logo       
<prev   next>

[LOGS] Summary of large-scale portscanning detects: msg#00045

security.intrusions

Subject: [LOGS] Summary of large-scale portscanning detects

The following extracts show the beginning and ending of scan activity
was detected on my network. The number following each set is the total
number of probes for that source. Timestamps are GMT-0500.

May 14 00:00:04 66.192.201.2:15458 -> xxx.yyy.111.138:1025 SYN ******S*
May 14 00:00:04 66.192.201.2:15456 -> xxx.yyy.111.138:2745 SYN ******S*
May 14 00:00:04 66.192.201.2:15576 -> xxx.yyy.238.173:2745 SYN ******S*
May 14 00:00:08 66.192.201.2:15664 -> xxx.yyy.206.189:2745 SYN ******S*
May 14 00:00:08 66.192.201.2:15671 -> xxx.yyy.162.119:2745 SYN ******S*
May 14 00:00:07 66.192.201.2:15711 -> xxx.yyy.146.24:2745 SYN ******S*
May 14 00:00:07 66.192.201.2:15712 -> xxx.yyy.222.147:2745 SYN ******S*
May 14 00:00:07 66.192.201.2:15714 -> xxx.yyy.222.147:1025 SYN ******S*
[...]
May 14 11:14:09 66.192.201.2:31488 -> xxx.yyy.95.77:2745 SYN ******S*
May 14 11:14:09 66.192.201.2:31383 -> xxx.yyy.203.156:2745 SYN ******S*
May 14 11:14:09 66.192.201.2:31497 -> xxx.yyy.79.13:2745 SYN ******S*
May 14 11:14:09 66.192.201.2:31403 -> xxx.yyy.17.89:1025 SYN ******S*
May 14 11:14:09 66.192.201.2:31401 -> xxx.yyy.17.89:2745 SYN ******S*
May 14 11:14:09 66.192.201.2:31179 -> xxx.yyy.211.136:2745 SYN ******S*
May 14 11:14:10 66.192.201.2:31508 -> xxx.yyy.94.119:2745 SYN ******S*
May 14 11:14:10 66.192.201.2:31186 -> xxx.yyy.160.212:2745 SYN ******S*
May 14 11:14:10 66.192.201.2:31207 -> xxx.yyy.133.70:2745 SYN ******S*
136320

May 14 00:00:03 221.160.42.41:22002 -> xxx.yyy.157.149:1080 SYN ******S*
May 14 00:00:03 221.160.42.41:22002 -> xxx.yyy.157.149:10080 SYN ******S*
May 14 00:00:03 221.160.42.41:22002 -> xxx.yyy.157.149:3128 SYN ******S*
May 14 00:00:04 221.160.42.41:22002 -> xxx.yyy.157.150:1080 SYN ******S*
May 14 00:00:04 221.160.42.41:22002 -> xxx.yyy.157.150:10080 SYN ******S*
May 14 00:00:04 221.160.42.41:22002 -> xxx.yyy.157.150:3128 SYN ******S*
May 14 00:00:04 221.160.42.41:22002 -> xxx.yyy.157.151:1080 SYN ******S*
May 14 00:00:04 221.160.42.41:22002 -> xxx.yyy.157.151:10080 SYN ******S*
[...]
May 14 03:04:48 221.160.42.41:22002 -> xxx.yyy.255.252:10080 SYN ******S*
May 14 03:04:48 221.160.42.41:22002 -> xxx.yyy.255.252:3128 SYN ******S*
May 14 03:04:48 221.160.42.41:22002 -> xxx.yyy.255.253:1080 SYN ******S*
May 14 03:04:48 221.160.42.41:22002 -> xxx.yyy.255.253:10080 SYN ******S*
May 14 03:04:48 221.160.42.41:22002 -> xxx.yyy.255.253:3128 SYN ******S*
May 14 03:04:48 221.160.42.41:22002 -> xxx.yyy.255.254:1080 SYN ******S*
May 14 03:04:49 221.160.42.41:22002 -> xxx.yyy.255.255:1080 SYN ******S*
May 14 03:04:49 221.160.42.41:22002 -> xxx.yyy.255.255:10080 SYN ******S*
May 14 03:04:49 221.160.42.41:22002 -> xxx.yyy.255.255:3128 SYN ******S*
74965

May 14 04:32:59 66.102.138.198:3586 -> xxx.yyy.1.1:8000 SYN ******S*
May 14 04:32:59 66.102.138.198:3587 -> xxx.yyy.1.2:8000 SYN ******S*
May 14 04:33:01 66.102.138.198:3588 -> xxx.yyy.1.3:8000 SYN ******S*
May 14 04:33:01 66.102.138.198:3589 -> xxx.yyy.1.4:8000 SYN ******S*
May 14 04:32:58 66.102.138.198:3590 -> xxx.yyy.1.5:8000 SYN ******S*
May 14 04:33:01 66.102.138.198:3591 -> xxx.yyy.1.6:8000 SYN ******S*
May 14 04:33:01 66.102.138.198:3592 -> xxx.yyy.1.7:8000 SYN ******S*
May 14 04:33:01 66.102.138.198:3593 -> xxx.yyy.1.8:8000 SYN ******S*
[...]
May 14 04:44:02 66.102.138.198:2955 -> xxx.yyy.255.209:8000 SYN ******S*
May 14 04:44:02 66.102.138.198:2952 -> xxx.yyy.255.206:8000 SYN ******S*
May 14 04:44:02 66.102.138.198:2960 -> xxx.yyy.255.214:8000 SYN ******S*
May 14 04:44:02 66.102.138.198:2953 -> xxx.yyy.255.207:8000 SYN ******S*
May 14 04:44:02 66.102.138.198:2956 -> xxx.yyy.255.210:8000 SYN ******S*
May 14 04:44:02 66.102.138.198:2970 -> xxx.yyy.255.224:8000 SYN ******S*
May 14 04:44:02 66.102.138.198:2962 -> xxx.yyy.255.216:8000 SYN ******S*
May 14 04:44:02 66.102.138.198:2969 -> xxx.yyy.255.223:8000 SYN ******S*
73695

May 14 00:00:03 213.213.155.135:3744 -> xxx.yyy.247.171:2745 SYN ******S*
May 14 00:00:03 213.213.155.135:3745 -> xxx.yyy.236.38:2745 SYN ******S*
May 14 00:00:03 213.213.155.135:3746 -> xxx.yyy.227.211:2745 SYN ******S*
May 14 00:00:07 213.213.155.135:3813 -> xxx.yyy.136.237:2745 SYN ******S*
May 14 00:00:04 213.213.155.135:3761 -> xxx.yyy.74.155:2745 SYN ******S*
May 14 00:00:04 213.213.155.135:3624 -> xxx.yyy.236.37:445 SYN ******S*
May 14 00:00:04 213.213.155.135:3623 -> xxx.yyy.236.37:1025 SYN ******S*
May 14 00:00:04 213.213.155.135:3621 -> xxx.yyy.236.37:2745 SYN ******S*
[...]
May 14 11:14:06 213.213.155.135:2032 -> xxx.yyy.215.68:2745 SYN ******S*
May 14 11:14:06 213.213.155.135:1875 -> xxx.yyy.218.189:2745 SYN ******S*
May 14 11:14:08 213.213.155.135:2157 -> xxx.yyy.82.60:2745 SYN ******S*
May 14 11:14:08 213.213.155.135:2159 -> xxx.yyy.85.7:2745 SYN ******S*
May 14 11:14:10 213.213.155.135:1975 -> xxx.yyy.221.120:2745 SYN ******S*
May 14 11:14:11 213.213.155.135:2240 -> xxx.yyy.91.194:2745 SYN ******S*
May 14 11:14:11 213.213.155.135:2157 -> xxx.yyy.82.60:2745 SYN ******S*
May 14 11:14:11 213.213.155.135:2159 -> xxx.yyy.85.7:2745 SYN ******S*
May 14 11:14:12 213.213.155.135:2032 -> xxx.yyy.215.68:2745 SYN ******S*
71597

May 14 00:00:03 64.5.49.251:1629 -> xxx.yyy.214.92:2745 SYN ******S*
May 14 00:00:07 64.5.49.251:1823 -> xxx.yyy.216.132:2745 SYN ******S*
May 14 00:00:04 64.5.49.251:1389 -> xxx.yyy.131.222:2745 SYN ******S*
May 14 00:00:05 64.5.49.251:1445 -> xxx.yyy.14.157:2745 SYN ******S*
May 14 00:00:05 64.5.49.251:1451 -> xxx.yyy.155.133:2745 SYN ******S*
May 14 00:00:06 64.5.49.251:1461 -> xxx.yyy.75.148:2745 SYN ******S*
May 14 00:00:06 64.5.49.251:1777 -> xxx.yyy.221.162:1025 SYN ******S*
May 14 00:00:06 64.5.49.251:1775 -> xxx.yyy.221.162:2745 SYN ******S*
[...]
May 14 11:14:07 64.5.49.251:2859 -> xxx.yyy.245.164:2745 SYN ******S*
May 14 11:14:05 64.5.49.251:2551 -> xxx.yyy.106.142:2745 SYN ******S*
May 14 11:14:06 64.5.49.251:2937 -> xxx.yyy.106.224:2745 SYN ******S*
May 14 11:14:07 64.5.49.251:3015 -> xxx.yyy.107.215:2745 SYN ******S*
May 14 11:14:08 64.5.49.251:2679 -> xxx.yyy.140.124:1025 SYN ******S*
May 14 11:14:11 64.5.49.251:3052 -> xxx.yyy.93.50:2745 SYN ******S*
May 14 11:14:11 64.5.49.251:3054 -> xxx.yyy.93.50:1025 SYN ******S*
May 14 11:14:09 64.5.49.251:2937 -> xxx.yyy.106.224:2745 SYN ******S*
May 14 11:14:10 64.5.49.251:3015 -> xxx.yyy.107.215:2745 SYN ******S*
71174

May 14 02:36:11 82.186.218.58:15694 -> xxx.yyy.1.1:5554 SYN ******S*
May 14 02:36:11 82.186.218.58:1967 -> xxx.yyy.1.2:5554 SYN ******S*
May 14 02:36:14 82.186.218.58:10194 -> xxx.yyy.1.3:5554 SYN ******S*
May 14 02:36:12 82.186.218.58:8860 -> xxx.yyy.1.4:5554 SYN ******S*
May 14 02:36:15 82.186.218.58:1210 -> xxx.yyy.1.5:5554 SYN ******S*
May 14 02:36:15 82.186.218.58:10565 -> xxx.yyy.1.6:5554 SYN ******S*
May 14 02:36:15 82.186.218.58:15473 -> xxx.yyy.1.7:5554 SYN ******S*
May 14 02:36:15 82.186.218.58:5113 -> xxx.yyy.1.8:5554 SYN ******S*
[...]
May 14 02:47:53 82.186.218.58:4652 -> xxx.yyy.255.247:5554 SYN ******S*
May 14 02:47:53 82.186.218.58:5606 -> xxx.yyy.255.246:5554 SYN ******S*
May 14 02:47:53 82.186.218.58:5974 -> xxx.yyy.255.249:5554 SYN ******S*
May 14 02:47:53 82.186.218.58:13750 -> xxx.yyy.255.245:5554 SYN ******S*
May 14 02:47:53 82.186.218.58:5007 -> xxx.yyy.255.250:5554 SYN ******S*
May 14 02:47:53 82.186.218.58:7275 -> xxx.yyy.255.248:5554 SYN ******S*
May 14 02:47:53 82.186.218.58:3467 -> xxx.yyy.255.251:5554 SYN ******S*
May 14 02:47:53 82.186.218.58:16366 -> xxx.yyy.255.254:5554 SYN ******S*
71013

May 14 04:43:49 216.175.170.36:3762 -> xxx.yyy.1.1:139 SYN ******S*
May 14 04:43:49 216.175.170.36:3763 -> xxx.yyy.1.2:139 SYN ******S*
May 14 04:43:49 216.175.170.36:3764 -> xxx.yyy.1.3:139 SYN ******S*
May 14 04:43:49 216.175.170.36:3765 -> xxx.yyy.1.4:139 SYN ******S*
May 14 04:43:49 216.175.170.36:3766 -> xxx.yyy.1.5:139 SYN ******S*
May 14 04:43:49 216.175.170.36:3767 -> xxx.yyy.1.6:139 SYN ******S*
May 14 04:43:49 216.175.170.36:3768 -> xxx.yyy.1.7:139 SYN ******S*
May 14 04:43:46 216.175.170.36:3769 -> xxx.yyy.1.8:139 SYN ******S*
[...]
May 14 04:55:27 216.175.170.36:2492 -> xxx.yyy.255.241:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2497 -> xxx.yyy.255.246:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2494 -> xxx.yyy.255.243:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2496 -> xxx.yyy.255.245:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2493 -> xxx.yyy.255.242:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2503 -> xxx.yyy.255.252:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2505 -> xxx.yyy.255.254:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2504 -> xxx.yyy.255.253:139 SYN ******S*
May 14 04:55:27 216.175.170.36:2502 -> xxx.yyy.255.251:139 SYN ******S*
68819

May 14 00:00:03 68.186.232.40:4083 -> xxx.yyy.142.151:2745 SYN ******S*
May 14 00:00:03 68.186.232.40:4085 -> xxx.yyy.142.151:1025 SYN ******S*
May 14 00:00:03 68.186.232.40:4087 -> xxx.yyy.189.101:2745 SYN ******S*
May 14 00:00:04 68.186.232.40:4135 -> xxx.yyy.214.203:2745 SYN ******S*
May 14 00:00:07 68.186.232.40:4137 -> xxx.yyy.214.203:1025 SYN ******S*
May 14 00:00:04 68.186.232.40:4092 -> xxx.yyy.236.207:2745 SYN ******S*
May 14 00:00:07 68.186.232.40:4142 -> xxx.yyy.130.195:2745 SYN ******S*
May 14 00:00:05 68.186.232.40:4102 -> xxx.yyy.231.253:2745 SYN ******S*
[...]
May 14 11:14:06 68.186.232.40:3242 -> xxx.yyy.157.221:2745 SYN ******S*
May 14 11:14:07 68.186.232.40:3262 -> xxx.yyy.215.142:2745 SYN ******S*
May 14 11:14:07 68.186.232.40:3265 -> xxx.yyy.93.57:2745 SYN ******S*
May 14 11:14:08 68.186.232.40:3275 -> xxx.yyy.203.154:2745 SYN ******S*
May 14 11:14:08 68.186.232.40:3374 -> xxx.yyy.218.59:2745 SYN ******S*
May 14 11:14:08 68.186.232.40:3376 -> xxx.yyy.218.59:1025 SYN ******S*
May 14 11:14:08 68.186.232.40:3380 -> xxx.yyy.177.59:2745 SYN ******S*
May 14 11:14:10 68.186.232.40:3436 -> xxx.yyy.84.135:2745 SYN ******S*
May 14 11:14:11 68.186.232.40:3445 -> xxx.yyy.182.95:2745 SYN ******S*
67761

May 14 00:00:07 207.42.2.132:1145 -> xxx.yyy.196.168:2745 SYN ******S*
May 14 00:00:07 207.42.2.132:1160 -> xxx.yyy.20.171:2745 SYN ******S*
May 14 00:00:05 207.42.2.132:4878 -> xxx.yyy.149.50:2745 SYN ******S*
May 14 00:00:05 207.42.2.132:4884 -> xxx.yyy.135.169:2745 SYN ******S*
May 14 00:00:08 207.42.2.132:1180 -> xxx.yyy.79.214:2745 SYN ******S*
May 14 00:00:06 207.42.2.132:1188 -> xxx.yyy.183.74:2745 SYN ******S*
May 14 00:00:06 207.42.2.132:4920 -> xxx.yyy.181.211:2745 SYN ******S*
May 14 00:00:06 207.42.2.132:1198 -> xxx.yyy.89.62:2745 SYN ******S*
[...]
May 14 11:14:12 207.42.2.132:2982 -> xxx.yyy.131.144:2745 SYN ******S*
May 14 11:14:13 207.42.2.132:2999 -> xxx.yyy.83.34:2745 SYN ******S*
May 14 11:14:10 207.42.2.132:2857 -> xxx.yyy.90.128:2745 SYN ******S*
May 14 11:14:11 207.42.2.132:3016 -> xxx.yyy.87.196:2745 SYN ******S*
May 14 11:14:11 207.42.2.132:3018 -> xxx.yyy.87.196:1025 SYN ******S*
May 14 11:14:11 207.42.2.132:2977 -> xxx.yyy.111.27:2745 SYN ******S*
May 14 11:14:11 207.42.2.132:2891 -> xxx.yyy.206.150:2745 SYN ******S*
May 14 11:14:12 207.42.2.132:2907 -> xxx.yyy.85.209:2745 SYN ******S*
66203

May 14 00:00:03 207.42.2.133:4964 -> xxx.yyy.217.253:2745 SYN ******S*
May 14 00:00:03 207.42.2.133:4791 -> xxx.yyy.66.241:2745 SYN ******S*
May 14 00:00:04 207.42.2.133:1057 -> xxx.yyy.105.32:2745 SYN ******S*
May 14 00:00:03 207.42.2.133:1042 -> xxx.yyy.230.154:2745 SYN ******S*
May 14 00:00:05 207.42.2.133:1045 -> xxx.yyy.230.154:1025 SYN ******S*
May 14 00:00:04 207.42.2.133:4977 -> xxx.yyy.84.162:2745 SYN ******S*
May 14 00:00:05 207.42.2.133:1046 -> xxx.yyy.20.145:2745 SYN ******S*
May 14 00:00:06 207.42.2.133:1048 -> xxx.yyy.20.145:1025 SYN ******S*
[...]
May 14 09:56:21 207.42.2.133:4367 -> xxx.yyy.71.171:2745 SYN ******S*
May 14 09:56:21 207.42.2.133:4274 -> xxx.yyy.29.159:2745 SYN ******S*
May 14 09:56:23 207.42.2.133:4436 -> xxx.yyy.171.23:2745 SYN ******S*
May 14 09:56:23 207.42.2.133:4291 -> xxx.yyy.229.49:2745 SYN ******S*
May 14 09:56:23 207.42.2.133:4293 -> xxx.yyy.195.205:2745 SYN ******S*
May 14 09:56:23 207.42.2.133:4441 -> xxx.yyy.169.180:2745 SYN ******S*
May 14 09:56:23 207.42.2.133:4444 -> xxx.yyy.244.1:2745 SYN ******S*
May 14 09:56:23 207.42.2.133:4454 -> xxx.yyy.141.42:2745 SYN ******S*
65162

May 14 00:00:03 81.209.36.174:3610 -> xxx.yyy.156.49:3127 SYN ******S*
May 14 00:00:03 81.209.36.174:3607 -> xxx.yyy.156.49:2745 SYN ******S*
May 14 00:00:03 81.209.36.174:3653 -> xxx.yyy.12.136:2745 SYN ******S*
May 14 00:00:03 81.209.36.174:3682 -> xxx.yyy.12.136:3127 SYN ******S*
May 14 00:00:06 81.209.36.174:4215 -> xxx.yyy.250.77:2745 SYN ******S*
May 14 00:00:04 81.209.36.174:4317 -> xxx.yyy.250.163:2745 SYN ******S*
May 14 00:00:04 81.209.36.174:3953 -> xxx.yyy.153.210:6129 SYN ******S*
May 14 00:00:04 81.209.36.174:3952 -> xxx.yyy.153.210:3127 SYN ******S*
[...]
May 14 11:14:04 81.209.36.174:4264 -> xxx.yyy.210.166:2745 SYN ******S*
May 14 11:14:02 81.209.36.174:3149 -> xxx.yyy.154.1:2745 SYN ******S*
May 14 11:14:08 81.209.36.174:3149 -> xxx.yyy.154.1:2745 SYN ******S*
May 14 11:14:12 81.209.36.174:3795 -> xxx.yyy.183.205:2745 SYN ******S*
May 14 11:14:10 81.209.36.174:4264 -> xxx.yyy.210.166:2745 SYN ******S*
May 14 11:14:11 81.209.36.174:3099 -> xxx.yyy.197.183:2745 SYN ******S*
May 14 11:14:11 81.209.36.174:3425 -> xxx.yyy.197.183:3127 SYN ******S*
May 14 11:14:11 81.209.36.174:3438 -> xxx.yyy.197.183:6129 SYN ******S*
May 14 11:14:11 81.209.36.174:3450 -> xxx.yyy.197.183:139 SYN ******S*
64204

May 14 00:00:05 213.196.243.46:4438 -> xxx.yyy.137.43:2745 SYN ******S*
May 14 00:00:07 213.196.243.46:4451 -> xxx.yyy.211.187:2745 SYN ******S*
May 14 00:00:04 213.196.243.46:4369 -> xxx.yyy.237.217:2745 SYN ******S*
May 14 00:00:04 213.196.243.46:4189 -> xxx.yyy.179.48:2745 SYN ******S*
May 14 00:00:04 213.196.243.46:4385 -> xxx.yyy.235.173:2745 SYN ******S*
May 14 00:00:05 213.196.243.46:4550 -> xxx.yyy.200.135:2745 SYN ******S*
May 14 00:00:06 213.196.243.46:4562 -> xxx.yyy.90.82:2745 SYN ******S*
May 14 00:00:06 213.196.243.46:4582 -> xxx.yyy.211.194:2745 SYN ******S*
[...]
May 14 09:53:46 213.196.243.46:3862 -> xxx.yyy.207.187:2745 SYN ******S*
May 14 09:53:46 213.196.243.46:3882 -> xxx.yyy.207.187:3127 SYN ******S*
May 14 09:53:48 213.196.243.46:3500 -> xxx.yyy.177.216:2745 SYN ******S*
May 14 09:53:48 213.196.243.46:3862 -> xxx.yyy.207.187:2745 SYN ******S*
May 14 09:53:48 213.196.243.46:3872 -> xxx.yyy.207.187:1025 SYN ******S*
May 14 09:53:48 213.196.243.46:3879 -> xxx.yyy.207.187:445 SYN ******S*
May 14 09:53:48 213.196.243.46:3882 -> xxx.yyy.207.187:3127 SYN ******S*
May 14 09:53:48 213.196.243.46:3883 -> xxx.yyy.207.187:6129 SYN ******S*
64139

May 14 00:48:09 80.8.172.139:1493 -> xxx.yyy.195.15:2745 SYN ******S*
May 14 00:48:09 80.8.172.139:1495 -> xxx.yyy.195.15:1025 SYN ******S*
May 14 00:48:09 80.8.172.139:1496 -> xxx.yyy.195.15:445 SYN ******S*
May 14 00:48:09 80.8.172.139:1497 -> xxx.yyy.195.15:3127 SYN ******S*
May 14 00:48:09 80.8.172.139:1498 -> xxx.yyy.195.15:6129 SYN ******S*
May 14 00:48:07 80.8.172.139:1690 -> xxx.yyy.12.225:2745 SYN ******S*
May 14 00:48:07 80.8.172.139:1692 -> xxx.yyy.12.225:1025 SYN ******S*
May 14 00:48:07 80.8.172.139:1695 -> xxx.yyy.12.225:6129 SYN ******S*
[...]
May 14 10:37:45 80.8.172.139:3759 -> xxx.yyy.176.175:2745 SYN ******S*
May 14 10:37:46 80.8.172.139:3772 -> xxx.yyy.229.176:2745 SYN ******S*
May 14 10:37:46 80.8.172.139:3865 -> xxx.yyy.183.184:2745 SYN ******S*
May 14 10:37:47 80.8.172.139:3954 -> xxx.yyy.213.244:2745 SYN ******S*
May 14 10:37:48 80.8.172.139:3900 -> xxx.yyy.252.52:2745 SYN ******S*
May 14 10:37:49 80.8.172.139:3989 -> xxx.yyy.16.209:2745 SYN ******S*
May 14 10:37:50 80.8.172.139:3954 -> xxx.yyy.213.244:2745 SYN ******S*
May 14 10:37:51 80.8.172.139:3845 -> xxx.yyy.192.161:2745 SYN ******S*
64020

May 14 00:00:09 66.227.153.106:3533 -> xxx.yyy.140.142:2745 SYN ******S*
May 14 00:00:10 66.227.153.106:3371 -> xxx.yyy.221.44:2745 SYN ******S*
May 14 00:00:12 66.227.153.106:3536 -> xxx.yyy.200.64:2745 SYN ******S*
May 14 00:00:12 66.227.153.106:3593 -> xxx.yyy.152.74:2745 SYN ******S*
May 14 00:00:12 66.227.153.106:3596 -> xxx.yyy.135.136:2745 SYN ******S*
May 14 00:00:13 66.227.153.106:3418 -> xxx.yyy.247.147:2745 SYN ******S*
May 14 00:00:13 66.227.153.106:3612 -> xxx.yyy.236.7:2745 SYN ******S*
May 14 00:00:16 66.227.153.106:3596 -> xxx.yyy.135.136:2745 SYN ******S*
[...]
May 14 11:14:10 66.227.153.106:2856 -> xxx.yyy.229.124:2745 SYN ******S*
May 14 11:14:10 66.227.153.106:2788 -> xxx.yyy.129.102:1025 SYN ******S*
May 14 11:14:10 66.227.153.106:2786 -> xxx.yyy.129.102:2745 SYN ******S*
May 14 11:14:10 66.227.153.106:2795 -> xxx.yyy.227.146:2745 SYN ******S*
May 14 11:14:10 66.227.153.106:2797 -> xxx.yyy.227.146:1025 SYN ******S*
May 14 11:14:11 66.227.153.106:2614 -> xxx.yyy.199.41:2745 SYN ******S*
May 14 11:14:11 66.227.153.106:2625 -> xxx.yyy.198.3:2745 SYN ******S*
May 14 11:14:11 66.227.153.106:2632 -> xxx.yyy.226.121:2745 SYN ******S*
63046

May 14 00:00:04 64.75.190.101:2149 -> xxx.yyy.65.234:2745 SYN ******S*
May 14 00:00:04 64.75.190.101:2238 -> xxx.yyy.106.242:3127 SYN ******S*
May 14 00:00:04 64.75.190.101:2236 -> xxx.yyy.106.242:1025 SYN ******S*
May 14 00:00:05 64.75.190.101:2240 -> xxx.yyy.106.242:6129 SYN ******S*
May 14 00:00:05 64.75.190.101:2234 -> xxx.yyy.106.242:2745 SYN ******S*
May 14 00:00:08 64.75.190.101:2290 -> xxx.yyy.188.192:2745 SYN ******S*
May 14 00:00:05 64.75.190.101:2250 -> xxx.yyy.135.235:2745 SYN ******S*
May 14 00:00:05 64.75.190.101:2255 -> xxx.yyy.20.36:2745 SYN ******S*
[...]
May 14 11:04:02 64.75.190.101:2381 -> xxx.yyy.138.74:2745 SYN ******S*
May 14 11:04:03 64.75.190.101:2351 -> xxx.yyy.187.232:2745 SYN ******S*
May 14 11:04:05 64.75.190.101:2419 -> xxx.yyy.155.174:2745 SYN ******S*
May 14 11:04:05 64.75.190.101:2374 -> xxx.yyy.190.233:2745 SYN ******S*
May 14 11:04:05 64.75.190.101:2381 -> xxx.yyy.138.74:2745 SYN ******S*
May 14 11:04:05 64.75.190.101:2281 -> xxx.yyy.228.153:1025 SYN ******S*
May 14 11:04:05 64.75.190.101:2283 -> xxx.yyy.228.153:3127 SYN ******S*
May 14 11:04:07 64.75.190.101:2419 -> xxx.yyy.155.174:2745 SYN ******S*
May 14 11:04:07 64.75.190.101:2459 -> xxx.yyy.242.211:2745 SYN ******S*
62783

May 14 00:00:05 200.253.208.207:3047 -> xxx.yyy.246.44:2745 SYN ******S*
May 14 00:00:05 200.253.208.207:4860 -> xxx.yyy.175.173:2745 SYN ******S*
May 14 00:00:05 200.253.208.207:3052 -> xxx.yyy.193.212:2745 SYN ******S*
May 14 00:00:06 200.253.208.207:3133 -> xxx.yyy.10.100:2745 SYN ******S*
May 14 00:00:06 200.253.208.207:4879 -> xxx.yyy.216.31:2745 SYN ******S*
May 14 00:00:07 200.253.208.207:4906 -> xxx.yyy.205.222:2745 SYN ******S*
May 14 00:00:08 200.253.208.207:4994 -> xxx.yyy.246.218:2745 SYN ******S*
May 14 00:00:13 200.253.208.207:3203 -> xxx.yyy.79.121:2745 SYN ******S*
[...]
May 14 11:14:05 200.253.208.207:4120 -> xxx.yyy.223.68:2745 SYN ******S*
May 14 11:14:05 200.253.208.207:4121 -> xxx.yyy.164.161:2745 SYN ******S*
May 14 11:14:07 200.253.208.207:3997 -> xxx.yyy.187.125:1025 SYN ******S*
May 14 11:14:07 200.253.208.207:3995 -> xxx.yyy.187.125:2745 SYN ******S*
May 14 11:14:07 200.253.208.207:4171 -> xxx.yyy.134.110:2745 SYN ******S*
May 14 11:14:08 200.253.208.207:4120 -> xxx.yyy.223.68:2745 SYN ******S*
May 14 11:14:08 200.253.208.207:4121 -> xxx.yyy.164.161:2745 SYN ******S*
May 14 11:14:10 200.253.208.207:4171 -> xxx.yyy.134.110:2745 SYN ******S*
May 14 11:14:11 200.253.208.207:4234 -> xxx.yyy.159.56:2745 SYN ******S*
61968

May 14 00:00:06 66.244.229.121:3557 -> xxx.yyy.154.105:2745 SYN ******S*
May 14 00:00:03 66.244.229.121:3397 -> xxx.yyy.12.88:2745 SYN ******S*
May 14 00:00:06 66.244.229.121:3558 -> xxx.yyy.241.6:2745 SYN ******S*
May 14 00:00:08 66.244.229.121:3601 -> xxx.yyy.66.198:2745 SYN ******S*
May 14 00:00:08 66.244.229.121:3603 -> xxx.yyy.66.198:1025 SYN ******S*
May 14 00:00:08 66.244.229.121:3605 -> xxx.yyy.66.198:3127 SYN ******S*
May 14 00:00:09 66.244.229.121:3503 -> xxx.yyy.152.221:2745 SYN ******S*
May 14 00:00:09 66.244.229.121:3502 -> xxx.yyy.220.69:2745 SYN ******S*
[...]
May 14 11:13:57 66.244.229.121:2362 -> xxx.yyy.150.135:2745 SYN ******S*
May 14 11:13:59 66.244.229.121:2546 -> xxx.yyy.221.85:2745 SYN ******S*
May 14 11:14:01 66.244.229.121:2609 -> xxx.yyy.182.72:2745 SYN ******S*
May 14 11:14:02 66.244.229.121:2546 -> xxx.yyy.221.85:2745 SYN ******S*
May 14 11:14:04 66.244.229.121:2609 -> xxx.yyy.182.72:2745 SYN ******S*
May 14 11:14:04 66.244.229.121:2480 -> xxx.yyy.1.165:2745 SYN ******S*
May 14 11:14:08 66.244.229.121:2546 -> xxx.yyy.221.85:2745 SYN ******S*
May 14 11:14:11 66.244.229.121:2799 -> xxx.yyy.135.251:2745 SYN ******S*
60197

May 14 00:00:05 200.88.35.194:15988 -> xxx.yyy.138.236:2745 SYN ******S*
May 14 00:00:08 200.88.35.194:16037 -> xxx.yyy.95.120:2745 SYN ******S*
May 14 00:00:05 200.88.35.194:16039 -> xxx.yyy.95.120:1025 SYN ******S*
May 14 00:00:09 200.88.35.194:16050 -> xxx.yyy.251.0:2745 SYN ******S*
May 14 00:00:09 200.88.35.194:16051 -> xxx.yyy.162.58:2745 SYN ******S*
May 14 00:00:07 200.88.35.194:16069 -> xxx.yyy.251.24:2745 SYN ******S*
May 14 00:00:08 200.88.35.194:16079 -> xxx.yyy.91.32:2745 SYN ******S*
May 14 00:00:08 200.88.35.194:16084 -> xxx.yyy.238.172:2745 SYN ******S*
[...]
May 14 09:59:06 200.88.35.194:12808 -> xxx.yyy.235.247:2745 SYN ******S*
May 14 09:59:06 200.88.35.194:12943 -> xxx.yyy.176.119:2745 SYN ******S*
May 14 09:59:06 200.88.35.194:12945 -> xxx.yyy.211.56:2745 SYN ******S*
May 14 09:59:07 200.88.35.194:12910 -> xxx.yyy.206.52:2745 SYN ******S*
May 14 09:59:07 200.88.35.194:12916 -> xxx.yyy.163.67:2745 SYN ******S*
May 14 09:59:08 200.88.35.194:12841 -> xxx.yyy.190.183:2745 SYN ******S*
May 14 09:59:09 200.88.35.194:12943 -> xxx.yyy.176.119:2745 SYN ******S*
May 14 09:59:09 200.88.35.194:12945 -> xxx.yyy.211.56:2745 SYN ******S*
60146

May 14 00:00:03 66.203.231.83:4306 -> xxx.yyy.248.43:2745 SYN ******S*
May 14 00:00:07 66.203.231.83:4997 -> xxx.yyy.242.220:2745 SYN ******S*
May 14 00:00:07 66.203.231.83:1044 -> xxx.yyy.242.220:1025 SYN ******S*
May 14 00:00:07 66.203.231.83:1048 -> xxx.yyy.242.220:3127 SYN ******S*
May 14 00:00:07 66.203.231.83:1057 -> xxx.yyy.242.220:6129 SYN ******S*
May 14 00:00:05 66.203.231.83:4615 -> xxx.yyy.80.57:2745 SYN ******S*
May 14 00:00:05 66.203.231.83:4649 -> xxx.yyy.80.57:1025 SYN ******S*
May 14 00:00:05 66.203.231.83:4651 -> xxx.yyy.80.57:3127 SYN ******S*
[...]
May 14 11:14:06 66.203.231.83:2007 -> xxx.yyy.214.129:1025 SYN ******S*
May 14 11:14:07 66.203.231.83:1136 -> xxx.yyy.130.129:2745 SYN ******S*
May 14 11:14:07 66.203.231.83:1145 -> xxx.yyy.130.129:1025 SYN ******S*
May 14 11:14:09 66.203.231.83:2916 -> xxx.yyy.1.61:2745 SYN ******S*
May 14 11:14:08 66.203.231.83:1821 -> xxx.yyy.146.196:2745 SYN ******S*
May 14 11:14:09 66.203.231.83:1939 -> xxx.yyy.214.129:2745 SYN ******S*
May 14 11:14:09 66.203.231.83:2007 -> xxx.yyy.214.129:1025 SYN ******S*
May 14 11:14:09 66.203.231.83:3298 -> xxx.yyy.86.237:2745 SYN ******S*
May 14 11:14:10 66.203.231.83:2529 -> xxx.yyy.148.8:2745 SYN ******S*
58725

May 14 00:00:06 68.249.222.38:3153 -> xxx.yyy.95.214:2745 SYN ******S*
May 14 00:00:04 68.249.222.38:3125 -> xxx.yyy.32.47:2745 SYN ******S*
May 14 00:00:05 68.249.222.38:3131 -> xxx.yyy.68.46:2745 SYN ******S*
May 14 00:00:06 68.249.222.38:3068 -> xxx.yyy.226.144:2745 SYN ******S*
May 14 00:00:06 68.249.222.38:3074 -> xxx.yyy.133.239:2745 SYN ******S*
May 14 00:00:08 68.249.222.38:3097 -> xxx.yyy.86.178:2745 SYN ******S*
May 14 00:00:09 68.249.222.38:3114 -> xxx.yyy.16.52:2745 SYN ******S*
May 14 00:00:09 68.249.222.38:3219 -> xxx.yyy.203.4:2745 SYN ******S*
[...]
May 14 09:19:57 68.249.222.38:1660 -> xxx.yyy.11.140:2745 SYN ******S*
May 14 09:19:58 68.249.222.38:1796 -> xxx.yyy.146.219:2745 SYN ******S*
May 14 09:19:58 68.249.222.38:1675 -> xxx.yyy.215.8:2745 SYN ******S*
May 14 09:20:00 68.249.222.38:1700 -> xxx.yyy.195.13:2745 SYN ******S*
May 14 09:20:01 68.249.222.38:1796 -> xxx.yyy.146.219:2745 SYN ******S*
May 14 09:20:04 68.249.222.38:1887 -> xxx.yyy.12.90:2745 SYN ******S*
May 14 09:20:04 68.249.222.38:1895 -> xxx.yyy.71.93:2745 SYN ******S*
May 14 09:20:04 68.249.222.38:1898 -> xxx.yyy.160.244:2745 SYN ******S*
May 14 09:20:06 68.249.222.38:1918 -> xxx.yyy.12.84:2745 SYN ******S*
58148

May 14 00:00:06 80.8.67.170:4637 -> xxx.yyy.149.155:2745 SYN ******S*
May 14 00:00:03 80.8.67.170:4496 -> xxx.yyy.222.132:2745 SYN ******S*
May 14 00:00:03 80.8.67.170:4175 -> xxx.yyy.167.148:2745 SYN ******S*
May 14 00:00:03 80.8.67.170:4498 -> xxx.yyy.175.71:2745 SYN ******S*
May 14 00:00:04 80.8.67.170:4514 -> xxx.yyy.246.95:2745 SYN ******S*
May 14 00:00:04 80.8.67.170:4690 -> xxx.yyy.147.185:2745 SYN ******S*
May 14 00:00:08 80.8.67.170:4696 -> xxx.yyy.147.185:1025 SYN ******S*
May 14 00:00:04 80.8.67.170:4699 -> xxx.yyy.170.213:2745 SYN ******S*
[...]
May 14 10:26:10 80.8.67.170:4129 -> xxx.yyy.231.8:2745 SYN ******S*
May 14 10:26:10 80.8.67.170:4623 -> xxx.yyy.215.242:2745 SYN ******S*
May 14 10:26:11 80.8.67.170:4222 -> xxx.yyy.166.33:2745 SYN ******S*
May 14 10:26:12 80.8.67.170:4950 -> xxx.yyy.105.3:2745 SYN ******S*
May 14 10:26:13 80.8.67.170:4384 -> xxx.yyy.200.131:1025 SYN ******S*
May 14 10:26:13 80.8.67.170:4380 -> xxx.yyy.200.131:2745 SYN ******S*
May 14 10:26:13 80.8.67.170:4422 -> xxx.yyy.146.187:2745 SYN ******S*
May 14 10:26:16 80.8.67.170:4612 -> xxx.yyy.189.123:2745 SYN ******S*
May 14 10:26:16 80.8.67.170:4623 -> xxx.yyy.215.242:2745 SYN ******S*
51272

May 14 00:00:14 198.82.65.55:1584 -> xxx.yyy.213.195:2745 SYN ******S*
May 14 00:00:10 198.82.65.55:1623 -> xxx.yyy.167.192:2745 SYN ******S*
May 14 00:00:08 198.82.65.55:1456 -> xxx.yyy.245.133:2745 SYN ******S*
May 14 00:00:12 198.82.65.55:1657 -> xxx.yyy.141.80:2745 SYN ******S*
May 14 00:00:13 198.82.65.55:1694 -> xxx.yyy.167.200:2745 SYN ******S*
May 14 00:00:12 198.82.65.55:1667 -> xxx.yyy.242.188:2745 SYN ******S*
May 14 00:00:13 198.82.65.55:1735 -> xxx.yyy.207.212:2745 SYN ******S*
May 14 00:00:15 198.82.65.55:1764 -> xxx.yyy.225.51:2745 SYN ******S*
[...]
May 14 07:18:48 198.82.65.55:3282 -> xxx.yyy.76.139:2745 SYN ******S*
May 14 07:18:52 198.82.65.55:3308 -> xxx.yyy.136.223:2745 SYN ******S*
May 14 07:18:50 198.82.65.55:3179 -> xxx.yyy.229.155:2745 SYN ******S*
May 14 07:18:50 198.82.65.55:3190 -> xxx.yyy.203.178:2745 SYN ******S*
May 14 07:18:51 198.82.65.55:3282 -> xxx.yyy.76.139:2745 SYN ******S*
May 14 07:18:52 198.82.65.55:3206 -> xxx.yyy.111.7:2745 SYN ******S*
May 14 07:18:54 198.82.65.55:3233 -> xxx.yyy.199.45:2745 SYN ******S*
May 14 07:18:54 198.82.65.55:3240 -> xxx.yyy.167.215:2745 SYN ******S*
45551

May 14 00:00:13 213.184.28.245:1711 -> xxx.yyy.220.190:2745 SYN ******S*
May 14 00:00:16 213.184.28.245:2267 -> xxx.yyy.152.41:2745 SYN ******S*
May 14 00:00:14 213.184.28.245:1787 -> xxx.yyy.128.105:1025 SYN ******S*
May 14 00:00:14 213.184.28.245:1785 -> xxx.yyy.128.105:2745 SYN ******S*
May 14 00:00:15 213.184.28.245:1825 -> xxx.yyy.235.154:2745 SYN ******S*
May 14 00:00:18 213.184.28.245:2544 -> xxx.yyy.73.138:2745 SYN ******S*
May 14 00:00:21 213.184.28.245:2544 -> xxx.yyy.73.138:2745 SYN ******S*
May 14 00:00:22 213.184.28.245:2752 -> xxx.yyy.196.8:2745 SYN ******S*
[...]
May 14 08:51:49 213.184.28.245:3499 -> xxx.yyy.128.154:2745 SYN ******S*
May 14 08:51:49 213.184.28.245:3502 -> xxx.yyy.202.121:2745 SYN ******S*
May 14 08:51:49 213.184.28.245:3543 -> xxx.yyy.86.20:2745 SYN ******S*
May 14 08:51:50 213.184.28.245:3428 -> xxx.yyy.254.120:2745 SYN ******S*
May 14 08:51:50 213.184.28.245:3432 -> xxx.yyy.195.186:2745 SYN ******S*
May 14 08:51:50 213.184.28.245:3570 -> xxx.yyy.195.78:2745 SYN ******S*
May 14 08:51:50 213.184.28.245:3572 -> xxx.yyy.195.78:1025 SYN ******S*
May 14 08:51:50 213.184.28.245:3438 -> xxx.yyy.221.38:2745 SYN ******S*
44650

May 14 00:00:03 207.42.2.158:3117 -> xxx.yyy.146.22:2745 SYN ******S*
May 14 00:00:06 207.42.2.158:3226 -> xxx.yyy.254.167:2745 SYN ******S*
May 14 00:00:06 207.42.2.158:3228 -> xxx.yyy.254.167:1025 SYN ******S*
May 14 00:00:07 207.42.2.158:3234 -> xxx.yyy.203.139:2745 SYN ******S*
May 14 00:00:07 207.42.2.158:3236 -> xxx.yyy.203.139:1025 SYN ******S*
May 14 00:00:04 207.42.2.158:3135 -> xxx.yyy.167.45:2745 SYN ******S*
May 14 00:00:04 207.42.2.158:3138 -> xxx.yyy.217.37:2745 SYN ******S*
May 14 00:00:05 207.42.2.158:3205 -> xxx.yyy.186.52:2745 SYN ******S*
[...]
May 14 06:35:36 207.42.2.158:4379 -> xxx.yyy.131.82:2745 SYN ******S*
May 14 06:35:36 207.42.2.158:4394 -> xxx.yyy.204.2:2745 SYN ******S*
May 14 06:35:37 207.42.2.158:4320 -> xxx.yyy.134.130:2745 SYN ******S*
May 14 06:35:38 207.42.2.158:4419 -> xxx.yyy.1.79:2745 SYN ******S*
May 14 06:35:39 207.42.2.158:4424 -> xxx.yyy.231.243:2745 SYN ******S*
May 14 06:35:39 207.42.2.158:4345 -> xxx.yyy.111.69:2745 SYN ******S*
May 14 06:35:39 207.42.2.158:4479 -> xxx.yyy.152.133:2745 SYN ******S*
May 14 06:35:39 207.42.2.158:4482 -> xxx.yyy.152.133:1025 SYN ******S*
39599

May 14 00:00:04 207.42.160.242:3128 -> xxx.yyy.68.220:2745 SYN ******S*
May 14 00:00:07 207.42.160.242:3188 -> xxx.yyy.195.253:2745 SYN ******S*
May 14 00:00:04 207.42.160.242:3011 -> xxx.yyy.221.101:2745 SYN ******S*
May 14 00:00:04 207.42.160.242:3035 -> xxx.yyy.177.187:2745 SYN ******S*
May 14 00:00:06 207.42.160.242:3057 -> xxx.yyy.212.211:2745 SYN ******S*
May 14 00:00:07 207.42.160.242:3082 -> xxx.yyy.205.126:2745 SYN ******S*
May 14 00:00:07 207.42.160.242:3246 -> xxx.yyy.171.243:2745 SYN ******S*
May 14 00:00:07 207.42.160.242:3089 -> xxx.yyy.194.59:2745 SYN ******S*
[...]
May 14 06:12:59 207.42.160.242:3669 -> xxx.yyy.161.240:2745 SYN ******S*
May 14 06:12:58 207.42.160.242:3649 -> xxx.yyy.175.11:2745 SYN ******S*
May 14 06:12:58 207.42.160.242:3715 -> xxx.yyy.248.177:2745 SYN ******S*
May 14 06:13:00 207.42.160.242:3673 -> xxx.yyy.161.240:1025 SYN ******S*
May 14 06:13:00 207.42.160.242:3560 -> xxx.yyy.72.243:2745 SYN ******S*
May 14 06:13:01 207.42.160.242:3715 -> xxx.yyy.248.177:2745 SYN ******S*
May 14 06:13:01 207.42.160.242:3762 -> xxx.yyy.158.251:1025 SYN ******S*
May 14 06:13:02 207.42.160.242:3759 -> xxx.yyy.158.251:2745 SYN ******S*
39093

May 14 03:01:18 63.66.126.146:3331 -> xxx.yyy.10.1:5554 SYN ******S*
May 14 03:01:18 63.66.126.146:3332 -> xxx.yyy.10.2:5554 SYN ******S*
May 14 03:01:18 63.66.126.146:3333 -> xxx.yyy.10.3:5554 SYN ******S*
May 14 03:01:17 63.66.126.146:3334 -> xxx.yyy.10.4:5554 SYN ******S*
May 14 03:01:18 63.66.126.146:3335 -> xxx.yyy.10.5:5554 SYN ******S*
May 14 03:01:20 63.66.126.146:3336 -> xxx.yyy.10.6:5554 SYN ******S*
May 14 03:01:20 63.66.126.146:3337 -> xxx.yyy.10.7:5554 SYN ******S*
May 14 03:01:20 63.66.126.146:3338 -> xxx.yyy.10.8:5554 SYN ******S*
[...]
May 14 03:12:17 63.66.126.146:1038 -> xxx.yyy.238.220:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:1039 -> xxx.yyy.238.221:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:1040 -> xxx.yyy.238.222:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:1041 -> xxx.yyy.238.223:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:1042 -> xxx.yyy.238.224:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:1043 -> xxx.yyy.238.225:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:1044 -> xxx.yyy.238.226:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:4436 -> xxx.yyy.237.185:5554 SYN ******S*
May 14 03:12:17 63.66.126.146:4463 -> xxx.yyy.237.191:5554 SYN ******S*
35870

--
- Ken
===========================================================================
Ken Connelly (KC152) Systems and Operations Manager, ITS - Network Services
University of Northern Iowa Cedar Falls, IA 50614-0121
email: Ken.Connelly@xxxxxxx phone: (319) 273-5850 fax: (319) 273-7373
_______________________________________________
Intrusions mailing list
Intrusions@xxxxxxxxxxxxxx
http://www.dshield.org/mailman/listinfo/intrusions
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE:strange mail connections: 00045, lola marais
Next by Date:  RE: RE:strange mail connections: 00045, Smith, Donald
Previous by Thread:  [LOGS] Summary of large-scale portscanning detectsi: 00045, Ken . Connelly
Next by Thread:  [LOGS] Summary of large-scale portscanning detects: 00045, Ken . Connelly
Indexes:  [Date] [Thread] [Top] [All Lists]

Google Custom Search
News | FAQ | advertise