|
|
|
|
|||||
|
|
|
|
|
|
|||
| Welcome
to Tech Support Forum home to more then 136,000 problems solved. Issues
have included: Spyware, Malware, Virus Issues, Windows, Microsoft,
Linux, Networking, Security, Hardware, and Gaming Getting your
problem solved is as easy as: 1. Registering for a free account 2. Asking your question 3. Receiving an answer Registered members: * See fewer ads. * And much more..
|
| Want to know how to post a question? click here | Having problems with spyware and pop-ups? First Steps |
|
|||||||
| Web Serving and Management how to web server support forum |
 |
|
|
LinkBack | Thread Tools |
12-19-2007, 02:46 PM
|
#1 (permalink) | |
|
TSF Enthusiast
Join Date: Apr 2005
Location: Chicago, IL
Posts: 1,398
OS: XP Pro, XP Home, Vista Home Basic, Ubuntu Studio
Blog Entries: 2
|
Anyone ever seen anything like this? DoS attack!
Hello,
Today one of my servers was square in the middle of a DoS attack. I run a small forum hosting website that hosts many PHPBB forums. Some bot or something began crawling EVERY SINGLE FORUM AND DIRECTORY AT ONE TIME! This caused MySql and eventually the server to crash. After about six hours my host banned the bot on a server level by IP, but it's still trying to get in. Looking at the log for the bot I noticed something interesting. The bot from this IP keeps changing it's user agent with every request to try and bypass the filters. Here's an exerpt from the log: Quote:
BMR777
__________________
Brandon Rusnak Protection: AVG Free Anti Virus :: Windows Defender :: Hosts File :: SiteAdvisor :: ZoneAlarm Quick Fixes: 5 Steps to remove spyware |
|
|
     
|
| Important Information |
|
Join the #1 Tech Support Forum Today - It's Totally Free!
TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free. Join TechSupportforum.com Today - Click Here |
|
12-22-2007, 04:32 AM
|
#2 (permalink) |
|
Registered User
Join Date: Dec 2007
Posts: 24
OS: xp
|
Re: Anyone ever seen anything like this? DoS attack!
Look up the persons IP and see what kind of info you can get. After which, look up their ISP and give them a call, if you can.
And post the IP of the DoSer please. http://www.showmyip.com/lookups/#DoLookup |
|
|
|
|
12-22-2007, 08:10 AM
|
#3 (permalink) |
|
TSF Enthusiast
Join Date: Apr 2005
Location: Chicago, IL
Posts: 1,398
OS: XP Pro, XP Home, Vista Home Basic, Ubuntu Studio
Blog Entries: 2
|
Re: Anyone ever seen anything like this? DoS attack!
Their IP was 66.29.115.6.
__________________
Brandon Rusnak Protection: AVG Free Anti Virus :: Windows Defender :: Hosts File :: SiteAdvisor :: ZoneAlarm Quick Fixes: 5 Steps to remove spyware |
|
|
|
|
12-23-2007, 01:04 AM
|
#4 (permalink) |
|
Registered User
Join Date: Dec 2007
Posts: 24
OS: xp
|
Re: Anyone ever seen anything like this? DoS attack!
their ISP is Net Access Corporation, and they live in the USA.
Try giving the isp a call, and telling them about this attack against your website. Include Time/Date of the attack, and IP at the time. ISP Home: http://www.nac.net/ Contact details: http://www.nac.net/enterprise/contact.asp i recommend you use this number: Abuse Department (973) 590-5040 tell us how it goes. |
|
|
|
|
| Thread Tools | |
|
|
