hab im logfile meines routers folgende eintraege, welche mich etwas verunsichern. kann mir wer sagen, was da genau passiert?
09/15/2003 20:09:34 192.168.123.141 login successful
09/15/2003 20:09:51 Unrecognized access from 154.5.24.190:4258 to TCP port 445
09/15/2003 20:09:54 Unrecognized access from 154.5.24.190:4258 to TCP port 445
09/15/2003 20:09:57 Unrecognized access from 24.85.122.140:1071 to TCP port 445
09/15/2003 20:09:59 Unrecognized access from 24.85.122.140:1071 to TCP port 445
09/15/2003 20:10:31 Unrecognized access from 217.162.58.209:4543 to TCP port 135
09/15/2003 20:10:34 Unrecognized access from 217.162.58.209:4543 to TCP port 135
09/15/2003 20:10:44 Unrecognized access from 217.157.107.166:4514 to TCP port 135
09/15/2003 20:10:47 Unrecognized access from 217.157.107.166:4514 to TCP port 135
09/15/2003 20:11:07 Unrecognized access from 217.162.21.196:3749 to TCP port 135
09/15/2003 20:11:20 DHCP:renew
09/15/2003 20:11:20 DHCP:ack(DOL=5400,T1=2700,T2=4725)
09/15/2003 20:11:54 Unrecognized access from 217.162.145.152:3642 to TCP port 445
09/15/2003 20:11:57 Unrecognized access from 217.162.145.152:3642 to TCP port 445
09/15/2003 20:12:03 Unrecognized access from 217.162.86.252:2311 to TCP port 135
09/15/2003 20:12:22 Unrecognized access from 217.162.42.245:4589 to TCP port 135
09/15/2003 20:12:24 Unrecognized access from 217.162.42.245:4589 to TCP port 135
09/15/2003 20:14:35 Unrecognized access from 217.162.33.138:2755 to TCP port 135
09/15/2003 20:14:38 Unrecognized access from 217.162.33.138:2755 to TCP port 135
09/15/2003 20:14:46 Unrecognized access from 217.162.31.38:1583 to TCP port 135
09/15/2003 20:14:49 Unrecognized access from 217.162.31.38:1583 to TCP port 135
09/15/2003 20:15:09 Unrecognized access from 217.162.22.167:4157 to TCP port 135
09/15/2003 20:15:12 Unrecognized access from 217.162.22.167:4157 to TCP port 135
09/15/2003 20:15:22 Unrecognized access from 217.162.151.163:1177 to TCP port 135
09/15/2003 20:15:25 Unrecognized access from 217.162.151.163:1177 to TCP port 135
09/15/2003 20:16:10 Unrecognized access from 217.162.14.239:3379 to TCP port 135
09/15/2003 20:16:12 Unrecognized access from 217.162.14.239:3379 to TCP port 135
09/15/2003 20:17:05 Unrecognized access from 217.162.79.13:1109 to TCP port 135
09/15/2003 20:17:07 Unrecognized access from 217.162.68.116:3154 to TCP port 135
09/15/2003 20:17:08 Unrecognized access from 217.162.79.13:1109 to TCP port 135
09/15/2003 20:17:42 Unrecognized access from 217.162.116.17:4994 to TCP port 445
09/15/2003 20:17:45 Unrecognized access from 217.162.116.17:4994 to TCP port 445
09/15/2003 20:18:55 Unrecognized access from 217.162.84.108:1140 to TCP port 135
09/15/2003 20:20:18 Unrecognized access from 217.162.91.81:3498 to TCP port 135
09/15/2003 20:20:18 Unrecognized access from 217.162.91.81:3518 to TCP port 135
09/15/2003 20:20:46 Unrecognized access from 217.162.38.150:2391 to TCP port 135
09/15/2003 20:20:49 Unrecognized access from 217.162.38.150:2391 to TCP port 135
09/15/2003 20:20:55 Unrecognized access from 217.162.38.150:2391 to TCP port 135
09/15/2003 20:21:42 Unrecognized access from 217.162.52.254:4706 to TCP port 135
09/15/2003 20:21:45 Unrecognized access from 217.162.52.254:4706 to TCP port 135
************************************
irgendwo stand noch was von netstat -an, das sieht bei mir wie folgt aus:
Aktive Verbindungen
Proto Lokale Adresse Remoteadresse Status
TCP 0.0.0.0:135 0.0.0.0:0 ABHÖREN
TCP 0.0.0.0:445 0.0.0.0:0 ABHÖREN
TCP 0.0.0.0:1025 0.0.0.0:0 ABHÖREN
TCP 0.0.0.0:1027 0.0.0.0:0 ABHÖREN
TCP 0.0.0.0:2297 0.0.0.0:0 ABHÖREN
TCP 192.168.123.141:2297 64.12.30.180:5190 HERGESTELLT
TCP 192.168.123.141:2817 213.165.64.20:110 WARTEND
TCP 192.168.123.141:2818 62.2.95.13:110 WARTEND
TCP 192.168.123.141:2819 213.165.64.20:110 WARTEND
UDP 0.0.0.0:135 *:*
UDP 0.0.0.0:445 *:*
UDP 0.0.0.0:1026 *:*
UDP 127.0.0.1:1060 *:*
UDP 127.0.0.1:2726 *:*
UDP 127.0.0.1:2729 *:*
UDP 192.168.123.141:500 *:*
kann mir sagen ob das gut oder schlecht ist?
Teletom
