Hacker IP log - Asterisk - VoIP 研究室 - 電訊茶室

Rank: 1

16^# 跳轉到 »

發表於 2011-1-18 20:52 | 只看該作者

I have made a very aggressive approach to block a range of IP from 188.161.208.1 - 188.161.211.254

Rank: 1

17^#

發表於 2011-1-18 22:02 | 只看該作者

Me too. Once I was attacked by one of the IP in the range, I would block the whole IP range thru my Router settings.
My router can block a total of 256 IP ranges. Now I've just used 9 IP ranges. Still have much room to adopt this policy. Above all, I am 100% sure I don't need to communicate anyone of these IP addresses.

Rank: 1

18^#

發表於 2011-1-18 22:04 | 只看該作者

I think it is also better to enable DoS defend feature to avoid flooding attack.

Rank: 1

19^#

發表於 2011-1-19 10:26 | 只看該作者

回復 18# bubblestar

Please consolidate the hackers IP here for both alertness and adaption into our firewall rules.

Rank: 1

20^#

發表於 2011-1-19 15:32 | 只看該作者

本帖最後由 bubblestar 於 2011-1-19 15:37 編輯

The Hackers' IP ranges that I experienced or through the members here are as below:

China Unicom Shandong 119.176.0.0 - 119.191.255.255
China Chinanet Anhui 60.166.0.0 - 60.175.255.255
China Tianjin Anteinfo 202.99.121.0 - 202.99.121.255
Netherlands NL Leaseweb 95.211.0.0 - 95.211.255.255
UNKNOWN THEPLANET 174.132.0.0 - 174.133.255.255
Korea HANANET 222.232.0.0 - 222.239.255.255
China CHINANET-Jiangsu 202.102.0.0 - 202.102.127.255
UK iDealhosting 95.154.248.0 - 95.154.251.255
Middle-East Palestine 188.161.128.0 - 188.161.255.255

複製代碼

In view of above record, more than 44% of hackers' IP come from China. HOW BAD they are.

I block all these IP ranges without ANY hesitation. If anyone of you have some friends or relatives come from these Service Providers, you may adjust and fine tune by yourselves. Otherwises, your contact with them may become disconnected.

Rank: 1

21^#

發表於 2011-1-19 16:24 | 只看該作者

The Hackers' IP ranges that I experienced or through the members here are as below:In view of above ...
bubblestar 發表於 2011-1-19 15:32

A few more in my list
79.114.199.69
64.156.192.26
202.129.0.9

Rank: 1

22^#

發表於 2011-1-19 17:15 | 只看該作者

Some active Asterisk Brute-force Hackers can be found in here

http://www.ipillion.com/ip/64.156.192.26

Rank: 1

23^#

發表於 2011-1-19 19:16 | 只看該作者

回復 22# bubblestar

very interesting site with information about complaints of an IP or webhost

Rank: 1

24^#

發表於 2011-1-19 20:48 | 只看該作者

回復 23# ckleea

On the right hand side, you can see some familiar hackers name who might have visited you before.

Rank: 1

25^#

發表於 2011-1-21 07:06 | 只看該作者

回復 24# bubblestar

After some manipulation, I have made my firewall rules in the routers. Always remember to drop unwanted connection first before allow accept

my set up as follow

screenshot.21-01-2011 06.59.13.jpg

Rank: 1

26^#

發表於 2011-1-21 10:07 | 只看該作者

哈哈! 銅牆鐵壁。

除非呢D Hackers 轉換Service Provider 再攞另一組ISP的IP ranges，否則真係不得其門而入了。
當然，他們還可以騎劫另一些第三者的IP再入侵，但一般按取易不取難的常理，真的沒有價值地為我們一般人做咁多野，才可以打個電話。除非我地有一些非常吸引的地方，可以令到他們有非入不可的原因啦!

Good measures.

Rank: 1

27^#

發表於 2011-1-21 10:14 | 只看該作者

不過都幾煩，要重新reorder the firewall rules

Rank: 1

28^#

發表於 2011-1-21 10:24 | 只看該作者

煩一次可以一勞永逸，值得的。

Rank: 1

29^#

發表於 2011-2-2 21:29 | 只看該作者

2 more new hackers' visit. One from Russia and one from Switzerland. I think they just scan randomly and tried only once and waived.

62.152.60.70:5191 from Russia

82.220.3.13:5145 from Switzerland

Interestingly and unanimously, these 2 hackers themselves are not using the default UDP port 5060.