in

eEye Digital Security

The endpoint to vulnerability starts here.

 
eEye Digital Security » Blink Forums » Troubleshooting » Event Log working, but Rules are missing?

Event Log working, but Rules are missing?

Last post 10-15-2008 7:08 AM by Blue1978. 6 replies.
Page 1 of 1 (7 items)
Sort Posts: Previous Next

  • 10-07-2008 6:47 AM

    • Free
    • Top 25 Contributor
    • Joined on 03-30-2008
    • Posts 25

    Event Log working, but Rules are missing?

    Reply Contact

    My event logs show

    Event ID: BLINK-SFW-520001
     Severity: Low
     Description: System wide firewall rule matched
     Remote Port: 138
     Rule Name: Test
     Request: Denied
     Remote IP: 192.168.168.142
     Local Port: 138
     Local IP: 192.168.168.255
     Alert: Yes
     Protocol:

    UDP

    But the rules are all gone. I see only two choices here, an exploit in the program or a hardware issue with my computer. How do we figure out which one it is without the usual hardware side saying its software and vice versa?

    Emailed screen capture to nicula

    Did an application repair and my rules now show. Wondering if there is any chance you want any files from a system restore rollback? Have them available if needed.

    [edited 10-07-2008 @ 0700 (-7GMT) to note email of image with alert window visible.]

  • 10-09-2008 9:35 AM In reply to

    Re: Event Log working, but Rules are missing?

    Reply Contact

    Is this on Blink version 4.1 or 4.04? 

  • 10-13-2008 11:26 AM In reply to

    • Free
    • Top 25 Contributor
    • Joined on 03-30-2008
    • Posts 25

    Re: Event Log working, but Rules are missing?

    Reply Contact

    Blink Personal Version 4.1.1 - and I changed the name of the rule to something much more descriptive, still having the same problem.

  • 10-13-2008 4:18 PM In reply to

    Re: Event Log working, but Rules are missing?

    Reply Contact

    What happens if you simply stop and restart the interface? I suspect this is just a GUI glitch where the rules are not displayed but they are still acting.

    Regards
    Laurentiu Nicula

  • 10-13-2008 8:12 PM In reply to

    • Free
    • Top 25 Contributor
    • Joined on 03-30-2008
    • Posts 25

    Re: Event Log working, but Rules are missing?

    Reply Contact

    I tried that and I also tried the logoff / log back on - neither is a solution. If I close the GUI (either fully or just making it go offscreen) it doesn't solve the problem. If I completely shut down the application, the service does not want to restart. I'm beginning to suspect I'm infected with something that the AV isn't catching - and I've looked at other AV solutions. I do have my HDD on RAID0 and would be happy to make the drive available so the sigs would hopefully be available to ensure others dont get infected with this crap ... thinking that there might be some correlation between my problem and the problem the other user had/has?

  • 10-14-2008 3:56 PM In reply to

    Re: Event Log working, but Rules are missing?

    Reply Contact

    While that scenario is entirely possible, I would try once more to uninstall and reinstall Blink. That should clear whatever errors you might have starting Blink.

    Regards
    Laurentiu Nicula

  • 10-15-2008 7:08 AM In reply to

    Re: Event Log working, but Rules are missing?

    Reply Contact

    I would say uninstall Blink one more time using Blink's uninstallation feature and then follow my recommendations at this post to clean up your system some and then retry it again:

    http://forums.eeye.com/forums/t/752.aspx

    I always refer people to this, because this has been the only way I have been able to correct such issues on my system (other than reloading my OS from scratch).   Unfortunately, Windows does sometimes become "funky" and needs reinstalled regardless of what you try.
Page 1 of 1 (7 items)
© 1995 - 2009 eEye Incorporated