| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 16164 | 2002-02-28 06:43:00 | Dodgy win 98 problems.... | Guest (0) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 37408 | 2002-02-28 06:43:00 | Alright, my problem is that in my autoexec.bat there appeared a line that had all these crazy symbols and some words and more symbols. I deleted it and then another message appeared later (not sure whether straight after booting or later), i deleted it once again and then another one appeared. I have norton antivirus (ver 4.04 win 95) and i have been updating it regularly but it doesnt detect anything. It crashed at start up a bit, so I have disabled everything from loading except the neccessities, and so far so good (it's only been two days...) Could my system have been comprimised comehow? eg trojan horse or virus? Fearing something from the internet, I also installed the trial version of BlackIce and from the two days it has been installed i have had heaps detections... here's my log so far: Time, Event, Intruder, Count 28/02/2002 17:32:51, BlackICE detection started, 0.0.0.0, 1 28/02/2002 17:22:37, TCP SYN flood, RCULWELL, 1 28/02/2002 17:19:16, TCP port probe, cs6669125-65.satx.rr.com, 1 28/02/2002 17:18:32, TCP port probe, cs666942-73.satx.rr.com, 1 28/02/2002 17:18:11, TCP port probe, 1Cust67.tnt1.bryan.oh.da.uu.net, 1 28/02/2002 17:16:08, TCP port probe, 218.148.203.10, 1 28/02/2002 17:14:44, TCP port probe, 12-225-152-64.client.attbi.com, 1 28/02/2002 16:53:39, TCP port probe, AC91B231.ipt.aol.com, 1 28/02/2002 16:51:33, TCP port probe, WKS731, 1 28/02/2002 16:50:48, TCP SYN flood, video.md.kth.se, 1 28/02/2002 16:44:49, TCP port probe, AC91F37E.ipt.aol.com, 1 28/02/2002 17:19:46, TCP port probe, fw.tctv.ne.jp, 2 28/02/2002 17:19:09, TCP port probe, COUGAR, 2 28/02/2002 17:19:02, TCP port probe, 168-215-193-130.dslindiana.com, 2 28/02/2002 17:18:36, TCP port probe, DIAZ, 2 28/02/2002 17:16:55, TCP port probe, bgp991964bgs.mlvind01.mi.comcast.net, 2 28/02/2002 17:16:42, TCP port probe, 66-188-67-119.charter-georgia.com, 2 28/02/2002 17:14:44, TCP port probe, GRIZZLY, 2 28/02/2002 17:13:48, TCP port probe, ool-18bb58-190.dyn.optonline.net, 2 28/02/2002 17:11:31, TCP port probe, AC94CBBD.ipt.aol.com, 2 28/02/2002 17:09:36, TCP port probe, 12-248-101-228.client.attbi.com, 2 28/02/2002 17:00:40, TCP port probe, SYSADMIN, 2 28/02/2002 16:57:10, TCP port probe, REDELL, 2 28/02/2002 16:55:03, TCP port probe, doubleneg-1.sohonet.co.uk, 2 28/02/2002 16:53:24, TCP port probe, ip68-0-249-119.ri.ri.cox.net, 2 28/02/2002 16:51:31, TCP port probe, FAZ, 2 28/02/2002 16:36:42, TCP port probe, 12-228-207-170.client.attbi.com, 2 27/02/2002 22:52:52, FTP port probe, DARDEVIL, 2 28/02/2002 17:22:36, TCP port probe, modem-pool-053.mis.net, 3 28/02/2002 17:22:36, TCP port probe, PLEMONS, 3 28/02/2002 17:20:18, TCP port probe, 113-81.klgr-a5.cablelynx.com, 3 28/02/2002 17:20:18, TCP port probe, 66.119.196.130, 3 28/02/2002 17:20:18, TCP port probe, pcnadmin.tvt.ne.jp, 3 28/02/2002 17:19:42, TCP port probe, CPE00045a2d48fa.cpe.net.cable.rogers.com, 3 28/02/2002 17:19:37, TCP port probe, dsl-249.grp6.tnmmrl.infoave.net, 3 28/02/2002 17:19:02, TCP port probe, 12-229-206-236.client.attbi.com, 3 28/02/2002 17:19:02, TCP port probe, adsl-65-43-101-191.dsl.chcgil.ameritech.net, 3 28/02/2002 17:18:39, TCP port probe, AC8F0515.ipt.aol.com, 3 28/02/2002 17:18:22, TCP port probe, roc-24-58-65-204.rochester.rr.com, 3 28/02/2002 17:18:19, TCP port probe, bgp532936bgs.ebrnsw01.nj.comcast.net, 3 28/02/2002 17:18:18, TCP port probe, 65.66.93.195, 3 28/02/2002 17:18:04, TCP port probe, bgp596386bgs.mnhwkn01.nj.comcast.net, 3 28/02/2002 17:17:48, TCP port probe, adsl-32-185-88.sdf.bellsouth.net, 3 28/02/2002 17:17:33, TCP port probe, RON, 3 28/02/2002 17:16:34, TCP port probe, AC9E2420.ipt.aol.com, 3 28/02/2002 17:16:30, TCP port probe, zdslppp217.mpls.uswest.net, 3 28/02/2002 17:16:00, TCP port probe, cb-s510-1.dorm.temple.edu, 3 28/02/2002 17:16:00, TCP port probe, 4-BLUE, 3 28/02/2002 17:15:38, TCP port probe, 12-232-207-45.client.attbi.com, 3 28/02/2002 17:14:44, TCP port probe, adsl-66-73-1-12.dsl.sfldmi.ameritech.net, 3 28/02/2002 17:14:44, TCP port probe, chr176dhcp532.chrchv01.md.comcast.net, 3 28/02/2002 17:14:44, TCP port probe, chello212186148151.15.vie.surfer.at, 3 28/02/2002 17:14:44, TCP port probe, 203.26.216.77, 3 28/02/2002 17:14:44, TCP port probe, 12.105.94.230, 3 28/02/2002 17:09:45, TCP port probe, AC9C2D17.ipt.aol.com, 3 28/02/2002 17:09:02, TCP port probe, ACBFB3B9.ipt.aol.com, 3 28/02/2002 17:09:02, TCP port probe, ip68-10-99-65.hr.hr.cox.net, 3 28/02/2002 17:09:02, TCP port probe, CLYDE, 3 28/02/2002 17:06:06, TCP port probe, DEFAULT, 3 28/02/2002 17:03:12, TCP port probe, 64.223.136.23, 3 28/02/2002 17:02:56, TCP port probe, ARES, 3 28/02/2002 17:01:58, TCP port probe, 198.29.3.40, 3 28/02/2002 17:01:54, TCP port probe, YOUR-L4VT9Q703U, 3 28/02/2002 17:01:04, TCP port probe, wv-morgantown2-144.mgtnwv.adelphia.net, 3 28/02/2002 17:00:45, TCP port probe, bgp525840bgs.ebrnsw01.nj.comcast.net, 3 28/02/2002 17:00:40, TCP port probe, 195.238.217.201, 3 28/02/2002 17:00:40, TCP port probe, AC91F37E.ipt.aol.com, 3 28/02/2002 17:00:40, TCP port probe, NICKYQ, 3 28/02/2002 17:00:40, TCP port probe, blnd200-24.onlink.net, 3 28/02/2002 16:57:29, TCP port probe, ACB6E989.ipt.aol.com, 3 28/02/2002 16:57:20, TCP port probe, evrtwa1-ar3-019-026.biz.dsl.gtei.net, 3 28/02/2002 16:56:04, TCP port probe, 12-222-8-27.client.insightBB.com, 3 28/02/2002 16:56:03, TCP port probe, BV2-24.207.199.55.charter-stl.com, 3 28/02/2002 16:56:03, TCP port probe, 0050DA9A2060, 3 28/02/2002 16:56:00, TCP port probe, h24-66-146-13.gv.shawcable.net, 3 28/02/2002 16:56:00, TCP port probe, out1.R-TEC.net, 3 28/02/2002 16:55:07, TCP port probe, COMPUTER, 3 28/02/2002 16:55:03, TCP port probe, TROPICAL, 3 28/02/2002 16:55:03, TCP port probe, akgx23efy28bk.bc.hsia.telus.net, 3 28/02/2002 16:55:03, TCP port probe, f1.amcorp.com.au, 3 28/02/2002 16:55:03, TCP port probe, host-216-153-189-46.choiceone.net, 3 28/02/2002 16:55:03, TCP port probe, port5.ds1-fm.adsl.cybercity.dk, 3 28/02/2002 16:54:18, TCP port probe, adsl-80-53-63.asm.bellsouth.net, 3 28/02/2002 16:54:07, TCP port probe, GGSR701, 3 28/02/2002 16:53:58, TCP port probe, PAVILION, 3 28/02/2002 16:53:48, TCP port probe, mail.grottera.com.br, 3 28/02/2002 16:53:47, TCP port probe, ACAD7C15.ipt.aol.com, 3 28/02/2002 16:53:35, TCP port probe, 01-030.092.popsite.net, 3 28/02/2002 16:53:34, TCP port probe, 196.11.196.1, 3 28/02/2002 16:53:33, TCP port probe, O6Q6D5, 3 28/02/2002 16:53:23, TCP port probe, h24-71-184-8.ss.shawcable.net, 3 28/02/2002 16:52:52, TCP port probe, poc.mol.com.mk, 3 28/02/2002 16:52:47, TCP port probe, zorglub.metropol.dk, 3 28/02/2002 16:52:06, TCP port probe, h0002e31fd23c.ne.mediaone.net, 3 28/02/2002 16:52:06, TCP port probe, pool-151-203-69-130.bos.east.verizon.net, 3 28/02/2002 16:51:39, TCP port probe, pcp050774pcs.brlngt01.nj.comcast.net, 3 28/02/2002 16:51:39, TCP port probe, INTREX, 3 28/02/2002 16:51:38, TCP port probe, 194.90.39.25, 3 28/02/2002 16:48:36, TCP port probe, modemcable166.247-201-24.que.mc.videotron.ca, 3 28/02/2002 16:48:36, TCP port probe, SKNfa-01p1-71.ppp11.odn.ad.jp, 3 28/02/2002 16:48:36, TCP port probe, customer-ebilling.edge1082.iseek.com.au, 3 28/02/2002 16:46:48, TCP port probe, 0x50c5db10.hrnxx4.adsl.tele.dk, 3 28/02/2002 16:46:48, TCP port probe, nic-245-c45-157.mn.mediaone.net, 3 28/02/2002 16:46:48, TCP port probe, 7.26.171.66.subscriber.vzavenue.net, 3 28/02/2002 16:46:48, TCP port probe, gblx216.wamego.net, 3 28/02/2002 16:46:46, TCP port probe, adsl-80-199-38.jax.bellsouth.net, 3 28/02/2002 16:46:35, TCP port probe, a204b210n116client85.hawaii.rr.com, 3 28/02/2002 16:46:31, TCP port probe, MCCAMA_CITRIX, 3 28/02/2002 16:46:30, TCP port probe, 66.95.212.169, 3 28/02/2002 16:40:47, TCP port probe, stnat3n.esper.com, 3 28/02/2002 16:40:46, TCP port probe, CPE002078ca6cef.cpe.net.cable.rogers.com, 3 28/02/2002 16:38:17, TCP port probe, cpe-24-221-139-41.az.sprintbbd.net, 3 27/02/2002 18:39:24, TCP port probe, cuscon5413.tstt.net.tt, 3 27/02/2002 18:32:09, TCP port probe, 0.0.0.0, 3 27/02/2002 18:32:09, TCP port probe, ACA46CFB.ipt.aol.com, 3 27/02/2002 18:30:41, TCP port probe, AC9EC723.ipt.aol.com, 3 27/02/2002 18:30:40, TCP port probe, OEMCOMPUTER, 3 27/02/2002 18:30:40, TCP port probe, 66-81-120-152-modem.o1.com, 3 27/02/2002 18:30:40, TCP port probe, cuscon5413.tstt.net.tt, 3 27/02/2002 18:30:04, TCP port probe, COMPUTER, 3 27/02/2002 18:29:39, TCP port probe, COLTER, 3 27/02/2002 18:29:37, TCP port probe, ACB588C1.ipt.aol.com, 3 27/02/2002 18:29:27, TCP port probe, h24-80-105-127.vf.shawcable.net, 3 27/02/2002 18:29:25, TCP port probe, S0024426484, 3 27/02/2002 18:29:22, TCP port probe, pool-162-83-168-189.ny5030.east.verizon.net, 3 27/02/2002 18:29:21, TCP port probe, dup-200-65-15-172.prodigy.net.mx, 3 27/02/2002 18:29:14, TCP port probe, adsl-57.86.47.info.com.ph, 3 28/02/2002 17:22:36, TCP port probe, CD109609901-1, 4 28/02/2002 17:22:36, TCP port probe, EAJ6A, 4 28/02/2002 17:22:36, TCP port probe, HPPAV, 4 28/02/2002 17:20:18, TCP port probe, 12-248-131-143.client.attbi.com, 4 28/02/2002 17:15:42, TCP port probe, EDAVIES, 4 28/02/2002 17:15:31, TCP port probe, ACA7B4A9.ipt.aol.com, 4 28/02/2002 17:13:38, TCP port probe, NICHOLE, 4 28/02/2002 17:11:31, TCP port probe, AC93F05A.ipt.aol.com, 4 28/02/2002 17:11:31, TCP port probe, COMPUTER, 4 28/02/2002 17:03:33, TCP port probe, ACAA16A5.ipt.aol.com, 4 28/02/2002 17:03:21, TCP port probe, PAVILION, 4 28/02/2002 17:03:11, TCP port probe, adsl-66-140-45-23.dsl.rcsntx.swbell.net, 4 28/02/2002 17:01:29, TCP port probe, 65.35.40.83.altamonte-ubr-b.cfl.rr.com, 4 28/02/2002 17:00:50, TCP port probe, modemcable197.99-203-24.mtl.mc.videotron.ca, 4 28/02/2002 16:56:02, TCP port probe, imp-dbnclb.mweb.co.za, 4 28/02/2002 16:56:00, TCP port probe, 66.99.8.89, 4 28/02/2002 16:55:10, TCP port probe, U1T3B2, 4 28/02/2002 16:54:10, TCP port probe, HSE-MTL-ppp70843.qc.sympatico.ca, 4 28/02/2002 16:53:58, TCP port probe, ts16-90.dialup.bol.ucla.edu, 4 28/02/2002 16:52:49, TCP port probe, pool-141-157-124-89.balt.east.verizon.net, 4 28/02/2002 16:52:09, TCP port probe, epsomcollege-5.dsl.easynet.co.uk, 4 28/02/2002 16:48:36, TCP port probe, AC824133.ipt.aol.com, 4 28/02/2002 16:38:27, TCP port probe, 1Cust194.tnt1.oberlin.oh.da.uu.net, 4 27/02/2002 18:29:28, TCP port probe, OEMCOMPUTER, 4 27/02/2002 18:29:27, TCP port probe, 12-238-209-58.client.attbi.com, 4 27/02/2002 18:29:02, TCP port probe, h00045ad7cf81.ne.mediaone.net, 4 28/02/2002 17:22:36, TCP port probe, cs6668182-16.austin.rr.com, 5 28/02/2002 16:56:00, TCP port probe, 146.196.4.62, 5 28/02/2002 17:22:36, TCP port probe, 208.213.216.160, 6 28/02/2002 17:13:38, TCP port probe, 11.west-palm-beach-08-09rs.fl.dial-access.att.net, 6 28/02/2002 16:56:00, TCP port probe, adsl-208-191-104-173.dsl.stlsmo.swbell.net, 6 28/02/2002 16:52:22, TCP port probe, ANDREA, 6 28/02/2002 16:52:20, TCP port probe, lsanca2-ar28-4-63-230-097.lsanca2.vz.dsl.gtei.net, 6 28/02/2002 16:40:06, TCP port probe, host213-121-70-67.surfport24.v21.co.uk, 6 28/02/2002 17:19:49, TCP port probe, 12.20.146.126, 8 28/02/2002 17:16:55, TCP port probe, MICHAEL, 8 28/02/2002 17:14:44, TCP port probe, PMA, 8 28/02/2002 17:06:06, TCP port probe, ACBA2958.ipt.aol.com, 8 28/02/2002 16:56:47, TCP port probe, DOOL, 8 28/02/2002 16:48:36, TCP port probe, OEMCOMPUTER, 9 28/02/2002 16:48:36, TCP port probe, www.ornet-cs.co.il, 9 28/02/2002 17:22:36, TCP port probe, RCULWELL, 10 28/02/2002 17:17:01, TCP port probe, dyn-1-171.tku.netti.fi, 12 28/02/2002 17:16:51, TCP port probe, ip3e832897.speed.planet.nl, 12 28/02/2002 17:16:12, TCP port probe, 003587662, 12 28/02/2002 16:48:36, TCP port probe, dialup-65.56.237.55.Dial1.Buffalo1.Level3.net, 12 28/02/2002 17:17:05, TCP port probe, pcp01171121pcs.roylok01.mi.comcast.net, 14 28/02/2002 17:16:59, TCP port probe, dial-64-200-54-241.sofnet.net, 15 28/02/2002 17:16:56, TCP port probe, 203-79-95-206.apx0.paradise.net.nz, 27 28/02/2002 17:24:01, TCP port probe, gate.monash.edu.my, 134 28/02/2002 16:51:14, TCP port probe, carvell.dsl.frii.net, 200 27/02/2002 19:19:45, TCP port probe, ppp090.ra.centurytel.net, 995 I have no idea what is going on.... Any help appreciated Stefan |
Guest (0) | ||
| 37409 | 2002-02-28 07:29:00 | firstly ditch blackice and get a better firewall such as zonealarm, tiny, outpost(its beta thou) to name a few. check to see if anything is reporting out from your pc. it could be just background traffic. that you are getting or pc's responding to something you are sending out. |
Guest (0) | ||
| 37410 | 2002-03-01 00:43:00 | Hi. I'd try run things without your autoexec.bat and config.sys and see what happens - disable them under System Configuration Utility. | Guest (0) | ||
| 1 | |||||