Login

04-22-2004, 02:41 AM

I have Norton AntiVirus 2003 and lately i've been attack 4 times (in the past 2 days i think). It says BackDoor/SubSeven or something like that with a IP is useing a port commonly used for Trojians. I did the trace option thing and first it said the comp is maybe in Chigago or (the second time I traced) Somewhere in Southern New York. Anyone know what could be causeing these attacks and/or have you experenced them. Also is there a way I can find who's doing this and maybe stop that person, I know I said traced but the info I get I don't know what I can do with it. I'll try to post more info about the attacker or attackers if I get attacked again.

*EDIT* Opps i meant to say Norton FireWall 2003.

Bluffer · 04-22-2004, 03:01 AM

I recently contracted something in this computer but norton took it out right away... Use all the protection you can & hope that your comp isd safe....

04-22-2004, 04:57 AM

Well I got attacked again by the Trojan horse... here all the info I could get...

CustName: Comcast Cable Communications
Address: 3 Executive Campus
Address: 5th Floor
City: Cherry Hill
StateProv: NJ
PostalCode: 08002
Country: US
RegDate: 2003-11-05
Updated: 2003-11-05

NetRange: 24.7.0.0 - 24.7.127.255
CIDR: 24.7.0.0/17
NetName: BAYAREA-11
NetHandle: NET-24-7-0-0-1
Parent: NET-24-0-0-0-1
NetType: Reassigned
Comment: NONE
RegDate: 2003-11-05
Updated: 2003-11-05

OrgAbuseHandle: NAPO-ARIN
OrgAbuseName: Network Abuse and Policy Observance
OrgAbusePhone: +1-856-317-7272
OrgAbuseEmail: abuse@comcast.net

OrgTechHandle: IC161-ARIN
OrgTechName: Comcast Cable Communications Inc
OrgTechPhone: +1-856-317-7200
OrgTechEmail: cips_ip-registration@cable.comcast.com

----

This info is different then the last one's (each one was different, but the IPs looked nearly the same). If anyone can help me it will be greatly appreciated.

whitetiger0990 · 04-22-2004, 05:03 AM

get a firewall =\
http://zonealarm.com

Dantheman10110 · 04-22-2004, 07:50 PM

Spybot - Search and Destroy
http://www.safer-networking.org/
it's free and it's awesome

Ruudboy · 04-22-2004, 08:16 PM

Quote:Well I got attacked again by the Trojan horse... here all the info I could get...

CustName: Comcast Cable Communications
Address: 3 Executive Campus
Address: 5th Floor
City: Cherry Hill
StateProv: NJ
PostalCode: 08002
Country: US
RegDate: 2003-11-05
Updated: 2003-11-05

NetRange: 24.7.0.0 - 24.7.127.255
CIDR: 24.7.0.0/17
NetName: BAYAREA-11
NetHandle: NET-24-7-0-0-1
Parent: NET-24-0-0-0-1
NetType: Reassigned
Comment: NONE
RegDate: 2003-11-05
Updated: 2003-11-05

OrgAbuseHandle: NAPO-ARIN
OrgAbuseName: Network Abuse and Policy Observance
OrgAbusePhone: +1-856-317-7272
OrgAbuseEmail: abuse@comcast.net

OrgTechHandle: IC161-ARIN
OrgTechName: Comcast Cable Communications Inc
OrgTechPhone: +1-856-317-7200
OrgTechEmail: cips_ip-registration@cable.comcast.com

----

This info is different then the last one's (each one was different, but the IPs looked nearly the same). If anyone can help me it will be greatly appreciated.

i got attacked by someone from the exact same place, i smell something fishy going on at that place, or they are going through them and at the people. But very suspicous.

04-23-2004, 07:16 AM

I used to have Spybot on a different comp, and i was about to put it on the one i have now but i read reviews about it that time and didn't know if I should risk it.

Nexinarus · 04-23-2004, 08:10 AM

The laziest but probably the most effective way to stop this is just get a firewall (highly recommending zone alarm like whitetiger0990 said).

edit: oh you have norton *firewall*. Get rid of it and get zone alarm Tongue

.

04-23-2004, 08:37 AM

I do have a firewall (Norton FireWall 2003)

Nexinarus · 04-23-2004, 08:42 AM

Ok. You say you are "attacked" but your firewall sees this and stops it right? If so dont worry about it, you are fine. Just ignore it.

(Yeah misread your post before, i thought you had norton antivirus),

Login
Username:
Password:	Lost Password?
	Remember me