anyone else getting pinged?

by computers with ip's originating in the herndon, va/washington dc area?

in the past hour or so? excessively?

how do I find out if I am?

One time my weatherbug kept getting re-routed to Vicksburgh or Fredericksburgh, VA or something like that. Freaked me out -- and I wondered if someone was occupying my computer remotely or something. Maybe I'm crazy.

It also traces the source of the attacks, complete with a map of the source of origination. You'll be surprised to find out how many thousands of entities world-wide are trying to figure out what you are up to. The fun part is that the attacks are directly related to your activity. Cheers.

but i get really tired of the alert feature constantly popping off lately.

guess i'll have to shut that off for awhile.

that tracks connection attempts?

mine allows me to visually track the source ip. this isn't the first time.

i've been getting back orifice trojan/netbus attacks for a couple of weeks now.

i suppose i should stop downloading jihadi training videos that float around on the internet.

And my outer firewall is set up to ignore any and all outside pings from anywhere. As far as the outside world is concerned, it's a black hole.

Is STIFF with servers. Utterly stiff. Huge IT infrastructure of all domain types.

Could be a zombie attack forming.

:D

if it's dynamic it's possible that someone else has been hacked and you're getting the echo requests. However, even if you have a static IP it's not necessarily a hack attempt, particularly if the IP pinging you is in the US; even a script kiddy running a port scanner would have the savvy to use an anon proxy.

Is it the same port that is being scanned all the time? Is it higher or lower than 1027? Does the port number change incrementally with each probe?

If you have a firewall that operates in stealth mode it'll just drop the packet rather than block it. So if you do you are probably just one of a number of people off a particular netblock that is being scanned repeatedly. If your firewall blocks the request though it'll return as positive to the source of the scan. Which firewall you behind?

If you want to check your security go to--->>>

http://www.grc.com

and run Shields Up.

and full stealth. invisible computer on the network.

still, i get really suspicious with these attempts at intrusion.

how do you trace an ip?

i'd like to see the registered source of some of these addresses.

there are several online untilities that will reverse an IP and give you the name of the sysadmin and who to contact for abuse of the ISP's services; latter will be abuse @ someisp.com. (see below)

However, I'd be inclined not to mail them. 90+% of firewall alerts are nothing more than legit internet traffic. Bet it's stopped by tomorrow night.

If you want to find out which ISP, network or whatever the scans might be from this is the one I use. If it's a network dozens of people might share one IP. Don't be hasty please; just have a shifty.

http://hexillion.com/

and why?

"At 2:00 AM, January 11th, 2002, the GRC.COM site
was blasted off the Internet by a new (for us)
distributed denial of service attack.
Perhaps the most startling aspect of this attack was that the apparent source was hundreds of the Internet's "core routers", web servers belonging to yahoo.com, and even a machine with an IP resolving to "gary7.nsa.gov". We appeared to be under attack by hundreds of very powerful and well-connected machines."

in my firewall software. What's the specific i.p.?

but I haven't looked in quite a while.