|
| Precedente :: Successivo |
| Autore |
Messaggio |
dinosaur
Eroe in grazia degli dei
Registrato: 08/02/07 20:54
Messaggi: 134
|
 Inviato: 17 Ago 2007 03:01 Oggetto: Attacchi continui da remoto |
 |
|
situazione:
connessione analogica 56k, WinXP Home SP2 aggiornato, AVG aggiornato, Zone Alarm free aggiornato e attivo
proprio quest'ultimo mi sta segnalando 226 attacchi in 21 minuti!
il pc (notebook) e la linea appartengono a mia madre, che abita al m are e presso cui mi trovo in vacanza
ho installato ZA per abitudine (non intendo lasciarlo installato poiche' mia madre e' inesperta e potrebbe avere difficolta' con gli avvisi ecc.) e davvero non so cosa fare in merito alla situazione
cosa succede? come posso reagire?
sono nel panico totale... |
|
| Top |
|
 |
bdoriano
Amministratore
Registrato: 02/04/07 12:05
Messaggi: 14391
Residenza: 3° pianeta del sistema solare...
|
| Inviato: 17 Ago 2007 07:31 Oggetto: |
|
|
Normale, durante la navigazione si viene bersagliati più dai curiosoni (chiamiamoli così) che da reali pericoli (se hai una connessione analogica).
Ti basta togliere la spunta a "visualizza tutti gli avvisi" (o qualcosa del genere, non ho ZA a disposizione). |
|
| Top |
|
|
chemicalbit
Dio maturo
Registrato: 01/04/05 18:59
Messaggi: 18597
Residenza: Milano
|
| Inviato: 17 Ago 2007 09:11 Oggetto: |
|
|
| Alcuni di questi "attacchi di curiosi" sono pacchetti mandari dal tuo IAP (l'ISP che ti fa da "Internet Access Provider") per controllare che sei .... "vivo" |
|
| Top |
|
|
ioSOLOio
Amministratore
Registrato: 12/09/03 19:01
Messaggi: 16342
Residenza: in un sacco di...acqua
|
| Inviato: 17 Ago 2007 09:15 Oggetto: |
|
|
come hanno detto bdoriano e chemicalbit,
molti degli attacchi segnalati dal firewall sono spesso cose legittime e cose ben poco serie.
Indubbiamente occorrerebbe fare una cernita delle moltissime segnalazioni per vedere se effettivamente ve ne sono di serie.
E' il motivo per cui un firewall è necessario per una sufficiente tranquillità a tutti, e l'utente medio solitamente si affiderà in toto non preoccupandosi più di tanto di scandagliare i vari log.
Eventualmente se sei proprio incuriosito o peggio preoccupato, puoi provare a postare una parte del log di una manciata di minuti |
|
| Top |
|
|
**Alex**
Semidio
Registrato: 16/06/07 22:58
Messaggi: 278
Residenza: Veneto
|
| Inviato: 17 Ago 2007 11:19 Oggetto: |
|
|
In effetti anche a me preoccupava un pò il numero di attacchi bloccati: 57713  |
|
| Top |
|
|
dinosaur
Eroe in grazia degli dei
Registrato: 08/02/07 20:54
Messaggi: 134
|
| Inviato: 17 Ago 2007 11:39 Oggetto: |
|
|
grazie mille per le delucidazioni
al momento in cui scrivo, nella manciata di minuti di connessione, le segnalazioni di Zone Alarm sono drasticamente diminuite, diciamo una ogni pochi minuti
posto una parte di log relativo a stanotte, ho controllato alcuni IP e si va dalla Cina alla Russia passando per Italia e Spagna (dove mi trovo al momento)
il provider e' Vnet.es, se puo' essere utile saperlo, e ho cambiato i DNS impostando gli OpenDNS
####ZA LOG#####
FWIN,2007/08/17,02:35:22 +2:00 GMT,10.68.5.45:0,212.59.202.197:0,ICMP (type:3/subtype:13)
FWIN,2007/08/17,02:35:26 +2:00 GMT,86.218.74.143:1789,212.59.202.197:50432,TCP (flags:S)
FWIN,2007/08/17,02:35:34 +2:00 GMT,68.125.82.188:4803,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:35:36 +2:00 GMT,88.111.119.245:49679,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:35:40 +2:00 GMT,79.1.77.235:1756,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:35:42 +2:00 GMT,80.31.248.161:11367,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:35:46 +2:00 GMT,200.160.95.214:61735,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:35:50 +2:00 GMT,189.11.232.1:56000,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:35:56 +2:00 GMT,89.212.54.141:8090,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:04 +2:00 GMT,212.106.27.28:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:08 +2:00 GMT,213.152.142.18:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:08 +2:00 GMT,81.88.119.41:62446,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:28 +2:00 GMT,88.5.16.158:11008,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:30 +2:00 GMT,189.24.38.38:62539,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:30 +2:00 GMT,82.228.221.163:4472,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:32 +2:00 GMT,87.6.151.122:37469,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:42 +2:00 GMT,212.188.104.73:3831,212.59.202.197:445,TCP (flags:S)
FWIN,2007/08/17,02:36:44 +2:00 GMT,87.15.185.13:57109,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:54 +2:00 GMT,62.57.44.47:15534,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:36:54 +2:00 GMT,79.12.102.86:5767,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:12 +2:00 GMT,87.7.167.172:45305,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:12 +2:00 GMT,84.72.160.234:62998,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:14 +2:00 GMT,190.31.84.111:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:14 +2:00 GMT,75.7.40.195:5280,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:14 +2:00 GMT,82.52.254.165:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:14 +2:00 GMT,87.20.74.147:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:14 +2:00 GMT,189.141.151.167:32341,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:14 +2:00 GMT,201.24.124.117:6756,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:18 +2:00 GMT,81.172.1.55:14672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:18 +2:00 GMT,88.9.144.98:57311,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:20 +2:00 GMT,151.33.131.209:1756,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:20 +2:00 GMT,201.35.3.21:49319,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:22 +2:00 GMT,91.168.200.126:34591,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:24 +2:00 GMT,124.67.78.233:3867,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:26 +2:00 GMT,83.97.181.242:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:28 +2:00 GMT,82.59.179.8:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:30 +2:00 GMT,83.181.199.66:38684,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:30 +2:00 GMT,83.9.8.120:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:30 +2:00 GMT,82.101.191.15:20082,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:32 +2:00 GMT,88.6.158.51:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:32 +2:00 GMT,201.19.53.248:4675,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:38 +2:00 GMT,24.89.196.20:61073,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:38 +2:00 GMT,212.200.205.23:36187,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:42 +2:00 GMT,89.6.87.211:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:46 +2:00 GMT,200.117.91.21:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:52 +2:00 GMT,59.121.195.73:4705,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:58 +2:00 GMT,81.9.188.30:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:37:58 +2:00 GMT,83.60.26.104:15309,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:02 +2:00 GMT,80.161.133.13:49130,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:02 +2:00 GMT,83.189.218.5:5287,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:04 +2:00 GMT,82.253.222.117:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:06 +2:00 GMT,83.112.167.39:4671,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:08 +2:00 GMT,201.42.49.128:61194,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:08 +2:00 GMT,78.12.3.176:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:14 +2:00 GMT,81.32.228.228:62018,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:14 +2:00 GMT,81.210.132.48:25038,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:18 +2:00 GMT,81.57.121.202:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:20 +2:00 GMT,61.58.74.173:6850,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:20 +2:00 GMT,81.31.45.129:46122,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:22 +2:00 GMT,88.154.2.211:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:22 +2:00 GMT,84.220.192.112:16148,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:26 +2:00 GMT,86.196.149.45:33055,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:26 +2:00 GMT,83.37.41.35:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:28 +2:00 GMT,218.80.79.97:5623,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:34 +2:00 GMT,86.217.44.69:32841,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:44 +2:00 GMT,91.120.44.94:25435,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:46 +2:00 GMT,81.9.250.17:41906,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:48 +2:00 GMT,222.221.163.85:10780,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:52 +2:00 GMT,222.105.78.19:32,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:52 +2:00 GMT,80.24.183.83:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:56 +2:00 GMT,84.179.114.171:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:38:56 +2:00 GMT,201.13.222.117:44679,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:06 +2:00 GMT,85.69.221.111:55083,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:06 +2:00 GMT,79.8.123.75:5123,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:10 +2:00 GMT,222.14.95.15:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:12 +2:00 GMT,87.19.244.217:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:20 +2:00 GMT,84.114.16.200:60004,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:20 +2:00 GMT,80.132.237.130:61259,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:22 +2:00 GMT,59.113.69.158:33714,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:24 +2:00 GMT,89.128.83.217:14672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:24 +2:00 GMT,81.34.113.83:10693,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:26 +2:00 GMT,201.250.228.14:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:28 +2:00 GMT,151.53.157.4:5052,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:30 +2:00 GMT,201.39.66.170:35813,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:36 +2:00 GMT,210.60.65.32:22,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:36 +2:00 GMT,87.68.233.187:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:38 +2:00 GMT,83.57.133.20:4466,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:42 +2:00 GMT,87.7.66.22:21012,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:44 +2:00 GMT,84.227.173.222:63147,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:46 +2:00 GMT,80.178.232.6:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:46 +2:00 GMT,211.194.59.203:4803,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:48 +2:00 GMT,83.20.7.45:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:50 +2:00 GMT,68.107.94.246:10010,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:50 +2:00 GMT,77.49.134.85:60893,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:50 +2:00 GMT,89.140.62.126:19380,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:52 +2:00 GMT,84.229.152.232:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:54 +2:00 GMT,218.171.162.19:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:54 +2:00 GMT,151.41.182.214:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:39:58 +2:00 GMT,189.12.9.234:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:00 +2:00 GMT,82.227.78.125:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:04 +2:00 GMT,201.58.119.244:46224,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:12 +2:00 GMT,85.57.33.160:24065,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:22 +2:00 GMT,88.246.158.159:8008,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:32 +2:00 GMT,67.81.110.124:44576,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:32 +2:00 GMT,82.57.20.196:17161,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:46 +2:00 GMT,88.72.117.7:19834,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:50 +2:00 GMT,58.138.12.202:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:52 +2:00 GMT,88.154.85.203:4890,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:40:54 +2:00 GMT,84.131.77.143:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:04 +2:00 GMT,77.201.232.141:4662,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:06 +2:00 GMT,82.53.28.217:8198,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:10 +2:00 GMT,81.220.63.201:61281,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:12 +2:00 GMT,87.217.236.86:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:12 +2:00 GMT,200.86.140.240:25,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:30 +2:00 GMT,125.64.4.165:48745,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:32 +2:00 GMT,84.229.135.225:6672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:34 +2:00 GMT,190.31.77.213:6444,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:36 +2:00 GMT,190.38.154.139:4777,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:48 +2:00 GMT,220.205.43.55:7128,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:50 +2:00 GMT,88.149.233.41:41632,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:52 +2:00 GMT,62.57.102.233:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:54 +2:00 GMT,82.253.132.223:5672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:54 +2:00 GMT,81.202.123.81:5838,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:56 +2:00 GMT,81.64.106.97:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:41:56 +2:00 GMT,84.60.159.241:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:06 +2:00 GMT,83.200.74.69:1024,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:06 +2:00 GMT,90.28.180.221:12512,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:10 +2:00 GMT,83.20.136.222:47056,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:14 +2:00 GMT,222.221.163.113:11233,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:16 +2:00 GMT,85.140.71.148:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:22 +2:00 GMT,79.19.152.24:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:30 +2:00 GMT,213.238.108.104:4674,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:34 +2:00 GMT,85.68.107.232:18930,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:38 +2:00 GMT,83.37.156.103:56608,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:38 +2:00 GMT,219.78.111.32:4857,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:38 +2:00 GMT,80.51.98.14:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:40 +2:00 GMT,213.84.254.57:22644,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:40 +2:00 GMT,222.130.193.117:6651,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:42 +2:00 GMT,87.10.57.190:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:42 +2:00 GMT,84.78.130.44:16419,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:44 +2:00 GMT,84.162.234.99:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:44 +2:00 GMT,189.25.51.221:4662,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:48 +2:00 GMT,85.224.46.140:63802,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:54 +2:00 GMT,89.14.67.0:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:42:54 +2:00 GMT,77.194.203.158:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:00 +2:00 GMT,61.159.140.86:23006,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:00 +2:00 GMT,200.159.69.39:56611,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:14 +2:00 GMT,88.155.196.247:50170,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:24 +2:00 GMT,193.153.111.120:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:36 +2:00 GMT,85.60.131.3:19946,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:42 +2:00 GMT,151.65.207.117:21107,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:46 +2:00 GMT,201.93.207.4:28827,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:46 +2:00 GMT,88.121.66.219:11795,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:50 +2:00 GMT,198.68.245.170:10114,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:52 +2:00 GMT,201.42.16.173:27817,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:43:52 +2:00 GMT,88.23.159.18:4673,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:00 +2:00 GMT,81.40.16.9:24663,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:02 +2:00 GMT,80.31.248.161:11467,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:04 +2:00 GMT,84.125.56.219:10070,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:04 +2:00 GMT,190.31.25.29:31560,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:28 +2:00 GMT,125.139.219.136:4803,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:30 +2:00 GMT,122.124.163.217:39497,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:32 +2:00 GMT,200.158.50.79:4692,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:36 +2:00 GMT,82.251.209.43:4700,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:40 +2:00 GMT,80.218.115.139:32778,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:40 +2:00 GMT,220.134.70.125:4672,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:44:50 +2:00 GMT,86.207.101.44:54351,212.59.202.197:7228,UDP
FWIN,2007/08/17,02:45:10 +2:00 GMT,85.53.83.224:53258,212.59.202.197:50432,TCP (flags:S)
FWIN,2007/08/17,02:45:12 +2:00 GMT,80.230.21.18:4672,212.59.202.197:7228,UDP
######## |
|
| Top |
|
|
dinosaur
Eroe in grazia degli dei
Registrato: 08/02/07 20:54
Messaggi: 134
|
| Inviato: 18 Ago 2007 20:06 Oggetto: |
|
|
allora mi sono accrorto di un paio di cose:
- la frequenza degli "attacchi" varia da momento a momento, a volte uno ogni 10 minuti, altre si parla di raffiche tipo il log parziale postato piu' sopra
- la maggioranza degli attacchi considerati da ZA a rischio alto provengono proprio dal provider, e qui non mi e' chiaro - visto che sembra essere proprio il caso descritto da chemicalbit - se sia normale che un ping legittimo venga considerato intrusione ad alto rischio da ZA
- il log visualizzabile tramite la GUI di ZA: l'ho impostato per mostrare le ultime 999 voci (il massimo) ma ogni volta che riavvio il pc riparte da zero. lo so che ci sono i log testuali in C:\Windows\Internet Logs, mi chiedevo solo se e' normale
ok, lo so che sono curiosita' banali (per molti), ma ci tenevo a esporle |
|
| Top |
|
|
bdoriano
Amministratore
Registrato: 02/04/07 12:05
Messaggi: 14391
Residenza: 3° pianeta del sistema solare...
|
| Inviato: 19 Ago 2007 08:16 Oggetto: |
|
|
Quando hai estratto il log, avevi emule attivo? 
Perché mi sembra che ci sia parecchio traffico riconducibile alla normale attività di emule. |
|
| Top |
|
|
dinosaur
Eroe in grazia degli dei
Registrato: 08/02/07 20:54
Messaggi: 134
|
| Inviato: 19 Ago 2007 15:26 Oggetto: |
|
|
ciao,
no, ne' attivo e ne' installato
d'altronde sono in vacanza e dispongo di una misera 56k 
comunque dal 14 di agosto, ore 2:11am, momento dal quale ZA e' attivo su questo pc, a oggi, sono sate registrati 1480 tentativi di cui 13 considerati gravi |
|
| Top |
|
|
dinosaur
Eroe in grazia degli dei
Registrato: 08/02/07 20:54
Messaggi: 134
|
| Inviato: 21 Ago 2007 16:31 Oggetto: |
 |
|
chiedo scusa per l'insistenza, ma qui la situazione mi pare grave
me ne intendo davvero poco di log, protocolli, porte e compagnia bella, ma la situazione tipo e' questa:
######
FWIN,2007/08/21,16:17:58 +2:00 GMT,59.45.138.253:6658,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:17:58 +2:00 GMT,59.115.151.68:4672,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:00 +2:00 GMT,221.239.20.198:26474,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:02 +2:00 GMT,85.18.136.104:48352,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:02 +2:00 GMT,81.41.186.246:4672,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:02 +2:00 GMT,62.42.118.70:11409,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:02 +2:00 GMT,82.53.130.69:35211,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:08 +2:00 GMT,220.69.86.185:4672,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:14 +2:00 GMT,87.10.93.94:11602,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:14 +2:00 GMT,123.253.144.1:5622,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:24 +2:00 GMT,77.198.22.202:55046,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:18:38 +2:00 GMT,86.218.167.137:4226,212.59.203.xx:32448,TCP (flags:S)
FWIN,2007/08/21,16:18:52 +2:00 GMT,124.186.217.223:60842,212.59.203.xx:32448,TCP (flags:S)
FWIN,2007/08/21,16:18:56 +2:00 GMT,222.130.103.92:6907,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:02 +2:00 GMT,59.50.147.69:6263,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:02 +2:00 GMT,83.187.232.18:1578,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:14 +2:00 GMT,83.33.99.97:39594,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:24 +2:00 GMT,58.50.151.9:4672,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:28 +2:00 GMT,79.12.198.157:25934,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:28 +2:00 GMT,151.32.184.250:27170,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:40 +2:00 GMT,189.28.183.134:6844,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:48 +2:00 GMT,124.115.42.204:4074,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:50 +2:00 GMT,59.46.196.6:1777,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:50 +2:00 GMT,201.45.129.66:2390,212.59.203.xx:32448,TCP (flags:S)
FWIN,2007/08/21,16:19:52 +2:00 GMT,125.31.232.175:8008,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:54 +2:00 GMT,88.153.173.6:34737,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:54 +2:00 GMT,201.19.9.36:61943,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:19:58 +2:00 GMT,86.218.167.137:4265,212.59.203.xx:32448,TCP (flags:S)
FWIN,2007/08/21,16:20:08 +2:00 GMT,80.246.0.134:18751,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:12 +2:00 GMT,85.136.236.17:4677,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:16 +2:00 GMT,202.97.238.201:58544,212.59.203.xx:1027,UDP
FWIN,2007/08/21,16:20:20 +2:00 GMT,83.187.234.248:4672,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:22 +2:00 GMT,80.31.173.108:46064,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:24 +2:00 GMT,200.196.37.106:30868,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:24 +2:00 GMT,58.41.213.206:4672,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:24 +2:00 GMT,60.234.247.84:54573,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:32 +2:00 GMT,80.138.222.43:4672,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:38 +2:00 GMT,201.23.220.4:44338,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:42 +2:00 GMT,88.xx.12.161:7029,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:20:44 +2:00 GMT,82.213.132.87:21415,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:21:00 +2:00 GMT,83.147.85.179:53971,212.59.203.xx:29330,UDP
FWIN,2007/08/21,16:21:08 +2:00 GMT,221.208.208.87:46832,212.59.203.xx:1027,UDP
######
non so, non mi pare una cosa per cui si possa stare tranquilli, o sbaglio?
umilmente chiedo: cosa posso fare per proteggermi?
ribadisco che si tratta di una connessione 56k, il SO e' XP SP2 HE aggiornato, il fw e' ZA free ultima versione
help... |
|
| Top |
|
|
|
|
Non puoi inserire nuovi argomenti
Non puoi rispondere a nessun argomento
Non puoi modificare i tuoi messaggi
Non puoi cancellare i tuoi messaggi
Non puoi votare nei sondaggi
|
|
FAQ
Cerca
Lista utenti
Gruppi
Registrati
Profilo
Messaggi privati
Log in
