Blank directories are being created on my Windows Server 2003 virtual server with sub directories that are weird (for example: "88ÿ ÿ ÿÿþþ þþ13þ"). It looks like they are uploading bootlegged DVDs and pirated software. All of my bandwidth and file space is being eaten up.
Could this be a shared permissions issue? Where should I look to further investigate this?
My security permissions for the directory that is being hit are as followed:
Administrators – ALL GRANTED
IIS_WPG – Read & Execute, List Folder Contents, Read
Internet Guest – DENY
SYSTEM – ALL GRANTED
Users – Read & Execute, List Folder Contents, Read
My Event Viewer is showing many Logon/Logoff with NO IP?
Best Answer
Sounds bad, and unfortunately the only safe course of action is pretty drastic:
Hopefully you have sufficient backups... If you don't have everything you need backed up, you could add another step in there where you cautiously copy data files off - I wouldn't really trust anything except text files.