Getting DOSd
 

So, loading pictures and downloading files and such seemed to get really slow just now.. so I do a netstat -n and see that a LOT of connections are taking place.. so I take a look at my packets sent/received, and they are both THROUGH THE ROOF. What can I do?

List of IP's:
66.132.228.181
67.18.46.186
67.19.186.186
67.19.187.146
82.80.252.226
82.165.252.82
209.189.22.3
209.190.112.42

There are a ton of other ones but these ones are the ones with the most connections.. I'm talking like 20-30 connections from each IP, on different ports..

What ports are they trying to hit?

What are you running for a firewall?

Too many ports to list.. a lot of them seem to be on smtp though, the rest just seem to be random.. I wasn't running a firewall(stupid, I know.. downloading one now) but I turned on the built-in XP firewall and restarted.. got rid of a lot of them, but some still remain connected.

Are they inbound or outbound connections? Also, what ports are open and listening for something to connect? Are you intentionally running services of some nature - p2p sharing, etc.?

They seem to be inbound.. Not running any services like that.

But a lot of malware/spyware apps will use common ports in uncommon ways,

There's a good, free open-port scanner at http://www.grc.com (scroll down to "Shields UP")

Unless you are running a server of some kind, it is unlikely you are getting hit with a true DOS, but there may be people (or worms) trying to hack your machine. In particular if you have an FTP service running, the warez cracker types will jump on it and use it to spread pirate software and movies...

Everyone should allways be running a firewall, virus scanner and anti-spyware software.
firewall- the MS WinXP firewall will do in a pinch but i think that zonealarm is a better (and also free) option.
virus - allways run a scanner. i like McAfee but there are many other options. some free.
spyware - get "spybot search & destroy" and "adaware" and run a scan over your PC with each. spyware is one of the largest threats on the net these days and they can install their own services to alow them to use your PC as an SMTP server for spam (as well as many other things..)..

the fire wall will be the most effective at stopping new threats but you will have to clean you system with the other programs once the wall is up. then a scan once a week or month will be enough (depending on how much your online)
hope this helps

great site, thanks!

Your Internet port 139 does not appear to exist!
One or more ports on this system are operating in FULL STEALTH MODE! Standard Internet behavior requires port connection attempts to be answered with a success or refusal response. Therefore, only an attempt to connect to a nonexistent computer results in no response of either kind. But YOUR computer has DELIBERATELY CHOSEN NOT TO RESPOND (that's very cool!) which represents advanced computer and port stealthing capabilities. A machine configured in this fashion is well hardened to Internet NetBIOS attack and intrusion.

Unable to connect with NetBIOS to your computer.
All attempts to get any information from your computer have FAILED. (This is very uncommon for a Windows networking-based PC.) Relative to vulnerabilities from Windows networking, this computer appears to be VERY SECURE since it is NOT exposing ANY of its internal NetBIOS networking protocol over the Internet.

Buy a Mac. The new mini-mac fits on a PC, and will solve all your problems for $499. It was a genius idea from Apple to sell it without a mouse or keyboard. Like that, you use the mouse, screen and keyboard of the PC, and before you know it, you never turn the PC on anymore.

When the USB keys become large enough, there will no need for CD roms anymore, and the whole Mac will be the size of an ipod. That is the next step, if you ask me. I predict it within two years.

Aurel

If you haven't noticed, There are already full PC's the size of IPods ...

The IPod is the only thing Apple has made that worth anything since the days of the Apple II ..

I personnaly use a PC that looks like a MAC OSX ...


Originally posted by campbellcj
There's a good, free open-port scanner at http://www.grc.com (scroll down to "Shields UP")

GREAT SITE !!!!!