I was just here on my network when my norton popped up saying a trojan atttempted to connect to my compuer. But the IP from the attacker was from my computer.
See atttached picture.
Printable View
I was just here on my network when my norton popped up saying a trojan atttempted to connect to my compuer. But the IP from the attacker was from my computer.
See atttached picture.
Maybe packet was constructed with your PC's IP as source address..
src and dst are the same (your PC' IP). Routers on Internet ignore the src ddress
cause routers route based on dst address. When your PC receives the connetion
it tries to respond, but it does so to itself and probably thats the way the trojan is
designed to initiate on victims PC..(however luckily Nortan notified you in advance)
I dont know ,,just a guess?????
Thanks for your help.
cheyenne1212
I been getting that same type of hit for a couple of days now
If any of you guys are using cable modem and want to eliminate possibility that someone may have your IP and is doing "maybe" what I sugested earlier, change your NIC card (if possible) and this will force your ISP to change your dynamic IP address...
Wait then and see if it happens again..If it does, then what I suggested is not what's happening, if it doesn't ???? (lets cross that bridge when we get to it..lol)
I'm not on cable though.
I have a DSL Modem connected to my router then my router connected to my pc's
There is a possiblity that it was just a "false positive" your firewall picked up from your outbound traffic. Those can be fairly common.
Hmmm,,,yea,,I see what you're saying
Sometimes you can call your ISP though and request they release your
IP and assign a new one,Tell them that your being hit with spoofed address..
They will usually fullfill your request depending on how convincing you are..
Quote:
Originally posted here by gunit0072003
If any of you guys are using cable modem and want to eliminate possibility that someone may have your IP and is doing "maybe" what I sugested earlier, change your NIC card (if possible) and this will force your ISP to change your dynamic IP address...
Changing your NIC won't always force an IP change. Certain cable ISPs do assign your IP address based on the MAC address of your NIC, however not all do this. Hell with some ISPs you can't even change your NIC unless you call them and ask them to update their listing for you.
As for the calling the ISP, he's on DSL which is usually dynamic. All he'd have to do to change his IP is reconnect his router.
I have the same set up through a USB portQuote:
I have a DSL Modem connected to my router then my router connected to my pc's
Use network cable cdkj its a lot better.
Yeah, if I want a new IP all I have to do is have my router disconnect from my modem then reconnect.
Bamm* instant new IP :D
Ok thanks
HT's right, i just happend to have an extra (and rather old) corkscrew NIC card laying around. I slapped it in, and no ip change was made. Just when i started to get excited. :(Quote:
Changing your NIC won't always force an IP change. Certain cable ISPs do assign your IP address based on the MAC address of your NIC, however not all do this. Hell with some ISPs you can't even change your NIC unless you call them and ask them to update their listing for you.
HTRegz
You might be right
I should of stated that with my experiences with Roadrunner in NY city and
Optimum Online/cablevision. That was the case..
Cheers
I suggest u do that..Quote:
Yeah, if I want a new IP all I have to do is have my router disconnect from my modem then reconnect.
So ur ip address is in that attachment u attached ?.You prob thought it was safe to post ur ip seeing as ur behind a router i dunno i dont really know what a router is,but if someone on these forums hate u they may decide to mail a false claim to ur isp saying that one of there users at ip 192.168.x.x is spamming/hacking them ect.So im just trying to warn u that u might wanna black out ur ip on that attachment and renew ur ip like u said above:
So:
a) Nobody can hack u
and
b) nobody can mail faulse claims to ur isp and get them to ban ur account :(.
Just a heads up..
lol dominaterx
that IP 192.168.1.100 is a privat IP and not my real IP on the internet.
Nobody can do anything with that IP.
What I mean, is my router connects to my DSL Modem. So my router has the IP assigned by my ISP. Then my router assigns my computers on my network a Private IP which is the 192.168.1.100. This allows my computers to surf the net without being exposed.
Maybe this pic will better explain it to you.
Ok,can you point me to a few tutorials on hardware firewalls and routers and how they work and where u got urs from ?
Not sure if your being facetious, but here is a great site: www.firewall.cx One of my personal favorites. :pQuote:
Ok,can you point me to a few tutorials on hardware firewalls and routers and how they work and where u got urs from ?
heres some links for you
http://www.comedition.com/Computers/...ns/routers.htm
http://www.hardwarecentral.com/hardw...torials/158/4/
I picked up my router from Best Buy.
You can find routers at any computer/electronics store. They range anywhere from $40 to thousands of dollars. Of course the home versions being the $40 ones.
Thanks FrameWork and cheyenne1212 for those sites,very informationative :).
About 2 years ago i got involved with some really nasty web defacers and i was just talking to one of them and for no reason he bypassed my zone alarm firewall and infected me with a boot virus.Just after that i did a bit of research on zone alarm personal firewall ( http://www.zonelabs.com) and relised it was a pretty crap firewall and switched to Outpost ( http://www.agnitum.com).Then i found out about hardware firewalls and unix & linux and how they are alot more secure than windows and software firewalls then i read somewhere else on the internet that software firewalls and windows (if configured correctly) are just as secure as hardware firewalls and any other OS.Could someone clear this up for me please ?.
My view on linux being more secure than windows, is that for me, windows is far more securer than *nix because I know windows very well. With Linux I don't know it well enough yet, therefore I don't know how to secure it well.
So if you know *nix better than a windows box then the *nix is going to be more secure for you, but if you know windows more than *nix then the windows box is going to be more secure.
Sure theres more viruses for windows than *nix, but believe me, *nix is still susceptible.