I have a windows 2000 server that had iis and tomcat web server running on it. We don't think that either one of them is using port 443, yet when we telnet into port 443 on it, we telnet into Serv-U FTP server.
We uninstalled IIS on the server, because we didn't need it, and Serv-U still was running. I'm not sure what the process name is for Serv-U, so we can't end it or search for it.
Aside from shutting off Tomcat, how else can we verify what is launching Serv-U and whether we need it? We are worried that it might be from spyware, rootkit, virue, etc....
Does anyone have any suggestions on how we can proceed with finding out why it's there and whether we need it?