Zone Alarm is blocking thousand of intrusion attempts, Should i be worried about this?


Im a bit worried that my Zone Alarm is blocking thousands of intrusion attempts every day.

I asked for help in and now im a bit worried that some of the tools they provide to help could be infected too, am i being too paranoid?

Malwarebytes Anti-Malware doesn't seem to find anything.

What should i do? Should i proceed with this guide? They ask me to run dds.exe that according to this site is has been labeled as infected by 6 antivirus.

Please help me i don't know what to do.
Asked May 29 '14 at 14:14
Add a comment

2 Answers

Hello Aaron.

ZoneAlarm is quite sensitive, and its well known for being paranoid.
First of all, you should give more details about your issue.
"Zone Alarm is blocking thousands of intrusion attempts every day".
Is this out going? inbound traffic attempts? or is it related to a file being blocked by HIPS?
If you have ran Malwarebytes and HerdProtect and nothing found. You should be good to go.
You could also run Kaspersky TDSSKiller to check for some rootkits.
Answered May 31 '14 at 5:31
Add a comment
In most cases - no.

ZA will show large amounts of normal internet traffic as "threats" e.g. if your ISP regularly pings your IP to see if it is awake, each one is shown as an "intrusion attempt". If you use torrents or other P2P programs, a lot of the traffic will similarly be classified as an intrusion attempt. ICMP echo requests (pings) are very common, and only a tiny, tiny fraction of those is anyone actually looking for a machine to "attack".

You should only be worried if your machine is already behind a firewall (a router) and you're seeing that many, as it means they are coming from within your network.
Answered Jun 9 '14 at 7:43
Add a comment

Know someone who can answer? Share a link to this question via email, Google+, Twitter, or Facebook.

Your Answer

Not the answer you're looking for? Ask your own question.