Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Gossi The Dog (gossiOWNED.LAB6.COM)
Date: Fri Apr 27 2001 - 21:35:57 CDT
On Fri, 27 Apr 2001, CL: Nelson, Jeff wrote:
> Good afternoon,
> I would appreciate it if somebody could shed some light on some things I've
> come upon with regard to our web server.
> In the ftproot directory I came upon a folder with no name. There were other
> folders inside this one, one folder per folder, nested 13 levels deep and
> then 3 files. The folder these files were in was
> 04.19.01.X-COM_Enforcer-Razor1911. I've not heard of this before.
X-Com Enforcer is a game, published by Microprose. Razor is a pirate
If it is in your ftproot folder, people are using your FTP service to
peddle software. They probably either have anonymous permissions to
upload, or have owned the box via the various IIS exploits kicking about
(goto Google and search for IIS Unicode).
Disable the MS FTP service, delete the files from the command prompt,
tighten the box security, then restart the service if you need it.