Vulnerability Development mailing list archives

Re: INZIDER!

From: unsolved () NETC PT (Joaquim Alfredo Da Costa)
Date: Thu, 18 Nov 1999 22:35:48 +0000


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I tested it running Netbus and Back Orifice on it and it doesnt
 detected it!!

                                I could be a an unknown trojan (there
are many, believe me!), in that case nor BO nor NetBus would work
'cause the server program wouldn't be the same. To find out if it is
a trojan, the best thing you can do is to monitor the traffic on that
port! If there is any connection, the first thing you should do is to
capture the IP adress unauthorised user that is on your system, then,
you could use a a port blocker (they are suppost to work) and block
the traffic on that port! If you have an anti-virus, report the
problem to the anti-virus company and they should at least fix it! If
not.... keep on using the port blocker.... and for precaution keep on
monitoring the "strange" open port!

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.1 for non-commercial use <http://www.pgp.com>

iQA/AwUBODR/Q4MP3j26HF78EQK3IwCfV6K09un7Wj61E2bBhCvH6ONdhCQAnjIR
En1lGbx5o8ctXUgTmzA+aY2E
=kaNw
-----END PGP SIGNATURE-----

Current thread:

Re: INZIDER! Wolfgang Gassner (Nov 17)
- Re: INZIDER! Blue Boar (Nov 17)
  - Re: INZIDER! rotaiv (Nov 18)
- Possible DoS attack against Microsoft SQL Server 7.0 kbelian (Nov 17)
- Re: INZIDER! Ryan Permeh (Nov 18)
- Re: INZIDER! Joaquim Alfredo Da Costa (Nov 18)
- Re: INZIDER! Robert Joosten (Nov 19)
- <Possible follow-ups>
- Re: INZIDER! Martin (Nov 18)
- Re: INZIDER! Kotz (Nov 19)
  - Re: INZIDER! BrainMaster (Nov 19)