Question

Locked

Windows 8 Pro - Problem with Foreign connections

By derek.daski ·
Windows 8 Pro - Problem with Foreign connections

Our data center has expanded to more clients. Obtain and added 50 Windows 8 Pro machines to our network.

For some reason all 50 machine are experiencing foreign connections. The machince had been taken offline since this problem has been going on for the last few weeks. There is no unauthorized program installed. It is a refresh install of Windows 8 Pro. The network connections seems to originated from countries that we do not do business with.

Only reason we found this is that there was a honeypot of data set up to detect unauthorized access. It seems other data have not been compromises.

All other machines running Windows Xp are not impacted. Have added 25 virutal machines to take over the removal of the 50 machines.

The network traffic has increased by about 70% when these machines were added. All firewalls settings are running normal. Even adding the address to the IP filter block has not slow this down and it seems new connections are occuring.

What other steps can be take to control this or get this machines back online to do work?

This conversation is currently closed to new comments.

8 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

Clarifications

Collapse -
by alex.tervolt

Have you tried to contact your clients to see if they are working with other clients outside their area?

You might want to try running linux on the system for now.

All Answers

Collapse -

No outside clients

by derek.daski In reply to Windows 8 Pro - Problem w ...

Already did that. They do not work in those countries or have people from those countries.

Linux will not work with secure boot.

Collapse -

Reponse To Answer

by alex.tervolt In reply to No outside clients

Linux will work with secure boot. It has been fixed now. Try that to get the machine back online.

If there is no outside clients that most likely is is a problem with the IP.

Collapse -

Reponse To Answer

by derek.daski In reply to No outside clients

Ok. I had CD with Linux that were older version and did not want to run.

Will get the newer version and try that.

Check with IP and they are looking into this matter.

Collapse -

Reponse To Answer

by alex.tervolt In reply to No outside clients

The newer version have bypass the secure boot.

If IP is looking into this, you might want to clear and private data off the computers. There might be a follow from higher authoritzies in the near future. I had a similar issue with Windows 8.

Collapse -

Reponse To Answer

by derek.daski In reply to No outside clients

Some of our clients info are on the machine. I will move the data back on to the network and run a scrub program.

What higher authoritzies are ou speaking?

Collapse -

Reponse To Answer

by alex.tervolt In reply to No outside clients

Microsoft people and several other agency will be there to investigate.

Back to Software Forum
8 total posts (Page 1 of 1)  

Software Forums