Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 6 of 6
  1. #1
    Status
    Offline
    xxx123's Avatar
    Member
    Join Date
    Aug 2007
    Posts
    156
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    wta=log pr ada banyak ip mau login

    para guru dan master nanya dong
    mengapa di log mikrotik saya ada report spt ini :Click here to enlarge



    feb/12 18:14:07 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:12 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:16 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:22 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:26 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:30 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:34 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:40 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:44 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:48 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:53 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:57 system,error,critical login failure for user root from


    feb/12 18:14:07 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:12 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:16 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:22 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:26 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:30 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:34 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:40 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:44 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:48 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:53 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:57 system,error,critical login failure for user root from


    feb/12 18:14:07 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:12 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:16 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:22 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:26 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:30 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:34 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:40 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:44 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:48 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:53 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:57 system,error,critical login failure for user root from


    feb/12 18:14:07 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:12 system,error,critical login failure for user root from

    85.25.153.82 via ssh
    feb/12 18:14:16 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:22 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:26 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:30 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:34 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:40 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:44 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:48 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:53 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:57 system,error,critical login failure for user root from


    feb/12 18:14:07 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:12 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:16 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:22 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:26 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:30 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:34 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:40 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:44 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:48 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:53 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:57 system,error,critical login failure for user root from


    feb/12 18:14:07 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:12 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:16 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:22 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:26 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:30 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:34 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:40 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:44 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:48 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:53 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:57 system,error,critical login failure for user root from


    feb/12 18:14:07 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:12 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:16 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:22 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:26 system,error,critical login failure for user root from
    85.25.153.82 via ssh
    feb/12 18:14:30 system,error,critical login failure for user root from
    85.25.153.82 via ssh

    Berbahayakah? dan bagaimana cara mengatasinya ?

    script firewall saya sbb :
    [admin@Core.Yahuu] ip firewall> f
    [admin@Core.Yahuu] ip firewall filter> pr
    Flags: X - disabled, I - invalid, D - dynamic
    0 chain=forward protocol=tcp dst-port=135-139 action=drop

    1 chain=forward protocol=udp dst-port=135-139 action=drop

    2 chain=forward protocol=tcp dst-port=445 action=drop

    3 chain=forward protocol=udp dst-port=445 action=drop

    4 chain=forward protocol=tcp dst-port=593 action=drop

    5 chain=forward protocol=tcp dst-port=4444 action=drop

    6 chain=forward protocol=tcp dst-port=5554 action=drop

    7 chain=forward protocol=tcp dst-port=9996 action=drop

    8 chain=forward protocol=udp dst-port=995-999 action=drop

    9 chain=forward protocol=tcp dst-port=53 action=drop

    10 chain=forward protocol=tcp dst-port=55 action=drop

    11 chain=forward action=jump jump-target=Virus

    12 ;;; Drop Blaster Worm
    chain=virus protocol=tcp dst-port=135-139 action=drop

    13 ;;; Drop Messenger Worm
    chain=virus protocol=udp dst-port=135-139 action=drop

    14 ;;; Drop Blaster Worm
    chain=virus protocol=tcp dst-port=445 action=drop

    15 ;;; Drop Blaster Worm
    chain=virus protocol=udp dst-port=445 action=drop

    16 ;;; ________
    chain=virus protocol=tcp dst-port=593 action=drop

    17 ;;; ________
    chain=virus protocol=tcp dst-port=1024-1030 action=drop

    18 ;;; Drop MyDoom
    chain=virus protocol=tcp dst-port=1080 action=drop

    19 ;;; ________
    chain=virus protocol=tcp dst-port=1214 action=drop

    20 ;;; ndm requester
    chain=virus protocol=tcp dst-port=1363 action=drop

    21 ;;; ndm server
    chain=virus protocol=tcp dst-port=1364 action=drop

    22 ;;; screen cast
    chain=virus protocol=tcp dst-port=1368 action=drop

    23 ;;; hromgrafx
    chain=virus protocol=tcp dst-port=1373 action=drop

    24 ;;; cichlid
    chain=virus protocol=tcp dst-port=1377 action=drop

    25 ;;; Worm
    chain=virus protocol=tcp dst-port=1433-1434 action=drop

    26 ;;; Bagle Virus
    chain=virus protocol=tcp dst-port=2745 action=drop

    27 ;;; Drop Dumaru.Y
    chain=virus protocol=tcp dst-port=2283 action=drop

    28 ;;; Drop Beagle
    chain=virus protocol=tcp dst-port=2535 action=drop

    29 ;;; Drop Beagle.C-K
    chain=virus protocol=tcp dst-port=2745 action=drop

    30 ;;; Drop MyDoom
    chain=virus protocol=tcp dst-port=3127-3128 action=drop

    31 ;;; Drop Backdoor OptixPro
    chain=virus protocol=tcp dst-port=3410 action=drop

    32 ;;; Worm
    chain=virus protocol=tcp dst-port=4444 action=drop

    33 ;;; Worm
    chain=virus protocol=udp dst-port=4444 action=drop

    34 ;;; Drop Sasser
    chain=virus protocol=tcp dst-port=5554 action=drop

    35 ;;; Drop Beagle.B
    chain=virus protocol=tcp dst-port=8866 action=drop

    36 ;;; Drop Dabber.A-B
    chain=virus protocol=tcp dst-port=9898 action=drop

    37 ;;; Drop Dumaru.Y
    chain=virus protocol=tcp dst-port=10000 action=drop

    38 ;;; Drop MyDoom.B
    chain=virus protocol=tcp dst-port=10080 action=drop

    39 ;;; Drop NetBus
    chain=virus protocol=tcp dst-port=12345 action=drop

    40 ;;; Drop Kuang2
    chain=virus protocol=tcp dst-port=17300 action=drop

    41 ;;; Drop SubSeven
    chain=virus protocol=tcp dst-port=27374 action=drop

    42 ;;; Pembatasan ping
    chain=input protocol=icmp dst-limit=50,2,dst-address/1m40s action=accept

    43 chain=input protocol=icmp action=drop

    44 chain=input content=login failure limit=5/1m,5 action=drop


    Mohon pencerahan

    regard

  2. #2
    Status
    Offline
    helmi17's Avatar
    Newbie
    Join Date
    May 2010
    Posts
    36
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    sama gann ane juga begitu.,.,.,.,.,.,.,.
    tolong dunk master-master masuk sini n kasih solusi untuk kita berdua ini agar tidak keluar lagi begitu.,.,.,.,.,. Biasanya klo sudah ada itu koneksi disini jadi lambat bangetttt,.,.,.,.,.,.,[IMG]

    file:///D:/GAMES/untitled.bmp[/IMG]

  3. #3
    Status
    Offline
    spymedan's Avatar
    Moderator
    Join Date
    Oct 2007
    Location
    Medan Metropolitan
    Posts
    2,821
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Silahkan Block SSH service anda gan.. Click here to enlarge atau buat port block scanner nya..

  4. #4
    Status
    Offline
    adhielesmana's Avatar
    Administrator
    Join Date
    Jan 2009
    Location
    http://www.adhielesmana.com
    Posts
    3,054
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    disable aja sshnya.. masuk ke > ip > service > ssh - klik kanan disable

  5. #5
    Status
    Offline
    p4w1r0's Avatar
    Member
    Join Date
    Jul 2007
    Location
    dimana_mana_hatiku_senang
    Posts
    252
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ato gnti port SSH-nya (IP => Service)
    gnti port 22 dgn alamat port lain (asal jgn bntrok)
    trus bkin firewall lg "add chain=input protocol=tcp dst-port=22 actio=drop"

    maknyus...
    Click here to enlarge

  6. #6
    Status
    Offline
    Blue Angel's Avatar
    Member
    Join Date
    Aug 2009
    Posts
    198
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    kesini aja bro...


 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. 1 Userman Banyak Hotspot
    By nyoman in forum HotSpot, The Dude & User Manager
    Replies: 14
    Last Post: 14-08-2010, 20:11
  2. Gimana membuat Hotspot Login agar bisa otomatis login dimikrotik
    By Orang Ganteng in forum General Networking
    Replies: 10
    Last Post: 27-05-2010, 22:02
  3. nyari prosesor 486 jumlah banyak
    By dencow in forum MikroTik Products
    Replies: 10
    Last Post: 11-06-2009, 02:23
  4. [ask] torch : pc berkoneksi banyak bgt
    By sefri in forum General Networking
    Replies: 4
    Last Post: 01-02-2008, 14:49

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •