OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Stephane Moulec (smouleccuisinesolutions.com)
Date: Wed Apr 03 2002 - 15:43:49 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    You may want to look at these links:

    http://www.bbn.com/infomgmt/ntsds.html

    http://www.fas.org/irp/program/disseminate/ntsds.htm

    NTSDS seems to stand for National Target/Threat Signature Data System.
    It is DoD project that relies on a distributed database. That may be
    causing a lot of traffic on your net.

    What does that have to do with your network? It is for you to find out
    (maybe you have a lab working with DoD on that project)

    I hope this helps.

    Stephane.

    -----Original Message-----
    From: Hunter Ely [mailto:hely1lsu.edu]
    Sent: Wednesday, April 03, 2002 2:27 PM
    To: focus-mslists.securityfocus.com
    Subject: ntsds.exe or ntsdc.exe

    Recently some computers on a few LANs on our network were sending full
    size packets and were the top talkers on campus. When we looked into
    this further, it appeared that all the machines were Windows machines
    with a service called either ntsds.exe or ntsdc.exe. This service
    couldn't be stopped. The only way to keep it from loading was to rename
    the file. The traffic ceased when we finally were able to stop the
    service. I can't seem to find anything about this service anywhere.
    Has anyone else on the list experienced this or can point me in the
    right direction? Thanks
    ------------------------------------------------------
    Hunter Ely
    Network Security Analyst, Office of Computing Services Louisiana State
    University http://hunter.lsu.edu