jmore9
April 29th, 2008, 12:43 PM
Hello!
Well here is a new one for me. I have never seen a bunch of trace routes from ATT like this before :
Time:Apr 29 06:35:56 Direction: Unknown In:eth0 Out: Port:33439 Source:64.94.45.26 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:02 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:07 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:12 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:12 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:17 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:17 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:20 Direction: Unknown In:eth0 Out: Port:27358 Source:121.210.32.165 Destination:71.205.135.55 Length:59 TOS:0x00 Protocol:UDP Service:Unknown
Time:Apr 29 06:36:22 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:22 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:27 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:27 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
I cannot figure out why that would be happening. Earlier in the day someone or something was searching for windows files on the ubuntu box without getting past the firewall -- enbd-cstatd -- was the name. I have been using ubuntu all night so no windows stuff here funny huh
Well here is a new one for me. I have never seen a bunch of trace routes from ATT like this before :
Time:Apr 29 06:35:56 Direction: Unknown In:eth0 Out: Port:33439 Source:64.94.45.26 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:02 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:07 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:12 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:12 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:17 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:17 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:20 Direction: Unknown In:eth0 Out: Port:27358 Source:121.210.32.165 Destination:71.205.135.55 Length:59 TOS:0x00 Protocol:UDP Service:Unknown
Time:Apr 29 06:36:22 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:22 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:27 Direction: Unknown In:eth0 Out: Port:33442 Source:64.94.45.30 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
Time:Apr 29 06:36:27 Direction: Unknown In:eth0 Out: Port:33436 Source:64.94.45.18 Destination:71.205.135.55 Length:32 TOS:0x00 Protocol:UDP Service:Traceroute
I cannot figure out why that would be happening. Earlier in the day someone or something was searching for windows files on the ubuntu box without getting past the firewall -- enbd-cstatd -- was the name. I have been using ubuntu all night so no windows stuff here funny huh