My Norton Internet security has been having a lot of activity lately - someone is trying to get into my system using a “Backdoor/SubSeven Trojan Horse”. My Norton blocks them, but they keep trying and trying. Also, Norton shows the IP address of the person who’s trying to hack me.
I don’t know much about this stuff, but I was wondering, what can I do? Basically, I want to either (a) send a complaint to someone about this or (b) send a “fuck you” to the person trying to hack me.
Is it the same IP addy every time? You can look it up and e-mail the ISP, with copies of the logs, but sadly if it’s a nationwide ISP, like AOL, not much will probably be done.
Hey my Norton’s does the EXACT same thing. Once a day!! or more. I did look up the address and it was different people. My question is though, what can one accomplish with a “Backdoor/SubSeven Trojan Horse”.
According to Symantec, “Backdoor.SubSeven is a Trojan horse, similar to Netbus or Back Orifice. It enables unauthorized people to access your computer over the Internet without your knowledge.”
Norton Internet Security works well. I did the “probe my ports” test and they all came up stealth with it enabled. I disabled it and only one port came up stealth. Sweet.
A trojan horse is a program that someone tricks you into running on your computer, often disguised as something desireable. The most common sort has the effect of opening up your computer to anyone who knows your IP address. With this sort of access, a cracker can do pretty much anything that you could do sitting in front of the keyboard.
What your security program is picking up is probably someone randomly checking to see if you have such a trojan running-- Basically, knocking on the door to see if anyone answers. If you do have such a trojan, then you’re screwed, but if you don’t, then this is pretty much just an annoyance.