Welcome to WinForumz.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

Advice for someone in trouble

  
   Windows XP Arc2 (Home) -> Security Admin RSS
Next:  why would speed of ntfs do  
Author Message
infiniteuk

External


Since: Oct 30, 2006
Posts: 2



(Msg. 1) Posted: Mon Oct 30, 2006 3:03 pm
Post subject: Advice for someone in trouble
Archived from groups: microsoft>public>windowsxp>security_admin (more info?)
Dear all,

I'm a developer with a local government in the UK, who have a pretty
standard coporporate network accommodating various hardware and software
services.

I was suspended from work today following a meeting with the head of IT
because they have logs that my system appeared to be running somekind of
scanning software that over a period of hours interogated 1200 machines on
the network. There's no scanning software installed by the way, well none
that I know of.

Could anyone offer a logical explanation for this? I use a number of
development packages e.g. MS SQL Studio Express, Dreamweaver, VS2005 and
while I do download a lot of opensource development tools I can't think of
anything that would have given this effect. I do have access to various
server across the network and sometimes use nslookup etc...

Any help would be very much appreciated.

Infinite

 >> Stay informed about: Advice for someone in trouble 
Back to top
Login to vote
Thurman

External


Since: Oct 30, 2006
Posts: 3



(Msg. 2) Posted: Thu Nov 02, 2006 6:15 am
Post subject: RE: Advice for someone in trouble [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Are you sure you didn't have any spyware or malware on your computer? Some
of the latest virus/spywarwe/etc can take atvantage of open port on your
system. They can also use vulabliities in Windows if you haven't updated
your Os with all the latest system updates. I suggest they run "Windows
Defender", "Ad-Aware", "Spybot Search And Destroy" and the most up to date
anti-virus software on your computer. That would at least tell them if you
have something hidden on your system. Also did anyone have phsical access to
your computer? they might have installed something you don't know about.

"infiniteuk" wrote:

> Dear all,
>
> I'm a developer with a local government in the UK, who have a pretty
> standard coporporate network accommodating various hardware and software
> services.
>
> I was suspended from work today following a meeting with the head of IT
> because they have logs that my system appeared to be running somekind of
> scanning software that over a period of hours interogated 1200 machines on
> the network. There's no scanning software installed by the way, well none
> that I know of.
>
> Could anyone offer a logical explanation for this? I use a number of
> development packages e.g. MS SQL Studio Express, Dreamweaver, VS2005 and
> while I do download a lot of opensource development tools I can't think of
> anything that would have given this effect. I do have access to various
> server across the network and sometimes use nslookup etc...
>
> Any help would be very much appreciated.
>
> Infinite
>
>
>

 >> Stay informed about: Advice for someone in trouble 
Back to top
Login to vote
infiniteuk

External


Since: Oct 30, 2006
Posts: 2



(Msg. 3) Posted: Thu Nov 02, 2006 12:04 pm
Post subject: Re: Advice for someone in trouble [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Hi,

Thanks for replying. I'm not ware of any malware/spyware etc, although I do
download a lot of opensource development appz and I suppose something could
have piggybacked.

I was wondering if a directory search across that network would yield
similar results as I do remmeber gathering corporate images to use for web
design and it was a pretty long search on one of the network drives?

Many thanks


"Thurman" <Thurman.RemoveThis@discussions.microsoft.com> wrote in message
news:9340DC9C-AD41-4167-839B-24690AB0214E@microsoft.com...
> Are you sure you didn't have any spyware or malware on your computer?
> Some
> of the latest virus/spywarwe/etc can take atvantage of open port on your
> system. They can also use vulabliities in Windows if you haven't updated
> your Os with all the latest system updates. I suggest they run "Windows
> Defender", "Ad-Aware", "Spybot Search And Destroy" and the most up to date
> anti-virus software on your computer. That would at least tell them if
> you
> have something hidden on your system. Also did anyone have phsical access
> to
> your computer? they might have installed something you don't know about.
>
> "infiniteuk" wrote:
>
>> Dear all,
>>
>> I'm a developer with a local government in the UK, who have a pretty
>> standard coporporate network accommodating various hardware and software
>> services.
>>
>> I was suspended from work today following a meeting with the head of IT
>> because they have logs that my system appeared to be running somekind of
>> scanning software that over a period of hours interogated 1200 machines
>> on
>> the network. There's no scanning software installed by the way, well none
>> that I know of.
>>
>> Could anyone offer a logical explanation for this? I use a number of
>> development packages e.g. MS SQL Studio Express, Dreamweaver, VS2005 and
>> while I do download a lot of opensource development tools I can't think
>> of
>> anything that would have given this effect. I do have access to various
>> server across the network and sometimes use nslookup etc...
>>
>> Any help would be very much appreciated.
>>
>> Infinite
>>
>>
>>
 >> Stay informed about: Advice for someone in trouble 
Back to top
Login to vote
Thurman

External


Since: Oct 30, 2006
Posts: 3



(Msg. 4) Posted: Thu Nov 02, 2006 12:04 pm
Post subject: Re: Advice for someone in trouble [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Directory searches would not show you "pinging" other users on the network.
I bet you have some form of spyware on that computer. It could have been
downloaded through on of the programs you use or simply by going to a web
page that took advanage of IE. I would ask them to do the scans with the
computer off the network and see what they come up with.

Good Luck,
TJ

"infiniteuk" wrote:

> Hi,
>
> Thanks for replying. I'm not ware of any malware/spyware etc, although I do
> download a lot of opensource development appz and I suppose something could
> have piggybacked.
>
> I was wondering if a directory search across that network would yield
> similar results as I do remmeber gathering corporate images to use for web
> design and it was a pretty long search on one of the network drives?
>
> Many thanks
>
>
> "Thurman" <Thurman.RemoveThis@discussions.microsoft.com> wrote in message
> news:9340DC9C-AD41-4167-839B-24690AB0214E@microsoft.com...
> > Are you sure you didn't have any spyware or malware on your computer?
> > Some
> > of the latest virus/spywarwe/etc can take atvantage of open port on your
> > system. They can also use vulabliities in Windows if you haven't updated
> > your Os with all the latest system updates. I suggest they run "Windows
> > Defender", "Ad-Aware", "Spybot Search And Destroy" and the most up to date
> > anti-virus software on your computer. That would at least tell them if
> > you
> > have something hidden on your system. Also did anyone have phsical access
> > to
> > your computer? they might have installed something you don't know about.
> >
> > "infiniteuk" wrote:
> >
> >> Dear all,
> >>
> >> I'm a developer with a local government in the UK, who have a pretty
> >> standard coporporate network accommodating various hardware and software
> >> services.
> >>
> >> I was suspended from work today following a meeting with the head of IT
> >> because they have logs that my system appeared to be running somekind of
> >> scanning software that over a period of hours interogated 1200 machines
> >> on
> >> the network. There's no scanning software installed by the way, well none
> >> that I know of.
> >>
> >> Could anyone offer a logical explanation for this? I use a number of
> >> development packages e.g. MS SQL Studio Express, Dreamweaver, VS2005 and
> >> while I do download a lot of opensource development tools I can't think
> >> of
> >> anything that would have given this effect. I do have access to various
> >> server across the network and sometimes use nslookup etc...
> >>
> >> Any help would be very much appreciated.
> >>
> >> Infinite
> >>
> >>
> >>
>
>
>
 >> Stay informed about: Advice for someone in trouble 
Back to top
Login to vote
Display posts from previous:   
   Windows XP Arc2 (Home) -> Security Admin All times are: Eastern Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You can edit your posts in this forum
You can delete your posts in this forum
You can vote in polls in this forum

Categories:
 Windows XP
 Windows Vista!
 Win 2000/NT/98/ME

[ Contact us | Terms of Service/Privacy Policy ]