Hey Everyone,
I'm currently trying to recover from a server breach (when I was put in charge of the server there was no AV and no firewall for about 4 months before). It appears that the server has been accessed using the "WinEggDrop" utility, and it is allowing new active directory users to be created.
I am wanting to do a full server reinstall to start from scratch and remove any of the weird settings that were initially setup (ie, no partitioning of hard drives for system and data and database files). We have been doing 2 full backups weekly on a tape drive.
The server in question is a Windows Server 2003 SBS edition running Active Directory, Exchange, and MSSQL.
Now here is my question. I know it's easy to migrate MSSQL database files, just unmount them and then mount them on a new server. However, my problem lies with Active Directory and Exchange. Is there a guide that shows how to restore both of them to a new system? I know there are files for MSExchange that store the e-mails, but will it matter if I cannot backup the Active Directory? Can I create the users after I import the Exchange files? Or rather, before?
Any help on this would be appreciated.
Thanks,
Kyle