Results 1 to 2 of 2

Thread: ขอ consult เกี่ยวกับ log windows firewall

  1. 24-02-2009, 11:50 PM #1
    benja
    benja is offline
    Junior Member
    Join Date
    Jan 2009
    Posts
    1

    #Version: 1.5
    #Software: Microsoft Windows Firewall
    #Time Format: Local
    #Fields: date time action protocol src-ip dst-ip src-port dst-port size tcpflags tcpsyn tcpack tcpwin icmptype icmpcode info path

    2009-02-24 22:48:04 CLOSE UDP 10.42.87.73 10.42.254.10 1037 53 - - - - - - - - -
    2009-02-24 22:48:25 OPEN TCP 10.42.87.73 202.57.155.203 1538 80 - - - - - - - - -
    2009-02-24 22:48:25 OPEN UDP 10.42.87.73 10.42.254.10 1037 53 - - - - - - - - -
    2009-02-24 22:48:27 OPEN TCP 10.42.87.73 202.57.155.203 1539 80 - - - - - - - - -
    2009-02-24 22:48:27 OPEN TCP 10.42.87.73 202.57.155.214 1540 80 - - - - - - - - -
    2009-02-24 22:48:34 CLOSE TCP 10.42.87.73 202.57.155.221 1506 80 - - - - - - - - -
    2009-02-24 22:48:36 OPEN TCP 10.42.87.73 202.57.155.203 1544 80 - - - - - - - - -
    2009-02-24 22:48:28 OPEN TCP 10.42.87.73 202.57.155.203 1541 80 - - - - - - - - -
    2009-02-24 22:48:33 OPEN TCP 10.42.87.73 202.57.155.203 1542 80 - - - - - - - - -
    2009-02-24 22:48:33 OPEN TCP 10.42.87.73 202.57.155.203 1543 80 - - - - - - - - -
    2009-02-24 22:48:43 OPEN TCP 10.42.87.73 202.43.33.248 1545 80 - - - - - - - - - *********
    2009-02-24 22:48:43 OPEN TCP 10.42.87.73 202.57.155.214 1546 80 - - - - - - - - -
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 309 - - - - - - - RECEIVE
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 373 - - - - - - - RECEIVE
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:51 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:51 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
    2009-02-24 22:48:51 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:51 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:52 CLOSE TCP 10.42.87.73 202.57.155.203 1543 80 - - - - - - - - -
    2009-02-24 22:48:52 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 353 - - - - - - - RECEIVE
    2009-02-24 22:48:52 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
    2009-02-24 22:48:44 OPEN TCP 10.42.87.73 202.57.155.244 1547 80 - - - - - - - - -
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 349 - - - - - - - RECEIVE
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:50 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
    2009-02-24 22:48:51 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
    2009-02-24 22:48:51 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
    2009-02-24 22:48:52 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
    2009-02-24 22:48:52 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 318 - - - - - - - RECEIVE
    2009-02-24 22:48:52 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 365 - - - - - - - RECEIVE
    2009-02-24 22:48:52 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 357 - - - - - - - RECEIVE
    2009-02-24 22:48:53 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
    2009-02-24 22:48:53 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 365 - - - - - - - RECEIVE
    2009-02-24 22:48:53 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 363 - - - - - - - RECEIVE
    2009-02-24 22:48:54 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 365 - - - - - - - RECEIVE
    2009-02-24 22:48:55 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 365 - - - - - - - RECEIVE
    2009-02-24 22:48:55 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 363 - - - - - - - RECEIVE
    2009-02-24 22:48:55 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
    2009-02-24 22:48:56 OPEN TCP 10.42.87.73 202.57.155.203 1548 80 - - - - - - - - -
    2009-02-24 22:48:57 OPEN TCP 10.42.87.73 202.57.155.244 1549 80 - - - - - - - - -
    2009-02-24 22:48:59 CLOSE TCP 10.42.87.73 74.125.96.84 1536 80 - - - - - - - - -
    2009-02-24 22:49:05 OPEN TCP 10.42.87.73 202.57.155.244 1551 80 - - - - - - - - -
    2009-02-24 22:49:06 CLOSE TCP 10.42.87.73 202.57.155.244 1547 80 - - - - - - - - -
    2009-02-24 22:48:53 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 365 - - - - - - - RECEIVE
    2009-02-24 22:48:53 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 365 - - - - - - - RECEIVE
    2009-02-24 22:48:54 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 365 - - - - - - - RECEIVE
    2009-02-24 22:48:55 DROP UDP 10.43.130.75 239.255.255.250 1900 1900 379 - - - - - - - RECEIVE
    2009-02-24 22:48:57 OPEN TCP 10.42.87.73 202.57.155.221 1550 80 - - - - - - - - -
    2009-02-24 22:49:06 DROP TCP 202.57.155.244 10.42.87.73 80 1547 40 R 667715848 667715848 0 - - - RECEIVE
    2009-02-24 22:49:11 OPEN TCP 10.42.87.73 202.57.155.244 1554 80 - - - - - - - - -
    2009-02-24 22:49:11 OPEN TCP 10.42.87.73 202.57.155.244 1555 80 - - - - - - - - -
    2009-02-24 22:49:07 OPEN TCP 10.42.87.73 202.149.104.47 1552 80 - - - - - - - - -
    2009-02-24 22:49:11 OPEN TCP 10.42.87.73 202.149.104.47 1553 80 - - - - - - - - - ********




    009-02-24 23:20:15 DROP UDP 192.168.168.189 239.255.255.250 59896 1900 161 - - - - - - - RECEIVE
    2009-02-24 23:20:16 DROP UDP 0.0.0.0 255.255.255.255 68 67 338 - - - - - - - RECEIVE
    2009-02-24 23:20:16 DROP UDP 192.168.168.189 239.255.255.250 59896 1900 161 - - - - - - - RECEIVE
    2009-02-24 23:20:18 DROP UDP 192.168.168.189 239.255.255.250 59896 1900 161 - - - - - - - RECEIVE
    2009-02-24 23:20:19 DROP UDP 192.168.168.189 239.255.255.250 59896 1900 161 - - - - - - - RECEIVE
    2009-02-24 23:20:25 DROP UDP 0.0.0.0 255.255.255.255 68 67 338 - - - - - - - RECEIVE
    2009-02-24 23:20:14 DROP UDP 192.168.168.189 239.255.255.250 59896 1900 161 - - - - - - - RECEIVE
    2009-02-24 23:20:21 DROP UDP 192.168.168.189 239.255.255.250 59896 1900 161 - - - - - - - RECEIVE
    2009-02-24 23:20:24 CLOSE TCP 10.42.87.73 58.97.45.33 1694 80 - - - - - - - - -
    2009-02-24 23:20:28 CLOSE TCP 10.42.87.73 58.97.45.51 1726 80 - - - - - - - - -
    2009-02-24 23:20:31 CLOSE TCP 10.42.87.73 58.97.45.33 1681 80 - - - - - - - - -
    2009-02-24 23:20:51 DROP TCP 10.42.15.233 10.42.87.73 23993 445 48 S 3085614883 0 16384 - - - RECEIVE
    2009-02-24 23:20:42 CLOSE TCP 10.42.87.73 58.97.45.33 1695 80 - - - - - - - - -
    2009-02-24 23:20:48 CLOSE TCP 10.42.87.73 58.97.45.33 1703 80 - - - - - - - - -
    2009-02-24 23:20:49 CLOSE TCP 10.42.87.73 65.55.33.119 1705 80 - - - - - - - - -
    2009-02-24 23:20:51 CLOSE TCP 10.42.87.73 58.97.45.33 1683 80 - - - - - - - - -



    208.111.144.151 80 - เกาะ fire fox
    4.23.58.126 80 - เกาะ fire fox
    204.160.100.126 80 - เกาะ firefox

    202.43.33.248 1545 80 ที่เครื่องหมาย ********

    202.149.104.47 1553 80 ที่เครื่องหมาย ********

    202.142.203.18 80 เวบเพจค้าง เละเจอ IP นี้ เกาะ browser firefox อยู่ เวลา ประมาณ 10.10 -10.40 *******
    วันที่ 24 Feb, 2009 ไม่แสดงใน log windows firewall ด้วย



    ขอรบกวนผู้รู้ทุกท่าน ช่วยตรวจสอบ Ip พวกนี้ด้วย ตามติด คอยรบกวนมานานแล้ว ต้องหาซื้อ usb firewall มาติดตั้งเอง
    เวลาใช้ blue tooth & true wifi ที่เป็น unsecure internet อีกด้วย ลำบากมากกับคนพวกนี้
    ตอนนี้ ยังติดตั้งไม่สมบูรณ์ 100 %

    ไม่แน่ใจว่า ตอนเจอ back door เขาทราบ user name ที่ใช้ของ true wifi แล้ว
    ใช้ hide my mac แล้ว ยังตามเจอ
    microsoft office, kaspersky scan เจอว่ามีไวรัส แต่ก็จำเป็นต้องใช้
    แต่ใช้ทำงานแล้ว word ถูก damage และ ลบตัวเอง งานที่ทำมาหายเกลี้ยง

    ตอนนี้ก็ไม่ทราบว่าจะต้องป้องกันอย่างไรอีกบ้าง


    ขอบพระคุณล่วงหน้า





    Reply With Quote Reply With Quote
  2. 25-02-2009, 12:25 AM #2
    benja
    benja is offline
    Junior Member
    Join Date
    Jan 2009
    Posts
    1


    - ขอแจ้งเพิ่มอีก 2 IP ต้องรีบ disconnect แล้วขอรับ


    67.19.226.2 80

    193.149.47.82 80



    2009-02-25 00:22:28 OPEN TCP 10.42.87.73 216.239.61.154 2485 80 - - - - - - - - -
    2009-02-25 00:22:33 OPEN TCP 10.42.87.73 164.115.2.134 2486 80 - - - - - - - - -
    2009-02-25 00:22:37 CLOSE TCP 10.42.87.73 164.115.2.134 2486 80 - - - - - - - - -
    2009-02-25 00:22:33 OPEN TCP 10.42.87.73 67.19.226.2 2487 80 - - - - - - - - - *********


    2009-02-25 00:20:05 CLOSE TCP 10.42.87.73 65.55.15.122 2367 80 - - - - - - - - -
    2009-02-25 00:20:08 CLOSE TCP 10.42.87.73 65.55.15.241 2366 80 - - - - - - - - -
    2009-02-25 00:20:12 CLOSE TCP 10.42.87.73 58.97.45.51 2364 80 - - - - - - - - -
    2009-02-25 00:20:12 CLOSE TCP 10.42.87.73 216.239.61.96 2428 80 - - - - - - - - -
    2009-02-25 00:20:13 CLOSE TCP 10.42.87.73 193.149.47.98 2406 80 - - - - - - - - - *********
    2009-02-25 00:20:13 CLOSE TCP 10.42.87.73 193.149.47.82 2404 80 - - - - - - - - -
    2009-02-25 00:20:13 CLOSE TCP 10.42.87.73 65.55.15.122 2376 80 - - - - - - - - -
    2009-02-25 00:20:14 OPEN TCP 10.42.87.73 67.222.132.201 2455 80 - - - - - - - - -
    2009-02-25 00:20:22 CLOSE TCP 10.42.87.73 65.55.239.164 2377 80 - - - - - - - - -
    2009-02-25 00:20:22 DROP TCP 65.55.239.164 10.42.87.73 80 2377 40 A 1700874463 282544633 8190 - - - RECEIVE




    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Similar Threads

  1. วิธีแก้ windows firewall ไม่ทำงานครับ
    By momaydopod in forum ทิปหรือเคล็ดลับการคอมพิวเตอร์ต่างๆ
    Replies: 0
    Last Post: 04-02-2010, 02:08 PM
  2. วิธีแก้ปัญหา "Due to an unidentified problem Windows cannot display Windows Firewall settings"
    By —DarkForce— in forum ทิปหรือเคล็ดลับการคอมพิวเตอร์ต่างๆ
    Replies: 0
    Last Post: 04-12-2009, 06:47 PM
  3. Virus malware consult
    By asylu3 in forum IT problem consult
    Replies: 0
    Last Post: 06-06-2009, 02:16 AM
  4. Reset Windows Firewall ใน XP SP2
    By ohbanglee in forum Computer Tip & Trick / Tutorial
    Replies: 0
    Last Post: 06-09-2007, 07:13 AM
  5. มีปัญหากับ Windows Firewall ครับ
    By Klln in forum IT problem consult
    Replies: 7
    Last Post: 27-08-2007, 12:06 PM

Members who have read this thread : 0

Actions : (View-Readers)

There are no names to display.

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

Hide Hack By vFCoders