Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Large number of internet sessions - ?Virus or ?Hacker

Posted on 2007-04-08
8
1,053 Views
Last Modified: 2013-12-04
Hi Experts. I have received a broadband connection Alert from BT. Error: The following devices on your network are using a large number of internet sessions. ADVENT -7113. They say it is a blaster virus most probably. If I google this term I get mostly references to a Laptop. Could this be a sign that someone using this type of laptop is ripping off my connection. Thanks!
0
Comment
Question by:Nasturtiumman
  • 3
  • 3
  • 2
8 Comments
 
LVL 4

Assisted Solution

by:AndrewCink
AndrewCink earned 240 total points
ID: 18873364
It does not sound like someone with a laptop is causing problems with your connection, although if you have a public wireless access point, maybe they are using your connection wirelessly to send this bad traffic.

It sounds like you may have an infected machine on your network. If you have a log of some sort, try to look for which IP is sourcing the traffic, then take it off your network until you can clean it with antivirus software. If you have a firewall, you can look through its logs to see your sessions and where they are coming from if it's a decent one.

If not, you'll have to play a guessing game and go through all of the machines on your network and either unplug them or clean them until you find the infected machine(s).

If you do have a wireless access point, I recommend changing the SSID, not broadcasting the SSID, and set up a password for access so that malcontents cannot easily get on to your network to send this sort of traffic.

Andy
0
 
LVL 32

Expert Comment

by:r-k
ID: 18873617
How many machines are on your network?

If just a few, open a command window on each and type:

> netstat -ab

to see what sessions are open.

If you have a wireless access point then do lock it down with WPA as suggested by Andy above.
0
 

Author Comment

by:Nasturtiumman
ID: 18873631
Hi Its in my shop, and I`m at home now, but there is a wireless router, but only one PC connected. My son uses his laptop there. We have a WEP key enabled, and SSID broadcast disabled.
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 32

Accepted Solution

by:
r-k earned 260 total points
ID: 18873657
"We have a WEP key enabled"

I would suggest switching to WPA instead for greater security. WEP is fairly easy to break.

Would be interesting to see the results of "netstat -ab" when you back at the shop.
0
 

Author Comment

by:Nasturtiumman
ID: 18874733
Thanks guys will report back in a couple of days N.
0
 
LVL 4

Expert Comment

by:AndrewCink
ID: 18887498
I may misunderstand, but if there is only one wireless PC, I'd recommend disabling the wireless and try using a wired connection for a couple days and see if it goes away. That would at least eliminate the possibility of someone else using the wireless. Then you could be sure it's definitely a device inside your network...
0
 

Author Comment

by:Nasturtiumman
ID: 19036615
Problem solved, it was in fact my son's laptop!, but I have improved my security based on your advice. Thank-you!
0
 
LVL 32

Expert Comment

by:r-k
ID: 19036850
Thanks. Glad things are better now.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
OfficeMate Freezes on login or does not load after login credentials are input.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question