BotFence

BotFence, the all-time best tool to automatically block the IP addresses with hacking attempts on your windows server services using Windows firewall.
Regain your system speed and optimize it performance with this program that will automatically block IP addresses with hacking attempts on your windows server services (rdp, FTP, SQL-Server) using the Windows firewall. This perfect tool runs as a Windows background service and monitors RDP, FTP und SQL-Server events for failed logins. This effective program performs tasks like: ability to monitor Remote Desktop, SQL-Server, Wordpress sites, FTP and Filezilla-FTP; displays the country of the attackers, Notifies the administrator by email about newly blocked hacking attempts, notifies the administrator with daily or weekly summaries of the blocked attacks, and much more.
BotFence, this exclusive tool runs as a Windows background service and monitors RDP, FTP und SQL-Server events.

Automatically blocks IP addresses with hacking attempts on your windows server services (rdp, FTP, SQL-Server) using the Windows firewall.
The software runs as a Windows background service and monitors RDP, FTP und SQL-Server events for failed logins. If a configurable number of failed login events is detected from the same IP address BotFence dynamically lists that IP address im the Windows firewall as blocked.
If your Windows server is reachable from the internet and you want certain services like remote desktop, FTP transfers or SQL-Server to be accessible from outside then hacking attempts on your server will definitely be made. Numerous automated hacking tools, called 'bots' are active on the internet. They scan IP address ranges for published services and when they find FTP, RDP or SQL-Server services active they will try hundreds or even thousands of frequently-used passwords. 'Administrator' (rdp) and 'sa' (superuser for SQL-Server) are the most targeted accounts. As long as the bots don't guess your passwords right you'll probably never now about them, apart from the high server load caused by the thousands of login attempts.