troubleshooting Question

IPsec / Open Ports

Avatar of breadsbox
breadsboxFlag for United States of America asked on
Windows Server 2008
6 Comments1 Solution1170 ViewsLast Modified:
Hello Experts!

Recently I had an "acquaintance" of mine help me set up my virtual private server which I am hosting at 1and 1.com to run my websites.

I think that he set up some type of back door or left some ports open for himself to come back in and access my information.  You just know when people are acting shading.

He said that he doesn't like to use Windows Firewall and used some standard IPsec settings that work best for him.

when I run a port scanner is saw these ports open
Open Port 21 is open  
Open Port 25 is open
Open Port 80 is open
Open Port 135 is open
Open Port 139 is open
Open Port 3389 is open
 image of IPsec
When I was reading up the open ports I saw that hackers like ports 135 and 139.

Can you please tell me if there is a way for me to see if he's been logging on or downloading info from my server. Maybe through the event log?

And should any of these ports be closed , if so how ?

Thanks in advance for your help.
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 6 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 6 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros