[ dava @ 25.11.2005. 10:07 ] @
Naisao sam na nesto zanimljivo kada sam napravio stroga podesavanja na Kaspersky Anti Hacker firewall-u. Blokirao sam sve portove osim sljedecih:
20 - ftp
21 - ftp data
25 - smtp
53 - dns
80 - http
110 - pop3
443 - https

Blokirao sam i ove IP adrese:
193.189.170.198
193.189.170.199
193.189.170.200

Zanima me cije su to IP adrese jer kad idem na neke sajtove recimo yahoo, white hous pa sam probao neke sajtove o oruziju firewall iskace sa porukom da je blokirao pakete koji su pokusali da odu na gore navedene adrese i to po jedno 7 - 8 zaredom. Da napomenem da nemam nikakav virus, a i to se desava jos na tri racunara na kojim smo probali kolega i ja.


Evo log file od juce:

4:13:11 PM 11/24/2005 outgoing TCP Raspudic : 2023 ev1s-64-246-11-66.ev1servers.net : 6667 444-65536 Blocked
4:13:35 PM 11/24/2005 outgoing TCP Raspudic : 2023 ev1s-64-246-11-66.ev1servers.net : 6667 444-65536 Blocked
4:13:36 PM 11/24/2005 outgoing TCP Raspudic : 2023 ev1s-64-246-11-66.ev1servers.net : 6667 444-65536 Blocked
4:13:37 PM 11/24/2005 incoming TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:13:38 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2023 ev1s-64-246-11-66.ev1servers.net : 6667 444-65536 Blocked
4:13:46 PM 11/24/2005 incoming TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:13:47 PM 11/24/2005 incoming TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:13:49 PM 11/24/2005 incoming TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:14:39 PM 11/24/2005 outgoing TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:14:39 PM 11/24/2005 outgoing TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:14:40 PM 11/24/2005 outgoing TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:14:40 PM 11/24/2005 outgoing TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:14:40 PM 11/24/2005 outgoing TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:14:40 PM 11/24/2005 outgoing TCP Raspudic : 1369 192.168.1.28 : 139 111-442 Blocked
4:19:06 PM 11/24/2005 outgoing TCP Raspudic : 2339 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:22 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2339 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:23 PM 11/24/2005 outgoing TCP Raspudic : 2340 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:23 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2340 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:31 PM 11/24/2005 outgoing TCP Raspudic : 2347 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:34 PM 11/24/2005 outgoing TCP Raspudic : 2347 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:42 PM 11/24/2005 outgoing TCP Raspudic : 2347 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:52 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2347 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:54 PM 11/24/2005 outgoing TCP Raspudic : 2361 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:55 PM 11/24/2005 outgoing TCP Raspudic : 2362 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:57 PM 11/24/2005 outgoing TCP Raspudic : 2363 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:58 PM 11/24/2005 outgoing TCP Raspudic : 2361 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:58 PM 11/24/2005 outgoing TCP Raspudic : 2362 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:19:59 PM 11/24/2005 outgoing TCP Raspudic : 2363 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:02 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2361 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:04 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2362 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:05 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2363 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:06 PM 11/24/2005 outgoing TCP Raspudic : 2375 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:09 PM 11/24/2005 outgoing TCP Raspudic : 2375 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:15 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2375 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:20 PM 11/24/2005 outgoing TCP Raspudic : 2386 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:23 PM 11/24/2005 outgoing TCP Raspudic : 2386 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:29 PM 11/24/2005 outgoing TCP Raspudic : 2386 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:20:41 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2386 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:22:46 PM 11/24/2005 outgoing TCP Raspudic : 2443 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:22:49 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2443 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:22:51 PM 11/24/2005 outgoing TCP Raspudic : 2444 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:22:54 PM 11/24/2005 outgoing TCP Raspudic : 2444 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:23:00 PM 11/24/2005 outgoing TCP Raspudic : 2444 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:23:03 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2444 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:23:04 PM 11/24/2005 outgoing TCP Raspudic : 2445 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:23:07 PM 11/24/2005 outgoing TCP Raspudic : 2445 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:23:11 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2445 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:25:40 PM 11/24/2005 outgoing TCP Raspudic : 2472 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:25:40 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2472 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:25:42 PM 11/24/2005 outgoing TCP Raspudic : 2475 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:25:45 PM 11/24/2005 outgoing TCP Raspudic : 2475 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:25:51 PM 11/24/2005 outgoing TCP Raspudic : 2475 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:25:53 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2475 193.189.170.199 : HTTP (80) zajeb1 Blocked
4:28:40 PM 11/24/2005 incoming TCP Raspudic : 2374 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:37 PM 11/24/2005 incoming TCP Raspudic : 2374 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:37 PM 11/24/2005 incoming TCP Raspudic : 2374 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:39 PM 11/24/2005 incoming TCP Raspudic : 2374 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:43 PM 11/24/2005 incoming TCP Raspudic : 2395 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:44 PM 11/24/2005 incoming TCP Raspudic : 2395 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:44 PM 11/24/2005 incoming TCP Raspudic : 2396 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:44 PM 11/24/2005 incoming TCP Raspudic : 2395 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:44 PM 11/24/2005 incoming TCP Raspudic : 2371 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:29:51 PM 11/24/2005 incoming TCP Raspudic : 2374 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:30:30 PM 11/24/2005 incoming TCP Raspudic : 2396 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:30:32 PM 11/24/2005 incoming TCP Raspudic : 2395 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:30:32 PM 11/24/2005 incoming TCP Raspudic : 2371 193.189.170.200 : HTTP (80) zajeb2 Blocked
4:30:58 PM 11/24/2005 incoming TCP Raspudic : 2396 193.189.170.200 : HTTP (80) zajeb2 Blocked
5:38:34 PM 11/24/2005 outgoing TCP Raspudic : 2913 193.189.170.199 : HTTP (80) zajeb1 Blocked
5:38:50 PM 11/24/2005 outgoing TCP Raspudic : 2913 193.189.170.199 : HTTP (80) zajeb1 Blocked
5:38:51 PM 11/24/2005 outgoing TCP Raspudic : 2913 193.189.170.199 : HTTP (80) zajeb1 Blocked
5:38:53 PM 11/24/2005 outgoing TCP 0.0.0.0 : 2913 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:34:39 PM 11/24/2005 outgoing TCP Raspudic : 4560 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:35:34 PM 11/24/2005 outgoing TCP Raspudic : 4560 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:35:34 PM 11/24/2005 outgoing TCP Raspudic : 4560 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:35:35 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4560 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:35:35 PM 11/24/2005 outgoing TCP Raspudic : 4566 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:35:36 PM 11/24/2005 outgoing TCP Raspudic : 4566 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:35:36 PM 11/24/2005 outgoing TCP Raspudic : 4566 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:35:37 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4566 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:36:01 PM 11/24/2005 outgoing TCP Raspudic : 4576 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:36:04 PM 11/24/2005 outgoing TCP Raspudic : 4576 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:36:10 PM 11/24/2005 outgoing TCP Raspudic : 4576 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:36:22 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4576 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:36:23 PM 11/24/2005 outgoing TCP Raspudic : 4579 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:36:25 PM 11/24/2005 outgoing TCP Raspudic : 4579 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:36:31 PM 11/24/2005 outgoing TCP Raspudic : 4579 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:36:38 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4579 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:36:39 PM 11/24/2005 outgoing TCP Raspudic : 4583 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:36:42 PM 11/24/2005 outgoing TCP Raspudic : 4583 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:36:48 PM 11/24/2005 outgoing TCP Raspudic : 4583 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:37:00 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4583 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:37:16 PM 11/24/2005 outgoing TCP Raspudic : 4587 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:37:17 PM 11/24/2005 outgoing TCP Raspudic : 4587 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:37:18 PM 11/24/2005 outgoing TCP Raspudic : 4587 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:37:21 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4587 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:37:22 PM 11/24/2005 outgoing TCP Raspudic : 4588 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:37:24 PM 11/24/2005 outgoing TCP Raspudic : 4588 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:37:30 PM 11/24/2005 outgoing TCP Raspudic : 4588 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:37:32 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4588 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:38:11 PM 11/24/2005 outgoing TCP Raspudic : 4683 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:38:50 PM 11/24/2005 outgoing TCP Raspudic : 4683 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:38:51 PM 11/24/2005 outgoing TCP Raspudic : 4683 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:38:52 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4683 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:38:52 PM 11/24/2005 outgoing TCP Raspudic : 4697 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:38:53 PM 11/24/2005 outgoing TCP Raspudic : 4697 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:38:53 PM 11/24/2005 outgoing TCP Raspudic : 4697 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:38:54 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4697 193.189.170.199 : HTTP (80) zajeb1 Blocked
7:38:54 PM 11/24/2005 outgoing TCP Raspudic : 4698 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:38:56 PM 11/24/2005 outgoing TCP Raspudic : 4698 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:39:02 PM 11/24/2005 outgoing TCP Raspudic : 4698 193.189.170.198 : HTTP (80) zajeb2 Blocked
7:39:14 PM 11/24/2005 outgoing TCP 0.0.0.0 : 4698 193.189.170.198 : HTTP (80) zajeb2 Blocked
8:02:42 PM 11/24/2005 outgoing TCP Raspudic : 1108 193.189.170.199 : HTTP (80) zajeb1 Blocked
8:03:12 PM 11/24/2005 outgoing TCP Raspudic : 1108 193.189.170.199 : HTTP (80) zajeb1 Blocked
8:04:13 PM 11/24/2005 outgoing TCP Raspudic : 1108 193.189.170.199 : HTTP (80) zajeb1 Blocked
8:04:14 PM 11/24/2005 outgoing TCP 0.0.0.0 : 1108 193.189.170.199 : HTTP (80) zajeb1 Blocked
8:04:14 PM 11/24/2005 outgoing TCP Raspudic : 1109 193.189.170.200 : HTTP (80) zajeb2 Blocked
8:04:14 PM 11/24/2005 outgoing TCP Raspudic : 1109 193.189.170.200 : HTTP (80) zajeb2 Blocked
8:04:14 PM 11/24/2005 outgoing TCP Raspudic : 1109 193.189.170.200 : HTTP (80) zajeb2 Blocked
8:04:15 PM 11/24/2005 outgoing TCP 0.0.0.0 : 1109 193.189.170.200 : HTTP (80) zajeb2 Blocked

Da li ste vi imali ovakvo iskustvo?
[ malisha @ 25.11.2005. 11:06 ] @
LOL2

ti si prika blokirao svog provajdera... SiOL Internet d.o.o. ... one 3 IP adrese su iz njihovog opsega

zato i ne mozes nigde da odes preko tih adresa na portu 80... pobogu citaj sopstveni log

[ dava @ 25.11.2005. 14:07 ] @
Pa sta mislis kako bi sad ovo pisao da sam blokirao provajdera. Da napomenem da bez problema surfam, a da mi firewall, na nekim sajtovima blokira pakete koji idu na te IP adrese.
Meni je poznata IP provajdera jer firma u kojoj radim izmedju ostalog je i provajder.
[ kv66 @ 26.11.2005. 13:31 ] @
Citat:
Zanima me cije su to IP adrese

Google bato,pa ukucaj DNS stuff ili WHOIS.... npr.ovaj 193.189.170.198 je iz LJubljane..

[Ovu poruku je menjao kv66 dana 26.11.2005. u 14:34 GMT+1]
[ dava @ 26.11.2005. 16:36 ] @
Ok to sam saznao, ali nisam kakvi to paketi pokusavaju otici tamo. Znaci blokirani su, a surfanje nije otezano.
[ kv66 @ 27.11.2005. 13:33 ] @
Citat:
kakvi to paketi pokusavaju otici tamo.

verovatno nikakvi...samo ti ispipavaju portove...ako ti firewall radi dobro-kuliraj...
[ Shadowed @ 27.11.2005. 14:29 ] @
Ako te bas interesuje kakvi su to paketi, neku knjigu o TCP/IP-u u ruke i sniffer pod misa i samo napred :).
[ dava @ 30.11.2005. 15:45 ] @
Hvala na savjetu ali nemam slobodnog vremena za tako nesto. Zbunjuje me to sto su IP yahoo-a 195.198.214.128 - 195.198.214.255, a paketi pokusavaju otici na 193.189.170.199. Sve ih bokiram pa se yahoo zatim otvori.
To mi je bilo malo cudno, da li je to OK?
[ AMD guy @ 20.11.2009. 10:02 ] @
Citat:
Zbunjuje me to sto su IP yahoo-a 195.198.214.128 - 195.198.214.255, a paketi pokusavaju otici na 193.189.170.199. Sve ih bokiram pa se yahoo zatim otvori.



I mene, ti bi trebalo preko svog ISP-a da pristupas bilo kom sajtu. Znaci Ti -> ISP -> Yahoo, zar nije tako?

Edit:
Sorry nisam gledao datum