U.S. CitiesCity-Data Forum Index
Go Back   City-Data Forum > General Forums > Science and Technology > Internet
 [Register]
Please register to participate in our discussions with 2 million other members - it's free and quick! Some forums can only be seen by registered members. After you create your account, you'll be able to customize options and access all our 15,000 new posts/day with fewer ads.
View detailed profile (Advanced) or search
site with Google Custom Search

Search Forums  (Advanced)
 
 
Old 10-23-2010, 11:02 PM
 
16,308 posts, read 25,451,261 times
Reputation: 8305

Advertisements

Started to placed an order with newegg today, and my firewall alerted me that it detected and stopped an Nmap TCP scan. I checked the source IP, which comes back to newegg.

Sorry newegg, no sale.
Quick reply to this message

 
Old 10-24-2010, 12:54 PM
 
28,673 posts, read 41,018,526 times
Reputation: 37408
If I ever see that they will lose a long time customer.
Quick reply to this message
 
Old 10-24-2010, 01:07 PM
 
Location: Colorado, Denver Metro Area
1,048 posts, read 4,026,556 times
Reputation: 398
That is extremely strange! Definitely contact their customer support and let them know.
Quick reply to this message
 
Old 10-24-2010, 01:20 PM
 
28,673 posts, read 41,018,526 times
Reputation: 37408
Quote:
Originally Posted by ColoWeb View Post
That is extremely strange! Definitely contact their customer support and let them know.
I already have, thanks.
Quick reply to this message
 
Old 10-24-2010, 03:59 PM
 
Location: Tyler, TX
15,229 posts, read 18,640,217 times
Reputation: 8081
Quote:
Originally Posted by Asheville Native View Post
Started to placed an order with newegg today, and my firewall alerted me that it detected and stopped an Nmap TCP scan. I checked the source IP, which comes back to newegg.

Sorry newegg, no sale.
Can you provide more details? I'm very skeptical that newegg would be scanning your IP.
Quick reply to this message
 
Old 10-24-2010, 10:30 PM
 
16,308 posts, read 25,451,261 times
Reputation: 8305
Well I don't have a screen shot, but firewall popped up a warning it had blocked a "Nmap TCP scan" offering me the opportunity to allow or not. The source IP address was 204.14.213.188.
Quick reply to this message
 
Old 10-25-2010, 04:37 PM
 
Location: Mableton, GA USA (NW Atlanta suburb, 4 miles OTP)
11,319 posts, read 22,880,855 times
Reputation: 3896
Quote:
Originally Posted by Asheville Native View Post
Well I don't have a screen shot, but firewall popped up a warning it had blocked a "Nmap TCP scan" offering me the opportunity to allow or not. The source IP address was 204.14.213.188.
Assuming the I wasn't somehow spoofed, that's very interesting.

Newegg Inc. IP00108 (NET-204-14-213-0-1) 204.14.213.0 - 204.14.213.255

Source: IP Address Lookup (IPv4 & IPv6)
Quick reply to this message
 
Old 10-25-2010, 06:49 PM
 
Location: Tyler, TX
15,229 posts, read 18,640,217 times
Reputation: 8081
Quote:
Originally Posted by Asheville Native View Post
Well I don't have a screen shot, but firewall popped up a warning it had blocked a "Nmap TCP scan" offering me the opportunity to allow or not. The source IP address was 204.14.213.188.
Pretty vague description... I haven't used zonealarm in many years, but I would have expected more from it - it used to be a pretty detail oriented piece of software.

They probably have some deal with a firewall or antivirus publisher and were simply checking if you were a good candidate to market it to.

I'm in the market for a low profile NIC - I was going to order one from mwave today, but I'll order from newegg instead and log all traffic from their netblock during and after the transaction to see if they do the same to me.
Quick reply to this message
 
Old 10-26-2010, 09:45 AM
 
Location: Tyler, TX
15,229 posts, read 18,640,217 times
Reputation: 8081
Ok, I just bought a NIC from newegg, while capturing packets before, during and for 25 minutes after the transaction.

Nothing. Nada. Zip.

At this point, there's no reason to think that it wasn't ZA giving a false positive. Newegg isn't exactly a shady vendor, and googling didn't turn up anybody else experiencing the same phenomenon.

You should consider whether or not you're going to let a piece of free software have that much control over you and where you shop. Are you really going to stop buying from one of the biggest and most respected vendors on the 'net because ZA gave you a popup, when nobody else is seeing the same thing?

I think it was probably HTTP responses that happened to be sent to ports that are used for known services, and ZA flagged them and thought you were being scanned. I just don't believe that Newegg would be doing anything nefarious - especially considering that a large portion of their customer base is made up of techies who would catch something like a port scan, which would kill their reputation.
Quick reply to this message
 
Old 10-26-2010, 07:27 PM
 
10,768 posts, read 18,200,727 times
Reputation: 10292
I personally wouldn't let zone alarm within 100 feet of any of my computers.
Quick reply to this message
Please register to post and access all features of our very popular forum. It is free and quick. Over $68,000 in prizes has already been given out to active posters on our forum. Additional giveaways are planned.

Detailed information about all U.S. cities, counties, and zip codes on our site: City-data.com.


 
Please update this thread with any new information or opinions. This open thread is still read by thousands of people, so we encourage all additional points of view.

Quick Reply
Message:
Over $104,000 in prizes was already given out to active posters on our forum and additional giveaways are planned!

Go Back   City-Data Forum > General Forums > Science and Technology > Internet
Similar Threads
Follow City-Data.com founder on our Forum or

All times are GMT -6.

© 2005-2020, Advameg, Inc. · Please obey Forum Rules · Terms of Use and Privacy Policy · Bug Bounty

City-Data.com - Archive 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35 - Top