Jump to content

Windows Firewall


ksiemb

Recommended Posts

I guess I have a misconception of the Windows Firewall - XP/SP3

I turned logging on, but it states for debugging; dropped packets & successful connections.

As a firewall, it does not block malicious incoming & log them as mbam does ?

All I see are these types of entries:

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 57372 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 49293 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 65287 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 63619 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 52279 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 63102 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 59478 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 63042 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 68 67 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 63043 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 54341 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 65493 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 65301 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 52762 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 60516 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 56546 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 54690 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 51354 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 64410 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 60581 53 - - - - - - - - -

2011-06-20 19:01:08 CLOSE UDP 76.241.69.214 192.168.0.1 59268 53 - - - - - - - - -

2011-06-21 01:36:23 OPEN UDP 75.10.132.63 192.168.0.1 49376 53 - - - - - - - - -

2011-06-21 01:36:23 OPEN TCP 75.10.132.63 91.198.117.248 1034 443 - - - - - - - - -

2011-06-21 01:36:23 DROP ICMP 75.10.132.63 192.168.0.1 - - 176 - - - - 3 3 - SEND

2011-06-21 01:36:23 OPEN UDP 75.10.132.63 192.168.0.1 63749 53 - - - - - - - - -

2011-06-21 01:36:23 OPEN TCP 75.10.132.63 75.125.243.154 1035 80 - - - - - - - - -

2011-06-21 01:36:23 DROP ICMP 75.10.132.63 192.168.0.1 - - 111 - - - - 3 3 - SEND

2011-06-21 01:36:25 OPEN UDP 75.10.132.63 192.168.0.1 51502 53 - - - - - - - - -

2011-06-21 01:36:25 OPEN TCP 75.10.132.63 78.46.47.203 1036 80 - - - - - - - - -

2011-06-21 01:36:25 DROP ICMP 75.10.132.63 192.168.0.1 - - 111 - - - - 3 3 - SEND

2011-06-21 01:36:30 CLOSE TCP 75.10.132.63 91.198.117.248 1034 443 - - - - - - - - -

2011-06-21 01:36:30 OPEN TCP 75.10.132.63 91.198.117.248 1037 443 - - - - - - - - -

2011-06-21 01:36:31 DROP ICMP 192.168.0.1 75.10.132.63 - - 92 - - - - 8 0 - RECEIVE

2011-06-21 01:36:36 OPEN UDP 75.10.132.63 192.168.0.1 57508 53 - - - - - - - - -

2011-06-21 01:36:36 DROP ICMP 75.10.132.63 192.168.0.1 - - 111 - - - - 3 3 - SEND

2011-06-21 01:36:36 OPEN UDP 75.10.132.63 192.168.0.1 63750 53 - - - - - - - - -

2011-06-21 01:36:36 DROP ICMP 75.10.132.63 192.168.0.1 - - 111 - - - - 3 3 - SEND

2011-06-21 01:36:36 CLOSE TCP 75.10.132.63 78.46.47.203 1036 80 - - - - - - - - -

2011-06-21 01:36:36 CLOSE TCP 75.10.132.63 75.125.243.154 1035 8

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.