Networks IM being harassed by AOL... why is this not a surprise?

So for some reason zoneAlarm has decided to dump all of its whitelist settings and its throwing up all these confirm/deny requests... and along with them has come about 15 requests from various AOL servers in virginia (acording to an RDNS lookup) They all seem to be comming over the AIM port. Iv had a few pings but mostly just connection requests. Mos tof them are flagged: S. What is all this stuff?

 

HELP! good grief im being shelled. no timestamps because this is a makeshift log, but i've goten all this in the last 10 minutes

Code:

172.130.231.109

172.130.173.138 (flag S?)

172.130.173.138 (TCP port 4972 Flags:s)

172.130.14.145 (TCP port 2639 Flags:s)

172.120.123.230 (TCP port 4825 Flags:s)

172.130.14.145 (TCP port 4714 Flags: s) 

195.162.94.117 (UDP port 26551)

214.167.168.62 (UDP port 13167)

172.130.167.150 (TCP port 2396 TCP flags:s)

 

I can't seem to ping any of the IP addresses, the address could be dynamic or pinging is blocked. I thought it could be an AIM update, but as the ports are UDP I doubt it.
Have you tried updating AIM manually if there is an update available?

 

I dont believe you can update the AIM thats built into the browser. all you can do is run a full version upgrade

EDIT:

I stopped logging about here

Code:

172.130.231.109

172.130.173.138 (flag S?)

172.130.173.138 (TCP port 4972 Flags:s)

172.130.14.145 (TCP port 2639 Flags:s)

172.120.123.230 (TCP port 4825 Flags:s)

172.130.14.145 (TCP port 4714 Flags: s) 

195.162.94.117 (UDP port 26551)

214.167.168.62 (UDP port 13167)

172.130.167.150 (TCP port 2396 TCP flags:s)

172.130.14.145 (TCP port 2328 TCP flags:S)

172.130.173.138 (TCP port 4889 TCP flags: S)

172.130.167.159 (TCP port 2845 TCP flags: S)

61.153.15.163 (UDP port 4330)

172.130.167.150 (TCP port 4617 TCP Flags:s)

172.149.249.143 (UDP port 3065) to 205.188.146.145 (DNS)

152.163.6.16 to 172.149.249.143 (ICMP time exceeded)

172.149.249.143 (UDP port 3062) to 205.188.146.145 (DNS)

(UDP port 1026) from 217.40.227.62 (UDP port 22190)

(UDP port 1027) from 216.182.67.245 (UDP port 13809)

(TSP port 1041) from 152.163.15.93 (TCP port 1384 Flags: S)

(TCP port 1041) from 152.163.15.70 (TCP port 13784 TCP flags :S)

(TCP port 2745) from 158.103.0.2 (TCP port 64658 Flags:s)

(UDP port 1026) 221.10.254.903 (UDP port 33431)

(UDP port 1027) from 218.27.103.206 (UDP port 53332)

(UDP port 1026) 15.180.250.38 (UDP port 0)

(ICMP echo request from 172.149.202.177

(UDP port 1434) from 61.185.80.10 (UDP port 1096)

(TCP port 14660) from 65.136.9.119 (TCP port 1227 Flags: S)

(UDP port 1026) from 221.211.255.14 (UDP port 33118)

(UDP port 1027) from 195.141.175.136 (UDP port 15741)

 

did you traceroute ?

 

Can you tracert if you are denied ping?

 

Traceroute will show sorta the origins... ping just get's a reply from the IP... If it's set to not ping back your going to timeout... like I did with traceroute but at least I found if it's aol or something else...

 

RDNS (reverse DNS lookup) says its an AOL server