Welcome, guest! Login / Register - Why register?
Psst.. new poll here.
Psst.. new forums here.
Microsoft is blocking us again (TY IP Reputation!) so just use oauth login instead. :)

Paste

Pasted as C by PATRI0T ( 15 years ago )
udp      17 5 src=31.43.180.111 dst=83.234.195.20 sport=20041 dport=35691 packets=1 bytes=58 [UNREPLIED] src=83.234.195.20 dst=31.43.180.111 sport=35691 dport=20041 packets=0 bytes=0 mark=0 use=1
conntrack v0.9.13 (conntrack-tools): 118 flow entries have been shown.
root@tproxy:/var/log# lsof -i UDP:13:53:34.693282 IP 95.133.247.177.12439 > 83.234.195.20.35691: UDP, length 30
lsof: unacceptable port specification in: -i UDP:13:53:34.693282
lsof 4.81
 latest revision: ftp://lsof.itap.purdue.edu/pub/tools/unix/lsof/
 latest FAQ: ftp://lsof.itap.purdue.edu/pub/tools/unix/lsof/FAQ
 latest man page: ftp://lsof.itap.purdue.edu/pub/tools/unix/lsof/lsof_man
 usage: [-?abhlnNoOPRtUvVX] [+|-c c] [+|-d s] [+D D] [+|-f[gG]]
 [-F [f]] [-g [s]] [-i [i]] [+|-L [l]] [+m [m]] [+|-M] [-o [o]] [-p s]
[+|-r [t]] [-s [p:s]] [-S [t]] [-T [t]] [-u s] [+|-w] [-x [fl]] [--] [names]
Use the ``-h'' option to get more help information.
root@tproxy:/var/log# 13:53:35.338550 IP 95.133.247.177.2155 > 83.234.195.20.35691: Flags [S], seq 724^C
root@tproxy:/var/log# lsof -i UDP
COMMAND  PID  USER   FD   TYPE DEVICE SIZE/OFF NODE NAME
squid   1132 squid    9u  IPv6 462206      0t0  UDP *:36130
squid   1132 squid   11u  IPv4 462207      0t0  UDP *:42806
root@tproxy:/var/log# lsof -i UDP^C
root@tproxy:/var/log# tcpdump -i any host 83.234.195.20 and port 3^C91 -n
root@tproxy:/var/log# tcpdump -i any proto^C
root@tproxy:/var/log# tcpdump -i any host 83.234.195.20 and port 35691 -n
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on any, link-type LINUX_SLL (Linux cooked), capture size 96 bytes




13:57:27.441629 IP 109.202.2.50.54288 > 83.234.195.20.35691: UDP, length 67
13:57:43.403879 IP 92.47.210.219.10664 > 83.234.195.20.35691: UDP, length 30
13:57:43.404046 IP 92.47.210.219.10664 > 83.234.195.20.35691: UDP, length 30
13:57:43.410035 IP 92.47.210.219.53438 > 83.234.195.20.35691: Flags [SEW], seq 761524731, win 8192, options [mss 1388,nop,wscale 8,nop,nop,sackOK], length 0
13:57:43.410088 IP 83.234.195.20.35691 > 92.47.210.219.53438: Flags [R.], seq 0, ack 761524732, win 0, length 0
13:57:43.410116 IP 92.47.210.219.53438 > 83.234.195.20.35691: Flags [SEW], seq 761524731, win 8192, options [mss 1388,nop,wscale 8,nop,nop,sackOK], length 0
13:57:43.410146 IP 83.234.195.20.35691 > 92.47.210.219.53438: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:44.009474 IP 92.47.210.219.53438 > 83.234.195.20.35691: Flags [S], seq 761524731, win 8192, options [mss 1388,nop,wscale 8,nop,nop,sackOK], length 0
13:57:44.009636 IP 83.234.195.20.35691 > 92.47.210.219.53438: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:44.009683 IP 92.47.210.219.53438 > 83.234.195.20.35691: Flags [S], seq 761524731, win 8192, options [mss 1388,nop,wscale 8,nop,nop,sackOK], length 0
13:57:44.009720 IP 83.234.195.20.35691 > 92.47.210.219.53438: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:44.607610 IP 92.47.210.219.53438 > 83.234.195.20.35691: Flags [S], seq 761524731, win 8192, options [mss 1388,nop,nop,sackOK], length 0
13:57:44.607754 IP 83.234.195.20.35691 > 92.47.210.219.53438: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:44.607794 IP 92.47.210.219.53438 > 83.234.195.20.35691: Flags [S], seq 761524731, win 8192, options [mss 1388,nop,nop,sackOK], length 0
13:57:44.607821 IP 83.234.195.20.35691 > 92.47.210.219.53438: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:46.425623 IP 92.47.210.219.10664 > 83.234.195.20.35691: UDP, length 30
13:57:46.425773 IP 92.47.210.219.10664 > 83.234.195.20.35691: UDP, length 30
13:57:46.865540 IP 84.23.51.119.50524 > 83.234.195.20.35691: UDP, length 67
13:57:46.881314 IP 84.23.51.119.50524 > 83.234.195.20.35691: UDP, length 30
13:57:46.883220 IP 84.23.51.119.50524 > 83.234.195.20.35691: Flags [S], seq 334963437, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
13:57:46.883302 IP 83.234.195.20.35691 > 84.23.51.119.50524: Flags [R.], seq 0, ack 334963438, win 0, length 0
13:57:47.424429 IP 84.23.51.119.50524 > 83.234.195.20.35691: Flags [S], seq 334963437, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
13:57:47.424552 IP 83.234.195.20.35691 > 84.23.51.119.50524: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:47.963218 IP 84.23.51.119.50524 > 83.234.195.20.35691: Flags [S], seq 334963437, win 8192, options [mss 1460,nop,nop,sackOK], length 0
13:57:47.963366 IP 83.234.195.20.35691 > 84.23.51.119.50524: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:49.894246 IP 84.23.51.119.50524 > 83.234.195.20.35691: UDP, length 30
13:57:55.267925 IP 77.35.206.245.51504 > 83.234.195.20.35691: Flags [S], seq 1467952019, win 8192, options [mss 1440,nop,wscale 2,nop,nop,sackOK], length 0
13:57:55.268085 IP 83.234.195.20.35691 > 77.35.206.245.51504: Flags [R.], seq 0, ack 1467952020, win 0, length 0
13:57:55.962235 IP 77.35.206.245.51504 > 83.234.195.20.35691: Flags [S], seq 1467952019, win 8192, options [mss 1440,nop,wscale 2,nop,nop,sackOK], length 0
13:57:55.962397 IP 83.234.195.20.35691 > 77.35.206.245.51504: Flags [R.], seq 0, ack 1, win 0, length 0
13:57:56.654841 IP 77.35.206.245.51504 > 83.234.195.20.35691: Flags [S], seq 1467952019, win 8192, options [mss 1440,nop,nop,sackOK], length 0
13:57:56.655001 IP 83.234.195.20.35691 > 77.35.206.245.51504: Flags [R.], seq 0, ack 1, win 0, length 0
13:58:03.705417 IP 95.133.247.177.12439 > 83.234.195.20.35691: UDP, length 30
13:58:08.200436 IP 80.247.110.78.32705 > 83.234.195.20.35691: UDP, length 30
13:58:08.200621 IP 80.247.110.78.41056 > 83.234.195.20.35691: Flags [S], seq 2868822597, win 8192, options [mss 1380,nop,wscale 8,nop,nop,sackOK], length 0
13:58:08.200686 IP 83.234.195.20.35691 > 80.247.110.78.41056: Flags [R.], seq 0, ack 2868822598, win 0, length 0
13:58:08.264871 IP 91.226.250.2.33492 > 83.234.195.20.35691: UDP, length 30
13:58:08.780033 IP 80.247.110.78.41056 > 83.234.195.20.35691: Flags [S], seq 3673937467, win 8192, options [mss 1380,nop,wscale 8,nop,nop,sackOK], length 0
13:58:08.780188 IP 83.234.195.20.35691 > 80.247.110.78.41056: Flags [R.], seq 0, ack 805114871, win 0, length 0
13:58:09.366058 IP 80.247.110.78.41056 > 83.234.195.20.35691: Flags [S], seq 2735681027, win 8192, options [mss 1380,nop,nop,sackOK], length 0
13:58:09.366237 IP 83.234.195.20.35691 > 80.247.110.78.41056: Flags [R.], seq 0, ack 4161825727, win 0, length 0
13:58:10.171144 IP 95.72.231.44.666 > 83.234.195.20.35691: UDP, length 30
13:58:11.213537 IP 80.247.110.78.32705 > 83.234.195.20.35691: UDP, length 30
13:58:13.926404 IP 109.165.58.171.26308 > 83.234.195.20.35691: UDP, length 67
13:58:18.947062 IP 109.165.58.171.26308 > 83.234.195.20.35691: UDP, length 30
13:58:19.494340 IP 109.202.2.50.56257 > 83.234.195.20.35691: Flags [S], seq 2671839897, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
13:58:19.494500 IP 83.234.195.20.35691 > 109.202.2.50.56257: Flags [R.], seq 0, ack 2671839898, win 0, length 0
13:58:19.495022 IP 109.202.2.50.54288 > 83.234.195.20.35691: UDP, length 30
13:58:20.063680 IP 109.202.2.50.56257 > 83.234.195.20.35691: Flags [S], seq 2671839897, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
13:58:20.063852 IP 83.234.195.20.35691 > 109.202.2.50.56257: Flags [R.], seq 0, ack 1, win 0, length 0
13:58:20.631621 IP 109.202.2.50.56257 > 83.234.195.20.35691: Flags [S], seq 2671839897, win 8192, options [mss 1460,nop,nop,sackOK], length 0
13:58:20.631751 IP 83.234.195.20.35691 > 109.202.2.50.56257: Flags [R.], seq 0, ack 1, win 0, length 0
13:58:21.924191 IP 109.165.58.171.26308 > 83.234.195.20.35691: UDP, length 30
13:58:22.506531 IP 109.202.2.50.54288 > 83.234.195.20.35691: UDP, length 30
13:58:24.523218 IP 92.113.113.138.13989 > 83.234.195.20.35691: UDP, length 67
13:58:24.537422 IP 92.113.113.138.53221 > 83.234.195.20.35691: Flags [S], seq 3431510658, win 8192, options [mss 1440,nop,wscale 2,nop,nop,sackOK], length 0
13:58:24.537478 IP 83.234.195.20.35691 > 92.113.113.138.53221: Flags [R.], seq 0, ack 3431510659, win 0, length 0
13:58:24.538352 IP 92.113.113.138.13989 > 83.234.195.20.35691: UDP, length 30
13:58:25.296080 IP 92.113.113.138.53221 > 83.234.195.20.35691: Flags [S], seq 3431510658, win 8192, options [mss 1440,nop,wscale 2,nop,nop,sackOK], length 0
13:58:25.296241 IP 83.234.195.20.35691 > 92.113.113.138.53221: Flags [R.], seq 0, ack 1, win 0, length 0
13:58:26.082325 IP 92.113.113.138.53221 > 83.234.195.20.35691: Flags [S], seq 3431510658, win 8192, options [mss 1440,nop,nop,sackOK], length 0
13:58:26.082479 IP 83.234.195.20.35691 > 92.113.113.138.53221: Flags [R.], seq 0, ack 1, win 0, length 0
13:58:27.592203 IP 92.113.113.138.13989 > 83.234.195.20.35691: UDP, length 30
^C
63 packets captured
63 packets received by filter
0 packets dropped by kernel
root@tproxy:/var/log# jnettop -i any -x 'host 83.234.195.20 and port 35691' -n
Could not get HW address of interface usbmon1: No such device
Could not get HW address of interface any: No such device
root@tproxy:/var/log# tcpdump -i any host 83.234.195.20 and port 35691 -n
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on any, link-type LINUX_SLL (Linux cooked), capture size 96 bytes
13:59:08.650706 IP 84.23.51.220.55916 > 83.234.195.20.35691: UDP, length 30
^C
1 packets captured
1 packets received by filter
0 packets dropped by kernel
root@tproxy:/var/log# ping pcnews.ru
PING pcnews.ru (188.120.36.138) 56(84) bytes of data.
64 bytes from pcnews.ru (188.120.36.138): icmp_seq=1 ttl=58 time=38.2 ms
^C
--- pcnews.ru ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 38.241/38.241/38.241/0.000 ms
root@tproxy:/var/log# tcpdump -i any host 83.234.195.20 and port 35691 -n
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on any, link-type LINUX_SLL (Linux cooked), capture size 96 bytes
13:59:35.935773 IP 195.112.232.34.52170 > 83.234.195.20.35691: Flags [S], seq 3055351401, win 65535, options [mss 1460,nop,wscale 3,sackOK,TS val 117887946 ecr 0], length 0
13:59:35.935908 IP 83.234.195.20.35691 > 195.112.232.34.52170: Flags [R.], seq 0, ack 3055351402, win 0, length 0
13:59:42.383757 IP 193.105.59.120.49804 > 83.234.195.20.35691: Flags [S], seq 2599401721, win 8192, options [mss 1460,nop,nop,nop,nop], length 0
13:59:42.383837 IP 83.234.195.20.35691 > 193.105.59.120.49804: Flags [R.], seq 0, ack 2599401722, win 0, length 0
13:59:42.911024 IP 193.105.59.120.49804 > 83.234.195.20.35691: Flags [S], seq 1890269038, win 8192, options [mss 1460,nop,nop,nop,nop], length 0
13:59:42.911163 IP 83.234.195.20.35691 > 193.105.59.120.49804: Flags [R.], seq 0, ack 3585834614, win 0, length 0
13:59:43.444156 IP 193.105.59.120.49804 > 83.234.195.20.35691: Flags [S], seq 1606399894, win 8192, options [mss 1460,nop,nop,nop,nop], length 0
13:59:43.444239 IP 83.234.195.20.35691 > 193.105.59.120.49804: Flags [R.], seq 0, ack 3301965470, win 0, length 0
13:59:45.474665 IP 109.202.2.50.54288 > 83.234.195.20.35691: UDP, length 30
13:59:45.475514 IP 109.202.2.50.56596 > 83.234.195.20.35691: Flags [S], seq 676547429, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
13:59:45.475564 IP 83.234.195.20.35691 > 109.202.2.50.56596: Flags [R.], seq 0, ack 676547430, win 0, length 0
13:59:46.043731 IP 109.202.2.50.56596 > 83.234.195.20.35691: Flags [S], seq 676547429, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
13:59:46.043856 IP 83.234.195.20.35691 > 109.202.2.50.56596: Flags [R.], seq 0, ack 1, win 0, length 0
13:59:46.616652 IP 109.202.2.50.56596 > 83.234.195.20.35691: Flags [S], seq 676547429, win 8192, options [mss 1460,nop,nop,sackOK], length 0
13:59:46.616781 IP 83.234.195.20.35691 > 109.202.2.50.56596: Flags [R.], seq 0, ack 1, win 0, length 0
13:59:48.490090 IP 109.202.2.50.54288 > 83.234.195.20.35691: UDP, length 30
13:59:48.936470 IP 109.165.58.171.26308 > 83.234.195.20.35691: UDP, length 30
13:59:51.915722 IP 109.165.58.171.26308 > 83.234.195.20.35691: UDP, length 30
14:00:08.623803 IP 84.23.51.220.55916 > 83.234.195.20.35691: UDP, length 67
14:00:22.987210 IP 212.33.236.14.13798 > 83.234.195.20.35691: UDP, length 67
14:00:25.943722 IP 212.33.236.14.13798 > 83.234.195.20.35691: UDP, length 30
14:00:39.713532 IP 95.133.247.177.3383 > 83.234.195.20.35691: Flags [S], seq 205525085, win 65535, options [mss 1460,nop,nop,sackOK], length 0
14:00:39.713664 IP 83.234.195.20.35691 > 95.133.247.177.3383: Flags [R.], seq 0, ack 205525086, win 0, length 0
14:00:40.818640 IP 95.133.247.177.3383 > 83.234.195.20.35691: Flags [S], seq 205525085, win 65535, options [mss 1460,nop,nop,sackOK], length 0
14:00:40.818774 IP 83.234.195.20.35691 > 95.133.247.177.3383: Flags [R.], seq 0, ack 1, win 0, length 0
14:00:41.421655 IP 95.133.247.177.3383 > 83.234.195.20.35691: Flags [S], seq 205525085, win 65535, options [mss 1460,nop,nop,sackOK], length 0
14:00:41.421777 IP 83.234.195.20.35691 > 95.133.247.177.3383: Flags [R.], seq 0, ack 1, win 0, length 0
14:00:43.705817 IP 178.71.116.184.35691 > 83.234.195.20.35691: UDP, length 67
14:00:48.575989 IP 194.24.246.65.28598 > 83.234.195.20.35691: UDP, length 30

 

Revise this Paste

Parent: 35179
Children: 35182
Your Name: Code Language: