A Question about Back Door Sub seven Trojan

[Brutuskend]

I have Norton INTERNET security running on my computer and I've been getting hit 5-6 times a day by The Back Door Sub Seven Trojan.

Recently I've started logging the IP addys of where these attacks are coming from.

My question.

Do the people doing this KNOW and are they purposefully trying to hack me, or is this a virus running on their computer that they aren't aware of.

Would reporting their IP address to there ISP do anything to stop these attacks?

 

[Schadenfroh]

probably port scaning

 

[MercenaryForHire]

WTF? The same morons, consistently trying?

Sounds like they're either infected or plain stupid.

Report em either way.

- M4H

 

[Brutuskend]

Well I'm not sure if it's the same fvcktards all the time or not. That's why I decided to start keeping a list of what IP addys are doing this.

I've had other back door hacks attempted as well, but the Sub seven seems to be the most common one.

 

[Brutuskend]

No one knows for sure?

 

[hevnsnt]

I would also agree that they are script kiddies subnet scanning..

 

[Gyrene]

AFAIK it would be an intentionaly thing. I report them, and then let the ISP work it out from there.

 

[Gyrene]

Originally posted by: dtyn
AFAIK it would be an intentional thing. I report them, and then let the ISP work it out from there.

 

[hevnsnt]

I guess you really mean that huh.

 

[Brutuskend]

Looks like I found my answer here

SubSeven was made to fill in the gaps left by NetBus.
NetBus was the first 'point and click' trojan that made it very easy for hackers to abuse an infected system. The makers of SubSeven wanted to take this even further and give the hackers even more control than NetBus ever could.

SubSeven can do everything that NetBus can do. This includes things such as

File controls
Upload / Download
Move, Copy, Rename, Delete
Erase harddrives and other disks
Execute programs
Monitoring
Can see your screen as you see it
Log any/all keypresses (even hidden passwords)
Open/close/move windows
Move mouse
Network control
Can see all open connections to and from your computer
Can close connections
Can 'bounce' or relay from their system to yours, so wherever they connect it seems as if You are doing it. This is how they prevent getting caught breaking into other computer systems and get You in trouble!


The SubSeven trojan can also be configured to inform someone when its infected computer connects to the internet, and tells that person all the information about you they need to use the trojan aginst you.

This notification can be done over an IRC network, by ICQ, or by email.

I'm gonna start reporting their lame ass's.:|

 

[Gyrene]

Woah, that's weird, I don't remember quoting myself. My brain is being taken over...AHHHHHHH!!!!!!!!!

 

[Evadman]

It is port scanning. I get hit 10+ times a day by losers on comcast's network scanning a range of IP's. I remember running a scan back when it was @Home just to see how many computers were open. I found hundreds with sub7.