查看: 361|回复: 4

发现俺的宝贝被别人攻击了,请看下日志确认下......

[复制链接]

主题

好友

1650

积分

上尉

签到天数: 136 天

[LV.7]常住居民III

发表于 2016-8-24 11:15 |显示全部楼层
TG-NET
Anywlan微信公众号
发现俺的宝贝被别人攻击了,请看下日志确认下......
难怪感觉最近路由器工作不正常.......


日志打了XX:XX:XX的网卡地址是自己知道的,认识的......

日志里面有很多俺没操作过的命令........

虽然不懂,但是有些命令看名字就感觉不对劲.......

请帮俺看下是不是有人想破坏俺的路由器启动不了......

先谢谢啦........




Aug 23 17:43:37 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 17:53:39 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 18:00:01 crond[13283]: USER admin pid 32025 cmd flashWrite
Aug 23 18:08:41 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 18:23:43 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 18:25:47 ARP new IP 192.168.22.47 Mac 5c:36:b8:XX:XX:XX
Aug 23 18:38:46 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 18:53:48 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 19:08:51 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 19:18:52 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 19:38:55 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 19:53:58 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 19:59:11 ARP new IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 23 20:03:59 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 20:05:00 ARP old IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 23 20:07:03 ARP new IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 23 20:13:16 ARP old IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 23 20:19:02 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 20:34:04 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 20:49:07 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 21:04:09 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 21:14:11 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 21:33:59 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 21:49:16 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 22:04:19 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 22:19:21 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 22:29:23 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 22:44:25 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 22:59:27 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 23:14:30 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 23:29:32 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 23:44:35 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 23 23:59:37 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 00:00:01 crond[13283]: USER admin pid 32029 cmd ipset -F sys_poe_nt_ok
Aug 24 00:00:01 crond[13283]: USER admin pid 32030 cmd ipset -F sys_notice_ok
Aug 24 00:00:01 crond[13283]: USER admin pid 32031 cmd flashWrite
Aug 24 00:10:01 crond[13283]: USER admin pid 32035 cmd uttStatsClear
Aug 24 00:12:14 ARP new IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 24 00:14:39 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 00:20:40 ARP old IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 24 00:29:42 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 00:36:28 ARP old IP 192.168.22.47 Mac 5c:36:b8:XX:XX:XX
Aug 24 00:36:58 ARP old IP 192.168.22.254 Mac 40:71:e2:XX:XX:XX
Aug 24 00:36:58 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 00:37:58 ARP old IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 00:38:35 ARP new IP 192.168.22.254 Mac 40:71:e2:XX:XX:XX
Aug 24 00:39:08 ARP new IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 00:41:59 ARP old IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 00:43:04 ARP new IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 00:44:10 ARP new IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 24 00:50:45 ARP old IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 24 00:54:46 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 00:56:52 ARP new IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 24 01:00:01 crond[13283]: USER admin pid 32063 cmd uttclearOptCnt pppoe
Aug 24 01:00:01 crond[13283]: USER admin pid 32064 cmd uttclearOptCnt webauth
Aug 24 01:00:47 ARP old IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 24 01:09:48 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 01:15:30 ARP old IP 0.0.0.0 Mac  
Aug 24 01:15:34 ARP old IP 192.168.22.254 Mac 40:71:e2:XX:XX:XX
Aug 24 01:15:45 ARP new IP 192.168.22.254 Mac 40:71:e2:XX:XX:XX
Aug 24 01:16:19 ARP old IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 01:18:38 ARP new IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 01:23:50 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 01:38:53 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 01:53:55 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 02:08:58 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 02:24:00 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 02:39:02 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 02:54:05 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 03:09:07 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 03:24:10 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 03:39:12 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 03:49:13 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 04:04:16 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 04:19:18 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 04:34:21 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 04:49:23 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 05:04:25 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 05:19:28 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 05:34:30 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 05:49:33 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 06:00:01 crond[13283]: USER admin pid 32082 cmd flashWrite
Aug 24 06:04:35 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 06:14:37 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 06:29:39 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 06:44:41 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 06:59:44 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 07:14:46 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 07:26:15 ARP new IP 192.168.22.47 Mac 5c:36:b8:XX:XX:XX
Aug 24 07:29:49 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 07:44:51 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 07:59:53 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 08:13:56 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 08:28:58 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 08:44:00 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 08:50:16 ARP old IP 192.168.22.254 Mac 40:71:e2:XX:XX:XX
Aug 24 08:50:16 ARP old IP 192.168.22.47 Mac 5c:36:b8:XX:XX:XX
Aug 24 08:50:16 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 08:50:40 ARP new IP 192.168.22.254 Mac 40:71:e2:XX:XX:XX
Aug 24 08:50:47 ARP old IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 08:52:02 ARP new IP 192.168.22.222 Mac d4:61:2e:XX:XX:XX
Aug 24 09:10:05 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 09:25:07 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 09:36:49 ARP new IP 192.168.22.47 Mac 5c:36:b8:XX:XX:XX
Aug 24 09:40:09 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 09:55:12 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 10:10:14 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 10:25:17 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa
Aug 24 10:36:32 ARP new IP 192.168.22.221 Mac 28:f3:66:XX:XX:XX
Aug 24 10:40:19 ARP old IP 239.255.255.250 Mac 01:00:5e:7f:ff:fa






主题

好友

1万

积分

上校

签到天数: 1 天

[LV.1]初来乍到

发表于 2016-8-24 11:38 手机上Anywlan 随时随地无线:http://m.Anywlan.com |显示全部楼层
路由抽风
回复

使用道具 举报

主题

好友

24

积分

新兵上阵

签到天数: 3 天

[LV.2]偶尔看看I

发表于 2016-8-24 11:44 |显示全部楼层
有人破解PIN么?
回复

使用道具 举报

主题

好友

1650

积分

上尉

签到天数: 136 天

[LV.7]常住居民III

发表于 2016-8-24 12:17 |显示全部楼层

俺的路由从来不开PIN的.....

pin俺一般会绝对关闭的......
回复

使用道具 举报

主题

好友

1534

积分

上尉

签到天数: 141 天

[LV.7]常住居民III

发表于 2016-8-24 12:32 |显示全部楼层
电脑中ARP病毒了。
回复

使用道具 举报

您需要登录后才可以回帖 登录 | 我要加入

本版积分规则

Archiver| 手机版| 中国无线门户 ( 粤ICP备11076993 )  |网站地图    小黑屋 | 免责声明

GMT+8, 2016-12-9 08:03

Powered by Discuz! X3.2

© 2003-2013 广州威思信息科技有限公司

返回顶部 返回列表