Summary: alert hacker

From: Xu, Ying (Ying.Xu@telecheck.com)
Date: Wed May 24 2000 - 11:01:55 CDT


Thanks to Christopher E. Olaes, Robert Hayne and Jed Dobson

http://www.cert.org is the place to go. Another option is the ISP that this
IP utilizes.

Ying

> -----Original Message-----
> From: Xu, Ying
> Sent: Wednesday, May 24, 2000 10:42 AM
> To: Xu, Ying; 'sun-managers@sunmanagers.ececs.uc.edu'
> Subject: alert hacker
>
> Hi, Manager,
> Sorry if it's a little off-topic question.
> One of my friend's machine was hacked. He found in /dev there is a new
> "dos" directory and there are several files in it, including "bomb",
> "smurf", "ssynk4", "woot"..., "ssynk4" is the executable that runs. He
> also found out from in.rlogind log that an IP trys to login or logins in
> his machine everyday.
> His question is where he should report to alert the hacker.
> Thanks very much for your help.
> Ying
>



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:14:08 CDT