局域网多出来了76:11:05:04:11:18一直冲突不断

chirontan · 发表于 2011-7-20 09:31:09

本帖最后由 chirontan 于 2011-7-22 09:32 编辑

公司电脑之前都是网络警绑定IP的，但是经常还提示IP冲突，查看系统日志为
]08:52 <User> 事件类型:错误
事件来源:Tcpip
事件种类:无
事件 ID:4199
日期:2011-7-19
事件:15:40:01
用户:N/A
计算机:FILESERVERS
描述:
系统检测到 IP 地址 192.168.0.1 和网络硬件地址 76:11:05:04:11:18 发生地址冲突。此系统的网络操作可能会突然中断。
有关更多信息，请参阅在 http://go.microsoft.com/fwlink/events.asp 的帮助和支持中心。
用科来分析抓包结果如下

192.168.0.51 is at 76:11:05:04:11:18
192.168.0.158 is at 76:11:05:04:11:18
192.168.0.5 is at 76:11:05:04:11:18
192.168.0.15 is at 76:11:05:04:11:18
192.168.0.3 is at 76:11:05:04:11:18
192.168.0.1 is at 76:11:05:04:11:18
192.168.0.90 is at 76:11:05:04:11:18
192.168.0.5 is at 76:11:05:04:11:18
192.168.0.158 is at 76:11:05:04:11:18
192.168.0.1 is at 76:11:05:04:11:18
192.168.0.158 is at 76:11:05:04:11:18

Packet Info:
Packet Number:                   000001
Packet Length:                   64
Capture Length:                   42
Timestamp:                         2011-07-19 14:01:23.515264
Ethernet Type II                      [0/14]
Destination Address:             6C:62:6D:E8:24:F5  [0/6]
Source Address:                   76:11:05:04:11:18  [6/6]
Protocol:                         0x0806  (ARP)  [12/2]
ARP - Address Resolution Protocol    [14/28]
Hardware type:                   1  (Ethernet)  [14/2]
Protocol Type:                   0x0800  [16/2]
Hardware Address Length:          6  [18/1]
Protocol Address Length:          4  [19/1]
Type:                            2  (ARP Respond)  [20/2]
Source Physics:                   76:11:05:04:11:18  [22/6]
Source IP:                         192.168.0.51  [28/4]
Destination Physics:             6C:62:6D:E8:24:F5  [32/6]
Destination IP:                   192.168.0.51  [38/4]
Only the first 42 bytes kept from packet.

各位研究一下，我就是怎么样也找不到76:11:05:04:11:18 这台主机
抓的包我一并传上来，大家研究一下

chirontan · 发表于 2011-8-4 09:10:12

我用MAC地址扫描器也扫了，就是查不到是哪台机伪造了那个地址，但是局域网里其它客户机的系统日志都有与76:11:05:04:11:18冲突的记录，我用网络分析软分析显示76:11:05:04:11:18这个地址会在整个局域网里伪造，一会儿是192.168.0.1，一会儿是192.168.0.4，一会儿是192.168.0.62，没有规律可遁，就连我新格式化安装的一台电脑也显示被冲突了

局域网多出来了76:11:05:04:11:18一直冲突不断

本帖子中包含更多资源