Backdoor/SubSeven

[friedpie]

I get a lot of backdoor/subseven notices from Norton's Internet Security with my broadband cable. What exactly is it?

 

[smp]

Trojan

 

[klah]

It is all of the idiots using broadband with no firewall doing portscans of your machine every 5 minutes.

 

[Hamburgerpimp]

Want AtGuard? PM me.

 

[friedpie]

Originally posted by: klah
It is all of the idiots using broadband with no firewall doing portscans of your machine every 5 minutes.

OK. Sometimes I have to turn off my Norton firewall because certain websites won't load. I was afraid I'd get a trojan somehow. I run Norton Anti Virus. I hope that would stop it. And then there is XP's internal <snicker> firewall.

 

[Hamburgerpimp]

You never want a Trojan in your Backdoor.

 

[Tripleshot]

You never want a Trojan in your Backdoor.

Unless you are gay!

 

[simms]

Originally posted by: friedpie

Originally posted by: klah
It is all of the idiots using broadband with no firewall doing portscans of your machine every 5 minutes.

OK. Sometimes I have to turn off my Norton firewall because certain websites won't load. I was afraid I'd get a trojan somehow. I run Norton Anti Virus. I hope that would stop it. And then there is XP's internal <snicker> firewall.

hahahah... ZoneAlarm Pro. the way to go

 

[yakko]

Originally posted by: klah
It is all of the idiots using broadband with no firewall doing portscans of your machine every 5 minutes.

Idiots not using firewalls and people doing portscans are two different things. I used to do port scans all the time with my firewall on.


friedpie,

What is happening is that people are scanning for computers that have the Sub7 server installed and Norton is reporting that you were scanned. Unless you have the Sub7 server installed this means nothing. You also will not get a trojan unless you install it and no firewall will prevent them anyway. That is not what a firewall is designed to do.

 

[klah]

Originally posted by: yakko

Originally posted by: klah
It is all of the idiots using broadband with no firewall doing portscans of your machine every 5 minutes.

Idiots not using firewalls and people doing portscans are two different things. I used to do port scans all the time with my firewall on.

The newer versions of subseven's server.exe do automatic port scanning beginning with the host address and report all of the found infected nodes to the client. Hence, you are going to be scanned by every infected machine sharing your address range.

 

[Gstanfor]

You don't have to totally disable norton to access some websites BTW. Just open norton and only disable privacy. When you are finished with the site reenable it.

Why don't programs like norton instead of blocking the privacy info just send something like no@body.net for the email address instead (unless you instruct it otherwise)? It would be just as effective.

Greg