Question about constant intrusion.

I keep getting an alert that an intrusion attempt was blocked. But over and over again. I am glad it has been blocked but the notifacation is annoying. of course i know i can stop the notifacation... but furthermore, i want to know if i should worry. I dont know if it is a file on my computer or not. As far as i know it is not,but, another pc/server/etc is trying to "intrude" or hack into my computer. I think, but i want to make sure. I dont do any kind of p*** on my computer so i dont know why i would be getting this intrusion... here is screenshot... Thanks in advance.

 

Looks like you can stop the notifications. You may also want to try and search lovelyporn on your system and delete.

 

Nothing found on my computer... Any more suggestions or comments?

 

i would use another virus malware scanner and see for sure.

cheers ...

 

I would also take the drive out of the notebook, put it in an external enclosure, and connect as a passive storage device to another computer running A/V and anti-spyware apps, and then scan the drive that way - doing it this way is a bit time-consuming, but it should allow you to bypass anything that's gotten into the boot system and is using that to hide itself.

The other thing you can do is d/l, install, and run Microsoft's Network Monitor 3.1 - that will give you real-time data on packets coming in and going out of your system, and the source and destination IPs and ports. That should help you to pinpoint exactly what it is Norton thinks it's hitting on when it gives you the intrusion alerts.

 

It looks like you've got a trojan on your PC that's trying to update itself, or you keep opening a file that's got a buffer overflow exploit embedded into it with some shellcode to download and execute the file. Viruses scanners wouldn't likely pick up the buffer overflow. Does it happen seemingly randomly or when you do something specific?

Like Shyster says you might want to monitor the packets going in and out of your PC. I'd use SmartSniff (free) and winpcap (free packet capture driver) to do it though. No-ones trying to intrude upon your computer from outside; something is already in there to force your computer to try and connect to 'lovelyporn'.

 

I once did some reading...
(Got a few thousand blocke connections via CA on our own wireless...)

It is possible that you get firewall warnings from packet that got lost in a network.
(Wi-Fi or LAN)
It needn't be though...