It looks like ordinary (very chatty) windows networking packets exploring the local net at your ISP. Most of them appear to be from private address space from the local network 10.10.x.x.
Don't assume that a bunch of logged dropped packets and your machine crashing were connected. I think it's a red herring. two cents worth, -brian smith -- Brian Smith unix sysadmin operations terra lycos, sf On Thu, Oct 25, 2001 at 10:10:06AM +0100, Steven M Bloomfield wrote: > Hi, > I'm webmaster of a large-ish website and yesterday the server went down. > It is a Redhat 6.1 Linux server. All my ISP would do was press the 'reset' > button - very kind of them (they are NT specialists). > Inspecting my log files I found thousands of denied packets, all seem to be > within a period of 6 hours. > My question is, could such an attack disable my machine and crash it? Can > anyone identify what sort of attack it was? > > Here's a summary below: > > Denied packets from modem-392.awesome.dialup.pol.co.uk (62.25.129.136). > Port https (tcp,eth0,input): 5 packet(s). > Total of 5 packet(s). >
