[pfSense] General question

kol Mon, 25 Mar 2013 08:38:42 -0700

In my fw proxy logs I'm seeing a periodic  connection form one of my PCs to
facebook, flickr, and youtube around the same time, and it's happening every
about 10 minutes, I have checked browser plugins, search for rouge
software's, and scanned the pc to no avail. I was wondering if one of the
members has a clue on what's going on.


 Here is an example of the log:

[Fri Mar 22 22:06:44 2013].978     92 10.168.255.70 TCP_MISS/302 0 GET
http://www.facebook.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 -
[Fri Mar 22 22:06:45 2013].295    409 10.168.255.70 TCP_HIT/200 210140 GET
http://www.flickr.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:06:45 2013].309    424 10.168.255.70 TCP_MISS/200 111388 GET
http://www.youtube.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:21:06 2013].802    145 10.168.255.70 TCP_HIT/200 210140 GET
http://www.flickr.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:21:06 2013].821    165 10.168.255.70 TCP_MISS/302 0 GET
http://www.facebook.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 -
[Fri Mar 22 22:21:07 2013].071    415 10.168.255.70 TCP_HIT/200 111359 GET
http://www.youtube.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:21:44 2013].928     92 10.168.255.70 TCP_MISS/302 0 GET
http://www.facebook.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 -
[Fri Mar 22 22:21:44 2013].968    131 10.168.255.70 TCP_MISS/200 210140 GET
http://www.flickr.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:21:45 2013].232    396 10.168.255.70 TCP_HIT/200 111162 GET
http://www.youtube.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:36:06 2013].779    167 10.168.255.70 TCP_MISS/302 0 GET
http://www.facebook.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 -
[Fri Mar 22 22:36:06 2013].961    349 10.168.255.70 TCP_HIT/200 210140 GET
http://www.flickr.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:36:07 2013].166    555 10.168.255.70 TCP_MISS/200 110520 GET
http://www.youtube.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:36:44 2013].901     92 10.168.255.70 TCP_MISS/302 0 GET
http://www.facebook.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 -
[Fri Mar 22 22:36:45 2013].135    326 10.168.255.70 TCP_HIT/200 111352 GET
http://www.youtube.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:36:45 2013].168    360 10.168.255.70 TCP_HIT/200 210140 GET
http://www.flickr.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:51:06 2013].732    166 10.168.255.70 TCP_MISS/302 0 GET
http://www.facebook.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 -
[Fri Mar 22 22:51:06 2013].814    248 10.168.255.70 TCP_MISS/200 210140 GET
http://www.flickr.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:51:07 2013].032    466 10.168.255.70 TCP_HIT/200 106375 GET
http://www.youtube.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 text/html
[Fri Mar 22 22:51:44 2013].838     93 10.168.255.70 TCP_MISS/302 0 GET
http://www.facebook.com 10.168.255.70 DEFAULT_PARENT/127.0.0.1 -

_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list

[pfSense] General question

Reply via email to