Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My Ports Are Open!am I Infected?


  • Please log in to reply
1 reply to this topic

#1 GrandCommander

GrandCommander

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:22 AM

Posted 21 August 2008 - 05:24 AM

Hi i did shieldsup port scanner, pc flank port scanner and hackerwatch probe tests and they all showed my port 80 open and yulnerable to attack!
I have kaspersky internet security 2009 and it closes all ports by default but for me my port 80 is open. This is usually for web servers right? im not a server at all...
Im not behind a router and niether has my isp kept my port 80 open. Could it be possible that my computer is infected with some sorta malware??!
normal malware remover showed some keygens as trojans but i know theyre clean. Also, Kaspersky showed a firewall leak test from COMODO CPIL as trojan but it removed it.
after that ,I did a sdfraud fix scan , combofix scan ,malwarebytes anti malware scan, webcureit scan . they all showed CLEAN!
WHat should i do? should i post hijackthis log??
Thanks
Posted Image

BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,083 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:22 PM

Posted 21 August 2008 - 09:31 AM

normal malware remover showed some keygens as trojans but i know theyre clean

The practice of using crack or keygen tools is not only considered illegal activity but it is a serious security risk.

Cracking applications are used for illegally breaking (cracking) various copy-protection and registration techniques used in commercial software. These programs may be distributed via Web sites, Usenet, and P2P networks.

trendmicro.com/vinfo

If you use those kind of programs, be forewarned that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. In many cases, these sites are infested with a smörgåsbord of malware. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling the OS.

after that ,I did a ... combofix scan

Please note the message text in blue at the top of this forum.

You should not be using Combofix unless instructed to do so by a Malware Removal Expert. It is a powerful tool intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again. Please read Combofix's Disclaimer.

With that said, port 80 is the default HTTP protocol for your connection to the Word Wide Web. The Hypertext Transfer Protocol (HTTP) is a communications protocol for the transfer of information on the Internet.

A port is an address associated with a particular process on a computer. Ports have a unique number in the header of a data packet that is used to map this data to that process. Port numbers are divided into three ranges: Well Known Ports, Registered Ports, and Dynamic/Private Ports. Default port values for commonly used TCP/IP services have values lower than 255 and Well Known Ports have numbers that range from 0 to 1023. Registered Ports range from 1024 to 49151 and Dynamic/Private Ports range from 49152 to 65535. An "open port" is a TCP/IP port number that is configured to accept packets while a "closed port" is one that is set to deny all packets with that port number. Port Scanning is a technique used by hackers to locate open ports in your computer which they can break into. Malicious programs like viruses and Trojan horses can be introduced into your computer via these open ports. If your PC is sending out large amounts of data, this usually indicates that your system may have a virus or a Trojan horse.

TCP/UDP Ports Explained
Ports, Firewalls, Routers
Ports for Internet Services
Port Numbers by iana.org
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users