I was installing a firefox addon called tamper data, then avast said it had stopped an attacker from -IP- (Never got it, Where can I find the message, it’s not in logs)

It happened again, Got pic this time

Which is your firewall?
Is your Windows fully updated?

I have SP3, I don’t think any Updates are needed, I have windows firewall on, not sure if anything of my antiviruses have one though

I have spyware Blaster, Superantispyware, Avast, MBAM

Well… SP3 and Windows firewall should be doing their job and protecting you against DCOM exploits…
Anyway, avast is blocking the attack…

I’m going to google what a DCOM exploit is

Hi, most likely you have a windows service listening on port 135. http://www.firewallleaktester.com/wwdc.htm is a handy application that will disable this service for you.Hope this helps,tim

Thanks, the port was open, I closed it now

Hi RNfromTN,

Something to be learned here every day: thanks for the tool RNfromTN - ready on the desktop,

polonus