Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
E
E
Elle Solomina2015-05-08 21:05:24
Burglary protection
Elle Solomina, 2015-05-08 21:05:24

Where to write about DoS if there is silence on abusive addresses?

For many months now, garbage has been pouring into my home server from the same addresses in the form of attempts to block the channel and zaddosit equipment. The attack now lasts for several minutes every few hours. Neither Rethem Hosting LLC [email protected] nor their backbone provider Server Central Network [email protected] respond to claims. The provider automatically creates issues in technical support, but people later close them. There is no response from the host at all. Therefore, the question is where else should I write?
An example of a piece of log from a home gateway, IP addresses are different on each visit, but all of them are from Rethem Hosting addresses:
Line 1519: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len: 60, 204.93.180.13:34408 -> xxxx:1026, flags:[ SYN ], seq:1362646140 ack:0, win:5840, tcplen:0
Line 1520: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:46249 -> xxxx:5051, flags:[ SYN ], seq: 2442640377 ack:0, win:5840, tcplen:0
Line 1521: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:38875 -> xxxx:5000, flags:[ SYN ], seq:496533963 ack:0, win:5840, tcplen:0
Line 1522: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP , len:60, 204.93.180.13:47966 -> xxxx:49153, flags:[ SYN ], seq:457542755 ack:0, win:5840, tcplen:0
Line 1523: [08/May/2015 20:19:16 ] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:51148 -> xxxx:81, flags:[ SYN ], seq:401914414 ack:0, win:5840, tcplen:0
Line 1524: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:49412 -> xxxx:5009, flags:[ SYN ], seq: 3369843297 ack:0, win:5840, tcplen:0
Line 1525: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:52890 -> xxxx:49155, flags:[ SYN ], seq:3988482781 ack:0, win:5840, tcplen:0
Line 1526: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP , len:60, 204.93.180.13:48685 -> xxxx:514, flags:[ SYN ], seq:2383338120 ack:0, win:5840, tcplen:0
Line 1527: [08/May/2015 20:19:16 ] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:38137 -> xxxx:106, flags:[ SYN ], seq:2805828099 ack:0, win:5840, tcplen:0
Line 1528: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:56014 -> xxxx:5190, flags:[ SYN ], seq: 3173985936 ack:0, win:5840, tcplen:0
Line 1529: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:53507 -> xxxx:49155, flags:[ SYN ], seq:2579641960 ack:0, win:5840, tcplen:0
Line 1530: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP , len:60, 204.93.180.13:56627 -> xxxx:5190, flags:[ SYN ], seq:446942270 ack:0, win:5840, tcplen:0
Line 1531: [08/May/2015 20:19:16 ] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:48587 -> xxxx:49153, flags:[ SYN ], seq:2932182817 ack:0, win:5840, tcplen:0
Line 1532: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:49312 -> xxxx:514, flags:[ SYN ], seq: 223711123 ack:0, win:5840, tcplen:0
Line 1533: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:51771 -> xxxx:81, flags:[ SYN ], seq:830951444 ack:0, win:5840, tcplen:0
Line 1534: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP , len:60, 204.93.180.13:39500 -> xxxx:5000, flags:[ SYN ], seq:3274084991 ack:0, win:5840, tcplen:0
Line 1535: [08/May/2015 20:19:16 ] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:46878 -> xxxx:5051, flags:[ SYN ], seq:3813778252 ack:0, win:5840, tcplen:0
Line 1536: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:38752 -> xxxx:106, flags:[ SYN ], seq: 2873086912 ack:0, win:5840, tcplen:0
Line 1537: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP, len:60, 204.93.180.13:50031 -> xxxx:5009, flags:[ SYN ], seq:1479948630 ack:0, win:5840, tcplen:0
Line 1538: [08/May/2015 20:19:16] DROP "Banned" packet from Onlime, proto:TCP , len:60, 204.93.180.13:35039 -> xxxx:1026, flags:[ SYN ], seq:74237227 ack:0, win:5840, tcplen:0

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
P
Puma Thailand, 2015-05-09
@opium

how many gigabit traffic then?

Report
V
Vladimir, 2015-05-09
@MechanID

taken from https://www.arin.net/abuse.html
Generally, the first step is to report fraudulent activity to the abuser's ISP, which will be listed as the organization that was delegated the IP address space. Most ISPs are responsive to concerns about hackers and spammers on their networks. If you are unsuccessful in resolving this situation with the ISP, you may wish to contact local law enforcement in your area.

Similar questions
M
Mr Stark2016-02-13 03:14:37
Basic Hacking Principles for a Kettle? 5Reply
T
Trifors2013-09-24 12:04:22
Hacking routers or something else? 8Reply
A
Alexey P2018-07-09 09:41:35
What is this site hack called? 1Reply
P
Pyrocar12013-12-14 03:40:37
How can you detect an attacker, having Yandex logs and bitcoin exchange logs on hand? 4Reply
M
Megum1n2020-07-24 13:51:18
How to deal with brute force attacks on an Exchange server? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question