Question about Microsoft Computers & Internet

1 Answer

I am getting LOADS of RPCSS attacks from user domain A-D COMP GUI%GUICONFIG#SRULE@NBENABLEOTHER#-TCP

Posted by on

Ad

1 Answer

  • Level 3:

    An expert who has achieved level 3 by getting 1000 points

    All-Star:

    An expert that got 10 achievements.

    MVP:

    An expert that got 5 achievements.

    President:

    An expert whose answer got voted for 500 times.

  • Master
  • 627 Answers

This is caused by internet worm
use combofix to cleanup your harddrive

Posted on Jul 24, 2009

Ad

1 Suggested Answer

6ya6ya
  • 2 Answers

SOURCE: I have freestanding Series 8 dishwasher. Lately during the filling cycle water hammer is occurring. How can this be resolved

Hi,
a 6ya expert can help you resolve that issue over the phone in a minute or two.
Best thing about this new service is that you are never placed on hold and get to talk to real repairmen in the US.
the service is completely free and covers almost anything you can think of.(from cars to computers, handyman, and even drones)
click here to download the app (for users in the US for now) and get all the help you need.
Goodluck!

Posted on Jan 02, 2017

Ad

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

1 Answer

What is Gateway Ping


Ping is used to check for a network path to a specific host. In this case the script will ping from domain.com to the host you provide. Ping should be the first TCP/IP diagnostic tool you use when tracking down a network problem. Ping uses a series of Internet Control Message Protocol (ICMP, often-pronounced eye-comp) messages, that produces an Echo message to which every host responds. When Ping uses the ICMP messages and replies, it can determine whether the other system is alive, and also compute the round-trip delay in communicating with that system. So Ping can show you how fast the connection is between two ip addresses or domains.

Oct 11, 2011 | Samsung LA40A550 40 in. HD-Ready LCD TV

1 Answer

1020 sharing not supporting domain users is there any problem


I'd need more info before i could tell you anything. My guess is that not everyone is on the same domain. I assume you are smart enough to know if that is the case, otherwise you wouldn't come running to fixya. Check your security settings, and if you have antivirus, make sure that the program isn't mistaking your attempts to print as attempted attacks on your network.

Feb 17, 2011 | HP LaserJet 1020 Printer

1 Answer

Messages from Symantec Endpoint Protection about net SID problems


Hi,

A simple search by entering the SID in google would have answered this for you. However, I am glad to help point you in the right direction. Follow this link and check out the information. I believe this will answer your questions.
http://www.symantec.com/connect/forums/sid-20386-ms-rpcss-attack-2-detected-help-please

Brian

Jul 14, 2010 | Sony Computers & Internet

1 Answer

PlayStation 3 keep getting nat type 3 when need type 2


Hi
I was having problems with my PS3 as well I did the following

updated firmwire

Also I assign static ip address on my PS3 and forward ports used by PS3 to static IP address of PS3 on routers firewall.

Ports used by PS3:
udp 3478
udp 3479
udp 3658
tcp.domain (port 53)
udp.domain (port 53)
tcp.http (port 80)
tcp.https (port 443)
udp.ssdp (port 1900)
tcp.amandaBackupInitiation (10080)
tcp.Jabber SSL/TLS (port 5223)
tcp.10075
tcp.10078
tcp.10079

If your still getting problems configure the PS3 to be in your DMZ.

DMZ will be under applications and gaming. Just look for that setting in your routers setup page and add your PS3 IP address to it.

Mar 15, 2010 | Linksys WRT160N Wireless Router

1 Answer

I have been getting Semantec Endpoint msgs that traffic has been blocked due to detection of attack - 2 types - 1. MS RPC network DDE BO and 2. MS RPCSS Attack(2) detected; The recent msgs are the...


It is good that semantec that is Norton is protecting your computer. But still , i would suggest you to download and run malwarebytes to scan the computer.
use the following link: www.malwarebytes.com
Also, turn on the window firewall.
http://support.microsoft.com/kb/283673

Dec 06, 2009 | Microsoft Computers & Internet

1 Answer

How do i set my tcp port range and udp


Following steps will help you out:-
1)Open the router gui with 192.168.1.1 or http://routerlogin.net by typing it in the address bar for the user name as admin and password as the word password only.
2)On the Netgear smart wizard .left hand side you will find a small blue/purple column with different categories , look for the one that says advanced and click on port forwarding/port triggering and select port forwarding from there and click on Add custom service from the bottom .
3)A new screen will appear which will have the following options:-
Service name:-
Service type:-tcp , udp , tcp/udp
Starting port:-
Ending Port:-
Server Ip Address:-(enter the value in range) and apply the setting's.

Nov 16, 2009 | NetGear RangeMax WPN824 Router

1 Answer

Since pitting a new hard drive in as the other had


As you have apparently been the victim of a trojan in the past (although it didn't neccessarily mean you needed a change of HDD) you are quite right in your concern.

I do not know what the request refers to even though I've searched security sites for information on it, however follow the steps below for your own peace of mind.

Go here

http://housecall.trendmicro.com/uk/ and carry out an online scan (you will have to download an activex component but Trend Micro is a trusted security company) The length of time for the scan depends on several factors, speed of internet connection, speed of PC and size of HDD. Any malware found can be cleard at the click of a button and will be self explanatory.

Next go here and download Malwarebytes (the free version) install and run.
http://www.malwarebytes.org/mbam.php

Finally and MOST IMPORTANT ensure that whichever anti virus software you have installed is up to date and run a scan on a regular basis.

Please note Housecall and Malwarebytes are NOT replacements for anti virus software and do not offer real time protection.

I will be happy to provide you with recommended security software if you wish just email me on pippincp@msn.com

Pip

Jul 25, 2009 | Microsoft Windows XP Home Edition with...

1 Answer

Remove a ACE from an ACL using CLI


Sure thing:

First to enable the web interface, try command:

ip http server

Also try:
ip http port 80

That will enable it on the default port

As for the ACL's I looked at the documention and I believe the syntax is to put a deny in front of the command and that will remove it.

Of course the GUI will be easier to deal with

The manual can be downloaded from:

http://support.dell.com/support/edocs/network/pc6024/en/index.htm

Jul 14, 2009 | Dell PowerConnect 6024 24x1000 Mbps...

2 Answers

Our WIN 2003 server is down and has been sent for repairs and only one user can no more log onto the domain while others still can work. The built-in administrator and domain administrator can still logon...


have you got a replacement server or member servers that are doing the other roles whilst the other server is sent off for repairs ?

Are the users logging in locally into the computers or what exactly ?

If the first then create another account in AD for the user to temporarily use ( you can use robocopy utility with the robocopy gui )

robocopy gui here

windows resource kit which includes robocopy here

Then you can copy there data from there existing home area to there new home area ( which will duplicate it for a while ) so that they still have access to there data.

If its a local account they are using then obviously just create another account on the computer they use

Apr 16, 2009 | Microsoft Windows Server Standard 2003 for...

1 Answer

Alert msg from syamantec endpoint protection MS RPCSS attack


So lets just clarify what this is.

The Intrusion Prevention Engine in SEP is detecting network based attack traffic for a Microsoft vulnerabity - this will correspond to a security patch from Microsoft.

Whether you want to blindly ignore it is your choice, but you should at least confirm it is EITHER a false positive OR that your machines are patched against the vulnerability BEFORE you simply allow the traffic and potentially put yourself at risk.

Think about, do you know what machine the attack is coming from - is it on your network (it looks like it is), is it running SEP, is patched, etc.

Apr 05, 2009 | Computers & Internet

Not finding what you are looking for?
Computers & Internet Logo

Related Topics:

23 people viewed this question

Ask a Question

Usually answered in minutes!

Top Microsoft Computers & Internet Experts

micky dee

Level 3 Expert

2879 Answers

Piyal Perera
Piyal Perera

Level 3 Expert

528 Answers

Les Dickinson
Les Dickinson

Level 3 Expert

18407 Answers

Are you a Microsoft Computer and Internet Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...