port scan attack every time i log on to trainz

M

misterchugg

Active member
hi all

for the last week i have been port scan attacked every time i log on to the trainz website here.

is anybody else getting this?

thanks

ron
 
hi
see the following and let me know what else to do to tell you

thanks
ron

portscanattack.jpg
 
Yeah, http://whatismyipaddress.com/ip/222.192.199.49 comes back to a college in Yangzhou. I suspect you have some type of trojan or other malware you picked up from some other website. Facebook is notorious for that if you click one of them links that asks to access your details;

74806683.jpg


I always click the back button when I see one of those, some of them even have you granting permission to use your IP address and FB account when it's idle - whatever all these other people are looking at, I don't need to see it bad enough to take them kind of risks. :n:
 
hi all

i've never joined facebook or any of the online things bar for dreddman's yahoo site

fran
ran the test and came up empty.
see below

thanks for the help

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Database version: 5282

Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

10/12/2010 8:33:36 AM
mbam-log-2010-12-10 (08-33-36).txt

Scan type: Full scan (C:\|)
Objects scanned: 146853
Time elapsed: 9 minute(s), 58 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
 
If it's happening every time you log onto the forums, DLS, or some other specific event, I have to suspect malware of some sort. However, do you have more log info, ports and what was happening at the time? I'm also thinking maybe putting up some FW rules as well.
 
hi
i done some testing and i think its from a safeguard thing someone told us here on the forum

its called maximum adblock free and is an attachment to firefox

if its not turned on, then so far i haven't got port scans

weird eh?

thanks
ron
 
misterchugg said:
hi
i done some testing and i think its from a safeguard thing someone told us here on the forum

its called maximum adblock free and is an attachment to firefox

if its not turned on, then so far i haven't got port scans

weird eh?

thanks
ron
Click to expand...

Kinda makes sense, actually. Ad-blocking proxies have been around a very long time. They can be highly-effective tools at blocking ads, stripping out malicious code, and even IP anonymization. Conversely, they can be one of the most effective methods to snoop on people and gather data; it all depends on the motivations of the persons running the proxy.

That said, I wouldn't use this as an ad-blocking method. Not just because of the risk factor, but because better (and probably faster) methods already exist e.g. AdBlock Plus, a very small but well-designed HOSTS file, etc. which have little or zero risk factor but plenty of benefits.
 
You must log in or register to reply here.

Similar threads

P
Log in Details Not Saving in Game
Replies
1
Views
213
oknotsen
O
R
What is 'Game Time'?
Replies
1
Views
185
JCitron
J
D
Crashing to desktop when loading routes or sessions
Replies
9
Views
444
grazlash
G
A
I can't log in to MyTrainz to TRS2019/TRS2022
Replies
2
Views
609
pware
P
T
"Image cannot be loaded from passed link"
Replies
2
Views
639
afe_uy
A
Back
Top