I located intruder, Now what?
Hello All, 'nother Newbie here.
Using ZoneAlarm freebee, IE, OE, Yahoo and Hotmail on substantial Me system and DSL.
Just found net-Tools and easily identified the intruder. The intruder appears to be my service provider Verizon.net (GTE.net).
They use various addresses but all start out as 4.6*.*.* and various ports. They have hit on about every port on my machine.
The report shown by Net-Tools whosis shows: "SmartWhois tamqfl*-ar7-4-6*-056-248.vz.dsl.gtei.net (4.6*.56.248)"
Also shown is the e-mail address of a person which appears to be the same one each time.
I installed ZA yesterday and already have 50+ hits. I am recieveing mail and newsgroup entries just fine on all accounts and even the transfers to OE are working great.
Tell me: Do I contact the e-mail address? Does any part of the "SmartWhois tamqfl*-ar7-4-6*-056-248.vz.dsl.gtei.net (4.6*.56.248)" indicate a web page?
Not new to computing at all but this Sneaky Pete thing is a bit different for me.
Thank you for listening and will be very appreciative of any advice/guidance.
Thanx
Clunk
I located intruder, Now what?
Howdy Old Clunker:
"Hello All, 'nother Newbie here."
We were all newbies once.;-)
"Using ZoneAlarm freebee, IE, OE, Yahoo and Hotmail on substantial Me system and DSL.
Just found net-Tools and easily identified the intruder. The intruder appears to be my service provider Verizon.net (GTE.net).
They use various addresses but all start out as 4.6*.*.* and various ports. They have hit on about every port on my machine."
4.6*.*.* covers a lot of territory. Unlikely all hits were from your service provider (ISP). Probably some hits from other ********s of your ISP.
"The report shown by Net-Tools whosis shows: "SmartWhois tamqfl*-ar7-4-6*-056-248.vz.dsl.gtei.net (4.6*.56.248)"
For more specific info run domain name tamqfl*-ar7-4-6*-056-248.vz.dsl.gtei.net thru this: [url]http://www.geektools.com/cgi-bin/proxy.cgi[/url]
"Also shown is the e-mail address of a person which appears to be the same one each time.
I installed ZA yesterday and already have 50+ hits."
DSL and cable connected comps are prime targets for hackers/crackers/script kiddies because of high bandwidth and usually static IPs. A good firewall is a must.
"I am recieveing mail and newsgroup entries just fine on all accounts and even the transfers to OE are working great."
So, what's OE?
"Tell me: Do I contact the e-mail address?"
Probably a waste of time. For first time firewall users this is fun: [url]http://www.neotrace.com/[/url]
"Does any part of the "SmartWhois tamqfl*-ar7-4-6*-056-248.vz.dsl.gtei.net (4.6*.56.248)" indicate a web page?"
No.
"Not new to computing at all but this Sneaky Pete thing is a bit different for me."
Was for me too. Spies, evil doers everywhere. "Ignorance is bliss.";-)
"Thank you for listening and will be very appreciative of any advice/guidance."
Good luck on your Internet privacy/security adventure.;-)