Hackers
Zoom Raider
Registered Users Posts: 317 Major grins
Does anyone in here know how to find who and what about an IPA (IP Address)? I'm sick and tired of this same person hitting my comp all day and all night, but he only does it when I visit Dgrin. The IPA is 63.81.134.25. It's been hitting me for days and about 2 dozen hits. One time, he came in with that IPA and it lead to someone from "Pluto.Smugmug.com".
Apperently, this is someone that likes to prevent others from coming in here. This is the only site that I cannot get into when he hits my comp. So what's up with that? Just need him to back off until I can get a router with a built in firewall. I already have Sygate 5.5. It keeps them out, but he somehow keeps me out of Dgrin.:bash
Thanks!
Apperently, this is someone that likes to prevent others from coming in here. This is the only site that I cannot get into when he hits my comp. So what's up with that? Just need him to back off until I can get a router with a built in firewall. I already have Sygate 5.5. It keeps them out, but he somehow keeps me out of Dgrin.:bash
Thanks!
http://mostamazingprophecies.com
My Gear
Camera: Nikon D50
Lens: Sigma 18-50mm F3.5-5.6 DC
Flash: Nikon SB600 SpeedLight
Vertical Powergrip: Opteka Platinum Series
Flash Diffuser: Lightsphere II (Clear)
Teleconverter: Quantaray 2x
Lens Filters: 2 SunPak UV 58mm
Card: Lexar Platinum II 512mb/60x
Bag: Canon 200DG
Printer: Canon PIXMA iP6700D
Fisher-Advent Audio
My Gear
Camera: Nikon D50
Lens: Sigma 18-50mm F3.5-5.6 DC
Flash: Nikon SB600 SpeedLight
Vertical Powergrip: Opteka Platinum Series
Flash Diffuser: Lightsphere II (Clear)
Teleconverter: Quantaray 2x
Lens Filters: 2 SunPak UV 58mm
Card: Lexar Platinum II 512mb/60x
Bag: Canon 200DG
Printer: Canon PIXMA iP6700D
Fisher-Advent Audio
0
Comments
PS: I can assure you it's not a hacker
Zoom, you should put that IP on a friendly list, and you should be all set.
Portfolio • Workshops • Facebook • Twitter
Thanks, Andy, for letting me know that it's Pluto's server, that it isn't a hacker and it's nothing to worry about. But, it just won't leave me the heck alone. It took me 44 minutes and about 7 or 8 intrusions from that server to finally get in here.
This never happened until about 2 weeks after I got my D50. Never happened back when I use to have the Kodak DX7590 and my N75. Is this something new that the server is doing for some reason?
There's no where that I know of to make Pluto's IPA user-friendly. I have to reboot the comp or go to the firewall and stop Pluto's active responce after everytime it hits me just so I can attempt to even try to get in here again.
But all is good. I'll just buy a built-in firewall router someday and it won't block me again.:D Been wanting to anyway, but the urge for a DSLR and all its grear set me back a few.:):
My Gear
Camera: Nikon D50
Lens: Sigma 18-50mm F3.5-5.6 DC
Flash: Nikon SB600 SpeedLight
Vertical Powergrip: Opteka Platinum Series
Flash Diffuser: Lightsphere II (Clear)
Teleconverter: Quantaray 2x
Lens Filters: 2 SunPak UV 58mm
Card: Lexar Platinum II 512mb/60x
Bag: Canon 200DG
Printer: Canon PIXMA iP6700D
Fisher-Advent Audio
It still won't leave me alone. Seventeen times it's hit me this afternoon, preventing me from either coming into Dgrin and/or viewing the threads, posts and pictures.
Somehow, that server needs to stop it until I can afford a router. I see no reason why it needs to try to scan my comp's ports. It's not getting in, so why does it bother repeatively... over and over and over again?
My Gear
Camera: Nikon D50
Lens: Sigma 18-50mm F3.5-5.6 DC
Flash: Nikon SB600 SpeedLight
Vertical Powergrip: Opteka Platinum Series
Flash Diffuser: Lightsphere II (Clear)
Teleconverter: Quantaray 2x
Lens Filters: 2 SunPak UV 58mm
Card: Lexar Platinum II 512mb/60x
Bag: Canon 200DG
Printer: Canon PIXMA iP6700D
Fisher-Advent Audio
It sounds to me as if your firewall or its configuration is broken. I've done a couple of MB sample of the comms with 63.81.134.25 and saw nothing that should trigger a firewall response.
Sygate is a bit like this at times. Incidentally, as it's now an expired product (and has been for ~5 months), you should probably be looking for a replacement anyhow. (Unless you're using the Enterprise versions, in which case you really should be able to set safe zones. Not that I ever approve of any firewall that does authentication soley by IP address)
For now, you might consider disabling it and using the Windows XP SP2 firewall instead, or there might be other free stuff around you could use if you didn't care for the Windows Firewall.
Denial of Service by firewall is a serious problem. Esp. by the sounds of it, your particular one. If it can go so badly ape talking to a friendly server, I would hate to think how it responded if someone was actually attacking your machine.
Just IMHO.
Luke
SmugSoftware: www.smugtools.com
Hmmm... Let's be clear here, are you saying that 63.81.134.25 is exhibiting active response characteristics (i.e. recognising you as an attacker), or are you saying that your firewall believes that 63.81.134.25 is attacking you and is killing comms with that IP address.
I understood you to mean the later.
Luke
SmugSoftware: www.smugtools.com
sorry, no. I had an IPA last night....but I drank it.
It's not actually attacking me, it's just blocking me from getting into Dgrin... killing my comms, I guess. I was hoping it would stop it until I can get a router or something,`cos it reminds me of the Energizer Bunny: "it keeps blocking and blocking and blocking"...
My Gear
Camera: Nikon D50
Lens: Sigma 18-50mm F3.5-5.6 DC
Flash: Nikon SB600 SpeedLight
Vertical Powergrip: Opteka Platinum Series
Flash Diffuser: Lightsphere II (Clear)
Teleconverter: Quantaray 2x
Lens Filters: 2 SunPak UV 58mm
Card: Lexar Platinum II 512mb/60x
Bag: Canon 200DG
Printer: Canon PIXMA iP6700D
Fisher-Advent Audio
All this reminds me of a song that could be rewritten as a parody... "That's when my momma socked it to - the "Harper Valley IPA".
My Gear
Camera: Nikon D50
Lens: Sigma 18-50mm F3.5-5.6 DC
Flash: Nikon SB600 SpeedLight
Vertical Powergrip: Opteka Platinum Series
Flash Diffuser: Lightsphere II (Clear)
Teleconverter: Quantaray 2x
Lens Filters: 2 SunPak UV 58mm
Card: Lexar Platinum II 512mb/60x
Bag: Canon 200DG
Printer: Canon PIXMA iP6700D
Fisher-Advent Audio
Well, sounds like I need to get a new firewall since Sygate went out of business. I did try using Windows firewall, but no site at all will pull up using it. I only use one firewall at one time,`cos I think two or more firewalls at a time have conflicts with eachother.
So neither are working, especially Windows, so now I'm starting to look for another firewall. Just don't know who's good now days,`cos Sygate was the best or one of the best. I have their 5.5 or 5.6 pro version.
My Gear
Camera: Nikon D50
Lens: Sigma 18-50mm F3.5-5.6 DC
Flash: Nikon SB600 SpeedLight
Vertical Powergrip: Opteka Platinum Series
Flash Diffuser: Lightsphere II (Clear)
Teleconverter: Quantaray 2x
Lens Filters: 2 SunPak UV 58mm
Card: Lexar Platinum II 512mb/60x
Bag: Canon 200DG
Printer: Canon PIXMA iP6700D
Fisher-Advent Audio
Technically I believe they got bought by Symantec.
There is something more seriouly wrong with your comptuer then. Perhaps consider reinstalling Windows. I have never seen the Windows firewall do that to a machine. If anything its too lax.
Maybe, it depends on the firewalls. I use multiple different layered firewalls without conflict issues.
It sounds to me like the first step is to try and find out why the Windows firewall isn't working. Like I said, I've never seen it do that to any of the many hundreds of computers I've seen it enabled on. Google might be your friend here.
I have no idea how to assess the security of end-user firewalls. The best I could suggest was buying from a serious vender as opposed to a 'no-body has ever heard of this company' type place. If you're having real trouble, HW firewalls are built into most home router eqiupment these days and cost about as much as a good software firewall, they're generally simpler to configure, and offer a reasonable grade of protection. However, if you do get one, make sure UnPnP is turned off.
Luke
SmugSoftware: www.smugtools.com
To check the security of your machine, and the firewall, pls visit Steve Gibson's Shields Up website. This site will safely test your system, your firewall, and make recommendations on good firewalls.
Sygate was acquired by Symantec in 2004, and the Sygate Personal Firewall is till available via Sygate. I should know this since I am a former employee of Sygate.
Principle Photographer/Co-Founder
Body Bumpers, LLC
PH: 717 918 1262
Fax: 831 480 5873
url: www.body-bumpers.com
email: mteicher@body-bumpers.com
When you said you tried the windows firewall, did you first uninstall the Sygate one? Probably not.
Uninstall the Sygate and I'll bet everything works fine (unless it corrupted something more important).
With routers so cheap these days ($20-30), and basic firewalls built into Windows and OSX, I can't figure out why so many people fool with other software firewalls anymore.
I have ZA Pro, NAV, Ad-Aware, a hardware firewall/router setup and this has been strong enough for many years now. But use whatever works for you. Linux is a great platform...
Most firewalls built into OSes only prevent inbound connections. Limiting outbound connections can be very useful especially for notebook users who work in different locations.
SmugMug API Developer
My Photos
Little Snitch. Mac only.
Dgrin FAQ | Me | Workshops
Don't be too comfortable in your ignorance. Apple's not exactly Mr. Nice guy. Besides, -- they're talkin' IP hear, and NO ONE is immune from these problems.
Yeah but... you gotta LOVE the name of that software... Little Snitch!
Portland, Oregon Photographer Pete Springer
website blog instagram facebook g+
Little Snitch
Dgrin FAQ | Me | Workshops