It looks like my 2008 Windows Server may have been hacked. I am the admin, although not real experienced at it, and came in today to find that the Server had been rebooted.
When I tried to log in, it came up with a screen that looked somewhat like a desktop, but was a program calling itself "Virtual Screen" by a company called "Toplang".
The effect of the Virtual Screen is that I am locked out of my Server unless I enter an admin password, which needless to say I don't have, since I have never seen or heard of this program before.
The reason that I think it might be ransom-ware, is that when I go onto the Toplang website and look at their FAQs, under lost admin password, it says:
Frequently Asked Questions
Q: I have lost my admin password?
A: For our access control products, if you have lost your admin password, you can contact us for support.
NOTE: None can get your admin password back if you have lost it, and there are also no backdoor password in any of those products. This service works in a different way by creating a dynamic, temporary password.
Please click here to get control back if you have lost your admin password.
Desktop Lock Business
© 2001-2014 TopLang software, All Rights Reserved.
Home / Sitemap / Contact Us / Privacy / Bookmark
The wording about "click here to get control back" looked to me like they might be anticipating people would contact them and then pay money in desperation (which I admit I am getting close to...)