i was wondering how exactly i report them

i get A LOT of people that try to hack into my system, usualy subseven port probes

i use blackice defender and there is a help site but i dont exactly understand it i can enter their ip into this one thing but i dont get that so could someone help me thanks

------------------
!

So do I Ledgic. I am being "invaded" by someone in Hebei province in China, someone in Germany and all over the USA and Canada. I get at least 15 warnings for an 8 hour stint on the Internet. I am very glad to have Norton Personal Firewall installed and "always" running...
You can use a tool such as http://geektools.com/cgi-bin/proxy.cgi which in most instances will give you the invader's ISP along with their address for reporting the abuse.
In this instance it's not so nice to be wanted.

<FONT COLOR="#800080" SIZE="1" FACE="Verdana, Arial">This message has been edited by Barbara-Ann on December 16, 2000 at 05:18 PM</font>

First off, welcome to the board Barbara-Ann! http://www.helpfromtechs.com/ubb/smilies/smile.gif

I use a little utility called Network Tracer (http://www.pc-help.org/trace.htm). Very easy to use, just go to the run line and enter "trace [IP number]" (trace xxx.xx.xxx.x).

Then if you know that the alert was a true attack and not just a harmless ping, then just find the domain name with the above program and add "abuse" in front of it. (If the address was from AOL, send an email to abuse@aol.com). Give them as many details as possible including date, time, type of attack, destination IP, source IP, port number to and from, etc.

Or if you have Zone Alarm, you can get this (http://zonelog.co.uk/) that writes the whole email for you with all the details. All you have to do is the trace to get the domain name, add abuse to the front of it, throw a subject in the line, and send it.

------------------
Moderator at Help from Techs Support Forums (http://www.helpfromtechs.com)

hmmm i have some attacks from yahoo people or something like that can i send it to admin@yahoo.com or something

------------------
!

manunkind - thanks for the welcome. I also have Network tracer installed and Net Lab and Sam Spade and Geek Tools. I use them all.
How does one know if the attack or ping is harmless or if the other person means business? Could you (if you have the time) give me an example with a traceroute and the difference between harmless and attack.

Thanks loads....

Barbara-Ann

i dunno the difference but blackice defender has a whole website that tells which attacks do stuff and how serious they is

like it has read if its a deliberate attack on your system orange if its some kinda scan to possibly help in future attacks yellow if its just like some kinda scan for open ports and theres informational

------------------
!

Ledgic, always stick with the abuse method. (abuse@yahoo.com). All emails addressed to "abuse" gets forwarded to the appropriate department in the company and gets handled more seriously and promptly. ISP's DO NOT put up with that, and treat those emails very seriously!

Barbara, the traceroute will not tell you if the attack was serious or not, that is just to identify who it is. Your actual firewall will tell you that. Which firewall do you use? I STRONGLY suggest Zone Alarm (http://www.zonelabs.com/)! There is a free version and a pay version. Both are great! THEN get the above program that I linked to in my first post. That program will read the Zone Alarm log file and translate the attack for you and tell you what type of scan it was. (harmless ping, trojan scan, DOS attack, etc.)
I'm not sure what Black Ice does. I've never used it. ZA is better in my (and MANY MANY others http://www.helpfromtechs.com/ubb/smilies/smile.gif) opinion!

------------------
Moderator at Help from Techs Support Forums (http://www.helpfromtechs.com)

manunkind - I have Norton Personal Firewall installed. I have also Norton AntiVirus and before I purchased NPF over the internet, I tried ZoneAlarm. I kept getting faults and BSODs because both programs have e-mail protection. I tried disabling one and then the other but the errors and BSODs kept coming. So that is when I opted for NPF.And I have your Network Tracer already installed and that is what I check the invasions with.

------------------
I'm retired
But I work part-time
As a pain in the butt

Recommended reading: http://grc.com/lt/leaktest.htm

(The 3rd page contains the test results chart).

------------------
Moderator, (http://www.m-w.com/cgi-bin/dictionary?book=Dictionary&va=moderator)DOS (http://webopedia.internet.com/TERM/D/DOS.html)Forum, (http://www.m-w.com/cgi-bin/dictionary?book=Dictionary&va=forum)HelpFromTechs.com (http://www.helpfromtechs.com)

Excellent link Vernon, thanks!! http://www.helpfromtechs.com/ubb/smilies/smile.gif

------------------
Moderator at Help from Techs Support Forums (http://www.helpfromtechs.com)