Q. My router logs keep showing that there's remote access to my computer via IP addresses all over the world all the time, yet nothing appears different in my computer in the slightest. I've even run combo fix, I have Malwarebytes and Avast (paid versions of both) running all the time and they haven't picked up any suspicious activity, is my router just crying wolf at normal requests coming in from websites, streaming videos, etc?
I even went as far as to run ComboFix on my system and change my IP, but those reports are still coming in, which is really why i think it's just false reports.
Lol my router password is a 30 long hex key. Nobody is getting into that. And yeah, IP protection is enabled, so I guess I'll just ignore the router. Most the alerts are on the port rage of 22xxx as well.
Alright, I actually tested it myself, and it's just reporting when anything is communicating with me. I went into matchmaking on halo and it reported every single player that connected to the game lobby. Router is just over-sensitive.
I even went as far as to run ComboFix on my system and change my IP, but those reports are still coming in, which is really why i think it's just false reports.
Lol my router password is a 30 long hex key. Nobody is getting into that. And yeah, IP protection is enabled, so I guess I'll just ignore the router. Most the alerts are on the port rage of 22xxx as well.
Alright, I actually tested it myself, and it's just reporting when anything is communicating with me. I went into matchmaking on halo and it reported every single player that connected to the game lobby. Router is just over-sensitive.
A. The first step would be to understand which ports are being used:
# Well Known Ports These run from 0 to 1023, and are bound to the common services that run on them (for example, mail runs on channel 25 tcp/udp, which is smtp (Simple Mail Transfer Protocol) so if you find one of these ports open (and you usually will), it's usually because of an essential function.
# Registered Ports These run on 1024 to 49151. Although not bound to a particular service, these are normally used by networking utilities like FTP software, Email client and so on, and they do this by opening on a random port within this range before communicating with the remote server, so don't panic (just be wary, perhaps) if you see any of these open, because they usually close automatically when the system that's running on them terminates (for example, type in a common website name in your browser with netstat open, and watch as it opens up a port at random to act as a buffer for the remote servers). Services like MSN Messenger and ICQ usually run on these Ports.
# Dynamic/Private Ports Ranging from 49152 to 65535, these things are rarely used except with certain programs, and even then not very often. This is indeed the usual range of the Trojan, so if you find any of these open, be very suspicious.
~~~~~
If Mbam Pro is NOT giving you any alerts, then you have nothing to worry about. If you need to test Mbam to make sure the IP blocker is working correctly, use their TEST link
http://iptest.malwarebytes.org/
~~~~~
http://helpdesk.malwarebytes.org/entries/21961721-how-can-i-verify-that-malwarebytes-anti-malware-is-working
EDIT:Thank You for the Update !!!
# Well Known Ports These run from 0 to 1023, and are bound to the common services that run on them (for example, mail runs on channel 25 tcp/udp, which is smtp (Simple Mail Transfer Protocol) so if you find one of these ports open (and you usually will), it's usually because of an essential function.
# Registered Ports These run on 1024 to 49151. Although not bound to a particular service, these are normally used by networking utilities like FTP software, Email client and so on, and they do this by opening on a random port within this range before communicating with the remote server, so don't panic (just be wary, perhaps) if you see any of these open, because they usually close automatically when the system that's running on them terminates (for example, type in a common website name in your browser with netstat open, and watch as it opens up a port at random to act as a buffer for the remote servers). Services like MSN Messenger and ICQ usually run on these Ports.
# Dynamic/Private Ports Ranging from 49152 to 65535, these things are rarely used except with certain programs, and even then not very often. This is indeed the usual range of the Trojan, so if you find any of these open, be very suspicious.
~~~~~
If Mbam Pro is NOT giving you any alerts, then you have nothing to worry about. If you need to test Mbam to make sure the IP blocker is working correctly, use their TEST link
http://iptest.malwarebytes.org/
~~~~~
http://helpdesk.malwarebytes.org/entries/21961721-how-can-i-verify-that-malwarebytes-anti-malware-is-working
EDIT:Thank You for the Update !!!
How can I get the password reset for my original yahoo ID trishhelen?
Q. The account was opened years ago so there was no identifying question. I was building a new laptop before I applied the securtiy software (contains all passwords) and got my self locked out of trishhelen
I have tried to reset the password numerous times. I can verify that trishhelen is a known user and my alternate email is correct. I have emailed yahoo security with all of my identifying info and offered to fax copies of my drivers license and any other required ID. I have called yahoo only to be told that the helpdesk has no fax number or phone number or contact with their own security department - except, of course for the same email address that I have repeatedly sent info to but never received a response from. All I want is my password reset for my original ID. Does anyone have a verifiable yahoo security phone or fax number or even email address?
I have tried to reset the password numerous times. I can verify that trishhelen is a known user and my alternate email is correct. I have emailed yahoo security with all of my identifying info and offered to fax copies of my drivers license and any other required ID. I have called yahoo only to be told that the helpdesk has no fax number or phone number or contact with their own security department - except, of course for the same email address that I have repeatedly sent info to but never received a response from. All I want is my password reset for my original ID. Does anyone have a verifiable yahoo security phone or fax number or even email address?
A. I have tried the same things you've been trying for well over a month ..If yahoo don't get better help they will end up like some other programs"Going Downhill"....The account I lost was setup in 1998,I have furnished everything about it I can think of,,still no responsible response from Yahoo!
What type of hardware and software would be needed for an IT Support help desk?
Q. Thanks
A. Hardware:
*A decent computer : urgent calls require fluent computers, HP COMPAQ computers are ideal for business laptops
*Wireless headset + phone, vOIP = a plus, try helping a client with the phone in one hand and operating the computer with the other
*An extra monitor, so dual monitors can be used
Software:
*A call registerring program/ticketing system/... There's many free online php packages that do this, but this mostly depends on how your helpdesk will work. Can customers report problems via phone, email or website altogether, or one exclusively? You will need to track open calls, submit calls, add comments and perhaps establish a knowledge base for future reference AND for employees that might be hired in the future.
I would reccomend NOT using email exclusively, but a ticketing system. If you'd like to know why, I would gladly elaborate about this via mail (IM_geek@ymail.com).
*A screensharing program, if you're offering some kind of IT tech support. Teamviewer (www.teamviewer.com) is perfect! IT can be used freely or you can buy a license. Commercial (=multiple) use requires a paid license. Fantastic piece of software. I've used LogMeIn, Go2Assist, kVNC, Radmin viewer, etc, but Teamviewer takes the cake
*A program to keep track of remote connection (again, if you plan to offer IT TECH support and need to log into remote servers).
VisionApp Remote Desktop is good, free alternative for this (http://www.visionapp.com/resources/downloads/products-freeware.html).
IT Support is underestimated and extremely, extremely important. Implementing a solution with a client is only half the work.
*A decent computer : urgent calls require fluent computers, HP COMPAQ computers are ideal for business laptops
*Wireless headset + phone, vOIP = a plus, try helping a client with the phone in one hand and operating the computer with the other
*An extra monitor, so dual monitors can be used
Software:
*A call registerring program/ticketing system/... There's many free online php packages that do this, but this mostly depends on how your helpdesk will work. Can customers report problems via phone, email or website altogether, or one exclusively? You will need to track open calls, submit calls, add comments and perhaps establish a knowledge base for future reference AND for employees that might be hired in the future.
I would reccomend NOT using email exclusively, but a ticketing system. If you'd like to know why, I would gladly elaborate about this via mail (IM_geek@ymail.com).
*A screensharing program, if you're offering some kind of IT tech support. Teamviewer (www.teamviewer.com) is perfect! IT can be used freely or you can buy a license. Commercial (=multiple) use requires a paid license. Fantastic piece of software. I've used LogMeIn, Go2Assist, kVNC, Radmin viewer, etc, but Teamviewer takes the cake
*A program to keep track of remote connection (again, if you plan to offer IT TECH support and need to log into remote servers).
VisionApp Remote Desktop is good, free alternative for this (http://www.visionapp.com/resources/downloads/products-freeware.html).
IT Support is underestimated and extremely, extremely important. Implementing a solution with a client is only half the work.
Powered by Yahoo! Answers
No comments:
Post a Comment