website stat A New Security Problem I Am Dealing With. Suggestions? | The Windows Forum
Install the app
How to install the app on iOS

Follow along with the video below to see how to install our site as a web app on your home screen.

Note: This feature may not be available in some browsers.

Welcome to TheWindowsForum

Since 2010 — Over 15 years of helping Windows users worldwide.

Join thousands of Windows enthusiasts & IT pros. Ask questions, share tips, download resources, and connect with the community — free and always friendly.

  • Post & reply in threads
  • Private message other members
  • Access exclusive guides & downloads
  • NO ADS for registered users
Sign Up Free Already a member? Log in

A New Security Problem I Am Dealing With. Suggestions?

DVDR_Dog

DVDR_Dog

Ultimate Donator
VIP
Joined
Nov 5, 2018
Messages
3,473
So a few days ago this new system shows up on a network scan. I have no idea who this might be. The network lists it as:
"Dead DESKTOP-01KNERN 192.168.0.99 G-PRO COMPUTER 00:23:24:50:F2:00".
The scan shows it as dead because I have blocked all packet traffic for mac 00:23:24:50:F2:00 in my gateway's rules.
I am able to enter the Public and Default accounts on this system before I did the mac filtering.
The only other info I am able to gather is it must be set-up for a static IP, and G-PRO COMPUTER ethernet chips are almost universally used by Lenovo PCs.

So it kind of bugs me to find this system plopped on my network. It almost has to be a wireless connection, yet I have no idea what it's intentions are.
Can anyone here give me some tips on how to mess with this system? It's mac has been filtered out for now, I just feel it's kind of ballsy what this system's operator has done. First time for me.
 
Hmm, without seeing it, this is a tough one. BUT ... I have dealt with this kind of issue on machines that used to be for use by Military and official services.

One thing always prevalent in these machines was insanly complex data path. Logic firmware controlled port access in and out and usually they had to be a defined monitor ir display array to see what went on in the machine. A standard screen wouldnt work as the Video bus went through encryption algorithms before going to the display units. Generally a packet of chips around the networking IC will be hardware coded and hardwired to use only certain code to access and enter.

Classically they were around the main network area of the board and attached hardwire to the RJ45 cosket on the back. Painin the ass to undo without schematics, but it was and is possible to remove the hardwired blocks IF you can get an original schamatic for the board. Most security board have the secure part on a daughter board and hidden it the display adapter out of sight. Coding MIGHT break into it, but it is highly unlikely. The hardwiring would just bin the new data and go on as if it never happened.

IF you can get the motherboard model number serial and trace it through the manucturer they may provide help..
 
You must log in or register to reply here.

Similar threads

TWF Bot
Windows platform security for AI agents
Replies
0
Views
47
TWF Bot
TWF Bot
Yobbo
Just got this message from Bitdefender Internet Security.
Replies
8
Views
468
DVDR_Dog
DVDR_Dog
TWF Bot
  • Article Article
April 2026 Windows security updates introduce protections to known vulnerable kernel drivers - Microsoft Support
Replies
0
Views
251
TWF Bot
TWF Bot
TWF Bot
  • Article Article
New behavior restricting certain applications to autofill credentials introduced by the Windows January 2026 security update - Microsoft Support
Replies
0
Views
503
TWF Bot
TWF Bot
TWF Bot
Strengthening Windows trust and security through User Transparency and Consent
Replies
0
Views
442
TWF Bot
TWF Bot

Support TheWindowsForum

Help us stay ad-free and keep the community running

Donate Now

Trending content

Back
Top