One of the many reasons I love norton internet security:

Lets hope it's not a false positive.

I've seen both Norton and McAfee detect a small set of pings (3-5) as a SYN attack.

L-A-M-E.

good luck.

lol...one time it traced someone on campus as being in california...weird. yet it says that itwas from the "SUNY binghamton." lol...oh and it isn't that amazing (although i was once fascinated)..go here:



edit- it appears my router at home makes IP trackers think i'm in marina del rey, CA. muahahah.

Thats where your ISP is likely located. It gave me info for Bell canada/bell sympatico again when I looked for the IP Norton gave me.

Me too. I use Mediacom.

If youre going to report every attack to the isp youre probably going to be reporting a lot; when I had blackice I would get like 50 attacks per day. For most people firewall's aren't even worth having if you just update windows and are careful about what you download. If someone who knows what they are doing wants to actually hack you then norton isnt going to stop them.

Norton Blows!!! They selectively block out pro gun sites when you search. I won't use norton internet security ever!

You can customize what types of sites they block out. You can even specify what sites to allow...

They have taken the liberty of censoring it for you. The NRA won't come up but handguncontrol will. Its wrong!

...ok kids, what did we learn today?
1. Always use a proxy or a rooted account somewhere else. Make sure you have a nice rootkit installed and that you aren't being loged.
2. Using someone elses unencrypted wifi accesspoint/router is also a good idea. You can find a ton of these downtown.
3. Don't do this from home, unless you have a couple hops between you and the victim... and your sure the victim isn't that important.
3. Make sure, if passive traced, logs point to someone else.
4. War driving is a good idea. War chalking, not so much, the owner of the access point might secure it.
5. If your a script kiddie... you probably don't know what the hell your doing.

Odds are, thats a virus/netbus . IF its an actual person trying to compromise your system, thats most likely not their address but the address of a router/proxy/gateway/rooted-comp/shell-account

I'm just sharing commons sence .

Interesting, the last time I checked pings where ICMP packets and not stream-based. It wouldn't initiate a SYN handshake.

IPTables is the best firewall ever.