I keep getting port scanned for 27374..the subseven trojan port I think, I know that zonealarm is stopping it...but I want to do seomthing about it already..there has got to be a program or something that i can use to send a message to the hacker like"

"you are busted..calling the police now"

or something like that that will scare the heck out of these kids...I am protected and so are most of you in this forum, but how many people out there dont have any firewall and this trojan and have no clue...


There has got to be a program like that..or way to scare maybe 50% of them..if it even stops 50% I will be happy..

I am venting a bit..and sorry..just sickens me what is going on nowadays...

Well I dont know of a way to let the hackers know, but you can look up the IP adress and find out their ISP and then report it to them. That will not stop all hackers but it may get this one caught.

OK that is really strange. I just came to the security forum and as I was reading this post I got port scanned by the same port as you are getting it from. Port 27374.

hmm that is odd..does anyone know what port 2233 is? when I reboot my pc and do a netstat -na that is the only port that comes up as listening

If you go to this site (http://tantalo.net/ports/) you can enter the port number you are concerned about and get the standard info.
The standard info for the port 2233 is:

infocrypt 2233 tcp INFOCRYPT
infocrypt 2233 udp INFOCRYPT

This port does not come up in any lists I have as suspect.

Croc.

you can honey pot em :)

hmm... what does that mean?

What is INFOCRYPT on port 2233? soemthing I should be worried about and I have no clue what is starting it...cant figure out only thing I have running is zonealarm, virus software..IE

honey potting is setting a daemon in the state of listening on the port that a nomal program, or trojan in this case, is usually listening. you can then log just about everything you can think of about the attacker probing your system when he connects the chosen port

onetrueday,
Go check out this site (http://www.pcwebopaedia.com/TERM/h/honeypot.html) for info on Honeypots.
Scroll down below the article and check out the links there as well.
Great info that should help.

Croc.

Croc, you are amazing! Thank you

Originally posted by onetrueday
Croc, you are amazing! Thank you

Nah, not me!;)
But thankyou anyway.:)

Croc.

Do as Croc said or your a good trojan cleaner. Either way it will give you a peace of mind. Good Luck!:)

davy 27374 is the Sub Seven Trojan listening port..
*in other words the Port that the Sub Seven Trojan opens for the attacker to connect to and enter your pc*

Now like you i was frustrated when recieving port scans from script kiddies looking for open trojan ports....And like you whanted to scare the attacker or just make a differance:::and thanx to greed i found the answer...

[---NetBuster v1.31---]

This program was origionally desighned to catch those scaning for the NetBus trojan..Allthough you can change the port NetBuster Listens to #too say 27374 on the main Tab of the program#..


If i was to sit here and type out what the program does i would be here for hours..but have a look at the link i provided and im sure it is what you are looking for..

Makes the Atacker $$$Crap his boots$$$ and you can send messages to the attacker allso

HAVE FUN;)

http://surf.to/netbuster
:cool:
:cool:
:cool:
:D