smokinsarg
IS-IT--Management
I have a 2003 SBS Server here that was hacked previously, twice. The hacker disalbled my IIS server, installed apache and was hosting a phishing pay-pal site off the server. I have completely removed the Apache server and any services and files associates with the hacker. I have also created a new Administrative account for the domain and disabled the default administrator account. Is there any way I check to see if this hacker can get in again? Can someone also tell me how this server was hacked into originally?