At 2/26/2014 02:46 PM, Ken wrote:
>> Wayne Sparanoid
>
>Just because you are paranoid doesn't mean that they aren't out to get you.
Yes. And every hardware, driver, or software bug is a suspect virus.
You know, every peripheral in your computer has its own firmware that gets
executed on boot. And where are they all made?, and your MB made...
Wayne Sparanoid
=========================================
Shorewall hits for the day:
port 49153 is almost always from chinanet.
If you look in Process Hacker 2 under network, 49153 is almost always
a running process for DHCP and a few others. If you put a computer
open on the internet, no firewall, they can probably get in.
Looks like a new botnet looking for infections on port 22696
Actually this list looks pretty tame at the moment.
Once, before I figured out Verizon pppoe config on linux, I put
my Linux firewall in a DMZ in their actiontec router. Not a true DMZ
because it then advertises to the world that you are wide open.
I started getting so many hits it was in the 60/sec rate and
eventually my internet connection went down. Moral:
Don't use a router's DMZ unless you check it with shields up
as it may not be doing what you think.
HITS IP PORT
---- --------------- -----
30 93.174.93.67 21320
21 154.20.114.241 22696
20 77.186.203.110 34966
19 24.130.181.150 22696
17 183.83.55.217 500
16 77.57.35.251 22696
16 220.134.200.24 22696
16 190.20.49.54 22696
16 187.67.33.238 22648
16 183.109.149.223 22696
16 173.245.217.67 22696
16 114.45.53.96 22696
16 1.64.191.167 22696
15 210.186.210.119 22696
15 175.136.71.187 22696
13 83.155.122.175 500
11 220.233.186.82 56286
10 82.45.25.27 39218
10 37.200.23.38 500
10 184.101.188.108 22696
9 91.79.59.170 500
9 210.66.67.103 22696
9 203.198.141.27 22696
8 66.131.249.136 500
8 113.179.228.163 22696
7 1.161.220.61 22696
6 78.70.230.126 53402
6 72.27.184.77 500
6 222.134.85.234 8174
6 162.219.179.2 22696
6 122.136.196.116 53
6 110.77.197.245 500
5 182.118.22.226 80
5 118.70.67.142 22696
5 118.70.170.145 22696
5 113.160.0.10 22696
4 61.132.63.27 49153
4 118.187.35.66 49153
4 109.72.152.240 22696
3 59.115.73.252 22696
3 5.58.30.203 500
3 49.67.74.244 23
3 46.241.252.49 500
3 46.10.123.29 500
3 222.171.176.82 49153
3 192.168.2.16 9999
3 190.177.77.94 22662
3 184.75.223.50 22696
3 184.75.223.26 22696
3 183.142.26.4 23
3 182.52.155.228 23
3 180.51.232.49 22696
3 177.192.30.220 23
3 162.219.179.178 22696
3 162.219.178.66 22696
3 14.134.84.94 23
3 125.68.7.115 5000
3 123.241.5.206 22696
3 118.232.208.78 22696
3 117.32.58.97 23
3 116.8.108.175 23
3 115.87.207.228 23
3 114.40.51.146 22696
3 114.26.104.139 22696
3 113.196.170.8 22696
3 113.137.135.90 23
3 112.15.72.26 23
2 82.144.151.9 500
2 81.17.25.12 22
2 80.86.87.212 5060
2 75.73.186.130 500
2 61.174.51.215 22
2 61.174.51.213 22
2 60.247.95.242 49153
2 42.3.106.201 500
2 222.220.35.5 1433
2 222.186.62.71 22
2 222.186.62.38 22
2 218.242.135.114 49153
2 217.219.127.235 3389
2 203.109.248.176 5900
2 182.187.102.76 500
2 179.214.161.24 80
2 178.57.141.94 22662
2 111.9.246.164 23
2 101.95.3.70 49153
2 101.95.3.66 49153
1 95.211.179.9 5060
1 93.56.254.74 500
1 93.174.95.63 5631
1 93.174.93.51 8080
1 93.174.93.51 53311
1 93.174.93.51 39136
1 93.174.93.51 38884
1 93.174.93.51 3736
1 93.174.93.51 14611
1 85.252.200.30 5060
1 82.43.118.43 500
1 81.95.148.226 5900
1 81.95.148.226 5631
1 81.172.0.246 51565
1 80.82.70.116 21320
1 74.118.193.79 5060
1 66.240.192.138 20000
1 62.28.57.168 25
1 61.231.89.127 22696
1 61.182.51.166 3389
1 61.174.51.212 22
1 61.174.51.211 22
1 61.174.51.206 22
1 61.174.51.204 22
1 61.174.51.203 22
1 61.174.51.200 22
1 61.147.103.160 3306
1 61.139.76.23 5900
1 60.173.11.143 8080
1 60.12.88.242 49153
1 46.39.229.92 500
1 46.16.33.233 1080
1 39.48.17.192 500
1 23.94.14.18 123
1 223.26.98.106 22696
1 222.45.55.131 49153
1 222.186.62.62 22
1 222.186.62.17 22
1 222.165.43.42 22696
1 221.223.103.140 22696
1 221.2.41.10 4899
1 220.94.157.37 22696
1 218.77.79.34 443
1 218.77.79.34 3389
1 218.77.79.34 25
1 218.77.79.34 22
1 218.7.37.194 22
1 218.205.184.66 65530
1 218.108.21.122 49153
1 208.168.224.147 500
1 204.42.253.2 53
1 203.39.11.10 5900
1 202.112.42.26 65530
1 201.88.210.60 39776
1 2.235.228.138 22696
1 2.219.232.5 1036
1 196.214.133.241 49153
1 191.178.139.58 22696
1 190.254.113.171 23
1 188.138.112.55 5060
1 187.53.35.160 28760
1 186.7.193.27 500
1 184.75.221.122 22696
1 184.168.93.100 3396
1 184.168.93.100 3395
1 184.105.139.78 17
1 183.178.82.241 22696
1 182.209.15.42 22696
1 181.167.118.47 500
1 173.242.113.165 19
1 162.211.182.38 1433
1 151.66.225.247 500
1 141.212.121.21 443
1 14.160.47.18 22696
1 126.10.244.59 500
1 124.65.139.154 22696
1 123.125.71.103 80
1 122.10.92.133 3389
1 118.241.178.61 500
1 118.169.213.77 22696
1 116.49.32.93 22696
1 115.236.60.66 49153
1 115.132.130.167 500
1 114.43.19.172 25
1 113.108.211.131 22
1 112.4.190.125 1433
1 112.216.137.50 5900
1 111.252.240.35 22696
--
_________________________________________________________________
Options: http://lists.thomasclausen.net/mailman/listinfo/olympus
Archives: http://lists.thomasclausen.net/mailman/private/olympus/
Themed Olympus Photo Exhibition: http://www.tope.nl/
|