【問題】ZoneAlarm的log,這樣算多嗎?? - PCZONE 討論區

返回   PCZONE 討論區 > ▲ ADSL_CABLE_FTTH 寬 頻 上 網 討 論 > -- 防 駭 / 防 毒 版
更新本頁 【問題】ZoneAlarm的log,這樣算多嗎??


PCZONE 討論區
聯絡我們

通知

-- 防 駭 / 防 毒 版 不論你是使用固定 IP 或是 DHCP 一定都有機會被無聊的駭客入侵 , 來這裡跟大家作防駭以及防毒的心得與資訊分享。

yuheng
訪客
 【問題】ZoneAlarm的log,這樣算多嗎??
HiNet計時制/Win2000/ZoneAlarm 2.6
ZoneAlarm攔截到的,
要如何偵測,有沒有被駭??


ZoneAlarm的log!!

FWIN,2002/05/01,20:03:42 +8:00 GMT,210.200.149.17:2449,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,20:07:42 +8:00 GMT,210.200.149.17:1029,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,20:09:09 +8:00 GMT,210.200.149.17:3581,61.216.6.114:12345,TCP (flags:S)
FWROUTE,2002/05/01,20:09:27 +8:00 GMT,115.0.61.216:0,6.254.0.0:0,
FWIN,2002/05/01,20:11:04 +8:00 GMT,210.200.149.17:2329,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,20:13:38 +8:00 GMT,61.216.253.249:4666,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,20:14:06 +8:00 GMT,210.200.149.17:3555,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,20:31:30 +8:00 GMT,61.136.186.112:4691,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,20:44:07 +8:00 GMT,61.59.207.56:3167,61.216.6.114:139,TCP (flags:S)
FWIN,2002/05/01,21:02:11 +8:00 GMT,210.200.148.50:2332,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,21:08:24 +8:00 GMT,210.200.148.50:4741,61.216.6.114:12345,TCP (flags:S)
FWROUTE,2002/05/01,21:09:26 +8:00 GMT,115.0.61.216:0,6.254.0.0:0,
FWIN,2002/05/01,21:10:10 +8:00 GMT,210.200.148.50:3414,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,21:13:30 +8:00 GMT,210.200.148.50:4871,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,21:16:10 +8:00 GMT,210.200.148.50:3455,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,21:19:04 +8:00 GMT,61.216.122.42:2367,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,21:22:03 +8:00 GMT,210.200.148.50:2253,61.216.6.114:12345,TCP (flags:S)
FWIN,2002/05/01,21:32:06 +8:00 GMT,61.82.104.40:4518,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,21:33:51 +8:00 GMT,61.216.35.208:3033,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,21:47:35 +8:00 GMT,61.216.251.247:3214,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,22:01:38 +8:00 GMT,61.190.166.247:4961,61.216.6.114:80,TCP (flags:S)
FWROUTE,2002/05/01,22:09:26 +8:00 GMT,115.0.61.216:0,6.254.0.0:0,
FWIN,2002/05/01,22:39:06 +8:00 GMT,61.216.251.247:1628,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,22:39:18 +8:00 GMT,61.135.96.3:4883,61.216.6.114:80,TCP (flags:S)
FWIN,2002/05/01,22:55:00 +8:00 GMT,61.59.207.56:0,61.216.6.114:0,ICMP (type:8/subtype:0)
FWIN,2002/05/01,22:57:25 +8:00 GMT,61.149.22.36:4096,61.216.6.114:80,TCP (flags:S)
FWROUTE,2002/05/01,23:09:27 +8:00 GMT,115.0.61.216:0,6.254.0.0:0,
FWIN,2002/05/01,23:11:37 +8:00 GMT,61.59.207.56:2728,61.216.6.114:139,TCP (flags:S)
FWIN,2002/05/01,23:16:25 +8:00 GMT,210.200.147.209:2443,61.216.6.114:12345,TCP (flags:S)

回覆
-版兔阿浪-
還好 我有一天在8小時內 被入侵了100次多...
我懷疑是有中過木馬 或是被自己的站友搞過 FORMAT重灌一次後
問題立刻減少許多 您可以參考看看!

回覆







 XML   RSS 2.0   RSS 
本站使用 vBulletin 合法版權程式
站務信箱 : [email protected]

本論壇所有文章僅代表留言者個人意見,並不代表本站之立場,討論區以「即時留言」方式運作,故無法完全監察所有即時留言,若您發現文章可能有異議,請 email :[email protected] 處理。