AV showing unauthorized access attempts after installing IE8

[azdesert]

I am on Windows XP Sp3 and using Nortion Antivirus 2009. All antivirus and
windows updates are current. NAV is showing in its history "unauthorized
access blocked" (medium threat level) all day long, sometimes with attempts
at access every few minutes. NAV doesn't otherwise show any problem and a
complete system scan found nothing wrong. I only discovered this when
checking the history for something else.

I did install IE8 a few days ago. My question is:

Has anyone else seen this and is it some sort of conflict with IE8? Or is it
possible that there are continual attempts from the outside to take control
of the computer or to install malware on my computer?

 

[JS]

NAV 2009 does not include a firewall so
what are you using in the way of a firewall,
Windows XP's firewall or a third party firewall.

 

[azdesert]

Windows XP firewall and I think there is also a firewall in either my cable
modem or the router.

 

[JS]

Live Chat:
http://www.symantec.com/techsupp/home_homeoffice/chat_form_cs.html

 

[Singapore Computer Service]

Hello,

Is there more information on the blocked access? Like source IP, application
name, port, etc?

Regards,
Singapore Computer Home Repair Service
http://www.bootstrike.com/ComputerService/
Video Conversion VHS Video8 Hi8 Digital8 MiniDv MicroMv
http://www.bootstrike.com/VHSVideoConvert/

 

[Twayne]

I am on Windows XP Sp3 and using Nortion Antivirus 2009. All
antivirus and windows updates are current. NAV is showing in its
history "unauthorized access blocked" (medium threat level) all day
long, sometimes with attempts at access every few minutes. NAV
doesn't otherwise show any problem and a complete system scan found
nothing wrong. I only discovered this when checking the history for
something else.

I did install IE8 a few days ago. My question is:

Has anyone else seen this and is it some sort of conflict with IE8?
Or is it possible that there are continual attempts from the outside
to take control of the computer or to install malware on my computer?

You are most likely seeing "normal" WAN side noise or traffic and have
one or more ports open that is reacing to queies; usually echo requests.
On the internet side of your modem are many, many people trolling for
open ports and machines they can get into. When they find an open port,
they query it to see if it responds. If it does, the port is open and
they try to use it to get into your computer system. You NAV is seeing
that, blocking it, and reporting to you what it did about it.
They just grab an IP address and go through it number by number,
looking for places that will let them in. It's the "normal" , "wrong
side of the tracks" idiots looking for ANY machine they can find, pretty
much at random, that will give them access.

There isn't a whole lot you can do about it other than be sure to keep
your security program in place and updated.
If you're into learning more about the subject, you can go to
www.grc.com (Gibson Research) and they can run various tests on your
system from there. One of the tests is for open ports. The results are
Open, Closed, or Stealthed. Stealth is best, Closed next. If anything
should be done about the test results, it'll offer suggestions on what
can be done. I take a silly pride in seeing that my machine is
Stealthed on all ports - noone outside can tell they're there<g>.

In case I'm sending you to a site you never heard of before, feel free
to Google it etc. first to see what if any "bad" things you can find.
You won't find much bad. No spam, no cookies they don't tell you about,
no forcing of anything onto your machine; perfectly safe web site. But
I know taking someone else's word for something like that can be folly
which is why I suggest checking it out yourself if you're not already
familiar with it. It's great for learning things about port usage.

HTH,

Twayne`