Top-Themen

AppleEntwicklungHardwareInternetLinuxMicrosoftMultimediaNetzwerkeOff TopicSicherheitSonstige SystemeVirtualisierungWeiterbildungZusammenarbeit

Aktuelle Themen

Administrator.de FeedbackApache ServerAppleAssemblerAudioAusbildungAuslandBackupBasicBatch & ShellBenchmarksBibliotheken & ToolkitsBlogsCloud-DiensteClusterCMSCPU, RAM, MainboardsCSSC und C++DatenbankenDatenschutzDebianDigitiales FernsehenDNSDrucker und ScannerDSL, VDSLE-BooksE-BusinessE-MailEntwicklungErkennung und -AbwehrExchange ServerFestplatten, SSD, RaidFirewallFlatratesGoogle AndroidGrafikGrafikkarten & MonitoreGroupwareHardwareHosting & HousingHTMLHumor (lol)Hyper-VIconsIDE & EditorenInformationsdiensteInstallationInstant MessagingInternetInternet DomäneniOSISDN & AnaloganschlüsseiTunesJavaJavaScriptKiXtartKVMLAN, WAN, WirelessLinuxLinux DesktopLinux NetzwerkLinux ToolsLinux UserverwaltungLizenzierungMac OS XMicrosoftMicrosoft OfficeMikroTik RouterOSMonitoringMultimediaMultimedia & ZubehörNetzwerkeNetzwerkgrundlagenNetzwerkmanagementNetzwerkprotokolleNotebook & ZubehörNovell NetwareOff TopicOpenOffice, LibreOfficeOutlook & MailPapierkorbPascal und DelphiPeripheriegerätePerlPHPPythonRechtliche FragenRedHat, CentOS, FedoraRouter & RoutingSambaSAN, NAS, DASSchriftartenSchulung & TrainingSEOServerServer-HardwareSicherheitSicherheits-ToolsSicherheitsgrundlagenSolarisSonstige SystemeSoziale NetzwerkeSpeicherkartenStudentenjobs & PraktikumSuche ProjektpartnerSuseSwitche und HubsTipps & TricksTK-Netze & GeräteUbuntuUMTS, EDGE & GPRSUtilitiesVB for ApplicationsVerschlüsselung & ZertifikateVideo & StreamingViren und TrojanerVirtualisierungVisual StudioVmwareVoice over IPWebbrowserWebentwicklungWeiterbildungWindows 7Windows 8Windows 10Windows InstallationWindows MobileWindows NetzwerkWindows ServerWindows SystemdateienWindows ToolsWindows UpdateWindows UserverwaltungWindows VistaWindows XPXenserverXMLZusammenarbeit
GELÖST

DOS angriffe - Grund zur Sorge?

Frage Sicherheit Erkennung und -Abwehr

Mitglied: Fr33z3r

Fr33z3r (Level 1) - Jetzt verbinden

02.02.2010, aktualisiert 09.02.2010, 7275 Aufrufe, 6 Kommentare

Ich erhalte pro Tag über 200 DOS angriffe von sich wiederholenden IP's.
Besteht Grund zur Sorge?

Liebe Community,
ich habe seit mehreren Wochen eine stark erhöhte Anzahl von DOS-Angriffen auf meinen Netgear Router (Firmennetzwerk). Zwar besteht i.d.R. bei solchen Angriffen auf Router wenig Gefahr, allerdings wiederholen sich die IP's der Angreifer regelmäßig.
Zudem besteht eine weitere Auffälligkeit, wenn man einige der IP's öffnet, wie zb:
http://77.67.3.144
http://66.114.52.35
http://211.100.56.206
http://87.118.248.7
... überall das gleiche Interface.

Auszug aus der Netgear - Log:
Tue, 2010-02-02 11:24:49 - ICMP Packet - Source:66.114.50.92 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:49 - ICMP Packet - Source:66.114.51.18 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:66.114.53.49 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:93.188.129.26 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:66.114.48.45 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:93.188.130.85 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:119.31.249.76 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:174.35.52.133 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:93.188.134.12 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:50 - ICMP Packet - Source:122.152.142.14 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:51 - ICMP Packet - Source:119.31.253.71 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:51 - ICMP Packet - Source:66.114.54.9 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:53 - ICMP Packet - Source:66.114.52.35 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:53 - ICMP Packet - Source:66.114.51.106 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:53 - ICMP Packet - Source:66.114.50.48 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:53 - ICMP Packet - Source:77.67.3.167 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:53 - ICMP Packet - Source:66.114.50.92 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:53 - ICMP Packet - Source:66.114.51.18 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:66.114.53.49 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:66.114.48.45 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:93.188.129.26 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:93.188.130.85 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:209.170.120.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:174.35.52.133 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:93.188.134.12 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:54 - ICMP Packet - Source:122.152.142.14 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:55 - ICMP Packet - Source:119.31.253.71 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:55 - ICMP Packet - Source:66.114.54.9 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:57 - ICMP Packet - Source:66.114.52.35 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:57 - ICMP Packet - Source:66.114.51.106 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:57 - ICMP Packet - Source:66.114.50.48 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:57 - ICMP Packet - Source:77.67.3.167 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:57 - ICMP Packet - Source:66.114.50.92 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:57 - ICMP Packet - Source:66.114.51.18 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:66.114.53.49 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:66.114.48.45 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:93.188.129.26 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:93.188.130.85 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:209.170.120.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:174.35.52.133 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:93.188.134.12 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:58 - ICMP Packet - Source:122.152.142.14 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:59 - ICMP Packet - Source:119.31.253.71 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 11:24:59 - ICMP Packet - Source:66.114.54.9 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:20 - ICMP Packet - Source:211.100.56.206 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:20 - ICMP Packet - Source:66.114.50.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:66.114.53.42 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:93.188.129.26 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:66.114.50.80 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:66.114.48.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:93.188.130.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:87.118.248.7 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:209.170.120.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:21 - ICMP Packet - Source:63.216.60.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:22 - ICMP Packet - Source:83.229.233.146 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:22 - ICMP Packet - Source:213.244.185.44 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:24 - ICMP Packet - Source:208.80.250.70 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:24 - ICMP Packet - Source:66.114.50.13 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:24 - ICMP Packet - Source:66.114.49.66 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:24 - ICMP Packet - Source:66.114.49.149 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:24 - ICMP Packet - Source:66.114.52.34 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:24 - ICMP Packet - Source:211.100.56.206 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:24 - ICMP Packet - Source:66.114.50.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:66.114.53.42 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:93.188.129.26 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:66.114.50.80 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:66.114.48.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:93.188.130.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:87.118.248.7 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:209.170.120.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:25 - ICMP Packet - Source:63.216.60.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:26 - ICMP Packet - Source:83.229.233.146 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:26 - ICMP Packet - Source:213.244.185.44 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:28 - ICMP Packet - Source:208.80.250.70 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:28 - ICMP Packet - Source:66.114.50.13 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:28 - ICMP Packet - Source:66.114.49.66 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:28 - ICMP Packet - Source:66.114.49.149 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:28 - ICMP Packet - Source:66.114.52.34 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:28 - ICMP Packet - Source:211.100.56.206 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:28 - ICMP Packet - Source:66.114.50.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:66.114.53.42 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:93.188.129.26 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:66.114.50.80 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:66.114.48.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:122.152.142.14 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:87.118.248.7 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:209.170.120.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:29 - ICMP Packet - Source:63.216.60.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:30 - ICMP Packet - Source:83.229.233.146 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:30 - ICMP Packet - Source:213.244.185.44 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:32 - ICMP Packet - Source:208.80.250.70 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:32 - ICMP Packet - Source:66.114.50.13 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:32 - ICMP Packet - Source:66.114.49.66 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:32 - ICMP Packet - Source:66.114.49.149 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:32 - ICMP Packet - Source:66.114.52.34 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:32 - ICMP Packet - Source:211.100.56.206 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:32 - ICMP Packet - Source:66.114.50.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:66.114.53.42 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:93.188.129.26 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:66.114.50.80 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:66.114.48.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:122.152.142.14 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:87.118.248.7 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:209.170.120.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:33 - ICMP Packet - Source:63.216.60.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:34 - ICMP Packet - Source:83.229.233.146 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 13:32:34 - ICMP Packet - Source:213.244.185.44 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:50 - ICMP Packet - Source:174.35.52.141 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:50 - ICMP Packet - Source:174.35.17.124 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:50 - ICMP Packet - Source:66.114.53.29 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:50 - ICMP Packet - Source:93.188.129.25 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:51 - ICMP Packet - Source:93.188.130.41 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:51 - ICMP Packet - Source:209.170.120.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:51 - ICMP Packet - Source:209.170.120.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:51 - ICMP Packet - Source:93.188.134.35 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:51 - ICMP Packet - Source:83.229.216.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:51 - ICMP Packet - Source:119.31.253.74 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:52 - ICMP Packet - Source:119.31.255.71 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:66.114.52.32 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:66.114.50.60 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:62.64.30.2 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:208.80.250.70 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:66.114.51.73 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:66.114.50.86 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:174.35.52.141 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:66.114.53.29 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:54 - ICMP Packet - Source:93.188.129.25 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:55 - ICMP Packet - Source:93.188.130.41 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:55 - ICMP Packet - Source:209.170.120.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:55 - ICMP Packet - Source:119.31.249.75 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:55 - ICMP Packet - Source:93.188.134.35 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:55 - ICMP Packet - Source:87.118.248.3 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:55 - ICMP Packet - Source:83.229.216.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:56 - ICMP Packet - Source:119.31.255.71 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:66.114.52.32 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:62.64.30.2 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:66.114.50.60 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:208.80.250.70 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:66.114.51.73 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:66.114.50.86 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:174.35.52.141 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:66.114.53.29 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:58 - ICMP Packet - Source:93.188.129.25 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:59 - ICMP Packet - Source:93.188.130.41 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:59 - ICMP Packet - Source:209.170.120.52 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:59 - ICMP Packet - Source:209.170.120.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:59 - ICMP Packet - Source:63.216.60.72 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:59 - ICMP Packet - Source:87.118.248.3 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:06:59 - ICMP Packet - Source:83.229.216.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:00 - ICMP Packet - Source:119.31.255.71 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:66.114.52.32 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:62.64.30.2 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:66.114.50.60 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:208.80.250.70 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:66.114.51.73 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:66.114.50.86 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:174.35.52.141 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:66.114.53.29 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:02 - ICMP Packet - Source:93.188.129.25 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:03 - ICMP Packet - Source:93.188.130.41 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:03 - ICMP Packet - Source:209.170.120.50 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:03 - ICMP Packet - Source:119.31.249.75 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:03 - ICMP Packet - Source:63.216.60.72 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:03 - ICMP Packet - Source:87.118.248.3 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:03 - ICMP Packet - Source:83.229.216.82 Destination:xx.xx.xx.xx - [DOS]
Tue, 2010-02-02 15:07:04 - ICMP Packet - Source:119.31.255.71 Destination:xx.xx.xx.xx - [DOS]

Besteht Grund zur Sorge?

Gruß fr33z3r
Mitglied: iVirusYx
02.02.2010 um 17:35 Uhr
Provider kontaktieren, Zwichenfall melden
Bitte warten ..
Mitglied: aqui
02.02.2010 um 17:47 Uhr
Bei popeligen 2 bis 6 Paketen pro Sekunde (laut deiner o.a. Liste!) und dann auch noch ICMP kann man ja wohl kaum von Denial of Service sprechen. Oder ist "DOS" die eigenwillige Intepretation von Billigheimer NetGear als "DoS Attacke".
ICMP sieht eher nach einen Ping Sweep oder Port Scan aus. Sowas ist mittlerweile völlig normal auf einer öffentlichen IP Adresse.
Wenn du ICMP als vorausschauender Admin abgeschaltet hast kommt gar keine Antwort von deinem Router und dann hört das in der regel schnell auf. Wenn dein Router natürlich auf den ICMP antwortet "Ja, hallo hier ist was hinter dieser IP.." macht es das ja dann erst wirklich interessant zum Weitermachen...
Die Adressen sind meist US Adressen:

Using server whois.arin.net.
Query string: "66.114.50.92"
OrgName: CDNetworks Inc.
OrgID: CDNET
Address: 2218 North 1st Street
City: San Jose

inetnum: 77.67.3.128 - 77.67.3.255
netname: PANTHER-TINET
descr: Panther Express Corp
country: US

usw. usw.
Vermutlich hat das o.a. Problem wohl nur die billige Log Software von NetGear... Normalerweise kauft man solch Consumer Kram auch nicht für ein Firmennetzwerk...außer wenns eine Würstchenbude ist...da reicht natürlich auch sowas wie NetGear.
Bitte warten ..
Der Kommentar von dog wurde vom Moderator am 06.12.16 ausgeblendet!
Der Kommentar von lighningcrow wurde vom Moderator am 06.12.16 ausgeblendet!
Mitglied: LordGurke
02.02.2010 um 19:17 Uhr
Hm, wenn ich das Firewall-Log von meinem kleinem Privat-Internetanschluss mit Debian-Router dagegen vergleiche, ist bei dir ja fast Stille auf der Leitung mit "nur" ICMP-Paketen.
Ehrlich, an sowas musste dich gewöhnen, das nennt sich "Grundrauschen des Internets"
Ein Ping hier, ein Verbindungsversuch auf TCP-Port 135 oder 445 hier, zwischendurch auch mal ein einsamer Bot auf Port 25 bei der Suche nach einem offenen Relay...

Wenn jemand richtig agressiv nach offenen Ports scannen würde, sähe das Log etwas anders aus
Bitte warten ..
Mitglied: Fr33z3r
02.02.2010 um 19:30 Uhr
@BlackFear @aqui @maxi89 : vielen dank euch
@lighningcrow : lol
Bitte warten ..
Mitglied: brammer
02.02.2010 um 20:37 Uhr
Hallo,

von den vier adressen die du oben rausgezogen hast kommen übrigens eine aus Peking, eine aus Moskau, eine aus Wichita (Kansas) und eine aus San Jose .
Entweder ein leistungsschwaches DDOS Botnetz oder einfach nur Antworten von irgendwelchen Servern auf denen du Sachen angfragt hast ohne zu wissen wo die Daten faktisch liegen.

Wenn dein Netz darunter leidet schmeiß den router raus und kauf dir was richtiges.

brammer
Bitte warten ..
Mitglied: datasearch
02.02.2010 um 22:11 Uhr
Was auch noch sehr interessant ist, auf alles läuft ein PWS 1.5.xx. Ist das tatsächlich der Microsoft-PWS? Naja, wer weiß.

01.
 
02.
telnet 87.118.248.7 80 
03.
Trying 87.118.248.7... 
04.
Connected to 87.118.248.7. 
05.
Escape character is '^]'. 
06.
GET / HTTP/1.0 
07.
 
08.
HTTP/1.1 302 Found 
09.
Date: Tue, 02 Feb 2010 21:03:38 GMT 
10.
Server: PWS/1.5.14 
11.
Content-Type: text/html 
12.
Location: /login/ 
13.
Connection: close 
14.
 
15.
Connection closed by foreign host.
Bitte warten ..
Neuester Wissensbeitrag
Microsoft

Lizenzwiederverkauf und seine Tücken

(5)

Erfahrungsbericht von DerWoWusste zum Thema Microsoft ...

Heiß diskutierte Inhalte
Windows Server
Outlook Verbindungsversuch mit Exchange (15)

Frage von xbast1x zum Thema Windows Server ...

Microsoft Office
Keine Updates für Office 2016 (13)

Frage von Motte990 zum Thema Microsoft Office ...

Grafikkarten & Monitore
Tonprobleme bei Fernseher mit angeschlossenem Laptop über HDMI (11)

Frage von Y3shix zum Thema Grafikkarten & Monitore ...