June 13th, 2003, 08:45 PM
is my neighber hacked or what ? ? ?
ok this is how it all started today i woke up around 1 pm so i went to check my mail usual routine and i saw my neigber on irc so i was like ok am bored i am gona go nmap his ip to see what is he runing an all that stuff so i do nmap waitin for resoults an then BOOM
Starting nmap V. 2.54BETA7 ( www.insecure.org/nmap/ )
Interesting ports on Host (ip)
(The 1516 ports scanned but not shown below are in state: closed)
Port State Service
7/tcp open echo
9/tcp open discard
13/tcp open daytime
17/tcp open qotd
19/tcp open chargen
21/tcp open ftp
25/tcp open smtp
80/tcp open http
135/tcp open loc-srv
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
1025/tcp open listen
1026/tcp open nterm
1080/tcp filtered socks
12345/tcp filtered NetBus
12346/tcp filtered NetBus
31337/tcp filtered Elite
TCP Sequence Prediction: Class=random positive increments
Difficulty=19388 (Worthy challenge)
Remote OS guesses: Windows 2000 RC1 through final release, Windows Millenium Edition v4.90.3000
Nmap run completed -- 1 IP address (1 host up) scanned in 45 seconds
so ok it was litlebit suspicios so i try to ftp to host an it works hm but folders are empty coz i loged in as a anonymus ... so yes i tryd other thing
and it gives me just big bunch of text an some strange code ok
then i went to do litle search on a qotd and this is what i got http://www.perltk.org/ex/qotd.txt
so ok for chargen an time an that other stuff i couldnt get much info on wht it is but ya thats all i found out ftp server was
220 untracable Microsoft FTP Service (Version 5.0).
331 Anonymous access allowed, send identity (e-mail name) as password.
230 Anonymous user logged in.
so yes am gona wait till she gets home to go check it out ? any sugestion guys what should i do i was thinkin about seting up firewall to see where connections are coming from an then just to search around for thoes files an stuff any answer suggestion would be helpfull
Un Seen But Well Heard Of
June 14th, 2003, 03:55 AM
she doesnt have a firewall ? first things first ... INSTALL FIREWALL .... then investigate further ...
i was thinkin about seting up firewall
June 14th, 2003, 03:13 PM
I would install a firewall like MemorY said and turn off anything that doesn't need to be running If possible Don't rember much about WinMe but installing a firewall such as zone alarm will block most of the ports.
June 16th, 2003, 04:39 PM
he guys thx for the tips i went there found about hm 4 gb of pron an games that were served on some xdcc server second of all i found that guys ip when he was loging in coz i seted up a sniffit so it got me some info on that i sended email to isp and left machine runing for few days he wasnt loging in no more ehhe another kiddy busted
Un Seen But Well Heard Of