HOLY SHIT! Government hacking/organized crime?

[D. B. Doober]

had a roommate staying here for a while, they left recently. We have a wireless network and use wpa psk to thwart hackers and other undesirables. We had some problems with the internet for a few days, and i started fiddling with mac address control. One hostname/computer was odd looking but assumed it was the roommates . Now that theyre gone, i went back into the router as admin and did the mac thing again...turns out that odd hostname was that someone had hooked up a computer to my network solely for data acquisition and network/data monitoring.
My roommate must have been approached by someone for the network password, probably for pay, and they agreed it seems. Not sure how long it was going on, but didnt do anything incriminating and theyre blocked, password is changed.
When i googled the host name that came up when i scanned the mac addresses hooked up to my network i almost shit myself...it turned out to be a computer thats run by an OS used solely for the purpose of acquiring data from me and monitoring my use. Heres the host name
PCOS-20110626JT

Not sure if it was LEO, corrupt LEO, or nerds

And check out my firewall log...im gettng more attacs than Wikileaks
Found attack from 222.218.42.231 in port 23 => Tue Aug 21 12:00:22 2012

Found attack from 222.218.42.231 in port 210 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 8090 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 8000 => Tue Aug 21 12:00:22 2012

Found attack from 95.9.89.242 in port 1763 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 8118 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 2479 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 5390 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 8080 => Tue Aug 21 12:00:22 2012

Found attack from 61.152.125.235 in port 3389 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 8085 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 3246 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 9090 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 2301 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 8088 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 27977 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 8000 => Tue Aug 21 12:00:22 2012

Found attack from 218.55.5.145 in port 3389 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 2479 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 9000 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.227 in port 8090 => Tue Aug 21 12:00:22 2012

Found attack from 96.9.174.55 in port 7777 => Tue Aug 21 12:00:22 2012

Found attack from 74.125.131.108 in port 40468 => Tue Aug 21 12:00:22 2012

Found attack from 218.28.14.246 in port 3389 => Tue Aug 21 12:00:22 2012

Found attack from 219.159.112.169 in port 9090 => Tue Aug 21 12:00:22 2012

Found attack from 221.2.209.46 in port 83 => Tue Aug 21 12:00:22 2012

Found attack from 115.196.108.41 in port 1935 => Tue Aug 21 12:00:22 2012

Found attack from 66.152.168.218 in port 1433 => Tue Aug 21 12:00:22 2012

Found attack from 74.125.131.108 in port 54349 => Tue Aug 21 12:00:22 2012

Found attack from 58.218.199.250 in port 27977 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.218.199.250 in port 7212 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 112.209.100.134 in port 8088 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 91.208.16.244 in port 5021 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.218.199.227 in port 2301 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.218.199.227 in port 8088 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 114.134.154.69 in port 20006 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 116.209.77.11 in port 20006 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 211.141.224.53 in port 20006 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 174.35.22.165 in port 49355 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 174.35.22.69 in port 49393 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 66.114.52.23 in port 50425 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.218.199.250 in port 6588 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 108.133.34.203 in port 23 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 108.133.34.203 in port 210 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 119.127.46.135 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 117.41.249.142 in port 3389 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 66.114.52.22 in port 50447 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 80.5.70.90 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 59.53.186.88 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 66.114.52.29 in port 50453 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 123.138.33.58 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 113.103.98.203 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 183.212.126.226 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 2.235.91.89 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 210.195.138.163 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 139.195.27.157 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 222.125.163.22 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.218.199.227 in port 73 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.218.199.227 in port 3246 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.218.199.227 in port 8123 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 58.218.199.227 in port 6588 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 223.79.143.0 in port 20006 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 74.125.131.109 in port 51849 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 118.171.169.174 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 66.114.52.23 in port 50565 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 196.210.171.149 in port 443 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 126.65.159.135 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 213.229.120.36 in port 5900 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 110.77.59.127 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 122.82.221.230 in port 20006 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 124.240.183.80 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 122.89.136.235 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 66.114.52.29 in port 50784 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 222.81.58.185 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 77.229.132.111 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 66.114.52.29 in port 50795 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 219.131.218.12 in port 20006 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 1.161.56.145 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 223.93.9.146 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 66.114.52.29 in port 50817 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 96.63.227.16 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 111.77.42.149 in port 20006 => Tue Aug 21 12:00:22 2012

Found AllUDPFlood attack from 174.35.22.181 in port 50928 => Tue Aug 21 12:00:22 2012

Found AllUDPFlood attack from 115.87.190.62 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 139.222.247.15 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 203.82.95.155 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 61.243.33.148 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.48.121.98 in port 20006 => Tue Aug 21 12:00:22 2012

Found PortScanner attack from 66.114.52.22 in port 50969 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 114.45.15.63 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 110.81.36.178 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 114.27.252.174 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 58.23.50.116 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 183.247.212.179 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 211.220.33.133 in port 20006 => Tue Aug 21 12:00:22 2012

Found Syncflood attack from 109.238.181.158 in port 443 => Tue Aug 21 12:00:22 2012

 

[D. B. Doober]

im tracing the IP addresses now and theyre all Chinese

 

[Illuminate]

fuck man the chinese are attacking the interwebs, where do we hide..

 

[redbudduckfoot]

your fucked. I would go off the grid, Jason Bourne steez.

rbdf

 

[skaZe]

you're a dead man boy, they got ya

 

[D. B. Doober]

theyre like ok...now we know he likes cannabis and porn

 

[skaZe]

well i just guess these are some kind of attacks by chinese hackers, trying to get informations for sending spam mails or whatever.

I doubt this comes from your Government since it would be too much assoff working to check all these suspicious people by hacking attacks.

 

[soursmoker]

thats scary shit man, i just took a kief bong rip and now you got me worried bout my wifi and shit, im bout to check my firewall haha

 

[fukndenny]

i used to sniff peoples networks all the time.

probably some bored hax0r.

 

[dbuzz]

There's a new 0day exploit discovered recently. From china. http://www.theregister.co.uk/2012/08/27/disable_java_to_block_exploit/