tag:blogger.com,1999:blog-3160485247929481680.post3912526870667265596..comments2024-02-06T01:10:35.040-08:00Comments on Hacking while you're asleep: Detecting ZeroAccess in your Network with Fortigate and OssimJavier Nietohttp://www.blogger.com/profile/05976836878834402718noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-3160485247929481680.post-80529288831407819142014-04-02T10:57:10.813-07:002014-04-02T10:57:10.813-07:00Thank you Javier!!
You helped me nail this down q...Thank you Javier!!<br /><br />You helped me nail this down quick! Luckily it's only a single PC on my LAN that was infected. Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3160485247929481680.post-54124555601579758912014-03-04T03:20:14.971-08:002014-03-04T03:20:14.971-08:00In desperation (for a short time) it is also possi...In desperation (for a short time) it is also possible to just tell windows firewall to only allow those ports to communicate with the local IP number, killing all external traffic.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3160485247929481680.post-41977994894973264902013-10-15T08:54:20.527-07:002013-10-15T08:54:20.527-07:00That's awesome Javier! None of the security si...That's awesome Javier! None of the security sites provided any useful port information, but you nailed it. Thank you for helping me to detect the computer that was infected with zeroaccess.Anonymousnoreply@blogger.com