Need help on those attacks

MohawkAngel · Sep 21, 2010, 06:51 PM

I got those in my router so can you tell me if its dangerous and what type of attacks are they ?

Also is there any way to atack back those mother fuc**** ?

Frick · Sep 21, 2010, 06:54 PM

It think it's just a port scan. That's life on the web.

Kreij · Sep 21, 2010, 07:01 PM

Looks like typical internet "noise" (bots, zombies, script kiddies, etc.) scanning ports for vulnerabilities. Given that they are being reported your router seems to be doing its job.

PVTCaboose1337 · Sep 21, 2010, 07:06 PM

You won't be able to prevent port scans. Personally, as a sysadmin of my home, any scan I get I get the IP, trace it to a certain ISP. (no, no backtracing, no cyberpolice idiots). I have called the ISP personally of 2 individuals and reported "criminal activity" in the most "I know what I am talking about" tone possible. The port scans stopped from both addresses, the ISP does something, sends a warning letter, cuts off service, I don't know, but problems on my end stop!

Picture is so related

:

Frick · Sep 21, 2010, 07:09 PM

Somehow I read that you tracked the individuals down, but then I read it again. ^^

I would not have thought about that though. Good tip, although I couldn't be bothered with it.

PVTCaboose1337 · Sep 21, 2010, 07:11 PM

Quote:

Originally Posted by Frick

Somehow I read that you tracked the individuals down, but then I read it again. ^^

I would not have thought about that though. Good tip, although I couldn't be bothered with it.

It takes them maybe a few minutes to port scan you, and if you take 20 minutes out of your day to ruin their lives (or at least internet), it is worth it. Trust me.

PS: It is damn obvious when someone is behind proxies, so you are out of luck when they are.

MohawkAngel · Sep 21, 2010, 07:24 PM

The thing is that i unchecked the square saying Respong to wan ping attack.! so why i get wan ping attack if its supposed to not respond to those ping ?

95Viper · Sep 21, 2010, 11:00 PM

Have you got a xbox, ps3, or something hooked up?
And, have you been or are playing any IGN games or connecting to their host or a server that hosts games by them?

If not, then, it is BS ping from them. Remember the MATRIX. (play eerie music here, please)

MohawkAngel · Sep 21, 2010, 11:12 PM

Nothing here except computer. Maybe played IGN map in Battlefield 2 .....dont know. If its really the matrix ill screw them by using the old rotary phone :P

95Viper · Sep 21, 2010, 11:24 PM

Yeah, the Xmas port scan is coming from an IGN Entertainment server.

Don't worry 'bout it, everyone gets port scanned, by your ISP even.

You can go here, to GRC(Gibson Research) and do a port scan yourself. See, what is open, stealthed, and closed(blocked). Any of them open that you don't want open... stealth or close 'em; it gives the port numbers and stuff, just mouse around for more info.

Goodluck

MohawkAngel · Sep 22, 2010, 06:24 AM

GRC Port Authority Report created on UTC: 2010-09-22 at 06:24:23

Results from scan of ports: 0-1055

0 Ports Open
2 Ports Closed
1054 Ports Stealth
---------------------
1056 Ports Tested

NO PORTS were found to be OPEN.

Ports found to be CLOSED were: 0, 1

Other than what is listed above, all ports are STEALTH.

TruStealth: FAILED - NOT all tested ports were STEALTH,
- NO unsolicited packets were received,
- NO Ping reply (ICMP Echo) was received.

andrew123 · Oct 4, 2010, 06:57 AM

yeah, it's life on the internet.. i have an ssh box I use at home and when I check my auth.log it shows nightly portscans usually from 2 or 3 addresses.. c'est la vie.

qubit · Oct 4, 2010, 07:08 AM

I wouldn't worry about it.

A few years ago my IPCop firewall registered upto 15000 hits a day - and every single one of them bounced off.

That was at the height of some virus outbreak. It was all over the media and I remember people running around at work like headless chickens over it. Boy that was funny!

Nowadays, it's only a few hundred to a 1000 at the most. Shame.

segalaw19800 · Oct 4, 2010, 07:37 AM

try this link to trace ip .. http://www.ip-adress.com/

gunsmoke · Oct 5, 2010, 02:58 AM

Quote:

Originally Posted by MohawkAngel

http://img.techpowerup.org/100921/WBR-1310.jpg

I got those in my router so can you tell me if its dangerous and what type of attacks are they ?

Also is there any way to atack back those mother fuc**** ?

why not try a ip mask i no it can hide you on line but mite slow down your isp tho.
it worked for me this onces with the same problemes you are haveing i had all so years,
Ago

AsRock · Oct 5, 2010, 03:17 AM

If you want to block and put the computer is stealth try Outpost Firewall. As you get used the program you can do much more than your typical FW.

To test even further try this site http://www.pcflank.com/about.htm?from=ossmyinternet08

EDIT: BTW are you running a bittorrent ?. That could be why you getting so many port scans.

f22a4bandit · Oct 5, 2010, 05:21 AM

Quote:

Originally Posted by AsRock

If you want to block and put the computer is stealth try Outpost Firewall. As you get used the program you can do much more than your typical FW.

To test even further try this site http://www.pcflank.com/about.htm?from=ossmyinternet08

EDIT: BTW are you running a bittorrent ?. That could be why you getting so many port scans.

That's a really good site there, AsRock.

Solaris17 · Oct 5, 2010, 05:56 AM

having your ID stolen blows im tagged for life. stay safe people the internet is a real place were real people with bad intentions REALLY exist.

Sep 21, 2010, 06:51 PM	#1
MohawkAngel Banned Join Date: Jan 2009 Posts: 1,814 (1.15/day) Thanks: 87 Thanked 128 Times in 116 Posts System Specs	Need help on those attacks I got those in my router so can you tell me if its dangerous and what type of attacks are they ? Also is there any way to atack back those mother fuc**** ?

Sep 21, 2010, 06:54 PM	#2
Frick Fishfaced Nincompoop Join Date: Feb 2006 Location: Sweden Posts: 7,870 (2.98/day) Thanks: 1,075 Thanked 1,443 Times in 1,149 Posts System Specs	It think it's just a port scan. That's life on the web. __________________ Typemachine: Acer Aspire One D250 \| Atom N280 1.6 Ghz \| 1GB DDR2 \| 160GB SATA \| 10.1' 1024 x 600 \| Lubuntu 12.10 Oldbox: HP D530 \| Pentium 4 2.8 Ghz \| 1GB DDR \| 40GB \| Windows XP "The 'gentle biker' look is overdone. I'm going for 'psycho hillbilly.' "

System Name:	Ongoing scavanging
Processor:	Sempron 140
Motherboard:	MSI 760GM-P23 (FX)
Cooling:	Somesuch
Memory:	2GB DDR3
Video Card:	HD 2400 Pro
Hard Disk:	160GB + 1TB
Optical Drive:	Yes
CRT/LCD Model:	19" 1280 x 1024
Case:	Wossname
Sound Card:	On board
PSU:	Wattchamacallit
Software:	Stuff

Sep 21, 2010, 07:01 PM	#3
Kreij Hardcore Monkey Moderator Join Date: Feb 2007 Location: Cheeseland (Wisconsin, USA) Posts: 12,110 (5.28/day) Thanks: 591 Thanked 5,488 Times in 2,932 Posts System Specs	Looks like typical internet "noise" (bots, zombies, script kiddies, etc.) scanning ports for vulnerabilities. Given that they are being reported your router seems to be doing its job. __________________ Cloud (noun, singular): A dynamic arrangement of multiple potential single points of failure, with a user at one end and their data at the other. Get more tech news on a wide variety of topics at NextPowerUp

Processor:	Intel Core 2 Quad QX9650 Extreme @ 3.0 GHz
Motherboard:	Asus Rampage Formula
Cooling:	ZeroTherm Nirvana NV120 Premium
Memory:	8GB (4 x 2GB) Corsair Dominator PC2-8500
Video Card:	2 x Sapphire Radeon HD6970
Hard Disk:	2 x Seagate Barracuda 320GB in RAID 0
Optical Drive:	Sony DRU-120C DVD-RW
CRT/LCD Model:	Dell 3007WFP 30" LCD (2560 x 1600)
Case:	Thermaltake Armor w/ 250mm Side Fan
Sound Card:	SupremeFX 8ch Audio
PSU:	Thermaltake Toughpower 750W Modular
Software:	Win8 Pro x64 / Cat 12.10

Sep 21, 2010, 07:06 PM	#4
PVTCaboose1337 Graphical Hacker Join Date: Feb 2006 Location: San Antonio, Texas Posts: 7,478 (2.81/day) Thanks: 798 Thanked 1,174 Times in 834 Posts System Specs	You won't be able to prevent port scans. Personally, as a sysadmin of my home, any scan I get I get the IP, trace it to a certain ISP. (no, no backtracing, no cyberpolice idiots). I have called the ISP personally of 2 individuals and reported "criminal activity" in the most "I know what I am talking about" tone possible. The port scans stopped from both addresses, the ISP does something, sends a warning letter, cuts off service, I don't know, but problems on my end stop! Picture is so related : Attached Thumbnails __________________ CPU-Z validation sig pics temporarily blocked Last edited by PVTCaboose1337; Sep 21, 2010 at 07:16 PM. Reason: of != off

System Name:	Whim
Processor:	Intel Core i5 2500k @ 4.4ghz
Motherboard:	Gigabyte P67A-D3-B3
Cooling:	Cooler Master Hyper 212+
Memory:	2 x 4GB G.Skill Ripjaws @ 1600mhz
Video Card:	Gigabyte GTX 670 2gb
Hard Disk:	WD 640gb Black (Main), WD 2tb Black (Secondary)
Optical Drive:	LG DVD-RW Drive
CRT/LCD Model:	Asus VE228 and Samsung 2053BW
Case:	Cooler Master 430 Elite
Sound Card:	Onboard > PA2V2 Amp > Senn 595's
PSU:	Seasonic 650w
Software:	Windows 7 Ultimate (Tweaked)

Sep 21, 2010, 07:09 PM	#5
Frick Fishfaced Nincompoop Join Date: Feb 2006 Location: Sweden Posts: 7,870 (2.98/day) Thanks: 1,075 Thanked 1,443 Times in 1,149 Posts System Specs	Somehow I read that you tracked the individuals down, but then I read it again. ^^ I would not have thought about that though. Good tip, although I couldn't be bothered with it. __________________ Typemachine: Acer Aspire One D250 \| Atom N280 1.6 Ghz \| 1GB DDR2 \| 160GB SATA \| 10.1' 1024 x 600 \| Lubuntu 12.10 Oldbox: HP D530 \| Pentium 4 2.8 Ghz \| 1GB DDR \| 40GB \| Windows XP "The 'gentle biker' look is overdone. I'm going for 'psycho hillbilly.' "

Sep 21, 2010, 07:24 PM	#7
MohawkAngel Banned Join Date: Jan 2009 Posts: 1,814 (1.15/day) Thanks: 87 Thanked 128 Times in 116 Posts System Specs	The thing is that i unchecked the square saying Respong to wan ping attack.! so why i get wan ping attack if its supposed to not respond to those ping ?

Sep 21, 2010, 11:00 PM	#8
95Viper Join Date: Oct 2008 Location: στο άλφα έως ωμέγα Posts: 3,838 (2.28/day) Thanks: 2,032 Thanked 1,416 Times in 1,115 Posts System Specs	Have you got a xbox, ps3, or something hooked up? And, have you been or are playing any IGN games or connecting to their host or a server that hosts games by them? If not, then, it is BS ping from them. Remember the MATRIX. (play eerie music here, please)

System Name:	Ha/AhHa
Processor:	QX9650 SLAWN C1/i7-980x
Motherboard:	GA-X48_DS4 (F3B bios)/Gigabyte x58A-UDR3 v 2.0(Fh1 bios)
Cooling:	CNPS9900 LED/H60
Memory:	8 Gig of G.Skill F2-8800CL5D/24 Gig Corsair Vengence
Video Card:	Galaxy GTS 465/Gigabyte HD6950 unlocked w\ 1536 shaders
Hard Disk:	150 VRaptor,160 WD, 500 WD,2X 74 Gig VR(RAID0)/SanDisk Extreme 120, 2 WD VR(Raid 0),Seagate 1 TB
Optical Drive:	Asus/HP dvd1270 and Samsung
CRT/LCD Model:	ViewSonic VX2250wm-LED/Asus 266H
Case:	CM-690/CM-690 II adv
Sound Card:	On board (Realtek)/On board (Realtek)
PSU:	PC P&C 750/PC P&C Silencer 950
Software:	Windows 7 Build 7601 SP1 - 64 bit/Same

Sep 21, 2010, 11:12 PM	#9
MohawkAngel Banned Join Date: Jan 2009 Posts: 1,814 (1.15/day) Thanks: 87 Thanked 128 Times in 116 Posts System Specs	Nothing here except computer. Maybe played IGN map in Battlefield 2 .....dont know. If its really the matrix ill screw them by using the old rotary phone :P

Sep 21, 2010, 11:24 PM	#10
95Viper Join Date: Oct 2008 Location: στο άλφα έως ωμέγα Posts: 3,838 (2.28/day) Thanks: 2,032 Thanked 1,416 Times in 1,115 Posts System Specs	Yeah, the Xmas port scan is coming from an IGN Entertainment server. Don't worry 'bout it, everyone gets port scanned, by your ISP even. You can go here, to GRC(Gibson Research) and do a port scan yourself. See, what is open, stealthed, and closed(blocked). Any of them open that you don't want open... stealth or close 'em; it gives the port numbers and stuff, just mouse around for more info. Goodluck

Sep 22, 2010, 06:24 AM	#11
MohawkAngel Banned Join Date: Jan 2009 Posts: 1,814 (1.15/day) Thanks: 87 Thanked 128 Times in 116 Posts System Specs	GRC Port Authority Report created on UTC: 2010-09-22 at 06:24:23 Results from scan of ports: 0-1055 0 Ports Open 2 Ports Closed 1054 Ports Stealth --------------------- 1056 Ports Tested NO PORTS were found to be OPEN. Ports found to be CLOSED were: 0, 1 Other than what is listed above, all ports are STEALTH. TruStealth: FAILED - NOT all tested ports were STEALTH, - NO unsolicited packets were received, - NO Ping reply (ICMP Echo) was received.

Oct 4, 2010, 06:57 AM	#12
andrew123 Join Date: Jan 2010 Location: Canada Posts: 30 (0.02/day) Thanks: 1 Thanked 3 Times in 3 Posts	yeah, it's life on the internet.. i have an ssh box I use at home and when I check my auth.log it shows nightly portscans usually from 2 or 3 addresses.. c'est la vie.

Oct 4, 2010, 07:08 AM	#13
qubit Overclocked quantum bit Join Date: Dec 2007 Location: Quantumville UK Posts: 8,641 (4.34/day) Thanks: 4,169 Thanked 3,301 Times in 1,941 Posts System Specs	I wouldn't worry about it. A few years ago my IPCop firewall registered upto 15000 hits a day - and every single one of them bounced off. That was at the height of some virus outbreak. It was all over the media and I remember people running around at work like headless chickens over it. Boy that was funny! Nowadays, it's only a few hundred to a 1000 at the most. Shame. __________________ Siggie in the post. Last edited by qubit; Oct 4, 2010 at 09:28 AM. Reason: Clarified

System Name:	Quantumville™
Processor:	Intel Core i7-2700K at 4.7GHz (hits 5 gees+ easily)
Motherboard:	Asus P8Z68-V PRO/GEN3
Cooling:	Noctua NH-D14
Memory:	16GB (4 x 4GB Corsair Vengeance DDR3 PC3-12800 C9 1600MHz)
Video Card:	EVGA GTX 590 Classified
Hard Disk:	WD Caviar Black 640GB / WD Caviar Green 2TB x2 in mobo RAID 1
Optical Drive:	Whatever DVD drive I've chucked in there right now
CRT/LCD Model:	Asus VG278HE (144Hz, 3D Vision 2, 1080p, 27") & LG W2363D (120Hz 1080p 23")
Case:	Coolermaster HAF 922
Sound Card:	SoundBlaster X-Fi ExtremeMusic (You ever heard one of these? Wow!)
PSU:	Corsair HX850W
Software:	Window 7 Ultimate 64-bit
Benchmarks:	Yes

Oct 4, 2010, 07:37 AM	#14
segalaw19800 Join Date: Jan 2010 Location: Stockton CA Posts: 371 (0.31/day) Thanks: 111 Thanked 61 Times in 52 Posts System Specs	try this link to trace ip .. http://www.ip-adress.com/ __________________ Cheese is always free on a mouse trap

System Name:	Geting old
Processor:	AMD Phenom II X4 940 Processor BE 3.8 Ghz
Motherboard:	MICRO-STAR INTERNATIONAL.. MS-7388 1.0
Cooling:	CORSAIR H50 water cooler
Memory:	8 GB of Patriot Extreme Performance DDR2 4GB (2 x 2GB)PC2-6400 Enhanced Latency
Video Card:	ATI Radeon HD 4870 X2
Hard Disk:	Seagate Barracuda 1 TB
Optical Drive:	Lg blueray drive x2
CRT/LCD Model:	LG FLATRON W2361V 23"
Case:	RAIDMAX SMILODON
Sound Card:	HD Realtek
PSU:	Two 1000W ULTRA X3 wired together
Software:	Windows 7 Ultimate 64-BIT---- Windows Vista Ultimate x64 VM mode

System Name:	OLD SCHOOL
Processor:	E6300 1.8 Gig
Motherboard:	ASUS P5VD2-X rev 0501
Cooling:	air
Memory:	1 x 512 ddr2 1 x 1024 dd2
Video Card:	ATI hd 3870 PCI-E
Hard Disk:	200 Gig ide/ 160 ide / 80 ide / 160 sata
CRT/LCD Model:	samsung
Case:	Thermaltake Armor Case VA8000
Sound Card:	on bored
PSU:	560w silverstone
Software:	win 7 32 bit
Benchmarks:	no time for benchmarking

Oct 5, 2010, 03:17 AM	#16
AsRock TPU addict Join Date: Jun 2007 Location: US\ Uk Born Posts: 8,785 (4.07/day) Thanks: 1,669 Thanked 1,345 Times in 1,167 Posts System Specs	If you want to block and put the computer is stealth try Outpost Firewall. As you get used the program you can do much more than your typical FW. To test even further try this site http://www.pcflank.com/about.htm?from=ossmyinternet08 EDIT: BTW are you running a bittorrent ?. That could be why you getting so many port scans.

System Name:	weeeeeeeeeeeeeeeeeee
Processor:	i5 2500k \ i7 3770k
Motherboard:	ASRock Z68 Extreme3 Gen3 \ ASRock Z77 Extreme 4
Cooling:	Gemini II S524 \ XIGMATEK Gaia SD1283 with Couger 1500 RPM fans\ ZM-MFC2
Memory:	Samsung 1600 16GB \ Samsung 1600 16GB
Video Card:	XFX HD6770 \ XFX 6970 w/Prolima MK-13 ( With modded 5870 VRM hrstsink )
Hard Disk:	2x intel ssd x25 G2 80GB \ OCZ Solid 3+2 Corsair Force GT's 120GB (Use HDD's for backups only
Optical Drive:	LiteOn DVD 163 \ TEAC exturnal DVD drive
CRT/LCD Model:	Samsung 204B 20.1inch ( Native 12x16 ) \ Toshiba 40" HDTV ( Native 1920x1080 )
Case:	ARK Black HTPC 400BA \ None
Sound Card:	Though video card HDMI ONKYO TX-SR608 +TANNOY MERCURY F4+ Polk Audio RTI4+Polk Audio PSW505
PSU:	CoolMax CXI-600B\ PC Power & Cooling Silencer 750 Quad
Software:	Windows Vista Ultimate 64Bit \Win 7
Benchmarks:	Track IR 4 Razer Blackwidow Ultimate ( rma'ed trice and same issue's ) Steelseries XAI

System Name:	The Bandit!
Processor:	Intel Core i7 960 @ 3.2GHZ
Motherboard:	EVGA x58 sli 132-BL-E758-RX
Cooling:	Thermalright Venomous-X-RT
Memory:	24GB G.SKILL Ripjaws DDR3 1600
Video Card:	Sapphire Radeon HD 7950 3GB
Hard Disk:	Seagate Barracuda 1TB 7200 RPM
Optical Drive:	LG Blu-Ray/HD-DVD Combo drive
CRT/LCD Model:	23" Acer H236HLbid
Case:	Corsair Carbide 400R
Sound Card:	Onboard Audio
PSU:	Corsair GS600 PSU
Software:	Windows 7 Professional SP1 x64

Oct 5, 2010, 05:56 AM	#18
Solaris17 Creator Solaris Utility DVD Join Date: Aug 2005 Location: Reinacting scenes from platoon with Charlie Sheen Posts: 13,708 (4.84/day) Thanks: 4,365 Thanked 3,295 Times in 2,311 Posts System Specs	having your ID stolen blows im tagged for life. stay safe people the internet is a real place were real people with bad intentions REALLY exist. __________________ I Made the Millionth post! \| "Please come to WI now so I can beat you over the head with a bratwurst."-Kreij PS3 mod 8500/8600GT Mod Guide Rebuild a Copperhead Heat Ware NF4 Ultra SLI Mod Solaris Utility DVD 4.0 Broken CPU pin guide Vista Mark

System Name:	Prometheus
Processor:	Xeon W 3520 4.5ghz
Motherboard:	DFI Lanparty UT t3eH8
Cooling:	Xigmatek Dark Knight
Memory:	(3x8GB) 24GB Avexir Core series triple channel 1600mhz
Video Card:	MSI GTX470
Hard Disk:	OCZ Agility3 120, SS 1TB, SS 2TB
Optical Drive:	Pioneer DVD Dual layer burner R+RW (Firmware Upgrade)/Philips lightscribe DVD burner Dual layer
CRT/LCD Model:	Dell 2007FP
Case:	Xigmatek Utgard
Sound Card:	ASUS Xonar D2X 7.1 on Logitec X-540/Razer Carcharias
PSU:	Corsair HX1000
Software:	Windows8 x64 \|\|Poser7, Cinema4D, CS5, 3DSM10, Lightwave9, Bryce7
Benchmarks:	I'm such a tease

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Attacks on Adobe Intensify	Polaris573	News	3	Feb 12, 2008 02:42 AM
WinFlash 1.84 (for those who need it)	SpoonMuffin	Motherboards & Memory	0	Oct 31, 2007 09:50 PM
For all those axp/p4 users who need an upgrade	AshenSugar	General Hardware	1	Sep 21, 2006 11:11 AM