Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Strange Network Connections On A New Install - 80% Sure It's NOT a Virus


  • Please log in to reply
No replies to this topic

#1 computerdude718

computerdude718

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 10 January 2017 - 02:00 AM

Hi,

 

A little about me

 

Intel i7 3770k 16gb ram

Windows 10 (which was upgraded from Windows 8.1)

Verifzon Fios, using the fios router "quantum gateway"

Connecting via my Asus Usb wireless receiver

I pay for Bitdefender Total Protection & MalwareBytes Pro.

I also have just installed Comodo Internet Security.

I know it's far from recommended to have multiple antivirus or firewall running at the same time. I just installed it because I want the HIPS and Sandboxing functionality. If it doesnt work out, then I will remove.

 

 

I am finding that I really like all of the functionality of Comodo. I am liking the KillSwitch app and the amount of control of all of Comodo's modules.

 

......

 

Brand new trial

Ok. This Comodo Internet Security and MalwareBytes Pro are new additions, installed the other day. I have been running Bitdefender and the manual scans of MalwareBytes and some other goodies from time to time.

 

Last week I got hit with something nasty. Bitdefender was sounding the alarms. Downloaded Avast, and it was going off as well.... A virus/trojan, connection to a bad website, a connection via Skype to a bad IP, a connection via svchost to a bad IP...etc....

 

I through EVERYTHING I had at it.

Bitdefender

MalwareBytes

Avast

Kaspersky TSSDkiller

Sophos

RogueKiller

JRT

SuperAntiSpyware

ESET Online Scanner

Emisoft Emergency Kit

Windows Defender ( <- LoL )

AdwCleaner

ComboFix

 

And a few other scanners(all highly regarded and recommended by reps of Bleeping Computer).

 

I ran up in Windows logged in, then in Safe Mode, then again while fully up logged in...

Ok. That little sucker had no chance aganist the wraft of thousands of hours of programming knowledge.... And in the end, after all seems "clean", I reinstalled windows anyway.  LoL.

 

.......................................................

 

I did NOT do a full wipe. After I cleaned up the computer, I used the built in Windows recovery(?). I told Windows to DELETE EVERYTHING and reinstall windows 10. This took hours.I even deleted everything on my extra SSD and 2 internal Hard Drives in the computer.

 

Sidebar:  I have 2 x 2tb Hard Drives that are in a windows storage pool(?). Essentially I only have 2tb of storage from there, as one is the backup of the other. After I had Windows wipe everything, this storage pool(?) remained intact. If Windows really wiped everything, wouldnt this relationship/configuration be destroyed since this is software based, and not hardware based, like hardware Raid....?

 

.......................................................

 

I set a winning plan to be super secure. And that included using a combination of these apps:

Bitdefender Total Protection PAID Real-Time scanner + Firewall

MalwareBytes Pro PAID Real-Time scanner + Firewall-like features

WinPatrol FREE(i may pay for it) (to monitor registry/startup )

Comodo Internet Security FREE (mainly for Sandboxing & HIPS- but we'll see what it can offer)

CryptoPrevent (for some extra Ransomware protection) (but I didnt get around to installing this yet)

 

.....

The goal was to install all of my programs and the security apps, and be extremely cautious with my surfing. And to do most of my surfing sandboxed and delete the sandbox repeatedly. 

 

.....................

 

Ok. Some More Info....

 

I installed most of my applications, but not everything.... But for security, I got in Bitdefender, MalwareBytes, and Comodo Internet Security.

There is some small incompatibility between Bitdefender and MalwareBytes that caused my computer to crash, but I believe adding the respective exclusions cleared that up. So no more of that. 

 

There is some incompatibility between MalwareBytes(anti-exploit feature) and Comodo Internet Security's Sandbox.... Basically if Comodo launches certain programs, like Firefox and Microsoft Word, in the sandbox, then MalwareBytes will detect that as being exploited and close it out........ I havent worked out fixing this without disabling one- which I dont want to do. So this is TBD...

 

Ok. Why am i creating this post, you ask..

 

Comodo's Killswitch app lets you see the processes and network connections in and out. And there are a significant amount of connections that I have no clue about. I have several applications on my computer, but most I havent even opened yet(which I know, doesnt matter)... Then there are things like explorer.exe connecting to the internet on Local Port 49701 and Remote port 443 to msnbot-65-52-108-217.search.msn.com ... Now this address looks normal. But the first thread I see that someone is asking about this, the BC rep said you may have malware.... Hmmm....

 

Ok. Explorer.exe, a file/folder viewer/manager app is connecting to the internet. Doesnt make too much sense, unless the app is compromised. I dont know. But when I look at all of these connections, there are too many that I can not explain. 

 

Can you help me understand these connections? Help Please!

 

I am going to paste in my KillSwitch view that shows me all of the connections. I am going to paste it in with no browsers open and no file explorer windows open. Then below, I will paste it in with (sandboxed) Google Chrome open and File explorer.

 

 

/*** START Killswitch  - Connections - No Browsers Open - No File Explorer Open ***/

svchost.exe(424)
TCP PRINCE-DESKTOP 135 PRINCE-DESKTOP Listen RpcSs
TCP6 PRINCE-DESKTOP 135 PRINCE-DESKTOP Listen RpcSs
System(4)
TCP PRINCE-DESKTOP.fios-router.home 139 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP 3939 PRINCE-DESKTOP Listen
TCP 127.127.127.127 3939 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP 445 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP 5357 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 445 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 5357 PRINCE-DESKTOP Listen
UDP PRINCE-DESKTOP.fios-router.home 137
UDP PRINCE-DESKTOP.fios-router.home 138
Adobe Desktop Service.exe(11240)
TCP PRINCE-DESKTOP 15292 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP.fios-router.home 49875 ec2-107-23-122-206.compute-1.amazonaws.com 443 Established
SkypeHost.exe(6988)
TCP PRINCE-DESKTOP.fios-router.home 20419 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP.fios-router.home 50038 157.55.56.161 40025 Close Wait
UDP PRINCE-DESKTOP.fios-router.home 20419
UDP PRINCE-DESKTOP 64668
UDP6 PRINCE-DESKTOP 64668
Steam.exe(8572)
TCP PRINCE-DESKTOP 27036 PRINCE-DESKTOP Listen
UDP PRINCE-DESKTOP 27036
UDP PRINCE-DESKTOP 58251
MBAMService.exe(2712)
TCP PRINCE-DESKTOP 43227 PRINCE-DESKTOP Listen MBAMService
TCP PRINCE-DESKTOP.fios-router.home 51714 ec2-54-187-138-105.us-west-2.compute.amazonaws.com 443 Close Wait MBAMService
wininit.exe(840)
TCP PRINCE-DESKTOP 49664 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 49664 PRINCE-DESKTOP Listen
svchost.exe(1148)
TCP PRINCE-DESKTOP 49665 PRINCE-DESKTOP Listen Schedule
TCP6 PRINCE-DESKTOP 49665 PRINCE-DESKTOP Listen Schedule
UDP PRINCE-DESKTOP 500 IKEEXT
UDP PRINCE-DESKTOP 4500 IKEEXT
UDP6 PRINCE-DESKTOP 500 IKEEXT
UDP6 PRINCE-DESKTOP 4500 IKEEXT
svchost.exe(1216)
TCP PRINCE-DESKTOP 49666 PRINCE-DESKTOP Listen EventLog
TCP6 PRINCE-DESKTOP 49666 PRINCE-DESKTOP Listen EventLog
spoolsv.exe(2444)
TCP PRINCE-DESKTOP 49667 PRINCE-DESKTOP Listen Spooler
TCP6 PRINCE-DESKTOP 49667 PRINCE-DESKTOP Listen Spooler
services.exe(108)
TCP PRINCE-DESKTOP 49668 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 49668 PRINCE-DESKTOP Listen
lsass.exe(396)
TCP PRINCE-DESKTOP 49687 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 49687 PRINCE-DESKTOP Listen
explorer.exe(5380)
TCP PRINCE-DESKTOP.fios-router.home 49701 msnbot-65-52-108-217.search.msn.com 443 Established
OneDrive.exe(6652)
TCP PRINCE-DESKTOP.fios-router.home 49815 bn3sch020010527.wns.windows.com 443 Established
OneDrive.exe(7416)
TCP PRINCE-DESKTOP.fios-router.home 49823 msnbot-65-52-108-185.search.msn.com 443 Established
googledrivesync.exe(6520)
TCP PRINCE-DESKTOP.fios-router.home 49854 qr-in-f125.1e100.net 5222 Established
TCP PRINCE-DESKTOP.fios-router.home 49855 qo-in-f95.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 49857 qo-in-f95.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 50424 iad23s26-in-f193.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 51145 iad23s24-in-f138.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 51146 iad23s24-in-f13.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 52054 iad23s25-in-f1.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 52819 iad23s44-in-f161.1e100.net 443 Close Wait
node.exe(11820)
TCP PRINCE-DESKTOP 49909 PRINCE-DESKTOP Listen
WinStore.App.exe(9128)
TCP PRINCE-DESKTOP.fios-router.home 49914 a23-76-216-83.deploy.static.akamaitechnologies.com 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 49915 a23-76-216-83.deploy.static.akamaitechnologies.com 443 Close Wait
DevMgmtService.exe(1864)
TCP PRINCE-DESKTOP.fios-router.home 63183 reverse-unset.bbu.exdc01.bitdefender.net 80 Established DevMgmtService
UDP PRINCE-DESKTOP 59818 DevMgmtService
UDP PRINCE-DESKTOP 59819 DevMgmtService
UDP PRINCE-DESKTOP 59820 DevMgmtService
UDP PRINCE-DESKTOP 59821 DevMgmtService
ProductAgentService.exe(2908)
TCP PRINCE-DESKTOP.fios-router.home 63215 reverse-unset.bbu.exdc01.bitdefender.net 80 Established ProductAgentService
UDP PRINCE-DESKTOP 61755 ProductAgentService
UDP PRINCE-DESKTOP 61756 ProductAgentService
UDP PRINCE-DESKTOP 61757 ProductAgentService
UDP PRINCE-DESKTOP 61758 ProductAgentService
vsserv.exe(1520)
TCP PRINCE-DESKTOP.fios-router.home 63216 reverse-unset.bbu.exdc01.bitdefender.net 80 Established VSSERV
UDP PRINCE-DESKTOP 49664 VSSERV
UDP PRINCE-DESKTOP 49665 VSSERV
UDP PRINCE-DESKTOP 49666 VSSERV
UDP PRINCE-DESKTOP 49667 VSSERV
dragon.exe(9808)
TCP PRINCE-DESKTOP.fios-router.home 63344 104.20.60.209 443 Established
CoreSync.exe(11400)
TCP PRINCE-DESKTOP.fios-router.home 63401 ec2-50-19-84-18.compute-1.amazonaws.com 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63414 ec2-52-73-249-18.compute-1.amazonaws.com 443 Established
Waiting connections
TCP PRINCE-DESKTOP.fios-router.home 63406 ec2-52-73-249-18.compute-1.amazonaws.com 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63405 104.16.60.31 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63413 ec2-52-73-249-18.compute-1.amazonaws.com 443 Time Wait
svchost.exe(3976)
UDP PRINCE-DESKTOP 1900 SSDPSRV
UDP PRINCE-DESKTOP.fios-router.home 1900 SSDPSRV
UDP PRINCE-DESKTOP.fios-router.home 2177 QWAVE
UDP PRINCE-DESKTOP 3702 FDResPub
UDP PRINCE-DESKTOP 57639 FDResPub
UDP PRINCE-DESKTOP.fios-router.home 63692 SSDPSRV
UDP PRINCE-DESKTOP 63693 SSDPSRV
UDP6 PRINCE-DESKTOP 1900 SSDPSRV
UDP6 PRINCE-DESKTOP.fios-router.home 1900 SSDPSRV
UDP6 PRINCE-DESKTOP.fios-router.home 2177 QWAVE
UDP6 PRINCE-DESKTOP 3702 FDResPub
UDP6 PRINCE-DESKTOP 57640 FDResPub
UDP6 PRINCE-DESKTOP.fios-router.home 63690 SSDPSRV
UDP6 PRINCE-DESKTOP 63691 SSDPSRV
svchost.exe(1464)
UDP PRINCE-DESKTOP 3702 netprofm
UDP PRINCE-DESKTOP 5050 CDPSvc
UDP PRINCE-DESKTOP 54544 netprofm
UDP6 PRINCE-DESKTOP 3702 netprofm
UDP6 PRINCE-DESKTOP 54545 netprofm
dasHost.exe(2696)
UDP PRINCE-DESKTOP 3702
UDP PRINCE-DESKTOP 63686
UDP6 PRINCE-DESKTOP 3702
UDP6 PRINCE-DESKTOP 63687
svchost.exe(1564)
UDP PRINCE-DESKTOP 5353 Dnscache
UDP PRINCE-DESKTOP 5355 Dnscache
UDP6 PRINCE-DESKTOP 5353 Dnscache
UDP6 PRINCE-DESKTOP 5355 Dnscache
 

/*** END Killswitch  - Connections - No Browsers Open - No File Explorer Open ***/

 

............

 

/*** START Killswitch  - Connections - 1 x Sandboxed Google Chrome Open - 1 x File Explorer Open ***/

svchost.exe(424)
TCP PRINCE-DESKTOP 135 PRINCE-DESKTOP Listen RpcSs
TCP6 PRINCE-DESKTOP 135 PRINCE-DESKTOP Listen RpcSs
System(4)
TCP PRINCE-DESKTOP.fios-router.home 139 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP 3939 PRINCE-DESKTOP Listen
TCP 127.127.127.127 3939 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP 445 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP 5357 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 445 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 5357 PRINCE-DESKTOP Listen
UDP PRINCE-DESKTOP.fios-router.home 137
UDP PRINCE-DESKTOP.fios-router.home 138
Adobe Desktop Service.exe(11240)
TCP PRINCE-DESKTOP 15292 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP.fios-router.home 49875 ec2-107-23-122-206.compute-1.amazonaws.com 443 Established
SkypeHost.exe(6988)
TCP PRINCE-DESKTOP.fios-router.home 20419 PRINCE-DESKTOP Listen
TCP PRINCE-DESKTOP.fios-router.home 50038 157.55.56.161 40025 Close Wait
UDP PRINCE-DESKTOP.fios-router.home 20419
UDP PRINCE-DESKTOP 64668
UDP6 PRINCE-DESKTOP 64668
Steam.exe(8572)
TCP PRINCE-DESKTOP 27036 PRINCE-DESKTOP Listen
UDP PRINCE-DESKTOP 27036
UDP PRINCE-DESKTOP 58251
MBAMService.exe(2712)
TCP PRINCE-DESKTOP 43227 PRINCE-DESKTOP Listen MBAMService
TCP PRINCE-DESKTOP.fios-router.home 51714 ec2-54-187-138-105.us-west-2.compute.amazonaws.com 443 Close Wait MBAMService
wininit.exe(840)
TCP PRINCE-DESKTOP 49664 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 49664 PRINCE-DESKTOP Listen
svchost.exe(1148)
TCP PRINCE-DESKTOP 49665 PRINCE-DESKTOP Listen Schedule
TCP6 PRINCE-DESKTOP 49665 PRINCE-DESKTOP Listen Schedule
UDP PRINCE-DESKTOP 500 IKEEXT
UDP PRINCE-DESKTOP 4500 IKEEXT
UDP6 PRINCE-DESKTOP 500 IKEEXT
UDP6 PRINCE-DESKTOP 4500 IKEEXT
svchost.exe(1216)
TCP PRINCE-DESKTOP 49666 PRINCE-DESKTOP Listen EventLog
TCP6 PRINCE-DESKTOP 49666 PRINCE-DESKTOP Listen EventLog
spoolsv.exe(2444)
TCP PRINCE-DESKTOP 49667 PRINCE-DESKTOP Listen Spooler
TCP6 PRINCE-DESKTOP 49667 PRINCE-DESKTOP Listen Spooler
services.exe(108)
TCP PRINCE-DESKTOP 49668 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 49668 PRINCE-DESKTOP Listen
lsass.exe(396)
TCP PRINCE-DESKTOP 49687 PRINCE-DESKTOP Listen
TCP6 PRINCE-DESKTOP 49687 PRINCE-DESKTOP Listen
explorer.exe(5380)
TCP PRINCE-DESKTOP.fios-router.home 49701 msnbot-65-52-108-217.search.msn.com 443 Established
OneDrive.exe(6652)
TCP PRINCE-DESKTOP.fios-router.home 49815 bn3sch020010527.wns.windows.com 443 Established
OneDrive.exe(7416)
TCP PRINCE-DESKTOP.fios-router.home 49823 msnbot-65-52-108-185.search.msn.com 443 Established
googledrivesync.exe(6520)
TCP PRINCE-DESKTOP.fios-router.home 49854 qr-in-f125.1e100.net 5222 Established
TCP PRINCE-DESKTOP.fios-router.home 49855 qo-in-f95.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 49857 qo-in-f95.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 50424 iad23s26-in-f193.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 51145 iad23s24-in-f138.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 51146 iad23s24-in-f13.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 52054 iad23s25-in-f1.1e100.net 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 52819 iad23s44-in-f161.1e100.net 443 Close Wait
node.exe(11820)
TCP PRINCE-DESKTOP 49909 PRINCE-DESKTOP Listen
WinStore.App.exe(9128)
TCP PRINCE-DESKTOP.fios-router.home 49914 a23-76-216-83.deploy.static.akamaitechnologies.com 443 Close Wait
TCP PRINCE-DESKTOP.fios-router.home 49915 a23-76-216-83.deploy.static.akamaitechnologies.com 443 Close Wait
DevMgmtService.exe(1864)
TCP PRINCE-DESKTOP.fios-router.home 63183 reverse-unset.bbu.exdc01.bitdefender.net 80 Established DevMgmtService
UDP PRINCE-DESKTOP 59818 DevMgmtService
UDP PRINCE-DESKTOP 59819 DevMgmtService
UDP PRINCE-DESKTOP 59820 DevMgmtService
UDP PRINCE-DESKTOP 59821 DevMgmtService
ProductAgentService.exe(2908)
TCP PRINCE-DESKTOP.fios-router.home 63215 reverse-unset.bbu.exdc01.bitdefender.net 80 Established ProductAgentService
UDP PRINCE-DESKTOP 61755 ProductAgentService
UDP PRINCE-DESKTOP 61756 ProductAgentService
UDP PRINCE-DESKTOP 61757 ProductAgentService
UDP PRINCE-DESKTOP 61758 ProductAgentService
vsserv.exe(1520)
TCP PRINCE-DESKTOP.fios-router.home 63216 reverse-unset.bbu.exdc01.bitdefender.net 80 Established VSSERV
UDP PRINCE-DESKTOP 49664 VSSERV
UDP PRINCE-DESKTOP 49665 VSSERV
UDP PRINCE-DESKTOP 49666 VSSERV
UDP PRINCE-DESKTOP 49667 VSSERV
TCP PRINCE-DESKTOP.fios-router.home 63452 ec2-52-22-124-11.compute-1.amazonaws.com 443 Established VSSERV
TCP PRINCE-DESKTOP.fios-router.home 63453 ec2-52-22-124-11.compute-1.amazonaws.com 443 Established VSSERV
dragon.exe(9808)
TCP PRINCE-DESKTOP.fios-router.home 63344 104.20.60.209 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63417 bud02s24-in-f2.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63418 bud02s24-in-f2.1e100.net 443 Established
CoreSync.exe(11400)
TCP PRINCE-DESKTOP.fios-router.home 63401 ec2-50-19-84-18.compute-1.amazonaws.com 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63509 ec2-52-73-249-18.compute-1.amazonaws.com 443 Established
Waiting connections
TCP PRINCE-DESKTOP.fios-router.home 63416 ec2-52-73-249-18.compute-1.amazonaws.com 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63494 usfftp2.mcr.colo.comodo.com 51451 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63420 ec2-52-73-249-18.compute-1.amazonaws.com 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63495 usfftp2.mcr.colo.comodo.com 52275 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63497 usfftp2.mcr.colo.comodo.com 51216 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63498 usfftp2.mcr.colo.comodo.com 50396 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63499 usfftp2.mcr.colo.comodo.com 51134 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63501 usfftp2.mcr.colo.comodo.com 50680 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63502 usfftp2.mcr.colo.comodo.com 50958 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63503 usfftp2.mcr.colo.comodo.com 51038 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63483 usfftp2.mcr.colo.comodo.com 2118 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63424 93.184.216.146 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63436 ec2-52-22-124-11.compute-1.amazonaws.com 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63454 ec2-52-22-124-11.compute-1.amazonaws.com 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63500 ec2-52-73-249-18.compute-1.amazonaws.com 443 Time Wait
TCP PRINCE-DESKTOP.fios-router.home 63470 lga15s44-in-f78.1e100.net 80 Time Wait
svchost.exe(3976)
UDP PRINCE-DESKTOP 1900 SSDPSRV
UDP PRINCE-DESKTOP.fios-router.home 1900 SSDPSRV
UDP PRINCE-DESKTOP.fios-router.home 2177 QWAVE
UDP PRINCE-DESKTOP 3702 FDResPub
UDP PRINCE-DESKTOP 57639 FDResPub
UDP PRINCE-DESKTOP.fios-router.home 63692 SSDPSRV
UDP PRINCE-DESKTOP 63693 SSDPSRV
UDP6 PRINCE-DESKTOP 1900 SSDPSRV
UDP6 PRINCE-DESKTOP.fios-router.home 1900 SSDPSRV
UDP6 PRINCE-DESKTOP.fios-router.home 2177 QWAVE
UDP6 PRINCE-DESKTOP 3702 FDResPub
UDP6 PRINCE-DESKTOP 57640 FDResPub
UDP6 PRINCE-DESKTOP.fios-router.home 63690 SSDPSRV
UDP6 PRINCE-DESKTOP 63691 SSDPSRV
svchost.exe(1464)
UDP PRINCE-DESKTOP 3702 netprofm
UDP PRINCE-DESKTOP 5050 CDPSvc
UDP PRINCE-DESKTOP 54544 netprofm
UDP6 PRINCE-DESKTOP 3702 netprofm
UDP6 PRINCE-DESKTOP 54545 netprofm
dasHost.exe(2696)
UDP PRINCE-DESKTOP 3702
UDP PRINCE-DESKTOP 63686
UDP6 PRINCE-DESKTOP 3702
UDP6 PRINCE-DESKTOP 63687
svchost.exe(1564)
UDP PRINCE-DESKTOP 5353 Dnscache
UDP PRINCE-DESKTOP 5355 Dnscache
UDP6 PRINCE-DESKTOP 5353 Dnscache
UDP6 PRINCE-DESKTOP 5355 Dnscache
chrome.exe(14660)
UDP PRINCE-DESKTOP 5353
UDP6 PRINCE-DESKTOP 5353
TCP PRINCE-DESKTOP.fios-router.home 63430 lga25s40-in-f196.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63431 lga25s40-in-f196.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63432 192.168.1.103 9098 Established
TCP PRINCE-DESKTOP.fios-router.home 63433 192.168.1.104 9098 Established
TCP PRINCE-DESKTOP.fios-router.home 63434 192.168.1.105 9098 Established
TCP PRINCE-DESKTOP.fios-router.home 63435 qn-in-f188.1e100.net 5228 Established
TCP PRINCE-DESKTOP.fios-router.home 63438 lga15s44-in-f13.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63439 lga25s54-in-f10.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63440 lga25s54-in-f10.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63443 192.168.1.103 9098 Established
TCP PRINCE-DESKTOP.fios-router.home 63444 192.168.1.104 9098 Established
TCP PRINCE-DESKTOP.fios-router.home 63445 192.168.1.105 9098 Established
TCP PRINCE-DESKTOP.fios-router.home 63446 lga25s54-in-f10.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63448 lga25s55-in-f14.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63449 lga15s44-in-f10.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63450 lga25s40-in-f206.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63451 lga25s40-in-f3.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63455 lga25s54-in-f10.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63457 lga15s44-in-f13.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63460 lga25s40-in-f206.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63461 lga25s40-in-f3.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63462 lga25s40-in-f193.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63463 lga25s40-in-f193.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63464 lga25s40-in-f193.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63465 lga25s40-in-f193.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63466 lga25s40-in-f193.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63467 lga25s40-in-f193.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63468 lga25s40-in-f193.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63469 lga25s40-in-f3.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63471 lga15s44-in-f78.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63474 lga15s44-in-f78.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63476 lga25s40-in-f206.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63478 lga15s46-in-f2.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63482 adobe.com.ssl.d1.sc.omtrdc.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63487 lga25s40-in-f196.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63488 lga25s40-in-f196.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63489 lga25s40-in-f206.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63490 lga25s40-in-f3.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63491 lga25s40-in-f3.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63492 lga25s40-in-f206.1e100.net 443 Established
TCP PRINCE-DESKTOP.fios-router.home 63493 lga25s40-in-f206.1e100.net 443 Established
UDP PRINCE-DESKTOP 51069
TCP PRINCE-DESKTOP.fios-router.home 63508 lga25s40-in-f3.1e100.net 443 Established
cmdagent.exe(2916)
UDP PRINCE-DESKTOP 59241 CmdAgent
TCP PRINCE-DESKTOP.fios-router.home 63505 download.comodo.com 443 Close Wait CmdAgent
TCP PRINCE-DESKTOP.fios-router.home 63506 104.16.60.31 443 Established CmdAgent
svchost.exe(2884)
TCP PRINCE-DESKTOP.fios-router.home 63496 65.55.44.109 443 Established DiagTrack
TCP PRINCE-DESKTOP.fios-router.home 63504 65.55.44.108 443 Established DiagTrack
 

/*** END Killswitch  - Connections - Sandboxed Google Chrome Open - 1 x File Explorer Open ***/



BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users