Jump to content

PoTaToGuY

Member
 View Profile  See their activity

  • Posts

    3

  • Joined

  • Last visited

Awards

This user doesn't have any awards

PoTaToGuY's Achievements

Newbie

Newbie (1/14)

0

Reputation

  1. PoTaToGuY
    I did some additional testing, connecting a PC directly to the modem and bypassing the router seems to solve the problem with the terrible flakiness. I'm not really sure what to do with this information though...
  2. PoTaToGuY
    I've already been monitoring the situation for at least the past 2-3 days, so I'm pretty certain this isn't a one-off thing. I've also thought it had something to do with my game server hosting. I use a noip DDNS when hosting, but I've since redirected it away from my WAN IP. As for the game server, I host a Minecraft server for my buddies and I to play on. I do have a noip DDNS thing set up, but I've redirected it elsewhere. As for checking for any other software that's been maliciously broadcasting my WAN IP, I'm not too sure as to how to go about finding out if there's actually any program that's doing this I guess you're right about the DDoS and the fact that I'm even able to access the internet at all. It's possible they're doing a port scan attack to check for vulnerabilities. And for the unplugging and plugging back in, I don't think that will change much if anything at all tbh as I've changed my WAN IP a few times so far with no luck.
  3. PoTaToGuY
    For the past few days, I've noticed that my internet connection has been pretty flaky. I would get terrible lag spikes while playing games online, hosting games for my friends and I to play or just plain surfing the web. So I decided to take a look at my router's logs, and this is what I found Sep 23 21:59:12 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=61.219.67.54 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=44726 PROTO=TCP SPT=31699 DPT=23 SEQ=1952017478 ACK=0 WINDOW=24563 RES=0x00 SYN URGP=0 Sep 23 21:59:20 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=124.155.222.139 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=61 ID=27546 DF PROTO=ICMP TYPE=8 CODE=0 ID=61722 SEQ=53376 Sep 23 21:59:20 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=124.155.223.23 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=60 ID=6835 DF PROTO=ICMP TYPE=8 CODE=0 ID=10261 SEQ=16295 Sep 23 21:59:21 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=35.176.62.51 DST=<my.ip.address.here> LEN=36 TOS=0x00 PREC=0x00 TTL=238 ID=2762 DF PROTO=ICMP TYPE=8 CODE=0 ID=16 SEQ=10211 Sep 23 21:59:22 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=198.108.67.33 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=36 ID=21444 PROTO=TCP SPT=51729 DPT=9020 SEQ=2212616441 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:23 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=80.82.65.90 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=26187 PROTO=TCP SPT=46457 DPT=19184 SEQ=3950264573 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:24 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=31.184.196.199 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=51069 PROTO=TCP SPT=45421 DPT=8665 SEQ=3070069474 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:24 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=18.130.200.23 DST=<my.ip.address.here> LEN=36 TOS=0x00 PREC=0x00 TTL=237 ID=55270 DF PROTO=ICMP TYPE=8 CODE=0 ID=13 SEQ=21251 Sep 23 21:59:26 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=23.49.60.244 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=55 ID=54241 DF PROTO=ICMP TYPE=8 CODE=0 ID=32278 SEQ=49310 Sep 23 21:59:35 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=23.44.173.71 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=48 ID=1336 DF PROTO=ICMP TYPE=8 CODE=0 ID=19739 SEQ=9441 Sep 23 21:59:36 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=96.17.72.69 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=57 ID=5998 DF PROTO=ICMP TYPE=8 CODE=0 ID=22550 SEQ=58058 Sep 23 21:59:36 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=184.28.218.124 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=52 ID=45682 DF PROTO=ICMP TYPE=8 CODE=0 ID=20500 SEQ=12036 Sep 23 21:59:39 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=89.248.168.202 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=43485 PROTO=TCP SPT=59596 DPT=5507 SEQ=1698287640 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:41 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=31.184.196.199 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=25481 PROTO=TCP SPT=45421 DPT=8701 SEQ=251014706 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:45 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=195.206.252.234 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=9519 PROTO=TCP SPT=45354 DPT=59857 SEQ=3708068024 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:50 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=197.33.57.76 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=42096 PROTO=TCP SPT=37230 DPT=23 SEQ=1952017478 ACK=0 WINDOW=20918 RES=0x00 SYN URGP=0 Sep 23 21:59:57 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=80.82.65.90 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=46965 PROTO=TCP SPT=46457 DPT=19801 SEQ=1875809898 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:57 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.196.43 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=36091 PROTO=TCP SPT=59880 DPT=24483 SEQ=850509598 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 21:59:57 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.196.43 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=45410 PROTO=TCP SPT=59880 DPT=24578 SEQ=1619311910 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:00 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.196.43 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=16371 PROTO=TCP SPT=59880 DPT=24422 SEQ=3764587731 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:03 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.196.43 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=24719 PROTO=TCP SPT=59880 DPT=24976 SEQ=3367726425 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:08 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=156.216.212.185 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=4552 PROTO=TCP SPT=15628 DPT=23 SEQ=1952017478 ACK=0 WINDOW=51714 RES=0x00 SYN URGP=0 Sep 23 22:00:10 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=124.155.222.139 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=61 ID=37326 DF PROTO=ICMP TYPE=8 CODE=0 ID=61722 SEQ=62600 Sep 23 22:00:10 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=124.155.223.23 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=60 ID=6100 DF PROTO=ICMP TYPE=8 CODE=0 ID=10261 SEQ=19628 Sep 23 22:00:16 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=23.49.60.244 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=55 ID=17055 DF PROTO=ICMP TYPE=8 CODE=0 ID=32278 SEQ=59820 Sep 23 22:00:25 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=23.44.173.71 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=48 ID=26712 DF PROTO=ICMP TYPE=8 CODE=0 ID=19739 SEQ=37159 Sep 23 22:00:26 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=184.28.218.124 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=52 ID=59509 DF PROTO=ICMP TYPE=8 CODE=0 ID=20500 SEQ=20536 Sep 23 22:00:27 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=96.17.72.69 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=57 ID=26682 DF PROTO=ICMP TYPE=8 CODE=0 ID=22550 SEQ=26329 Sep 23 22:00:30 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=195.206.252.234 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=42410 PROTO=TCP SPT=45354 DPT=59767 SEQ=918560923 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:44 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=195.206.252.234 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=39789 PROTO=TCP SPT=45354 DPT=59247 SEQ=2774274116 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:45 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=221.228.97.218 DST=<my.ip.address.here> LEN=43 TOS=0x00 PREC=0x00 TTL=43 ID=0 DF PROTO=UDP SPT=47883 DPT=53413 LEN=23 Sep 23 22:00:45 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=221.228.97.218 DST=<my.ip.address.here> LEN=30 TOS=0x00 PREC=0x00 TTL=43 ID=0 DF PROTO=UDP SPT=47883 DPT=53413 LEN=10 Sep 23 22:00:49 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.198.217 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=54711 PROTO=TCP SPT=45588 DPT=42833 SEQ=1300242080 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:56 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.196.43 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=19192 PROTO=TCP SPT=59880 DPT=24827 SEQ=1625704005 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:57 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.196.43 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=30879 PROTO=TCP SPT=59880 DPT=24259 SEQ=1187924506 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:00:59 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=185.153.196.43 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=58829 PROTO=TCP SPT=59880 DPT=24463 SEQ=1320343044 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 23 22:01:00 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=124.155.223.23 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=60 ID=47860 DF PROTO=ICMP TYPE=8 CODE=0 ID=10261 SEQ=24241 Sep 23 22:01:05 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=124.155.222.139 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=61 ID=18185 DF PROTO=ICMP TYPE=8 CODE=0 ID=61722 SEQ=44945 Sep 23 22:01:06 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=23.49.60.244 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=55 ID=60764 DF PROTO=ICMP TYPE=8 CODE=0 ID=32278 SEQ=3771 Sep 23 22:01:08 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=1.255.153.136 DST=<my.ip.address.here> LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54321 PROTO=TCP SPT=50754 DPT=2375 SEQ=3488221629 ACK=0 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 23 22:01:14 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=23.44.173.71 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=48 ID=8318 DF PROTO=ICMP TYPE=8 CODE=0 ID=19739 SEQ=22894 Sep 23 22:01:16 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=96.17.72.69 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=57 ID=47051 DF PROTO=ICMP TYPE=8 CODE=0 ID=22550 SEQ=2805 Sep 23 22:01:18 kernel: DROP IN=eth0 OUT= MAC=<My:Routers:MAC:Address:Here>:70:1f:53:d0:b4:7e:08:00 SRC=184.28.218.124 DST=<my.ip.address.here> LEN=68 TOS=0x00 PREC=0x00 TTL=52 ID=23161 DF PROTO=ICMP TYPE=8 CODE=0 ID=20500 SEQ=30060 I also took a look at my router's traffic monitor and found this: I've tried changing my WAN IP, which I've managed to do but to no avail, somehow whoever is doing this has been able to immediately find out my new IP address. I've also called in to my ISP, all they did was change my IP address again, but the weird traffic keeps coming. Is there anything weird going on or is it just me?
×