|I have a network with a NetGear WGR614v9 router in the center. I have been examining the contents of the log inside the NetGear router and I have discovered some entries in the log that I am having difficulty explaining. Here is a sample:|
[LAN access from remote] from 18.104.22.168:23524 to 192.168.0.127:47811 Saturday, May 15,2010 23:36:45
[LAN access from remote] from 22.214.171.124:10684 to 192.168.0.127:47811 Saturday, May 15,2010 23:36:42
[LAN access from remote] from 126.96.36.199:4752 to 192.168.0.127:58707 Saturday, May 15,2010 23:36:40
[LAN access from remote] from 188.8.131.52:57403 to 192.168.0.127:58707 Saturday, May 15,2010 23:36:31
The problem is that my DHCP list and network do not contain any computer, or other device at the 192.168.0.127 IP address. I may have had a BOT type virus on my system, so I am wondering if it could have been spoofing this address somehow. I have run the probes found at Gibson Research "Shields Up," and they report all my ports are hidden from the outside. Can anyone shed any light on what may be going on with these probes to this phantom address? Thanks!