Compartir a través de

My WebServer Got Infected!

  • Artículo

Well over the past day or so, my web server has been acting erratically. Services going down, websites not responding....

So I have been digging deeper into this tonight. What was odd is some service named servs32.exe kept trying to start every few seconds and failing. Leaving thousands of entries in the system event log. A web search did not reveal much about this executable, which led me to be even more suspicious since most windows services and applications are well documented online.

Ran a quick online scan and it did find some trojans. So right now I am running a full scan on the server to determine what is really going on. What I don't get is that I keep this server updated, nothing beyond a few basic services are open and nothing special was recently installed. So I am unsuer how it got infected in the first place. The only guess is someone managed to take advantage of some newer security hole.

Anyways, this explains why my websites (such as www.ParadoxalPress.com and www.SebbyLive.com ) have not been responding over the past day. I hope to have this fixed at some point tonight. Sheesh...

Comments