[Closed] Chinese IP addresses trying to connect with my PC
#31
Posted 08 October 2009 - 07:29 PM
Register to Remove
#32
Posted 08 October 2009 - 07:39 PM
No, don't delete it, it's clean,
You have NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter Vista Driver installed on your system.
I have since learned, that file uses WinService.exe
The manufacturer uses the chinese language... I'm thinking the requests are related to NETGEAR.
Try this
Right click My Computer >Manage
Expand Services and Applications
Locate SCM_Service and set it to Disabled
Reboot...
advise if the alerts from Comodo stop
Microsoft MVP 2010, 2011, 2012, 2013, 2014, 2015
#33
Posted 08 October 2009 - 10:01 PM
#34
Posted 09 October 2009 - 02:54 AM
Lets clean up all the tools we used, then I'll jeep the thread open a couple of days, just to make sure.
You can delete the DDS and GMER folders from your desktop.
NEXT
Follow these steps to uninstall Combofix
- Click START then RUN
- Now type Combofix /u in the runbox and click OK. Note the space between the ..X and the /U, it needs to be there.
NEXT
Below I have included a number of recommendations for how to protect your computer against malware infections.
- It is good security practice to change your passwords to all your online accounts on a fairly regular basis. Refer to this Microsoft article
Strong passwords: How to create and use them Then consider a password keeper, to keep all your passwords safe.
- Keep Windows updated by regularly checking their website at :
http://windowsupdate.microsoft.com/
This will ensure your computer has always the latest security updates available installed on your computer.
- Make Internet Explorer more secure
- Click Start > Run
- Type Inetcpl.cpl & click OK
- Click on the Security tab
- Click Reset all zones to default level
- Make sure the Internet Zone is selected & Click Custom level
- In the ActiveX section, set the first two options ("Download signed and unsigned ActiveX controls) to "Prompt", and ("Initialize and Script ActiveX controls not marked as safe") to "Disable".
- Next Click OK, then Apply button and then OK to exit the Internet Properties page.
- ATF Cleaner - Cleans temporary files from IE and Windows, empties the recycle bin and more. Great tool to help speed up your computer and knock out those nasties that like to reside in the temp folders.
WOT, Web of Trust, warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory. WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous sites:- Green to go
- Yellow for caution
- Red to stop
- For Firefox, I highly recommend this add-on to keep your PC even more secure.
- NoScript - for blocking ads and other potential website attacks
- Keep a backup of your important files - Now, more than ever, it's especially important to protect your digital files and memories. This article is full of good information on alternatives for home backup solutions.
- ERUNT (Emergency Recovery Utility NT) allows you to keep a complete backup of your registry and restore it when needed. The standard registry backup options that come with Windows back up most of the registry but not all of it. ERUNT however creates a complete backup set, including the Security hive and user related sections. ERUNT is easy to use and since it creates a full backup, there are no options or choices other than to select the location of the backup files. The backup set includes a small executable that will launch the registry restore if needed.
- In light of your recent issue, I'm sure you'd like to avoid any future infections. Please take a look at these well written articles:
Think Prevention.
PC Safety and Security--What Do I Need?.
**Be very wary with any security software that is advertised in popups or in other ways. They are not only usually of no use, but often have malware in them.
Thank you for your patience, and performing all of the procedures requested.
Microsoft MVP 2010, 2011, 2012, 2013, 2014, 2015
#35
Posted 09 October 2009 - 01:43 PM
#36
Posted 09 October 2009 - 03:34 PM
Microsoft MVP 2010, 2011, 2012, 2013, 2014, 2015
#38
Posted 09 October 2009 - 05:04 PM
Microsoft MVP 2010, 2011, 2012, 2013, 2014, 2015
#39
Posted 10 October 2009 - 08:23 AM
Well, unfortunately there doesn't seem to be an answer to this readily available.
There is no malware on your machine.
The IP addresses are legitimate, the Chinese symbols may only be related to the product on your computer where the manufacturer uses the Chinese language.
However, my suggestion is to join the Comodo forum and post your issue there, it may not be related to Comodo but it may be something they are familiar with.
http://forums.comodo.com/
the experts there may very well have an explanation.
Here is a link to the article showing the NETGEAR component that uses the Chinese language
http://www.newswirel...fm/article/4123
Please let me know if they are able to resolve this for you, I am interested in what the explanation is.
Microsoft MVP 2010, 2011, 2012, 2013, 2014, 2015
#40
Posted 10 October 2009 - 02:24 PM
Register to Remove
#41
Posted 24 October 2009 - 01:07 PM
Microsoft MVP 2010, 2011, 2012, 2013, 2014, 2015
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users