What you’re seeing is DHCP traffic, specifically broadcasts from a DHCP server (I assume your router) to the network. It’s likely a DHCP offer or possibly a DHCP Acknowledgement.
Normally, however the communication from the server to a requesting client uses the clients MAC address as an identifier. Without putting a packet sniffer on the link, it’s not easy to tell. But it is DHCP traffic.
The 10… address and the 192.168… addresses are both IANA reserved address spaces. Do you use a router, if so, what are the settings for it’s DHCP function. if you don’t have a router, are you on a cable network?
Run ipconfig /all from a command prompt, i’ll tell you your DHCP server address.
Well, your DHCP server is 10.255.9.176, which confirms my suspicions. The entries in the log are related to the same network and are likely servers at your ISP, although the configuration is a little strange. I’m pretty sure that if you ran a tracert to 10.24.0.1 it would be single or perhaps a double hop.
Easiest thing to do, is phone your ISP and ask them what these addresses relate to. As I said before, these are all part of the 10… private address space, they are not valid Internet addresses.
To disable NetBIOS, open the properties of you network adapter, select /Networking/Internet Protocol v 4/Properties/Advanced/WINS
Hmm I called my ISP call center sometime ago the lady on the phone told me that they are not using such addresses for any purpose whatsoever. :o.
I know these addresses are private addresses just like the 192.168.x.x
But I’m concerned since CIS logged one of those 10.x.x.x as sending me an ICMP intrusion attempt to my internet address instead the usual 255.255.255.255 broadcast! which indicates there’s man behind those private addresses instead of just machine.
The lady was saying they never use 10.anything. Could she be mistaken?
In the ipconfig screen shot you posted the DHCP server is 10.255.9.176. So unless your cable modem is acting as a DHCP server, I’d say she may be incorrect.
I don't have that ICMP intrusion log capture.
That’s a shame, it would have been nice to know which ICMP message your were getting. By the way, on the subject of ICMP messages, It doesn’t require human intervention to generate these, in fact the majority of ICMP messages are generated automatically.