Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Scanned my network, why is telnet running?


  • Please log in to reply
24 replies to this topic

#1 everything

everything

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 11 July 2015 - 02:51 AM

Lenovo Y50-70

Model 20378

Windows 8

 

Wireless connection to Arris DG1670A router

 

15 feet from router, Cable internet

 

 

I just got a new ISP and set up my new router. When I was finished I thought to scan the network, 192.168.0.1 with Fing. I guess the results are port 23, 80, and 443 are active. Those are Telnet, HTTP, and SSL respectively. My questions: is it normal to have a telnet connection in the background? I don't know much in IT and networking, I just want to know if it's something to worrry about. At the time I wasn't doing anything but using my web browser, although before this I was configuring the router through the browser. The following is the Minitoolbox log, thank you.

 

 

 

 

 

 

MiniToolBox by Farbar  Version: 01-07-2015
Ran by Dan (administrator) on 11-07-2015 at 02:46:26
Running from "C:\Users\Dan\Downloads"
Microsoft Windows 8.1  (X64)
Model: 20378 Manufacturer: LENOVO
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 802.11ac Network Adapter = Wi-Fi (Connected)
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 4" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set subinterface interface= subinterface=ethernet_5 mtu=1477


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Lenovo-Y50-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Local Area Connection* 4:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Hosted Network Virtual Adapter
   Physical Address. . . . . . . . . : B0-10-41-F2-F4-87
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : B0-10-41-F2-F4-88
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : B2-10-41-F2-F4-87
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 802.11ac Network Adapter
   Physical Address. . . . . . . . . : B0-10-41-F2-F4-87
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::4d1f:413:398b:52a0%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, July 11, 2015 1:18:52 AM
   Lease Expires . . . . . . . . . . : Saturday, July 11, 2015 3:18:52 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 78647361
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-B4-2D-8B-F0-76-1C-12-9D-6F
   DNS Servers . . . . . . . . . . . : 66.90.132.162
                                       66.90.130.101
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : SWDL.WDS
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : F0-76-1C-12-9D-6F
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{A32FE5CD-36D4-4DB8-82E0-7AFE01197451}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::248e:f74:3f57:fffc%11(Preferred)
   Default Gateway . . . . . . . . . :
   DHCPv6 IAID . . . . . . . . . . . : 469762048
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-B4-2D-8B-F0-76-1C-12-9D-6F
   NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  66.90.132.162

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.

Pinging google.com [74.125.227.228] with 32 bytes of data:
Reply from 74.125.227.228: bytes=32 time=55ms TTL=57
Reply from 74.125.227.228: bytes=32 time=31ms TTL=57

Ping statistics for 74.125.227.228:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 31ms, Maximum = 55ms, Average = 43ms
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  66.90.132.162

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=63ms TTL=52
Reply from 98.138.253.109: bytes=32 time=61ms TTL=52

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 61ms, Maximum = 63ms, Average = 62ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  9...b0 10 41 f2 f4 87 ......Microsoft Hosted Network Virtual Adapter
  8...b0 10 41 f2 f4 88 ......Bluetooth Device (Personal Area Network)
  5...b2 10 41 f2 f4 87 ......Microsoft Wi-Fi Direct Virtual Adapter
  4...b0 10 41 f2 f4 87 ......Broadcom 802.11ac Network Adapter
  3...f0 76 1c 12 9d 6f ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.3     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.3    276
      192.168.0.3  255.255.255.255         On-link       192.168.0.3    276
    192.168.0.255  255.255.255.255         On-link       192.168.0.3    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.3    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.3    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  4    276 fe80::/64                On-link
 11    306 fe80::/64                On-link
 11    306 fe80::248e:f74:3f57:fffc/128
                                    On-link
  4    276 fe80::4d1f:413:398b:52a0/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    276 ff00::/8                 On-link
 11    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/10/2015 07:31:12 PM) (Source: Perflib) (User: )
Description: ASP.NET_64_2.0.50727C:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_perf.dll8

Error: (07/10/2015 10:54:27 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 09:55:35 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 09:30:40 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 07:18:07 PM) (Source: Perflib) (User: )
Description: ASP.NET_64_2.0.50727C:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_perf.dll8

Error: (07/09/2015 01:53:46 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 01:26:16 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/08/2015 07:10:36 PM) (Source: Perflib) (User: )
Description: ASP.NET_64_2.0.50727C:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_perf.dll8

Error: (07/08/2015 11:28:55 AM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 38.0.6.5634, time stamp: 0x5571fcc2
Faulting module name: mozalloc.dll, version: 38.0.6.5634, time stamp: 0x5571eca0
Exception code: 0x80000003
Fault offset: 0x00001aa1
Faulting process id: 0x25c8
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (07/08/2015 02:31:17 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed continue stopping. [6]


System errors:
=============
Error: (07/04/2015 09:13:02 PM) (Source: Service Control Manager) (User: )
Description: The World Wide Web Publishing Service service depends on the Windows Process Activation Service service which failed to start because of the following error:
%%1058

Error: (07/04/2015 09:13:02 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (07/02/2015 07:03:04 PM) (Source: Service Control Manager) (User: )
Description: The World Wide Web Publishing Service service depends on the Windows Process Activation Service service which failed to start because of the following error:
%%1058

Error: (07/02/2015 07:03:03 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (07/02/2015 07:02:06 PM) (Source: DCOM) (User: LENOVO-Y50-PC)
Description: Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca

Error: (07/02/2015 07:02:06 PM) (Source: DCOM) (User: LENOVO-Y50-PC)
Description: Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca

Error: (07/02/2015 07:02:06 PM) (Source: DCOM) (User: LENOVO-Y50-PC)
Description: Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca

Error: (07/02/2015 06:56:50 PM) (Source: Service Control Manager) (User: )
Description: The World Wide Web Publishing Service service depends on the Windows Process Activation Service service which failed to start because of the following error:
%%1058

Error: (07/02/2015 06:56:46 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (06/28/2015 00:03:48 PM) (Source: Service Control Manager) (User: )
Description: The World Wide Web Publishing Service service depends on the Windows Process Activation Service service which failed to start because of the following error:
%%1058


Microsoft Office Sessions:
=========================
Error: (07/10/2015 07:31:12 PM) (Source: Perflib)(User: )
Description: ASP.NET_64_2.0.50727C:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_perf.dll8

Error: (07/10/2015 10:54:27 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 09:55:35 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 09:30:40 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 07:18:07 PM) (Source: Perflib)(User: )
Description: ASP.NET_64_2.0.50727C:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_perf.dll8

Error: (07/09/2015 01:53:46 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/09/2015 01:26:16 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (07/08/2015 07:10:36 PM) (Source: Perflib)(User: )
Description: ASP.NET_64_2.0.50727C:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_perf.dll8

Error: (07/08/2015 11:28:55 AM) (Source: Application Error)(User: )
Description: plugin-container.exe38.0.6.56345571fcc2mozalloc.dll38.0.6.56345571eca08000000300001aa125c801d0b94f9837dcb0C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll6cc82a2a-258e-11e5-8287-b01041f2f488

Error: (07/08/2015 02:31:17 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed continue stopping. [6]


=========================== Installed Programs ============================

7-Zip 9.38 beta (HKLM-x32\...\7-Zip) (Version:  - )
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.203 - Adobe Systems Incorporated)
Broforce (HKLM-x32\...\Steam App 274190) (Version:  - Free Lives)
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
ConvertHelper 3.1.1 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version:  - DownloadHelper)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Dying Light (HKLM-x32\...\Steam App 239140) (Version:  - Techland)
EaseUS Todo Backup Free 8.0  (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 8.0 - CHENGDU YIWO Tech Development Co., Ltd)
EditPad Lite 7.3.6 (HKLM\...\EditPad Lite) (Version: 7.3.6 - Just Great Software)
Energy Manager (HKLM-x32\...\{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.23 - Lenovo) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.23 - Lenovo)
ESET NOD32 Antivirus (HKLM\...\{D6885DDE-4632-4640-A3BB-13C9F02CE81C}) (Version: 8.0.312.0 - ESET, spol s r. o.)
Ext2Fsd 0.53 (HKLM\...\Ext2Fsd_is1) (Version: 0.53 - Matt Wu)
f.lux (HKCU\...\Flux) (Version:  - )
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version:  - FileHippo.com)
foobar2000 v1.3.8 (HKLM-x32\...\foobar2000) (Version: 1.3.8 - Peter Pawlowski)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
Host App Service (HKCU\...\Pokki) (Version: 0.269.7.638 - Pokki)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4029 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.2.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{a9888f41-68ae-43df-bd7d-d93405a44106}) (Version: 17.13.11 - Intel Corporation)
Internet TV (HKCU\...\Pokki_00d88092408ab87e0c38ae805c0dedbc153f0975) (Version: 1.0.0.50244 - Pokki)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.9840 - Broadcom Corporation)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.25.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10279 - Realtek Semiconductor Corp.)
Lenovo FusionEngine  (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Hidden
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo)
Lenovo PhoneCompanion (HKLM-x32\...\{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.2.0.2 - Lenovo) Hidden
Lenovo PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.2.0.2 - Lenovo)
Lenovo Settings (HKLM-x32\...\{42F8AFC3-7944-46CC-9689-94FF9869D0A7}) (Version: 1.0.0.46 - Lenovo) Hidden
Lenovo Settings (HKLM-x32\...\InstallShield_{42F8AFC3-7944-46CC-9689-94FF9869D0A7}) (Version: 1.0.0.46 - Lenovo)
Lenovo SHAREit (HKLM-x32\...\Lenovo SHAREit_is1) (Version: 2.0.5.0 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.06.0034 - Lenovo)
Lenovo Updates (HKLM-x32\...\{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4}) (Version: 1.1.0.61 - Lenovo) Hidden
Lenovo Updates (HKLM-x32\...\InstallShield_{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4}) (Version: 1.1.0.61 - Lenovo)
Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.1.14.3211 - Lenovo)
Lenovo Web Start (HKCU\...\Pokki_04bb6df446330549a2cb8d67fbd1a745025b7bd1) (Version: 1.0.2.53457 - Pokki)
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.223.247 - Lenovo)
LibreOffice 4.4.1.2 (HKLM-x32\...\{4A754DA6-6E12-40AF-BAF0-B7D60C6BE005}) (Version: 4.4.1.2 - The Document Foundation)
Magic Transfer (HKLM\...\{AD2B2BD1-A1D7-4798-8FDD-B2A58FD94E68}) (Version: 1.1.1.11 - )
Magic Transfer (HKLM-x32\...\{AD2B2BD1-A1D7-4798-8FDD-B2A58FD94E68}) (Version: 1.1.1.11 - Lenovo) Hidden
Magic Transfer (HKLM-x32\...\InstallShield_{AD2B2BD1-A1D7-4798-8FDD-B2A58FD94E68}) (Version: 1.1.1.11 - Lenovo)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40620.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 39.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 en-US)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.6 - Mozilla)
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Graphics Driver 332.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.50 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.0927 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0927 - NVIDIA Corporation)
Overlook Fing (HKLM-x32\...\Overlook Fing 2.2) (Version: 2.2 - Overlook)
PeaZip 5.6.1 (HKLM-x32\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version:  - Giorgio Tani)
PeaZip configuration (HKLM-x32\...\{2D812859-07F9-403C-9E8C-47C5057E46C4}_is1) (Version:  - Giorgio Tani)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.21243 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Recon Software (HKLM-x32\...\{5116E722-70F6-42DD-8B0A-EC5136A78978}) (Version: 1.24 - Cooler Master) Hidden
Recon Software (HKLM-x32\...\InstallShield_{5116E722-70F6-42DD-8B0A-EC5136A78978}) (Version: 1.24 - Cooler Master)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.103 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Spotify (HKCU\...\Spotify) (Version: 1.0.8.59.gee82e7e6 - Spotify AB)
StageLight (HKLM\...\StageLight) (Version: 1.3.0.4350 - Open Labs, LLC.)
Start Menu (HKCU\...\Pokki_Start_Menu) (Version: 0.269.7.638 - Pokki)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.0 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.14.81 - Synaptics Incorporated)
TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version:  - Code Sector)
The Expendabros (HKLM-x32\...\Steam App 312990) (Version:  - Free Lives)
TinyWall (HKLM-x32\...\{284938D1-2280-40F4-81AE-C4815BC09080}) (Version: 2.1.6.0 - Károly Pados)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
User Manuals (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows Driver Package - Lenovo (ACPIVPC) System  (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinLaunch (HKCU\...\WinLaunch) (Version:  - )
winpcap-overlook 4.02 (HKLM-x32\...\winpcap-overlook) (Version:  - )
Wise Disk Cleaner 8.41 (HKLM-x32\...\Wise Disk Cleaner_is1) (Version: 8.41 - WiseCleaner.com, Inc.)
Wise Registry Cleaner 8.31 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.31 - WiseCleaner.com, Inc.)
XnView 2.33 (HKLM-x32\...\XnView_is1) (Version: 2.33 - Gougelet Pierre-e)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 23%
Total physical RAM: 16296.27 MB
Available physical RAM: 12391.75 MB
Total Virtual: 18728.27 MB
Available Virtual: 14602.66 MB

========================= Partitions: =====================================

1 Drive c: (Windows8_OS) (Fixed) (Total:888.4 GB) (Free:339.85 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.22 GB) NTFS

========================= Users: ========================================

User accounts for \\LENOVO-Y50-PC

Administrator            Dan                      Guest                    

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

24-06-2015 18:34:06 Windows Update
02-07-2015 04:45:06 Scheduled Checkpoint
09-07-2015 18:20:35 Windows Update
11-07-2015 07:16:20 Removed Microsoft Silverlight

**** End of log ****
 



BC AdBot (Login to Remove)

 


#2 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:05 AM

Posted 11 July 2015 - 08:53 AM

Depends on the ISP. Perhaps your device has Telnet turned on. I'd look at the web GUI and see if you can find something about telnet or maybe remote management.


Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College


#3 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 11 July 2015 - 09:17 AM

Sorry for my ignorance but what do yo mean by web GUI exactly? Logging into my router from my browser?



#4 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:05 AM

Posted 11 July 2015 - 01:02 PM

GUI = Graphical User Interface. But yes, logging into it from your browser.


Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College


#5 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 11 July 2015 - 09:52 PM

Nothing on the GUI but I called tech support, they say it's probably the wifi service itself. Seems sound to me didn't know it could work like that.



#6 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:05 AM

Posted 12 July 2015 - 12:04 AM

open a command prompt( click the windows button, type CMD and hit Enter ) type telnet 192.168.0.1 and hit enter. What pops up?


Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College


#7 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 12 July 2015 - 08:06 PM

'telnet' is not recognized as an internal or external command, operable program or batch file

 

what did I do wrong?



#8 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:05 PM

Posted 13 July 2015 - 02:06 AM

Found this about Telnet as it is not enabled by default.

Use the program and features if you need it kept disabled.


Tekken
 


#9 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:05 AM

Posted 13 July 2015 - 10:33 AM

Yeah DERP on my part, I forgot telnet isn't installed by default since I think Vista but not sure.


Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College


#10 Wand3r3r

Wand3r3r

  • Members
  • 2,027 posts
  • OFFLINE
  •  
  • Local time:01:05 AM

Posted 13 July 2015 - 10:45 AM

Good way to see if the host was running telnet though.

 

Bigger issue is using invalid dns servers.

Server:  UnKnown
Address:  66.90.132.162

DNS request timed out.
    timeout was 2 seconds.

 

DNS Servers . . . . . . . . . . . : 66.90.132.162
                                       66.90.130.101

 

You live in Texas?  might just use google's dns servers

 

http://myip.ms/info/whois/66.90.132.162



#11 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 13 July 2015 - 03:24 PM

Ok installed telnet and ran the command "open 192.168.0.1" in the telnet command line

"Connecting to 192.168.0.1...

 

Connection to host lost."

 

This was after whitelisting telnet in my firewall (tinywall).



#12 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 13 July 2015 - 03:28 PM

Good way to see if the host was running telnet though.

 

Bigger issue is using invalid dns servers.

 

You live in Texas?  might just use google's dns servers

 

http://myip.ms/info/whois/66.90.132.162

 

What's wrong with my isp's servers?

 

Is google's service somewhat like using a proxy? What are the pro's/cons? Yes I live in Texas. Would it interfere with browser addons like noscript and umatrix?



#13 Wand3r3r

Wand3r3r

  • Members
  • 2,027 posts
  • OFFLINE
  •  
  • Local time:01:05 AM

Posted 13 July 2015 - 04:18 PM

Nothing is wrong with your ISP's servers that I am aware of.  DNS servers on the other hand is a different issue. What you have listed are not valid dns servers.  So who is your ISP?

 

Google's dns servers are not proxies.  They are public dns servers.  Browser add ons and dns are not related.

 

Normally you don't telnet to a home router so white listing in the router does not mean you can access the router via telnet.  You should make sure your wan interface does not have telnet enabled for access remotely.  That would be a security risk.



#14 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 13 July 2015 - 05:22 PM

Sorry, I meant what is wrong with my DNS servers. What is bad about having invalid dns servers, are they vulnerable? ISP is grande communications.

 

The router GUI including the LAN and WAN interfaces doesn't have any options about telnet. So I assume I am safe regarding that.



#15 Wand3r3r

Wand3r3r

  • Members
  • 2,027 posts
  • OFFLINE
  •  
  • Local time:01:05 AM

Posted 13 July 2015 - 05:52 PM

DNS is what translates ip address to a host name and visa versa.  In other words is what makes the internet work.  Google dns to learn more.

 

Your correct dns server ips are 66.90.130.24 and 66.90.132.163 though you may find google's at 8.8.8.8 and 8.8.4.4 better

 

You will need to logon to your router and change them to the correct ones.


Edited by Wand3r3r, 13 July 2015 - 05:55 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users