« -: Apr 06, 2006, 19:04 »
Това го забелязах случайно като гледах в iptraf и почва да ме тормози. Незнам дали е вирус или друго, но и незнам да го филтрирам.
in:/etc/init.d# tcpdump -i eth1 -n src port 15175
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth1, link-type EN10MB (Ethernet), capture size 96 bytes
18:53:47.811457 IP 192.168.124.50.15175 > 88.80.109.108.19240: UDP, length: 85
18:53:58.348720 IP 192.168.124.50.15175 > 172.216.119.9.4015: UDP, length: 33
18:54:00.848712 IP 192.168.124.50.15175 > 172.216.119.9.4015: UDP, length: 33
18:54:05.353190 IP 192.168.124.50.15175 > 172.216.119.9.4015: UDP, length: 33
18:54:06.678257 IP 192.168.124.50.15175 > 88.80.110.78.45434: UDP, length: 83
18:54:08.384246 IP 192.168.124.50.15175 > 88.80.111.31.9710: UDP, length: 81
18:54:10.886724 IP 192.168.124.50.15175 > 88.80.111.31.9710: UDP, length: 81
18:54:18.397520 IP 192.168.124.50.15175 > 155.101.19.211.28824: UDP, length: 105
18:54:28.886229 IP 192.168.124.50.15175 > 24.15.164.143.49427: UDP, length: 78
18:54:28.886494 IP 192.168.124.50.15175 > 82.38.121.11.13605: UDP, length: 108
Автор
Тема: Помощ за странен udp трафик (Прочетена 595 пъти)