Warning

SeaWolf U-57 · 01-18-12, 09:38 AM

Ok after last time I know I am going to regret this
but for those who might like to believe me when
I log into Subsim today my firewall came under attack
but once again my cheap crappy virus software (Nod 32)
stopped the attack in its tracks.
here is a pic of the attack

please take care at this time

PPs. and yes I know that some of you that also use Nod32 will not detect anything
that is because the attack has already been submittted and therefore will have no access to your system

SHMF has crash also attack address is shown as

# Query terms are ambiguous. The query is assumed to be:# "n + 192.168.0.7"## Use "?" to get help.# ## The following results may also be obtained via:# http://whois.arin.net/rest/nets;q=192.168.0.7?showDetails=true&showARIN=false &ext=netref2# NetRange: 192.168.0.0 - 192.168.255.255CIDR: 192.168.0.0/16OriginAS: NetName: PRIVATE-ADDRESS-CBLK-RFC1918-IANA-RESERVEDNetHandle: NET-192-168-0-0-1Parent: NET-192-0-0-0-0NetType: IANA Special UseComment: This block is used as private address space.Comment: Traffic from these addresses does not come from IANA.Comment: IANA has simply reserved these numbers in its database Comment: and does not use or operate them. We are not the source Comment: of activity you may see on logs or in e-mail records.Comment: Please refer to http://www.iana.org/abuse/Comment: Comment: Addresses from this block can be used by Comment: anyone without any need to coordinate with Comment: IANA or an Internet registry. Addresses fromComment: this block are used in multiple, separately Comment: operated networks.Comment: Comment: This block was assigned by the IETF in theComment: Best Current Practice document, RFC 1918Comment: which can be found at:Comment: Comment: http://www.rfc-editor.org/rfc/rfc1918.txtRegDate: 1994-03-15Updated: 2011-04-12Ref: http://whois.arin.net/rest/net/NET-192-168-0-0-1 OrgName: Internet Assigned Numbers AuthorityOrgId: IANAAddress: 4676 Admiralty Way, Suite 330City: Marina del ReyStateProv: CAPostalCode: 90292-6695Country: USRegDate: Updated: 2004-02-24Ref: http://whois.arin.net/rest/org/IANA OrgTechHandle: IANA-IP-ARINOrgTechName: Internet Corporation for Assigned Names and NumberOrgTechPhone: +1-310-301-5820 OrgTechEmail: abuse@iana.orgOrgTechRef: http://whois.arin.net/rest/poc/IANA-IP-ARIN

Ok this might have not been from subsim but maybe a direct attack at SHMF and its members from well lets not say anymore for now

Although it happened when visiting subsim but my firewall might of already been blocking the attack and only showed the message while browsing Subsim ?????

ablebody · 01-18-12, 06:25 PM

why is it crappy if it stopped the attack?

SeaWolf U-57 · 01-19-12, 02:17 AM

Quote:

Originally Posted by ablebody

why is it crappy if it stopped the attack?

Its not its just something someone once said about Nod32

.
its the best I have ever used and once again save me from a world of hurt

Dowly · 01-19-12, 02:36 AM

Avast! shows clear on my end.

As for NOD32 being crap, I can only say what I've heard about it and that is
that NOD32 is average in what it does. Tends to detect the most harmful
stuff, but also tends to let less harmful stuff through. Only used the thing briefly
some years back before switched to Avast! so can't really say anything from personal experience.

SeaWolf U-57 · 01-19-12, 10:47 AM

Its updated to version 5 now
it will only let through what you want it to

01-18-12, 09:38 AM	#1
SeaWolf U-57 Ace of the Deep Join Date: May 2008 Posts: 1,231 Downloads: 92 Uploads: 0	Warning Ok after last time I know I am going to regret this but for those who might like to believe me when I log into Subsim today my firewall came under attack but once again my cheap crappy virus software (Nod 32) stopped the attack in its tracks. here is a pic of the attack please take care at this time PPs. and yes I know that some of you that also use Nod32 will not detect anything that is because the attack has already been submittted and therefore will have no access to your system SHMF has crash also attack address is shown as # Query terms are ambiguous. The query is assumed to be:# "n + 192.168.0.7"## Use "?" to get help.# ## The following results may also be obtained via:# http://whois.arin.net/rest/nets;q=192.168.0.7?showDetails=true&showARIN=false &ext=netref2# NetRange: 192.168.0.0 - 192.168.255.255CIDR: 192.168.0.0/16OriginAS: NetName: PRIVATE-ADDRESS-CBLK-RFC1918-IANA-RESERVEDNetHandle: NET-192-168-0-0-1Parent: NET-192-0-0-0-0NetType: IANA Special UseComment: This block is used as private address space.Comment: Traffic from these addresses does not come from IANA.Comment: IANA has simply reserved these numbers in its database Comment: and does not use or operate them. We are not the source Comment: of activity you may see on logs or in e-mail records.Comment: Please refer to http://www.iana.org/abuse/Comment: Comment: Addresses from this block can be used by Comment: anyone without any need to coordinate with Comment: IANA or an Internet registry. Addresses fromComment: this block are used in multiple, separately Comment: operated networks.Comment: Comment: This block was assigned by the IETF in theComment: Best Current Practice document, RFC 1918Comment: which can be found at:Comment: Comment: http://www.rfc-editor.org/rfc/rfc1918.txtRegDate: 1994-03-15Updated: 2011-04-12Ref: http://whois.arin.net/rest/net/NET-192-168-0-0-1 OrgName: Internet Assigned Numbers AuthorityOrgId: IANAAddress: 4676 Admiralty Way, Suite 330City: Marina del ReyStateProv: CAPostalCode: 90292-6695Country: USRegDate: Updated: 2004-02-24Ref: http://whois.arin.net/rest/org/IANA OrgTechHandle: IANA-IP-ARINOrgTechName: Internet Corporation for Assigned Names and NumberOrgTechPhone: +1-310-301-5820 OrgTechEmail: abuse@iana.orgOrgTechRef: http://whois.arin.net/rest/poc/IANA-IP-ARIN Ok this might have not been from subsim but maybe a direct attack at SHMF and its members from well lets not say anymore for now Although it happened when visiting subsim but my firewall might of already been blocking the attack and only showed the message while browsing Subsim ????? Last edited by SeaWolf U-57; 01-18-12 at 10:10 AM.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

01-18-12, 06:25 PM	#2
ablebody Bilge Rat Join Date: Jan 2012 Posts: 1 Downloads: 0 Uploads: 0	why is it crappy if it stopped the attack?

01-19-12, 02:36 AM	#4
Dowly Lucky Jack Join Date: Apr 2005 Location: Finland Posts: 25,052 Downloads: 32 Uploads: 0	Avast! shows clear on my end. As for NOD32 being crap, I can only say what I've heard about it and that is that NOD32 is average in what it does. Tends to detect the most harmful stuff, but also tends to let less harmful stuff through. Only used the thing briefly some years back before switched to Avast! so can't really say anything from personal experience.

01-19-12, 10:47 AM	#5
SeaWolf U-57 Ace of the Deep Join Date: May 2008 Posts: 1,231 Downloads: 92 Uploads: 0	Its updated to version 5 now it will only let through what you want it to