Enterprise Software Thread, We've been hacked... in Technical; Originally Posted by witch
Wasn't me, honest!
Hope it is all sorted. So what are you going to ...
21st August 2013, 12:13 PM #16
we'll archive the VM components, delete them from the VM Host, keep them for a year somewhere else and then delete that too.
Originally Posted by witch
@psydii our normal support company are the ones we call in a dire emergency, and they are have full product specialists which is why they were so damn expensive... But yes, I take your point about the technet benefits. I'm going to look into it as we've never used it before.
21st August 2013, 01:13 PM #17
The only thing with the complimentary support calls provided are these two conditions:
Although MS may not require you to do the 2nd before helping you out from what others have said.
Resolve technical break/fix issues in a non-production environment.
Find a solution to a production issue that can be replicated in a non-production environment.
21st August 2013, 02:56 PM #18
Good excuse to install out new 2010 box I say Taking ages for our users to transferee across ... zz,z,,z,,,.z.z.z.z.z
21st August 2013, 02:58 PM #19
@Oaktech (Thank Post 460) I wish I got these above my head
Might grab a few when your back in tomorrow when your not looking he he he ....
21st August 2013, 06:24 PM #20
If you want me to have a look at this for you then drop me a PM more than happy to give your old box a once over to try and give you some idea on how it has happened, also if you need a hand ironing out any issues then just let me know. I am pretty free this week so should be able to spare you some time.
22nd August 2013, 06:35 PM #21
Just spoke to someone who had the same issue, turned out to be a trojan in a users home directory (SBS server) that was causing it, the AV didn't pick it up.
They ran a netstat -p which led them to it.
22nd August 2013, 06:47 PM #22
Interesting... we did find 1 dubious file in a users home drive that ESET missed for some reason, but spybot picked up. It didn't give an indication that it would have caused the symptoms we saw, spybot suggested it was more adware than anything, but of course we deleted it - and gave the user a stern talking to about bringing in things from home. It was a copy of something called "unzipit professional" which does what it says it does, and ran somehow even though we have software execution policies in place. so we are examining that now too.
12th September 2013, 10:27 AM #23
If no open relay then it just says to me that your Exch server was not protected enough by AV/AS?
What product was you using?
By soveryapt in forum General Chat
Last Post: 9th January 2013, 04:08 PM
By wesleyw in forum Virtual Learning Platforms
Last Post: 22nd June 2009, 10:11 PM
By FN-GM in forum Web Development
Last Post: 26th July 2007, 08:54 PM
By park_bench in forum General Chat
Last Post: 4th July 2007, 11:18 AM
By Elky in forum Our Advertisers
Last Post: 26th March 2007, 01:32 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)