Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: someone trying to get into my account?

  1. #1
    Member
    Join Date
    Jan 2007
    Posts
    117

    Default someone trying to get into my account?

    it appears as though someone was trying to get into my account here? the forums werent hacked or anything were they? its a good thing they didnt get my uber 1337 password of 12345 (since changed)


    Dear ats1080,

    Your account on Remote Exploit Forums has been locked because someone
    has tried to log into the account with the wrong password more than 5
    times. You will be able to attempt to log in again in another 15 minutes.

    The person trying to log into your account had the following IP
    address: 74.53.243.34

    Don't forget that the password is case sensitive. Forgotten your
    password? Use the link below:
    http://forums.remote-exploit.org/login.php?do=lostpw

    All the best,
    Remote Exploit Forums

  2. #2
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Quote Originally Posted by ats1080 View Post
    it appears as though someone was trying to get into my account here? the forums werent hacked or anything were they? its a good thing they didnt get my uber 1337 password of 12345 (since changed)


    Dear ats1080,

    Your account on Remote Exploit Forums has been locked because someone
    has tried to log into the account with the wrong password more than 5
    times. You will be able to attempt to log in again in another 15 minutes.

    The person trying to log into your account had the following IP
    address: 74.53.243.34

    Don't forget that the password is case sensitive. Forgotten your
    password? Use the link below:
    http://forums.remote-exploit.org/login.php?do=lostpw

    All the best,
    Remote Exploit Forums
    It would appear, someone hacked ThePlanet.

    H:\>tracert 74.53.243.34

    Tracing route to 22.f3.354a.static.theplanet.com [74.53.243.34]
    over a maximum of 30 hops:


    7 30 ms 29 ms 30 ms dcx-edge-02.inet.qwest.net [72.164.177.105]
    8 32 ms 29 ms 30 ms dcx-core-02.inet.qwest.net [205.171.251.21]
    9 33 ms 31 ms 34 ms dcp-brdr-02.inet.qwest.net [205.171.251.38]
    10 30 ms 35 ms 35 ms qwest-gw.wswdc.ip.att.net [192.205.32.29]
    11 76 ms 75 ms 115 ms tbr1.wswdc.ip.att.net [12.123.8.186]
    12 72 ms 75 ms 77 ms tbr1.sl9mo.ip.att.net [12.122.10.30]
    13 73 ms 76 ms 74 ms tbr2.dlstx.ip.att.net [12.122.10.90]
    14 74 ms 70 ms 71 ms 12.122.100.101
    15 72 ms 69 ms 70 ms 12.87.41.150
    16 75 ms 74 ms 100 ms te7-2.dsr01.dllstx3.theplanet.com [70.87.253.10]

    17 246 ms 204 ms 200 ms 72.fd.5746.static.theplanet.com [70.87.253.114]

    18 167 ms 321 ms 74 ms po1.car06.dllstx6.theplanet.com [12.96.160.8]
    19 614 ms 269 ms 76 ms 22.f3.354a.static.theplanet.com [74.53.243.34]

    Trace complete.
    /leaves, snickering.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  3. #3
    Senior Member
    Join Date
    Apr 2007
    Posts
    3,385

    Default

    No user here has the ip address 74.53.243.34. So, more than likely 74.53.243.34 (static.theplanet.com), was a proxy used to try to Brute Force your account. Sorry m8, just make a really strong alpha numeric password. That way a dictionary attack would be rendered useless.
    [CENTER][FONT=Book Antiqua][SIZE=5][B][COLOR=blue][FONT=Courier New][COLOR=red]--=[/COLOR][/FONT]Xploitz[FONT=Courier New][COLOR=red]=--[/COLOR][/FONT][/COLOR][/B][/SIZE][/FONT][FONT=Courier New][COLOR=Black][SIZE=6][B] ®[/B][/SIZE][/COLOR][/FONT][/CENTER]
    [CENTER][SIZE=4][B]Remote-Exploit.orgs Master Tutorialist.[/B][/SIZE][SIZE=6][B]™
    [/B][/SIZE]
    [URL="http://forums.remote-exploit.org/showthread.php?t=9063"][B]VIDEO: Volume #1 "E-Z No Client WEP Cracking Tutorial"[/B]
    [/URL]
    [URL="http://forums.remote-exploit.org/showthread.php?t=7872"][B]VIDEO: Volume #2 "E-Z No Client Korek Chopchop Attack Tutorial"[/B]
    [/URL]
    [URL="http://forums.remote-exploit.org/showthread.php?t=8230"][B]VIDEO: Volume #3 "E-Z WPA/WPA2 Cracking Tutorial"[/B][/URL]

    [URL="http://forums.remote-exploit.org/showthread.php?t=8041"][B]VIDEO: Volume #4 "E-Z Cracking WPA/WPA2 With Airolib-ng Databases"[/B][/URL]
    [/CENTER]

  4. #4
    Member
    Join Date
    Jan 2007
    Posts
    117

    Default

    the sad part is, when that happened my password was 12345 and they still couldnt get it. unless they really did and i dont know about it. i guess if your boards get spammed with my name you know why :-P. my password is no longer 12345, btw. also streaker69, do you live in strasburg? i live in pequea in southern lancaster.

  5. #5
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Quote Originally Posted by ats1080 View Post
    the sad part is, when that happened my password was 12345 and they still couldnt get it. unless they really did and i dont know about it. i guess if your boards get spammed with my name you know why :-P. my password is no longer 12345, btw. also streaker69, do you live in strasburg? i live in pequea in southern lancaster.
    Nope, not Strasburg, but grew up near there. Been to Pequea many times though, probably been one every back road down there at some point.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  6. #6
    Just burned his ISO
    Join Date
    Apr 2007
    Posts
    2

    Default

    Same thing happening here to this particular account. Twice in one day. Same ip too.

  7. #7
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    You people that have had this happen need to report it to ThePlanet.com as a violation of their AUP as quoted below:

    http://www.theplanet.com/about_us/le...07%20FINAL.pdf

    Quote Originally Posted by ThePlanet.com AUP
    Network Abuse
    Users are prohibited from engaging in any activities that The Planet determines, in its sole discretion, to constitute network abuse, including, but not limited to, the following:
    • Introducing or executing malicious programs into any network or server, such as viruses, worms, Trojan Horses, and key loggers.
    • Causing or initiating security breaches or disruptions of network communication and/or connectivity, including port scans, flood pings, email-bombing, packet spoofing, IP spoofing, and forged routing information.
    • Executing any form of network activity that will intercept data not intended for the Customer's server.
    • Evading or circumventing user authentication or security of any host, network or account, including cracking, brute-force, or dictionary attacks.
    • Interfering with or denying service to any user, host, or network other than the Customer's host, such as a denial of service attack or distributed denial of service attack.
    • Conduct designed to avoid restrictions or access limits to specific services, hosts, or networks, including the forging of packet headers or other identification information.
    • Soliciting the performance of any illegal activity, even if the activity is not performed.
    • Using any program, or sending messages of any kind, designed to interfere with or disable a user's terminal session.
    That way, they can stop it from happening.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  8. #8
    Developer balding_parrot's Avatar
    Join Date
    May 2007
    Posts
    3,399

    Default

    Just thought I would add a me too same IP

  9. #9
    Moderator theprez98's Avatar
    Join Date
    Jan 2010
    Location
    Maryland
    Posts
    2,533

    Default

    We've gotten these attacks from time to time. As far as I know, we've only ever had locked accounts and no actual hijacked accounts. Still, a good reason to have a strong password.
    "\x74\x68\x65\x70\x72\x65\x7a\x39\x38";

  10. #10
    Junior Member pipboy's Avatar
    Join Date
    Apr 2007
    Posts
    30

    Default

    what kind of noob STARTS with bruteforcing... I thought its pretty standard to try a good 15 common passwords before resorting to anything that noisy

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •