What in the world is in my network logs? (solved) - JDBar - 11-02-2010
EDIT: This was from a torrent I had running. False alarm! :3
I was looking at the logs for my router and there's just a TON of stuff like this:
[LAN access from remote] from 71.234.0.8:36623 to 192.168.1.2:39258 Saturday, Oct 30,2010 16:48:31
[LAN access from remote] from 96.21.225.7:61892 to 192.168.1.2:39258 Saturday, Oct 30,2010 16:40:49
[LAN access from remote] from 90.216.150.212:20146 to 192.168.1.2:39258 Saturday, Oct 30,2010 16:20:57
[LAN access from remote] from 90.216.150.212:64633 to 192.168.1.2:39258 Saturday, Oct 30,2010 16:20:18
[LAN access from remote] from 220.233.46.206:62825 to 192.168.1.2:39258 Saturday, Oct 30,2010 16:16:01
[LAN access from remote] from 72.146.13.34:44334 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:59:37
[LAN access from remote] from 71.204.239.57:59475 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:59:30
[LAN access from remote] from 69.203.117.238:46537 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:53:11
[LAN access from remote] from 76.87.213.65:36451 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:48:47
[Internet connected] IP address: 71.79.240.250, Saturday, Oct 30,2010 15:41:06
[LAN access from remote] from 67.185.82.77:55668 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:38:58
[LAN access from remote] from 72.146.13.34:6881 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:33:27
[LAN access from remote] from 69.156.7.150:40017 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:21:07
[LAN access from remote] from 71.83.134.126:1309 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:11:34
[LAN access from remote] from 99.246.149.43:37000 to 192.168.1.2:39258 Saturday, Oct 30,2010 15:07:38
[LAN access from remote] from 200.88.128.67:50053 to 192.168.1.2:39258 Saturday, Oct 30,2010 14:51:09
[DOS attack: STORM] attack packets in last 20 sec from ip [192.168.1.3], Saturday, Oct 30,2010 14:20:00
[DOS attack: STORM] attack packets in last 20 sec from ip [192.168.1.3], Saturday, Oct 30,2010 14:19:39
[DOS attack: STORM] attack packets in last 20 sec from ip [192.168.1.3], Saturday, Oct 30,2010 14:19:18
[DOS attack: STORM] attack packets in last 20 sec from ip [192.168.1.3], Saturday, Oct 30,2010 14:18:56
[DOS attack: STORM] attack packets in last 20 sec from ip [192.168.1.3], Saturday, Oct 30,2010 14:18:35
[DOS attack: STORM] attack packets in last 20 sec from ip [192.168.1.3], Saturday, Oct 30,2010 14:18:01
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:17:57
[DOS attack: STORM] attack packets in last 20 sec from ip [90.184.27.42], Saturday, Oct 30,2010 14:16:34
[DOS attack: STORM] attack packets in last 20 sec from ip [90.184.27.42], Saturday, Oct 30,2010 14:16:13
[DOS attack: STORM] attack packets in last 20 sec from ip [90.184.27.42], Saturday, Oct 30,2010 14:15:52
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:46
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:14:46
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:45
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:14:45
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:44
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:14:44
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:43
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:14:43
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:42
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:14:42
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:41
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:14:41
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:40
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:14:40
[DOS attack: STORM] attack packets in last 20 sec from ip [213.106.157.90], Saturday, Oct 30,2010 14:14:37
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:14:23
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:14:02
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:41
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:16
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:16
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:15
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:15
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:14
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:14
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:13
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:13
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:12
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:12
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:11
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:11
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:10
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:10
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:09
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:09
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:08
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:08
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:07
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:07
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:01
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:01
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:13:00
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:13:00
[DOS attack: STORM] attack packets in last 20 sec from ip [71.60.115.92], Saturday, Oct 30,2010 14:12:59
[DOS attack: STORM] attack packets in last 20 sec from ip [188.178.171.175], Saturday, Oct 30,2010 14:12:59
What the heck is going on?! Is this normal? False-positive stuff? I don't know really anything about networking. My router is Netgear WNDR3300.
RE: What in the world is in my network logs? - Zurmi - 11-03-2010
JDBar,
Do you have a firewall installed on your computer?
If so, please tell me which one.
Regards,
Zurmi
RE: What in the world is in my network logs? - JDBar - 11-03-2010
I've got the AVG Internet Security 8.5 paid version, which includes a firewall.
RE: What in the world is in my network logs? - Zurmi - 11-04-2010
Alright, do you happen to know if your router also has a firewall?
Regards,
Zurmi
RE: What in the world is in my network logs? - Quintus - 11-05-2010
What Operating System are you running?
RE: What in the world is in my network logs? - JDBar - 11-09-2010
@ Zurmi:
Yes it has a firewall.
@ Quintus:
Vista Home Premium 64-bit
I'm beginning to suspect these are false alarms because I was running a torrent at the time, but I honestly don't have a clue.
RE: What in the world is in my network logs? - DiCE - 12-12-2010
(11-09-2010, 03:23 PM)JDBar Wrote: @ Zurmi:
Yes it has a firewall.
@ Quintus:
Vista Home Premium 64-bit
I'm beginning to suspect these are false alarms because I was running a torrent at the time, but I honestly don't have a clue.
It definitely was the torrent. That's what torrents do, download the file from multiple people so that is why you saw so many IP's there.
RE: What in the world is in my network logs? - Blacklite - 12-12-2010
I really hope you have a firewall and an encrypted network password?
|