<div>
Here is another pic, shows a few ips. This is on our SBS, what is a good scan to run?<br />
<a href="https://filedb.experts-exchange.com/incoming/2012/08_w32/595692/dnsex2.png" target="_blank" title="1 (10 KB)"><img alt="1" class="file-block lazyload" style="max-width: 757px;" data-src="https://filedb.experts-exchange.com/incoming/2012/08_w32/595692/dnsex2.png" /></a>
</div>


Here is another pic, shows a few ips. This is on our SBS, what is a good scan to run?
1https://filedb.experts-exchange.com/incoming/2012/08_w32/595692/dnsex2.png

dnsex2.png

<div>
I would Download Malwarebytes or superantispy ware. <br />
<br />
<a href="http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html" rel="ugc">http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html</a><br />
<br />
<br />
<a href="http://download.cnet.com/SuperAntiSpyware-Free-Edition/3000-8022_4-10523889.html" rel="ugc">http://download.cnet.com/SuperAntiSpyware-Free-Edition/3000-8022_4-10523889.html</a>
</div>


I would Download Malwarebytes or superantispy ware.

http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html [http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html]


http://download.cnet.com/SuperAntiSpyware-Free-Edition/3000-8022_4-10523889.html [http://download.cnet.com/SuperAntiSpyware-Free-Edition/3000-8022_4-10523889.html]

<div>
run netstat -o Displays the owning process ID associated with each connection<br />
<br />
run netstat -b Displays the executable involved in creating each connection or listening port
</div>


run netstat -o Displays the owning process ID associated with each connection

run netstat -b Displays the executable involved in creating each connection or listening port

<div>
<div class="content wysiwyg-content">
been watching stuff in task manager window, curious to know what this dns.exe thing is about. &nbsp;See pic. I have noticed ip addresses from various places around the world. How are they gaining access, or, are they gaining access? I don't understand what this is. &nbsp;We do have an app that uses a dns service, but access via our router has all ips blocked, only allowing ips that I manually enter into the router rules to &quot;allow&quot;. Not sure what I am seeing here.<br />
<br />
<a href="https://filedb.experts-exchange.com/incoming/2012/08_w32/595684/dnsex.png" target="_blank" title="1 (40 KB)"><img alt="1" class="file-block lazyload" style="max-width: 788px;" data-src="https://filedb.experts-exchange.com/incoming/2012/08_w32/595684/dnsex.png" /></a>
</div>
</div>


dnsex.png

been watching stuff in task manager window, curious to know what this dns.exe thing is about.  See pic. I have noticed ip addresses from various places around the world. How are they gaining access, or, are they gaining access? I don't understand what this is.  We do have an app that uses a dns service, but access via our router has all ips blocked, only allowing ips that I manually enter into the router rules to "allow". Not sure what I am seeing here.



dns.exe what is that?

The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.

Small Business Server (SBS) is a line of server operating systems targeted at small businesses by bundling the operating system with a number of other Microsoft products that would normally need to be purchased or licensed separately. The most notable inclusions are Exchange, SQL Server, SharePoint and ISA/TMG (Microsoft's firewall and proxy server).