Not what you are looking for? Ask the experts!
Backdoor not detected by NIS
A computer on the office network has behaved oddly the past few days. Hangs up regularly, too. I didn't find any unexplained processes in the task manager, and verified that virus/trojan definitions were up to date.
I found lines like this in the NIS security log:
9/24/2008 3:52:49 PM,127.0.0.1,Backdoor-g-1(1243),127.0.0.1,1516,0,0,0:01:59.937,"Connection: localhost: 1516 from localhost: Backdoor-g-1(1243), 0 bytes sent, 0 bytes received, 1:59.937 elapsed time."
That looks a little creepy to me, but NIS and Spybot S&D do not detect anything. Any ideas?