帮忙看看这个arp是怎么回事

ginieay · 发表于 2007-7-16 11:49:05

编号相对时间源目标协议大小解码概要
3 0.000000 00:16:35:75:8A

D                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.21? 告诉 192.168.1.21
4          0.000089                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.21? 告诉 192.168.1.1
5          0.000162                00:15:F2:85:80:4B                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.44? 告诉 192.168.1.44
6          0.000171                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.44? 告诉 192.168.1.1
7          0.000215                00:15:F2:85:80:3F                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.49? 告诉 192.168.1.49
8          0.000225                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.49? 告诉 192.168.1.1
9          0.000269                00:18:F3:97:CC:61                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.55? 告诉 192.168.1.55
10          0.000277                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.55? 告诉 192.168.1.1
11          0.000324                00:18:F3:97:CC:5D                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.64? 告诉 192.168.1.64
12          0.000332                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.64? 告诉 192.168.1.1
13          0.000381                dbm Optics:00:8A:ED                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.105? 告诉 192.168.1.105
14          0.000390                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.105? 告诉 192.168.1.1
15          0.000436                00:15:F2:34:F4:84                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.113? 告诉 192.168.1.113
16          0.000445                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.113? 告诉 192.168.1.1
17          0.000493                00:16:35:6E:5C:04                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.114? 告诉 192.168.1.114
18          0.000500                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.114? 告诉 192.168.1.1
19          0.000546                00:16:76

8:0D

3                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.116? 告诉 192.168.1.116
20          0.000554                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.116? 告诉 192.168.1.1
21          0.000602                Realtek Semi:ED:33:AF             FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.125? 告诉 192.168.1.125
22          0.000610                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.125? 告诉 192.168.1.1
23          0.000662                dbm Optics:00:82

A                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.186? 告诉 192.168.1.186
24          0.000670                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.186? 告诉 192.168.1.1
25          0.018735                dbm Optics:00:8A:ED                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.105? 告诉 192.168.1.105
26          0.018743                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.105? 告诉 192.168.1.1
27          0.019808                00:15:F2:34:F4:84                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.113? 告诉 192.168.1.113
28          0.019815                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.113? 告诉 192.168.1.1
29          0.020835                00:16:35:6E:5C:04                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.114? 告诉 192.168.1.114
30          0.020843                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.114? 告诉 192.168.1.1
31          0.021866                00:16:76

8:0D:D3                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.116? 告诉 192.168.1.116
32          0.021874                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.116? 告诉 192.168.1.1
33          0.022895                Realtek Semi:ED:33:AF             FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.125? 告诉 192.168.1.125
34          0.022904                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.125? 告诉 192.168.1.1
35          0.036518                dbm Optics:00:82:DA                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.186? 告诉 192.168.1.186
36          0.036526                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.186? 告诉 192.168.1.1
37          0.346796                00:0E:A6:0B:E3:D1                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.10? 告诉 192.168.1.10
38          0.346800                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.10? 告诉 192.168.1.1
39          0.347813                00:15:F2:1C:FE:05                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.11? 告诉 192.168.1.11
40          0.347822                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.11? 告诉 192.168.1.1
41          0.348851                00:15:F2:34:EC:81                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.12? 告诉 192.168.1.12
42          0.348859                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.12? 告诉 192.168.1.1
43          0.349873                dbm Optics:00:84:83                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.13? 告诉 192.168.1.13
44          0.349881                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.13? 告诉 192.168.1.1
45          0.350895                dbm Optics:00:8B:5A                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.14? 告诉 192.168.1.14
46          0.350902                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.14? 告诉 192.168.1.1
47          0.351960                dbm Optics:00:8B:0C                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.16? 告诉 192.168.1.16
48          0.351967                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.16? 告诉 192.168.1.1
49          0.354035                dbm Optics:00:84:80                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.17? 告诉 192.168.1.17
50          0.354044                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.17? 告诉 192.168.1.1
51          0.354143                dbm Optics:00:86:26                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.18? 告诉 192.168.1.18
52          0.354151                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.18? 告诉 192.168.1.1
53          0.356203                00:16:35:75:8A:DD                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.21? 告诉 192.168.1.21
54          0.356206                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.21? 告诉 192.168.1.1
55          0.357135                00:15:F2:85:80:4B                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.44? 告诉 192.168.1.44
56          0.357143                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.44? 告诉 192.168.1.1
57          0.358191                00:15:F2:85:80:3F                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.49? 告诉 192.168.1.49
58          0.358200                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.49? 告诉 192.168.1.1
59          0.360255                00:18:F3:97:CC:61                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.55? 告诉 192.168.1.55
60          0.360262                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.55? 告诉 192.168.1.1
61          0.361282                00:18:F3:97:CC:5D                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.64? 告诉 192.168.1.64
62          0.361285                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.64? 告诉 192.168.1.1
63          0.363357                00:19:DB:60:37:D9                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.72? 告诉 192.168.1.72
64          0.363369                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.72? 告诉 192.168.1.1
65          0.364497                00:15:F2:14:16:D2                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.83? 告诉 192.168.1.83
66          0.364505                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.83? 告诉 192.168.1.1
67          0.365465                00:15:F2:85:80:45                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.87? 告诉 192.168.1.87
68          0.365474                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.87? 告诉 192.168.1.1
69          0.366473                00:16:35:75:8C:B2                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.98? 告诉 192.168.1.98
70          0.366481                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.98? 告诉 192.168.1.1
71          0.367530                dbm Optics:00:83:DA                FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.99? 告诉 192.168.1.99
72          0.367547                dbm Optics:00:83:DA                00:14:78:63:7E:9E       ARP       64                      192.168.1.99 在 00:0B:0A:00:83:DA
73          0.367554                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.99? 告诉 192.168.1.1
74          0.368546                00:15:F2:85:80:43                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.101? 告诉 192.168.1.101
75          0.368554                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.101? 告诉 192.168.1.1
76          0.372775                00:15:F2:34:F4:3A                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.104? 告诉 192.168.1.104
77          0.372779                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.104? 告诉 192.168.1.1
78          0.381103                Dell Esg Pcba Test:1C:04:8B       FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.148? 告诉 192.168.1.148
79          0.381107                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.148? 告诉 192.168.1.1
80          0.382050                00:13:D4:B7:D5:D8                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.150? 告诉 192.168.1.150
81          0.382059                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.150? 告诉 192.168.1.1
82          0.384129                00:15:F2:34:F3:F2                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.156? 告诉 192.168.1.156
83          0.384139                00:14:78:63:7E:9E                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.156? 告诉 192.168.1.1
84          0.385170                00:15:F2:34:F4:5A                   FF:FF:FF:FF:FF:FF       ARP       64                      谁是 192.168.1.158? 告诉 192.168.1.158


还有很多，每个IP地址挨着发arp包问，查询自己的mac，然后网关发包问mac
网关192.168.1.1，MAC地址是  00-14-78-63-7E-9E
本机是192.168.1.99，MAC地址00-0B-0A-00-83-DA

[ 本帖最后由 ginieay 于 2007-7-16 12:08 编辑 ]

preess · 发表于 2007-7-17 12:03:39

我单位的网络也是这样，不过arp的数据包没有这么密集，伴随这吊线的现象，实在是不知道什么原因，请哪位高手赐教，谢谢了！！！

[ 本帖最后由 preess 于 2007-7-17 12:06 编辑 ]

lhddlcz · 发表于 2007-8-11 08:26:19

估计是ARP攻击哈，找到对应IP地址的电脑，杀毒处理。

帮忙看看这个arp是怎么回事

回复 #1 ginieay 的帖子