Urgent Help Needed...Might Be Hacked

A couple of days ago I noticed that my Windows Firewall was warning be about a TCP Hijacking Tool. So, I notified my server manager about it, and they checked and could find nothing wrong.

So, it happened again yesterday, so I tried to block it, but then I could not communicate with my managed server.

Today, it happened again, but this time it was PPTP Badmagic.

My FTP session disconnected, and since then I cannot access that domain via HTTP or FTP.

The rest of the domains seem to be working, but that one is dead!

Using an online nslookup tool, and their nameserver:

DNS server handling your query: ns1.kloth.net
DNS server's address: 213.133.98.149#53

Non-authoritative answer:
cybeargifts.com nameserver = ns02.imaginiqueinc.com.
cybeargifts.com nameserver = ns01.imaginiqueinc.com.

Authoritative answers can be found from:
cybeargifts.com nameserver = ns02.imaginiqueinc.com.
cybeargifts.com nameserver = ns01.imaginiqueinc.com.

It also looks like my nameserver is having issues to (same query from using my ns:

nslookup: Couldn't find server 'NS01.IMAGINIQUEINC.COM': Name or service not known



It seems like my nameserver is inoperable, but when I restart it, it doesn't say that it has any problems.

Any help would sure be appreciated. This server was running fine earlier today. At the time it went south, I was copying a new configuration off of my server onto my local computer to play with some of the settings.

 

 

 

 

Top