This might sound like a simple question but I am kind of new to the security side of networking. How am I able to find a rouge system on my network? I ran GFI's Langaurd and it came back with the IP address it is using and also says it is probably a Unix box. It is running Samba 2.2.3a(build26). But when I look for it in active directory users and computers it does not show up. The Unix box has three open ports 139,110,25. I can ping it but can't trace it down. Any suggestions are exteremly invited.