Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Does this look infected? LOL but seriously..

12 May 2009   #1

Windows 7 RTM x86/x64
 
 
Does this look infected? LOL but seriously..

I just did a netstat and saw a few foreign things but I am not sure what windows uses.

Proto Local Address Foreign Address State
TCP 127.0.0.1:49272 Tino-Laptop:49271 TIME_WAIT
TCP 192.168.1.6:445 Tino-Media-PC:50399 ESTABLISHED
TCP 192.168.1.6:49160 blu:https ESTABLISHED
TCP 192.168.1.6:49165 Tino-Media-PC:epmap ESTABLISHED
TCP 192.168.1.6:49166 Tino-Media-PC:epmap ESTABLISHED
TCP 192.168.1.6:49167 Tino-Media-PC:49155 ESTABLISHED
TCP 192.168.1.6:49168 Tino-Media-PC:49155 ESTABLISHED
TCP 192.168.1.6:49169 Tino-Media-PC:49155 ESTABLISHED
TCP 192.168.1.6:49198 accounts:https ESTABLISHED
TCP 192.168.1.6:49203 accounts:https ESTABLISHED
TCP 192.168.1.6:49204 accounts:https ESTABLISHED
TCP 192.168.1.6:49372 wwwbaytest1:https TIME_WAIT
TCP 192.168.1.6:49397 gw-in-f103:http TIME_WAIT
TCP 192.168.1.6:49398 gw-in-f103:http TIME_WAIT
TCP 192.168.1.6:49409 63.218.71.9:http TIME_WAIT
TCP 192.168.1.6:49411 diggriver:http TIME_WAIT
TCP 192.168.1.6:49412 63.218.71.9:http TIME_WAIT
TCP 192.168.1.6:49413 63.218.71.9:http TIME_WAIT
TCP 192.168.1.6:49414 63.218.71.9:http TIME_WAIT
TCP 192.168.1.6:49415 63.218.71.9:http TIME_WAIT
TCP 192.168.1.6:49416 diggriver:http TIME_WAIT
TCP 192.168.1.6:49417 eo-in-f101:http TIME_WAIT
TCP 192.168.1.6:49418 yw-in-f118:http TIME_WAIT
TCP 192.168.1.6:49432 CHERYL-PC:microsoft-ds SYN_SENT
TCP [fe80::b4d5:9dd8:ae2e:7b26%12]:49237 Tino-Media-PC2pgroup ESTABLISH
D
TCP [fe80::b4d5:9dd8:ae2e:7b26%12]:49429 Tino-Media-PC2pgroup TIME_WAIT

My System SpecsSystem Spec
.

12 May 2009   #2

 
 

Who is CHERYL?

My System SpecsSystem Spec
12 May 2009   #3

Windows 7 RTM x86/x64
 
 

A Family member that has the computer named after her.
My System SpecsSystem Spec
.


12 May 2009   #4

Windows 7 Build 7100
 
 

yeah that is fine, the reason why you see the information like that is because of the built-in pnp media server with Windows7. You can disable it within your services but then you won't have easily sharable media between computers. (HomeGroups) you'd have to do a little more work. to me this looks like it could be a exploited port in the future.
My System SpecsSystem Spec
12 May 2009   #5

Win 7
 
 

"net -b" will show you what programs are using those connections.
My System SpecsSystem Spec
12 May 2009   #6

7600.20510 x86
 
 

netstat -anb

Thanks for the b. Gonna use that from now on.

ah magic.
My System SpecsSystem Spec
12 May 2009   #7

7 Pro Build 7600.16385x64 [2.0 WEI]
 
 

@abuttino,
totally random and off-topic but i'm assuming the joke in your thread title was a reference to Sum 41's album? if so, well played.
My System SpecsSystem Spec
Reply

 Does this look infected? LOL but seriously..




Thread Tools



Similar help and support threads for2: Does this look infected? LOL but seriously..
Thread Forum
My Pc is Infected System Security
How often does your PC get infected? General Discussion
how to fix infected from s.m.s.r.t virus System Security
Infected? System Security
Does it appear that I am infected? System Security
Am I infected? General Discussion
Have you ever been infected? System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 11:00 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33