Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 24

Thread: Porn on my network. How to find it and get rid of it?

  1. #11
    AO Decepticon CXGJarrod's Avatar
    Join Date
    Jul 2002
    Posts
    2,038
    Originally posted here by Spyder32
    CXG: ContentWatch sounds awfully familiar. Doesn't that have malware deep inside of it? I could have sworn I heard that it contains a form of spyware/adware.
    Never heard of any malware. As far as I know it just scans your computer. I have used it on some of my more religious customers.
    N00b> STFU i r teh 1337 (english: You must be mistaken, good sir or madam. I believe myself to be quite a good player. On an unrelated matter, I also apparently enjoy math.)

  2. #12
    Senior Member
    Join Date
    Oct 2002
    Posts
    4,055
    LOL @ religious customers. Heh, oh well.. coulda sworn I heard it mentioned before in a list of products containing malware. I'll look into it though just because I like to get a "catalog" of sorts of product's/applications containing malware.
    Space For Rent.. =]

  3. #13
    I think www.cexx.org has a list of spy/malwares and the applications that they infect.

    Caf

  4. #14
    Senior Member
    Join Date
    Oct 2002
    Posts
    4,055
    Ehh, I dunno about clicking that link based on the name but.. Anyways, thanks regardless. Like I said, I'm currently compiling a big ass list of programs/software/products that contain malware.
    Space For Rent.. =]

  5. #15
    Senior Member
    Join Date
    Jul 2004
    Posts
    131
    Originally posted here by Spyrus
    If what you have been seeing is a large size of the hard drive being taken up we used a program called treesizepro What it does is allow you to locally or remotely scan the hard drive for the largest folders/files.... the best part is it will search all formats including hidden files and folder. This worked great for us because it will list everything and you dont really have to login to the comptuer.
    i use treesize. i like it works good. i can't use the advanced features. i am not MS shop.
    More cowbell! We need more cowbell!
    http://www.geocities.com/secure_lockdown/
    - - -
    \"Is the firewall there to protect you from the outside world or is it there to protect the outside world from *YOU*?\"

  6. #16
    Senior Member
    Join Date
    Oct 2002
    Posts
    4,055
    All treesize does is find the largest folders/files? Heh.. could be useful on a network of a much larger nature IMO.
    Space For Rent.. =]

  7. #17
    AO Ancient: Team Leader
    Join Date
    Oct 2002
    Posts
    5,197
    lockdown:

    they will throw it back at you and accuse you of not doing a good enough job of promoting user awareness & policy awareness & stuff. all in all, causes big hassle.
    I have a recurring reminder in my Outlook that reminds me to send out the AUP to all users every three months. I also have a folder called "Sent AUP's" that I copy every one I send to. This way every user, even new ones that don't read what they are given when they start, get a copy of the AUP in the inbox every three months to the day.

    In addition, and in case they want to mess with it, the policy includes a statement saying that my company "has the right but not the duty". The benefit of that phrase is that if you miss something you can't be accused of doing the job improperly - if it was the _duty_ then things should not be missed and monitoring and checking the logs thoroughly and regularly mut take place and we all know that this isn't feasible. The "right" portion says that you _can_ but coupled with the "not the duty" means that you don't _have_ to. allowing you to monitor in specific cases should you so desire.

    Caffiene: Are you able to put a hub at the choke point of your network? If you are a nice little Snort box could help you track the little buggers down since the "group of folks" is clearly dropping the ball on this......
    Don\'t SYN us.... We\'ll SYN you.....
    \"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides

  8. #18
    Member
    Join Date
    Jan 2004
    Posts
    33
    I have had the same type of concern. I ran across a software program called LanSpider. I set it up to look for .avi, .mpg, ect......It nailed several systems. Hope this helps.

  9. #19
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,785
    here's a cheap way out. unpack the files in the attached zip into their own directory and run start.bat. this will start a tftp server in that directory, copy and run mpeg.bat onto every (nt based) computer listed with net view. this will search the whole c drive of these computers for whatever file extentions you include (i've included only mp3 and mpg) and redirect the results into a text file with the computer name as it's name then tftp it to the directory you ran start.bat in on your computer. you should wind up with one text file for ever computer.

    you must replace <yourcomputer> with your computer's ip addy or network name...as if you didn't know and have admin rights on the network.



    start.bat
    -----------------------
    start tftpd
    net view >lan.txt
    for /F "tokens=1 skip=3" %%X in (lan.txt) do psexec %%X -c mpeg.bat

    ----------------------

    mpeg.bat
    ----------------------
    cd \
    call dir /S *.mp3 >%computername%.txt
    call dir /S *.mpg >>%computername%.txt
    call %windir%\system32\tftp <yourcomputer> put %computername%.txt

    ----------------------

    like i said it's a cheap way out and will take a very long time to complete it's run depending on the number of computers on your network. or you could change it to do one or a small group of computers at a time.

    i've only tried it on one computer searching only for .avi files and it worked fine and see no reason why it shouldn't work on all of them. here's the text file returned to me by tftp:

    Volume in drive C is Local Disk
    Volume Serial Number is 54AC-656D

    Directory of C:\Program Files\RoboHELP Office\RoboHELP\Template

    08/08/1996 07:30p 58,094 blank.avi
    1 File(s) 58,094 bytes

    Directory of C:\Program Files\RoboHELP Office\VideoCam

    11/01/1996 05:56p 441,806 CLOKDEMO.AVI
    1 File(s) 441,806 bytes

    Directory of C:\Program Files\RoboHELP Office\VideoCam\Sample16

    12/01/1994 05:40p 577,552 TUTOR.AVI
    1 File(s) 577,552 bytes

    Directory of C:\Program Files\RoboHELP Office\VideoCam\Sample32

    12/01/1994 04:40p 577,552 TUTOR.AVI
    1 File(s) 577,552 bytes

    Directory of C:\WINNT

    05/08/2001 08:00a 82,944 CLOCK.AVI
    1 File(s) 82,944 bytes

    Total Files Listed:
    5 File(s) 1,737,948 bytes
    0 Dir(s) 13,157,864,448 bytes free
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”

  10. #20
    Tiger-Shark

    The firewall shop seems to be on top of things. They run SmartFilter which is locked down pretty tight. The material that we are concerned about seems to be with laptop users who connect to outside networks (free hotel broadband, wireless access points) while on business trips and such. There is not much that we can do to stop that.

    We're looking at locking the machines down harder to force them to only use dial-in to our network and then access the net via our proxy if this continues. If worse comes to worse I can clip out the contacts in the LAN ports with some wire snippers. In the end, the users will determine how we have to go.

    Tedob1

    Your stuff looks interesting, I'll get with some coworkers and play with it. Thanks.



    Caf

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •