I have several attacks over the past few days and they are getting more and more intense by the day........

I have ips and such but I am not quite euipped to find out all I need to know about these idiots... is there anyone here that can take this info I have and make somehting of it? I have a feeling I know who it is and I KNOW what they are after, but it sure would be nice to find out for sure.

ICQ me if you can help me out....... 423517.

Thanks,
Tam

What kind of attacks?

Attacks to your pc?
Attacks to your server(s)?
Attacks to your backbone?

Tell me more, perhaps i can help.

hi Much0S - i talked with her and these "attacks" are only sub7, netbus scans etc. and connection attemps - she had norton firewall installed which gave errro messages fore each connection.

If you have a big isp dialup address, cable address or you are just "lucky" you will get scanned for these trojaners sometimes more - sometimes less. nothign to care about expect you don´t scan your system for virals/trojans and you monitor the outgoing connections to the net.

Much0S - Every day or so I get hit with a trojan 7 trying to access my pc though my firewall. I use Nortons firewall....

ou happen to now exactly what that is?

Manuel - Thanks, looks like you we're writing the answer to my question as I was writing the question...hehe

hehe Shannon at least you didn´t had so much spell errors in your post, like me. I only wish Tam would answer my icq message and accept the file transfer since i wanted to take some sleep since ~2 hours *g*

I wanted to tell you (Tam) that you perhaps should deinstall Norton Firewall and get ZoneAlarm and disable the alarm popup thing. If you don´t know what kind of kiddis "scan" your pc - you won´t worry about it (and in that case you don´t have to) ;o)

get rid on nortan its not that great, go with ZONE ALARM PRO, or BLACK ICE DEFENDER, I use both at the same time. You have to remeber if a hacker wants in, nothing will stop him but 90% of attempts are from script kiddies and with one or both of these firewalls you should be ok.

<font face="Verdana, Arial" size="2">Originally posted by smokedawg:
go with ZONE ALARM PRO, or BLACK ICE DEFENDER

if a hacker wants in, nothing will stop him</font>

Black Ice is no good, don't waste your time downloading it, just get zone alarm pro.

There are ways of stopping crackers, some things have no known exposits and unplugging the power or network cable always stops a cracker.

You can put a stop to this real quick if you are running Linux.. or have an old box around that you could install Linux on and use as a firewall. Even a 486 would work no problem.

There are several programs that will detect scans from an IP and if they scan more then one port in like a minute it will log the IP and just make it look like your box is not on the net..that IP will hit your box.. the program will see that it is a logged IP and not respond.. making it look like your computer is turned off.

I use it on my network at home and at the office. Never have a problem.. only thing i have to do is clear the log once in awhile.. it gets pretty big after 6 months.. blows my mind all the little punks put there scanning.

Also, having a firewall (even if they could hack that) makes it even more difficult to get to your data that would be on a box in the internal network.

Seems involved.. but it is as safe as you can get! No hacks 5yrs and counting! =)

Anyone out there running Zone Alarm willing to give me their IP? I would love to unleash my tools on you.. see what I find open.

Anyone out there that would like to do the same to me feel free to contact me. My box will ignore you in 10 seconds.. can't get too far with nothing to scan.

atp@altern.org
or
31353073 on ICQ to set something up.

TwinTone

TwinTone - good point but if you have to delete the logs etc. I would say you already have to much work ;o) since what do you do if you get an 100mbit attack or ddos attack from several servers ? I am using ZoneAlarm at my home pc and didn´t had one problem with anything since ~2 years. On the office I use an IDS System to detect as you said prot scanns, certain exploits, attacks etc. and block their ip in realtime. If you have an fast network like 100mbit or above 10mbit you can log it in binary/tcpdump format so you will be able to log way more. Aboute the ZoneAlarm IP - i could give you an IP of my offices boxes but since they are both behind one IDS system and to nat hardware firewalls and get scanned from our IDS system several times it should get hard. ZoneAlarm blocks ICMP packets as standart which already give the great "point and click hackers" some problems since they will get confused why they can´t send you an icpmp ping, trace you through the normal systems etc. I think today the most important thing is not the so called software firewall for your Home PC - better get the best and up to date Anti Viral software ...

I get "sniffed" for the Netbus trojan sometimes 100 times a day.

I'm seriously considering getting the email address of the author of NetBus and giving it to a few hundred "free porn in your email" type scams. http://bbs.adultwebmasterinfo.com/ubb/smile.gif

That woould be bill.gates@microsoft.com

=)

Nah,these are closer:

General Information:
info@spectorsoft.com
Sales:
sales@spectorsoft.com
Press/Public Relations:
press@spectorsoft.com
Technical Support:
support@spectorsoft.com

Of course, he/they would claim that as his/their software has legitimate uses, any use for hacking is "purely coincidental".

Yeh, right.

Suffer, I love seein' you assholes get in trouble, I've never been to a board where more assholes(there is no other word to describe you, just the right balance)congregate in one place. http://bbs.adultwebmasterinfo.com/ubb/smile.gif http://bbs.adultwebmasterinfo.com/ubb/biggrin.gif
no honestly SUfFER Tam, as you seem to be one of the more regular posters going by your stats, so I figure you must be a hell of an asshole, worse than the rest. http://bbs.adultwebmasterinfo.com/ubb/biggrin.gif http://bbs.adultwebmasterinfo.com/ubb/biggrin.gif

Zonealarm is piss weak, netstat is of more use. and anyone who uses gay little win32 "tools" is a t00l.

He's baa-aack..........

Just keep those 65,000 ports closed, don't run attachments in email... You'll be fine =)

Yeah right..

euphamon, yup you are right babe... I am one of the assholes that people like you can't seem to get to...... backdoor or otherwise, eh? Guess you guys aren't the elite you SAY you are, no? http://bbs.adultwebmasterinfo.com/ubb/tongue.gif

Oh DUH!! Forgot to thank the ones here that have helped me...... I took all the advice, most of it in fact, and am much more secure now in my work and my security, thanks guys....... as always you have been a huge help to me.

Tam

No I won´t ask if "one person" on this post is already old enough to visit a board which target "adult" webmasters or if he spells "elite" with one or two "3" or something else - I just have to reply ;o) ZoneAlarm (the free one) is weak if you use it on an network since it blocks all netbios traffic etc. but for the regular surfer zonealarm is more then enough. But of course as you say these "gay" 32bit tools are silly. Perhaps i should get my good old Win 3.1 installed - there i have great 16bit tools or did you want to tell me that only (l)inux is the real os for the regular surfer.. ?

It's not that I can't get to you, it wasn't even an attempt, it was just an observation, a lot of webmasters appear to be complete assholes.
As for webmastering requiring intelligence? negative. A basic knowledge of elements of marketing, a little bit of design (basic), some hard yakka and time. But as for sheer complexity and cognitive skills, it's unwarranting. There we go - pushed myself into 1st gear for you, I know I've gotten to you, because after reading a single post I know what's important to you, testing me isn't adequate.

Since you dropkicks haven't caught onto what I did 5 min after loading up ZoneAlarm, ill expend a moment. It won't prevent anything purely because attacks are made outside of the parameters of the programs it monitors - it's worth anything except false sense of security. There we go I've helped you, I've fucked you, what more could a person want.

Hacking? nunya, what's hacking?

euph