When kiddies attack!
Dan Miller
rambi.dev at gmail.com
Thu Feb 8 18:35:48 EST 2007
Here is what logwatch reports for me every morning.This is about
average, comcast won't do a thing, so I'm not even trying. I have
thought about setting up a cron to set my daily logs to them to see what
I get, I don't think it will help though.
Dropped 4043 packets on interface eth0
From 4.20.75.147 - 1 packet to udp(1434)
From 4.161.194.193 - 1 packet to udp(1026)
From 9.85.60.97 - 1 packet to udp(1026)
From 12.30.217.56 - 1 packet to udp(1026)
From 12.120.1.233 - 15 packets to tcp(12559)
From 12.120.1.234 - 287 packets to
tcp(2118,3086,3418,3716,3960,4275,4344,5552,5835,6294,6890,7265,7983,8090,11724,11897,12600,13019,14032,14563,15444,15971)
From 12.120.1.235 - 222 packets to
tcp(2186,3286,4232,5764,5803,6509,9009,9687,10403,10581,10791,11611,12612,13557,13764,13950,15357,16107)
From 12.120.1.236 - 276 packets to
tcp(2070,2787,3750,4089,5334,6869,7607,7620,8800,9013,12756,12816,13207,13257,13376,14025,14157,14724,15419,16041)
From 12.130.50.213 - 15 packets to
tcp(6902,7857,11093,13776,14818,23658,27137,31647,32957,38278,43132,47943,53637,61154,62487)
From 15.17.149.181 - 1 packet to udp(1026)
From 18.216.124.101 - 1 packet to udp(1026)
From 20.247.6.106 - 1 packet to udp(1026)
From 21.45.63.151 - 2 packets to udp(1025,1027)
From 21.79.194.60 - 1 packet to udp(1026)
From 24.64.8.30 - 3 packets to udp(1026,1027,1028)
From 24.64.70.153 - 3 packets to udp(1026,1027,1028)
From 24.64.79.221 - 3 packets to udp(1026,1027,1028)
From 24.64.81.219 - 3 packets to udp(1026,1027,1028)
From 24.64.100.142 - 3 packets to udp(1026,1027,1028)
From 24.64.109.236 - 3 packets to udp(1026,1027,1028)
From 24.64.113.69 - 3 packets to udp(1026,1027,1028)
From 24.64.122.23 - 3 packets to udp(1026,1027,1028)
From 24.64.172.238 - 3 packets to udp(1026,1027,1028)
From 24.64.183.87 - 3 packets to udp(1026,1027,1028)
From 24.64.232.90 - 3 packets to udp(1026,1027,1028)
From 24.64.247.230 - 3 packets to udp(1026,1027,1028)
From 24.64.255.250 - 3 packets to udp(1026,1027,1028)
From 24.65.2.230 - 3 packets to udp(1026,1027,1028)
From 24.95.202.40 - 3 packets to udp(1025,1027,1028)
From 25.16.163.233 - 3 packets to udp(1025,1026,1028)
From 28.209.85.153 - 3 packets to udp(1025,1026,1028)
From 29.166.46.38 - 1 packet to udp(1026)
From 32.230.161.251 - 1 packet to udp(1026)
From 38.97.75.215 - 1 packet to udp(1026)
From 40.160.100.134 - 2 packets to udp(1026,1028)
From 40.192.161.60 - 1 packet to udp(1026)
From 45.100.139.156 - 1 packet to udp(1026)
From 45.189.168.199 - 2 packets to udp(1026,1028)
From 46.155.27.53 - 1 packet to udp(1026)
From 46.205.134.208 - 2 packets to udp(1025,1027)
From 48.166.85.249 - 1 packet to udp(1026)
From 48.235.80.185 - 1 packet to udp(1026)
From 51.95.21.233 - 2 packets to udp(1026,1028)
From 56.252.217.43 - 2 packets to udp(1025,1027)
From 57.35.72.208 - 1 packet to udp(1026)
From 57.42.70.136 - 1 packet to udp(1026)
From 58.106.165.55 - 1 packet to udp(1026)
From 60.11.125.47 - 1 packet to udp(1027)
From 60.145.213.166 - 1 packet to udp(1026)
From 60.190.172.30 - 1 packet to tcp(7212)
From 60.228.23.86 - 1 packet to udp(1026)
From 61.180.228.243 - 4 packets to udp(1026,1027)
From 62.43.122.13 - 1 packet to tcp(5900)
From 63.1.64.79 - 1 packet to udp(1026)
From 63.161.111.45 - 2 packets to udp(1025,1027)
From 64.154.81.197 - 1 packet to tcp(56811)
From 64.162.69.147 - 1 packet to udp(1026)
From 64.191.203.30 - 1 packet to tcp(43202)
From 64.207.44.53 - 3 packets to tcp(2967)
From 64.233.167.99 - 1 packet to tcp(59212)
From 64.240.177.211 - 1 packet to udp(1026)
From 65.49.27.4 - 1 packet to udp(1026)
From 65.71.107.166 - 1 packet to udp(1026)
From 65.73.59.48 - 1 packet to udp(1026)
From 65.88.71.10 - 1 packet to udp(1026)
From 65.92.32.85 - 1 packet to udp(1026)
From 65.95.147.192 - 1 packet to udp(1026)
From 65.101.9.143 - 1 packet to udp(1026)
From 65.120.61.183 - 1 packet to udp(1026)
From 65.123.134.57 - 1 packet to udp(1026)
From 65.135.205.24 - 1 packet to udp(1026)
From 65.136.192.22 - 1 packet to udp(1026)
From 65.137.221.76 - 1 packet to udp(1026)
From 65.143.237.209 - 1 packet to udp(1026)
From 65.155.155.63 - 1 packet to udp(1026)
From 65.162.107.194 - 1 packet to udp(1026)
From 65.165.193.35 - 1 packet to udp(1026)
From 65.169.42.145 - 1 packet to udp(1026)
From 65.176.2.139 - 1 packet to udp(1026)
From 65.177.87.169 - 1 packet to udp(1026)
From 65.181.89.53 - 1 packet to udp(1026)
From 65.182.66.92 - 1 packet to udp(1026)
From 65.186.177.65 - 1 packet to udp(1026)
From 66.45.227.222 - 2 packets to tcp(44712)
From 66.213.253.92 - 2 packets to tcp(1433)
From 66.231.185.135 - 18 packets to udp(1026,1027)
From 67.168.218.114 - 2 packets to tcp(1433)
From 68.187.240.6 - 1 packet to tcp(5900)
From 69.66.83.123 - 1 packet to icmp(1026)
From 69.91.198.33 - 2 packets to udp(1025,1027)
From 71.17.23.35 - 4 packets to icmp(8)
From 71.17.93.223 - 4 packets to icmp(8)
From 71.17.171.207 - 4 packets to icmp(8)
From 71.39.33.210 - 1 packet to tcp(2967)
From 71.41.29.186 - 2 packets to tcp(1433)
From 71.65.71.50 - 4 packets to tcp(2967)
From 71.67.139.55 - 1 packet to tcp(5900)
From 71.70.179.53 - 2 packets to tcp(2967)
From 71.80.236.206 - 2 packets to tcp(1433)
From 71.82.104.61 - 2 packets to tcp(1433)
From 71.83.189.154 - 2 packets to tcp(5900)
From 71.89.3.75 - 2 packets to tcp(2967)
From 71.93.80.135 - 1 packet to tcp(5900)
From 71.94.82.198 - 1 packet to tcp(5900)
From 71.114.205.35 - 2 packets to tcp(2967)
From 71.117.35.21 - 4 packets to icmp(8)
From 71.140.35.11 - 1 packet to tcp(2967)
From 71.180.213.74 - 1 packet to udp(1026)
From 71.192.21.102 - 2 packets to tcp(1433,5800)
From 71.192.58.226 - 2 packets to tcp(1433,5800)
From 71.192.62.138 - 1 packet to tcp(5900)
From 71.192.89.48 - 2 packets to tcp(2967,2968)
From 71.192.144.43 - 4 packets to tcp(2967)
From 71.194.63.159 - 1 packet to icmp(8)
From 71.195.170.128 - 1 packet to icmp(8)
From 71.199.31.109 - 2 packets to tcp(2967)
From 71.199.129.141 - 2 packets to tcp(2967)
From 71.199.255.224 - 2 packets to tcp(1433)
From 71.225.221.161 - 1 packet to tcp(2967)
From 71.232.87.189 - 1 packet to tcp(2967)
From 71.241.112.75 - 2 packets to tcp(2967)
From 72.14.203.147 - 1 packet to tcp(51879)
From 72.62.242.9 - 2 packets to udp(1025,1027)
From 72.165.123.215 - 1 packet to udp(1026)
From 73.166.248.1 - 1871 packets to udp(68)
From 74.174.55.182 - 1 packet to udp(1026)
From 74.233.44.90 - 2 packets to udp(1026,1027)
From 79.138.153.123 - 2 packets to udp(1025,1027)
From 81.182.47.208 - 1 packet to udp(1026)
From 82.245.24.180 - 2 packets to tcp(5900)
From 84.9.239.11 - 1 packet to udp(1026)
From 85.40.204.66 - 2 packets to tcp(443)
From 85.117.134.18 - 5 packets to icmp(8)
From 85.217.164.117 - 1 packet to udp(1026)
From 89.35.51.102 - 1 packet to tcp(5900)
From 91.110.184.219 - 1 packet to udp(1026)
From 91.204.243.190 - 2 packets to udp(1025,1027)
From 97.83.85.173 - 1 packet to udp(1026)
From 99.144.14.104 - 2 packets to udp(1025,1027)
From 99.146.134.2 - 1 packet to udp(1026)
From 121.100.245.138 - 1 packet to udp(1026)
From 121.131.114.14 - 4 packets to tcp(7212)
From 123.151.226.170 - 1 packet to udp(1026)
From 123.206.233.36 - 1 packet to udp(1026)
From 124.0.250.159 - 2 packets to udp(1026,1028)
From 126.162.168.39 - 2 packets to udp(1026,1028)
From 128.209.11.88 - 2 packets to udp(1025,1027)
From 129.33.82.49 - 36 packets to
udp(33446,33447,33448,33449,33450,33451,33452,33453,33454,33455) icmp(8)
From 129.33.82.50 - 36 packets to
udp(33445,33446,33447,33448,33449,33450,33451,33452,33453) icmp(8)
From 129.33.82.51 - 9 packets to icmp(8)
From 129.33.82.52 - 36 packets to
udp(33450,33451,33452,33453,33454,33455,33456,33457,33458) icmp(8)
From 129.33.82.53 - 36 packets to
udp(33450,33451,33452,33453,33454,33455,33456,33457,33458) icmp(8)
From 130.138.43.227 - 1 packet to udp(1026)
From 131.127.55.215 - 1 packet to udp(1026)
From 132.68.21.73 - 2 packets to udp(1026,1028)
From 136.17.221.95 - 1 packet to udp(1026)
From 139.176.135.229 - 1 packet to udp(1026)
From 143.26.79.54 - 1 packet to udp(1026)
From 144.60.93.197 - 1 packet to udp(1026)
From 144.160.221.1 - 1 packet to udp(1026)
From 145.159.216.95 - 2 packets to udp(1026,1028)
From 146.234.43.42 - 1 packet to udp(1026)
From 149.48.104.119 - 3 packets to udp(1025,1027,1028)
From 153.153.6.234 - 1 packet to udp(1026)
From 158.141.108.243 - 2 packets to udp(1025,1027)
From 160.104.207.176 - 1 packet to udp(1026)
From 160.108.229.160 - 1 packet to udp(1026)
From 161.114.194.186 - 2 packets to udp(1025,1027)
From 163.11.71.26 - 3 packets to tcp(37724,57959,58052)
From 165.98.139.123 - 2 packets to tcp(1433)
From 167.20.47.220 - 2 packets to udp(1025,1027)
From 168.45.25.175 - 2 packets to udp(1025,1027)
From 168.176.120.122 - 1 packet to tcp(22)
From 172.21.34.14 - 4 packets to tcp(38514,45352,51600,56473)
From 172.21.34.17 - 7 packets to
tcp(38840,43391,43836,46854,48893,50267,60147)
From 172.21.40.35 - 6 packets to
tcp(40764,46855,51043,57056,58129,59807)
From 172.21.56.34 - 9 packets to
tcp(37509,38764,39477,42481,47054,54704,54923,57416,58952)
From 172.21.70.2 - 8 packets to
tcp(33117,37943,46414,46772,52058,52737,53934,56807)
From 172.21.78.29 - 7 packets to
tcp(34156,43196,49060,49540,51030,51291,57958)
From 172.21.84.28 - 6 packets to
tcp(33184,43410,47857,52723,54853,57413)
From 172.21.87.12 - 6 packets to
tcp(33998,34350,43334,48194,52332,54290)
From 172.21.91.1 - 1 packet to tcp(45809)
From 172.21.91.72 - 1 packet to tcp(60443)
From 172.21.92.57 - 4 packets to tcp(36442,41265,45023,55767)
From 172.21.92.60 - 1 packet to tcp(46816)
From 172.21.92.62 - 3 packets to tcp(37196,45021,59138)
From 172.21.92.77 - 3 packets to tcp(38028,38241,56479)
From 172.21.95.16 - 66 packets to
tcp(41063,41064,41065,41066,41113,41115,41116,41117,41118,41119,41120,41121,41122,41129,42995,42996,42998,42999,43000,43002,43003,43004,43005,43006,43007,46366,48540,48541,48544,48545,48546,48548,48550,48551,49104,49106,49107,49108,49109,49111,49112,49113,49114,51505,53003,53004,53005,56341,56342,56345,56346,56347,56348,56349,56350,56642,56734,56736,56739,56740,56741,56742,56743,56744,58658,60798)
From 172.21.95.17 - 1 packet to tcp(43810)
From 172.21.97.2 - 4 packets to tcp(46252,55295,55762,57463)
From 172.21.97.6 - 6 packets to
tcp(32812,32836,52231,52631,56045,59718)
From 172.21.97.62 - 5 packets to tcp(34013,34064,37435,40285,44986)
From 172.21.99.17 - 5 packets to tcp(36120,39847,48248,56890,59161)
From 172.21.99.20 - 7 packets to
tcp(33173,35865,37225,42453,43602,47118,60538)
From 172.21.99.21 - 4 packets to tcp(46604,48270,49201,57006)
From 172.21.102.2 - 1 packet to tcp(35257)
From 172.21.109.9 - 4 packets to tcp(46436,46799,47598,54832)
From 172.21.115.14 - 7 packets to
tcp(34263,38465,39866,40175,50766,56969,60773)
From 172.21.115.17 - 2 packets to tcp(45464,58294)
From 172.21.121.17 - 140 packets to
tcp(34335,34337,34338,34339,34340,34341,34342,34343,34344,34345,37421,37424,37425,37428,37429,37432,37826,37827,37830,37831,37832,37833,37858,40049,40050,40052,40053,40054,40055,40745,40746,40747,40748,40749,40750,40751,40873,40874,40877,40878,40879,40880,40881,42267,42268,42269,42270,42271,42272,42400,42403,42404,42406,42408,42409,43384,43388,43390,43391,43393,43394,44049,44050,44051,44052,44054,44055,44056,44057,44198,44200,44203,44204,44205,44206,44207,44354,44356,44357,44358,44360,44362,44363,44367,45611,47497,47498,47499,47500,47501,47502,47503,48619,48622,48623,48625,48626,48629,49256,49257,49258,49259,49260,49261,49262,51384,51385,51388,51389,51391,51392,52872,52875,52876,52877,52879,52880,54968,55276,57999,58144,58145,58147,58148,58152,58153,58154,58389,58390,58391,58392,58393,58394,58395,60125,60128,60129,60130,60131,60134)
From 172.21.121.18 - 5 packets to tcp(40121,45901,47309,52510,53544)
From 172.21.121.19 - 4 packets to tcp(40045,52507,53466,56587)
From 172.21.121.25 - 5 packets to tcp(40668,45891,46258,49075,59680)
From 172.21.125.17 - 7 packets to
tcp(37777,37786,38567,39005,58772,59918,60568)
From 172.21.144.23 - 5 packets to tcp(37697,45868,49713,55975,58849)
From 172.21.149.64 - 1 packet to tcp(51348)
From 172.21.151.34 - 9 packets to
tcp(33933,35295,38515,40235,44190,45809,47795,48524,60949)
From 172.21.153.22 - 3 packets to tcp(39758,55445,56820)
From 172.21.153.70 - 1 packet to tcp(49824)
From 172.21.153.78 - 7 packets to
tcp(33556,34234,36366,40273,46750,48217,55359)
From 172.21.153.79 - 1 packet to tcp(50296)
From 172.21.157.75 - 3 packets to tcp(48702,49120,50150)
From 172.21.166.17 - 3 packets to tcp(36081,51829,59256)
From 172.21.166.19 - 112 packets to
tcp(35569,35571,35574,35575,35576,35577,35578,35579,40103,40104,40105,40106,40107,40108,40454,40456,40457,40459,40460,40461,40462,40463,41275,41277,41280,41281,41282,41283,41286,41287,43947,43949,43950,43951,43952,43953,43954,43955,43958,43962,43963,48096,48098,48099,48100,48101,48102,48103,48104,48105,48106,52932,52934,52935,52936,52939,52940,52941,52942,52945,52946,52988,52989,52991,52992,52993,52996,52997,52998,52999,53000,53001,54593,54595,54598,54599,54600,54601,54602,54603,56539,56541,56542,56543,56544,56546,56547,56548,56549,56550,57948,57949,57950,57953,57954,59403,59405,59406,59409,59410,59411,59412,59413,59414,59825,59826,59829,59830,59831,59832,59834,59835)
From 172.21.166.20 - 76 packets to
tcp(32787,33254,33256,33257,33258,33260,33261,33262,33263,33264,33265,34691,34693,34696,34697,34698,34699,34700,34701,36410,39303,40159,40421,40423,40424,40425,40426,40427,40428,40429,40430,41055,41057,41058,41059,41061,51841,51843,51844,51847,51848,51849,51850,51851,53557,53560,53563,53564,53565,53566,53567,53568,53571,53749,53750,53751,53752,53900,55618,55620,55621,55622,55623,55624,55625,55626,55627,55628,57116,57117,57120,57121,57122,57123,57125,57126)
From 172.21.167.16 - 8 packets to
tcp(33393,41449,45685,48256,48662,53006,55820,59718)
From 172.21.167.17 - 9 packets to
tcp(37532,38635,40030,45320,50136,55224,57312,58882,59378)
From 172.21.172.18 - 5 packets to tcp(41597,41851,43615,54762,57359)
From 172.21.172.19 - 4 packets to tcp(38764,39690,56349,59887)
From 172.21.186.14 - 3 packets to tcp(39390,56885,58321)
From 172.21.186.16 - 4 packets to tcp(54001,54045,55584,55827)
From 172.21.188.17 - 8 packets to
tcp(33014,36233,38881,48143,49249,54098,54192,56780)
From 172.21.188.18 - 1 packet to tcp(47876)
From 172.21.192.14 - 6 packets to
tcp(36787,44537,46428,50433,51423,54911)
From 172.21.192.16 - 2 packets to tcp(33845,58596)
From 172.21.194.10 - 5 packets to tcp(32931,38246,39608,47511,47590)
From 172.21.199.8 - 4 packets to tcp(36511,41278,52969,55162)
From 172.21.199.28 - 6 packets to
tcp(34757,37197,43519,44084,44606,59452)
From 172.21.224.29 - 4 packets to tcp(35799,40874,52312,58867)
From 172.21.224.38 - 2 packets to tcp(36229,60085)
From 172.21.224.42 - 1 packet to tcp(50574)
From 172.21.224.43 - 1 packet to tcp(37046)
From 172.21.224.67 - 4 packets to tcp(40119,50566,58641,60940)
From 172.21.225.48 - 13 packets to
tcp(34481,35765,35876,37945,44442,47055,48631,49003,51516,55780,58386,59200,59617)
From 172.21.225.56 - 4 packets to tcp(39506,40330,48010,51793)
From 172.21.225.72 - 1 packet to tcp(37468)
From 172.21.226.10 - 1 packet to tcp(59057)
From 172.21.226.45 - 3 packets to tcp(37806,44243,59675)
From 172.21.226.64 - 6 packets to
tcp(36068,38011,38827,54132,54360,58560)
From 172.21.226.78 - 3 packets to tcp(33982,36422,38955)
From 172.21.227.14 - 3 packets to tcp(45920,53967,60398)
From 172.21.227.52 - 3 packets to tcp(48363,51533,53745)
From 172.21.227.62 - 3 packets to tcp(39928,46219,57968)
From 172.21.227.68 - 2 packets to tcp(37205,57668)
From 172.21.227.80 - 3 packets to tcp(34603,47956,54670)
From 172.21.228.43 - 1 packet to tcp(32918)
From 172.21.229.80 - 4 packets to tcp(37980,39886,43374,52914)
From 172.21.232.12 - 4 packets to tcp(38224,40800,50709,56191)
From 172.21.233.2 - 3 packets to tcp(52868,56881,56938)
From 172.21.233.6 - 1 packet to tcp(51257)
From 172.21.233.10 - 7 packets to
tcp(37566,41642,49209,49608,53194,54001,57324)
From 172.21.233.24 - 2 packets to tcp(54394,59462)
From 172.21.233.51 - 1 packet to tcp(53029)
From 172.21.233.52 - 1 packet to tcp(38590)
From 172.21.233.55 - 4 packets to tcp(36568,40131,40593,60231)
From 172.21.233.57 - 4 packets to tcp(47426,49168,51792,54180)
From 172.21.233.58 - 3 packets to tcp(55137,59453,59749)
From 172.21.233.60 - 2 packets to tcp(48748,56266)
From 172.21.233.77 - 3 packets to tcp(40382,44646,46009)
From 172.21.233.78 - 2 packets to tcp(38153,56852)
From 172.21.233.79 - 3 packets to tcp(53933,55286,60595)
From 172.21.239.15 - 12 packets to
tcp(33878,38570,39506,42451,42679,44001,44216,44329,47300,52011,56147,56775)
From 172.21.240.15 - 4 packets to tcp(39007,42555,42556,56672)
From 172.21.240.27 - 1 packet to tcp(52735)
From 172.21.240.29 - 2 packets to tcp(45104,54106)
From 172.21.240.44 - 3 packets to tcp(43376,50127,50262)
From 172.21.240.45 - 2 packets to tcp(35309,39266)
From 172.21.240.63 - 3 packets to tcp(37008,54496,57635)
From 172.21.240.67 - 1 packet to tcp(59204)
From 172.21.240.80 - 4 packets to tcp(33219,47910,50682,57613)
From 172.21.241.37 - 3 packets to tcp(34326,45700,54363)
From 172.21.248.15 - 7 packets to
tcp(39425,40150,44256,45515,50008,53550,60409)
From 172.21.248.56 - 1 packet to tcp(37922)
From 172.21.248.66 - 3 packets to tcp(40552,41051,56512)
From 172.21.248.73 - 2 packets to tcp(45787,48238)
From 172.21.251.15 - 3 packets to tcp(45473,52453,57271)
From 172.21.252.2 - 5 packets to tcp(42595,42913,48310,56301,58612)
From 172.21.253.2 - 4 packets to tcp(35288,46796,50827,51377)
From 172.21.253.4 - 1 packet to tcp(51688)
From 172.21.253.79 - 1 packet to tcp(55543)
From 172.49.243.30 - 2 packets to udp(1026,1028)
From 190.30.70.77 - 2 packets to udp(1025,1027)
From 191.46.36.86 - 2 packets to udp(1025,1027)
From 191.221.37.48 - 1 packet to udp(1026)
From 192.2.202.132 - 1 packet to udp(1026)
From 192.128.27.40 - 1 packet to udp(1026)
From 193.95.190.178 - 31 packets to udp(1434)
From 194.236.9.156 - 1 packet to udp(1026)
From 195.54.232.68 - 1 packet to udp(1026)
From 195.190.179.110 - 2 packets to udp(1025,1026)
From 196.158.135.197 - 1 packet to udp(1026)
From 196.168.215.249 - 1 packet to udp(1026)
From 196.216.116.129 - 1 packet to udp(1026)
From 200.68.141.221 - 2 packets to udp(1026,1028)
From 201.93.119.176 - 2 packets to udp(1026,1028)
From 202.163.200.204 - 2 packets to tcp(5900)
From 202.203.217.74 - 1 packet to udp(1026)
From 203.42.166.85 - 1 packet to udp(1026)
From 203.61.3.37 - 1 packet to icmp(1026)
From 203.200.142.113 - 1 packet to udp(1026)
From 203.232.7.225 - 1 packet to udp(1026)
From 204.180.123.124 - 1 packet to udp(1026)
From 204.191.92.130 - 2 packets to udp(1026,1028)
From 207.70.169.40 - 1 packet to udp(1026)
From 207.92.18.132 - 1 packet to udp(1026)
From 208.96.196.199 - 2 packets to tcp(1433)
From 208.106.240.221 - 1 packet to udp(1026)
From 210.51.162.39 - 4 packets to tcp(8080)
From 211.100.33.61 - 2 packets to tcp(8000)
From 212.24.58.2 - 3 packets to tcp(675)
From 212.111.132.121 - 1 packet to icmp(1026)
From 213.44.134.157 - 2 packets to udp(1025,1027)
From 213.159.153.195 - 1 packet to udp(1026)
From 215.244.128.2 - 1 packet to udp(1026)
From 218.109.76.195 - 4 packets to icmp(8)
From 218.201.150.21 - 4 packets to tcp(7212)
From 218.217.17.165 - 2 packets to tcp(5554,9898)
From 219.148.147.207 - 3 packets to tcp(7212)
From 220.133.98.112 - 10 packets to tcp(8080)
From 220.133.98.113 - 1 packet to tcp(8080)
From 220.164.140.249 - 20 packets to
udp(2,1028,1029,1030,1031,1032,1033,4081)
From 220.189.196.140 - 1 packet to udp(1434)
From 221.228.108.22 - 1 packet to tcp(5900)
Thomas Charron wrote:
> I was just doing some debugging on some JSONRPC scripts, so in the
> true spirit of printf debugging, I had a terminal window open to tail
> -f /var/log/apache/error.log and out of the blue:
>
> [Thu Feb 08 11:59:28 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/xmlrpc
> [Thu Feb 08 11:59:28 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/xmlsrv
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/blog
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/drupal
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/community
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/blogs
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/blogs
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/blog
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/blogtest
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/b2
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/b2evo
> [Thu Feb 08 11:59:29 2007] [error] [client 65.98.4.130] File does not
> exist: /var/www/wordpress
>
> Anyone else kinda enjoy seeing someone autokiddiescript attack their
> servers?
>
> Guess it's fun till you notice they get in sometimes. LOL
>
More information about the gnhlug-discuss
mailing list