Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 4 of 4
  1. #1
    Status
    Offline
    t1kuZz's Avatar
    Newbie
    Join Date
    Jan 2008
    Posts
    29
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Unhappy microsoft-ds ini apa ya?

    cara nang kalin virus ini gimana ya?

    Microsoft Windows XP [Version 5.1.2600]

    (C) Copyright 1985-2001 Microsoft Corp.

    C:\Documents and Settings\PIJAR>netstat -a

    Active Connections

    Proto Local Address Foreign Address State
    TCP sysHACK:epmap sysHACK:0 LISTENING
    TCP sysHACK:microsoft-ds sysHACK:0 LISTENING
    TCP sysHACK:1031 sysHACK:0 LISTENING
    TCP sysHACK:1110 sysHACK:0 LISTENING
    TCP sysHACK:netbios-ssn 192.168.0.1:2879 SYN_RECEIVED <--- serangan awal
    TCP sysHACK:microsoft-ds 192.168.0.1:2878 ESTABLISHED <--virus berhasil masuk

    mikocok bisa nangkal ini gak?Click here to enlarge

  2. #2
    Status
    Offline
    rahwana's Avatar
    Forum Guru
    Join Date
    Nov 2007
    Location
    Sidoarjo, Jawa Timur, Indonesia, Indonesia
    Posts
    1,337
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    microsoft-ds adalah port yang dibuka oleh windows untuk keperluan file sharing. Bagaimana caranya menangkal adalah dengan memasang program firewall atau menutup port sharing tersebut di router sehingga file sharing tetap bisa dilakukan di LAN tapi tidak ke internet

  3. #3
    Status
    Offline
    t1kuZz's Avatar
    Newbie
    Join Date
    Jan 2008
    Posts
    29
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    thx juragan
    ooo gitu ya.Click here to enlarge
    bisa kasih scripnya gak yg ditutup port mana aja.
    ini sebenarnya termasuk pirus atau apa?
    kok setiap microsoft-ds masuk ke kompi situs2 tertentu di blog.
    ext:kaspersky or symantec
    tolong pemecahannya juragan dah mabok neh...

    Click here to enlarge

  4. #4
    Status
    Offline
    m3tr0mini's Avatar
    Member Super Senior
    Join Date
    Sep 2007
    Posts
    660
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    port yang ditutup 135-139 TCP/UDP
    port 445 TCP/UDP

    lakukan scan pada client (pake norman malware cleaner terbaru)
    dan update windowsnya ke SP3 + patch security terbaru.

  5. The Following User Says Thank You to m3tr0mini For This Useful Post:


 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 12
    Last Post: 12-03-2011, 15:52

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •