Hi, looks like we have had a server compromised through RDP, I don't suppose they left any keys lying around?? Thanks for any help in advance.
Cheers.
scan_161208-211744.txt
FRST.txt
Addition.txt
DBCE17647B35F3A842D442D8A0FBE538C0.TXT
Encrypted File.zip
Unencrypted Copy.zip