how do I find out if I been hacked

Silvernet_UK · Dec 2, 2002

Hi,

How would I go about finding out if my server has been hacked, what do I look out for etc...

Regards,
Garry

pkuk · Dec 4, 2002

An easy way to check for unauthorised shell access is to login and look at the last ip address which logged in as that user, you should be able to see which ip block it was from, which would tell you if it was from your normal ISP, if it's not from the same range, it would look like someone else had accessed your shell. If you want to know the IP currently assigned by your ISP and therefore the normal range, do winipcfg from a DOS prompt in Win 95,98,ME, or ipconfig/all in NT,2K or XP...

Forums

The Community Forums

Interact with an entire community of cPanel & WHM users!

how do I find out if I been hacked

Silvernet_UK Member

pkuk Well-Known Member

I need to try to find a picture of the last install screen before its done.

Got disk full messaage but cPanel doesn't let me find where

How to find where 508 errors are coming from

how do i find /var folder in WHM??

Migration Problems Unable to find owner

Share This Page

Useful Searches

The Community Forums

Interact with an entire community of cPanel & WHM users!

how do I find out if I been hacked

Silvernet_UK Member

pkuk Well-Known Member

I need to try to find a picture of the last install screen before its done.

Got disk full messaage but cPanel doesn't let me find where

How to find where 508 errors are coming from

how do i find /var folder in WHM??

Migration Problems Unable to find owner

Share This Page