The "Freeola Customer Forum" forum, which includes Retro Game Reviews, has been archived and is now read-only. You cannot post here or create a new thread or review on this forum.
The icon was flashing so I decided to click on it...
I read the stats it shows me:
Last attacked - 30/12/02 15:42
Recent Intrusion Attempts - 4
Recent Attempted Attackers - 1
Most Frequent Attacker - 80.230.205.199
I'm with NTL so my internet is always on, that being the reason I ~bought~ the firewall...
I know the 4 intrusion attempts are fine but the attempted attack doesn't seem to good to me?
Something to do with a trojan virus, no viruses on the PC though...
I know what a trojan is and all that, I'm just not too sure that I should have somebody attacking my PC...
Saying that, I read somewhere on NTL that it may be them just verifying PC connections and firewalls do give problems like this. I'll go and have a look now...
I read the stats it shows me:
Last attacked - 30/12/02 15:42
Recent Intrusion Attempts - 4
Recent Attempted Attackers - 1
Most Frequent Attacker - 80.230.205.199
I'm with NTL so my internet is always on, that being the reason I ~bought~ the firewall...
I know the 4 intrusion attempts are fine but the attempted attack doesn't seem to good to me?
Something to do with a trojan virus, no viruses on the PC though...
I know what a trojan is and all that, I'm just not too sure that I should have somebody attacking my PC...
Saying that, I read somewhere on NTL that it may be them just verifying PC connections and firewalls do give problems like this. I'll go and have a look now...
Page:
phi11ip wrote:
> I just want to find that place where I can check the IP addresses...
You don't need to go anywhere else, the tools are installed on your PC :O) Fire up a command prompt (Start->Run->Type in 'command', or 'cmd' if you're on Win2K/XP) and type
tracert 80.35.219.83
This program will trace the route between you and that computer, displaying the hostname of each computer the packets travel through. It also resolves the hostname of the target, which is 83.Red-80-35-219.pooles.rima-tde.net. I'm afraid I don't recognise that hostmask, from the look of where it's going I would say it's somewhere in Spain (as it goes via Telefonica).
I wouldn't worry about it. I got a letter from NTL not too long ago saying they had detecting intrusive scans coming from my ip address - my Linux server had been compromised (serves me right for not patching it |o/) with a program that automatically scanned other computers for vulnerabilities and propogated itself across the net. Most intrusive scans are performed by bots running on computers whos users aren't aware they've been compromised.
> I just want to find that place where I can check the IP addresses...
You don't need to go anywhere else, the tools are installed on your PC :O) Fire up a command prompt (Start->Run->Type in 'command', or 'cmd' if you're on Win2K/XP) and type
tracert 80.35.219.83
This program will trace the route between you and that computer, displaying the hostname of each computer the packets travel through. It also resolves the hostname of the target, which is 83.Red-80-35-219.pooles.rima-tde.net. I'm afraid I don't recognise that hostmask, from the look of where it's going I would say it's somewhere in Spain (as it goes via Telefonica).
I wouldn't worry about it. I got a letter from NTL not too long ago saying they had detecting intrusive scans coming from my ip address - my Linux server had been compromised (serves me right for not patching it |o/) with a program that automatically scanned other computers for vulnerabilities and propogated itself across the net. Most intrusive scans are performed by bots running on computers whos users aren't aware they've been compromised.
Bah. In the last week, I've had 45 attacks on my computer.
And that doesn't include the hardware firewall!
It really doesn't bother me anymore. I know I've got as much protection as I can get.
And that doesn't include the hardware firewall!
It really doesn't bother me anymore. I know I've got as much protection as I can get.
I remember reading about NTL doing stuff that was suspected as being hacking, they just said to leave it and to not have a go at the employees who do it!
It some kind of routine check...
I just want to find that place where I can check the IP addresses...
It some kind of routine check...
I just want to find that place where I can check the IP addresses...
phi11ip wrote:
> Here we go again:
>
> Attempt to connect to local computer using the Backdoor/Subsever
> Trojan horse blocked.
>
> IP: 80.35.219.83
>
> Where do I check up IP addresses?
That sounds like an NTL address, though I could be miles out
> Here we go again:
>
> Attempt to connect to local computer using the Backdoor/Subsever
> Trojan horse blocked.
>
> IP: 80.35.219.83
>
> Where do I check up IP addresses?
That sounds like an NTL address, though I could be miles out
Bonus wrote:
> Bottom left hand corner shows active internet connections, if that IP
> address is being accessed by any programs it will show in the remote
> column.
No programs open, nothing...
No IPs being accessed...
I'm not too worried anyway...
> Bottom left hand corner shows active internet connections, if that IP
> address is being accessed by any programs it will show in the remote
> column.
No programs open, nothing...
No IPs being accessed...
I'm not too worried anyway...
Some times people just do a port scan on loads of IP addresses and you can get 100's of attacks.
Open Internet Security window
Click -> Options -> Internet Security -> View Statistics
Bottom left hand corner shows active internet connections, if that IP address is being accessed by any programs it will show in the remote column.
Like I said, peer to peer file share programs are usually the main culprits (i.e. Kaza, WinMX etc).
Click -> Options -> Internet Security -> View Statistics
Bottom left hand corner shows active internet connections, if that IP address is being accessed by any programs it will show in the remote column.
Like I said, peer to peer file share programs are usually the main culprits (i.e. Kaza, WinMX etc).
Here we go again:
Attempt to connect to local computer using the Backdoor/Subsever Trojan horse blocked.
IP: 80.35.219.83
Where do I check up IP addresses?
Attempt to connect to local computer using the Backdoor/Subsever Trojan horse blocked.
IP: 80.35.219.83
Where do I check up IP addresses?
If your running any peer to peer programs, such as Kaza Lite, then these sometimes interpret messaging communications through these programs as Trojan viruses.
Well, that's what Norton tells me anyway. It's easy to find out, check the ip address against the list in the active ip's and see which program is using it.
Well, that's what Norton tells me anyway. It's easy to find out, check the ip address against the list in the active ip's and see which program is using it.
Your firewall strikes me as dumbing down a really difficult subject. There is simply no way to filter incoming connections like "safe, safe, safe, attack!, safe, safe, etc", unless your firewall has intimate knowledge of every security vulnerability in every internet service you might ever run. That would imply some kind of virus-checking on incoming packets, which would slow the whole kaboodle down *enormously*.
If you have a broadband connection, you're likely to get probed every half hour or more, just by programs which can take tens of thousands of addresses at once and look for common vulnerabilities or open ports.
If you have a broadband connection, you're likely to get probed every half hour or more, just by programs which can take tens of thousands of addresses at once and look for common vulnerabilities or open ports.
Page: