after it has been hacked nothing much you can do. The encryption password is needed to decrypt the files. You can try to decrypt it but this will take up to years using some methodological way.

However, to prevent this from happening again, you should have installed some sort of security measures like below:
1) change remote desktop port to another number
2) set your firewall to limit only allow login from your set of IPs
3) use cert which I believe new version of remotedesktop support
4) implement some anti-bruteforce attack like locking the IP after it failed login attempt for 5 times.

With 1-4 implemented you are pretty much 99% secure. I believe all these can be implemented at very minimum cost. Some even does not cost anything to implement.

This post has been edited by abubin: Oct 31 2013, 12:07 PM