Site under attack

paulvonscott · 23 February, 2004, 07:51:25 PM

Mr C mentioned Dictators of Zrag Gordon first, so he thought you might have killfiled him, when you obviously just didn't notice.

The same happened to me on a thread where another droid was posting, it was quite funny as he was posting the same arguments as I'd just put, so he was either ignoring me or had me killfiled. Which to be honest wasn't a problem for me ;)

Could it be some attempt to strip e-mail addresses from the site in order to subscribe us to Zrag funtime weekly?

Art · 23 February, 2004, 07:52:06 PM

I'm waiting for our MIS guy to run out of the server room and shout "Bastard monkey hands!"

Bolt-01 · 24 February, 2004, 03:06:17 AM

Was it a problem with the interociter?

Bolt-01

fred · 24 February, 2004, 04:49:47 AM

That'll be someone in Taiwan. So doubt it'll be Sc*j* or Chuckles then! Unless the're on their honeymoon...

fred · 24 February, 2004, 05:01:01 AM

But seriously though, just done a search at http://www.arin.net/whois/ with the IP address, and got the following:

Search results for: 203.73.207.167

OrgName: Asia Pacific Network Information Centre
OrgID: APNIC
Address: PO Box 2131
City: Milton
StateProv: QLD
PostalCode: 4064
Country: AU

ReferralServer: whois://whois.apnic.net

NetRange: 202.0.0.0 - 203.255.255.255
CIDR: 202.0.0.0/7
NetName: APNIC-CIDR-BLK
NetHandle: NET-202-0-0-0-1
Parent:
NetType: Allocated to APNIC
NameServer: NS1.APNIC.NET
NameServer: NS3.APNIC.NET
NameServer: TINNIE.ARIN.NET
NameServer: NS.RIPE.NET
NameServer: DNS1.TELSTRA.NET
Comment: This IP address range is not registered in the ARIN database.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://www.apnic.net/apnic-bin/whois2.pl
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/info/faq/abuse
Comment:
RegDate: 1994-04-05
Updated: 2004-01-21

OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3100
OrgTechEmail: search-apnic-not-arin@apnic.net

Does that make sense to anyone?

fred

Buddy · 24 February, 2004, 05:02:52 AM

I knew you'd say that!

W. R. Logan · 24 February, 2004, 03:55:37 PM

>Are the Dictators of Zarg finally employing an IT department?

If they are Tharg better panic, as it means they?ve finally got one step ahead of the Nerve Centre.

La Placa Rifa,
http://www.2000ad.nu/classof79/>W. R. Logan.

http://www.2000ad.nu/classof79/images/Co79_logo.gif>

Dan Kelly · 24 February, 2004, 04:14:43 PM

> Does that make sense to anyone?

Well this bit

> NetRange: 202.0.0.0 - 203.255.255.255

Means that the Address in question is one of quite a few held by one company - probably an ISP. They own all the addresses in that range - with 255 addresses for each 0 after the first digit. That can be doubled as the own 202.* and 203.*

Thats one of 33,554,428 addresses.

This bit tells a bit more:

>Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
> Comment: for the Asia Pacific region.

So it's not an ISP, it's a registrar.

WHOIS at APNIC.NET gives better results in that the address belongs to a taiwanese ISP called Digital United Inc.

judge dreddd · 24 February, 2004, 04:47:52 PM

just block it and move on

Woolly · 24 February, 2004, 05:20:34 PM

I'd just like to take this opportunity to let you all know that this thread has turned my tiny, helpless mind into a jelly!

I thank you!

ukdane · 24 February, 2004, 05:27:04 PM

I've just been attacked by a Trojan Horse!

Norton couldn't fix the problem!

WTF do I do now?

Jared Katooie · 24 February, 2004, 05:31:03 PM

Type the name into google and find sites with info on the bugger. This sorted a prblem on my dads PC a while back.

petemaskreplica · 24 February, 2004, 05:35:57 PM

"I've just been attacked by a Trojan Horse!"

Geeks bearing gifts? :)

Woolly · 24 February, 2004, 05:42:48 PM

Download the latest free version of AVG, and give that a go.
(if your naughty, you can try looking for a keygen or something to unlock all the features.)

AVG managed to get rid of a virus on my machine that nothing else could even find, let alone fix!

ukdane · 24 February, 2004, 05:45:18 PM

Google didn't really help. Everythign I found was in French or Spanish. Norotns website just told me I needed to be better at protecting my pc (even though it's swamped with their products!)

The horse is called Backdoor.Blarul. I didn't want to shut my pc down incase something happened, so I just removed the phoneline. I'm now running Norton again, and It's found something, and fixed it, in the same directory, but I can't be sure until it's finished, and it's a slow as ever, especially now I'vereconnected to the net, and am typing this.