Re: W2K IIS under attack
From: Miha Pihler (miha.pihler_at_Atlantis-N0Spam.si)
Date: 08/02/03
- Next message: Miha Pihler: "Re: Firewall Server not allowing view of .idq file"
- Previous message: Miha Pihler: "Re: blocking internet pop ups"
- In reply to: Sam: "W2K IIS under attack"
- Next in thread: Karl Levinson [x y] mvp: "Re: W2K IIS under attack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 2 Aug 2003 12:54:30 +0200
Is this Internet Web server or is it Intranet. If it is Internet is it
firewall protected? Which ports are opened? It should be only port 80 (and
443 if you use SSL).
Do you have any IIS logs to check out what kind of requests IIS received...
-- Mike MCSA 2K, MCSE 2K, MCT, ... "Sam" <samwang68@hotmail.com> wrote in message news:6f9701c358b6$729119f0$a001280a@phx.gbl... > Please help. > > Recently, my Windows 2000 Server is under attack. The > network is suddently under heavy traffic; the hub LED is > contantly on. Try to use Systinternals's tool TDImon and > could not find any special activity. > > However, after the traffic LED stops, the IIS is NOT > working anymore. Try to access the local IIS will get DNS > error: showing the dnserror.htm. Also, lost the connection > to other workgroup computers: can not broswer this > computer form other computers under the local network. > > After restart the IIS web service, the website comes back. > > Try the VirusScan 7.0 and could not find any virus on the > computer and apply very latest patches from Microsoft. > > Any ideas, experts? > > Thank you very much in advance.
- Next message: Miha Pihler: "Re: Firewall Server not allowing view of .idq file"
- Previous message: Miha Pihler: "Re: blocking internet pop ups"
- In reply to: Sam: "W2K IIS under attack"
- Next in thread: Karl Levinson [x y] mvp: "Re: W2K IIS under attack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
