|
Posted by Ansgar -59cobalt- Wiechers on March 19, 2007, 5:09 pm
If you were Registered and logged in, you could reply and use other advanced thread options > A few months ago I noticed that I start to get a High priority warning
> about a port scan on my PC. This is a work PC that is connected to a
> wireless router and a DSL modem. After having a closer look and doing
> a BackTrace the IP address belongs to my ISPs DNS server. Is this
> normal?
You should ask your ISP that, since they are the only ones who'd be able
to answer the question.
> Severity = Major
> Direction = Inbound
> Protocol = UDP
That's not very informative. Is that all that's in your logs? Did you
run a sniffer to capture the traffic from that portscan for further
analysis?
cu
59cobalt
--
"If a software developer ever believes a rootkit is a necessary part of
their architecture they should go back and re-architect their solution."
--Mark Russinovich
| 
XML site map