Thanks Pupudada, i have Hijackthis and i think i will post the log where it can be analysed. I am too new to analyse that log myself. just for comparison, check out the statistics now after the sp2 has been completely installed: total traffic 2MB in an an hour and 17 minutes! I have been browsing all that while. Windows firewall definitely is working now.. i got a lot of permission requests from the firewall.
-
Amazon Deals - ToS - Like us?
HACKERS?
- Thread starter oldtimer
- Start date
- Replies 17
- Views 3,180
its good you installed Zonealarm also.windows firewall only gives inbound protection.not outbound.also maybe the modem has NAT.turning it on might be a good idea.also the latest versions of zonealarms cause a lot of problems for quite a few people.like limited or no connectivity,system crashing,etc.just switch to ZA 4.5pro or something and it'll be all good..
[/quote]
I use Zone Alarm Security Suite 6 Now.
However I started using ZA quite some time back. I do not know with which version (free one) I started with, but never faced any problem. Only thing is the popup that would appear for request to access Internet. How would a common user know whether to allow or deny.
I used to deny most of them if the pop up appeared when the popped up when I was not browsing or changed to any other URL.
But well if u use ZA 6 It is a no-nonsense (till now for me)
In zone alarm, Is there any way to watch the internet activity on-line, to observe the dynamics of the connection? The logfile will give us only an offline record isn't it?i was using tiny personal firewall earlier and that would open a window showing online, which processes and ports in my machine were sending to or connecting to/receiving from which ip addresses and what kinds of packets were coming.That was very fascinating.thanks, oldtimer
I would advise you people to use Ethereal which is available on ethereal.com. Thats a packet sniffer, you'll easily be able to detect what kind of traffic and where it is going.Even I had a similar problem like yours, I had disabled automatic updates in my newly installed Windows 2003 Server but still there was huge amount of traffic flowing I thought maybe a bot or something. But through Ethereal I found that the traffic was going to the windowsupdate site and it was downloading the service pack1. B)
I guess the heavy traffic came when sp1 was being downloaded. Windows update does that quietly in the background. If you do not already have the service pack installed before you connect, then windows update manager will sooner or later discover that and start downloading the updates without asking!
Originally posted by oldtimer@Sep 7 2005, 10:29 PM
Thanks Pupudada, i have Hijackthis and i think i will post the log where it can be analysed. I am too new to analyse that log myself.
Windows firewall definitely is working now.. i got a lot of permission requests from the firewall.
check this site.. extremely helpful for virus and security related questions... u can post your `hijackthis' logs in there
Thanks Pupudada, i have Hijackthis and i think i will post the log where it can be analysed. I am too new to analyse that log myself.
Windows firewall definitely is working now.. i got a lot of permission requests from the firewall.
check this site.. extremely helpful for virus and security related questions... u can post your `hijackthis' logs in there
Code:
http://www.bullguard.com/forum/