There has been a recent rash of Windows 2003 customers being hacked and having "UTorrent" installed, as well as having their Administrator password changed, rendering the server inaccessible.

At the moment, we have yet to determine the vulnerability in Windows allowing the hackers to breach the systems however we believe it is related to RDP.
We highly suggest you are complying with the following, to lessen your risk of having your server compromised:

1) Run RDP on a non-standard port
http://support.microsoft.com/kb/306759

2) Run a software firewall on your machine, blocking ALL unnecessary ports on your server. You should only have the bare minimum open.

3) Limit any non-public access to your IP and trusted IPs only. This will prevent any other outside networks or servers from reaching your machine through ports which are not meant to be public (http for example)

4) Ensure you have FULL updates for your Windows O/S, immediately.

5) Ensure any 3rd party software you are running, has also been fully updated to the latest version including any patches.


Please make sure these suggestions are implemented immediately to lessen you risk of being hacked by the current wave of exploits.