Help, ik wordt ge DDOST volgens mij

anoniempc · 24 okt 2012

Hallo,

Sinds kort heb ik regelmatig dat ik helemaal het internet niet meer op kom, de verbinding steeds weg valt.
Wat kan ik hier tegen doen? Iemand en/of meerder personen zitten volgens mij hun tijd te verdoen met mijn netwerk te flooden. Kan ik ze terug 'flooden'?
Hoe kom ik er achter wie dit is, hoe traceer ik diegene?
De router geeft heel veel errors aan...... hierbij de recente logs:

Oct 24 18:12:04 IDS dos parser : udp flood (1 of 1) : 145.7.92.196 10.152.174.161 0200 UDP 34938->18848

Oct 24 18:11:57 IDS fragment parser : fragment out-of-order (1 of 1197) : 117.55.235.116 <EIGEN IP> 1500 UDP 53->7833 frag 59045:1480@0+

Oct 24 18:11:57 IDS fragment parser : fragment sweep (1 of 1) : 109.232.224.122 <EIGEN IP> 0679 UDP frag 25878:659@1480

Oct 24 18:11:17 FIREWALL icmp check (1 of 3006): Protocol: ICMP Src ip: 115.249.141.73 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 18:10:57 IDS fragment parser : fragment out-of-order (1 of 1017) : 121.80.6.230 <EIGEN IP> 1492 UDP 53->59818 frag 47779:1472@0+

Oct 24 18:10:57 IDS fragment parser : fragment sweep (1 of 1) : 121.80.6.230 <EIGEN IP> 0028 UDP frag 47788:8@1472+

Oct 24 18:10:16 FIREWALL icmp check (1 of 7799): Protocol: ICMP Src ip: 111.165.46.47 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 18:09:20 IDS fragment parser : fragment out-of-order (1 of 1025) : 110.53.95.11 <EIGEN IP> 1500 UDP 53->47546 frag 25745:1480@0+

Oct 24 18:09:20 IDS fragment parser : fragment sweep (1 of 1) : 115.146.25.72 <EIGEN IP> 1500 UDP 53->42106 frag 27033:1480@0+

Oct 24 18:09:15 FIREWALL icmp check (1 of 8048): Protocol: ICMP Src ip: 113.97.89.199 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 18:08:19 IDS fragment parser : fragment out-of-order (1 of 1026) : 112.220.236.211 <EIGEN IP> 1500 UDP 53->2691 frag 57335:1480@0+

Oct 24 18:08:19 IDS fragment parser : fragment sweep (1 of 1) : 122.155.3.189 <EIGEN IP> 0679 UDP frag 14941:659@1480

Oct 24 18:08:14 FIREWALL icmp check (1 of 8663): Protocol: ICMP Src ip: 114.234.132.4 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 18:07:22 IDS rate parser : icmp rate limiting (1 of 1) : 116.231.112.116 <EIGEN IP> 0056 ICMP Destination Unreachable (Port Unreacheable)

Oct 24 18:07:18 IDS fragment parser : fragment out-of-order (1 of 953) : 133.6.221.49 <EIGEN IP> 1500 UDP 53->3144 frag 10783:1480@0+

Oct 24 18:07:18 IDS fragment parser : fragment sweep (1 of 1) : 123.65.163.14 <EIGEN IP> 1500 UDP 53->51255 frag 58988:1480@0+

Oct 24 18:07:13 FIREWALL icmp check (1 of 7724): Protocol: ICMP Src ip: 119.141.28.4 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 18:06:18 IDS fragment parser : fragment out-of-order (1 of 1118) : 115.146.25.73 <EIGEN IP> 1500 UDP 53->37231 frag 22376:1480@0+

Oct 24 18:06:17 IDS fragment parser : fragment sweep (1 of 1) : 108.163.180.82 <EIGEN IP> 1500 UDP 53->4261 frag 49996:1480@0+

Oct 24 18:06:12 FIREWALL icmp check (1 of 7179): Protocol: ICMP Src ip: 116.115.222.118 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 18:05:46 LOGIN User kpn logged in on [HTTP] (from 192.168.1.74)

Oct 24 18:05:17 IDS dos parser : icmp unreachable storm (1 of 1) : 119.141.28.4 <EIGEN IP> 0084 ICMP Destination Unreachable (Port Unreacheable)

Oct 24 18:05:17 IDS fragment parser : fragment out-of-order (1 of 1) : 115.84.169.19 <EIGEN IP> 1500 UDP 53->17888 frag 51252:1480@0+

Oct 24 18:05:17 IDS fragment parser : fragment sweep (1 of 1) : 128.177.25.45 <EIGEN IP> 1500 UDP 53->13586 frag 12037:1480@0+

Oct 24 18:05:12 FIREWALL icmp check (1 of 1): Protocol: ICMP Src ip: 95.23.31.140 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Host Unreacheable

Oct 24 18:03:27 LOGIN User kpn logged in on [HTTP] (from 192.168.1.71)

Oct 24 18:01:43 CONFIGURATION saved by TR69

Oct 24 18:00:36 [CWMP: 0:01:32.490] waiting 0 seconds for random boot delay

Oct 24 18:00:24 SNTP Synchronised to server: 212.7.192.147

Oct 24 18:00:24 SNTP Systemtime update: time setting 00:01:21 > new time setting: 18:00:24

00:01:20 (since last boot) SNTP Unable to contact server: 198.18.1.12

00:01:02 (since last boot) PPP link up (VoIP) [10.152.174.161]

00:01:02 (since last boot) PPP PAP Authenticate Ack received

00:01:02 (since last boot) PPP link up (Internet) [<EIGEN IP>]

00:01:02 (since last boot) FIREWALL event (1 of 6): deleted rules

Mvg,

anoniempc · 24 okt 2012

Een van de ip's is volgens mij gehost bij de provider Serverboost.

anoniempc · 24 okt 2012

Ben er weer, werd weer ge DDOST, dit maal met de volgende log:

Oct 24 19:06:45 LOGIN User kpn logged in on [HTTP] (from 192.168.1.74)

Oct 24 19:06:44 IDS fragment parser : fragment sweep (1 of 1) : 122.1.44.80 <EIGEN IP> 0330 UDP frag 45996:310@1432

Oct 24 19:06:44 FIREWALL icmp check (1 of 5779): Protocol: ICMP Src ip: 115.117.11.36 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 19:06:44 IDS fragment parser : fragment out-of-order (1 of 1164) : 122.1.44.80 <EIGEN IP> 1452 UDP 53->23789 frag 45988:1432@0+

Oct 24 19:05:54 IDS dos parser : icmp unreachable storm (1 of 1) : 125.38.184.69 <EIGEN IP> 0056 ICMP Destination Unreachable (Port Unreacheable)

Oct 24 19:05:44 FIREWALL icmp check (1 of 1): Protocol: ICMP Src ip: 112.229.204.179 Dst ip: <EIGEN IP> Type: Destination Unreachable Code: Port Unreacheable

Oct 24 19:05:43 IDS fragment parser : fragment sweep (1 of 1) : 121.80.6.230 <EIGEN IP> 0028 UDP frag 491:8@1472+

Oct 24 19:05:43 IDS fragment parser : fragment out-of-order (1 of 197) : 121.80.6.230 <EIGEN IP> 1492 UDP 53->50231 frag 483:1472@0+

contrazoom · 24 okt 2012

ik denk dat je daar weinig zal aan kunnen doen. Heb je al eens contact genomen met je ISP hierover? Ik heb een aantal van die IP-adressen op herkomst gecontroleerd en die zijn van over heel de wereld afkomstig (China en Japan komen nogal veel voor).
Andere bedenkingen die ik me ff maak:
- Host je soms een server op je netwerk of heb je bepaalde poorten geforward?
- In sommige routers kan je een DDoS bescherming opzetten. Ondersteunt jouw router ook iets dergelijks?

anoniempc · 24 okt 2012

Ik heb een THOMSON SpeedTouch 780, geen forwards, en ook geen server. Het is gewoon een thuis netwerk.
We hebben ongeveer een jaar geleden wel een nieuwe router van de KPN gekregen, maar die heb ik nog niet geinstalleerd.

contrazoom · 25 okt 2012

ik blijf bij mijn eerste advies om de helpdesk van je provider (KPN) te contacteren. Om eea uit te sluiten zou ik wel een grondige antivirus scan doen op je pc/laptops in veilige modus en ook een anti-malware scan (zoals een malware bytes).
Op andere fora kwam ik samengevat nog andere personen met dit probleen tegen. Volgens de specs biedt de Speedtouch IDS en bescherming tegen DDOS. De IDS settings pagina wordt echter in geen enkele manual getoond, ik heb er dus het raden naar hoe deze eruit ziet. Het lijkt alsof je ge-DDOSt wordt maar volgens sommigen ligt dit juist aan het feit dat je die IDS feature niet kan uitschakelen omdat KPN dit toestel serieus dichtgetimmerd heeft.
Afhankelijk vh advies van je ISP kan je overwegen om die nieuwe router in te schakelen en dan zien of het probleem zich nog voordoet?
Anderszijds als die nieuwe router zo'n "witte" V8 Experia box is, lees dan ook maar even door andere posts op dit forum want daar blijken ook heel wat problemen mee te zijn.

anoniempc · 25 okt 2012

ik zal eerst eens de nieuwe experia box instaleren, en als het probleem zich dan nog voordoet ff contact opnemen met de kpn.
Het internet is er sinds gisteren nog niet weer uitgevlogen, maar ik zie wel in mn logs dat iemand nog steeds probeert in te breken...... maar het internet doet het wel gewoon..... vreemd, hoe zou dit komen? Het internet zou er dan toch uit moeten vliegen?

anoniempc · 25 okt 2012

Kan ik deze DDOS ip's ook bannen?

anoniempc · 26 okt 2012

oke, nieuwe router geinstalleerd. Het internet vliegt er nu gelukkig niet meer uit, zou de nieuwe router een betere firewall hebben?
Wie weet wat deze logs inhouden? Worden we nog steeds geDDOST?

Zie onderstaande:

Code:

10/26/2012  19:49:45 **UDP flood** 192.168.2.3, 13575->> 77.160.154.170, 36077 (from ATM1 Outbound)
10/26/2012  19:49:45 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:49:45 **UDP flood** 192.168.2.3, 13575->> 189.127.191.43, 28019 (from ATM1 Outbound)
10/26/2012  19:49:45 **UDP flood** 192.168.2.3, 13575->> 222.108.176.189, 54500 (from ATM1 Outbound)
10/26/2012  19:49:45 **UDP flood** 192.168.2.3, 13575->> 78.29.159.113, 38119 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 94.212.69.54, 49231->> <EIGEN IP>, 59201 (from ATM1 Inbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 56064->> 187.111.94.185, 55056 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 89.211.194.183, 48871 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 37.128.152.83, 28783 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 78.215.136.47, 51413 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 59194->> 46.116.40.36, 56506 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 59194->> 10.0.0.5, 56506 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 24.136.8.144, 52726->> <EIGEN IP>, 59213 (from ATM1 Inbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 82.139.71.162, 39617 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 98.71.216.36, 55544 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 95.78.43.138, 11492 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 86.85.12.173, 34981 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 88.27.97.91, 49631 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 85.69.246.128, 9501 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 71.17.185.120, 39344 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 178.118.149.46, 60654 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 82.27.219.54, 38995 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 94.170.135.140, 37433 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 87.251.145.86, 22246 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 93.157.161.147, 14765 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 89.147.241.214, 13457 (from ATM1 Outbound)
10/26/2012  19:49:44 **UDP flood** 192.168.2.3, 13575->> 5.187.81.86, 11789 (from ATM1 Outbound)
10/26/2012  19:49:43 **UDP flood** 192.168.2.3, 56064->> 187.111.94.185, 55056 (from ATM1 Outbound)
10/26/2012  19:49:43 **UDP flood** 46.233.193.192, 45844->> <EIGEN IP>, 13612 (from ATM1 Inbound)
10/26/2012  19:49:43 **UDP flood** 192.168.2.3, 13575->> 92.98.133.50, 38151 (from ATM1 Outbound)
10/26/2012  19:49:43 **UDP flood** 192.168.2.3, 13575->> 95.188.15.4, 6881 (from ATM1 Outbound)
10/26/2012  19:49:43 **UDP flood** 192.168.2.3, 13575->> 186.56.240.117, 21341 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 59194->> 83.49.248.188, 51058 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 96.26.164.45, 1024->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:49:34 **UDP flood** 37.203.133.17, 33482->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:49:34 **UDP flood** 65.94.98.229, 35621->> <EIGEN IP>, 13892 (from ATM1 Inbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 81.88.219.19, 6881 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 123.248.174.184, 50846 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 24.4.109.93, 7777 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 177.41.27.141, 23677 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 78.14.87.200, 42766 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 175.137.167.96, 59317 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 109.87.227.69, 10833 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 59.180.19.64, 10007 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 88.162.48.1, 51413 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 83.86.101.72, 51413 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 77.78.209.178, 49063 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 86.85.212.77, 32698 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 75.92.249.80, 52888 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 217.120.24.7, 51473 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 84.83.153.43, 58273 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> <EIGEN IP>, 13575 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 61.91.88.99, 16883 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 95.153.66.36, 6881 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 84.212.229.138, 59867 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 81.242.71.250, 49161 (from ATM1 Outbound)
10/26/2012  19:49:34 **UDP flood** 192.168.2.3, 13575->> 86.76.52.76, 34352 (from ATM1 Outbound)
10/26/2012  19:49:33 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:49:33 **UDP flood** 192.168.2.3, 59194->> 84.3.249.236, 60676 (from ATM1 Outbound)
10/26/2012  19:49:33 **UDP flood** 84.3.249.236, 60676->> <EIGEN IP>, 59194 (from ATM1 Inbound)
10/26/2012  19:49:33 **UDP flood** 67.80.28.96, 62299->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:49:33 **UDP flood** 192.168.2.3, 13575->> 85.230.24.225, 32237 (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 89.99.239.42, 54323->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:49:24 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 78.8.154.73, 63512->> <EIGEN IP>, 59194 (from ATM1 Inbound)
10/26/2012  19:49:24 **UDP flood** 145.236.105.239, 35592->> <EIGEN IP>, 13603 (from ATM1 Inbound)
10/26/2012  19:49:24 **UDP flood** 192.168.2.3, 13575->> 144.64.45.158, 10601 (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 192.168.2.3, 13575->> 69.254.232.48, 49582 (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 192.168.2.3, 59194->> 37.142.142.131, 55330 (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 192.168.2.3, 13575->> 79.37.71.94, 32479 (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 192.168.2.3, 13575->> 81.186.244.79, 46096 (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 192.168.2.3, 13575->> 79.68.105.54, 43496 (from ATM1 Outbound)
10/26/2012  19:49:24 **UDP flood** 192.168.2.3, 59194->> 46.176.161.159, 58263 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 78.231.145.64, 51413 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 82.231.6.48, 51413 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 82.240.19.43, 51413 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 78.29.70.72, 63014 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 31.170.150.210, 6881 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 31.185.65.197, 49058 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 182.101.24.83, 16001 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 62.77.221.99, 19040 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 142.161.120.62, 51413 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 81.109.189.240, 28451 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:49:23 **UDP flood** 192.168.2.3, 13575->> 84.195.50.110, 11757 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 75.84.188.62, 45685 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 78.163.117.128, 60004 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 46.173.3.159, 18002 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 81.233.55.197, 11487 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 68.5.122.72, 24874 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 188.232.0.235, 49001 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 77.36.79.55, 61702 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 176.214.133.223, 1026 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 186.244.13.85, 27311 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 75.157.138.121, 62348 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 84.228.120.242, 31749 (from ATM1 Outbound)
10/26/2012  19:49:17 **UDP flood** 192.168.2.3, 13575->> 31.181.114.204, 13418 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 59194->> 117.212.64.166, 62099 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 59194->> 78.84.12.136, 65381 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 59194->> 192.168.0.103, 65381 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 94.103.57.109, 49001 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 71.237.212.202, 58987->> <EIGEN IP>, 13830 (from ATM1 Inbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 78.8.154.73, 13735 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 57895->> 189.162.247.61, 64008 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 81.205.231.233, 60635 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 94.211.148.209, 15206 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 89.171.250.138, 7072 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 83.27.14.150, 23847 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 92.118.191.93, 43303 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 79.154.24.161, 44543 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 91.122.31.7, 48651 (from ATM1 Outbound)
10/26/2012  19:49:16 **UDP flood** 192.168.2.3, 13575->> 186.78.75.36, 55051 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 212.2.129.162, 38673 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 176.44.28.203, 22520 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 50.148.156.74, 60007 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 62.107.79.226, 6881 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 69.121.187.35, 53788->> <EIGEN IP>, 59198 (from ATM1 Inbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 189.34.103.61, 27769 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 93.79.168.202, 6881 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 77.76.184.226, 24968 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 93.79.134.227, 6881 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 190.87.186.127, 16569 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 83.60.196.187, 47650 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 84.29.216.172, 13657 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 84.28.25.119, 23055 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 83.163.231.33, 42470 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 82.168.130.97, 51414 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 92.114.193.7, 49001 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 82.32.19.31, 55368 (from ATM1 Outbound)
10/26/2012  19:49:10 **UDP flood** 192.168.2.3, 13575->> 95.68.203.48, 35125 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 78.84.12.136, 65381->> <EIGEN IP>, 59194 (from ATM1 Inbound)
10/26/2012  19:49:09 **UDP flood** 206.188.82.113, 57198->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 59194->> 181.28.233.200, 4641 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 188.218.205.83, 1040->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 59194->> 189.162.247.61, 61475 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 13575->> 88.249.209.123, 39135 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 13575->> 84.52.148.88, 32691 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 13575->> 81.165.107.197, 44788 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 13575->> 46.187.100.84, 18079 (from ATM1 Outbound)
10/26/2012  19:49:09 **UDP flood** 192.168.2.3, 13575->> 177.98.151.76, 44929 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 124.120.192.174, 11104 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 118.167.148.11, 11075->> <EIGEN IP>, 13627 (from ATM1 Inbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 80.95.87.149, 43314 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 95.32.48.105, 14271 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 83.85.200.28, 17178 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 83.84.187.188, 60944 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 213.10.121.75, 49139 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 202.103.142.237, 11659 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 190.249.60.128, 55994 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 84.80.236.187, 10088 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 84.24.98.119, 29020 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 62.195.242.154, 43524 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 145.53.150.199, 48343 (from ATM1 Outbound)
10/26/2012  19:49:02 **UDP flood** 192.168.2.3, 13575->> 84.29.216.172, 13657 (from ATM1 Outbound)
10/26/2012  19:49:01 **UDP flood** 192.168.2.3, 13575->> 80.31.160.111, 19747 (from ATM1 Outbound)
10/26/2012  19:49:01 **UDP flood** 192.168.2.3, 13575->> 80.61.87.13, 53378 (from ATM1 Outbound)
10/26/2012  19:49:01 **UDP flood** 192.168.2.3, 13575->> 46.159.95.84, 55699 (from ATM1 Outbound)
10/26/2012  19:49:01 **UDP flood** 192.168.2.3, 13575->> 49.244.177.141, 11886 (from ATM1 Outbound)
10/26/2012  19:49:01 **UDP flood** 192.168.2.3, 13575->> 83.149.3.253, 6290 (from ATM1 Outbound)
10/26/2012  19:48:56 **UDP flood** 151.74.44.180, 27139->> <EIGEN IP>, 59194 (from ATM1 Inbound)
10/26/2012  19:48:56 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:48:56 **UDP flood** 192.168.2.3, 13575->> 84.28.25.119, 23055 (from ATM1 Outbound)
10/26/2012  19:48:56 **UDP flood** 192.168.2.3, 13575->> 84.83.82.178, 40416 (from ATM1 Outbound)
10/26/2012  19:48:56 **UDP flood** 192.168.2.3, 13575->> 213.93.177.170, 17295 (from ATM1 Outbound)
10/26/2012  19:48:56 **UDP flood** 192.168.2.3, 13575->> 89.99.84.79, 62844 (from ATM1 Outbound)
10/26/2012  19:48:56 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 82.240.5.31, 51755 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 186.71.1.155, 64266 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 192.168.0.101, 64266 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 97.77.82.31, 54020 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 172.16.0.2, 54020 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 59194->> 84.229.129.82, 51621 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 13575->> 181.28.96.55, 43869 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 13575->> 212.70.203.121, 28280 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 13575->> 86.121.79.2, 53910 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 13575->> 180.234.89.98, 63387 (from ATM1 Outbound)
10/26/2012  19:48:55 **UDP flood** 192.168.2.3, 13575->> 86.148.146.199, 31519 (from ATM1 Outbound)
10/26/2012  19:48:54 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:54 **UDP flood** 192.168.2.3, 59194->> 46.176.161.159, 58263 (from ATM1 Outbound)
10/26/2012  19:48:54 **UDP flood** 46.176.161.159, 58263->> <EIGEN IP>, 59194 (from ATM1 Inbound)
10/26/2012  19:48:54 **UDP flood** 192.168.2.3, 13575->> 84.2.200.27, 1034 (from ATM1 Outbound)
10/26/2012  19:48:54 **UDP flood** 192.168.2.3, 13575->> 24.150.234.130, 55968 (from ATM1 Outbound)
10/26/2012  19:48:54 **UDP flood** 192.168.2.3, 13575->> 217.202.245.146, 11594 (from ATM1 Outbound)
10/26/2012  19:48:54 **UDP flood** 192.168.2.3, 13575->> 37.61.61.140, 16047 (from ATM1 Outbound)
10/26/2012  19:48:54 **UDP flood** 192.168.2.3, 13575->> 176.45.157.102, 24820 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 82.171.224.65, 54292 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 77.229.140.41, 5525 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 77.248.116.127, 53550 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 81.198.66.71, 27807 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 82.171.45.24, 47063 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 143.238.25.232, 15475 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 178.45.61.133, 21901 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 101.108.77.146, 14563 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 190.101.41.138, 57550 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 88.89.249.89, 14083 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 151.40.85.107, 43211 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 77.101.112.89, 37300 (from ATM1 Outbound)
10/26/2012  19:48:49 **UDP flood** 192.168.2.3, 13575->> 97.77.82.31, 16447 (from ATM1 Outbound)
10/26/2012  19:48:48 **UDP flood** 192.168.2.3, 13575->> 177.103.142.76, 22768 (from ATM1 Outbound)
10/26/2012  19:48:48 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:48 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:48 **UDP flood** 192.168.2.3, 59194->> 84.229.129.82, 51621 (from ATM1 Outbound)
10/26/2012  19:48:48 **UDP flood** 192.168.2.4, 1026->> 172.16.1.1, 28007 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 110.165.190.45, 12794->> <EIGEN IP>, 13597 (from ATM1 Inbound)
10/26/2012  19:48:42 **UDP Flood Stop**  (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 122.170.84.253, 1027->> <EIGEN IP>, 62215 (from ATM1 Inbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 190.129.232.109, 1028 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 88.178.223.1, 51413 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 83.149.21.57, 29097 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 109.93.23.159, 20248 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 83.212.228.20, 22301 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 151.45.14.199, 21598 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 89.175.213.212, 36943 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 94.75.79.171, 54978 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 59194->> 122.170.84.253, 1026 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 89.99.204.157, 20406 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 13575->> 66.110.241.244, 24961 (from ATM1 Outbound)
10/26/2012  19:48:42 **UDP flood** 192.168.2.3, 59194->> 92.22.150.47, 62776 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 58967->> 80.200.4.47, 60419 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 80.200.4.47, 60419->> <EIGEN IP>, 58967 (from ATM1 Inbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 13575->> 206.188.82.113, 57198 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 13575->> 188.55.107.118, 40577 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 13575->> 201.246.2.176, 24296 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 13575->> 205.213.22.2, 14233 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 13575->> 178.117.8.50, 17111 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 13575->> 62.163.46.108, 37380 (from ATM1 Outbound)
10/26/2012  19:48:41 **UDP flood** 192.168.2.3, 13575->> 213.242.47.142, 50143 (from ATM1 Outbound)
10/26/2012  19:48:40 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:40 **UDP flood** 92.244.156.204, 18807->> 192.168.2.3, 13575 (from ATM1 Inbound)
10/26/2012  19:48:40 **UDP flood** 192.168.2.3, 13575->> <EIGEN IP>, 13575 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 187.61.208.38, 1047->> <EIGEN IP>, 13816 (from ATM1 Inbound)
10/26/2012  19:48:39 **UDP flood** 187.61.208.38, 1047->> <EIGEN IP>, 13816 (from ATM1 Inbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 192.168.2.3, 13575->> 157.157.119.210, 46941 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP flood** 192.168.2.3, 13575->> 157.157.119.210, 46941 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 192.168.2.3, 13575->> 77.251.101.74, 55480 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP flood** 192.168.2.3, 13575->> 77.251.101.74, 55480 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.169.152.30, 46034 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP flood** 192.168.2.3, 13575->> 82.169.152.30, 46034 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 192.168.2.3, 59194->> 92.22.150.47, 62776 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP flood** 192.168.2.3, 59194->> 92.22.150.47, 62776 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 192.168.2.3, 13575->> 89.99.204.157, 20406 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP flood** 192.168.2.3, 13575->> 89.99.204.157, 20406 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 192.168.2.3, 13575->> 62.163.46.108, 37380 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP flood** 192.168.2.3, 13575->> 62.163.46.108, 37380 (from ATM1 Outbound)
10/26/2012  19:48:39 **UDP Flood (per Min)** 190.12.106.242, 49342->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:48:39 **UDP flood** 190.12.106.242, 49342->> <EIGEN IP>, 13575 (from ATM1 Inbound)
10/26/2012  19:48:38 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP Flood (per Min)** 192.168.2.4, 1026->> 172.16.1.1, 28007 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP flood** 192.168.2.4, 1026->> 172.16.1.1, 28007 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP Flood (per Min)** 192.168.2.3, 13575->> 201.246.2.176, 24296 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP flood** 192.168.2.3, 13575->> 201.246.2.176, 24296 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP Flood (per Min)** 192.168.2.3, 13575->> 188.55.107.118, 40577 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP flood** 192.168.2.3, 13575->> 188.55.107.118, 40577 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP Flood (per Min)** 192.168.2.3, 13575->> 206.188.82.113, 57198 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP flood** 192.168.2.3, 13575->> 206.188.82.113, 57198 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP Flood (per Min)** 192.168.2.3, 13575->> 186.23.247.74, 46208 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP flood** 192.168.2.3, 13575->> 186.23.247.74, 46208 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP Flood (per Min)** 192.168.2.3, 13575->> 182.183.140.225, 12730 (from ATM1 Outbound)
10/26/2012  19:48:38 **UDP flood** 192.168.2.3, 13575->> 182.183.140.225, 12730 (from ATM1 Outbound)
10/26/2012  19:48:37 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:37 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:37 **UDP Flood (per Min)** 192.168.2.3, 13575->> 174.48.62.30, 18903 (from ATM1 Outbound)
10/26/2012  19:48:37 **UDP flood** 192.168.2.3, 13575->> 174.48.62.30, 18903 (from ATM1 Outbound)
10/26/2012  19:48:37 **UDP Flood (per Min)** 192.168.2.3, 13575->> 189.122.165.8, 29135 (from ATM1 Outbound)
10/26/2012  19:48:37 **UDP flood** 192.168.2.3, 13575->> 189.122.165.8, 29135 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP Flood (per Min)** 192.168.2.3, 59194->> 84.229.129.82, 51621 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP flood** 192.168.2.3, 59194->> 84.229.129.82, 51621 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP Flood (per Min)** 192.168.2.3, 13575->> <EIGEN IP>, 13575 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP flood** 192.168.2.3, 13575->> <EIGEN IP>, 13575 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:36 **UDP flood** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP Flood (per Min)** 192.168.2.3, 13575->> 79.131.189.82, 31396 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP flood** 192.168.2.3, 13575->> 79.131.189.82, 31396 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP Flood (per Min)** 192.168.2.3, 13575->> 186.23.247.74, 46208 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP flood** 192.168.2.3, 13575->> 186.23.247.74, 46208 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP Flood (per Min)** 192.168.2.3, 13575->> 182.183.140.225, 12730 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP flood** 192.168.2.3, 13575->> 182.183.140.225, 12730 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP Flood (per Min)** 192.168.2.3, 13575->> 174.58.76.62, 48945 (from ATM1 Outbound)
10/26/2012  19:48:35 **UDP flood** 192.168.2.3, 13575->> 174.58.76.62, 48945 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.237.170.210, 10956 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP flood** 192.168.2.3, 13575->> 82.237.170.210, 10956 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP Flood (per Min)** 192.168.2.3, 13575->> 217.122.109.109, 16479 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP flood** 192.168.2.3, 13575->> 217.122.109.109, 16479 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP Flood (per Min)** 192.168.2.3, 13575->> 78.29.159.113, 38119 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP flood** 192.168.2.3, 13575->> 78.29.159.113, 38119 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP Flood (per Min)** 192.168.2.3, 13575->> 189.122.165.8, 29135 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP flood** 192.168.2.3, 13575->> 189.122.165.8, 29135 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP Flood (per Min)** 192.168.2.3, 13575->> 174.48.62.30, 18903 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP flood** 192.168.2.3, 13575->> 174.48.62.30, 18903 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP Flood (per Min)** 192.168.2.3, 59194->> 82.247.239.185, 50663 (from ATM1 Outbound)
10/26/2012  19:48:34 **UDP flood** 192.168.2.3, 59194->> 82.247.239.185, 50663 (from ATM1 Outbound)
10/26/2012  19:48:33 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:33 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:33 **UDP Flood (per Min)** 192.168.2.3, 13575->> <EIGEN IP>, 13575 (from ATM1 Outbound)
10/26/2012  19:48:33 **UDP flood** 192.168.2.3, 13575->> <EIGEN IP>, 13575 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP flood** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP Flood (per Min)** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP Flood (per Min)** 192.168.2.3, 13575->> 122.169.60.55, 41510 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP flood** 192.168.2.3, 13575->> 122.169.60.55, 41510 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP Flood (per Min)** 192.168.2.3, 13575->> 121.97.59.251, 63624 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP flood** 192.168.2.3, 13575->> 121.97.59.251, 63624 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP Flood (per Min)** 192.168.2.3, 13575->> 37.144.95.144, 38856 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP flood** 192.168.2.3, 13575->> 37.144.95.144, 38856 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP Flood (per Min)** 192.168.2.3, 13575->> 123.28.82.150, 55102 (from ATM1 Outbound)
10/26/2012  19:48:32 **UDP flood** 192.168.2.3, 13575->> 123.28.82.150, 55102 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP Flood (per Min)** 192.168.2.3, 59194->> 109.154.242.12, 53797 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP flood** 192.168.2.3, 59194->> 109.154.242.12, 53797 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP Flood (per Min)** 192.168.2.3, 13575->> <EIGEN IP>, 55448 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP flood** 192.168.2.3, 13575->> <EIGEN IP>, 55448 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP Flood (per Min)** 192.168.2.3, 13575->> 212.179.221.87, 1111 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP flood** 192.168.2.3, 13575->> 212.179.221.87, 1111 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.237.170.210, 10956 (from ATM1 Outbound)
10/26/2012  19:48:31 **UDP flood** 192.168.2.3, 13575->> 82.237.170.210, 10956 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP Flood (per Min)** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.51.78.24, 56842 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP flood** 192.168.2.3, 13575->> 82.51.78.24, 56842 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.88.16.12, 43509 (from ATM1 Outbound)
10/26/2012  19:48:30 **UDP flood** 192.168.2.3, 13575->> 82.88.16.12, 43509 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 108.217.153.69, 29122 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 108.217.153.69, 29122 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 109.154.242.12, 46320 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 109.154.242.12, 46320 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 121.54.91.9, 65534 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 121.54.91.9, 65534 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 123.28.82.150, 55102 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 123.28.82.150, 55102 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 37.144.95.144, 38856 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 37.144.95.144, 38856 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 122.169.60.55, 41510 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 122.169.60.55, 41510 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 121.97.59.251, 63624 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 121.97.59.251, 63624 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP Flood (per Min)** 192.168.2.3, 13575->> 59.182.118.151, 36479 (from ATM1 Outbound)
10/26/2012  19:48:29 **UDP flood** 192.168.2.3, 13575->> 59.182.118.151, 36479 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP Flood (per Min)** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP Flood (per Min)** 192.168.2.4, 1026->> 172.16.1.1, 28007 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP flood** 192.168.2.4, 1026->> 172.16.1.1, 28007 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP Flood (per Min)** 192.168.2.3, 13575->> 173.53.62.11, 14616 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP flood** 192.168.2.3, 13575->> 173.53.62.11, 14616 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP Flood (per Min)** 192.168.2.3, 59194->> 117.212.64.166, 62099 (from ATM1 Outbound)
10/26/2012  19:48:28 **UDP flood** 192.168.2.3, 59194->> 117.212.64.166, 62099 (from ATM1 Outbound)
10/26/2012  19:48:27 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:27 **UDP Flood (per Min)** 192.168.2.3, 13575->> 66.25.34.217, 61982 (from ATM1 Outbound)
10/26/2012  19:48:27 **UDP flood** 192.168.2.3, 13575->> 66.25.34.217, 61982 (from ATM1 Outbound)
10/26/2012  19:48:27 **UDP Flood (per Min)** 192.168.2.3, 13575->> 95.159.6.143, 15146 (from ATM1 Outbound)
10/26/2012  19:48:27 **UDP flood** 192.168.2.3, 13575->> 95.159.6.143, 15146 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 13575->> 121.54.91.9, 65534 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 13575->> 121.54.91.9, 65534 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 13575->> 109.154.242.12, 46320 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 13575->> 109.154.242.12, 46320 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 13575->> 108.217.153.69, 29122 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 13575->> 108.217.153.69, 29122 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 13575->> 59.182.118.151, 36479 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 13575->> 59.182.118.151, 36479 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 13575->> 200.44.241.79, 10052 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 13575->> 200.44.241.79, 10052 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 13575->> 190.87.186.127, 16569 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 13575->> 190.87.186.127, 16569 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 13575->> 205.213.22.2, 18197 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 13575->> 205.213.22.2, 18197 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP Flood (per Min)** 192.168.2.3, 59194->> 82.247.239.185, 50663 (from ATM1 Outbound)
10/26/2012  19:48:26 **UDP flood** 192.168.2.3, 59194->> 82.247.239.185, 50663 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 59194->> 117.212.64.166, 62099 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 59194->> 117.212.64.166, 62099 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 59194->> 157.56.106.184, 3544 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 13575->> 178.207.35.84, 24836 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 13575->> 178.207.35.84, 24836 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 13575->> 89.122.171.26, 23903 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 13575->> 89.122.171.26, 23903 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 13575->> 189.127.191.43, 28019 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 13575->> 189.127.191.43, 28019 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 13575->> 188.36.111.211, 45462 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 13575->> 188.36.111.211, 45462 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 13575->> 173.53.62.11, 14616 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 13575->> 173.53.62.11, 14616 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP Flood (per Min)** 192.168.2.3, 13575->> 91.19.238.39, 65535 (from ATM1 Outbound)
10/26/2012  19:48:25 **UDP flood** 192.168.2.3, 13575->> 91.19.238.39, 65535 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP Flood (per Min)** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP flood** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP Flood (per Min)** 192.168.2.3, 59194->> 82.247.239.185, 50663 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP flood** 192.168.2.3, 59194->> 82.247.239.185, 50663 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP Flood (per Min)** 192.168.2.3, 13575->> 95.159.6.143, 15146 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP flood** 192.168.2.3, 13575->> 95.159.6.143, 15146 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP Flood (per Min)** 192.168.2.3, 13575->> 66.25.34.217, 61982 (from ATM1 Outbound)
10/26/2012  19:48:24 **UDP flood** 192.168.2.3, 13575->> 66.25.34.217, 61982 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 13575->> 81.44.5.44, 25632 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 13575->> 81.44.5.44, 25632 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 13575->> 78.8.154.73, 13735 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 13575->> 78.8.154.73, 13735 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 59194->> 98.154.190.119, 53544 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 59194->> 98.154.190.119, 53544 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 13575->> 205.213.22.2, 18197 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 13575->> 205.213.22.2, 18197 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 13575->> 200.44.241.79, 10052 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 13575->> 200.44.241.79, 10052 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP Flood (per Min)** 192.168.2.3, 13575->> 190.87.186.127, 16569 (from ATM1 Outbound)
10/26/2012  19:48:23 **UDP flood** 192.168.2.3, 13575->> 190.87.186.127, 16569 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP Flood (per Min)** 192.168.2.3, 13575->> 188.36.111.211, 45462 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP flood** 192.168.2.3, 13575->> 188.36.111.211, 45462 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP Flood (per Min)** 192.168.2.3, 13575->> 178.207.35.84, 24836 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP flood** 192.168.2.3, 13575->> 178.207.35.84, 24836 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP Flood (per Min)** 192.168.2.3, 13575->> 89.122.171.26, 23903 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP flood** 192.168.2.3, 13575->> 89.122.171.26, 23903 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP Flood (per Min)** 192.168.2.3, 13575->> 189.127.191.43, 28019 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP flood** 192.168.2.3, 13575->> 189.127.191.43, 28019 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP Flood (per Min)** 192.168.2.3, 13575->> 109.163.231.236, 80 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP flood** 192.168.2.3, 13575->> 109.163.231.236, 80 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP Flood (per Min)** 192.168.2.3, 13575->> 186.68.236.141, 11481 (from ATM1 Outbound)
10/26/2012  19:48:22 **UDP flood** 192.168.2.3, 13575->> 186.68.236.141, 11481 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP Flood (per Min)** 192.168.2.3, 13575->> 71.85.224.95, 48319 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP flood** 192.168.2.3, 13575->> 71.85.224.95, 48319 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP Flood (per Min)** 192.168.2.3, 13575->> 71.237.212.202, 58987 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP flood** 192.168.2.3, 13575->> 71.237.212.202, 58987 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP Flood (per Min)** 192.168.2.3, 13575->> 67.214.243.114, 41583 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP flood** 192.168.2.3, 13575->> 67.214.243.114, 41583 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP Flood (per Min)** 192.168.2.3, 13575->> 93.86.129.129, 39096 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP flood** 192.168.2.3, 13575->> 93.86.129.129, 39096 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP Flood (per Min)** 192.168.2.3, 13575->> 68.194.242.27, 64356 (from ATM1 Outbound)
10/26/2012  19:48:21 **UDP flood** 192.168.2.3, 13575->> 68.194.242.27, 64356 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP Flood (per Min)** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP Flood (per Min)** 192.168.2.3, 59194->> 88.251.124.46, 50253 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP flood** 192.168.2.3, 59194->> 88.251.124.46, 50253 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP Flood (per Min)** 192.168.2.3, 13575->> 78.8.154.73, 13735 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP flood** 192.168.2.3, 13575->> 78.8.154.73, 13735 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.72.149.16, 17259 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP flood** 192.168.2.3, 13575->> 82.72.149.16, 17259 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP Flood (per Min)** 192.168.2.3, 13575->> 80.56.11.104, 36689 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP flood** 192.168.2.3, 13575->> 80.56.11.104, 36689 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP Flood (per Min)** 192.168.2.3, 13575->> 78.45.134.133, 6881 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP flood** 192.168.2.3, 13575->> 78.45.134.133, 6881 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.72.15.114, 61908 (from ATM1 Outbound)
10/26/2012  19:48:20 **UDP flood** 192.168.2.3, 13575->> 82.72.15.114, 61908 (from ATM1 Outbound)
10/26/2012  19:48:19 **UDP Flood (per Min)** 192.168.2.3, 13575->> 62.132.91.5, 13732 (from ATM1 Outbound)
10/26/2012  19:48:19 **UDP flood** 192.168.2.3, 13575->> 62.132.91.5, 13732 (from ATM1 Outbound)
10/26/2012  19:48:19 **UDP Flood (per Min)** 192.168.2.3, 13575->> 213.46.123.191, 33019 (from ATM1 Outbound)
10/26/2012  19:48:19 **UDP flood** 192.168.2.3, 13575->> 213.46.123.191, 33019 (from ATM1 Outbound)
10/26/2012  19:48:19 **UDP Flood (per Min)** 192.168.2.3, 13575->> 186.68.236.141, 11481 (from ATM1 Outbound)
10/26/2012  19:48:19 **UDP flood** 192.168.2.3, 13575->> 186.68.236.141, 11481 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.3, 59194->> 94.245.121.251, 3544 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.4, 1026->> 172.16.1.1, 28007 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.4, 1026->> 172.16.1.1, 28007 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.37.99.81, 51223 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.3, 13575->> 82.37.99.81, 51223 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.3, 13575->> 93.141.84.163, 28829 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.3, 13575->> 93.141.84.163, 28829 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.3, 13575->> 93.86.129.129, 39096 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.3, 13575->> 93.86.129.129, 39096 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.3, 13575->> 67.214.243.114, 41583 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.3, 13575->> 67.214.243.114, 41583 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP Flood (per Min)** 192.168.2.3, 13575->> 68.194.242.27, 64356 (from ATM1 Outbound)
10/26/2012  19:48:18 **UDP flood** 192.168.2.3, 13575->> 68.194.242.27, 64356 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP Flood (per Min)** 192.168.2.3, 13575->> 89.111.219.98, 12042 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP flood** 192.168.2.3, 13575->> 89.111.219.98, 12042 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP Flood (per Min)** 192.168.2.3, 13575->> 82.72.149.16, 17259 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP flood** 192.168.2.3, 13575->> 82.72.149.16, 17259 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP Flood (per Min)** 192.168.2.3, 13575->> 80.56.11.104, 36689 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP flood** 192.168.2.3, 13575->> 80.56.11.104, 36689 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP Flood (per Min)** 192.168.2.3, 13575->> 78.45.134.133, 6881 (from ATM1 Outbound)
10/26/2012  19:48:17 **UDP flood** 192.168.2.3, 13575->> 78.45.134.133, 6881 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP Flood (per Min)** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP flood** 192.168.2.3, 59194->> 192.168.0.10, 58781 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP Flood (per Min)** 192.168.2.3, 59194->> 122.170.84.253, 1026 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP flood** 192.168.2.3, 59194->> 122.170.84.253, 1026 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP Flood (per Min)** 192.168.2.3, 13575->> 213.46.123.191, 33019 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP flood** 192.168.2.3, 13575->> 213.46.123.191, 33019 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP Flood (per Min)** 192.168.2.3, 13575->> 62.132.91.5, 13732 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP flood** 192.168.2.3, 13575->> 62.132.91.5, 13732 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP Flood (per Min)** 192.168.2.3, 13575->> 88.27.97.91, 49631 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP flood** 192.168.2.3, 13575->> 88.27.97.91, 49631 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP Flood (per Min)** 192.168.2.3, 13575->> 71.17.185.120, 39344 (from ATM1 Outbound)
10/26/2012  19:48:16 **UDP flood** 192.168.2.3, 13575->> 71.17.185.120, 39344 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP Flood (per Min)** 192.168.2.3, 59194->> 46.116.40.36, 56506 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP flood** 192.168.2.3, 59194->> 46.116.40.36, 56506 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP Flood (per Min)** 192.168.2.3, 59194->> 10.0.0.5, 56506 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP flood** 192.168.2.3, 59194->> 10.0.0.5, 56506 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP flood** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP Flood (per Min)** 192.168.2.3, 13575->> 79.45.175.6, 45682 (from ATM1 Outbound)
10/26/2012  19:48:15 **UDP flood** 192.168.2.3, 13575->> 79.45.175.6, 45682 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 59194->> 122.170.84.253, 1026 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 59194->> 122.170.84.253, 1026 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 13575->> 91.177.126.206, 62191 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 13575->> 91.177.126.206, 62191 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 13575->> 89.111.219.98, 12042 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 13575->> 89.111.219.98, 12042 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 59194->> 94.245.121.253, 3544 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 59194->> 157.56.149.60, 3544 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 13575->> 86.85.212.77, 32698 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 13575->> 86.85.212.77, 32698 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 13575->> 87.209.35.167, 27182 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 13575->> 87.209.35.167, 27182 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP Flood (per Min)** 192.168.2.3, 13575->> 93.228.93.44, 62641 (from ATM1 Outbound)
10/26/2012  19:48:14 **UDP flood** 192.168.2.3, 13575->> 93.228.93.44, 62641 (from ATM1 Outbound)
10/26/2012  19:48:13 **UDP flood** 192.168.2.3, 59194->> 65.55.158.118, 3544 (from ATM1 Outbound)
10/26/2012  19:48:13 **UDP flood** 24.66.35.70, 59962->> <EIGEN IP>, 59194 (from ATM1 Inbound)
10/26/2012  19:32:21 sending ACK to 192.168.2.100
10/26/2012  19:12:19 Wireless 74:E5:0B:1C:55:BC released
10/26/2012  18:56:28 sending ACK to 192.168.2.100

contrazoom · 26 okt 2012

heb je ook gecontroleerd of er geen virussen of malware op je machines actief zijn? Zie ook post #6.
Ik ga niet beweren dat ik die logs goed kan interpreteren maar het lijkt me nu eerder dat jij anderen aan het flooden bent?

anoniempc · 26 okt 2012

Alles gecontroleerd, niets gevonden. Vind het trouwens ook heel onprettig dat de nieuwe router alle websites logged waar wij op surfen, zo ook de torrent site waar we net wat bestanden op zochten, deze registreert hij allemaal in een NAT table mapping? Hoe zet ik dit uit?
En bij mn vorige router was het zo dat je ook elk apparaat kon identificeren met een bepaald lokaal ip adres , bijv 192.168.2.2 , nu kan ik dus niet zien welk apparaat op mijn netwerk de 'flooder' is 192.168.2.3......

anoniempc · 27 okt 2012

Alle pc's dus ff ipconfig uitgevoerd, bleek op geen een pc de ip te matchen...... blijkt dat het de ip van mijn 2e router is die achter de experia box staat......vreemd....

Help, ik wordt ge DDOST volgens mij

anoniempc

Gebruiker

anoniempc

Gebruiker

anoniempc

Gebruiker

contrazoom

Gebruiker

anoniempc

Gebruiker

contrazoom

Gebruiker

anoniempc

Gebruiker

anoniempc

Gebruiker

anoniempc

Gebruiker

contrazoom

Gebruiker

anoniempc

Gebruiker

anoniempc

Gebruiker

Nieuwste berichten

Wij waarderen jouw privacy