Author Topic: Reconnaissance using Directory Services queries  (Read 15408 times)

0 Members and 1 Guest are viewing this topic.

Offline pccustodian

  • Newbie
  • *
  • Join Date: Apr 2022
  • Posts: 1
  • Karma: 0
    • View Profile
Reconnaissance using Directory Services queries
« on: April 27, 2022, 10:13:40 pm »
I've been using the windows repair AIO for a very long time, I'm not sure how long it's been around, but it seems like over a decade.  Anyway, today at work on my corporate network I opened it up just to look at the list of repairs and didn't even run any repairs and shortly after I was contacted by our security team and shown the message on the attached picture.  I've never had any doubt about the validity of this program because it's touted by a lot of reputable sources online.  I think the message the security team saw was probably a false positive generated by me browsing around in active directory to unlock some accounts and move some computers from one OU to another, but they think it was caused by this program.  Any insight to this could be helpful. 

Offline Boggin

  • Global Moderator
  • Hero Member
  • *****
  • Join Date: Jul 2014
  • Posts: 10182
  • Location: UK
  • Karma: 122
    • View Profile
Re: Reconnaissance using Directory Services queries
« Reply #1 on: April 28, 2022, 01:16:13 am »
I'm not sure about that as you didn't actually run the program.

However, reboot and and try the repair program again.