Kategoria: Sieci i komunikacja »
Hakowanie Pentagram Cerberus P6331-62
Od 1 do 6 z 6
matixl
Member
-
Utworzony: 2010.10.26 21:21 Zmieniony: 2010.10.26 21:33
Witam
Siedzę sobie wieczorkiem na komputerze i net się zaciął transfer spadł do minimalnej prędkości zaczął wariować -.- Pomyślałem sobie że to nie wina komputera lecz routera i zajrzałem w logi i zobaczyłem to :(
<code>Oct 26 20:37:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.241.249:1783 to 79.163.117.186:445
Oct 26 20:37:55 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.174.69:52377 to 79.163.117.194:445
Oct 26 20:37:55 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.174.69:52378 to 79.163.117.194:445
Oct 26 20:39:58 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 94.123.141.192:53430 to 79.163.125.219:6881
Oct 26 20:39:58 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.113.108.222:51313 to 79.163.125.219:6881
Oct 26 20:39:59 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 213.39.212.221:51157 to 79.163.125.219:6881
Oct 26 20:40:01 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.113.108.222:51313 to 79.163.125.219:6881
Oct 26 20:40:01 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.7.146.168:55546 to 79.163.125.219:6881
Oct 26 20:40:02 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 213.39.212.221:51157 to 79.163.125.219:6881
Oct 26 20:40:03 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.6.89:28233 to 79.163.125.219:445
Oct 26 20:40:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.29.21.50:18037 to 79.163.125.219:6881
Oct 26 20:40:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.113.108.222:51313 to 79.163.125.219:6881
Oct 26 20:40:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 81.190.49.119:4875 to 79.163.125.219:6881
Oct 26 20:40:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 213.39.212.221:51157 to 79.163.125.219:6881
Oct 26 20:40:09 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.185.79.173:3819 to 79.163.125.219:6881
Oct 26 20:40:10 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.85.237.202:18305 to 79.163.125.219:6881
Oct 26 20:40:10 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 95.48.131.34:41214 to 79.163.125.219:6881
Oct 26 20:40:10 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.29.21.50:18037 to 79.163.125.219:6881
Oct 26 20:40:11 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 81.190.49.119:4875 to 79.163.125.219:6881
Oct 26 20:40:12 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.185.79.173:3819 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.238.182.21:2065 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 95.48.131.34:41214 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.85.237.202:18305 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.17.115.218:62847 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 109.110.223.4:1309 to 79.163.125.219:6881
Oct 26 20:40:16 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.238.182.21:2065 to 79.163.125.219:6881
Oct 26 20:40:16 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.17.115.218:62847 to 79.163.125.219:6881
Oct 26 20:40:17 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 109.110.223.4:1309 to 79.163.125.219:6881
Oct 26 20:40:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 87.239.216.26:63427 to 79.163.125.219:6881
Oct 26 20:40:18 HackAttack: [Ping of Death] ICMP packer from [ppp0] 92.47.126.211 to 79.163.125.219
Oct 26 20:40:19 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.85.237.202:18305 to 79.163.125.219:6881
Oct 26 20:40:21 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 87.239.216.26:63427 to 79.163.125.219:6881
Oct 26 20:40:22 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.238.182.21:2065 to 79.163.125.219:6881
Oct 26 20:40:23 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 82.132.211.7:17452 to 79.163.125.219:6881
Oct 26 20:40:26 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.16.183.173:64405 to 79.163.125.219:6881
Oct 26 20:40:26 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 82.132.211.7:17452 to 79.163.125.219:6881
Oct 26 20:40:27 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 178.36.163.145:59714 to 79.163.125.219:6881
Oct 26 20:40:29 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.16.183.173:64405 to 79.163.125.219:6881
Oct 26 20:40:30 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.84.138.247:19965 to 79.163.125.219:6881
Oct 26 20:40:31 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.239.202:6252 to 79.163.125.219:135
Oct 26 20:40:33 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 178.36.163.145:59714 to 79.163.125.219:6881
Oct 26 20:40:33 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.84.138.247:19965 to 79.163.125.219:6881
Oct 26 20:40:35 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 188.27.240.94:3442 to 79.163.125.219:6881
Oct 26 20:40:35 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.16.183.173:64405 to 79.163.125.219:6881
Oct 26 20:40:37 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 80.54.20.165:6678 to 79.163.125.219:6881
Oct 26 20:40:38 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 188.27.240.94:3442 to 79.163.125.219:6881
Oct 26 20:40:39 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.84.138.247:19965 to 79.163.125.219:6881
Oct 26 20:40:39 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.87.218.103:1421 to 79.163.125.219:6881
Oct 26 20:40:40 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 80.54.20.165:6678 to 79.163.125.219:6881
Oct 26 20:40:42 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.87.218.103:1421 to 79.163.125.219:6881
Oct 26 20:40:43 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.236.26.51:14333 to 79.163.125.219:6881
Oct 26 20:40:46 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.236.26.51:14333 to 79.163.125.219:6881
Oct 26 20:40:50 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.199.91.2:4531 to 79.163.125.219:6881
Oct 26 20:40:51 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 201.222.188.245:16907 to 79.163.125.219:6881
Oct 26 20:40:53 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.199.91.2:4531 to 79.163.125.219:6881
Oct 26 20:40:54 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 201.222.188.245:16907 to 79.163.125.219:6881
Oct 26 20:40:57 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.75.67.140:50292 to 79.163.125.219:6881
Oct 26 20:40:57 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:5349 to 79.163.125.219:445
Oct 26 20:40:57 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:5354 to 79.163.125.219:445
Oct 26 20:40:58 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.89.183.200:54883 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.75.67.140:50292 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 201.222.188.245:16907 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.253.52.4:60938 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.63.69.186:58905 to 79.163.125.219:6881
Oct 26 20:41:01 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.89.183.200:54883 to 79.163.125.219:6881
Oct 26 20:41:03 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.253.52.4:60938 to 79.163.125.219:6881
Oct 26 20:41:03 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.63.69.186:58905 to 79.163.125.219:6881
Oct 26 20:41:04 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.119.53.47:1462 to 79.163.125.219:6881
Oct 26 20:41:04 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.238.119.174:14893 to 79.163.125.219:6881
Oct 26 20:41:05 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 194.187.138.132:4939 to 79.163.125.219:6881
Oct 26 20:41:05 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.186.111.146:63048 to 79.163.125.219:6881
Oct 26 20:41:05 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.101.53.113:1718 to 79.163.125.219:6881
Oct 26 20:41:06 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.75.67.140:50292 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 81.200.56.39:4665 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.119.53.47:1462 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 194.187.138.132:4939 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.238.119.174:14893 to 79.163.125.219:6881
Oct 26 20:41:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 84.224.72.57:1918 to 79.163.125.219:6881
Oct 26 20:41:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.186.111.146:63048 to 79.163.125.219:6881
Oct 26 20:41:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.101.53.113:1718 to 79.163.125.219:6881
Oct 26 20:41:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.152.157:23865 to 79.163.108.143:135
Oct 26 20:41:49 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.89.244:60580 to 79.163.108.143:445
Oct 26 20:41:51 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.89.244:60580 to 79.163.108.143:445
Oct 26 20:42:14 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.128.61:42978 to 79.163.108.143:139
Oct 26 20:43:09 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 65.182.97.13:56672 to 79.163.121.224:6348
Oct 26 20:43:12 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 65.182.97.13:56672 to 79.163.121.224:6348
Oct 26 20:43:26 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 189.94.144.189:1731 to 79.163.121.224:50009
Oct 26 20:43:29 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.228.98.43:60913 to 79.163.121.224:14846
Oct 26 20:43:40 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.172.57:5796 to 79.163.115.25:445
Oct 26 20:43:50 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:24038 to 79.163.115.25:445
Oct 26 20:43:53 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:24038 to 79.163.115.25:445
Oct 26 20:43:53 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:24049 to 79.163.115.25:445
Oct 26 20:44:17 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56936 to 79.163.114.98:12606
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 62.233.204.250:61716 to 79.163.114.98:40005
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56965 to 79.163.114.98:12606
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56966 to 79.163.114.98:12606
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56967 to 79.163.114.98:12606
Oct 26 20:44:19 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56969 to 79.163.114.98:12606
Oct 26 20:44:24 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56965 to
</code> (Trochę usunąłem bo się nie zmieściło)
Czy ktoś hakuje ruter zaśmiecając go komendami ? Co zrobić w takim przypadku ? Zabezpieczenia Wi-Fi najsilniejsze są :]
Zmieniłem ilość przyjmowanych TCP na sekundę z 100 ustawiłem na 50.. Narazie grzebe w ustawieniach po zmieniam pare rzeczy w intrusion detection
Siedzę sobie wieczorkiem na komputerze i net się zaciął transfer spadł do minimalnej prędkości zaczął wariować -.- Pomyślałem sobie że to nie wina komputera lecz routera i zajrzałem w logi i zobaczyłem to :(
<code>Oct 26 20:37:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.241.249:1783 to 79.163.117.186:445
Oct 26 20:37:55 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.174.69:52377 to 79.163.117.194:445
Oct 26 20:37:55 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.174.69:52378 to 79.163.117.194:445
Oct 26 20:39:58 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 94.123.141.192:53430 to 79.163.125.219:6881
Oct 26 20:39:58 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.113.108.222:51313 to 79.163.125.219:6881
Oct 26 20:39:59 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 213.39.212.221:51157 to 79.163.125.219:6881
Oct 26 20:40:01 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.113.108.222:51313 to 79.163.125.219:6881
Oct 26 20:40:01 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.7.146.168:55546 to 79.163.125.219:6881
Oct 26 20:40:02 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 213.39.212.221:51157 to 79.163.125.219:6881
Oct 26 20:40:03 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.6.89:28233 to 79.163.125.219:445
Oct 26 20:40:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.29.21.50:18037 to 79.163.125.219:6881
Oct 26 20:40:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.113.108.222:51313 to 79.163.125.219:6881
Oct 26 20:40:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 81.190.49.119:4875 to 79.163.125.219:6881
Oct 26 20:40:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 213.39.212.221:51157 to 79.163.125.219:6881
Oct 26 20:40:09 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.185.79.173:3819 to 79.163.125.219:6881
Oct 26 20:40:10 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.85.237.202:18305 to 79.163.125.219:6881
Oct 26 20:40:10 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 95.48.131.34:41214 to 79.163.125.219:6881
Oct 26 20:40:10 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.29.21.50:18037 to 79.163.125.219:6881
Oct 26 20:40:11 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 81.190.49.119:4875 to 79.163.125.219:6881
Oct 26 20:40:12 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.185.79.173:3819 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.238.182.21:2065 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 95.48.131.34:41214 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.85.237.202:18305 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.17.115.218:62847 to 79.163.125.219:6881
Oct 26 20:40:13 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 109.110.223.4:1309 to 79.163.125.219:6881
Oct 26 20:40:16 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.238.182.21:2065 to 79.163.125.219:6881
Oct 26 20:40:16 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.17.115.218:62847 to 79.163.125.219:6881
Oct 26 20:40:17 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 109.110.223.4:1309 to 79.163.125.219:6881
Oct 26 20:40:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 87.239.216.26:63427 to 79.163.125.219:6881
Oct 26 20:40:18 HackAttack: [Ping of Death] ICMP packer from [ppp0] 92.47.126.211 to 79.163.125.219
Oct 26 20:40:19 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.85.237.202:18305 to 79.163.125.219:6881
Oct 26 20:40:21 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 87.239.216.26:63427 to 79.163.125.219:6881
Oct 26 20:40:22 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 83.238.182.21:2065 to 79.163.125.219:6881
Oct 26 20:40:23 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 82.132.211.7:17452 to 79.163.125.219:6881
Oct 26 20:40:26 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.16.183.173:64405 to 79.163.125.219:6881
Oct 26 20:40:26 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 82.132.211.7:17452 to 79.163.125.219:6881
Oct 26 20:40:27 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 178.36.163.145:59714 to 79.163.125.219:6881
Oct 26 20:40:29 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.16.183.173:64405 to 79.163.125.219:6881
Oct 26 20:40:30 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.84.138.247:19965 to 79.163.125.219:6881
Oct 26 20:40:31 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.239.202:6252 to 79.163.125.219:135
Oct 26 20:40:33 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 178.36.163.145:59714 to 79.163.125.219:6881
Oct 26 20:40:33 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.84.138.247:19965 to 79.163.125.219:6881
Oct 26 20:40:35 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 188.27.240.94:3442 to 79.163.125.219:6881
Oct 26 20:40:35 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.16.183.173:64405 to 79.163.125.219:6881
Oct 26 20:40:37 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 80.54.20.165:6678 to 79.163.125.219:6881
Oct 26 20:40:38 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 188.27.240.94:3442 to 79.163.125.219:6881
Oct 26 20:40:39 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.84.138.247:19965 to 79.163.125.219:6881
Oct 26 20:40:39 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.87.218.103:1421 to 79.163.125.219:6881
Oct 26 20:40:40 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 80.54.20.165:6678 to 79.163.125.219:6881
Oct 26 20:40:42 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.87.218.103:1421 to 79.163.125.219:6881
Oct 26 20:40:43 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.236.26.51:14333 to 79.163.125.219:6881
Oct 26 20:40:46 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.236.26.51:14333 to 79.163.125.219:6881
Oct 26 20:40:50 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.199.91.2:4531 to 79.163.125.219:6881
Oct 26 20:40:51 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 201.222.188.245:16907 to 79.163.125.219:6881
Oct 26 20:40:53 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.199.91.2:4531 to 79.163.125.219:6881
Oct 26 20:40:54 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 201.222.188.245:16907 to 79.163.125.219:6881
Oct 26 20:40:57 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.75.67.140:50292 to 79.163.125.219:6881
Oct 26 20:40:57 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:5349 to 79.163.125.219:445
Oct 26 20:40:57 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:5354 to 79.163.125.219:445
Oct 26 20:40:58 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.89.183.200:54883 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.75.67.140:50292 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 201.222.188.245:16907 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.253.52.4:60938 to 79.163.125.219:6881
Oct 26 20:41:00 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.63.69.186:58905 to 79.163.125.219:6881
Oct 26 20:41:01 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.89.183.200:54883 to 79.163.125.219:6881
Oct 26 20:41:03 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 77.253.52.4:60938 to 79.163.125.219:6881
Oct 26 20:41:03 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 91.63.69.186:58905 to 79.163.125.219:6881
Oct 26 20:41:04 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.119.53.47:1462 to 79.163.125.219:6881
Oct 26 20:41:04 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.238.119.174:14893 to 79.163.125.219:6881
Oct 26 20:41:05 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 194.187.138.132:4939 to 79.163.125.219:6881
Oct 26 20:41:05 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.186.111.146:63048 to 79.163.125.219:6881
Oct 26 20:41:05 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.101.53.113:1718 to 79.163.125.219:6881
Oct 26 20:41:06 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.75.67.140:50292 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 81.200.56.39:4665 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 92.119.53.47:1462 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 194.187.138.132:4939 to 79.163.125.219:6881
Oct 26 20:41:07 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 88.238.119.174:14893 to 79.163.125.219:6881
Oct 26 20:41:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 84.224.72.57:1918 to 79.163.125.219:6881
Oct 26 20:41:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.186.111.146:63048 to 79.163.125.219:6881
Oct 26 20:41:08 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 85.101.53.113:1718 to 79.163.125.219:6881
Oct 26 20:41:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.152.157:23865 to 79.163.108.143:135
Oct 26 20:41:49 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.89.244:60580 to 79.163.108.143:445
Oct 26 20:41:51 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.89.244:60580 to 79.163.108.143:445
Oct 26 20:42:14 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.128.61:42978 to 79.163.108.143:139
Oct 26 20:43:09 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 65.182.97.13:56672 to 79.163.121.224:6348
Oct 26 20:43:12 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 65.182.97.13:56672 to 79.163.121.224:6348
Oct 26 20:43:26 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 189.94.144.189:1731 to 79.163.121.224:50009
Oct 26 20:43:29 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.228.98.43:60913 to 79.163.121.224:14846
Oct 26 20:43:40 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.172.57:5796 to 79.163.115.25:445
Oct 26 20:43:50 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:24038 to 79.163.115.25:445
Oct 26 20:43:53 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:24038 to 79.163.115.25:445
Oct 26 20:43:53 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 79.163.21.249:24049 to 79.163.115.25:445
Oct 26 20:44:17 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56936 to 79.163.114.98:12606
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 62.233.204.250:61716 to 79.163.114.98:40005
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56965 to 79.163.114.98:12606
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56966 to 79.163.114.98:12606
Oct 26 20:44:18 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56967 to 79.163.114.98:12606
Oct 26 20:44:19 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56969 to 79.163.114.98:12606
Oct 26 20:44:24 HackAttack: [TCP SYN Flooding] TCP packet from [ppp0] 89.126.40.133:56965 to
</code> (Trochę usunąłem bo się nie zmieściło)
Czy ktoś hakuje ruter zaśmiecając go komendami ? Co zrobić w takim przypadku ? Zabezpieczenia Wi-Fi najsilniejsze są :]
Zmieniłem ilość przyjmowanych TCP na sekundę z 100 ustawiłem na 50.. Narazie grzebe w ustawieniach po zmieniam pare rzeczy w intrusion detection
golik
Member
-
Utworzony: 2010.10.27 11:07 Zmieniony: 2010.10.27 11:10
Może masz na tych portach jakąś usługę która działa w ten sposób i stąd w logu informacja o ataku a tak naprawdę go nie ma i to tylko specyfika działania serwera dla danej usługi a może masz z kimś na pieńku. Dorzuć jak coś jeszcze firewall softowy na wszelki wypadek, połataj cały system.
Masz router ADSL to zmień adres IP, może zbieg okoliczności i ktoś atakuje adres IP, z którego ktoś inny wcześniej coś robił.
Masz router ADSL to zmień adres IP, może zbieg okoliczności i ktoś atakuje adres IP, z którego ktoś inny wcześniej coś robił.
matixl
Member
-
Utworzony: 2010.10.27 16:47
Myślę że to hack na 99 % Mieszkam na osiedlu i nie wierzę ,że nie ma takich gości którzy chętnie haksują nocką :) Tak to normalnie chodzę ale od czasu do czasu w godzinach nocnych tak nieraz mam.
IP moje to 192.168.1.100 trzeba zmieniać ?
"Dorzuć jak coś jeszcze firewall softowy na wszelki wypadek, połataj cały system."
yyy Firewall softowy czyli ? Ten w windowsie tak ? Mam jeszcze kaspersky internet security 2011 więc czuje się trochę bezpieczny ^^
IP moje to 192.168.1.100 trzeba zmieniać ?
"Dorzuć jak coś jeszcze firewall softowy na wszelki wypadek, połataj cały system."
yyy Firewall softowy czyli ? Ten w windowsie tak ? Mam jeszcze kaspersky internet security 2011 więc czuje się trochę bezpieczny ^^
KG23
Member
-
Utworzony: 2010.10.27 17:31
Wysłany przez: matixlIP moje to 192.168.1.100 trzeba zmieniać ?
Nie to jest pula prywatna i adresacja z LAN, jak masz ADSL to po rozłączeniu zmieni się twój adres zew. ten z WAN na inny.
Wysłany przez: matixlaspersky internet security 2011
To lepsze, wystarczy nie ma co przesadzać.
FellAngel
Member
-
Utworzony: 2010.10.27 20:01
Prościej mówiąc - wyłącz i włącz router o ile masz internet przez telefon (ADSL), wtedy adres IP routera (bo to jego adres jest widoczny dla innych ludzi, a nie ten Twojego komputera) będzie zmieniony. Adres IP każdego komputera jest przyznawany przez router.
matixl
Member
-
Utworzony: 2010.11.05 16:05
Wyłączałem router wtedy ale parę sekund po załączeniu znowu problem powracał.
Na szczęście problem był tylko 1 dniowy :)
Na szczęście problem był tylko 1 dniowy :)
Od 1 do 6 z 6
