Solved

Server Hacked and can't delete folders placed on it HELP

Posted on 2004-09-22
3
388 Views
Last Modified: 2010-08-05
OK I know I should have had secure account set up on my IIS 5 ftp server, but I didn't and now I am paying the price.  Someone logged in anomyously on my server and created a folder with no name.  I mean it is just blank in the name, but it shows up blank as a directory in the command line also.  I have tried to delete the folder but all I get is folder or file cannot be found.  Please help me get rid of this folder and all of its subcontents.  If you need more information please ask.
0
Comment
Question by:jk9694
  • 2
3 Comments
 
LVL 1

Accepted Solution

by:
darkdrago earned 500 total points
ID: 12128403
well you could probably use something like knoppix to delete the folder
http://www.knoppix.org/
that would probably be the easiest thing to do
0
 
LVL 1

Author Comment

by:jk9694
ID: 12128593
Great that worked and i figured worse comes to worse I could just reformat the drive I do keep really good backups.  What or how can a folder/directory be created that shows up like that?  I was able to browse the folder, but like i said deleting was impossible even as the administrator.
0
 
LVL 1

Expert Comment

by:darkdrago
ID: 12145187
sorry about the long delay as I am currently getting ready to move.
I dont believe that is was you didnt have permission to delete it. I think it was a bug in windows itself. I remember back in windows 98 days (or at least that was when I heard of it) that you could name a folder with a certain ascii code and it couldnt be deleted via gui and possible commandline.
Now for this person to do something like that on your box they may have gotten a local console and did it or probably used a *nix os got into the system then just made it remotely. There are probably other ways but I dont know off hand.
found a couple more things to that you might want to look at just for reference.
http://support.microsoft.com/default.aspx?scid=kb;en-us;120716
http://support.microsoft.com/default.aspx?scid=kb;en-us;320081
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In 2017, ransomware will become so virulent and widespread that if you aren’t a victim yourself, you will know someone who is.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now