earlier, a few days ago, everything was running smoothly at an average of 7-10%.
In an desperate attempt (it is a new server) I tried to rename the /home-folder just to check if this had impact on CPU usage, but it hadn´t. The server was still running at the same levels: 30-40% of the full bar in VMware.
I am no expert on this, but WHAT can be done, and how can we locate the hacker attack and secure our server properly ?
I´m getting very tired and fed up with it all now, and are close to giving it up completly. The solution now is to change to a new ISP, but maybe I don´t have to do this if this can be fixed and secured.
Server:*Xeon X3210,*Quad Core,*2.13GHz -*6144 MB of RAM, RedHat/CentOS.
Our passwords has been to secure ones, and I have absolutely and are getting no help from my ISP on this one.
Any ideas??
Our server seems to be hacked now again - and I am looising confidence in this solution.
Suddenly MySQL-started to mess up - and won´t start at all now. Mail can´t be checked and all DirectAdmin password is not working.
The positive sides: FTP is working. VMWare Infrastructure Client can be accessed, but the seems to be running constantly at 30-40%. Earlier, a few days ago, everything was running smoothly at an average of 7-10%.
In an desperate attempt (it is a new server) I tried to rename the /home-folder just to check if this had impact on CPU usage, but it hadn´t. The server was still running at the same levels: 30-40% of the full bar in VMware.
I am no expert on this, but WHAT can be done, and how can we locate the hacker attack and secure our server properly ?
I´m getting very tired and fed up with it all now, and are close to giving it up completly. The solution now is to change to a new ISP, but maybe I don´t have to do this if this can be fixed and secured.
Server:*Xeon X3210,*Quad Core,*2.13GHz -*6144 MB of RAM, RedHat/CentOS.
Our passwords has been to secure ones, and I have absolutely and are getting no help from my ISP on this one.
Any ideas??
