Bioshock
X-Blog
Just another WordPress weblog
Hamper Raya
If you want to buy hamper for raya, contact li3y4n4@yahoo.com.sg
or drop a comment here.
Intruder!
Few weeks ago, I randomly scanned certain range of IP address.
With normal ping, this would be the result:
| root@X-Program:~# ping 192.168.0.5 PING 192.168.0.5 (192.168.0.5) 56(84) bytes of data. 64 bytes from 192.168.0.5: icmp_seq=1 ttl=250 time=89.3 ms 64 bytes from 192.168.0.5: icmp_seq=2 ttl=250 time=68.2 ms 64 bytes from 192.168.0.5: icmp_seq=3 ttl=250 time=126 ms 64 bytes from 192.168.0.5: icmp_seq=4 ttl=250 time=52.7 ms— 192.168.0.5 ping statistics — 4 packets transmitted, 4 received, 0% packet loss, time 3000ms rtt min/avg/max/mdev = 52.741/84.220/126.547/27.677 ms |
This might look normal for you guys, but to me, IT’S WAY F**KING WEIRD (to respect the Ramadhan month, I censored it).
I shouldn’t have that range of IP address, especially when I’ve configure the router to accept IP address from 192.168.1.2 until 192.168.1.254.
*note: 192.168.1.1 is gateway and 192.168.1.255 is broadcast*
So I’ve decide to enumerate this illegal hosts and this is the result:
| root@X-Program:~# nmap 192.168.0.2-15 -sS -sV -P0 –osscan-guess Starting Nmap 4.20 ( http://insecure.org ) at 2007-09-12 18:09 MYT Stats: 0:00:30 elapsed; 0 hosts completed (5 up), 5 undergoing SYN Stealth Scan SYN Stealth Scan Timing: About 3.49% done; ETC: 18:12 (0:02:19 remaining) All 1697 scanned ports on 192.168.0.2 are filteredAll 1697 scanned ports on 192.168.0.3 are filtered All 1697 scanned ports on 192.168.0.4 are filtered Interesting ports on 192.168.0.5: Interesting ports on 192.168.0.6: Service Info: OS: IOS; Device: router |
Ok, now it’s much more weird and threaten my home network.
Check out the port name: “krb524″ and “kuang2″.
krb524: Kerberos v5/ CrackDown/ Prosiak/ Swift Remote more information
kuang2: Some old virus more information
Also, check out the device info: router.
Dude! It’s a freaking ROUTER with 2 trojan port!
Too weird for this exist at my home network and it’s superbly dangerous if it’s being ignored.
So I block IP address from 192.168.0.2 to 192.168.0.254 with port from 2 until 65530.
Here’s some screenshot of the Nmap.
Ramadhan month
Just wanna wish all of muslim, happy fasting!
|| the enumeration on intruder result I will post it up later on
|| as currently I’m having problem with my Ubuntu
|| (overheat due to high usage)
Compiz-Fusion
After a week plus trying to:
- install ATI (fglrx) driver
- enable direct rendering
- display correct fglrx information
- getting Compiz-Fusion run
I finally accomplish what I wanted for;
a cool nice desktop to “brighten” up my day whenever I’m bored.
Oh yeah~!
Calendar
| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « May | ||||||
| 1 | 2 | 3 | 4 | 5 | ||
| 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 |
| 20 | 21 | 22 | 23 | 24 | 25 | 26 |
| 27 | 28 | 29 | 30 | |||
Archives
- May 2010 (1)
- February 2010 (1)
- January 2010 (2)
- November 2009 (1)
- September 2009 (1)
- August 2009 (8)
- July 2009 (1)
- June 2009 (4)
- May 2009 (3)
- April 2009 (3)
- March 2009 (1)
- January 2009 (4)
- December 2008 (9)
- November 2008 (2)
- October 2008 (3)
- September 2008 (7)
- August 2008 (6)
- July 2008 (4)
- June 2008 (9)
- May 2008 (8)
- April 2008 (3)
- March 2008 (6)
- February 2008 (5)
- January 2008 (8)
- December 2007 (2)
- November 2007 (2)
- October 2007 (6)
- September 2007 (6)