Go Back   Computer Forums > General Computing > Cyber Safety and Computer Security
Join Computer forums Today

Thread Tools Search this Thread Display Modes
Old 09-01-2004, 03:19 AM   #11
Site Team
root's Avatar
Join Date: Mar 2004
Posts: 7,872
Default Re: Getting Hacked

the best thing that you can do it research a little into his ISP, most ISP have anti misuse rules, if you can send his ISP a list of their rules, stating clearly how he has broken them. then some action maybe taken. but I doubt you will ever feel justice has been done.

root is offline   Reply With Quote
Old 09-01-2004, 10:46 AM   #12
Golden Master
135791's Avatar
Join Date: May 2004
Location: No
Posts: 5,427
Send a message via MSN to 135791
Default Re: Getting Hacked

CustName: Alexander Levin
Address: 520 Chalet Ct.
City: Saint Louis
StateProv: MN
PostalCode: 63141
Country: US
RegDate: 2004-07-19
Updated: 2004-07-19

NetRange: -
NetName: SAGO-207-150-167-200
NetHandle: NET-207-150-167-200-1
Parent: NET-207-150-160-0-1
NetType: Reassigned
Comment: NOCWorx SWIP Interface v1.5 - http://interworx.info
RegDate: 2004-07-19
Updated: 2004-07-19

AbuseHandle: ABUSE32-ARIN
AbuseName: Abuse Team
AbusePhone: +1-866-510-4000
AbuseEmail: abuse@sagonet.com

OrgTechHandle: TECHN20-ARIN
OrgTechName: Technical Support
OrgTechPhone: +1-866-510-4000
OrgTechEmail: support@sagonet.com

i just email there security

135791 is offline   Reply With Quote
Old 09-05-2004, 08:04 PM   #13
In Runtime
Join Date: Mar 2004
Posts: 191
Default Re: Getting Hacked

Haha, He's getting fucked up by the hurrican, his home will probably get flooded >
At0m1x is offline   Reply With Quote
Old 01-10-2005, 04:37 AM   #14
Beta Member
lca94's Avatar
Join Date: Jan 2005
Posts: 1
Default yes again


I have an attack from the same person with MSSQL_Null_Packet_DoS

i find ip adress and info of it: (may he changed it)

OrgID: C00970168
CustName: Alexander Levin
Street: 520 Chalet ct.
City: Saint Louis
StateProv: MO
Country: US
PostalCode: 63141
RegDate: 2004-12-13
Updated: 2004-12-13

NetHandle: NET-66-111-59-130-1
OrgID: C00970168
Parent: NET-66-111-32-0-1
NetName: SAGO-66-111-59-130
NetRange: -
NetType: reassignment
RegDate: 2004-12-13
Comment: NOCWorx SWIP Interface v1.5 - http://interworx.info
Updated: 2004-12-13

Do you think he probably try to enter my pc? my firewall pop an warning message about this attack ...
lca94 is offline   Reply With Quote
Old 01-15-2005, 12:05 AM   #15
Beta Member
Draven's Avatar
Join Date: Jan 2005
Posts: 4
Thumbs down Re: Getting Hacked

wow that ISP sucks big time!

Originally Posted by root
the person is a blue yonder cable customer.
their specific node is

the ports are (according to) http://www.iana.org/assignments/port-numbers
sgi-esphttp 5554/tcp SGI ESP HTTP
ms-sql-s 1433/tcp Microsoft-SQL-Server
netbios-ssn 139/udp NETBIOS Session Service
# 6124-6140 Unassigned
commplex-link 5001/udp
rfe 5002/tcp radio free ethernet
rfe 5002/udp radio free ethernet
fmpro-internal 5003/tcp FileMaker, Inc. - Proprietary transport
fmpro-internal 5003/udp FileMaker, Inc. - Proprietary name binding
# Clay Maeckel <clay_maeckel@filemaker.com>
avt-profile-1 5004/tcp avt-profile-1
avt-profile-1 5004/udp avt-profile-1
avt-profile-2 5005/tcp avt-profile-2
microsoft-ds 445/tcp Microsoft-DS
microsoft-ds 445/udp Microsoft-DS
# 6124-6140 Unassigned

networklenss 3410/tcp NetworkLens SSL Event
networklenss 3410/udp NetworkLens SSL Event

For the SQL (1433) if it was only on this port I'd say it was the SQL slammer (or variant) worm,
the guy is looking to port 139 to try to find the name of your machine, simply the amount of services he/she/it is looking for, (even to the extent they are looking for services that don't have properly assigned ports) tells me that this is (most likely definitly) a hacker.

Your only course of action would be to report this to blue yonder...

Don't hope for too much luck though, I once reported a guy running hacking scripts against the webserver at the company I work for to BT (nslookup showed the address belonged to a BT customer) they simply emailed me back to say port scanning and running illicit scripts against a server isn't illegal, and there was nothing they could do, unless we could proove that one of their customers had actually hack our machines gained entry and either stole erased or oftherwise chaged data...
-from the UKs largest ISP I found that a shocking response.
Draven is offline   Reply With Quote
Old 01-21-2005, 06:19 AM   #16
Beta Member
Join Date: Jan 2005
Posts: 2
Talking ahahahah

that dude live by me st.louis mo SOUTH COUNTY WOOT WOOT MHS MELVILLIE HIGH SCHOOL GOTTA REP THE M ALL i should stick some shit on his door and tp him

greggthegiant is offline   Reply With Quote

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

All times are GMT -5. The time now is 03:10 AM.

Powered by vBulletin® Version 3.8.8 Beta 4
Copyright ©2000 - 2016, vBulletin Solutions, Inc.
Search Engine Friendly URLs by vBSEO 3.6.0