This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
We’re currently experiencing a high volume of support requests, which may result in longer response times — Thank you for your patience and understanding.
Community FAQ
Register | Log In
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- Archive
- Lansweeper profile on cliens
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Register to ask a question, start a topic or share an idea
Join the Community
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-26-2009 03:15 PM
HI!
Our company uses Lansweeper 3.5.1 Premium in a multiple domain forest and it works great. Our only consirn is that lansweeper creates a local profile (in c:\documents and settings\....). We just had a big virus outbreak in one of the domains. Our antivirus engin detected infected files in these profiles on all computers and it looks like admin credentials (used for lansweeper) were used to spread through the network.
Is there a way to avoid creating these profile folders with cached credentials?
Best regards
Our company uses Lansweeper 3.5.1 Premium in a multiple domain forest and it works great. Our only consirn is that lansweeper creates a local profile (in c:\documents and settings\....). We just had a big virus outbreak in one of the domains. Our antivirus engin detected infected files in these profiles on all computers and it looks like admin credentials (used for lansweeper) were used to spread through the network.
Is there a way to avoid creating these profile folders with cached credentials?
Best regards
Labels:
- Labels:
-
Archive
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-26-2009 04:11 PM
The biggest problem is when the server is infected (it could be worse if your domain controllers are infected)
Some things that might help preventing this:
-Install some sort of antivirus software on your (non high loaded) servers.
-Install a wsus server to make sure all your clients are always updated.
-Don't let your users work with administrator rights on their machines.
Create Lansweeper reports to verify all of this.
Some things that might help preventing this:
-Install some sort of antivirus software on your (non high loaded) servers.
-Install a wsus server to make sure all your clients are always updated.
-Don't let your users work with administrator rights on their machines.
Create Lansweeper reports to verify all of this.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-26-2009 03:43 PM
So basicly ther is nothing we can really do about it?
How do other users troubleshoot this? (if any)
It's true that the clients weren't up to date, but that is fixed now. We just don't want to have another incident like that in the future...
How do other users troubleshoot this? (if any)
It's true that the clients weren't up to date, but that is fixed now. We just don't want to have another incident like that in the future...
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-26-2009 03:30 PM
The profile is created by WMI when you use the remote registry scan.
We have seen this problem before and it was caused by a variant of the sality worm which infected the Lansweeper server.
We have seen this problem before and it was caused by a variant of the sality worm which infected the Lansweeper server.
Archive
This board contains archived posts from the retired Lansweeper Forum and Insiders Community.
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now
Related Content
- User profile loading time in Reports & Analytics
- Detection/Removal of Google Chrome in Deployment Packages
- Inside Lansweeper: Weekly Recap in General Discussions
- how to deploy and automate migration tool with parameters use USMT ? in Deployment Packages
- intune scan mobile devices, some questions about linking device to user and more intune informations in General Discussions
