被人DDOS攻擊而成日斷線
近幾日成日斷線, 看router 個log 如下Dec 13 09:14:44
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 09:02:15
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 09:01:46
DOS [UDP]: Attack Incoming 61.10.246.109->61.238.54.122 [UDP Flood]
Dec 13 09:01:34
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 09:01:19
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 09:01:16
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 09:01:12
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 09:00:33
DOS [UDP]: Attack Incoming 122.121.217.145->61.238.54.122 [UDP Flood]
Dec 13 09:00:16
DOS [UDP]: Attack Incoming 121.154.63.213->61.238.54.122 [UDP Flood]
Dec 13 08:58:39
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:58:37
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:58:36
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:58:31
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:58:30
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:58:29
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:57:52
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:57:41
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:57:22
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:57:16
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
Dec 13 08:56:13
DOS [UDP]: Attack Incoming 218.254.113.9->61.238.54.122 [UDP Flood]
有甚麼解決方法?
router 型號是planex brl-04ur, 用bb100上網
用緊nod32 用部勁機黎做router:naug: 4GB ram bb100,可能可以 try try 轉 router wan的 mac address (clone 第2 個 mac addr) 來 force 轉 ip **** 作者被禁止或刪除 內容自動屏蔽 **** [quote]原帖由 [i]rhkl[/i] 於 2008-12-13 11:44 發表 [url=http://www.hkepc.com/forum/redirect.php?goto=findpost&pid=17742431&ptid=1120455][img]http://www.hkepc.com/forum/images/common/back.gif[/img][/url]
人地應該成個subnet 咁做UDP Attack
或者client 機有software 「裡應外合」 [/quote]
如果成個 subnet, 只有 report hkbn 了.
要轉 ip, 就是想試是不是有 malware 裡應外合 好多彊屍:naug: , 根本就只可以report hkbn,
不過其實, hkbn的server都會好大loading..:xd:
[[i] 本帖最後由 jackli 於 2008-12-13 12:05 編輯 [/i]] **** 作者被禁止或刪除 內容自動屏蔽 **** **** 作者被禁止或刪除 內容自動屏蔽 **** 個人做到的, 都係用部勁機擋:xd: [quote]原帖由 [i]rhkl[/i] 於 2008-12-13 12:14 發表 [url=http://www.hkepc.com/forum/redirect.php?goto=findpost&pid=17742680&ptid=1120455][img]http://www.hkepc.com/forum/images/common/back.gif[/img][/url]
HKBN can do nothing indeed
除非開恆firewall block 所有UDP Packet :xd: [/quote]
:agree: hkbn, 採你都傻 :redface: , 除非好過份,
不過正常屋企, 都無咩可能同時間hold 百萬條連線:naug: , 又唔係做server.... [quote]原帖由 [i]rhkl[/i] 於 2008-12-13 12:14 發表 [url=http://www.hkepc.com/forum/redirect.php?goto=findpost&pid=17742680&ptid=1120455][img]http://www.hkepc.com/forum/images/common/back.gif[/img][/url]
HKBN can do nothing indeed
除非開恆firewall block 所有UDP Packet :xd: [/quote]
HKBN唔係有權於任何時候禁止某用戶上網? [quote]原帖由 [i]vicor5137[/i] 於 2008-12-13 09:43 發表 [url=http://www.hkepc.com/forum/redirect.php?goto=findpost&pid=17741734&ptid=1120455][img]http://www.hkepc.com/forum/images/common/back.gif[/img][/url]
近幾日成日斷線, 看router 個log 如下
Dec 13 09:14:44
DOS : Attack Incoming 218.254.113.9->61.238.54.122
Dec 13 09:02:15
DOS : Attack Incoming 218.254.113.9->61.238.54.122
Dec 13 09:0 ... [/quote]
change your ip (wan), if still ddos, that means your pc got a et....phone home, et phone home..........et phone home..........et phone home..........:fight: 即是個人沒有方法? 要打給hkbn 換ip 嗎?
己用nod32 and ad-aware掃過毒和木馬 [quote]原帖由 [i]vicor5137[/i] 於 2008-12-13 18:53 發表 [url=http://www.hkepc.com/forum/redirect.php?goto=findpost&pid=17745335&ptid=1120455][img]http://www.hkepc.com/forum/images/common/back.gif[/img][/url]
即是個人沒有方法? 要打給hkbn 換ip 嗎?
己用nod32 and ad-aware掃過毒和木馬 [/quote]
要打給hkbn 換ip 嗎? no
1.to change your router's wan side ip, change its mac address, then hkbn would give you another wan ip.
2.all free good stuff, try!
[url]http://www.avast.com/index.html[/url]
[url]http://www.free-av.de/[/url]
[url]http://www.comodo.com/[/url] [quote]原帖由 [i]vicor5137[/i] 於 2008-12-13 18:53 發表 [url=http://hkepc.com/forum/redirect.php?goto=findpost&pid=17745335&ptid=1120455][img]http://hkepc.com/forum/images/common/back.gif[/img][/url]
即是個人沒有方法? 要打給hkbn 換ip 嗎?
己用nod32 and ad-aware掃過毒和木馬 [/quote]
我 3 樓已經說了.... o係Router度set咪得囉.... :eek: 有 log 迷即係 block 咗囉 :haha: THX 各位, 問題找到啦, 是我弟部機install 太多不知名software,online game program, format 左不用就沒有問題.
p.s.個router 沒有16榭樓個function, block ip 不work , 一小時內多於20pages record, 在router release ip and renew 都是同樣get same ip, 是mac adress change 左 take 左另外ip,but 仍然被attack. [quote]原帖由 [i]vicor5137[/i] 於 2008-12-14 11:26 AM 發表 [url=http://www.hkepc.com/forum/redirect.php?goto=findpost&pid=17750995&ptid=1120455][img]http://www.hkepc.com/forum/images/common/back.gif[/img][/url]
THX 各位, 問題找到啦, 是我弟部機install 太多不知名software,online game program, format 左不用就沒有問題.
p.s.個router 沒有16榭樓個function, block ip 不work , 一小時內多於20pages record, 在router rel ... [/quote]
除非你炸o左對方 pc, 佢 attack 你冇得 stop
只可以靠 router firewall drop 佢 packet
你隻 router 只要 turn on SPI Mode default 應該幫你 drop 咗 ....... 如果唔係點會有 log 睇 :haha: 原來咁就係ddos,真係大開眼界喎唔該.....:shifty:
頁:
[1]
2