hackers are busy tonight

I was the target of 4 simultaneous attacks tonight while reading on DU, one coming from a government agency.

Please, don't forego the details. Simultaneous no less?

I can tell you that 2 came from California, 1 from Texas, and the other from D.C.

You must be very very naughty!

My hubby is the internet genius; he's at work. How can I tell if I'm being hacked? Sorry for the ignorance

i want to know too

I didn't have to worry about it, but I switched to DSL which requires a firewall for protection.

...not just those with broadband connections.

True, the bastards out there prefer the broadband connections (DSL, Cable) but they also hit the dialups while they're on.

ZoneAlarm is FREE to individuals while companies pay for it, it's top rated, powerful and has an easy user interface. You can pay for premium, too.

Norton Internet Security is not free, but includes Anti-Virus protection and other protection.

BlackICE is not free, less powerful than the two above, but has a very neat Paranoid function.

Your choice...but we'll all be safer out here on 'the Internets' (see BushCo)if everybody has a firewall, anti-virus protection, stuff like Spybot S&D, Ad-Aware, and maybe even PestPatrol...and y'all keep it UPDated!

Any helpful hints would be appreciated.

....but not if you are behind NAT.

You are using Norton right? And if you are it is doing it's job trying to scare you. If a Hacker wanted in your computer do you really think a off the shelf recource hog program like Norton would stop him? Norton is a joke all it does is scare the unknowing computer user into thinking he or she is getting attacked by sub 7 Trojan attacks. Now if you are stopping all those "Hacker" attacks then buying another years worth of fantastic protection from Norton is worth it right? NOT. There are several programs that are free and will do a better job and not drive you nuts with fake alerts.

but no cigar.

It's not Norton.

Do you have IP addresses and a description of what you consider attacks?

and I traced the events. They were recorded by my firewall as blocked attempts to access the computer.

for me to name the agency.

Is it ZoneAlarm? Sygate?

Or do you have a firewall applicance (instead of a software firewall)?

How were they trying to hack you? A port scan? Trying to login with telnet/ssh/etc.? Were they using some sort of exploit attempt? Trying passwords?

Are you sure it wasn't just a government computer infected with a worm?

I don't know enough to answer your other questions. Here's a basic description for one of the events:

A computer at odci.odci.gov has attempted an unsolicited connection to TCP port 4734 on your computer.

anyone?

Office of the Director of Central Intelligence

If I were a hacker, I would think it really cool to pretend I was from the CIA.

not making assumptions.

CIA no less. I'm impressed!

Perhaps Porter Goss has the hots for me.

http://www.sys-security.com/html/papers/trojan_list.htm... has a list of trojan horse programs, as does http://www.commodon.com/threat/threat-allports.htm (which also includes lots of legit services). My first thought was some malicious program was trying to contact your computer. Port 4734 isn't listed in either place. And port 4734 isn't a common service someone would try to hack (say if it were 5631 I would say they are trying to find PCAnywhere).

I assume port 4734 is the port on YOUR computer they are trying to get to, not the port they are coming FROM.

and thanks for the info. As I said, I'm new to the wonderful world of firewalls.

The hackers already know who they are. You're not libeling anyone; you're just reporting what your computer told you, without warranting that your computer is correct.

If anything bad actually happened, it would have been best from an evidentiary point of view and otherwise if you had immediately told your friends who your computer indicated the hackers were.

By the way, I hope my paranoia is completely unwarranted . . . but I suspect there are some Dems. in this forum (and elseshere) pulling together evidence and analysis who should be backing the info up, making copies, AND securing it with trustworthy third parties on a regular basis. Not only as a failsafe; but as a deterrent--if the Reps. know that's what we're doing, there's less temptation for them to try to eliminate stuff that's backed up elsewhere anyway.

Still, I bought McAfee Internet Security (which includes a software firewall) to block unwanted outbound connections - and for extra insurance.

A couple days ago, McAfee's firewall blocked what looked like a Real Audio probe. But what probably happened is it just closed the connection before the router did.

behind a router, but its log shows nothing of consequence. Just DU, a lot of DU advert links, and UT2004 servers as gaming is something of a hobby for me these days; some gamers are cool... not to mention better than me.

is it a secret?

It's the gateway to the internet but also allows me to hook up multiple computers. So it's really a gateway router. It's got built-in firewall capabilities too. Generally NAT that hides me from the internet...

Now I could buy an external router and pipe things through, but the consumer ones I'd seen are pointless. That's where software firewalls come in handy. SuSE Linux comes with its own...

I was just smart enough to set up my linksys wireless access point router / am i protected?

Not that they want to read 3 years of lawschool outlines anyway....

when you look them up are useless. Do you think a hacker would use his real IP addy? Proxy's are used. Alot of people use proxy's to surf the web.

not a blip. How do I tell with this program? Hubby swears by it.

a very good Anti-Virus program and not a fire wall like Sygate.

they have to decide whether to kill me or just bribe me.

city-wide wireless. I've never had any messages like that. Am I more...less...or protected the same? BTW, I use Norton.

Does your firewall keep a log of inbound events? I found out because I check the log a few times a day.