Microsoft is probing your computer

S

Snooker416

Hey all i just figure out that Microsoft does probe your computer , So be
careful with what you do with your computer ... They are very sneaky about
it
 
M

Mike Brannigan [MSFT]

Snooker416 said:
Hey all i just figure out that Microsoft does probe your computer , So be
careful with what you do with your computer ... They are very sneaky about
it


If you would like to provide details of your claim I would gladly point out
your errors.

--

Regards,

Mike
--
Mike Brannigan [Microsoft]

This posting is provided "AS IS" with no warranties, and confers no
rights

Please note I cannot respond to e-mailed questions, please use these
newsgroups
 
S

Stuart

OK Mike!
I will take you up on your offer.
I have wondered for some time why the following two MS sites keep calling:
207.46.248.16 222 times last 60 days WHOIS OrgName: Microsoft Corp
207.46.130.117 121 times last 60 days WHOIS OrgName: Microsoft Corp
In advance I will say that it is probably because I, in some form or other, asked for MS to do it.
Stuart
 
M

Mike Brannigan [MSFT]

OK Mike!
I will take you up on your offer.
I have wondered for some time why the following two MS sites keep calling:
207.46.248.16 222 times last 60 days WHOIS OrgName: Microsoft
Corp
207.46.130.117 121 times last 60 days WHOIS OrgName: Microsoft
Corp
In advance I will say that it is probably because I, in some form or other,
asked for MS to do it.
Stuart


Stuart,

I am not at liberty to discuss precise details of the internal
configurations of the Microsoft corporate network - but a more detailed
lookup using public tools will point to both of those server being involved
in the support of our public community initiatives (newsgroups etc).

--

Regards,

Mike
--
Mike Brannigan [Microsoft]

This posting is provided "AS IS" with no warranties, and confers no
rights

Please note I cannot respond to e-mailed questions, please use these
newsgroups

OK Mike!
I will take you up on your offer.
I have wondered for some time why the following two MS sites keep calling:
207.46.248.16 222 times last 60 days WHOIS OrgName: Microsoft
Corp
207.46.130.117 121 times last 60 days WHOIS OrgName: Microsoft
Corp
In advance I will say that it is probably because I, in some form or other,
asked for MS to do it.
Stuart
 
S

Stuart

Mike
I see what you mean.
However, why do they probe my system on a continuing basis?
Is there anyway to tell them "Don't call me, I'll call you."?
Stuart
 
R

Robin Walker

Stuart said:
However, why do they probe my system on a continuing basis?
Is there anyway to tell them "Don't call me, I'll call you."?

These sites are most probably not probing your PC at all, but there is a
defect in your firewall which is falsely registering normal TCP handshakes
(or belated responses after a local port has closed) as an intrusion
attempt.
 
S

Stuart

Robin Walker said:
These sites are most probably not probing your PC at all, but there is a
defect in your firewall which is falsely registering normal TCP handshakes
(or belated responses after a local port has closed) as an intrusion
attempt.
Robin

Could you explain a little more?

Perhaps the following information would help.
The router is Linksys BESFX41.
The ISP is Verizon.
With the exception of one Chineese sender 222.88.173.5 who is sending to the world, the two from MS are the only ones that have contimued over a long period of time.
The other recorded events are normally from other computers in the same Verizon group with whatever port is the current virus flavor of the day is.
The log file is below.

Stuart

WallReViewer - 60-day history of last 2 days of Inbound Remote IP Addrs - as of 10/14/04 06:42:52 Eastern Standard Time (Timestamps are Local Time)
Date Time Dir Prot Rem IP Addr Remote Name R Port Lcl IP Addr L Port
2004/08/15 08:08:05 I tcp 207.46.248.16 119 151.200.237.253 1494
2004/08/15 08:11:15 I tcp 207.46.248.16 119 151.200.237.253 1493
2004/08/15 08:26:45 I tcp 207.46.248.16 119 151.200.237.253 1493
2004/08/15 08:30:25 I tcp 207.46.248.16 119 151.200.237.253 1619
2004/08/15 08:38:35 I tcp 207.46.248.16 119 151.200.237.253 1782
2004/08/16 08:50:39 I tcp 207.46.248.16 119 151.200.237.253 2233
2004/08/16 08:53:19 I tcp 207.46.248.16 119 151.200.237.253 2250
2004/08/16 08:59:59 I tcp 207.46.248.16 119 151.200.237.253 2308
2004/08/17 09:19:09 I tcp 207.46.248.16 119 138.88.150.68 3820
2004/08/18 09:36:32 I tcp 207.46.248.16 119 138.88.150.68 1972
2004/08/18 09:38:52 I tcp 207.46.248.16 119 138.88.150.68 1989
2004/08/18 09:40:32 I tcp 207.46.248.16 119 138.88.150.68 2008
2004/08/19 15:25:26 I tcp 207.46.248.16 119 138.88.150.68 2151
2004/08/19 15:29:26 I tcp 207.46.248.16 119 138.88.150.68 2172
2004/08/19 15:30:56 I tcp 207.46.248.16 119 138.88.150.68 2191
2004/08/20 06:46:01 I tcp 207.46.248.16 119 138.88.95.41 2186
2004/08/20 06:46:51 I tcp 207.46.248.16 119 138.88.95.41 2194
2004/08/20 06:49:00 I tcp 207.46.248.16 119 138.88.95.41 2215
2004/08/21 09:44:37 I tcp 207.46.248.16 119 138.88.95.41 1499
2004/08/21 09:45:37 I tcp 207.46.248.16 119 138.88.95.41 1507
2004/08/21 09:54:17 I tcp 207.46.248.16 119 138.88.95.41 1656
2004/08/22 08:45:37 I tcp 207.46.248.16 119 138.88.95.41 1668
2004/08/22 08:46:17 I tcp 207.46.248.16 119 138.88.95.41 1675
2004/08/22 08:50:17 I tcp 207.46.248.16 119 138.88.95.41 1733
2004/08/23 10:15:33 I tcp 207.46.248.16 119 138.88.95.41 1826
2004/08/23 10:20:13 I tcp 207.46.248.16 119 138.88.95.41 1853
2004/08/23 10:21:33 I tcp 207.46.248.16 119 138.88.95.41 1868
2004/08/23 11:32:42 I tcp 207.46.248.16 119 138.88.95.41 1853
2004/08/25 14:32:41 I tcp 207.46.248.16 119 138.88.40.237 1533
2004/08/25 14:34:01 I tcp 207.46.248.16 119 138.88.40.237 1543
2004/08/25 14:35:11 I tcp 207.46.248.16 119 138.88.40.237 1560
2004/08/26 10:06:54 I tcp 207.46.248.16 119 138.88.157.52 2066
2004/08/27 11:27:02 I tcp 207.46.248.16 119 138.88.157.52 2961
2004/08/27 11:31:42 I tcp 207.46.248.16 119 138.88.157.52 2984
2004/08/27 11:37:22 I tcp 207.46.248.16 119 138.88.157.52 3034
2004/08/27 12:01:52 I tcp 207.46.248.16 119 138.88.157.52 2961
2004/08/28 08:25:27 I tcp 207.46.248.16 119 138.88.157.52 1733
2004/08/28 08:26:57 I tcp 207.46.248.16 119 138.88.157.52 1743
2004/08/28 08:28:27 I tcp 207.46.248.16 119 138.88.157.52 1761
2004/08/29 06:58:11 I tcp 207.46.248.16 119 138.88.157.52 1543
2004/08/29 07:00:41 I tcp 207.46.248.16 119 138.88.157.52 1556
2004/08/29 07:03:41 I tcp 207.46.248.16 119 138.88.157.52 1584
2004/08/29 07:16:01 I tcp 207.46.248.16 119 138.88.157.52 1583
2004/08/29 07:27:21 I tcp 207.46.248.16 119 138.88.157.52 1583
2004/08/29 09:26:30 I tcp 207.46.248.16 119 138.88.157.52 1584
2004/08/29 09:26:40 I tcp 207.46.248.16 119 138.88.157.52 1556
2004/08/30 09:25:31 I tcp 207.46.248.16 119 138.88.97.179 2013
2004/08/30 09:27:11 I tcp 207.46.248.16 119 138.88.97.179 2025
2004/08/30 09:31:21 I tcp 207.46.248.16 119 138.88.97.179 2055
2004/08/30 09:59:00 I tcp 207.46.248.16 119 138.88.97.179 2055
2004/08/31 09:12:13 I tcp 207.46.248.16 119 141.156.165.204 2357
2004/08/31 09:13:53 I tcp 207.46.248.16 119 141.156.165.204 2420
2004/08/31 09:17:13 I tcp 207.46.248.16 119 141.156.165.204 2448
2004/08/31 13:46:08 I tcp 207.46.248.16 119 141.156.165.204 2357
2004/08/31 13:46:08 I tcp 207.46.248.16 119 141.156.165.204 2448
2004/09/01 10:26:13 I tcp 207.46.248.16 119 141.156.165.204 2209
2004/09/01 10:30:43 I tcp 207.46.248.16 119 141.156.165.204 2232
2004/09/01 10:32:13 I tcp 207.46.248.16 119 141.156.165.204 2279
2004/09/01 10:33:13 I tcp 207.46.248.16 119 141.156.165.204 2278
2004/09/01 10:54:52 I tcp 207.46.248.16 119 141.156.165.204 2278
2004/09/01 14:22:30 I tcp 207.46.248.16 119 141.156.165.204 2209
2004/09/01 14:22:30 I tcp 207.46.248.16 119 141.156.165.204 2232
2004/09/03 10:05:47 I tcp 207.46.248.16 119 151.200.237.86 1791
2004/09/03 10:07:07 I tcp 207.46.248.16 119 151.200.237.86 1834
2004/09/03 10:19:37 I tcp 207.46.248.16 119 151.200.237.86 2042
2004/09/03 10:44:37 I tcp 207.46.248.16 119 151.200.237.86 1791
2004/09/03 10:44:37 I tcp 207.46.248.16 119 151.200.237.86 2042
2004/09/03 11:05:48 I tcp 207.46.248.16 119 151.200.237.86 1791
2004/09/03 11:07:08 I tcp 207.46.248.16 119 151.200.237.86 1834
2004/09/03 11:19:37 I tcp 207.46.248.16 119 151.200.237.86 2042
2004/09/03 11:44:37 I tcp 207.46.248.16 119 151.200.237.86 1791
2004/09/03 11:44:37 I tcp 207.46.248.16 119 151.200.237.86 2042
2004/09/04 09:22:41 I tcp 207.46.248.16 119 151.200.237.86 1614
2004/09/04 09:22:43 I tcp 207.46.248.16 119 151.200.237.86 1614
2004/09/04 09:23:41 I tcp 207.46.248.16 119 151.200.237.86 1623
2004/09/04 09:23:43 I tcp 207.46.248.16 119 151.200.237.86 1623
2004/09/04 09:29:31 I tcp 207.46.248.16 119 151.200.237.86 1658
2004/09/04 09:29:33 I tcp 207.46.248.16 119 151.200.237.86 1658
2004/09/04 10:08:30 I tcp 207.46.248.16 119 151.200.237.86 1658
2004/09/05 08:50:34 I tcp 207.46.248.16 119 151.200.237.86 1984
2004/09/05 08:52:44 I tcp 207.46.248.16 119 151.200.237.86 1998
2004/09/05 08:57:44 I tcp 207.46.248.16 119 151.200.237.86 2042
2004/09/05 11:58:22 I tcp 207.46.248.16 119 151.200.237.86 2042
2004/09/06 09:01:37 I tcp 207.46.248.16 119 151.200.237.86 1547
2004/09/06 09:02:27 I tcp 207.46.248.16 119 151.200.237.86 1554
2004/09/06 09:07:57 I tcp 207.46.248.16 119 151.200.237.86 1754
2004/09/06 09:54:26 I tcp 207.46.248.16 119 151.200.237.86 1554
2004/09/07 09:27:30 I tcp 207.46.248.16 119 151.200.237.86 1890
2004/09/07 09:32:20 I tcp 207.46.248.16 119 151.200.237.86 1891
2004/09/08 08:13:05 I tcp 207.46.248.16 119 151.200.237.86 2082
2004/09/08 08:20:15 I tcp 207.46.248.16 119 151.200.237.86 2241
2004/09/09 08:17:35 I tcp 207.46.248.16 119 151.200.237.86 2187
2004/09/09 08:22:35 I tcp 207.46.248.16 119 151.200.237.86 2222
2004/09/09 08:23:45 I tcp 207.46.248.16 119 151.200.237.86 2238
2004/09/09 08:25:05 I tcp 207.46.248.16 119 151.200.237.86 2237
2004/09/09 08:41:15 I tcp 207.46.248.16 119 151.200.237.86 2237
2004/09/09 11:19:43 I tcp 207.46.248.16 119 151.200.237.86 2238
2004/09/09 11:19:43 I tcp 207.46.248.16 119 151.200.237.86 2187
2004/09/10 10:03:35 I tcp 207.46.248.16 119 138.88.1.193 1468
2004/09/10 10:12:05 I tcp 207.46.248.16 119 138.88.1.193 1506
2004/09/10 10:18:25 I tcp 207.46.248.16 119 138.88.1.193 1581
2004/09/10 11:26:23 I tcp 207.46.248.16 119 138.88.1.193 1581
2004/09/10 11:26:23 I tcp 207.46.248.16 119 138.88.1.193 1506
2004/09/10 11:26:23 I tcp 207.46.248.16 119 138.88.1.193 1468
2004/09/11 10:02:57 I tcp 207.46.248.16 119 138.88.1.193 1560
2004/09/11 10:03:47 I tcp 207.46.248.16 119 138.88.1.193 1567
2004/09/11 10:05:17 I tcp 207.46.248.16 119 138.88.1.193 1586
2004/09/11 10:31:26 I tcp 207.46.248.16 119 138.88.1.193 1567
2004/09/13 10:22:54 I tcp 207.46.248.16 119 138.88.1.193 2263
2004/09/13 10:27:14 I tcp 207.46.248.16 119 138.88.1.193 2285
2004/09/13 10:41:54 I tcp 207.46.248.16 119 138.88.1.193 2447
2004/09/14 09:28:55 I tcp 207.46.248.16 119 138.88.1.193 1471
2004/09/14 09:33:35 I tcp 207.46.248.16 119 138.88.1.193 1504
2004/09/14 09:39:35 I tcp 207.46.248.16 119 138.88.1.193 1562
2004/09/14 10:22:25 I tcp 207.46.248.16 119 138.88.1.193 1504
2004/09/14 10:22:25 I tcp 207.46.248.16 119 138.88.1.193 1562
2004/09/16 10:48:17 I tcp 207.46.248.16 119 138.88.140.132 2281
2004/09/16 10:51:37 I tcp 207.46.248.16 119 138.88.140.132 2298
2004/09/16 10:55:37 I tcp 207.46.248.16 119 138.88.140.132 2338
2004/09/17 08:31:22 I tcp 207.46.248.16 119 138.88.140.132 1982
2004/09/17 08:37:42 I tcp 207.46.248.16 119 138.88.140.132 2021
2004/09/17 11:06:30 I tcp 207.46.248.16 119 138.88.140.132 1982
2004/09/17 11:06:30 I tcp 207.46.248.16 119 138.88.140.132 2021
2004/09/18 09:21:24 I tcp 207.46.248.16 119 141.156.168.177 2820
2004/09/18 10:05:13 I tcp 207.46.248.16 119 141.156.168.177 3248
2004/09/18 10:15:13 I tcp 207.46.248.16 119 141.156.168.177 3353
2004/09/18 11:26:42 I tcp 207.46.248.16 119 141.156.168.177 3248
2004/09/19 09:56:45 I tcp 207.46.248.16 119 141.156.168.177 1463
2004/09/19 09:57:15 I tcp 207.46.248.16 119 141.156.168.177 1469
2004/09/19 10:11:15 I tcp 207.46.248.16 119 141.156.168.177 1567
2004/09/19 15:34:01 I tcp 207.46.248.16 119 141.156.168.177 1567
2004/09/20 11:55:37 I tcp 207.46.248.16 119 141.156.168.177 3041
2004/09/20 11:57:27 I tcp 207.46.248.16 119 141.156.168.177 3052
2004/09/20 11:59:27 I tcp 207.46.248.16 119 141.156.168.177 3068
2004/09/20 12:02:07 I tcp 207.46.248.16 119 141.156.168.177 3067
2004/09/20 14:41:25 I tcp 207.46.248.16 119 141.156.168.177 3067
2004/09/22 14:05:59 I tcp 207.46.248.16 119 138.88.126.125 3961
2004/09/22 14:07:59 I tcp 207.46.248.16 119 138.88.126.125 3973
2004/09/22 14:15:19 I tcp 207.46.248.16 119 138.88.126.125 4061
2004/09/24 11:22:06 I tcp 207.46.248.16 119 141.156.165.51 2720
2004/09/24 11:24:46 I tcp 207.46.248.16 119 141.156.165.51 2734
2004/09/24 11:34:56 I tcp 207.46.248.16 119 141.156.165.51 2804
2004/09/24 11:55:16 I tcp 207.46.248.16 119 141.156.165.51 2720
2004/09/24 11:55:16 I tcp 207.46.248.16 119 141.156.165.51 2734
2004/09/25 11:34:46 I tcp 207.46.248.16 119 141.156.165.51 2388
2004/09/25 11:36:26 I tcp 207.46.248.16 119 141.156.165.51 2398
2004/09/25 11:43:25 I tcp 207.46.248.16 119 141.156.165.51 2463
2004/09/25 16:16:22 I tcp 207.46.248.16 119 141.156.165.51 2398
2004/09/25 16:16:22 I tcp 207.46.248.16 119 141.156.165.51 2388
2004/09/25 16:16:32 I tcp 207.46.248.16 119 141.156.165.51 2463
2004/09/26 07:37:35 I tcp 207.46.248.16 119 141.156.182.44 1701
2004/09/26 07:38:35 I tcp 207.46.248.16 119 141.156.182.44 1709
2004/09/26 07:46:45 I tcp 207.46.248.16 119 141.156.182.44 1791
2004/09/27 09:30:35 I tcp 207.46.248.16 119 141.156.178.226 1723
2004/09/27 10:13:15 I tcp 207.46.248.16 119 141.156.178.226 2003
2004/09/27 10:24:55 I tcp 207.46.248.16 119 141.156.178.226 2080
2004/09/28 09:44:49 I tcp 207.46.248.16 119 141.156.178.226 2567
2004/09/28 09:48:58 I tcp 207.46.248.16 119 141.156.178.226 2712
2004/09/28 09:56:38 I tcp 207.46.248.16 119 141.156.178.226 2764
2004/09/28 14:05:15 I tcp 207.46.248.16 119 141.156.178.226 2567
2004/09/28 14:05:15 I tcp 207.46.248.16 119 141.156.178.226 2712
2004/09/28 14:05:15 I tcp 207.46.248.16 119 141.156.178.226 2764
2004/09/29 08:59:51 I tcp 207.46.248.16 119 141.156.178.226 2424
2004/09/29 09:04:41 I tcp 207.46.248.16 119 141.156.178.226 2560
2004/09/29 09:09:21 I tcp 207.46.248.16 119 141.156.178.226 2610
2004/09/30 10:53:23 I tcp 207.46.248.16 119 141.156.178.226 1825
2004/09/30 11:02:23 I tcp 207.46.248.16 119 141.156.178.226 1995
2004/09/30 11:07:03 I tcp 207.46.248.16 119 141.156.178.226 2025
2004/10/01 08:00:44 I tcp 207.46.248.16 119 138.88.148.252 2109
2004/10/01 08:07:54 I tcp 207.46.248.16 119 138.88.148.252 2142
2004/10/01 08:14:54 I tcp 207.46.248.16 119 138.88.148.252 2182
2004/10/01 09:00:45 I tcp 207.46.248.16 119 138.88.148.252 2109
2004/10/01 09:07:55 I tcp 207.46.248.16 119 138.88.148.252 2142
2004/10/01 09:14:55 I tcp 207.46.248.16 119 138.88.148.252 2182
2004/10/02 07:47:59 I tcp 207.46.248.16 119 138.88.148.252 2264
2004/10/02 07:48:59 I tcp 207.46.248.16 119 138.88.148.252 2272
2004/10/02 08:14:29 I tcp 207.46.248.16 119 138.88.148.252 2467
2004/10/02 09:48:28 I tcp 207.46.248.16 119 138.88.148.252 2467
2004/10/02 09:48:28 I tcp 207.46.248.16 119 138.88.148.252 2272
2004/10/02 09:48:28 I tcp 207.46.248.16 119 138.88.148.252 2264
2004/10/04 09:48:19 I tcp 207.46.248.16 119 141.156.185.131 2868
2004/10/04 09:52:59 I tcp 207.46.248.16 119 141.156.185.131 2893
2004/10/04 10:18:09 I tcp 207.46.248.16 119 141.156.185.131 1077
2004/10/04 10:19:09 I tcp 207.46.248.16 119 141.156.185.131 1088
2004/10/04 10:37:09 I tcp 207.46.248.16 119 141.156.185.131 1077
2004/10/05 06:21:24 I tcp 207.46.248.16 119 141.156.185.131 1492
2004/10/05 06:21:25 I tcp 207.46.248.16 119 141.156.185.131 1492
2004/10/05 06:22:44 I tcp 207.46.248.16 119 141.156.185.131 1514
2004/10/05 06:22:45 I tcp 207.46.248.16 119 141.156.185.131 1514
2004/10/05 06:26:04 I tcp 207.46.248.16 119 141.156.185.131 1539
2004/10/05 06:26:05 I tcp 207.46.248.16 119 141.156.185.131 1539
2004/10/05 06:38:14 I tcp 207.46.248.16 119 141.156.185.131 1492
2004/10/05 06:38:14 I tcp 207.46.248.16 119 141.156.185.131 1514
2004/10/05 06:38:14 I tcp 207.46.248.16 119 141.156.185.131 1539
2004/10/06 11:25:13 I tcp 207.46.248.16 119 141.156.185.131 2411
2004/10/06 11:31:13 I tcp 207.46.248.16 119 141.156.185.131 2441
2004/10/06 11:36:33 I tcp 207.46.248.16 119 141.156.185.131 2477
2004/10/07 08:10:20 I tcp 207.46.248.16 119 141.156.185.131 1257
2004/10/07 08:11:30 I tcp 207.46.248.16 119 141.156.185.131 1268
2004/10/07 08:30:30 I tcp 207.46.248.16 119 141.156.185.131 1504
2004/10/08 10:10:16 I tcp 207.46.248.16 119 138.88.90.184 2937
2004/10/08 10:10:36 I tcp 207.46.248.16 119 138.88.90.184 2992
2004/10/08 10:11:46 I tcp 207.46.248.16 119 138.88.90.184 3053
2004/10/09 06:43:35 I tcp 207.46.248.16 119 138.88.90.184 1519
2004/10/09 06:52:15 I tcp 207.46.248.16 119 138.88.90.184 1679
2004/10/09 06:56:45 I tcp 207.46.248.16 119 138.88.90.184 1707
2004/10/09 16:05:28 I tcp 207.46.248.16 119 138.88.90.184 1519
2004/10/09 16:05:28 I tcp 207.46.248.16 119 138.88.90.184 1679
2004/10/09 16:05:28 I tcp 207.46.248.16 119 138.88.90.184 1707
2004/10/10 06:42:08 I tcp 207.46.248.16 119 138.88.90.184 1442
2004/10/10 06:42:18 I tcp 207.46.248.16 119 138.88.90.184 1466
2004/10/10 06:46:18 I tcp 207.46.248.16 119 138.88.90.184 1554
2004/10/10 08:39:36 I tcp 207.46.248.16 119 138.88.90.184 1442
2004/10/10 08:39:36 I tcp 207.46.248.16 119 138.88.90.184 1466
2004/10/11 08:09:30 I tcp 207.46.248.16 119 138.88.90.184 2036
2004/10/11 08:11:10 I tcp 207.46.248.16 119 138.88.90.184 2046
2004/10/11 08:17:00 I tcp 207.46.248.16 119 138.88.90.184 2088
2004/10/12 09:21:31 I tcp 207.46.248.16 119 141.156.169.129 2354
2004/10/12 09:22:41 I tcp 207.46.248.16 119 141.156.169.129 2353
2004/10/12 09:33:40 I tcp 207.46.248.16 119 141.156.169.129 2353
2004/10/12 09:33:40 I tcp 207.46.248.16 119 141.156.169.129 2419
2004/10/12 09:56:50 I tcp 207.46.248.16 119 141.156.169.129 2627
2004/10/13 14:58:36 I tcp 207.46.248.16 119 138.88.138.180 2532
2004/10/13 15:03:26 I tcp 207.46.248.16 119 138.88.138.180 2564
2004/10/13 15:03:46 I tcp 207.46.248.16 119 138.88.138.180 2563
2004/10/13 15:20:14 I tcp 207.46.248.16 119 138.88.138.180 2978
2004/10/14 06:31:11 I tcp 207.46.248.16 119 xxx.xxx.xxx.xxx 1970
 
R

Robin Walker

Could you explain a little more?

Perhaps the following information would help.
The router is Linksys BESFX41. The ISP is Verizon. The log file is below.

It looks to me as if every line in the log you quote below is a false
positive: either a defect in the firewall, or an artefact of the way your
news-reader works. I'm guessing that at every time listed in the log you
were reading news from msnews.microsoft.com, which is what 207.46.248.16 is,
listed as the Remote IP address. The Remote Port shown is 119, which is the
News protocol port. Port 119 never initiates any traffic: it only responds
to traffic from your PC news client. So a firewall should never show
"Inward" traffic originating from port 119 on a remote address. The fact
that every line in the log below shows an Inward probe from port 119 is
indicative that something is not right with the firewall. One of the
problems with the log shown below is the complete lack of information about
the packet being logged, apart from the addresses and ports: really ones
needs more information to make sense of a firewall log, such as the TCP
status flags. I'm afraid the Linksys logs are close to useless in this
respect.

I can think of some scenarios which might cause such mis-behaviour:

1. The firewall is broken in such a way that it considers a TCP connection
closed when the client sends FIN, and therefore registers the FIN-ACK
response from the server as an inbound malign probe. If this were the case,
you would see similar false log entries in relation to web browsing.

2. The news reader typically leaves its TCP connection to the server idle
for long periods. When the server times out the idleness, and attempts to
reset the TCP connection, the firewall logs the inbound packet from the
server as a malign probe.

3. The news client opens so many simultaneous TCP connections to port 119 on
the remote server, that the external firewall's capacity to track TCP
connections is overloaded.


WallReViewer - 60-day history of last 2 days of Inbound Remote IP Addrs - as
of 10/14/04 06:42:52 Eastern Standard Time (Timestamps are Local Time)
Date Time Dir Prot Rem IP Addr Remote Name R
Port Lcl IP Addr L Port
2004/08/15 08:08:05 I tcp 207.46.248.16
119 151.200.237.253 1494
2004/08/15 08:11:15 I tcp 207.46.248.16
119 151.200.237.253 1493
2004/08/15 08:26:45 I tcp 207.46.248.16
119 151.200.237.253 1493
2004/08/15 08:30:25 I tcp 207.46.248.16
119 151.200.237.253 1619
2004/08/15 08:38:35 I tcp 207.46.248.16
119 151.200.237.253 1782
2004/08/16 08:50:39 I tcp 207.46.248.16
119 151.200.237.253 2233
2004/08/16 08:53:19 I tcp 207.46.248.16
119 151.200.237.253 2250
2004/08/16 08:59:59 I tcp 207.46.248.16
119 151.200.237.253 2308
2004/08/17 09:19:09 I tcp 207.46.248.16
119 138.88.150.68 3820
2004/08/18 09:36:32 I tcp 207.46.248.16
119 138.88.150.68 1972
2004/08/18 09:38:52 I tcp 207.46.248.16
119 138.88.150.68 1989
2004/08/18 09:40:32 I tcp 207.46.248.16
119 138.88.150.68 2008
2004/08/19 15:25:26 I tcp 207.46.248.16
119 138.88.150.68 2151
2004/08/19 15:29:26 I tcp 207.46.248.16
119 138.88.150.68 2172
2004/08/19 15:30:56 I tcp 207.46.248.16
119 138.88.150.68 2191
2004/08/20 06:46:01 I tcp 207.46.248.16
119 138.88.95.41 2186
2004/08/20 06:46:51 I tcp 207.46.248.16
119 138.88.95.41 2194
2004/08/20 06:49:00 I tcp 207.46.248.16
119 138.88.95.41 2215
2004/08/21 09:44:37 I tcp 207.46.248.16
119 138.88.95.41 1499
2004/08/21 09:45:37 I tcp 207.46.248.16
119 138.88.95.41 1507
2004/08/21 09:54:17 I tcp 207.46.248.16
119 138.88.95.41 1656
2004/08/22 08:45:37 I tcp 207.46.248.16
119 138.88.95.41 1668
2004/08/22 08:46:17 I tcp 207.46.248.16
119 138.88.95.41 1675
2004/08/22 08:50:17 I tcp 207.46.248.16
119 138.88.95.41 1733
2004/08/23 10:15:33 I tcp 207.46.248.16
119 138.88.95.41 1826
2004/08/23 10:20:13 I tcp 207.46.248.16
119 138.88.95.41 1853
2004/08/23 10:21:33 I tcp 207.46.248.16
119 138.88.95.41 1868
2004/08/23 11:32:42 I tcp 207.46.248.16
119 138.88.95.41 1853
2004/08/25 14:32:41 I tcp 207.46.248.16
119 138.88.40.237 1533
2004/08/25 14:34:01 I tcp 207.46.248.16
119 138.88.40.237 1543
2004/08/25 14:35:11 I tcp 207.46.248.16
119 138.88.40.237 1560
2004/08/26 10:06:54 I tcp 207.46.248.16
119 138.88.157.52 2066
2004/08/27 11:27:02 I tcp 207.46.248.16
119 138.88.157.52 2961
2004/08/27 11:31:42 I tcp 207.46.248.16
119 138.88.157.52 2984
2004/08/27 11:37:22 I tcp 207.46.248.16
119 138.88.157.52 3034
2004/08/27 12:01:52 I tcp 207.46.248.16
119 138.88.157.52 2961
2004/08/28 08:25:27 I tcp 207.46.248.16
119 138.88.157.52 1733
2004/08/28 08:26:57 I tcp 207.46.248.16
119 138.88.157.52 1743
2004/08/28 08:28:27 I tcp 207.46.248.16
119 138.88.157.52 1761
2004/08/29 06:58:11 I tcp 207.46.248.16
119 138.88.157.52 1543
2004/08/29 07:00:41 I tcp 207.46.248.16
119 138.88.157.52 1556
2004/08/29 07:03:41 I tcp 207.46.248.16
119 138.88.157.52 1584
2004/08/29 07:16:01 I tcp 207.46.248.16
119 138.88.157.52 1583
2004/08/29 07:27:21 I tcp 207.46.248.16
119 138.88.157.52 1583
2004/08/29 09:26:30 I tcp 207.46.248.16
119 138.88.157.52 1584
2004/08/29 09:26:40 I tcp 207.46.248.16
119 138.88.157.52 1556
2004/08/30 09:25:31 I tcp 207.46.248.16
119 138.88.97.179 2013
2004/08/30 09:27:11 I tcp 207.46.248.16
119 138.88.97.179 2025
2004/08/30 09:31:21 I tcp 207.46.248.16
119 138.88.97.179 2055
2004/08/30 09:59:00 I tcp 207.46.248.16
119 138.88.97.179 2055
2004/08/31 09:12:13 I tcp 207.46.248.16
119 141.156.165.204 2357
2004/08/31 09:13:53 I tcp 207.46.248.16
119 141.156.165.204 2420
2004/08/31 09:17:13 I tcp 207.46.248.16
119 141.156.165.204 2448
2004/08/31 13:46:08 I tcp 207.46.248.16
119 141.156.165.204 2357
2004/08/31 13:46:08 I tcp 207.46.248.16
119 141.156.165.204 2448
2004/09/01 10:26:13 I tcp 207.46.248.16
119 141.156.165.204 2209
2004/09/01 10:30:43 I tcp 207.46.248.16
119 141.156.165.204 2232
2004/09/01 10:32:13 I tcp 207.46.248.16
119 141.156.165.204 2279
2004/09/01 10:33:13 I tcp 207.46.248.16
119 141.156.165.204 2278
2004/09/01 10:54:52 I tcp 207.46.248.16
119 141.156.165.204 2278
2004/09/01 14:22:30 I tcp 207.46.248.16
119 141.156.165.204 2209
2004/09/01 14:22:30 I tcp 207.46.248.16
119 141.156.165.204 2232
2004/09/03 10:05:47 I tcp 207.46.248.16
119 151.200.237.86 1791
2004/09/03 10:07:07 I tcp 207.46.248.16
119 151.200.237.86 1834
2004/09/03 10:19:37 I tcp 207.46.248.16
119 151.200.237.86 2042
2004/09/03 10:44:37 I tcp 207.46.248.16
119 151.200.237.86 1791
2004/09/03 10:44:37 I tcp 207.46.248.16
119 151.200.237.86 2042
2004/09/03 11:05:48 I tcp 207.46.248.16
119 151.200.237.86 1791
2004/09/03 11:07:08 I tcp 207.46.248.16
119 151.200.237.86 1834
2004/09/03 11:19:37 I tcp 207.46.248.16
119 151.200.237.86 2042
2004/09/03 11:44:37 I tcp 207.46.248.16
119 151.200.237.86 1791
2004/09/03 11:44:37 I tcp 207.46.248.16
119 151.200.237.86 2042
2004/09/04 09:22:41 I tcp 207.46.248.16
119 151.200.237.86 1614
2004/09/04 09:22:43 I tcp 207.46.248.16
119 151.200.237.86 1614
2004/09/04 09:23:41 I tcp 207.46.248.16
119 151.200.237.86 1623
2004/09/04 09:23:43 I tcp 207.46.248.16
119 151.200.237.86 1623
2004/09/04 09:29:31 I tcp 207.46.248.16
119 151.200.237.86 1658
2004/09/04 09:29:33 I tcp 207.46.248.16
119 151.200.237.86 1658
2004/09/04 10:08:30 I tcp 207.46.248.16
119 151.200.237.86 1658
2004/09/05 08:50:34 I tcp 207.46.248.16
119 151.200.237.86 1984
2004/09/05 08:52:44 I tcp 207.46.248.16
119 151.200.237.86 1998
2004/09/05 08:57:44 I tcp 207.46.248.16
119 151.200.237.86 2042
2004/09/05 11:58:22 I tcp 207.46.248.16
119 151.200.237.86 2042
2004/09/06 09:01:37 I tcp 207.46.248.16
119 151.200.237.86 1547
2004/09/06 09:02:27 I tcp 207.46.248.16
119 151.200.237.86 1554
2004/09/06 09:07:57 I tcp 207.46.248.16
119 151.200.237.86 1754
2004/09/06 09:54:26 I tcp 207.46.248.16
119 151.200.237.86 1554
2004/09/07 09:27:30 I tcp 207.46.248.16
119 151.200.237.86 1890
2004/09/07 09:32:20 I tcp 207.46.248.16
119 151.200.237.86 1891
2004/09/08 08:13:05 I tcp 207.46.248.16
119 151.200.237.86 2082
2004/09/08 08:20:15 I tcp 207.46.248.16
119 151.200.237.86 2241
2004/09/09 08:17:35 I tcp 207.46.248.16
119 151.200.237.86 2187
2004/09/09 08:22:35 I tcp 207.46.248.16
119 151.200.237.86 2222
2004/09/09 08:23:45 I tcp 207.46.248.16
119 151.200.237.86 2238
2004/09/09 08:25:05 I tcp 207.46.248.16
119 151.200.237.86 2237
2004/09/09 08:41:15 I tcp 207.46.248.16
119 151.200.237.86 2237
2004/09/09 11:19:43 I tcp 207.46.248.16
119 151.200.237.86 2238
2004/09/09 11:19:43 I tcp 207.46.248.16
119 151.200.237.86 2187
2004/09/10 10:03:35 I tcp 207.46.248.16
119 138.88.1.193 1468
2004/09/10 10:12:05 I tcp 207.46.248.16
119 138.88.1.193 1506
2004/09/10 10:18:25 I tcp 207.46.248.16
119 138.88.1.193 1581
2004/09/10 11:26:23 I tcp 207.46.248.16
119 138.88.1.193 1581
2004/09/10 11:26:23 I tcp 207.46.248.16
119 138.88.1.193 1506
2004/09/10 11:26:23 I tcp 207.46.248.16
119 138.88.1.193 1468
2004/09/11 10:02:57 I tcp 207.46.248.16
119 138.88.1.193 1560
2004/09/11 10:03:47 I tcp 207.46.248.16
119 138.88.1.193 1567
2004/09/11 10:05:17 I tcp 207.46.248.16
119 138.88.1.193 1586
2004/09/11 10:31:26 I tcp 207.46.248.16
119 138.88.1.193 1567
2004/09/13 10:22:54 I tcp 207.46.248.16
119 138.88.1.193 2263
2004/09/13 10:27:14 I tcp 207.46.248.16
119 138.88.1.193 2285
2004/09/13 10:41:54 I tcp 207.46.248.16
119 138.88.1.193 2447
2004/09/14 09:28:55 I tcp 207.46.248.16
119 138.88.1.193 1471
2004/09/14 09:33:35 I tcp 207.46.248.16
119 138.88.1.193 1504
2004/09/14 09:39:35 I tcp 207.46.248.16
119 138.88.1.193 1562
2004/09/14 10:22:25 I tcp 207.46.248.16
119 138.88.1.193 1504
2004/09/14 10:22:25 I tcp 207.46.248.16
119 138.88.1.193 1562
2004/09/16 10:48:17 I tcp 207.46.248.16
119 138.88.140.132 2281
2004/09/16 10:51:37 I tcp 207.46.248.16
119 138.88.140.132 2298
2004/09/16 10:55:37 I tcp 207.46.248.16
119 138.88.140.132 2338
2004/09/17 08:31:22 I tcp 207.46.248.16
119 138.88.140.132 1982
2004/09/17 08:37:42 I tcp 207.46.248.16
119 138.88.140.132 2021
2004/09/17 11:06:30 I tcp 207.46.248.16
119 138.88.140.132 1982
2004/09/17 11:06:30 I tcp 207.46.248.16
119 138.88.140.132 2021
2004/09/18 09:21:24 I tcp 207.46.248.16
119 141.156.168.177 2820
2004/09/18 10:05:13 I tcp 207.46.248.16
119 141.156.168.177 3248
2004/09/18 10:15:13 I tcp 207.46.248.16
119 141.156.168.177 3353
2004/09/18 11:26:42 I tcp 207.46.248.16
119 141.156.168.177 3248
2004/09/19 09:56:45 I tcp 207.46.248.16
119 141.156.168.177 1463
2004/09/19 09:57:15 I tcp 207.46.248.16
119 141.156.168.177 1469
2004/09/19 10:11:15 I tcp 207.46.248.16
119 141.156.168.177 1567
2004/09/19 15:34:01 I tcp 207.46.248.16
119 141.156.168.177 1567
2004/09/20 11:55:37 I tcp 207.46.248.16
119 141.156.168.177 3041
2004/09/20 11:57:27 I tcp 207.46.248.16
119 141.156.168.177 3052
2004/09/20 11:59:27 I tcp 207.46.248.16
119 141.156.168.177 3068
2004/09/20 12:02:07 I tcp 207.46.248.16
119 141.156.168.177 3067
2004/09/20 14:41:25 I tcp 207.46.248.16
119 141.156.168.177 3067
2004/09/22 14:05:59 I tcp 207.46.248.16
119 138.88.126.125 3961
2004/09/22 14:07:59 I tcp 207.46.248.16
119 138.88.126.125 3973
2004/09/22 14:15:19 I tcp 207.46.248.16
119 138.88.126.125 4061
2004/09/24 11:22:06 I tcp 207.46.248.16
119 141.156.165.51 2720
2004/09/24 11:24:46 I tcp 207.46.248.16
119 141.156.165.51 2734
2004/09/24 11:34:56 I tcp 207.46.248.16
119 141.156.165.51 2804
2004/09/24 11:55:16 I tcp 207.46.248.16
119 141.156.165.51 2720
2004/09/24 11:55:16 I tcp 207.46.248.16
119 141.156.165.51 2734
2004/09/25 11:34:46 I tcp 207.46.248.16
119 141.156.165.51 2388
2004/09/25 11:36:26 I tcp 207.46.248.16
119 141.156.165.51 2398
2004/09/25 11:43:25 I tcp 207.46.248.16
119 141.156.165.51 2463
2004/09/25 16:16:22 I tcp 207.46.248.16
119 141.156.165.51 2398
2004/09/25 16:16:22 I tcp 207.46.248.16
119 141.156.165.51 2388
2004/09/25 16:16:32 I tcp 207.46.248.16
119 141.156.165.51 2463
2004/09/26 07:37:35 I tcp 207.46.248.16
119 141.156.182.44 1701
2004/09/26 07:38:35 I tcp 207.46.248.16
119 141.156.182.44 1709
2004/09/26 07:46:45 I tcp 207.46.248.16
119 141.156.182.44 1791
2004/09/27 09:30:35 I tcp 207.46.248.16
119 141.156.178.226 1723
2004/09/27 10:13:15 I tcp 207.46.248.16
119 141.156.178.226 2003
2004/09/27 10:24:55 I tcp 207.46.248.16
119 141.156.178.226 2080
2004/09/28 09:44:49 I tcp 207.46.248.16
119 141.156.178.226 2567
2004/09/28 09:48:58 I tcp 207.46.248.16
119 141.156.178.226 2712
2004/09/28 09:56:38 I tcp 207.46.248.16
119 141.156.178.226 2764
2004/09/28 14:05:15 I tcp 207.46.248.16
119 141.156.178.226 2567
2004/09/28 14:05:15 I tcp 207.46.248.16
119 141.156.178.226 2712
2004/09/28 14:05:15 I tcp 207.46.248.16
119 141.156.178.226 2764
2004/09/29 08:59:51 I tcp 207.46.248.16
119 141.156.178.226 2424
2004/09/29 09:04:41 I tcp 207.46.248.16
119 141.156.178.226 2560
2004/09/29 09:09:21 I tcp 207.46.248.16
119 141.156.178.226 2610
2004/09/30 10:53:23 I tcp 207.46.248.16
119 141.156.178.226 1825
2004/09/30 11:02:23 I tcp 207.46.248.16
119 141.156.178.226 1995
2004/09/30 11:07:03 I tcp 207.46.248.16
119 141.156.178.226 2025
2004/10/01 08:00:44 I tcp 207.46.248.16
119 138.88.148.252 2109
2004/10/01 08:07:54 I tcp 207.46.248.16
119 138.88.148.252 2142
2004/10/01 08:14:54 I tcp 207.46.248.16
119 138.88.148.252 2182
2004/10/01 09:00:45 I tcp 207.46.248.16
119 138.88.148.252 2109
2004/10/01 09:07:55 I tcp 207.46.248.16
119 138.88.148.252 2142
2004/10/01 09:14:55 I tcp 207.46.248.16
119 138.88.148.252 2182
2004/10/02 07:47:59 I tcp 207.46.248.16
119 138.88.148.252 2264
2004/10/02 07:48:59 I tcp 207.46.248.16
119 138.88.148.252 2272
2004/10/02 08:14:29 I tcp 207.46.248.16
119 138.88.148.252 2467
2004/10/02 09:48:28 I tcp 207.46.248.16
119 138.88.148.252 2467
2004/10/02 09:48:28 I tcp 207.46.248.16
119 138.88.148.252 2272
2004/10/02 09:48:28 I tcp 207.46.248.16
119 138.88.148.252 2264
2004/10/04 09:48:19 I tcp 207.46.248.16
119 141.156.185.131 2868
2004/10/04 09:52:59 I tcp 207.46.248.16
119 141.156.185.131 2893
2004/10/04 10:18:09 I tcp 207.46.248.16
119 141.156.185.131 1077
2004/10/04 10:19:09 I tcp 207.46.248.16
119 141.156.185.131 1088
2004/10/04 10:37:09 I tcp 207.46.248.16
119 141.156.185.131 1077
2004/10/05 06:21:24 I tcp 207.46.248.16
119 141.156.185.131 1492
2004/10/05 06:21:25 I tcp 207.46.248.16
119 141.156.185.131 1492
2004/10/05 06:22:44 I tcp 207.46.248.16
119 141.156.185.131 1514
2004/10/05 06:22:45 I tcp 207.46.248.16
119 141.156.185.131 1514
2004/10/05 06:26:04 I tcp 207.46.248.16
119 141.156.185.131 1539
2004/10/05 06:26:05 I tcp 207.46.248.16
119 141.156.185.131 1539
2004/10/05 06:38:14 I tcp 207.46.248.16
119 141.156.185.131 1492
2004/10/05 06:38:14 I tcp 207.46.248.16
119 141.156.185.131 1514
2004/10/05 06:38:14 I tcp 207.46.248.16
119 141.156.185.131 1539
2004/10/06 11:25:13 I tcp 207.46.248.16
119 141.156.185.131 2411
2004/10/06 11:31:13 I tcp 207.46.248.16
119 141.156.185.131 2441
2004/10/06 11:36:33 I tcp 207.46.248.16
119 141.156.185.131 2477
2004/10/07 08:10:20 I tcp 207.46.248.16
119 141.156.185.131 1257
2004/10/07 08:11:30 I tcp 207.46.248.16
119 141.156.185.131 1268
2004/10/07 08:30:30 I tcp 207.46.248.16
119 141.156.185.131 1504
2004/10/08 10:10:16 I tcp 207.46.248.16
119 138.88.90.184 2937
2004/10/08 10:10:36 I tcp 207.46.248.16
119 138.88.90.184 2992
2004/10/08 10:11:46 I tcp 207.46.248.16
119 138.88.90.184 3053
2004/10/09 06:43:35 I tcp 207.46.248.16
119 138.88.90.184 1519
2004/10/09 06:52:15 I tcp 207.46.248.16
119 138.88.90.184 1679
2004/10/09 06:56:45 I tcp 207.46.248.16
119 138.88.90.184 1707
2004/10/09 16:05:28 I tcp 207.46.248.16
119 138.88.90.184 1519
2004/10/09 16:05:28 I tcp 207.46.248.16
119 138.88.90.184 1679
2004/10/09 16:05:28 I tcp 207.46.248.16
119 138.88.90.184 1707
2004/10/10 06:42:08 I tcp 207.46.248.16
119 138.88.90.184 1442
2004/10/10 06:42:18 I tcp 207.46.248.16
119 138.88.90.184 1466
2004/10/10 06:46:18 I tcp 207.46.248.16
119 138.88.90.184 1554
2004/10/10 08:39:36 I tcp 207.46.248.16
119 138.88.90.184 1442
2004/10/10 08:39:36 I tcp 207.46.248.16
119 138.88.90.184 1466
2004/10/11 08:09:30 I tcp 207.46.248.16
119 138.88.90.184 2036
2004/10/11 08:11:10 I tcp 207.46.248.16
119 138.88.90.184 2046
2004/10/11 08:17:00 I tcp 207.46.248.16
119 138.88.90.184 2088
2004/10/12 09:21:31 I tcp 207.46.248.16
119 141.156.169.129 2354
2004/10/12 09:22:41 I tcp 207.46.248.16
119 141.156.169.129 2353
2004/10/12 09:33:40 I tcp 207.46.248.16
119 141.156.169.129 2353
2004/10/12 09:33:40 I tcp 207.46.248.16
119 141.156.169.129 2419
2004/10/12 09:56:50 I tcp 207.46.248.16
119 141.156.169.129 2627
2004/10/13 14:58:36 I tcp 207.46.248.16
119 138.88.138.180 2532
2004/10/13 15:03:26 I tcp 207.46.248.16
119 138.88.138.180 2564
2004/10/13 15:03:46 I tcp 207.46.248.16
119 138.88.138.180 2563
2004/10/13 15:20:14 I tcp 207.46.248.16
119 138.88.138.180 2978
2004/10/14 06:31:11 I tcp 207.46.248.16
119 xxx.xxx.xxx.xxx 1970
 
J

JAyL

The EULA for Windows XP explicitly states that "The SOFTWARE is licensed,
not sold."

http://www.ibo-business.com/security_nomore_eula.htm

In other words, you will be giving Microsoft admin rights to your computer.
At any time Microsoft could download software to your computer which could
modify files and other software, and, upload files - without you knowing it.

There are a few things you can do.

Don't use windows update.
 
M

Mike Brannigan [MSFT]

The fact you license the software does not give us the right to download
software to your system without your permission or knowledge.

You should use Windows Update to keep your PC up to date with bug fixes and
security patches etc.

--

Regards,

Mike
--
Mike Brannigan [Microsoft]

This posting is provided "AS IS" with no warranties, and confers no
rights

Please note I cannot respond to e-mailed questions, please use these
newsgroups
 
J

JAyL

Mike.
Thats right, there is a diference between "secretly" and "in the
backgrownd", because automatic updates depends on your decition.
But the truth is that if you want that service to be set to run manually,
every time you connect to check for updates it will be "secretly" changed
to automatic, and also other services that may be disabled, you may find
them running again, and some of them not related with windows updated
funtionality, like spooler.
I am not saying that microsoft is doing anything ilegal, the language used
in the "end user license agreement" (
http://www.microsoft.com/windowsxp/sp2/proeula.mspx
) is very clear and not like other legal texts trying to hide some concepts
behind complex gramatical syntaxis.
If I put myself in a situation where i see and accept so many things that i
dont know or understand, then, unwanted results are only my responsability.

yours

Javier
 
R

Robin Walker

JAyL said:
Thats right, there is a diference between "secretly" and "in the
backgrownd", because automatic updates depends on your decition.

I do not understand what you are talking about.
But the truth is that if you want that service to be set to run
manually, every time you connect to check for updates it will be
"secretly" changed to automatic,

This is nonsense - no such thing happens.
and also other services that may be
disabled, you may find them running again,

This is nonsense - no such thing happens.
and some of them not
related with windows updated funtionality, like spooler.

I suggest that you need to check out your PC for a viral or spyware
infection. No such things happen as a result of using Windows Update.
If I put myself in a situation where i see and accept so many things
that i dont know or understand, then, unwanted results are only my
responsability.

Just because you don't understand something, it does not mean that that
thing is suspicious or malicious.

Many suspicious security experts have checked out the Windows Update
protocols very carefully, and have found no evidence of any "probing", or
any other unacceptable behaviour, by Microsoft. If there had ever been any
such evidence, you would have heard about it already: it would be all over
the newspapers.
 
J

JAyL

Robin.

I repeat, is perfectly under the terms of the agreement between the owner of
the software, in this case, microsoft, and the licensed user accepting those
terms. Not "suspicious or malicious" in any way in my opinion. Windows
update, so the diferent sites for support, downloads, knowledge base and
more, only ofers what it claims, information for the costumers to improve
their experince and get better results and if posible, more fun.
But, and please, one more time, not agains costumers in any way, I not
saying that and can not be get from my low quality english eather. I am
very clear.

But, that actitud in trying to give a diferent picture of what and how
windows (specially xp) have a lot of persistent programs, settings and
virtual users and accounts that there is no way to change or uninstall,(
i.e, pimball, wordpad, remote desktop, netmeeting, etc) invisible system
accounts, (i.e. anonymous logon, terminal service users, and a few more)
also invisible local groups (i.e. NT AUTHORITY, BUILTIN, etc), a global
group "none" including local accounts but with no access for no Domain
Controller machines, users in the localgroup "users" not mentioned at all
in any text or help file (i.e. NT AUTHORITY\Authenticated Users , NT
AUTHORITY\INTERACTIVE) that are not displayed with NET USERS command or in
users manager in control panel. And a constant trafic of authentication
packages recieved by the system, and anonymous logons by trust even if
policy permits no object with that right.
And, on porpose leaved for the end of this improvised list, an account so
called Administrator that is constantly getting "access denied". Maybe a
name like Manager fix better for it.

Well, maybe this lines I wrote may sujest that I am pointing a "suspicious
or malicious" activity. and again, that is not in my words but from the way
it is hiden and denied.

It was said that in the shadows averything looks bad.



with all the posible respect

Javier
 
J

JAyL

Sorry, for this second msg.
I forgot to said about windows update site. You can try setting Automatic
Updates Service, Background Intelligent Transfer Service, and Cryptographic
Services, to disabled, then connect to WU site and you will see how those 3
services are changed to automatic start. Also setting to manually start for
AU service will be make you get an error and after 2 or 3 times,
instructions for how to set it to automatic will be given.
So, is that suspicious or malisious ? Well, yes in some way. First because
is done without any prompt to the costumer, but again, with the right as
owner of the software. And second, because is showing the power to change a
so important and basic setting. completly silence and secretly, that even
those inside microsoft organization say they don't know what is all this
about.
Please, get this last as a friendly sarcasm because, I really think Windows
and Microsoft are great things but I also know that as a comercial company
not always executives are at the side of the public, their first job is to
show results in the monetary numbers, and let me say it in another way to be
clear, if there was anything wrong is not my duty or right to say so, is for
the justice and law.And is a basic concept. that is not restricted what is
not restricted, so is permited and must be accepted.

Thanks for your patient

Javier
 
N

NoNoBadDog!

You know, there are some very effective drug treatments for paranoia these
days. Have you considered asking one of those nice people in the white if
they can ask the nice doctor to perhaps prescribe some for you?

Microsoft has nothing better to do than to surf through the data submitted
by millions upon millions of consumer computers, looking for data that will
help them in their quest for world dominance and the total submission of all
mankind to their devious plans...

I feel really very sorry for you...you are wasting your life worrying over
nothing.

Bobby
 
J

JAyL

Sorry Bobby, but if your words are for replying to what i said right
before yours, I will sujest, and vithout any doubdt, that you should read
all the lines in a post and if posible more than one time to be sure you are
getting the idea.
In your post you included all my words but if you read it, I think you
didn't, you never would replay to the quoted post the way you did.
First, is not fair to go personal and sujest some kind of patology extracted
from ideas I have not expresed in my posts, but in adition I was trying very
carefully to be prevent and be clear on that point.
Also, your post is very negative in terms of how should be a civilized
interaction of opinions and information. Your words are poor in toleration
and respect for the others, and sadly very much like lot of other posts you
can see all ovrer arount.
How is usefull and in what way is helpfull and informative a NO.
Why ignore the wraitings and go against who post those wraitings with a poor
intent sugesting mental diagnosis and going on something so not related with
what is the topic of this group.

I, of course, have the right to ignore you like you did with what I wroute,
but I choose to not do that, and instead I prefere to tell you that my words
are there yet, you can re-read them, and if anything you find not posible or
false, you always can ask for more details.

Sorry for what i am sure is a very bad in gramatics and be sure that I am
trying my best, but spanish and english have very diferent sintaxis.

So, thanks for those medical adwise but I already have a personal doctor, in
fact is my family doctor from before my first breath.

Truly

Javier
 
N

NoNoBadDog!

I was not disputing anything you said...

but to believe that there is a grand conspiracy....MS does not care what is
on your computer. The functions that you describe serve functions other
than what you make them out to be.

Sorry to burst your bubble, but there is not a building full of men wearing
black suits and dark sunglasses poring over every bit of data that resides
on your hard drive. There is not someone sitting in a van pack with
electronic eavesdropping equipment monitoring the ebb and flow of traffic
from your computer. There are ways to circumvent everything that you
mentioned, and if you are half as intelligent as you make yourself out to
be, you would know that.

You are not the first to cry "the sky is falling" and I doubt you'll be the
last. You merely provided a moment of entertainment for me, and I was
serious in recommending professional help if you think that Microsoft wishes
to (or is able to, for that matter), monitor everything that happens on
every computer running Windows XP. Your description of the dark and
sinister functions are completely wrong.

Bobby
 
J

JAyL

I have to go back of what i said that there is no text or help file about
those virtual users and grups.

..-Well-known security identifiers (special identities) , use the following
path in explorer address bar or do a search in help and support center for
security identifiers

ms-its:C:\WINDOWS\Help\aclui.chm::/aclui_well_known_SID.htm

For aditional information see

..-Default Security Settings, use the following path in explorer address bar
or do a search in help and support center for default security settings.

ms-its:C:\WINDOWS\Help\sceconcepts.chm::/windows_security_default_settings.htm

If you run service pack 2 all posible dangerous active contents will be
safetly blocked by the new security bar in internet explorer that watchs on
windows explorer too, if you dont have SP2 i sujest to use help and support
center instead of ms-its protocol.

Those help pages include HyperText Transfer Protocols to Microsoft pages
with support and information for working on this topics





P.S. for Bobby

Try this, copy and paste my posts in any text editor, go to menu and click
in find , type "conspiration" or "conspi" to permit gramatic extentions and
then click find.. If you get a result then you can help me find a doctor
because I really dont remember where or when I said what you are responding
to me. Really, there is a situation of "deafs talks" here.

Maybe someone in microsoft is changing my posts in your pc to what you are
responding to. (Please, this is a sarcasm, just making fun of that
conspiracy you mencion but not me)

All the goods to you and yours

with respect

Javier
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads


Top