<font color='black' size='2' face='arial'><br>
<br>
<div style="CLEAR: both">Pessoal, estava olhando o Log do Asterisk e ví a seguinte msg:</div>
<div style="CLEAR: both"> </div>
<div style="CLEAR: both">[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
[Jan 22 10:00:25] NOTICE[14350]: chan_sip.c:15593 handle_request_register: Registration from '"1013" <sip:1013@XXX.XXX.XXX.XXX>' failed for '174.129.173.249' - Wrong password<br>
</div>
<div style="CLEAR: both">Notem que em 1 segundo o "invasor" tentou várias vezes se registrar no sip 1013 (através do método BruteForce) pelo meu link do speedy. O IP do "invasor" é 174.129.173.249.</div>
<div style="CLEAR: both"> </div>
<div style="CLEAR: both">Isso seria uma tentativa de invasão? </div>
<div style="CLEAR: both"> </div>
<div style="CLEAR: both">Se sim, como ele conseguiu acesso aos meus ramais SIP?</div>
<div style="CLEAR: both">O que preciso fazer para tirar esse cara da rede?</div>
<div style="CLEAR: both"> </div>
<div style="CLEAR: both">Em uma pesquisa rápida descobri que esse IP é de Washington.</div>
<div style="CLEAR: both"><A href="http://www.botsvsbrowsers.com/ip/174.129.173.249/index.html">http://www.botsvsbrowsers.com/ip/174.129.173.249/index.html</A></div>
<div style="CLEAR: both"> </div>
<div style="CLEAR: both">Estou alarmado a toa ou é realmente uma tentativa de invasão?</div>
<div style="CLEAR: both"> </div>
<div style="CLEAR: both">Obrigado lista.</div>
</font>