What's going on a bunch of Windows Operating sys intrustions?

5/17/2010 4:33:25 PM Windows Operating System Blocked In ICMP 63.131.143.179 Type(11) 192.168.1.4 Code(0)
5/13/2010 9:12:24 AM Windows Operating System Blocked In ICMP 212.5.35.242 Type(11) 192.168.1.4 Code(0)
5/13/2010 9:12:20 AM Windows Operating System Blocked In ICMP 212.5.35.242 Type(11) 192.168.1.4 Code(0)
5/13/2010 9:12:18 AM Windows Operating System Blocked In ICMP 212.5.35.242 Type(11) 192.168.1.4 Code(0)
5/8/2010 2:01:27 PM Windows Operating System Blocked In ICMP 193.254.218.2 Type(11) 192.168.1.4 Code(0)
5/8/2010 2:01:23 PM Windows Operating System Blocked In ICMP 193.254.218.2 Type(11) 192.168.1.4 Code(0)
5/8/2010 2:01:21 PM Windows Operating System Blocked In ICMP 193.254.218.2 Type(11) 192.168.1.4 Code(0)
4/23/2010 5:09:08 PM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/22/2010 5:18:11 AM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/21/2010 8:13:00 PM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/19/2010 11:31:38 PM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/19/2010 11:05:29 PM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/19/2010 6:38:01 AM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/19/2010 6:20:06 AM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/19/2010 12:04:23 AM Windows Operating System Blocked In ICMP 79.101.46.6 Type(11) 192.168.1.4 Code(0)
4/19/2010 12:04:19 AM Windows Operating System Blocked In ICMP 79.101.46.6 Type(11) 192.168.1.4 Code(0)
4/19/2010 12:04:17 AM Windows Operating System Blocked In ICMP 79.101.46.6 Type(11) 192.168.1.4 Code(0)
4/18/2010 12:43:10 PM Windows Operating System Blocked In ICMP 217.25.208.202 Type(11) 192.168.1.4 Code(0)
4/18/2010 12:43:06 PM Windows Operating System Blocked In ICMP 217.25.208.202 Type(11) 192.168.1.4 Code(0)
4/18/2010 12:43:04 PM Windows Operating System Blocked In ICMP 217.25.208.202 Type(11) 192.168.1.4 Code(0)
4/17/2010 7:23:36 PM Windows Operating System Blocked In ICMP 208.53.214.149 Type(11) 192.168.1.4 Code(0)
4/16/2010 5:22:26 PM Windows Operating System Blocked In ICMP 81.91.189.12 Type(11) 192.168.1.4 Code(0)
4/16/2010 5:22:22 PM Windows Operating System Blocked In ICMP 81.91.189.12 Type(11) 192.168.1.4 Code(0)
4/16/2010 5:22:20 PM Windows Operating System Blocked In ICMP 81.91.189.12 Type(11) 192.168.1.4 Code(0)
4/16/2010 6:21:48 AM Windows Operating System Blocked In ICMP 201.86.51.34 Type(11) 192.168.1.4 Code(0)
4/14/2010 7:56:20 PM Windows Operating System Blocked In ICMP 62.221.41.178 Type(11) 192.168.1.4 Code(0)
4/14/2010 7:56:16 PM Windows Operating System Blocked In ICMP 62.221.41.178 Type(11) 192.168.1.4 Code(0)
4/14/2010 7:56:14 PM Windows Operating System Blocked In ICMP 62.221.41.178 Type(11) 192.168.1.4 Code(0)
4/14/2010 7:14:08 PM Windows Operating System Blocked In ICMP 77.222.147.161 Type(11) 192.168.1.4 Code(0)
4/14/2010 7:14:04 PM Windows Operating System Blocked In ICMP 77.222.147.161 Type(11) 192.168.1.4 Code(0)
4/14/2010 7:14:02 PM Windows Operating System Blocked In ICMP 77.222.147.161 Type(11) 192.168.1.4 Code(0)
4/14/2010 5:57:49 PM Windows Operating System Blocked In ICMP 85.198.188.1 Type(11) 192.168.1.4 Code(0)
4/14/2010 5:57:45 PM Windows Operating System Blocked In ICMP 85.198.188.1 Type(11) 192.168.1.4 Code(0)
4/14/2010 5:57:43 PM Windows Operating System Blocked In ICMP 85.198.188.1 Type(11) 192.168.1.4 Code(0)
4/14/2010 4:40:56 PM Windows Operating System Blocked In ICMP 78.24.24.239 Type(11) 192.168.1.4 Code(0)
4/14/2010 4:40:52 PM Windows Operating System Blocked In ICMP 78.24.24.239 Type(11) 192.168.1.4 Code(0)
4/14/2010 4:40:50 PM Windows Operating System Blocked In ICMP 78.24.24.239 Type(11) 192.168.1.4 Code(0)
4/13/2010 7:03:13 PM Windows Operating System Blocked In ICMP 80.253.54.163 Type(11) 192.168.1.4 Code(0)
4/13/2010 7:03:09 PM Windows Operating System Blocked In ICMP 80.253.54.163 Type(11) 192.168.1.4 Code(0)
4/13/2010 7:03:07 PM Windows Operating System Blocked In ICMP 80.253.54.163 Type(11) 192.168.1.4 Code(0)
4/13/2010 5:43:21 PM Windows Operating System Blocked In ICMP 84.22.2.234 Type(11) 192.168.1.4 Code(0)
4/13/2010 5:43:17 PM Windows Operating System Blocked In ICMP 84.22.2.234 Type(11) 192.168.1.4 Code(0)
4/13/2010 5:43:15 PM Windows Operating System Blocked In ICMP 84.22.2.234 Type(11) 192.168.1.4 Code(0)
4/12/2010 4:52:11 PM Windows Operating System Blocked In ICMP 193.0.240.52 Type(11) 192.168.1.4 Code(0)
4/12/2010 4:52:06 PM Windows Operating System Blocked In ICMP 193.0.240.52 Type(11) 192.168.1.4 Code(0)
4/12/2010 4:52:01 PM Windows Operating System Blocked In ICMP 193.0.240.52 Type(11) 192.168.1.4 Code(0)
4/12/2010 4:51:56 PM Windows Operating System Blocked In ICMP 193.0.240.52 Type(11) 192.168.1.4 Code(0)
4/12/2010 4:51:51 PM Windows Operating System Blocked In ICMP 193.0.240.52 Type(11) 192.168.1.4 Code(0)

Port scanners ? There are some machines that constantly try to break-in other computers, using ghost IPs.

I get TCP attempts constantly :


http://img694.imageshack.us/img694/1622/spamlist2.gif

Possible commercial link removed by Moderator

Hello and Welcome to the Forums, :slight_smile:

Most likely it isn’t someone deliberately trying to access your PC. The label “Windows Operating System” is a pseudo-process, meaning the intrusions aren’t targeting a specific program on your PC to gain access. Seeing as it is random IPs using the ICMP protocol, it is most likely “router chatter” - just other systems on the internet probing to see what PCs will “respond” to them. As catscratch said, they are simply port scanners or probers. There’s nothing to worry about however, as CIS is blocking these. Usually a router will block this “chatter” before it gets to your software firewall (CIS). Are you using a router with a built-in hardware firewall? If yes, maybe you can log into your router and configure it to stop this. If not, you can create a global rule in your CIS network policies to block and NOT log these “intrusions” if you do not want to see them.

Alias. Is your connection functioning properly? The ICMP error type (11) code (0)means that the Time To Live for the sent packages sent is exceeded and the packages then get dropped.

My best guesses to the reason of these alerts:

  • Your internet traffic gets routed over many hops
  • The TTL was decreased from its default value
    Are your by any instance using Tor for connecting to the web?