A lesson learned the hard way:
Someone complaining that “I have security problems, people are attacking me all the time!”, is NOT asking you to audit his/her host/network.

Sometimes what you consider help, might be treated as an intrusion.