What can I do about attempts to breach my firewall?

Hi everyone,

Like many people, I use ZoneAlarm on my personal computer. I’m not particularly afraid of hackers accessing my computer – I’m on a 56k modem for crissakes :slight_smile: – but it’s comforting to know it’s there.

The past three hours, Zonealarm has logged nearly 100 (and climbing) attempted port scans. Most of them come from a two IP addresses. The targeted ports are port 2000 and port 137. (I read port 137 is for network traffic, but my computer is currently a stand-alone.)

So my GQ is: what can be done about these repeated attempts? ZoneAlarm is reporting the IP address and ISP of the computer attempting to connect to my computer – do I have any recourse in that direction?

Also, should I be worried about these attempts? (I’m not particularly perturbed, but it’d be nice to know whether this is something to be concerned about.)

Thanks in advance.

Please see this link:

http://www.robertgraham.com/pubs/firewall-seen.html

It will help you out very much. Note that it says Port 137 is nothing to really be concerned with.

Actually, one thing that may be connected: spammers are now using a built-in tool for some versions of Windows that’s meant for network admins and the like. I belive that ports 137 and 2000 are the ones it tries to use. (Warning: I’m remembering those port #'s vaguely from a bit of experimentation I did with my home network, so I may be off on the ports. But, those ones sound familiar.)

Here’s a link with more info on it: http://www.stopmessengerspam.com/


<< Yum. >>

Thanks for those links, guys. I’ll check them out.