spyderturbo007
DSM Wiseman
- 2,425
- 59
- Dec 20, 2002
-
New Cumberland,
Pennsylvania
I need some help from some of you computer geniuses out there. I know this isn't a computer forum, but I thought some of you guys might be into this sort of thing.
From what I'm getting from my router logs, someone has been port sniffing my home network for at least the past 2 days. The router only holds 20 pages of logs, but other than the normal IP address assignments to my laptop and XBOX 360, it's filled with the following:
Apr/30/2008 Drop TCP packet from WAN Source = 125.65.112.152:6000 Destination = myipaddress:7212
09:57:22
Rule: Default deny
Apr/30/2008 Drop TCP packet from WAN Source = 125.65.112.152:6000 Destination = myipaddress:8000
09:57:22
Rule: Default deny
Apr/30/2008 Drop UDP packet from WAN Source = 202.99.11.99:1231 Destination = myipaddress:1434
09:36:00
Rule: Default deny
Apr/30/2008 Drop UDP packet from WAN Source = 222.161.2.45:50917 Destination = myipaddress:1026
09:32:05
Rule: Default deny
A whois lookup of the source IP addresses shows them coming from China. I'm at work, so I called the wife and told her to shut down all the PC's until I get home. What should I do? It looks like the router has been blocking all the attempts, but I'm still afraid something might have gotten through. I'm guessing if they were still attempting the hack, they haven't gotten anything yet.
I know I don't have any malware, worms, trojans, etc on either of the PC's at home, since I scan them everyday.
From what I'm getting from my router logs, someone has been port sniffing my home network for at least the past 2 days. The router only holds 20 pages of logs, but other than the normal IP address assignments to my laptop and XBOX 360, it's filled with the following:
Apr/30/2008 Drop TCP packet from WAN Source = 125.65.112.152:6000 Destination = myipaddress:7212
09:57:22
Rule: Default deny
Apr/30/2008 Drop TCP packet from WAN Source = 125.65.112.152:6000 Destination = myipaddress:8000
09:57:22
Rule: Default deny
Apr/30/2008 Drop UDP packet from WAN Source = 202.99.11.99:1231 Destination = myipaddress:1434
09:36:00
Rule: Default deny
Apr/30/2008 Drop UDP packet from WAN Source = 222.161.2.45:50917 Destination = myipaddress:1026
09:32:05
Rule: Default deny
A whois lookup of the source IP addresses shows them coming from China. I'm at work, so I called the wife and told her to shut down all the PC's until I get home. What should I do? It looks like the router has been blocking all the attempts, but I'm still afraid something might have gotten through. I'm guessing if they were still attempting the hack, they haven't gotten anything yet.
I know I don't have any malware, worms, trojans, etc on either of the PC's at home, since I scan them everyday.