Hacked??!?!?!
What do my plots indicate may have happened?
~~![](<URL url=)http://www.eld101.com/cpuplot.png
~~![](<URL url=)http://www.eld101.com/networkplot.png
~~![](<URL url=)http://www.eld101.com/ioplot.png
Any suggestions for logs or other places/things to check?
Thanks for the help…. I am a n00b!~~
3 Replies
Use a tool like iftop to figure out what ports the traffic is going over. Then use netstat to figure out what processes are running on those ports. top should tell you what's on the cpu pretty easily.