Server is under attack - Need help pls

I got this from my server company

Your server was unplugged for an Acceptable Use Policy and Terms of Service Violations by the network team.

Sample of Cap:

0.0030 seconds ellapsed in capture
93667 inbound PPS to 80.96.71.251
0 outbound PPS from 80.96.71.251
65.51 inbound Mbps to 80.96.71.251
0.00 outbound Mbps from 80.96.71.251


1 2005-12-31 09:38:00.138194 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
2 2005-12-31 09:38:00.138196 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
3 2005-12-31 09:38:00.138197 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
4 2005-12-31 09:38:00.138198 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
5 2005-12-31 09:38:00.138200 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
6 2005-12-31 09:38:00.138205 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
7 2005-12-31 09:38:00.138206 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
8 2005-12-31 09:38:00.138207 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
9 2005-12-31 09:38:00.138208 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
10 2005-12-31 09:38:00.138210 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
11 2005-12-31 09:38:00.138212 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
13 2005-12-31 09:38:00.138331 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
15 2005-12-31 09:38:00.138333 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
16 2005-12-31 09:38:00.138335 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
17 2005-12-31 09:38:00.138339 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
18 2005-12-31 09:38:00.138340 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
19 2005-12-31 09:38:00.138341 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
21 2005-12-31 09:38:00.138365 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
22 2005-12-31 09:38:00.138367 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
23 2005-12-31 09:38:00.138375 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
24 2005-12-31 09:38:00.138603 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
25 2005-12-31 09:38:00.138605 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
26 2005-12-31 09:38:00.138607 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
27 2005-12-31 09:38:00.138608 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
28 2005-12-31 09:38:00.138610 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
29 2005-12-31 09:38:00.138614 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
30 2005-12-31 09:38:00.138616 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
31 2005-12-31 09:38:00.138617 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
32 2005-12-31 09:38:00.138619 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
33 2005-12-31 09:38:00.138620 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
34 2005-12-31 09:38:00.138624 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
35 2005-12-31 09:38:00.138626 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
36 2005-12-31 09:38:00.138627 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
37 2005-12-31 09:38:00.138629 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
38 2005-12-31 09:38:00.138630 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
39 2005-12-31 09:38:00.138635 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
40 2005-12-31 09:38:00.138636 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
41 2005-12-31 09:38:00.138637 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
42 2005-12-31 09:38:00.138639 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
43 2005-12-31 09:38:00.138640 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80
44 2005-12-31 09:38:00.138645 67.15.187.13 -> 80.96.71.251 UDP Source port: 16488 Destination port: 80

Frame Used for MAC:

Frame 1 (92 bytes on wire, 92 bytes captured)
Arrival Time: Dec 31, 2005 09:38:00.138194000
Time delta from previous packet: 0.000000000 seconds
Time since reference or first frame: 0.000000000 seconds
Frame Number: 1
Packet Length: 92 bytes
Capture Length: 92 bytes
Ethernet II, Src: 00:14:22:72:ff:0a, Dst: 00:e0:52:0e:1e:52
Destination: 00:e0:52:0e:1e:52 (00:e0:52:0e:1e:52)
Source: 00:14:22:72:ff:0a (00:14:22:72:ff:0a)
Type: IP (0x0800)
Internet Protocol, Src Addr: 67.15.187.13 (67.15.187.13), Dst Addr: 80.96.71.251 (80.96.71.251)

MAC to IP Conversion:

Your lookup was on: 00:14:22:72:ff:0a

MAC: 0014.2272.ff0a
Netiron / Port IPs First Seen Last Seen Age
66.98.240.109 port 3 67.15.187.121
67.15.187.122
67.15.187.13 Mon Dec 12 16:48:39 2005 Sat Dec 31 09:54:00 2005 0




This is DDos attack ?

or anyother attach

now what can i do

so that this attach will not happen again

now the server is down

Thank you in advance for all help

Regards
Jayakumar

 

 

 

 

Top