Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 282
  • Last Modified:

Firewall blocked communications

I have the Telus dsl high speed service. I am also
using Norton Internet Security. Recently I have noticed
in the event log that about every 10 seconds a AGT server
is trying to communicate with my computer. Norton says it
has blocked communication on an unused port. This goes
on all day every day every 10 seconds or so. I have
never noticed this amount of blocked communications before. I checked the IP address, and it comes back
belonging to AGT in Edmonton.
 
0
ringholio
Asked:
ringholio
  • 2
1 Solution
 
OttaCommented:
This sounds like either:
* the 'Code Red' virus, which scans the entire Internet,
. looking for Microsoft IIS web-servers to infect.
. Details: http://WWW.Incidents.Org
or
* the 'SirCam' virus, which scans for computers with
. "File and Print Sharing" enabled with no password-protection.
. Details:
. (http://www.symantec.com/avcenter/venc/data/w32.sircam.worm@mm.html)
. (http://vil.nai.com/vil/virusSummary.asp?virus_k=99141)
. (http://news.cnet.com/news/0-1003-200-6660198.html)

Probably, you are seeing traffic from *BOTH* viruses.



0
 
wishmaster_xpCommented:
I'm another Telus ADSL user, for B.C.
What os are you currently using?

I've had a few similar enquiries recently, and in all cases they were WinXP users.

Here's the breakdown:

By default, the WinXP installation turns on Quality of Service (QOS) packets on the detected Internet connection. This sends small packets of data about your Internet experience to your ISP. This is in no way privacy invasive, and works to your advantage. Telus's servers are indeed configured to accept these QOA packets, and send corresponding data back.

MANY firewall applications set off a million false alarms about attempted hackers and the like. If you are running WinXP, turn on the ICF and be done with it.
If you really want some better into, run a traceroute and host lookup on the address. Might also want to give ZoneAlarm a spin on the PC.
For "follow the bouncing ball" PC Security info, go visit
Steve Gibson's website: http://www.grc.com
He's a God among men.
0
 
wishmaster_xpCommented:
Hey! Also check for those nasty spyware apps.
The most common one I've found lurking on people's PC
currently is courtesy of KaZaa, the media downloaded.
(Napster replacement)

1. Go download AdAware! Can't stress this enough.
http://www.lavasoftusa.com

2. Ditch KaZaa, and look to Morpheus instead. It's the SAME application, minus the spyware. Does have a banner though, but you hav to live with that.........or not.
};->


Happy hunting.

0
 
SpideyModCommented:
Force Accepted

SpideyMod
Community Support Moderator @Experts Exchange
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

NEW Internet Security Report Now Available!

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out this quarters report on the threats that shook the industry in Q4 2017.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now