6502.org Forum Projects Code Documents Tools Forum
It is currently Tue Sep 17, 2024 3:40 am

View unanswered posts | View active topics


Board index » 6502.org Users Forum » Programming

All times are UTC




Post new topic Reply to topic  Page 3 of 3
  [ 45 posts ]  Go to page Previous  1, 2, 3
  Previous topic | Next topic 
Author Message
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Thu May 03, 2012 9:27 pm 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
Offtopic:
Did you get tons of unknown traffic, with various ip addresses from all around the world, from Mexico to Russia? It looks to me as if i have some malware on my pc. I tried to kill all the processes, but that didn't stop it, and after i restarted the computer, the unknown traffic kept going, and after a while i got a blue screen as i do from time to time, and i noticed that the problem was in tpcip.sys.
Top
 Profile  
Reply with quote  
BigEd
 Post subject: Re: 6502 sbc with web
PostPosted: Thu May 03, 2012 9:38 pm 
Offline
User avatar

Joined: Thu Dec 11, 2008 1:28 pm
Posts: 10938
Location: England
You'll notice I set a filter to see only traffic to/from another machine on my network. So if I do have bad stuff going on, it wouldn't have shown. If you do see bad stuff, it's worth reacting though. I don't have any general advice that's specific and efficient (I have other advice, ranging like this: reinstall, switch to Linux, run malwarebytes or microsoft's Security essentials, microsoft defender offline, boot from a livecd like Linux mint) - here's advice from other victims.

Cheers Ed
Top
 Profile  
Reply with quote  
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Fri May 04, 2012 12:50 am 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
I installed malwarebytes and started a scan, i also started a scan with ad-aware, now i only have to wait...

As for the ethernet module, the ic had an epoxy layer as an anti reverse engineering protection, but as i sad, it had the epoxy layer. I was curious and i scratched the epoxy with a screwdriver, and the entire layer came off easily... I can now see that the module uses the famous WIZnet chip, witch leaves room for future tinkering, if i ever get boarded with the module, i can just unsolder the mcu, and connect to the WIZnet directly...
Top
 Profile  
Reply with quote  
GARTHWILSON
 Post subject: Re: 6502 sbc with web
PostPosted: Fri May 04, 2012 1:05 am 
Offline
User avatar

Joined: Fri Aug 30, 2002 1:09 am
Posts: 8508
Location: Southern California
Since our older son is somewhat of a networking expert, I asked him about your post, and he said there's not enough information there to figure out much. He runs his server and some at the school he works for under Linux though, and those don't have any trouble. He can see the hacking attempts, but they are never successful. Linux never bluescreens either.

_________________
http://WilsonMinesCo.com/ lots of 6502 resources
The "second front page" is http://wilsonminesco.com/links.html .
What's an additional VIA among friends, anyhow?
Top
 Profile  
Reply with quote  
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Fri May 04, 2012 1:46 am 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
I have dual boot, for win and Ubuntu, but i use win since i have stuff that won't run on Linux.
I would want to try to port forward the module port, so it can be acceded via internet, and someone might try to send me a data packet... But i heard that port forwarding might me risky, since hackers might use the opened port to hack their way in, i don't now if this is true, and if it safe to open a port in my router...
Top
 Profile  
Reply with quote  
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Sat May 05, 2012 1:49 am 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
I port forwarded the module, could somebody try to send me a message:
udp protocol
ip: ---.---.---.--- (router crashed, I'll try to turn it on later today...)
port: 50000

You can use the test program that may be found in the manual that i uploaded.

Edit: My router keeps crashing for the last few days...
Top
 Profile  
Reply with quote  
BigDumbDinosaur
 Post subject: Re: 6502 sbc with web
PostPosted: Sat May 05, 2012 3:55 am 
Offline
User avatar

Joined: Thu May 28, 2009 9:46 pm
Posts: 8382
Location: Midwestern USA
Dajgoro wrote:
Edit: My router keeps crashing for the last few days...

What kind of router do you have that it keeps crashing? :cry:

_________________
x86?  We ain't got no x86.  We don't NEED no stinking x86!
Top
 Profile  
Reply with quote  
BigDumbDinosaur
 Post subject: Re: 6502 sbc with web
PostPosted: Sat May 05, 2012 4:00 am 
Offline
User avatar

Joined: Thu May 28, 2009 9:46 pm
Posts: 8382
Location: Midwestern USA
GARTHWILSON wrote:
Since our older son is somewhat of a networking expert, I asked him about your post, and he said there's not enough information there to figure out much. He runs his server and some at the school he works for under Linux though, and those don't have any trouble. He can see the hacking attempts, but they are never successful. Linux never bluescreens either.

No Window$ servers here either. We have two 32 bit UNIX boxes (one which contains all the source code for my POC unit's BIOS) and one SuSE 64 bit Linux unit, the latter which hosts E-mail and web services, and acts as the router/gateway for the Internet. All three are as stable as the Rock of Gibraltar, and nearly as bullet-proof. :)

_________________
x86?  We ain't got no x86.  We don't NEED no stinking x86!
Top
 Profile  
Reply with quote  
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Sat May 05, 2012 3:32 pm 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
I have a Thomson TG782i , the technician just left, he brought me a new one. He also took the analog splitter away, now my phone line goes over voip, and next time when the router crashes, i won't be able to use my telephone...
Anyway, try sending me the message now:
UDP
IP: 78.1.160.228 (expired)
port: 50000

Edit: If you are using the program that i uploaded(in the manual), first select udp mode on the left side, click connect, after that a new input box will appear with a ip, input my ip there, and the port number. After that write a message in the box below and click send.


Last edited by Dajgoro on Mon May 14, 2012 12:14 am, edited 1 time in total.

Top
 Profile  
Reply with quote  
BigEd
 Post subject: Re: 6502 sbc with web
PostPosted: Sat May 05, 2012 3:45 pm 
Offline
User avatar

Joined: Thu Dec 11, 2008 1:28 pm
Posts: 10938
Location: England
Sent you a few packets
Top
 Profile  
Reply with quote  
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Sat May 05, 2012 6:56 pm 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
Code:
4:45pm hello dajgoro
                    4:46pm hello dajgoro
                                        4:46pm hello dajgoro
                                                            4:47pm hello dajgoro
                                                                               4:47pm hello dajgoro
                   4:47pm hello dajgoro
                                       4:48pm hello dajgoro
                                                           4:48pm hello dajgoro
                                                                               4:48pm hello dajgoro
                   4:48pm hello dajgoro
                                       4:49pm hello dajgoro
                                                           4:50pm hello dajgoro
                                                                               4:50pm hello dajgoro
                   4.57 hello dajgoro
                                     17:42 hello dajgoro
                                                        17:42 hello dajgoro
                                                                           17:43 hello dajgoro
              17:43 hello dajgoro
                                 18:31 hello dajgoro
                                                    18:31 hello dajgoro


Got them.

Thanks, it's working!
Top
 Profile  
Reply with quote  
BigEd
 Post subject: Re: 6502 sbc with web
PostPosted: Sat May 05, 2012 7:18 pm 
Offline
User avatar

Joined: Thu Dec 11, 2008 1:28 pm
Posts: 10938
Location: England
yep, 20 packets sent. The thing with UDP is that packets can be dropped, duplicated or received out of order. On a home network you'll probably be OK, but over the internet it could get interesting.
Top
 Profile  
Reply with quote  
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Sun May 06, 2012 4:41 pm 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
OffTopic: About the weird packets, Malwarebytes keeps blocking them, but again, the source is unknown, and a full scan didn't help... Any other software that might help exterminate this malware bot?
Top
 Profile  
Reply with quote  
BigEd
 Post subject: Re: 6502 sbc with web
PostPosted: Sun May 06, 2012 4:49 pm 
Offline
User avatar

Joined: Thu Dec 11, 2008 1:28 pm
Posts: 10938
Location: England
See my earlier post for some exhaustive cleanup procedures ("advice from other victims")
Top
 Profile  
Reply with quote  
Dajgoro
 Post subject: Re: 6502 sbc with web
PostPosted: Sun May 06, 2012 5:09 pm 
Offline
User avatar

Joined: Mon Aug 08, 2011 2:48 pm
Posts: 808
Location: Croatia
I guess i will have to try to install them all, and see which will find this malware...
Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 3 of 3
  [ 45 posts ]  Go to page Previous  1, 2, 3

Board index » 6502.org Users Forum » Programming

All times are UTC


Who is online

Users browsing this forum: No registered users and 24 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
6502.org is an ongoing project by Mike Naberezny and contributors.