1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Intrusion attempts

Discussion in 'Virus & Other Malware Removal' started by Navi, Jul 26, 2006.

Thread Status:
Not open for further replies.
Advertisement
  1. Navi

    Navi Thread Starter

    Joined:
    Mar 7, 2005
    Messages:
    64
    Hi,

    Would appreciate any assistance.

    Nortons is picking up constant intrusion attempts on my machine. Any thing I can do?

    Thanks
     
  2. khazars

    khazars

    Joined:
    Feb 15, 2004
    Messages:
    12,302
    hi, welcome to TSG.

    What exactly is Norton finding, give it's exact location as reported by Norott and its name?


    Download hijack this from the link below.Please do this. Click here:

    http://www.thespykiller.co.uk/files/hijackthis_sfx.exe

    to download HijackThis. Click scan and save a logfile, then post it here so
    we can take a look at it for you. Don't click fix on anything in hijack this
    as most of the files are legitimate.
     
  3. Navi

    Navi Thread Starter

    Joined:
    Mar 7, 2005
    Messages:
    64
    Thanks,

    HJT log:

    Logfile of HijackThis v1.99.1
    Scan saved at 11:52:10 AM, on 27/07/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    C:\WINDOWS\System32\CTsvcCDA.exe
    C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\System32\MsPMSPSv.exe
    C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\Telstra\Cable Login\bpcable.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\WINDOWS\system32\LVCOMSX.EXE
    C:\Program Files\Logitech\Video\LogiTray.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
    C:\Program Files\Logitech\Video\FxSvr2.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
    C:\Program Files\SpywareGuard\sgmain.exe
    C:\Program Files\SpywareGuard\sgbhp.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\System32\HPZipm12.exe
    C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dellnet.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.theaustralian.news.com.au/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://telstra.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dellnet.com
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;127.0.0.1;<local>;localhost
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
    O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
    O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
    O4 - HKLM\..\Run: [BigPondCable] "C:\Program Files\Telstra\Cable Login\bpcable.exe" /r
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
    O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
    O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: officejet 6100.lnk = ?
    O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
    O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
    O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
    O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O14 - IERESET.INF: START_PAGE_URL=http://telstra.com
    O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/viewers/ipixx.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
    O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
    O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.microsoft.com/OAS/ActiveX/odc.cab
    O16 - DPF: {5A3C6507-730A-43B2-8EAC-4C430F2EF35E} (PortfolioManager Class) - https://portfoliomanager.westpac.com.au/portfoliomanager/portfoliomanager.cab
    O16 - DPF: {68A2C3BD-7809-11D3-8ACF-0050046F2F9A} (AXELPlayer Class) - http://www.mindavenue.com/Downloads/AXELPlayerAX_Win32.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1136858844436
    O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
    O16 - DPF: {E3E02F12-2ADB-478C-8742-5F0819F9F0F4} (Quantum Streaming IE VersionManager Class) - http://qmedia.xlontech.net/100170/sdk/latest/qsp2ie06041001.cab
    O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} (Dell PC Checkup Installer Control) - http://pccheckup.dellfix.com/rel/35/install/gtdownde.cab
    O16 - DPF: {EA1B8527-E422-4909-825A-70BE0694F18E} (PortfolioManagerWT ProfileManager Class) - https://online.westpac.com.au/wtoa/wtOtherAccounts/portfoliomanagerwt.cab
    O17 - HKLM\System\CS1\Services\VxD\MSTCP: SearchList = vic.bigpond.net.au
    O17 - HKLM\System\CS2\Services\VxD\MSTCP: SearchList = vic.bigpond.net.au
    O17 - HKLM\System\CCS\Services\VxD\MSTCP: SearchList = vic.bigpond.net.au
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: BigPond Broadband Cable Login (bpcService) - Unknown owner - C:\Program Files\Telstra\Cable Login\bpcService.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
    O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
    O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

    Will await instructions.
     
  4. Navi

    Navi Thread Starter

    Joined:
    Mar 7, 2005
    Messages:
    64
    Also Nortons Intrusion log reads as:

    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.12.7(1981).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.63.241(2958).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.63.241 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.94.200 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.94.200(4445).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.94.200 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.94.200(4239).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.63.241(1398).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.63.241 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.94.200(3954).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.94.200 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.1.199(4182).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.1.199 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.63.241(1389).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.63.241 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.94.200 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.94.200(3273).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.63.241(1467).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.63.241 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.140.129(1826).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.140.129 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.63.241(3213).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.63.241 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.94.200(4697).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.94.200 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.16.248 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.16.248(2907).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion detected and blocked. All communication with 144.136.29.250 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.29.250(2974).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.41.190(2186).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.41.190 will be blocked for 30 minutes.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion detected and blocked. All communication with 144.136.62.53 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.62.53(1458).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.116.226 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.116.226(3084).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.39.148(2831).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.39.148 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.0.187 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.0.187(4223).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.29.254(4472).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.29.254 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.29.254 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.29.254(orasrv(1525)).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.35.150(3265).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.35.150 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(2996).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(2001).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.35.150 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.35.150(3595).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(2926).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.35.150(3783).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.35.150 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(3161).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.24.90(1114).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.24.90 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(4498).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(2761).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(3635).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(2151).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.24.90(1218).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.24.90 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.24.90(3020).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.24.90 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(2841).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(2256).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(1547).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.116.226 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.116.226(4098).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(1476).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(1928).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.13.230(2949).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.13.230 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.13.230 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.13.230(4596).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.13.230 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.13.230(4993).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(4858).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.56.48(2685).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.56.48 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.60.162 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.162(4699).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.61.185 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.61.185(4467).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.162 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.162(1878).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.61.185(3330).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.61.185 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.12.25 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.12.25(2947).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(2270).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.41.190(1443).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.41.190 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.116.226 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.116.226(3079).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.39.148 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.39.148(2849).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.162 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.162(1541).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.20.16(3675).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.20.16 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.24.90(3005).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.24.90 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.61.185 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.61.185(1089).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(4829).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(1363).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.12.25 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.12.25(2321).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.20.16 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.20.16(3290).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.61.185(2697).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.61.185 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.6.16 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.6.16(4351).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.39.148 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.39.148(1791).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.6.16 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.6.16(4029).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.6.16(4673).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.6.16 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.6.16 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.6.16(4457).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.12.25 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.12.25(1645).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion Detection has been enabled.
    Intrusion Detection (2.0.0.50707) is monitoring 581 signatures.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.116.226(4814).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.116.226 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(4349).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.116.226(3905).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.116.226 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.26.145 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.26.145(4075).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.28.254 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.28.254(1680).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.116.226 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.116.226(3148).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.60.203 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.60.203(3112).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.116.226(3682).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.116.226 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.12.25 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.12.25(2244).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.25.206(2005).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.25.206 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.94.200(4957).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.94.200 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.39.148(2932).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.39.148 will be blocked for 30 minutes.
    Intrusion detected and blocked. All communication with 144.136.25.206 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.25.206(2024).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.19.144 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.19.144(3127).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
    Intrusion detected and blocked. All communication with 144.136.12.25 will be blocked for 30 minutes.
    Intrusion: HTTP MS IIS NTLM ASN1 BO.
    Intruder: 144.136.12.25(1087).
    Risk Level: High.
    Protocol: TCP.
    Attacked IP: D86J281S(144.136.233.182).
    Attacked Port: http(80).
     
  5. khazars

    khazars

    Joined:
    Feb 15, 2004
    Messages:
    12,302
    Ok, your log is clean. Norton is just showing you that someone from whatever IP address is being blocked, it's doing its job, nothing to worry about.

    You can turn off logging if you want as we all get this type of traffic especially if you have a high speed internet connection!

    The IP address is registered to Telstra, Canbera, Austialia and you are in Oz so I take it this could be your ISP provider probably pinging you?


    See the link below for the information!

    http://www.apnic.net/apnic-bin/whois.pl



    Go here and downlaod the latest version of java, once
    downloaded, go to add/remove and uninstall all previous versions of java
    from add/remove and then instlall the latest version you just downloaded!


    http://java.com/en/download/manual.jsp


    Here's some free tools to keep you from getting infected in the future.


    To stop reinfection get spywareblaster from


    http://www.javacoolsoftware.com/downloads.html


    get the hosts file from here.Unzip it to a folder!



    http://www.mvps.org/winhelp2002/hosts.htm


    put it into : or click the mvps bat and it should do it for you!


    Windows XP = C:\WINDOWS\SYSTEM32\DRIVERS\ETC
    Windows 2K = C:\WINNT\SYSTEM32\DRIVERS\ETC
    Win 98\ME = C:\WINDOWS



    ie-spyad.Puts over 5000 sites in your restricted zone so you'll be protected

    when you visit innocent-looking sites that aren't actually innocent at all.

    http://www.spywarewarrior.com/uiuc/resource.htm


    Arovax shield: stop your computer from being hijacked!

    http://www.arovaxshield.com/


    Winpatrol, protects your computer from hijackers !

    http://www.winpatrol.com/winpatrol.html


    prev free

    http://free.prevx.com/


    Use spybot's immunize button and use spywareblaster' enable
    protection once you update it. you can put spybot's hosts file into
    your own and lock it.



    I would also suggest switching to Mozilla's firefox browser, it's safer, has
    a built in pop up blocker, blocks cookies and adds. Mozilla Thunderbird is also a good
    e-mail client.

    http://www.mozilla.org/


    Another good and free browser is Opera!

    http://www.opera.com/


    Read here to see how to tighten your security:

    http://forums.techguy.org/t208517.html


    A good overall guide for firewalls, anti-virus, and anti-trojans as well as
    regular spyware cleaners.

    http://www.firewallguide.com/anti-trojan.htm
     
  6. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/486467

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice