Solved

apache httpd.exe run cpu at 100% possibilité of hack

Posted on 2011-03-17
3
2,109 Views
Last Modified: 2013-11-13
Hi i have a problem with my server, some time in the day the cpu goes to 100% for 5 to 10 min.

i have xampp 1.7.3 running on windows 2003 server with Openx, my server are in my DMZ when i see the error of my server was hanging i run wireshark and i see a focr attack thac come from my server ip source: x.x.x.x Destination: 87.252.3.166 protocol :udp source port:ariliamulti destination port  8085
after the Ip destination change for 113.197.34.110 and destination port is http...

need help i think someone hack the http process...
0
Comment
Question by:lmercure
  • 2
3 Comments
 
LVL 34

Expert Comment

by:gr8gonzo
ID: 35174761
If I had to guess, I would say that you have an insecure script on your web server, and a hacker has found a way to use it.

1. When your CPU goes to 100%, if you go to the Task Manager and sort by CPU %, what processes have a lot of CPU usage?

2. Does it happen at the same time every day?

3. What do your web server logs say? Are there any scripts or files that are being accessed around the time that the CPU usage starts?
0
 

Accepted Solution

by:
lmercure earned 0 total points
ID: 35211143
1-  httpd.exe process

2 no at diffrent time if day.

3- no nothing i try to checkl on the access.log and i only see the log for access file i have a openx server that lod publicity.

thanks
0
 

Author Closing Comment

by:lmercure
ID: 35356842
change server
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

Introduction Since I wrote the original article about Handling Date and Time in PHP and MySQL (http://www.experts-exchange.com/articles/201/Handling-Date-and-Time-in-PHP-and-MySQL.html) several years ago, it seemed like now was a good time to updat…
If you’re thinking to yourself “That description sounds a lot like two people doing the work that one could accomplish,” you’re not alone.
In this fourth video of the Xpdf series, we discuss and demonstrate the PDFinfo utility, which retrieves the contents of a PDF's Info Dictionary, as well as some other information, including the page count. We show how to isolate the page count in a…
In this fifth video of the Xpdf series, we discuss and demonstrate the PDFdetach utility, which is able to list and, more importantly, extract attachments that are embedded in PDF files. It does this via a command line interface, making it suitable …

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now