How do i get rid of a possible hacker
Results 1 to 7 of 7

Thread: How do i get rid of a possible hacker

  1. #1
    Junior Member
    Join Date
    Oct 2002
    Posts
    20

    How do i get rid of a possible hacker

    i have an ip address logged by my firewall. so far there have 92 attempts at accessing my computer from this ip. in all casses a different port is used as well as different programs such as workflow server, Phineas Phucker Trojan/igcp to name just a few. How do i get rid of this jerk

  2. #2
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,324
    If you are DHCP, simply release and renew your IP address.
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  3. #3
    Junior Member
    Join Date
    Oct 2002
    Posts
    20
    thanks phishphreek80 but this has been going on since 12/26/02 and somehow he gets thru my router hardware to my friewall. i think my ip address has changed many times since then since it is dhcp

  4. #4
    Junior Member
    Join Date
    Jan 2003
    Posts
    15

    Lightbulb

    Go in Run and type WINIPCFG and press enter and click on the command Renew all for change your IP address.

  5. #5
    Senior Member
    Join Date
    Dec 2002
    Posts
    110
    The odds of him finding you every time you grab an ip from a pool is highly unlikely. Not only
    that but him getting thru your router is even more so. It is not impossible it just indicates a high level of skill. I would be inclined to say look from within first. You are probably already infested. Download The Cleaner by Moosoft and have a go with that. Secondly make sure your
    router is not broken. Have an online port probing service verify your connection.
    Beyond that what you are saying does not make a whole lot of sense. Possible just very unlikely.

  6. #6
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,786
    with the majority of consumer firewalls every connection attempt or probe to a port known to be used by a trojan is reported as that trojan even if that trojan is not responsible so i wouldn't give too much creedence to what the FW reports except for the fact that there is some kind of activity on/to these ports.

    did you change the default password on the router? if not that could account for all the probes someone could have changed the settings. Don is right there is a good chance you've been infected already.
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”

  7. #7
    Member
    Join Date
    May 2002
    Posts
    46
    If all else fails do a trace route to find the warz child and contact there ISP with a complaint.
    Provide some documentation such as a screen shot of the FW logs.
    I have had this problem before and the "crackers" ISP shut him down!
    Just my 2 cents
    tired of being called an ass

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides