Use Trend Micro's PC-cillin Internet Security package?
In my reading, I happened upon a fascinating (to me, anyway) story posted to a web hosting company's forum:
http://www.lunarforums.com/lunarpages_web_hosting_email_pc_security/hacked_maybe-t34159.0.htmlIt started out as someone with mysterious entries in their web logs, which showed evidence of someone retrieving files from the person's web server that were not linked anywhere, or known to anyone other than the person who created them, i.e. secret files, and the person's attempts to track down what was going on.
It got particularly interesting when the person ran some tests to figure out what was going on:
http://www.lunarforums.com/lunarpages_web_hosting_email_pc_security/hacked_maybe-t34159.0.html;msg257743#msg257743In a nutshell:
The person's security software, PC-cillin Internet Security 2006, was keeping track of the webpages he had visited in a file on his computer, and during updates, was shipping the file containing the list to Trend Micro. Presumably in an effort to "protect" the user, Trend Micro was visiting the site and requesting the "secret" files from the web server, generating the entries in his logs.
I have no idea if the more recent versions of the software do this.
This was interesting to me because I sometimes will put a file on my web server temporarily for someone in particular to download, assuming because I only gave the link to the person I intended the file for, that they will be the only ones to know about it. I don't use Windows, so I don't use PC-cillin, but I'm not in the habit of asking other people what software they use before I give them a link. I will have to be more diligent about removing such "temporary" files from my server.
Sheesh! Security, or security?
