Playing with Fire[walls] - A situation.
Alright people.
This is what I have been working on for the past couple of days.
My PC's svchost.exe has gone crazy allowing unauthorized connection on port:80. Damn my incoming data bill is piling up.
[Note for noobs : Port 80 is for exclusive use of "http" data transfer -website browsing et al-, something that a system process like svchost.exe should NOT use @ all]
Although
I pride myself on using free effective and open source softwares
mostly, this time it was testing me to my limits. An on board AVAST antivirus
scanner does
no work in this regard.
[Note for noobs: All those who thought an anti virus or the Windows firewall is all you need to save yourself when you are online this might come as a surprise :P],
but yes I do have a third party Firewall commercially known as C.OM.O.D.O 3.0 Personal Firewall installed. It is one of the top rankers among the firewalls programs out there.
Although it is initially troublesome to use, as it has millions of settings, it definitely is a system tuneup enthusiast's delight. Now coming to the point, I tried cutting off svchost.exe's access but then my net connection died and I had lots of trouble with my ISP[dont even ask]. Then I had to reinstall the firewall and monitor the connections manually.
A successive pattern appeared, I had a bunch of IP address who were pinging me with loads of data from god knows where using the port 80. The Ips were dynamically changing in nature and few of them were
198.78.202.x
207.123.33.x
8.12.209.x
4.23.54.x
Upon doing a whois trace on the net I found out there IP were from some "Level 3 communications,INC" based in CO, US of A. Maybe some shytty ISP.
Someone out there want to have fun. guess what little does he know it takes two to tango. ;)
Later.
