GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   I've been hacked... (https://gfy.com/showthread.php?t=80911)

Krome 10-06-2002 09:37 PM
I've been hacked...
 
What do I do:

Somebody is scanning your computer - Port Scan -
Back Trace -
inetnum: 80.117.0.0 - 80.117.255.255
netname: TINIT-ADSL-LITE
descr: Telecom Italia
descr: Accesso ADSL BBB
country: IT
admin-c: BS104-RIPE
tech-c: BS104-RIPE
status: ASSIGNED PA
remarks: Please send abuse notification to [email protected]
notify: [email protected]
mnt-by: TIWS-MNT
changed: [email protected] 20020905
source: RIPE

route: 80.117.0.0/16
descr: INTERBUSINESS
origin: AS3269
notify: [email protected]
mnt-by: INTERB-MNT
changed: [email protected] 20011210
source: RIPE

person: BBBEASYIP STAFF
address: Via Val Cannuta, 250
address: I-00100 Roma
address: Italy
phone: +39 06 36881
e-mail: [email protected]
nic-hdl: BS104-RIPE
notify: [email protected]
changed: [email protected] 20001019
source: RIPE


7 Seconds Later, Same person -
Active Response - Traffic from IP address 80.117.201.157 is blocked from 10/07/2002 01:37:41 to 10/07/2002 01:47:41.

at exactly 01:47:46
Active Response which started at 10/07/2002 01:37:41 is disengaged. The traffic from IP 80.117.201.157 was blocked for 600 seconds.

but in the severity box it says information, is this just information for me that the block was removed or did the person get information?

(OK I know alot of you are going to start to scare the shit of out me now!!)

greentea 10-06-2002 09:43 PM
Your Fucked!

FORMAT C: NOW

chaze 10-06-2002 09:43 PM
We run into those attempts daily, Just keep your security up.

You might make it.

You might want to check out proxypass.com they block hacker proned proxies good product we use it on all of our shared servers.

It's the hackers that... oh shit I almost spilled th beans on what can really do damage.


Good luck,

Charles

Krome 10-06-2002 09:47 PM
chaze, could you email me please and tell me what you edited out.

Thanks
[email protected]

hyper 10-06-2002 09:51 PM
try this..

Please send abuse notification to [email protected]

EscortBiz 10-06-2002 10:10 PM
youve been served

Krome 10-06-2002 10:15 PM
Quote:
Originally posted by hyper
try this..

Please send abuse notification to [email protected]
I did send an abuse email but that is not really going to do that much good is it as they will not be able to trace the person who did it....or will they?

Krome 10-06-2002 10:45 PM
I know it is not much and this shit probably happens 5 times a second but it has really pissed me off.

pr0 10-06-2002 11:19 PM
pear.ukc.ac.uk:80
209.182.73.155:80
newcollproxy.newcollpont.ac.uk:80
network183-92.wctc.net:8080
200.23.18.105:80
deland-002.mpinet.net:80
ns2.applicable.com:80
205.169.30.11:80
mail.hospice1.org:80
mail.deli2000.com:80
1eos30.eosinc.com:8080
216.221.99.139:8080
ws32.ambientfactor.fi:80

And they got lists of those a fucking mile long. Good luck reporting them all. Portscans can be done from behind socks proxies which can be chained by up to like 20 links. Bouncing all over the world. Just protect yourself the best you can, sit back & enjoy the ride.

pornJester 10-06-2002 11:37 PM
lol, i get dozens of port scans daily.. probably just some script kiddies hitting servers at random. If you have good managed hosting you should be fine.. if you don't have anyone handling your security end then maybe you should be concerned.

beemk 10-06-2002 11:53 PM
yeah you will probably never catch me, errr.... i mean them


All times are GMT -7. The time now is 06:05 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123