Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Am I being watched?

Status
Not open for further replies.
Lowfront

Lowfront

Technical User
Nov 27, 2005
8
I made a big mastake last night leaving ports 6880 to 6999 open last night along with my bittorrent client......


Last night I was trying to get my bittorrents going when I opened those ports.....

At some point my connection got horrible and I turned off my zonealarm seeing if that had to do with the slow connection.....

ended up leaving firewall off, ports open, and bittorrents going......

woke up turn on zonelabs when noticed it was off and it blocked 4,000 connection in a good 30min....






am i screwed?.....What should I do?....am I being watched?
 
Sort by date Sort by votes
Is this the reason for my slow connection?.....
 
Upvote 0 Downvote
I'm guessing you don't have a hardware firewall or NAT device?

If so, I would do the safe thing and assume your OS has been compromised. Make backups of your data files (not executables!), boot from trusted media (OS CDR or known-good boot floppy, and fdisk the drive/partition.

A bit extreme, but it's the only way to know for sure that there isn't anything lurking about. Call it the "nuke it from orbit" solution...

Chip H.


____________________________________________________________________
Donate to Katrina relief:
If you want to get the best response to a question, please read FAQ222-2244 first
 
Upvote 0 Downvote
Alright well then....

Would a simple system restore do the trick?

if not

Whats the best way to back up data?....Could I ghost is all and then use the ghost explorer and take everything out of the image?.........


And my internet has been completly down all day now...Could this be the problem?..Could they have done somthing to my router?
 
Upvote 0 Downvote
If you have a CD or DVD burner, use that. I would *not* use Ghost, as it would copy over any suspect files too.

Your internet connection being down might be a coincidence, or your ISP might have detected your open ports and closed the connection as a security measure. You probably need to call them.

Chip H.


____________________________________________________________________
Donate to Katrina relief:
If you want to get the best response to a question, please read FAQ222-2244 first
 
Upvote 0 Downvote
I agree with Chip - you don't wanna make a ghost image of anything you're not 100% sure is safe and clean.
However, you may not need to do an fdisk/reinstall at this point.

I suggest first running a full set of tools against your PC (antivirus, antispyware, hijackthis, etc...) and see if anything was infected/compromised. In addition, I also usually run two versions of an antispyware software -- just in case one misses something. If something is discovered that alone could explain your speed issues. Also, keep in mind prior to running any of the cleaning agents, turn your auto System Restore off. That can be very frustrating if you clean your system once and your next reboot will be infected again.

Good Luck.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
597
Sameer258
Sameer258
XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
485
XLNTech1
XLNTech1
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
553
Johnkite
Johnkite
MrPB
  • Locked
  • Question
Am I being hacked/spied on?
Replies
7
Views
190
kjv1611
kjv1611
Tommy_T
  • Locked
  • Question
Sonic wall - Have an issue remotely connectioning VNC and SMB (and AFP) to one of the 2 ISP circuits
Replies
1
Views
475
nnaarrnn
nnaarrnn

Part and Inventory Search

Sponsor

Back
Top