Dashboard Articles Playground Discussions More
Follow

Can somebody read my firewall logs and help?

Max Lockhart [MaxLockhart]
11 years ago

0

Believe I’ve been being hacked for 6 days now. Router’s been off for 5

12replies
5voices
219views
Max Lockhart [MaxLockhart]
11 years ago

0

edit: 4 days it’s been off

Max Lockhart [MaxLockhart]
11 years ago

0

bump xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

jayssj11
11 years ago

0

plz explain more !!!!

 

JAYSSJ11- “I’d rather be hated for who I am, than loved for who I am not.”

*********** [ADIGA]
11 years ago

0

how exactly you “think” you have been hacked?
what is going on to think that thing?

 

I Hate Signatures.

jayssj11
11 years ago

0

ADIGA here are the logs of maxlockhart

[Firewall: WAN_Port_Filter]IN=wan1 OUT= MAC=c4:39:3a:21:6d:53:00:01:5c:62:e0:46:08:00 SRC=218.3.251.252 DST=71.193.114.79 2013/11/20 23:21:52 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=68.97.199.90 2013/11/20 23:15:27 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=68.97.199.90 2013/11/20 23:15:25 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=169.231.10.253 2013/11/20 23:15:24 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=68.97.199.90 2013/11/20 23:15:23 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=169.231.10.253 2013/11/20 23:15:23 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=169.231.10.253 2013/11/20 23:15:21 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=68.97.199.90 2013/11/20 23:15:20 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=68.97.199.90 2013/11/20 23:15:19 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=169.231.10.253 2013/11/20 23:15:19 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=68.97.199.90 2013/11/20 23:15:18 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 23:02:07 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 23:02:05 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 23:02:04 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 23:02:03 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 22:59:56 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 22:59:54 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 22:59:53 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=163.118.239.152 2013/11/20 22:59:52 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=76.179.245.229 2013/11/20 22:59:46 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=76.179.245.229 2013/11/20 22:59:45 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=76.179.245.229 2013/11/20 22:59:43 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=76.179.245.229 2013/11/20 22:59:42 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=76.179.245.229 2013/11/20 22:59:42 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=76.179.245.229 2013/11/20 22:59:41 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=76.179.245.229 2013/11/20 22:59:38 Warning
[Firewall: RM-PortFilter]IN=wan1 OUT= MAC=c4:39:3a:21:6d:53:00:01:5c:62:e0:46:08:00 SRC=95.211.162.104 DST=71.193.114.79 2013/11/20 22:53:52 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=67.194.151.140 2013/11/20 22:49:34 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=67.194.151.140 2013/11/20 22:49:34 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=67.194.151.140 2013/11/20 22:49:33 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=67.194.151.140 2013/11/20 22:49:32 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=129.79.177.7 2013/11/20 22:47:25 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=108.28.169.204 2013/11/20 22:47:24 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=75.69.203.90 2013/11/20 22:47:24 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=129.79.177.7 2013/11/20 22:47:23 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=108.28.169.204 2013/11/20 22:47:21 Warning
[Firewall: Security_Level] IN=eth0.1 OUT=wan1 SRC=10.0.0.5 DST=75.69.203.90 2013/11/20 22:47:20 Warning

 

JAYSSJ11- “I’d rather be hated for who I am, than loved for who I am not.”

Max Lockhart [MaxLockhart]
11 years ago

0

[Firewall: WAN_Port_Filter]IN=wan1 OUT= DST-MAC=c4:39:3a:21:6d:53 SRC-MAC=00:01:5c:62:e0:46 SRC=108.242.248.204 DST=71.193.114.166 2013/11/29 00:54:23 Warning
[Firewall: WAN_Port_Filter]IN=wan1 OUT= DST-MAC=c4:39:3a:21:6d:53 SRC-MAC=00:01:5c:62:e0:46 SRC=108.242.248.204 DST=71.193.114.166 2013/11/29 00:54:19 Warning
[Firewall: WAN_Port_Filter]IN=wan1 OUT= DST-MAC=c4:39:3a:21:6d:53 SRC-MAC=00:01:5c:62:e0:46 SRC=108.242.248.204 DST=71.193.114.166 2013/11/29 00:54:17 Warning
[Firewall: WAN_Port_Filter]IN=wan1 OUT= DST-MAC=c4:39:3a:21:6d:53 SRC-MAC=00:01:5c:62:e0:46 SRC=180.153.113.141 DST=71.193.114.166 2013/11/29 00:52:35 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:44:15 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:44:14 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:44:14 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:44:11 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=54.236.197.225 LEN=60 2013/11/29 00:44:10 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.111.72 LEN=60 2013/11/29 00:44:09 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.175.201 LEN=60 2013/11/29 00:44:09 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.175.201 LEN=60 2013/11/29 00:44:08 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:44:06 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:44:05 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:44:04 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.165.52 LEN=60 2013/11/29 00:44:03 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:44:01 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.31.23 LEN=60 2013/11/29 00:44:00 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:44:00 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=54.236.187.152 LEN=60 2013/11/29 00:43:59 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.201.63 LEN=60 2013/11/29 00:43:58 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.59.149.230 LEN=60 2013/11/29 00:43:56 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.38.164.155 LEN=60 2013/11/29 00:43:55 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.7.48.72 LEN=60 2013/11/29 00:43:55 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.59.148.82 LEN=60 2013/11/29 00:43:54 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:53 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:51 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:50 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:50 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.125.225.124 LEN=60 2013/11/29 00:43:49 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:48 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:46 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:45 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:44 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:43 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:43 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:41 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:40 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:39 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=54.236.197.225 LEN=60 2013/11/29 00:43:38 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.111.72 LEN=60 2013/11/29 00:43:38 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.175.201 LEN=60 2013/11/29 00:43:35 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.175.201 LEN=60 2013/11/29 00:43:35 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.6.106.10 LEN=60 2013/11/29 00:43:34 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.59.148.247 LEN=60 2013/11/29 00:43:33 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:32 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:30 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:30 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:29 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.50.56.73 LEN=60 2013/11/29 00:43:28 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:27 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:25 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:24 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:43:24 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.165.52 LEN=60 2013/11/29 00:43:23 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:43:22 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.31.23 LEN=60 2013/11/29 00:43:20 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:43:19 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=54.236.187.152 LEN=60 2013/11/29 00:43:18 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.6.91.102 LEN=60 2013/11/29 00:43:18 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.165.52 LEN=60 2013/11/29 00:43:15 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=173.241.244.7 LEN=60 2013/11/29 00:43:15 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:43:14 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=173.241.244.7 LEN=60 2013/11/29 00:43:13 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=173.241.244.7 LEN=60 2013/11/29 00:43:13 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.3.97.80 LEN=60 2013/11/29 00:43:10 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=8.15.229.35 LEN=60 2013/11/29 00:43:09 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.170.192.5 LEN=60 2013/11/29 00:43:08 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=173.193.208.135 LEN=60 2013/11/29 00:43:08 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.195.167 LEN=60 2013/11/29 00:43:07 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.195.167 LEN=60 2013/11/29 00:43:04 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.59.148.247 LEN=60 2013/11/29 00:43:04 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=8.15.229.35 LEN=60 2013/11/29 00:43:03 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.3.97.80 LEN=60 2013/11/29 00:43:03 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.210.157 LEN=60 2013/11/29 00:43:02 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.116.194.23 LEN=60 2013/11/29 00:42:59 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.170.192.199 LEN=60 2013/11/29 00:42:59 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=69.172.216.58 LEN=60 2013/11/29 00:42:58 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.201.63 LEN=60 2013/11/29 00:42:57 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.21.70.61 LEN=60 2013/11/29 00:42:57 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=173.193.208.135 LEN=60 2013/11/29 00:42:54 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.195.167 LEN=60 2013/11/29 00:42:53 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.195.167 LEN=60 2013/11/29 00:42:52 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.195.167 LEN=60 2013/11/29 00:42:52 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.201.63 LEN=60 2013/11/29 00:42:51 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=68.67.152.73 LEN=60 2013/11/29 00:42:49 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=68.67.152.73 LEN=60 2013/11/29 00:42:48 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=216.38.163.108 LEN=60 2013/11/29 00:42:47 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:47 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:44 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:43 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:43 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=54.236.197.225 LEN=60 2013/11/29 00:42:42 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.111.72 LEN=60 2013/11/29 00:42:41 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.175.201 LEN=60 2013/11/29 00:42:39 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.175.201 LEN=60 2013/11/29 00:42:38 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.6.106.10 LEN=60 2013/11/29 00:42:37 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:37 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:36 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:34 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=108.168.240.194 LEN=60 2013/11/29 00:42:33 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.125.225.124 LEN=60 2013/11/29 00:42:32 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.165.52 LEN=60 2013/11/29 00:42:31 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:42:31 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.31.23 LEN=60 2013/11/29 00:42:28 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:42:27 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=54.236.187.152 LEN=60 2013/11/29 00:42:27 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.6.91.102 LEN=60 2013/11/29 00:42:26 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.38.165.155 LEN=60 2013/11/29 00:42:25 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=50.112.165.52 LEN=60 2013/11/29 00:42:22 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=107.23.224.61 LEN=60 2013/11/29 00:42:22 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=199.38.164.155 LEN=60 2013/11/29 00:42:21 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=74.209.219.38 LEN=60 2013/11/29 00:42:20 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=81.22.35.155 LEN=60 2013/11/29 00:42:20 Warning
[IDS:SYN_FLOOD] IN=eth0.1 OUT=wan1 SRC=75.8.3.2 DST=23.79.201.63 LEN=60 2013/11/29 00:42:17 Warning

Cyan Wind [freewind1012]
11 years ago

1

I don’t want to be a jerk but you guys can put the logs in spoiler tag. :-s

 
![Image](https://www.hackthis.co.uk/user/userbar.png?user=freewind1012%20//%20Navigator)
Max Lockhart [MaxLockhart]
11 years ago

0

@freewind1012 This has nothing to do with this site…..

daMage
11 years ago

0

can you find out what process does the flooding?

 
  • daMage
*********** [ADIGA]
11 years ago

0

i would suggest you recheck your firewall config.
in 99% of cases like those its a miss configured firewall.

faced this around 1 year ago and wasted around 2 full days doing nothing … until i found a conflict in some rule where im allowing and blocking at the same time.

also the best thing to do is to do a cap using wire shark from the pc that is making those requests.

just cap for 5 seconds and make sure that the ip addresses in the firewall log exist in the cap and post the cap file content back.

with no port assigned in the logs it can be anything that causes this.

 

I Hate Signatures.

Max Lockhart [MaxLockhart]
11 years ago

0

Alright @ADIGA thank you that helped very much. I decided that I’m just going to request a new router and all because I’ve given personal information out on a Hacker Community so I don’t need actual cases where I’m getting actually hacked. Plus I have ICMP Ports being blocked now from a completely new location therefore it’s just time to reconfigure my network and take the time to set up a completely new security system. Also, for the sake of my sanity I am going to bust into wireshark and monitor this traffic. See if anything is an actual threat. I don’t currently have my laptop but I remember that my moms has wireshark from when I was using it while my laptop was in CA. Thank you everyone for input.

Also here’s the new logs showing up if anyone wants to check into what this is for idk….. no reason :P

[Firewall: ICMP_Block] IN=wan1 OUT= MAC=c4:39:3a:21:6d:53:00:01:5c:62:e0:46:08:00 SRC=38.88.38.45

Max Lockhart [MaxLockhart]
11 years ago

0

yeah ummmmm…. too much going on…. way more than usual too. In all honesty I don’t want to fix this either. Just hard drive wipe, new network, and new security. Whether it’s a virus, hack, whatever….. I’m out!

Discussion thread has been locked. You can no longer add new posts.
1 of 13

This site only uses cookies that are essential for the functionality of this website. Cookies are not used for tracking or marketing purposes.

By using our site, you acknowledge that you have read and understand our Privacy Policy, and Terms of Service.

Dismiss