PlanetZ forums - scopeusers.com

What level of Firewall stats are you guys getting, when surfing PlanetZ for 1 hour ??

I'm interested in all stats, but specifically
from zonealarm users.

all stats, logs & commments are welcome !!

Cheers
notbob

check out http://lists.gpick.com/portlist/portlist.htm and see what kind of 'attacks' you get. What ports are they hammering on? Most of the time, they are just random scans and broadcast things, nothing to worry about.

If you notice it always originates at the same adresses, whois them. It may be your provider or proxy

Most of the 'hammering' is at ports like 135, 137, 445 & nothing to worry about. Even the more obscure attempts are nothing to worry about * prob' just broadcasting or whatever.

It's the potential infectious Bas***ds hammering at port 80 that are more worthy of investigation...tho again it's probably nothing & at least i'm blocking them.
On the upside our Scope gear ain't on the net

I'll post any interesting findings ( if there are any )

Cheers atomic

I'm sure it's not related to z

I think both of you are correct, it's not related to Z, but it's a word of warning to users who aren't using firewalls.

I've just spent 8-9 hrs 'cleansing' a system belonging to a 'friend of the family'

This guy wasn't a 'Z' user (thankfully)

AVG first came up with 14 TH's, Adaware with 101
'critical objects' and the story goes on......and on....like ..ariston..
but, i won't bore you

IF ONLY isp's WERE SECURE ?

AFAIK, only Windows machines suffer from these problems. So why point a finger at the ISP!?


Get rid of Windows, and your set. Or maybe a surf licence (a la driving licence;) is better in place. If people were a little educated on the web and what's out there, things would improve big time.

Usually they're totally ignorant that their machine is compromised, untill things stop working. They don't give a sh!t, so why would I. Usually what they want is to forward emails that someone once found funny, get a date from MSN and surf rotten.com. If one of these don't work anymore, they panic. I stopped spending my energy fixing these machines long time ago.

Last year some journalists, I think in San Francisco or so, connected 10 machines unprotected to the web. In a couple of minutes, 9 of the 10 were compromised.
If you think that some hacker was waiting for these pc's to connect to make them zombie machines, you couldn't be more wrong. Zombie machines make zombie machines without the slightest user action. They are usually programmed to do so automatically, and they will if the next machine isn't prevented by some [properly set up] firewall or anti-virus. And it's the end user who has to make sure his machine is properly protected, cos MS couldn't care less.

If someone wants to get in your computer badly, he eventually will, and there's no firewall that can prevent that. If I compare a firewall to my front door: Locking it will stop occasional passants to stay out of my house, but any half-arsed burglar can think of different ways to get thru that locked door.

http://www.grc.com/ is an excellent site with free tools to check your firewall and Windows. There's also some great stories, you'll be amazed what nice toys modern technology offers to the kids in a world with MS machines

add one of those hardware router boxes (about 50 Euro) even for a single machine.
The network adress translation adds a safety advantage - and (at least in my case) the box increased connection speed significantly.

...which made me think the slow processing of the ISP's DSL driver wasn't totally unwelcome to them...
it felt indeed slow and one was tempted to order the next higher speed range

cheers, Tom