Overclock.net › Forums › Software, Programming and Coding › Networking & Security › help needed big time? bein port scaned!!!
New Posts  All Forums:Forum Nav:

help needed big time? bein port scaned!!!

post #1 of 22
Thread Starter 
so then as title says ive been getting virus probs even tho i try to keep a tight ship in this part of pc life but guess im not tight enough

i upgraded my virus from free AVG to Avast free home and found 3 trojans that i thought were false positives liek the cpu-z thing a few weeks back but when i noticed that my router lights were still going when i no that its should be idle so i started looking in to it and found that had some nastys on my harddrive and even after upgradeing my firewall to zone alarm pro so could try to get a grip on this problem..i no the I.P address of the arasehole that doing this and have emailed BT as its on their system but havent had any reply yet!!

i installed peer garudian2 to see what I.Ps were coming and going from my pc and their he was after i thought id got his programs off my pc he started to scan all my ports 1 by 1 to find a way back in.and im guessign he had as after i had installed zone alarm pro i noticed he had his I.P in my trusted list so i got this off my list and tryed to ban his I.P on PG2 but it wont let me do it and keeps trying to find a way in and even changed my password and username on my router which i thought was set up well (guessing it wasnt now lol) as my old password and id didnt get me so i reset my router and still couldnt get back in so must have a good control on my pc but ive tryed to find were his programs are and get rid which i thoguht id had done but even today he is still scaning me all day long but not every port now just this same 1 so has he found a way in now again ???

i wasnt gunna post his I.P but i will if it helps to solve this problem as i even did a fresh install other day before i new i had this problem so must of been on my usb harddrive wghich i keep my programs and videos/tunes on which i try to scan every day but guess getting past al lthat and gopt on to a fresh install and bein stupid im runng as admin which im gunan change as no cant do as mcu hif nto admin..but i dont want to do a fresh install of xp pro on 1 my harddrives and vista home on other drive i have cause gunan take ages then if he still in my sysem its point less till i get this arse hoel out my system again 4 good...and even when he stoped scanning my ports my pc was calling out to his I.P so im guessing the program is trying to call jhome and let him no im infected again??

what can i do to stop this an be sure he hasnt got control over my pc again when do a fresh install again..

and how coems i cant ban his i.p in PG2 is it cause he wont let me do it as he must have his claws in deep in my pc??

its amazing to see what I.Ps ur pc is trying to connect to even tho ud think it should be idle loads of companys are comign up like BBC and such but im not on their web site so guess must have tracking software even tho ran a few spyware programs to clean it out but still trying to call home to these companys and I.Ps at first when installe dPG2 had 3 or 4 I.Ps calling home most of em in holland/amsterdam in fact but im guessign i got rid of them as not doign that now but this 1 is trying and trying to get back in or has by looks of it!!!

so on top of my PSU and Ram probs i got this trouble going on big time...

what can i do to stp this happenign again after a fresh install as wanted to do fresh install nad update everything tio how i like it then copy an imange of it all so i can use that if i get troulbe and not have to start all over again with both OS as it takes hours and i havent got the time at mo to be doign this time after time tio find im infected again!!!

the other thing thats strange is that windows update wont let me install anyupdates now and its a real version not copy off net so no reason other than something /1 is stopping me as doesnt want me to update as might stop him getting in so im well out of date still btu tryed loads of thing to right it but nothing works...no i gotta reinstall but wanted to get this sorted first if i can do...

any ideas on what going on and anything i can do to stop him..thought i had semi good security but guess not!!!!

reps
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
post #2 of 22
Get a router. I doubt he'll be able to get through it.
    
CPUGraphicsRAMHard Drive
Core i5 M 520 NVS 3100M G.SKILL 8GB (2 x 4GB) 204-Pin DDR3 SO-DIMM DDR3... OCZ Vertex 3 128GB 
  hide details  
Reply
    
CPUGraphicsRAMHard Drive
Core i5 M 520 NVS 3100M G.SKILL 8GB (2 x 4GB) 204-Pin DDR3 SO-DIMM DDR3... OCZ Vertex 3 128GB 
  hide details  
Reply
post #3 of 22
Thread Starter 
Quote:
Originally Posted by redsox83381 View Post
Get a router. I doubt he'll be able to get through it.
yer got 1 he changed the password if ua read what i put would seen that lol.

and id changed all the standard setting this is what i dont get didnt think could do that over net but he did???

ive got a linksys router WAG54GS
newest firmware to...
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
post #4 of 22
PUNCTUATION IS YOUR FRIEND BECAUSE IT REALLY HERTZ UR EYES 2 READ SUMTHING LEIK THIS OVER AND OVER AND OVER AGAIN BECAUSE I CANNOT SPACE THE WORDS THAT I AM SPEAKING AND I REALLY NEED YOU TO PUT THIS WHOLE THING INTO SPELL CHECK.

Now, about your problem: Redsox person, first, you made me cry in 2004. Second of all, he said he had a router in that horribly punctuated mess.

Change your passkey on your router and fresh install. Try to update your ip (if it's not static) by renewing and releasing through DNS.

You can automatically reset the router password yourself by hard-booting it.

You're starting to sound like my friend at school that consistently believes he has a virus or a hacker on his computer because things from China show up on his peerguardian.

Relax. There are many IPs connecting to you at once, many of them from communist China because they like to censor everything. Take a deep breath, secure your router, read the thread about your PSU, and type your next few posts in clear English. This isn't Myspace.
Sager NP8150
(13 items)
 
  
CPUGraphicsRAMHard Drive
Intel i7-2630QM (@ 2.0 ghz) ATI 6990m 2 Gigs Mem 8 Gigs DDR3 @ 1333 750GB (7200RPM) 
Optical DriveOSMonitorPower
Blu-ray reader/DVD burner Ubuntu 11.04; Win 7 15.6” (1920x1080) a really big brick 
  hide details  
Reply
Sager NP8150
(13 items)
 
  
CPUGraphicsRAMHard Drive
Intel i7-2630QM (@ 2.0 ghz) ATI 6990m 2 Gigs Mem 8 Gigs DDR3 @ 1333 750GB (7200RPM) 
Optical DriveOSMonitorPower
Blu-ray reader/DVD burner Ubuntu 11.04; Win 7 15.6” (1920x1080) a really big brick 
  hide details  
Reply
post #5 of 22
Thread Starter 
Quote:
Originally Posted by JCJP View Post
PUNCTUATION IS YOUR FRIEND BECAUSE IT REALLY HERTZ UR EYES 2 READ SUMTHING LEIK THIS OVER AND OVER AND OVER AGAIN BECAUSE I CANNOT SPACE THE WORDS THAT I AM SPEAKING AND I REALLY NEED YOU TO PUT THIS WHOLE THING INTO SPELL CHECK.

Now, about your problem: Redsox person, first, you made me cry in 2004. Second of all, he said he had a router in that horribly punctuated mess.

Change your passkey on your router and fresh install. Try to update your ip (if it's not static) by renewing and releasing through DNS.

You can automatically reset the router password yourself by hard-booting it.

You're starting to sound like my friend at school that consistently believes he has a virus or a hacker on his computer because things from China show up on his peerguardian.

Relax. There are many IPs connecting to you at once, many of them from communist China because they like to censor everything. Take a deep breath, secure your router, read the thread about your PSU, and type your next few posts in clear English. This isn't Myspace.
lol lol fair enough mate fair enough....my bad...yer no peeps are worried bout this sort of thing but i did find 3 trojans on my pc and i had this same I.P on my trusted list in my firewall software so must be somethign to it..and its comeing from the U.K were i live not some far off place as ua say they do try that sort of thing..

no ua cant stop them scanning ur ports as thats just the internet isnt it??

but fact that he had his ip address in my trusted list and fact that my pc is trying to call home to him made my think i wasnt bein paranoid!!

and this was all after a fresh install as well but i had software on my usb drive that wasnt fromated as got all my tunes and dvds on!! so must have been on that im guessing as no other way to get back on to my system...

have changed all my pass codes but after i did this found i couldnt egt in and had to reset my router as couldnt get in so must have chnaged my id and password as dont use the admin standard as dodgy to use that i no...

no get lot of weird I.P in PG2 but this was different he was deff scanning my ports 1 by 1 and as it was same i.p as was on my trusted list that why thought it was a bad thing..i have def got rid of the trojans tho i no that much....
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
post #6 of 22
in C:\\Windows\\System32\\drivers\\etc thwere is a file called hosts

in that file add
127.0.0.1 localhost where local host is the adress #
post #7 of 22
Thread Starter 
Quote:
Originally Posted by noobdown View Post
in C:WindowsSystem32driversetc thwere is a file called hosts

in that file add
127.0.0.1 localhost where local host is the adress #
why do i want to do this?? and my I.P is the standard I.P that the router gives it so guessing should change this then to something else then...

and how do i spell check in the post boxes then tryed to look but couldnt see it...
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
The Super Sketch
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6600 Duo Core2@2400MHz P5NE-SLI Standard Nvidia 8600 GTS crucial Balistic 2GB 800MHz DDR2 
Hard DriveOptical DriveOSMonitor
2x250GB 7200rpm.Hitachai an Maxtor SATA2 Drives 2xDVD-ROM Drives 1xPhilips 1xTSSTCorp Vista Home Pro 32-BIT Philips 170C 8ms 17" 
KeyboardPowerCaseMouse
Saitek Eclipse 2 PS-06 EZ cool 600W Thermaltake Soprano Logitech G5 USB 
Mouse Pad
NONE! 
  hide details  
Reply
post #8 of 22
Quote:
Originally Posted by JCJP View Post
PUNCTUATION IS YOUR FRIEND BECAUSE IT REALLY HERTZ UR EYES 2 READ SUMTHING LEIK THIS OVER AND OVER AND OVER AGAIN BECAUSE I CANNOT SPACE THE WORDS THAT I AM SPEAKING AND I REALLY NEED YOU TO PUT THIS WHOLE THING INTO SPELL CHECK.

Now, about your problem: Redsox person, first, you made me cry in 2004. Second of all, he said he had a router in that horribly punctuated mess.

Change your passkey on your router and fresh install. Try to update your ip (if it's not static) by renewing and releasing through DNS.

You can automatically reset the router password yourself by hard-booting it.

You're starting to sound like my friend at school that consistently believes he has a virus or a hacker on his computer because things from China show up on his peerguardian.

Relax. There are many IPs connecting to you at once, many of them from communist China because they like to censor everything. Take a deep breath, secure your router, read the thread about your PSU, and type your next few posts in clear English. This isn't Myspace.


get used to it



To the OP, honestly, it sounds like someone you know is doing this. Do you have any friends (or enemies?) that would mess with you? You IP will get pinged all the time. Just look at the amount of stuff PG blocks, there are always people trying to find an open port. I haven't had a virus or trojan in a couple years and all I use is AVG and a router. Whenever I see a post like this that is continually targeting a specific IP, it usually is for a reason and that reason is usually cause the attacker is familiar with the person. GL
Current
(3 items)
 
  
CPUMotherboardGraphics
i5 6600k MSI Z170-A Pro RX-480 
  hide details  
Reply
Current
(3 items)
 
  
CPUMotherboardGraphics
i5 6600k MSI Z170-A Pro RX-480 
  hide details  
Reply
post #9 of 22
Quote:
Originally Posted by SketchyFish View Post
why do i want to do this?? and my I.P is the standard I.P that the router gives it so guessing should change this then to something else then...

and how do i spell check in the post boxes then tryed to look but couldnt see it...

*Why would I want to do that? My IP is the standard IP the router gives, so I guess I should change this to something else then.

How do I spell check on the forum? I tried to look, but I couldn't see it.


Follow his instructions, try and go to 192.168.1.1 in your browser and adjust options. You should have hard-booted the router already.

Quote:
Originally Posted by dralb View Post
get used to it



To the OP, honestly, it sounds like someone you know is doing this. Do you have any friends (or enemies?) that would mess with you? You IP will get pinged all the time. Just look at the amount of stuff PG blocks, there are always people trying to find an open port. I haven't had a virus or trojan in a couple years and all I use is AVG and a router. Whenever I see a post like this that is continually targeting a specific IP, it usually is for a reason and that reason is usually cause the attacker is familiar with the person. GL
Haha. Cardinal fan, not a Yankee fan, but it's a new year baby. I love going to Cub games out here in AZ and cheering for whatever team they play against. Oh how many trials I had in Chicago due to that wretched team.
Sager NP8150
(13 items)
 
  
CPUGraphicsRAMHard Drive
Intel i7-2630QM (@ 2.0 ghz) ATI 6990m 2 Gigs Mem 8 Gigs DDR3 @ 1333 750GB (7200RPM) 
Optical DriveOSMonitorPower
Blu-ray reader/DVD burner Ubuntu 11.04; Win 7 15.6” (1920x1080) a really big brick 
  hide details  
Reply
Sager NP8150
(13 items)
 
  
CPUGraphicsRAMHard Drive
Intel i7-2630QM (@ 2.0 ghz) ATI 6990m 2 Gigs Mem 8 Gigs DDR3 @ 1333 750GB (7200RPM) 
Optical DriveOSMonitorPower
Blu-ray reader/DVD burner Ubuntu 11.04; Win 7 15.6” (1920x1080) a really big brick 
  hide details  
Reply
post #10 of 22
And make sure you set your own password too. When you reset a router, the password goes back to default. There are lists that have the default passwords for all makes and models of routers, so it is easy for someone to get in.

(also, write it down. i always forget to do this and end up resetting to get back into my router, lol)
Current
(3 items)
 
  
CPUMotherboardGraphics
i5 6600k MSI Z170-A Pro RX-480 
  hide details  
Reply
Current
(3 items)
 
  
CPUMotherboardGraphics
i5 6600k MSI Z170-A Pro RX-480 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › help needed big time? bein port scaned!!!