Witam
W logach z tp-linka mam informacje o włamaniu. Nie znam się na tym, więc byłbym wdzięczny, gdyby ktoś wytłumaczył mi co to dokładniej oznacza?
Czy to rzeczywiście było włamanie, jeśli tak to co uzyskał napastnik?
Tp-link logi włamania
Moderator: Moderatorzy
-
fellow
- Początkujący użytkownik forum
- Posty: 2
- Rejestracja: 2011-03-03, 06:27
- Lokalizacja: Różnie
-
Jo_gurt
- Guru bezprzewodowy
- Posty: 16330
- Rejestracja: 2007-11-16, 21:49
- Lokalizacja: Lublin
Re: Tp-link logi włamania
Wrzuć to w tekście, bo kod htmla w doc? Bez przesady 
-
fellow
- Początkujący użytkownik forum
- Posty: 2
- Rejestracja: 2011-03-03, 06:27
- Lokalizacja: Różnie
Re: Tp-link logi włamania
XXX 20:30:42
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=221.1.220.199 DST=83.26.218.146 LEN=40 TOS=0x00 PREC=0x00 TTL=111 ID=256 DF PROTO=TCP SPT=12200 DPT=9415 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 20:30:42
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=221.1.220.199 DST=83.26.218.146 LEN=40 TOS=0x00 PREC=0x00 TTL=111 ID=256 DF PROTO=TCP SPT=12200 DPT=2479 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 20:30:42
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=221.1.220.199 DST=83.26.218.146 LEN=40 TOS=0x00 PREC=0x00 TTL=111 ID=256 DF PROTO=TCP SPT=12200 DPT=8090 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:28:55
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=8070 DF PROTO=TCP SPT=49301 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:30:03
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=14175 DF PROTO=TCP SPT=49579 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:39:37
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=30494 DF PROTO=TCP SPT=51954 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:49:11
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=22206 DF PROTO=TCP SPT=54426 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 22:05:32
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=2162 DF PROTO=TCP SPT=57316 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 22:26:44
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=184.73.189.101 DST=83.26.218.146 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=38507 DF PROTO=TCP SPT=46461 DPT=443 WINDOW=5840 RES=0x00 SYN URGP=0
XXX 23:16:05
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=12473 DF PROTO=TCP SPT=57189 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:16:05
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=12600 DF PROTO=TCP SPT=57189 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:16:06
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=48 TOS=0x00 PREC=0x00 TTL=120 ID=12714 DF PROTO=TCP SPT=57189 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:17:06
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=22911 DF PROTO=TCP SPT=57445 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:17:07
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=22997 DF PROTO=TCP SPT=57445 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:26:12
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=4778 DF PROTO=TCP SPT=59710 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:28:22
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=15289 DF PROTO=TCP SPT=60256 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:28:23
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=15342 DF PROTO=TCP SPT=60256 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:28:24
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=48 TOS=0x00 PREC=0x00 TTL=120 ID=15417 DF PROTO=TCP SPT=60256 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:29:31
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=21198 DF PROTO=TCP SPT=60543 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
29:32
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=21274 DF PROTO=TCP SPT=60543 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
...Kilka ścian tekstów dalej, aż do wyczerpania agregatów prądotwórczych napastnika
XXX 2 01:11:19
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=173.120.189.22 DST=83.26.229.91 LEN=48 TOS=0x00 PREC=0x00 TTL=113 ID=24960 DF PROTO=TCP SPT=49788 DPT=44988 WINDOW=8192 RES=0x00 SYN URGP=0
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=221.1.220.199 DST=83.26.218.146 LEN=40 TOS=0x00 PREC=0x00 TTL=111 ID=256 DF PROTO=TCP SPT=12200 DPT=9415 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 20:30:42
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=221.1.220.199 DST=83.26.218.146 LEN=40 TOS=0x00 PREC=0x00 TTL=111 ID=256 DF PROTO=TCP SPT=12200 DPT=2479 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 20:30:42
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=221.1.220.199 DST=83.26.218.146 LEN=40 TOS=0x00 PREC=0x00 TTL=111 ID=256 DF PROTO=TCP SPT=12200 DPT=8090 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:28:55
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=8070 DF PROTO=TCP SPT=49301 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:30:03
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=14175 DF PROTO=TCP SPT=49579 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:39:37
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=30494 DF PROTO=TCP SPT=51954 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 21:49:11
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=22206 DF PROTO=TCP SPT=54426 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 22:05:32
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=2162 DF PROTO=TCP SPT=57316 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 22:26:44
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=184.73.189.101 DST=83.26.218.146 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=38507 DF PROTO=TCP SPT=46461 DPT=443 WINDOW=5840 RES=0x00 SYN URGP=0
XXX 23:16:05
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=12473 DF PROTO=TCP SPT=57189 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:16:05
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=12600 DF PROTO=TCP SPT=57189 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:16:06
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=48 TOS=0x00 PREC=0x00 TTL=120 ID=12714 DF PROTO=TCP SPT=57189 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:17:06
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=22911 DF PROTO=TCP SPT=57445 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:17:07
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=22997 DF PROTO=TCP SPT=57445 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
XXX 23:26:12
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=4778 DF PROTO=TCP SPT=59710 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:28:22
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=15289 DF PROTO=TCP SPT=60256 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:28:23
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=15342 DF PROTO=TCP SPT=60256 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:28:24
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=48 TOS=0x00 PREC=0x00 TTL=120 ID=15417 DF PROTO=TCP SPT=60256 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
23:29:31
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=21198 DF PROTO=TCP SPT=60543 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
29:32
IN=ppp_0_0_35_1 OUT= MAC= SRC=46.45.78.182 DST=83.26.218.146 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=21274 DF PROTO=TCP SPT=60543 DPT=60712 WINDOW=8192 RES=0x00 SYN URGP=0
...Kilka ścian tekstów dalej, aż do wyczerpania agregatów prądotwórczych napastnika
XXX 2 01:11:19
user
alert
kernel: Intrusion -> IN=ppp_0_0_35_1 OUT= MAC= SRC=173.120.189.22 DST=83.26.229.91 LEN=48 TOS=0x00 PREC=0x00 TTL=113 ID=24960 DF PROTO=TCP SPT=49788 DPT=44988 WINDOW=8192 RES=0x00 SYN URGP=0
-
key
- *Mistrz bezprzewodowy*
- Posty: 9567
- Rejestracja: 2010-08-01, 18:30
- Lokalizacja: Nürnberg
Re: Tp-link logi włamania
Nan dzien dzisiejszy normalka. Script kiddies sie bawia.
Nie pomagam na PW.