I have Windows 2003 server and I keep seeing bad logins from someone in the system log. I am the only one who uses this server as it is my own personal FTP and Remote Terminal server so I know I did not log on with bad credentials for 4 weeks in a row, not to mention again I got my own password for the Admin account wrong. What can I do to look up his IP address and possibly block him. Basicly what options are available to me. I remember when this first started I found the IP address in in the system log and I looked it up and found it was from the Philapenes so it does not look good. I need to just stop this fast and permenately.