Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Windows Server 2003

Started by futures , Jun 14 2006 02:04 PM

  • Please log in to reply

#1
futures
Posted 14 June 2006 - 02:04 PM

futures

    New Member

  • Member
  • Pip
  • 2 posts
We were hacked into a couple of weeks ago. It had to do with a DMZ being open. That part of it is now fixed, but I am unable to log into the server. There ust be some setting that was affected because what I end up typong on the keyboard is compelety different on the screen. It is almost like it is encrypted somehow. For instance my m is a ?, z is an a, etc.

Does anyone have any idea on where to look to determine where this could be coming from?
  • 0

Advertisements

#2
kunwon1
Posted 15 June 2006 - 08:08 AM

kunwon1

    Member

  • Member
  • PipPip
  • 59 posts
Check your regional/language options, make sure you're not set up to use an alternate kb layout or an alternate language. Failing that, it's always been my philosophy that once a box gets hacked, the only way to be absolutely sure it's clean is to reinstall the OS. Just my opinion, o'course.
  • 0

#3
dsenette
Posted 15 June 2006 - 08:13 AM

dsenette

    Je suis Napoléon!

  • Community Leader
  • 26,047 posts
  • MVP
i'm gonna aggree with that last statement...if i know for a fact someone from outside was in my server....i'd format and reinstall....and be very wary of my backup tape (unless i knew exactly when they got in)
  • 0

#4
futures
Posted 15 June 2006 - 10:01 AM

futures

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
I did check the regional/language settings and it is all set to English-US. Whoever it was was using us for an internet connection. They were continuously pinging out to find another place. We were kind of being used as the middle man to search fro something else. Anyway, I did go through all of the user profiles yesterday and found one that I did not recognize. I deleted it and today everything seems to be going O.K.

Thanks for the posts.
  • 0

#5
kunwon1
Posted 15 June 2006 - 10:51 AM

kunwon1

    Member

  • Member
  • PipPip
  • 59 posts
If they were constantly pinging out, it might be worth looking into whether your server was a participant in a Denial of Service attack. Reason being, if your attacker was utilizing your server as a tool to flood someone with packets/ICMP pings, you could end up being blamed/blacklisted/talked about behind your back.

Just a suggestion :whistling: Glad to hear you got your server working again.
  • 0
Back to Windows XP, 2000, 2003, NT · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Windows XP, 2000, 2003, NT

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP