Click here to Skip to main content
Rate this: bad
good
Please Sign up or sign in to vote.
See more: Win2003 IIS6
I got a hacker intrusion on my Win-2003 IIS server and the log appeared that the intruder
was able to logon anonymously? The web serivce setting has somehow been changed and I
can not see any website setup in IIS. Instead I see an menu item "Connect to a Computer"
 
This looks like the IIS can not even link to the local computer where it is installed? Therefore
I do not have option to add a website or see any previous setup.
 
However no matter what I put in to the computer name, the IP address, the localhost, or the machine name,
the connect to computer just would not work.
 
Can some one point me a direction how to solve this problem. It has to be some services need
to be activated or IIS setting got to put back?
 
Thanks.
 
rgds,
kfl.
Posted 26-Aug-12 20:37pm
KFLee484

1 solution

Rate this: bad
good
Please Sign up or sign in to vote.

Solution 1

The solution is to get backup from system32/intersrv/history the file called metabase.xml and out it back to system32/intersrv. Obviously the hacker managed to delete this file for whatever the reason and method unknow?
  Permalink  

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

  Print Answers RSS
0 DamithSL 305
1 OriginalGriff 275
2 Sergey Alexandrovich Kryukov 207
3 Peter Leow 185
4 Afzaal Ahmad Zeeshan 154
0 OriginalGriff 7,460
1 DamithSL 5,519
2 Sergey Alexandrovich Kryukov 4,954
3 Maciej Los 4,936
4 Kornfeld Eliyahu Peter 4,514


Advertise | Privacy | Mobile
Web04 | 2.8.141223.1 | Last Updated 29 Aug 2012
Copyright © CodeProject, 1999-2014
All Rights Reserved. Terms of Service
Layout: fixed | fluid

CodeProject, 503-250 Ferrand Drive Toronto Ontario, M3C 3G8 Canada +1 416-849-8900 x 100