What to do after you've been Netbus'ed.



Have you been Netbus'ed. Has someone tried to illegaly gain unauthorised access to your computer? If the answer is "yes" I supose your now wondering what you can do about it. In your windows directory, look for a file called Log.txt, if you were running Netbus 1.70 It might have logged everyone who tried to netbus you. If not, your out of luck Im afraid, but would you like to catch anyone who tries to do it in the future? read on.

First off you need to run a program that will listen to the default Netbus port for incoming connections. (The defualt port is 12345 TCP) You can either use Netbuster for this, or the ever popular, NukeNabber. Set up your software to listen on the netbus port (Nebuster is pre-configured).

Once you have this up and running, make sure it runs whenever Windows does, or make sure you execute it each time you connect to the internet.


So Somebody has tried to attack you?



Its happened. Someone has tried to attack you, and you have it logged in either of the two programs you have. What to do next? I usualy do a TraceRoute and save it, but that just helps prove your case. The next clear step is to email the person's ISP. You already know this infomation because you have recived their Ip address. you need to do a /DNS [IP] on the Ip address to get the text version of it, then use your common sense and pick out the Domain from it. Right, you have your attacker's ISP, next step is to email them and complain. Best Email address to try is [email protected] If this bounces, try [email protected]. What do you need to include in your email? Well stress the illegalness of the attack to them, and include, how many times the person tried to attack you and the logs of their attacks. And the EXACT time of the attack. Ask them to go back over this user's logs of actions that all ISP's have to check to make sure what you are saying is true. Sign your name at the bottom and send away. Now you just have to hope their ISP listens. If not, there is little you can do, but you may have the satisfaction of knowing that the person who attacked you's internet account has been closed.

REAL Stories

These stories arn't just made up to scare you out of using it, they *are* real.

Bright.net

Bright.net sucessfully prosecuted a 16 year old boy that was illegaly gaining access to user's computers using Netbus. The boy was one of their customers, and had a long history of Using netbus to attack users. The boy recived a jail sentance and a $100,000 (US) fine. Emails of encouragement and congradulations on thier success and courage should be sent to [email protected] as this is a huge success for all us users.


Account closed.

A casual user of IRC once was attacked by someone using netbus. The user was in one of the same channels as the attacker. The user also had Netbuster working which alerted him to what the attacker was trying to do. Once the attacker realised he was being fooled, he abusively PRIVMSG'ed the user. The user took the information from netbus, did a Tracert on the user's IP. and Emailed [email protected]. This resulted in the attacker's Internet account being closed.

Got any other success stories like these? Submit them to my email address and Ill put them up here, your success could cause other users to do the same, and make some of the Netbus attackers think twice.
Back to Netbus Main Page