I wanted to thank everyone for their help and advice with this issue. My
friend is feeling a little better with some more knowledge under her belt,
and you guys/girls have been really, really helpful to her. She's run a
program called Who's Watching Me, which she got from Tucows. It's supposed
to find any Trojans that may be on your computer. It didn't find anything,
which means either he's already removed it after knowing we were onto him,
or that it's just not detectable by that program. Two up-to-date antivirus
runs, McAfee and Trend, found nothing, too. Any other good programs/methods
that could find something like this?
Thanks again,
Evan
-----Original Message-----
From: Alvin Oga [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 26, 2001 7:49 PM
To: Ron DuFresne
Cc: Delcourt, Rick; Evan Brastow; [EMAIL PROTECTED]
Subject: RE: T1 and logs
hi ya
usually the local police does NOT do anything about cyber-crimes...
but if its a criminal issue... they might be willing to do more ...
if there is $10K or was it $15k of damages... than the FBI gets involved
and is interested in nailing cyber-criminals...
- at least thats what we needed to show to get them involved
and i think they confiscated about 15 servers...
if this hacking/sniffing/stalking is in silicon valley area...
we'd be interested in tracking that hacker/cracker/sniffer down
and if nothing else... she needs to reinstall her OS and other stuff
to minimize her chances that he is in there with a trojan ...
- and apply all the MS security patches.. if she is using MS
and/or other os and its patches
- or spend the time to find out what/how he is in there...
have fun linuxing
alvin
http://www.Linux-Sec.net/Patches -- list of security updates
On Tue, 26 Jun 2001, Ron DuFresne wrote:
>
> This lady needs to contact the local police. She is being stalked and
> needs to have this dealt with by the proper authorities. chances are good
> that even if he losses interest in her, unless his actions are checked,
> he'll most likely direct the same stalking methods on someone else down
> the road.
>
> Thanks,
>
> Ron DuFresne
>
> On Tue, 26 Jun 2001, Delcourt, Rick wrote:
>
> >
> > Evan,
> > This is utter hogwash. I have worked with T1 lines for the better
> > part of 8 years and they are not much different than dial-up, ISDN or
DSL.
> > Just faster and permanent. They are usually supplied by one of the
> > telecommunications companies, such as ATT, Sprint or MCI. And as far as
I
> > know, they only charge you an installation fee and monthly service fee.
They
> > DON'T require bonds!
> >
> > Tell your friend to ask this guy for his contractor ID or DoD access
> > tag number. Since he is supposed to be working for the government and
has
> > ALREADY compromised his security clearance, this info is now accessable
by
> > the public. :-) If that doesn't work, just tell her to put him on her
ignore
> > list (or whatever is comparable).
> >
> > Mike
> >
> > -----Original Message-----
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, June 26, 2001 12:16 PM
> > To: [EMAIL PROTECTED]
> > Subject: OT: T1 and logs
> >
> >
> > This is so off-topic and non-business related that I would almost expect
a
> > few flames, but I'm curious, and a friend of mine is rather scared, so
I'm
> > hoping a few of you might help out.
> >
> > A friend of mine chats online on a service call "PalTalk". Apparently,
she's
> > run into a guy that, I think, is trying to intimidate her. She doesn't
know
> > much about computers, and where she knows I work with them, she asked me
a
> > question about her situation. However, I've never worked with a T1 line,
so
> > I can't really answer her.
> >
> > Here's the deal. I guess on PalTalk, you can chat in an open room, or
you
> > can chat with someone in what they call a private message, or private
chat,
> > or something. Apparently, he's been kind of stalking her. He'll tell her
> > things like he can see who she talks to and what she says in these
private
> > chats. He's told her that he worked for the DoD in "computer
intelligence".
> > For many years. She didn't believe much of this until one day he
actually
> > *did* repeat some stuff to her that she said in a private chat with
someone
> > else, so now she's scared.
> >
> > Here's a snippet of her words to me about what he's told her:
> >
> > "He talks about his T1 Connection as a "backbone" and "the network". He
says
> > that periodically, and each time it goes down and comes back online, he
is
> > required by government regulations to go over network activity reports
that
> > are generated. He says they are all to do with whatever he is involved
> > with.. and if he's involved with chat rooms.. then he sees "contacts"
> > between people in the room. He is supposed to "check off" on the
activity
> > to verify that its correct. And if he sees any irregular activity or if
> > something is incorrect, he has to report it. He says that he had to get
a
> > $50,000 bond just to have this T1 connection."
> >
> > This sounds to me like utter bologna, but before I giver her bad
> > information, I wanted to check with those of you that maybe do use T1
lines
> > and see if any of this could be true?
> >
> > Thanks,
> >
> > Evan
> > _______________________________________________
> > Firewalls mailing list
> > [EMAIL PROTECTED]
> > http://lists.gnac.net/mailman/listinfo/firewalls
> > _______________________________________________
> > Firewalls mailing list
> > [EMAIL PROTECTED]
> > http://lists.gnac.net/mailman/listinfo/firewalls
> >
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> "Cutting the space budget really restores my faith in humanity. It
> eliminates dreams, goals, and ideals and lets us get straight to the
> business of hate, debauchery, and self-annihilation." -- Johnny Hart
> ***testing, only testing, and damn good at it too!***
>
> OK, so you're a Ph.D. Just don't touch anything.
>
> _______________________________________________
> Firewalls mailing list
> [EMAIL PROTECTED]
> http://lists.gnac.net/mailman/listinfo/firewalls
>
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
