Oddities in my Firewall logs...SPF

probedb

probedb

probedb

Associate
Joined
24 Jun 2006
Posts
1,462
Hi all,

Been using this for ages and never had any problems. Not that it's really a problem but my machine is the DMZ on our router due to the router being crap.

Here's a snippet from the logs...it appears there's requests coming into ndisuio.sys?

It's all the UDP things I don't get??

Have scanned and no spyware or virus have been found...any thoughts?

94401 11/07/2006 15:57:38 Blocked 10 Incoming UDP 217.211.241.38 00-09-5B-3B-19-5C 11257 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:34 11/07/2006 15:56:34 Block_all
94402 11/07/2006 15:57:38 Allowed 10 Incoming UDP 87.218.29.216 00-09-5B-3B-19-5C 20590 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:56:36 11/07/2006 15:56:36 Ask all running apps
94403 11/07/2006 15:57:38 Blocked 10 Incoming UDP 87.218.29.216 00-09-5B-3B-19-5C 20590 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:36 11/07/2006 15:56:36 Block_all
94404 11/07/2006 15:57:38 Allowed 10 Outgoing TCP www.paypal.com [66.211.168.65] 00-09-5B-3B-19-5C 443 192.168.0.50 00-18-F3-66-FE-48 1405 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:56:35 11/07/2006 15:56:35 Ask all running apps
94405 11/07/2006 15:57:38 Allowed 10 Incoming UDP 172.213.213.191 00-09-5B-3B-19-5C 13547 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:56:36 11/07/2006 15:56:36 Ask all running apps
94406 11/07/2006 15:57:38 Blocked 10 Incoming UDP 172.213.213.191 00-09-5B-3B-19-5C 13547 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:36 11/07/2006 15:56:36 Block_all
94407 11/07/2006 15:57:38 Blocked 10 Incoming UDP 88.1.223.59 00-09-5B-3B-19-5C 19635 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:35 11/07/2006 15:56:35 Block_all
94408 11/07/2006 15:57:38 Blocked 10 Incoming UDP 82.160.77.194 00-09-5B-3B-19-5C 13874 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:35 11/07/2006 15:56:35 Block_all
94409 11/07/2006 15:57:44 Allowed 10 Outgoing TCP fduk.org [195.82.99.114] 00-09-5B-3B-19-5C 80 192.168.0.50 00-18-F3-66-FE-48 1407 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:56:42 11/07/2006 15:56:42 Ask all running apps
94410 11/07/2006 15:57:44 Allowed 10 Outgoing TCP fduk.org [195.82.99.114] 00-09-5B-3B-19-5C 80 192.168.0.50 00-18-F3-66-FE-48 1408 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:56:43 11/07/2006 15:56:43 Ask all running apps
94411 11/07/2006 15:57:44 Allowed 10 Outgoing TCP www.paypal.com [66.211.168.65] 00-09-5B-3B-19-5C 443 192.168.0.50 00-18-F3-66-FE-48 1406 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:56:40 11/07/2006 15:56:40 Ask all running apps
94412 11/07/2006 15:57:50 Blocked 10 Incoming UDP 24.232.112.59 00-09-5B-3B-19-5C 8651 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:47 11/07/2006 15:56:47 Block_all
94413 11/07/2006 15:57:50 Blocked 10 Incoming UDP 59.49.172.20 00-09-5B-3B-19-5C 13830 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:45 11/07/2006 15:56:45 Block_all
94414 11/07/2006 15:57:50 Allowed 10 Incoming UDP 89.15.55.163 00-09-5B-3B-19-5C 63244 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:56:44 11/07/2006 15:56:44 Ask all running apps
94415 11/07/2006 15:57:50 Blocked 10 Incoming UDP 89.15.55.163 00-09-5B-3B-19-5C 63244 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:44 11/07/2006 15:56:44 Block_all
94416 11/07/2006 15:57:50 Blocked 10 Incoming UDP 70.68.140.177 00-09-5B-3B-19-5C 60023 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:45 11/07/2006 15:56:45 Block_all
94417 11/07/2006 15:57:50 Blocked 10 Incoming UDP 200.50.47.237 00-09-5B-3B-19-5C 65153 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:45 11/07/2006 15:56:45 Block_all
94418 11/07/2006 15:57:50 Blocked 10 Incoming UDP 59.56.163.99 00-09-5B-3B-19-5C 15093 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:56:47 11/07/2006 15:56:47 Block_all
94419 11/07/2006 15:57:55 Allowed 10 Incoming UDP 61.57.78.74 00-09-5B-3B-19-5C 16271 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:56:52 11/07/2006 15:56:52 Ask all running apps
94420 11/07/2006 15:57:55 Allowed 10 Outgoing TCP fduk.org [195.82.99.114] 00-09-5B-3B-19-5C 80 192.168.0.50 00-18-F3-66-FE-48 1409 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:56:51 11/07/2006 15:56:51 Ask all running apps
94421 11/07/2006 15:58:01 Allowed 10 Outgoing TCP fduk.org [195.82.99.114] 00-09-5B-3B-19-5C 80 192.168.0.50 00-18-F3-66-FE-48 1410 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:56:56 11/07/2006 15:56:56 Ask all running apps
94422 11/07/2006 15:58:06 Allowed 10 Incoming UDP 218.28.13.156 00-09-5B-3B-19-5C 14828 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:04 11/07/2006 15:57:04 Ask all running apps
94423 11/07/2006 15:58:06 Blocked 10 Incoming UDP 218.28.13.156 00-09-5B-3B-19-5C 14828 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:04 11/07/2006 15:57:04 Block_all
94424 11/07/2006 15:58:12 Allowed 10 Incoming UDP 172.185.31.146 00-09-5B-3B-19-5C 17890 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:09 11/07/2006 15:57:09 Ask all running apps
94425 11/07/2006 15:58:12 Blocked 10 Incoming UDP 172.185.31.146 00-09-5B-3B-19-5C 17890 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:09 11/07/2006 15:57:09 Block_all
94426 11/07/2006 15:58:12 Allowed 10 Outgoing TCP www.mazdarotaryclub.com [81.29.73.97] 00-09-5B-3B-19-5C 80 192.168.0.50 00-18-F3-66-FE-48 1411 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:57:06 11/07/2006 15:57:06 Ask all running apps
94427 11/07/2006 15:58:12 Allowed 10 Incoming UDP 218.85.97.11 00-09-5B-3B-19-5C 8608 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:09 11/07/2006 15:57:09 Ask all running apps
94428 11/07/2006 15:58:12 Blocked 10 Incoming UDP 218.85.97.11 00-09-5B-3B-19-5C 8608 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:09 11/07/2006 15:57:09 Block_all
94429 11/07/2006 15:58:18 Blocked 10 Incoming UDP 85.182.52.79 00-09-5B-3B-19-5C 12698 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:14 11/07/2006 15:57:14 Block_all
94430 11/07/2006 15:58:18 Allowed 10 Outgoing TCP www.mazdarotaryclub.com [81.29.73.97] 00-09-5B-3B-19-5C 80 192.168.0.50 00-18-F3-66-FE-48 1412 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:57:15 11/07/2006 15:57:15 Ask all running apps
94431 11/07/2006 15:58:18 Blocked 10 Incoming UDP 221.226.60.95 00-09-5B-3B-19-5C 18898 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:17 11/07/2006 15:57:17 Block_all
94432 11/07/2006 15:58:23 Allowed 10 Incoming UDP 84.251.6.235 00-09-5B-3B-19-5C 21533 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:21 11/07/2006 15:57:21 Ask all running apps
94433 11/07/2006 15:58:23 Blocked 10 Incoming UDP 84.251.6.235 00-09-5B-3B-19-5C 21533 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:21 11/07/2006 15:57:21 Block_all
94434 11/07/2006 15:58:23 Allowed 10 Incoming UDP 201.24.227.211 00-09-5B-3B-19-5C 50184 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:18 11/07/2006 15:57:18 Ask all running apps
94435 11/07/2006 15:58:23 Blocked 10 Incoming UDP 201.24.227.211 00-09-5B-3B-19-5C 50184 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:18 11/07/2006 15:57:18 Block_all
94436 11/07/2006 15:58:29 Blocked 10 Incoming UDP 201.89.134.123 00-09-5B-3B-19-5C 4242 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:25 11/07/2006 15:57:25 Block_all
94437 11/07/2006 15:58:29 Blocked 10 Incoming UDP 61.57.78.74 00-09-5B-3B-19-5C 16271 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 2 11/07/2006 15:56:52 11/07/2006 15:57:23 Block_all
94438 11/07/2006 15:58:34 Allowed 10 Incoming UDP 24.18.38.47 00-09-5B-3B-19-5C 9492 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:29 11/07/2006 15:57:29 Ask all running apps
94439 11/07/2006 15:58:34 Blocked 10 Incoming UDP 24.18.38.47 00-09-5B-3B-19-5C 9492 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:29 11/07/2006 15:57:29 Block_all
94440 11/07/2006 15:58:34 Allowed 10 Outgoing TCP www.mazdarotaryclub.com [81.29.73.97] 00-09-5B-3B-19-5C 80 192.168.0.50 00-18-F3-66-FE-48 1413 C:\Program Files\Mozilla Firefox\firefox.exe paul ERASMUS Normal 1 11/07/2006 15:57:32 11/07/2006 15:57:32 Ask all running apps
94441 11/07/2006 15:58:40 Blocked 10 Incoming UDP 202.175.91.98 00-09-5B-3B-19-5C 7067 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:34 11/07/2006 15:57:34 Block_all
94442 11/07/2006 15:58:40 Allowed 10 Incoming UDP 84.133.235.68 00-09-5B-3B-19-5C 26331 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:38 11/07/2006 15:57:38 Ask all running apps
94443 11/07/2006 15:58:40 Blocked 10 Incoming UDP 84.133.235.68 00-09-5B-3B-19-5C 26331 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:38 11/07/2006 15:57:38 Block_all
94444 11/07/2006 15:58:40 Allowed 10 Incoming UDP 221.224.151.201 00-09-5B-3B-19-5C 54797 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:38 11/07/2006 15:57:38 Ask all running apps
94445 11/07/2006 15:58:40 Blocked 10 Incoming UDP 221.224.151.201 00-09-5B-3B-19-5C 54797 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:38 11/07/2006 15:57:38 Block_all
94446 11/07/2006 15:58:40 Blocked 10 Incoming UDP 221.3.186.75 00-09-5B-3B-19-5C 12964 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:35 11/07/2006 15:57:35 Block_all
94447 11/07/2006 15:58:40 Allowed 10 Incoming UDP 222.217.21.13 00-09-5B-3B-19-5C 13352 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:38 11/07/2006 15:57:38 Ask all running apps
94448 11/07/2006 15:58:40 Blocked 10 Incoming UDP 222.217.21.13 00-09-5B-3B-19-5C 13352 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:38 11/07/2006 15:57:38 Block_all
94449 11/07/2006 15:58:45 Allowed 10 Incoming UDP 82.156.65.200 00-09-5B-3B-19-5C 17106 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:42 11/07/2006 15:57:42 Ask all running apps
94450 11/07/2006 15:58:45 Blocked 10 Incoming UDP 82.156.65.200 00-09-5B-3B-19-5C 17106 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:42 11/07/2006 15:57:42 Block_all
94451 11/07/2006 15:58:45 Blocked 10 Incoming UDP 89.25.126.2 00-09-5B-3B-19-5C 11285 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:42 11/07/2006 15:57:42 Block_all
94452 11/07/2006 15:58:45 Allowed 10 Incoming UDP 80.253.55.138 00-09-5B-3B-19-5C 16839 192.168.0.50 00-18-F3-66-FE-48 10937 C:\WINDOWS\system32\DRIVERS\ndisuio.sys paul ERASMUS Normal 1 11/07/2006 15:57:41 11/07/2006 15:57:41 Ask all running apps
94453 11/07/2006 15:58:45 Blocked 10 Incoming UDP 80.253.55.138 00-09-5B-3B-19-5C 16839 192.168.0.50 00-18-F3-66-FE-48 10937 paul ERASMUS Normal 1 11/07/2006 15:57:41 11/07/2006 15:57:41 Block_all
 
Just noticed the local port being accessed is 10937 but can't find anything about it?

Have currently completely blocked ndisuio.sys for now to see if it has any ill effects.
 
You must log in or register to reply here.
Back
Top Bottom