New Posts  All Forums:Forum Nav:

DoS attack: STORM? - Page 4

post #31 of 41
If you're gonna reformat. I highly recommend dban nuke biggrin.gif Takes HOURS! However.. get rid of the router, go cable man.
post #32 of 41
It's probably nothing.... someone was randomly trolling for fun. It's not a big deal... review your logs over time and you will see these now and then.
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #33 of 41
Quote:
Originally Posted by Djmatrix32;15349177 
I know whats it is but grr!frown.gif
What does it mean "from that 178 IP TO that internal 192 IP? I am having trouble with the mixture of routable and non routable IP's.Why does that 178 IP have so many digits in the last octet? sure I know there are 8 places but I never saw that before.Isn't that 192 IP the gateway IP (and also the IP of the router.The 192 IP is not the IP of our OP's host.

OK the 178 IP is the IP that you used to remotely access your router but that makes sense that a 178 (a class B in the old class system) would be the IP of a host
Edited by PCCstudent - 10/19/11 at 5:59pm
WC Rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7-930@4.05GHz ASUS P6X58D-Preminum XFX GeForce 275 896mb 6GB Corsair TR3X6G1600C8D 
Hard DriveOptical DriveOSMonitor
WD 150gb Raptor LightScan Win 7 64-bit Acer 22" 
KeyboardPowerCaseMouse
G15 Corsair HX620W Antec 1200 several various 
Mouse Pad
none 
  hide details  
Reply
WC Rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7-930@4.05GHz ASUS P6X58D-Preminum XFX GeForce 275 896mb 6GB Corsair TR3X6G1600C8D 
Hard DriveOptical DriveOSMonitor
WD 150gb Raptor LightScan Win 7 64-bit Acer 22" 
KeyboardPowerCaseMouse
G15 Corsair HX620W Antec 1200 several various 
Mouse Pad
none 
  hide details  
Reply
post #34 of 41
Im more concerned why your router is establishing connections to french and russian sites.The russian ip seems to be someones personal IP address, since its coming from telenet.ru which is a russian ISP.

Were you on bittorrent? This would explain all of this, especially the super high port numbers and the random euro connections.

Or maybe your gf is cybering over skype with russians and frenchmen? That could explain the whole situation. Get off of computer and pay attention to her. biggrin.gif
Edited by frmchs311 - 10/20/11 at 1:13am
Brick 2.0
(14 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II x4 690t Asrock 970 extreme 3 MSI HD 5770 Hawk 8g Mushkin Blackline 1600 
Hard DriveOSMonitorKeyboard
Barracuda 7200.10 SATA 3.0Gb/s 320-GB Hard Drive  Windows 7 Ultimate 64bit 32 inch Sony Bravia HDTV Logitech G510 
PowerCaseMouseMouse Pad
Antec BP550 Antec 900 Logitech G400 Razer Goliathus Control Edition (medium) 
AudioAudio
xonar dg 5.1 card Logitech G330 Headset 
  hide details  
Reply
Brick 2.0
(14 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II x4 690t Asrock 970 extreme 3 MSI HD 5770 Hawk 8g Mushkin Blackline 1600 
Hard DriveOSMonitorKeyboard
Barracuda 7200.10 SATA 3.0Gb/s 320-GB Hard Drive  Windows 7 Ultimate 64bit 32 inch Sony Bravia HDTV Logitech G510 
PowerCaseMouseMouse Pad
Antec BP550 Antec 900 Logitech G400 Razer Goliathus Control Edition (medium) 
AudioAudio
xonar dg 5.1 card Logitech G330 Headset 
  hide details  
Reply
post #35 of 41
Thread Starter 
Quote:
Originally Posted by frmchs311;15378487 
Im more concerned why your router is establishing connections to french and russian sites.The russian ip seems to be someones personal IP address, since its coming from telenet.ru which is a russian ISP.

Were you on bittorrent? This would explain all of this, especially the super high port numbers and the random euro connections.

Or maybe your gf is cybering over skype with russians and frenchmen? That could explain the whole situation. Get off of computer and pay attention to her. biggrin.gif
I was not on bittorrent and she was at work at Wal-Mart and I do pay attention to her. :3 Going to the movies tonight!
My lost love
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel I5 4430s Asrock Z97x Killer Sapphire 6970 Corsair Dominator 
RAMRAMRAMHard Drive
Corsair Dominator OCZ AMD Black OCZ AMD Black Western Digital Black  
Hard DriveOptical DriveCoolingOS
Western Digital Black LG GH22NS50B H80i Windows 7 Home x64 
MonitorKeyboardPowerCase
Hp D2A13AA Logitech - Classic Keyboard 200 Rosewell 550W COOLER MASTER Haf Evo Xb 
MouseMouse Pad
R.A.T. 5 My Desk 
  hide details  
Reply
My lost love
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel I5 4430s Asrock Z97x Killer Sapphire 6970 Corsair Dominator 
RAMRAMRAMHard Drive
Corsair Dominator OCZ AMD Black OCZ AMD Black Western Digital Black  
Hard DriveOptical DriveCoolingOS
Western Digital Black LG GH22NS50B H80i Windows 7 Home x64 
MonitorKeyboardPowerCase
Hp D2A13AA Logitech - Classic Keyboard 200 Rosewell 550W COOLER MASTER Haf Evo Xb 
MouseMouse Pad
R.A.T. 5 My Desk 
  hide details  
Reply
post #36 of 41
After nuking get Sandboxie and set it up to run your web-browser through this. Won't have to Nuke so often because of a bad webpage. smile.gif
Maybe a tougher software firewall? I like Comodo.
Rig 2.0
(16 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770k Asus P8Z77-V EVGA GTX780 SC ACX Samsung DDR 3 (2 DIMMS) MV-3V4G3D/US 
Hard DriveHard DriveOptical DriveCooling
Samsung 830 SSD WD Caviar Black Asus DVD/RW Xigmatek s-1283 HDT (Air Cooling) 
CoolingCoolingOSMonitor
Scythe Slipstream 1200RPM (x2) Antec 140mm + Antec 120mm + Xigmatek 120mm (x2) Win 7 64bit Acer S243HL bmii - 24" 
PowerCaseMouseAudio
Corsair TX750 Corsair Carbide 300R MX 518 Auzentek X-Fi Forte 7.1 
  hide details  
Reply
Rig 2.0
(16 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770k Asus P8Z77-V EVGA GTX780 SC ACX Samsung DDR 3 (2 DIMMS) MV-3V4G3D/US 
Hard DriveHard DriveOptical DriveCooling
Samsung 830 SSD WD Caviar Black Asus DVD/RW Xigmatek s-1283 HDT (Air Cooling) 
CoolingCoolingOSMonitor
Scythe Slipstream 1200RPM (x2) Antec 140mm + Antec 120mm + Xigmatek 120mm (x2) Win 7 64bit Acer S243HL bmii - 24" 
PowerCaseMouseAudio
Corsair TX750 Corsair Carbide 300R MX 518 Auzentek X-Fi Forte 7.1 
  hide details  
Reply
post #37 of 41
Thread Starter 
Quote:
Originally Posted by Aparition;15381429 
After nuking get Sandboxie and set it up to run your web-browser through this. Won't have to Nuke so often because of a bad webpage. smile.gif
Maybe a tougher software firewall? I like Comodo.
I was thinking a tougher firewall too and thanks for the idea.:3
My lost love
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel I5 4430s Asrock Z97x Killer Sapphire 6970 Corsair Dominator 
RAMRAMRAMHard Drive
Corsair Dominator OCZ AMD Black OCZ AMD Black Western Digital Black  
Hard DriveOptical DriveCoolingOS
Western Digital Black LG GH22NS50B H80i Windows 7 Home x64 
MonitorKeyboardPowerCase
Hp D2A13AA Logitech - Classic Keyboard 200 Rosewell 550W COOLER MASTER Haf Evo Xb 
MouseMouse Pad
R.A.T. 5 My Desk 
  hide details  
Reply
My lost love
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel I5 4430s Asrock Z97x Killer Sapphire 6970 Corsair Dominator 
RAMRAMRAMHard Drive
Corsair Dominator OCZ AMD Black OCZ AMD Black Western Digital Black  
Hard DriveOptical DriveCoolingOS
Western Digital Black LG GH22NS50B H80i Windows 7 Home x64 
MonitorKeyboardPowerCase
Hp D2A13AA Logitech - Classic Keyboard 200 Rosewell 550W COOLER MASTER Haf Evo Xb 
MouseMouse Pad
R.A.T. 5 My Desk 
  hide details  
Reply
post #38 of 41
Thread Starter 
Btw it's back -.- any hep?!?!??!?!?!?mad.gif
My lost love
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel I5 4430s Asrock Z97x Killer Sapphire 6970 Corsair Dominator 
RAMRAMRAMHard Drive
Corsair Dominator OCZ AMD Black OCZ AMD Black Western Digital Black  
Hard DriveOptical DriveCoolingOS
Western Digital Black LG GH22NS50B H80i Windows 7 Home x64 
MonitorKeyboardPowerCase
Hp D2A13AA Logitech - Classic Keyboard 200 Rosewell 550W COOLER MASTER Haf Evo Xb 
MouseMouse Pad
R.A.T. 5 My Desk 
  hide details  
Reply
My lost love
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel I5 4430s Asrock Z97x Killer Sapphire 6970 Corsair Dominator 
RAMRAMRAMHard Drive
Corsair Dominator OCZ AMD Black OCZ AMD Black Western Digital Black  
Hard DriveOptical DriveCoolingOS
Western Digital Black LG GH22NS50B H80i Windows 7 Home x64 
MonitorKeyboardPowerCase
Hp D2A13AA Logitech - Classic Keyboard 200 Rosewell 550W COOLER MASTER Haf Evo Xb 
MouseMouse Pad
R.A.T. 5 My Desk 
  hide details  
Reply
post #39 of 41
 
Thuban Powah!
(14 items)
 
 
CPUMotherboardGraphicsRAM
Xeon X5650 Asus P6X58D-E Sapphire HD 7950 G.Skill Trident-X 2600 CL10 
Hard DriveCoolingPowerCase
Samsung 840 pro Bong cooler / RASA waterblock Rosewill Capstone Gold 750 None 
MouseMouse PadAudio
cheap! Newegg box panel ibeats with onboard. 
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1075T w/2 cores locked @ 4.2+ M4a89GTD-Pro XFX Radeon HD 5870 8gb Samsung ddr3 1600 11-11-11-28@ 8-8-8-24 
Hard DriveHard DriveOptical DriveCooling
OCZ Agility2 40gb WD Blue 500GB Lite-On RASA waterblock 
OSMonitorKeyboardPower
Windows & Linux Samsung 1080p 2 ms Dell Thermaltake TR2-800 
CaseMouse
Cooler Master Elite 330 (was) cheap 
  hide details  
Reply
 
Thuban Powah!
(14 items)
 
 
CPUMotherboardGraphicsRAM
Xeon X5650 Asus P6X58D-E Sapphire HD 7950 G.Skill Trident-X 2600 CL10 
Hard DriveCoolingPowerCase
Samsung 840 pro Bong cooler / RASA waterblock Rosewill Capstone Gold 750 None 
MouseMouse PadAudio
cheap! Newegg box panel ibeats with onboard. 
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1075T w/2 cores locked @ 4.2+ M4a89GTD-Pro XFX Radeon HD 5870 8gb Samsung ddr3 1600 11-11-11-28@ 8-8-8-24 
Hard DriveHard DriveOptical DriveCooling
OCZ Agility2 40gb WD Blue 500GB Lite-On RASA waterblock 
OSMonitorKeyboardPower
Windows & Linux Samsung 1080p 2 ms Dell Thermaltake TR2-800 
CaseMouse
Cooler Master Elite 330 (was) cheap 
  hide details  
Reply
post #40 of 41
Quote:
Originally Posted by Reslivo View Post

Several things:
- Close the port you're being DoS'd on
- Restart your router so you have a new IP
- Grab the culprit's IP and report them to your ISP
- Download free software such as Microsoft Security Essentials to potentially stop the attacks
I like to hide my IP threw proxy as well.

Couldn't the DDoS could be a screen for something like a trojan or worm slipping by designed to use your computer as a zombie in future DDoS attacks eventually making the DDoS have enough zombies to shut down connections?
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security