| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 35355 | 2003-07-09 22:37:00 | high JS traffic on network - no reason... | falvrez (390) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 158637 | 2003-07-10 10:29:00 | Could a key logging trojan possibly be responsible? Have just read of such a program on Symantec's website but it appears to send its results through email or ftp so may not be relevant. Details here (securityresponse.symantec.com) if you wish to look. | tommy (2826) | ||
| 158638 | 2003-07-10 23:35:00 | Thanks guys I've narrowed this down to our win 2000 server - the traffic on the workstations is just too low for them to be the cuplrit, also the users just don't have the knowledge to install invisibliy some other progam such as suggested. Also I've run two port checking programs and everything is in stealh mode on our static IP address. My thought now is some setting in win2000 server that's, well, doing *something* (DNS?) to download sh*tloads of data as well as handling our intranet and database programs. I've just installed the trial version of kerio network monitor but just now need to set it up correctly - at this time just after installation it only seems to be logging any traffic to the server's ip address instead of the gateway router... |
falvrez (390) | ||
| 158639 | 2003-07-10 23:47:00 | if you have any Hewlett-Packard PCs I suggest you update the keyboard drivers as the original drivers on my HP were burning up 20mb per hour on my paradise 128k cable connection & my HP was the only PC on the cable at the time. see this (pressf1.pcworld.co.nz) link if you have HP computers. Cheers Steve |
Steve Askew (119) | ||
| 158640 | 2003-07-11 00:51:00 | It could also be someone trying to scan your ports for any open ones or someone trying to do DOS attacks. Do you have a static or dynamic IP address. Static would be more likely in the above event. These attacks can certainly create heaps of traffic. |
Big John (551) | ||
| 158641 | 2003-07-11 04:17:00 | Use "lockdown w2k server" in google for some useful links. There's even a manual you can download from Microsoft (free) on how to get a bit ofsecurity in the W2k server. :D | Graham L (2) | ||
| 158642 | 2003-07-11 05:18:00 | Check to see if that you dont have M$'s automatic download of updates in backround traffic service turned on. (XP and i think 2000 as well). Named in XP: Automatic Updates AND Background Intelligent Transfer Service This could be the culprit. Cheers Patryn |
Patryn999 (3748) | ||
| 158643 | 2003-07-11 06:22:00 | Hey thanks Patryn. I had disabled Automatic updates on my computer, but I just checked and BITS was actually running in the background ;) You have saved me some internet lag :) | PoWa (203) | ||
| 158644 | 2003-07-11 06:26:00 | What is BITS? and where is it? what does it do? ? beetle |
beetle (243) | ||
| 158645 | 2003-07-11 06:38:00 | Read the post before my one :) You should be able to draw a conclusion from that. Maybe I shoulda typed the full acronym out in the first place. I was only trying to save my fingers. Now look what happened. |
PoWa (203) | ||
| 158646 | 2003-07-11 06:38:00 | > What is BITS? and where is it? what does it do? See the post above PoWa's for reference. |
tommy (2826) | ||
| 1 2 3 | |||||