i keep getting attacked with a trojan (i think) called HTTP MS IIS NTLM AN1 BO - which norton says is very dangerous
it is blocked by Norton so Im ok. But the attack keeps RECURRING whenever the blocking has stopped. Because Norton dont provide a visual tracking system any more I dont know how to block the person sending the virus. It almos the same IP address every time.
Can i block the sender completely?
All help much appreciated thanks - oh and dont get too tecchy with your answers!It is not a trojan and whoever is sending this is technically not sending you a virus. What they're doing is trying to exploit a system vulnerability that according to this page apparently is present in several operating systems.
No need to worry though since your firewall is blocking the attacks. If you know the IPs of the computers sending the attack your firewall should provide you with some way of blocking the IPs permanently. If you're unclear on how to do this, you can give us the name of your firewall and someone might be able to guide your through it.
thats fine but whoever the intruder is the attack seems to be coming from a different IP address every time - except for the first two DIGITS. I can't possibly keep track of all these IP addresses. I know I'm safe because of norton but its becoming very annoying when my little norton symbol flashes at the bottom of my screen and I have to clear it. This is now happening roughly every fifteen MINUTES!
 Just disable those Norton alerts. You don't really need them. They only mean, that Norton is working, and that's all you need to worry about.Contact your ISP and explain what is happening...request a new IP address.
They should have no problem accomodating your request...I don't think, new IP address will change anything.
Every computer experiences those outside attacks every day. It's today's reality. That's why, we have firewalls.So he shouldn't take the advice then ? ?

I get no sniffers or probes and haven't for a long time...