Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Scans......

From: Pavel Lozhkin <pauel () BALAKOVO RU>
Date: Thu, 9 Nov 2000 07:51:52 +0300
Hi !

i recently have got alot of scans from the various networks. I sent them
a mail a week ago and have no answer. And the scan has been
continuing.....
It is

inetnum:     212.13.171.0 - 212.13.171.255
netname:     ICA-TSE
descr:       International Consulting Agency
descr:       13A-99 Akjayik str. Astana
country:     KZ

Then i've block this net by my firewall. The same thing with the big
Moscow provider - PTT Telecom (inet 195.34.28.0).
Be advised

=== cut on ==
Nov  8 22:40:11 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3092
xxx.xxx.xxx.xxx:1243 out via ed0
Nov  8 22:40:11 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3093
xxx.xxx.xxx.xxx:6700 out via ed0
Nov  8 22:40:11 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3094
xxx.xxx.xxx.xxx:1080 out via ed0
Nov  8 22:40:11 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3095
xxx.xxx.xxx.xxx:27374 out via ed0
Nov  8 22:40:11 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3096
xxx.xxx.xxx.xxx:30100 out via ed0
Nov  8 22:40:14 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3094
xxx.xxx.xxx.xxx:1080 out via ed0
Nov  8 22:40:14 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3095
xxx.xxx.xxx.xxx:27374 out via ed0
Nov  8 22:40:14 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3096
xxx.xxx.xxx.xxx:30100 out via ed0
Nov  8 22:40:14 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3092
xxx.xxx.xxx.xxx:1243 out via ed0
Nov  8 22:40:14 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3093
xxx.xxx.xxx.xxx:6700 out via ed0
Nov  8 22:40:17 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3094
xxx.xxx.xxx.xxx:1080 out via ed0
Nov  8 22:40:17 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3095
xxx.xxx.xxx.xxx:27374 out via ed0
Nov  8 22:40:17 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3096
xxx.xxx.xxx.xxx:30100 out via ed0
Nov  8 22:40:17 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3092
xxx.xxx.xxx.xxx:1243 out via ed0
Nov  8 22:40:17 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3093
xxx.xxx.xxx.xxx:6700 out via ed0
Nov  8 22:40:20 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3094
xxx.xxx.xxx.xxx:1080 out via ed0
Nov  8 22:40:20 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3095
xxx.xxx.xxx.xxx:27374 out via ed0
Nov  8 22:40:20 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3096
xxx.xxx.xxx.xxx:30100 out via ed0
Nov  8 22:40:20 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3092
xxx.xxx.xxx.xxx:1243 out via ed0
Nov  8 22:40:20 gw /kernel: ipfw: 50000 Reset TCP 212.13.171.246:3093
xxx.xxx.xxx.xxx:6700 out via ed0
== cut off ==

--
** The hedgehog is a proud bird, he does not fly without kick **

Pauel
System administrator
ICQ UIN 39596913 8990192
Phone (7-84570)-52525
      (7-84570)-40658

Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
Previous By Date Next
Previous By Thread Next

Current thread: