Sign up with GoogleSorry if this post is a touch long, but i am really at a loose end here and need some advice...
Scenario
My brother runs a small company in Cape Town with about 20 staff. He is running SBS2003, fully patched and updated and a combination of windows 7 and XP machines.
All users connect to a "General" folder on the SBS server for storing data etc.
All machines "protected with NOD32"
3 weeks ago, files and folders start dissapearing from the "General" Folder. As you browse, files and folders literally start moving and disapearing. Run NO32 and Nothing i picked up. (fully up to date) About 20 gigs of data is randomly deleted.
As i am in JHB, by brother calls "Company X" and they come in. Their solution is to re-install the server (why i dont know). After re-install happens, they load the data back on and same thing happens. Their next solutions is tell my brother that its a hardward fault and make him change to a new server. Once again, data is loaded. Problem seems to abate for a few days. It now starts again.
"Company X" stop taking my brothers call.... So, we load MS Security essentials on every machine and run a scan. Nothing is picked up. We run the scan on the portable HDD that contains a backup of the "General Folder" and we find a few virus. Clean it out as best we can.
Thinking NOD might not be able to pick up the virus's we install AVG server edition onto the server. Run full scan and nothing happens. (We have now used 3 products. NOD, MS SE, AVG.)
So i look at the network configuration and its as safe as swiss cheese. (Nerds forgot to install a firewall) One was needed as the server had two network ports but one was disabled. The ADSL hardware they supplied had the firewall turned off. I sorted this out and i thought it might be some form of sustained attacked as he is in a pretty competitive industry. I'm no network expert though, so i was probably grabbing at straws.
So after doing three virus checks, patching the obvoius holes, making sure every machine is running the latest updates the problem still persists. (Now random files are also being created)
Now, yesterday he tries BIT-Defender. He pickups at 60 viruses on the portable HDD backup. How the hell did AVG, NOD and MS essentials miss these?
I am flying down to assist him as "Company X" he is using are worse than useless.
How do i ensure that his network is now clean? Any suggestions would be welcome.
My brother has lost over R200k in business now and has to retrench a few staff becase of some script kiddy prick that wrote this ***. (venting)
I need to make sure i leave him 100% and ready to continue to do business.
Scenario
My brother runs a small company in Cape Town with about 20 staff. He is running SBS2003, fully patched and updated and a combination of windows 7 and XP machines.
All users connect to a "General" folder on the SBS server for storing data etc.
All machines "protected with NOD32"
3 weeks ago, files and folders start dissapearing from the "General" Folder. As you browse, files and folders literally start moving and disapearing. Run NO32 and Nothing i picked up. (fully up to date) About 20 gigs of data is randomly deleted.
As i am in JHB, by brother calls "Company X" and they come in. Their solution is to re-install the server (why i dont know). After re-install happens, they load the data back on and same thing happens. Their next solutions is tell my brother that its a hardward fault and make him change to a new server. Once again, data is loaded. Problem seems to abate for a few days. It now starts again.
"Company X" stop taking my brothers call.... So, we load MS Security essentials on every machine and run a scan. Nothing is picked up. We run the scan on the portable HDD that contains a backup of the "General Folder" and we find a few virus. Clean it out as best we can.
Thinking NOD might not be able to pick up the virus's we install AVG server edition onto the server. Run full scan and nothing happens. (We have now used 3 products. NOD, MS SE, AVG.)
So i look at the network configuration and its as safe as swiss cheese. (Nerds forgot to install a firewall) One was needed as the server had two network ports but one was disabled. The ADSL hardware they supplied had the firewall turned off. I sorted this out and i thought it might be some form of sustained attacked as he is in a pretty competitive industry. I'm no network expert though, so i was probably grabbing at straws.
So after doing three virus checks, patching the obvoius holes, making sure every machine is running the latest updates the problem still persists. (Now random files are also being created)
Now, yesterday he tries BIT-Defender. He pickups at 60 viruses on the portable HDD backup. How the hell did AVG, NOD and MS essentials miss these?
I am flying down to assist him as "Company X" he is using are worse than useless.
How do i ensure that his network is now clean? Any suggestions would be welcome.
My brother has lost over R200k in business now and has to retrench a few staff becase of some script kiddy prick that wrote this ***. (venting)
I need to make sure i leave him 100% and ready to continue to do business.
Last edited:
