04-22-2011, 07:13 AM
|
#1 |
|
Beta Member
Join Date: Apr 2011
Posts: 4
|
Hack Attacks
Hi
During the past few days Norton has been reporting Intrusion attacks coming from various IP's and being System Infected: Tidserv Activity or Web Attack: Blackhole Toolkit Website 3 Sometimes the IP also includes a website address something like b5erty....... I have also noticed that I can no longer access the Microsoft XP update site with Explorer reporting that there is a connection problem. Thanks in advance. PD Just an update to say that the latest attacks are reported to come from:- 5berty3uertb.com - ip 91.199.75.65,443 PD |
|
|
|
05-08-2011, 08:03 AM
|
#2 |
|
In Runtime
Join Date: Jan 2006
Posts: 219
|
Re: Hack Attacks
Hmm, that's a interesting problem. I would recommend checking your dns settings. Also put a hardware router in between you and the internet. That will drastically reduce the attack hitting your PC.
__________________
Cisco Network Fundamentals Certified Cisco Routing Protocols and Concepts Certified |
|
|
|
|
05-09-2011, 08:31 AM
|
#3 |
|
Solid State Member
Join Date: May 2011
Posts: 17
|
Re: Hack Attacks
How on earth would that be a DNS issue?!? impossible! All DNS does is translate an IP address to a 'human-friendly' name e.g. 216.239.51.99 would be translated to google.com. Even if the DNS address had been changed it would just mean that address's wouln't translate correctly.
Out of curiosity is your AV updating? The reason I say this, is because this sounds like the activity of 'Fake-AV' as 'Fake-AV' stops the updating of legitimate AV programs as well as downloading Windows updates. You may wish to try downloading and installing the following application used to remove the most common fake-av applications. Download Remove Fake Antivirus 1.76 Free - This application is used to remove fake Antiviruses from your computers - Softpedia |
|
|
|
|
05-09-2011, 08:41 AM
|
#4 |
|
Solid State Member
Join Date: May 2011
Posts: 12
|
Re: Hack Attacks
I agree highly with MattJones with the DNS issue i do not believe this is the problem.. But infact a Fake-AV, Now going on with what matt as said do you have any user accounts on your computer that are passworded? Reason i ask is i have dealt with many laptops with fake AV "System tools 2011 etc" and sometimes going in to another User account will allow you to update your AV in my experience "Sophos" and then doing a full scan after updates have installed, the Fake-AV removed like a troopa
|
|
|
|
|
05-09-2011, 09:46 AM
|
#5 |
|
In Runtime
Join Date: Jan 2006
Posts: 219
|
Re: Hack Attacks
Well, a DNS cache can be poisoned to misdirect and prevent access. Anyways, I would recommend changing to a better antivirus and doing a malware scan. If you became infected your hostfile could be compromised. Also mattjones you got how a dns works backwards. It translates a human-friendly name to a ip address. Not the other way around.
__________________
Cisco Network Fundamentals Certified Cisco Routing Protocols and Concepts Certified |
|
|
|
|
05-09-2011, 12:46 PM
|
#6 |
|
Solid State Member
Join Date: May 2011
Posts: 15
|
Re: Hack Attacks
Yup gotta go with Atari on that one too.... Try malwarebytes, all fraudulent/fake AV's i've encountered in windows are pretty easily conquered by malwarebytes
 EDIT: Sorry didn't realise BrokenAtari's link was also to MalwareBytes lol my bad |
|
|
|
 |
«
Need software that can block certain files from being put on computer off of a disc
|
Content Filter?
»
| Thread Tools | Search this Thread |
| Display Modes | |
Linear Mode
|
|
All times are GMT -5. The time now is 09:50 AM.
