Resolved Suspicious Network Activity?

I recently installed "Tinywall" firewall, and it gives a detailed report of all the connections going on. I noticed an awful lot of connections from "system" that I have blocked, and noticed no adverse effect on my internet. I also have the service host periodically trying to connect to points unknown. Does anyone know why it's doing that? I also ran netstat from cmd and I have found 2 open connections that don't seem to make sense. While most have IP numbers, I have 2 open connections to "www:53207" and "www:53206 ", which are the port numbers, it seems, the other address involved starts with 127.0.0.1.
What are these, does anyone know? The firewall doesn't seem to show me these. Maybe I am too concerned, but just because I am paranoid does not mean that they really aren't out to get me.....

 

Hi Micros, A Google found this: On most computer systems, localhost resolves to the IP address 127.0.0.
https://en.wikipedia.org/wiki/Localhost
Hope this settles your paranoia. Neil.

 

Yeah, the loopback But, my firewall shows "system" trying to connect to a number of addresses that aren't the usual 224.0 or 169.254 routines. They are SITES, that come back to "wikimedia ", "cox communication ", "OVH ", and "NTT America ". Why is "system" trying to connect to these? Is that normal? "OVH" is in France.....

Paranoid probably doesn't work here, I'd say a site like this is more pronoid, or at least might make you that way. Pronoid is the opposite of paranoid, if you are pronoid, than you think that everyone is secretly conspiring to help you in some way.

 

I try not to worry too much about trivia - Life's too short. I would take a trip to the Malware and Security Forum and let Broni see if your system is clean. Neil.

 

I opened up the installation source image, and copied all the exe files from system32 and overwrote the ones in my system32 files, since I did notice that at least one was 1kb larger. I still show "system" connecting to all kinds of sites that there is no reason for. I don't know what "system" means, or which program is responsible for that, but I'm getting warmer. I have a laptop sitting around that has had it's original system restored, but never been used yet, I think I'll try setting that up, and see what if anything it tries to do.

 

Quite often 127.0.0.1 is the IP for your DSL Modem or your Computer's Ethernet Port, Although I invoke my DSL modem's configuration utility with 192.168.1.1 and the Ethernet is invoked a different way because I'm running a WiFi Router between my DSL and my Windows and Android Devices.

This is an educated guess, someone else may have more accurate input.

 

127.0.0.1 is a system reserved IP. Anything destined for 127.0.0.1 is discarded & never makes out of the system.

It cannot ever be IP address of router or modem.

 

127.0.0.1-254 is the loopback and basically tells you that your TCP/IP software stack is installed on your machine