Some1 Is Trying

[toco004]

someone is trying to hack me since yesterday
wut should i do?
heres the info: the ip to the hacker is 200.193.90.179

Code:

OrgName:    Latin American and Caribbean IP address Regional Registry 
OrgID:      LACNIC
Address:    Potosi 1517
City:       Montevideo
StateProv:  
PostalCode: 11500
Country:    UY

NetRange:   200.0.0.0 - 200.255.255.255 
CIDR:       200.0.0.0/8 
NetName:    LACNIC-200
NetHandle:  NET-200-0-0-0-1
Parent:     
NetType:    Allocated to LACNIC
NameServer: TINNIE.ARIN.NET
NameServer: NS.LACNIC.ORG
NameServer: NS.DNS.BR
NameServer: NS2.DNS.BR
Comment:    This IP address range is under LACNIC responsibility for further
Comment:    allocations to users in LACNIC region.
Comment:    Please see http://www.lacnic.net/ for further details, or check the
Comment:    WHOIS server located at whois.lacnic.net
RegDate:    2002-07-27
Updated:    2003-06-12

TechHandle: LACNIC-ARIN
TechName:   LACNIC Hostmaster 
TechPhone:  (+55) 11 5509-3522
TechEmail:  [email protected] 

OrgTechHandle: LACNIC-ARIN
OrgTechName:   LACNIC Hostmaster 
OrgTechPhone:  (+55) 11 5509-3522
OrgTechEmail:  [email protected]

# ARIN WHOIS database, last updated 2004-02-28 19:15
# Enter ? for additional hints on searching ARIN's WHOIS database.

OrgName:    Latin American and Caribbean IP address Regional Registry
OrgID:      LACNIC
Address:    Potosi 1517
City:       Montevideo
StateProv:  
PostalCode: 11500
Country:    UY
Comment:    
RegDate:    2002-07-27
Updated:    2004-02-24

AdminHandle: LACNIC-ARIN
AdminName:   LACNIC Hostmaster 
AdminPhone:  (+55) 11 5509-3522
AdminEmail:  [email protected]

TechHandle: LACNIC-ARIN
TechName:   LACNIC Hostmaster 
TechPhone:  (+55) 11 5509-3522
TechEmail:  [email protected]

# ARIN WHOIS database, last updated 2004-02-28 19:15
# Enter ? for additional hints on searching ARIN's WHOIS database.

[Virtualbody1234]

How do you know you were being hacked?

[Spider_dude]

sorry.

[baccyman]

this could be your isp doing a scan of your computer . i get this a lot with NTL . i am using sygate firewall and it is always picking up these scans and they always turn out to be my isp .

[toco004]

dont know but my Norton Internet Security
say that i have been attacked on
3/20/04
11:30:05 am
attemps :45
most frequent attacker is 200.193.90.179

[LSA]

He's trying to 0wn you with netbus....

Stupid scriptkiddies

Starting nmap 3.48 ( http://www.insecure.org/nmap/ ) at 2004-03-20 13:35 CST
Interesting ports on 200-193-090-179.fnsce7001.dsl.brasiltelecom.net.br (200.193.90.179):
(The 1646 ports scanned but not shown below are in state: closed)
PORT      STATE    SERVICE
21/tcp    filtered ftp
25/tcp    filtered smtp
80/tcp    filtered http
135/tcp  filtered msrpc
137/tcp  filtered netbios-ns
138/tcp  filtered netbios-dgm
139/tcp  filtered netbios-ssn
1080/tcp  filtered socks
3128/tcp  filtered squid-http
12345/tcp filtered NetBus
12346/tcp filtered NetBus

[toco004]

Originally posted by baccy_man@20 March 2004 - 20:29
this could be your isp doing a scan of your computer . i get this a lot with NTL . i am using sygate firewall and it is always picking up these scans and they always turn out to be my isp .

but the trace is coming from Brazil

[Marius24]

Originally posted by toco004+20 March 2004 - 19:35--></div><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td>QUOTE (toco004 @ 20 March 2004 - 19:35)</td></tr><tr><td id='QUOTE'> <!--QuoteBegin-baccy_man@20 March 2004 - 20:29
this could be your isp doing a scan of your computer . i get this a lot with NTL . i am using sygate firewall and it is always picking up these scans and they always turn out to be my isp .

but the trace is coming from Brazil [/b][/quote]
do you have any filesharing program open such as bittorrent or kazaa?

[toco004]

now to think of it Kazaa

[thewizeard]

Do you use ZoneAlarm? Then just click the rapport tab...it will give you more information...