I need a few more opinions, got one?

Printable View

June 28th, 2003, 03:45 AM
dopeydadwarf

I need a few more opinions, got one?

Long story short.
I have norton internet security 2003. I actively read the logs. A few days ago I was scanned by a pc in Kenya, the host was looking for commonly used backdoors. I've been scanned several times before this also. I think my security is pretty tight, so I never even gave the daily scans any thought. Yesterday I figured since I got some free time and it's been a long time since I've played on then net so I scanned him back . I used a simple little scanner called Nmap. Ever heard of it? We'll anyway. I discovered this pc was either a "zombie" or the kiddie had infected himself with a backdoor. Now, I am not going to attack this pc. The question is this, should attempt to contact the owner of the pc. Or should I contact the isp? Even more so how could I determine if this person is either a victim or a kiddie?

Thanks for any advice ideas or opinions.

Be safe and stay free
June 28th, 2003, 05:05 AM
cheyenne1212

If it was me I'd probably leave it alone since you wouldn't even be able to understand each other. You could try to contact the ISP but I doubt that they would really do anything about it.

Thats my opinion, but in the end its yours that counts.
June 29th, 2003, 12:54 AM
fourdc

My opinion?

You're ugly!

A second opinion,

So am I

Just kidding I'd ignore it.
June 29th, 2003, 05:10 AM
jaguar291

Re: I need a few more opinions, got one?

Quote:

Originally posted here by dopeydadwarf
Now, I am not going to attack this pc.

Thanks for any advice ideas or opinions.

First, I'll be completely honest with you... if someone was scanning my computer and I found out that they had a backdoor, I'd have some fun with them. I would change a few things, play around, see if I could freshin my 'skills' (none what-so-ever) up a bit... but then afterwards I'd leave him a note somewhere explaining what's going on.. like "You have a backdoor on your PC." or something like that.

Secondly, thats my opinion so ... don't have to do it.

= Cheers, jag291 =
June 29th, 2003, 10:52 AM
Und3ertak3r

Quote:

My opinion?

You're ugly!

A second opinion,

So am I

Just kidding I'd ignore it.

Gee someone beat me to the joke.. darn..

As for the prob dopeydadwarf.. Ignore is my cool state responce..
warm state responce?.. Notify his ISP.. if he is a victem he will be ok .. if he is a scriptkiddy.. pray they haven't introduced the death penalty for hacking ..nah sry.. he will have the crap scared out of him..

Now for the hot headed and likely to get yourself into trouble approach.. Assume he is using Win95/98 edit his Autoexec.bat .. to include a text about how Anti-Virus XYZ has detected a backdoor etc etc..end with a "Pause" so he needs to hit anykey to continue..

I recomend the cool head at worst the warm head approach..

but I think I am uglier than fourdc.. but thats just my opinion..

Cheers
June 29th, 2003, 11:57 PM
valhallen

or if its sub7 or something like it they usually have a remote deletion option you could log on leave him a msg (simple html file in his startup folder if he's on windows) and then delete the backdoor for him - he would still need to do a full scan of his pc to make sure there was nothing else there but that would cure one bit of it for him

v_Ln
June 30th, 2003, 01:49 AM
dopeydadwarf

Thanks for the advice, opinions and jokes. I may have to think on this one for a few more days. The evil in me says screw with him. I could make him piss down his leg, as a few of you have suggested. The white hat tells me to contact his isp. Like some of you have also suggested. Maybe I'll throw everything I got at this guy and see if he is just a user or a kiddie. None the less thanks for your time.
June 30th, 2003, 07:27 AM
scriptkiddie18

The ISP wont do nothing about it... so i would just leave it
but if the same guy does it again... and again
then you got something to worry about
and then contact the ISP
June 30th, 2003, 09:48 PM
AciDriveHB

That's not totally true scriptkiddie18. I know around here if the ISP is told that you are port scanning, that they will then keep an eye on your computer. Then when they catch you doing it they will kill your Internet connection until they figure out what they are going to do with you.

I personally would try contacting the ISP, just for the fact that it might be a victum who needs their computer looked at. And should get dealt with before they end up being part of a DOS and really have problems to stress over for awhile.

Just a thought...
~AciD
June 30th, 2003, 10:59 PM
cheyenne1212

Quote:

First, I'll be completely honest with you... if someone was scanning my computer and I found out that they had a backdoor, I'd have some fun with them. I would change a few things, play around, see if I could freshin my 'skills' (none what-so-ever) up a bit... but then afterwards I'd leave him a note somewhere explaining what's going on.. like "You have a backdoor on your PC." or something like that.

Jaguar: I think that what dopeydwarf is saying, is that the person that hes been getting scanned from has some backdoors open on his computer, and that someone might be using his computer to do the scans from.

At least I think thats what hes saying.