Recommended Posts

page 1 of 28

Time Message

Sep 18 16:34:04 Xmas port scan attack from WAN (ip:222.152.234.171) detected.

Sep 18 16:33:52 Xmas port scan attack from WAN (ip:202.166.204.9) detected.

Sep 18 16:33:15 Xmas port scan attack from WAN (ip:81.178.94.132) detected.

Sep 18 16:31:53 Xmas port scan attack from WAN (ip:202.166.204.9) detected.

Sep 18 16:31:34 Xmas port scan attack from WAN (ip:82.238.17.115) detected.

Sep 18 16:29:00 Xmas port scan attack from WAN (ip:65.54.195.185) detected.

Sep 18 16:28:59 Xmas port scan attack from WAN (ip:65.54.195.185) detected.

Sep 18 16:28:55 Xmas port scan attack from WAN (ip:142.165.165.20) detected.

Sep 18 16:28:52 Xmas port scan attack from WAN (ip:83.28.137.30) detected.

Sep 18 16:28:22 SYN-ACK port scan attack from WAN (ip:80.162.40.155) detected.

Thats page 1 of 28.

2 of 28

Sep 18 16:35:22 Xmas port scan attack from WAN (ip:82.238.17.115) detected.

Sep 18 16:35:15 Xmas port scan attack from WAN (ip:81.178.94.132) detected.

Sep 18 16:34:45 Xmas port scan attack from WAN (ip:222.152.234.171) detected.

Sep 18 16:34:18 Xmas port scan attack from WAN (ip:65.23.219.50) detected.

Sep 18 16:34:04 Xmas port scan attack from WAN (ip:222.152.234.171) detected.

Sep 18 16:33:52 Xmas port scan attack from WAN (ip:202.166.204.9) detected.

Sep 18 16:33:15 Xmas port scan attack from WAN (ip:81.178.94.132) detected.

Sep 18 16:31:53 Xmas port scan attack from WAN (ip:202.166.204.9) detected.

Sep 18 16:31:34 Xmas port scan attack from WAN (ip:82.238.17.115) detected.

Sep 18 16:29:00 Xmas port scan attack from WAN (ip:65.54.195.185) detected.

Sep 18 16:28:22 SYN-ACK port scan attack from WAN (ip:80.162.40.155) detected.

Thats on page 3.

Is my router blocking those attacks? Or am I being hacked? I have no idea. Can someone please advise.

Link to comment
https://www.neowin.net/forum/topic/496924-xmas-port-scan-attack/
Share on other sites

those are just portscans, meaning they're looking for specific ports like 80, 21, 23, 25, 1025, etc... if they found something like port 80 (HTTP Web Server) they'd check to see if its running IIS, or what, and see if there's any vulnerabilities..

if you're not hosting anything then it shouldn't be a problem.

Well. I have Zone Alarm now. And it's registered just over 4100 blocked access attempts since install (and I installed it about 5 hours ago) while my dads Zone Alarm has been installed for over 6 months and only has around 250 blocked access attempts.

I highly doubt they are port scan attacks.. I would guess they are just your router misreporting the traffic as an attack ;)

an XMAS port scan has to do with flags being set on the packet, ie the FIN, PSH, and URG flags are set.. ie lighting the packet up like a xmas tree. Hence the name ;)

But yes running BT will creates loads of traffic to your machine for days to come!

I show 369 hits a couple of days ago from BT..

post-14624-1158813594_thumb.jpg

And last time I ran it was like the 16th -- today I still show 203 hits from BT.. Have not ran it since the 16th..

Why do you think quite a few router have issues with BT? They have very limited amounts of ram.. And default to leaving connections open for like 5 days or something. This can suck up the ram of the device very quickly ;) And also depending on the router, they can most of the time misinterpret the traffic as an attack.. and fill up their logs very quickly as well.

I doubt your router has the ability to customize what is logged and what is just dropped, etc. But do you really think your getting port scanned from all those different IPs in the short amount of time you posted.. what like 5 minutes -- 10 different IPs.. most likely from all over the planet..

That 81.178.94.132 is UK, that 222.152.234.171 is NZ, shoot 65.54.195.185 is Microsoft.. You think they are xmas port scanning you ;)

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • A 10% IPC boost is underwhelming for what is supposed to be a major generational leap. Unless it's accompanied by higher clock speeds, or the IPC boost is greater than 10% in games, I'm not sure that it will be enough to compete with Zen 5 X3D, let alone Zen 6 X3D for gaming. Single-core performance is super important and cannot be compensated with more cores, whereas the reverse is true, you can compensate for fewer cores with better single-core performance.
    • Been happy with Windows 11 myself even since first release in 2021, sure it hasn't always been perfect, but nothing is per say.. Issues i did have was minor ones, which is normal with any OS really. I still use Windows 10 at times on my unsupported Gaming Laptop, and i find myself using the Windows 11 Desktop more. Eventually replacing Gaming Laptop with a Windows 11 Compatible one somehow, someway this year or possibly next year at the latest, but its gonna happen--(May save all my Bing reward points except the 1000 to have extended support for 10) then work on getting quality Replacement hard)
    • Geez, this is dumb. I use my laptop sometimes in the dark when doing astrophotography to control my astro-PC... this explains why I have to keep entering my PIN when logging back in. So stupid. I can't see the keyboard in the dark, and I can't have lights everywhere to light it up because everything is very light sensitive (including my eyes!).
    • Naturally. I don't care about brand loyalty at all as it's all about price/performance/reliability etc (even what RejZoR said below is a great point to). basically bang-for-the-buck. because at the end of the day... one wants the cheapest possible price to maintain a certain minimum level of performance (or thereabouts). because generally after a certain point with CPU and GPU's the price starts to sky rocket without that much difference in performance where it really matters. p.s. historically I have bought more Intel CPU's and NVIDIA GPU's but I have had some AMD CPU's and one AMD GPU.
    • Both of these companies as well as Qualcomm and Apple need competition. Otherwise, they just coast. I don't prefer macOS, though I like some of Apple's hardware, but if anyone needs competition, it is Apple. Their prices are already outrageous and they need to have a reason to produce good hardware and at least keep prices remotely reasonable. (It is criminal what they charge for RAM upgrades especially.) Qualcomm needs to push AMD and Intel not to be so sloppy with the performance/efficiency aspect. Granted, AMD has been doing quite well in this respect considering they are not an ARM architecture. I personally want to have more options that truly compete with Macbook Air and Macbook Pro's on the Windows side. It is difficult to achieve what Apple does since they control the entire stack and that is fundamentally different for Windows PCs other than maybe Microsoft Surface PCs.
  • Recent Achievements

    • Week One Done
      Hartej earned a badge
      Week One Done
    • One Year In
      TsunadeMama earned a badge
      One Year In
    • Week One Done
      shaheen earned a badge
      Week One Done
    • Dedicated
      Cole Multipass earned a badge
      Dedicated
    • Week One Done
      Alexander 001 earned a badge
      Week One Done
  • Popular Contributors

    1. 1
      +primortal
      565
    2. 2
      +FloatingFatMan
      182
    3. 3
      ATLien_0
      175
    4. 4
      Skyfrog
      111
    5. 5
      Som
      106
  • Tell a friend

    Love Neowin? Tell a friend!