I've Just Been Port Probed! (HELP!)

SElf | 50sDad

[50sDad]

My nifty new MacAfee firewall says I was just "port probed" and traces it back to IP address 64.29.223.109 at datareturn.com, with Kai Schlichting 342 E. Jericho Tpke. 187, Mineola NY 11501, kai-datareturn.net-trap@conti.nu. I have reported it to abuse@dataretun.com, but that seems to be the company that did the probe. Is there any government (gak) agency I can report the attempted break in to?

[IamHD]

Wow! I've never had that happen and I've got McAffee. Do you have a firewall? That ought to stop those pesky critters. :)

[Soaring Feather]

Was your Pass Port Valid???

[dixiechick2000]

Port probed? That sounds painful...

[Flyer]

You ever shop online at RadioShack?

[IamHD]

I plugged into datareturn.net, and this is what their website says:

"Got Spam? Got Port-scanned without provocation? Got hacked from one of our machines? Got foul-mouthed email from one of our customers running a "87% opt-in/permission-based" mailing list in response to a complaint?

Go complain to our provider: they'd love to hear about it: abuse@level3.com"

Datareturn. Shoving spam complaints where they belong. Every day. All day long. All night long. Hear us roar. We are Datareturn.net

[Flyer]

http://64.29.223.109/

[timestax]

I don't know about reporting it.., but I was probed by Naval Intellegence a year ago because I responded to the TWA800 Shootdown-Cover-Up threads.It was firewalled by BlackICE . I hit the PRINT button and I have a copy of it for proof that I will Fax or E-mail to anybody who is interested!

[blackbart.223]

"I've Just Been Port Probed!"

Not by aliens I hope.

On a serious note, you should install a firewall. I use Norton Internet Security wich I update on a regular basis. If you have high speed internet access you should also consider hardware firewall options.

[IamHD]

What is that? :)

[cibco]

Vaseline helps....

[Flyer]

Radio Shack

[blackbart.223]

Oops, I just noticed you have a firewall. If you got a message that someone tried to access your PC it was most likely blocked. Don't let it rankle.

[Dasaji]

I installed Norton with the Internet Security (firewall?) and I couldn't even get into a FR thread because it blocked all two-way communication. Any site that wanted to install a cookie would come up as a blank screen until I disabled the Norton.

Is this the way a firewall is supposed to work?

[Billthedrill]

Yeah, yeah, the usual vulgar references to aliens and such...what, no anal probe jokes yet? Then let me be the first...

This isn't necessarily a problem and you have one of the tools necessary to deal with it. ZoneAlarm is a similar, and very effective product. But if you really want security get a little switch - mine is made by LinkSys and Belden makes a good one too - that does IP address switching and allows you to turn ports on and off manually as well as have them automatically blocked by a software product such as the ones mentioned.

There's a very great deal of this going around - sometimes it's just a random ping, sometimes (especially if you start seeing it repeatedly from the same source) it's actually a breakin attempt. If your ISP uses DHCP to give you a different IP address every time you connect (most do) then you're only vulnerable for that session at that address.

If you're running a home network you might consider assigning your own addresses within it using "non-routable" addresses, and switching addys at the switch or router level. If you already know about this stuff forgive me for patronizing...if not, FReemail me.

[Spangler]

LOL! Sorry to be amused, but I had a friend come over in a panic asking help for several script kiddie level probes of his system. I figured out that he had drew their attention when he had gone to several sites in search of cracks and other illegal activities, including ripping movies.

After staying offline a couple of weeks and ceasing the activity that invited illegal activity in return, his problem stopped.

I am not saying this is true for you, as you are obviously new enough at this game to include personal stuff in your header better left on the firewall's report of the probe of your system.

[IamHD]

Oopsie...I just noticed he has a firewall, too. I have my plain old free ZoneAlarm. :)

[dighton]

Really I should be ashamed . . . .

[Jean S]

Your computer has been probed before but you're now aware of it because of your firewall. Don't worry too much about this.

[blackbart.223]

"I installed Norton with the Internet Security (firewall?) and I couldn't even get into a FR thread because it blocked all two-way communication. Any site that wanted to install a cookie would come up as a blank screen until I disabled the Norton."

One of the problems of using Norton Internet Security is that you have to configure who gets in and who doesn't. It isn't that hard, but takes a little practice.