I'm getting these user/ alerts:
kernel: Intrusion -> IN=ppp0 OUT= MAC= SRC=115.230.125.147 DST=64.222.126.139 LEN=40 TOS=0x08 PREC=0x20 TTL=107 ID=256 PROTO=TCP SPT=64316 DPT=9064 WINDOW=15500 RES=0x00 SYN URGP=0 MARK=0x8000000
kernel: Intrusion -> IN=ppp0 OUT= MAC= SRC=61.240.144.66 DST=64.222.126.139 LEN=40 TOS=0x08 PREC=0x40 TTL=235 ID=17780 PROTO=TCP SPT=53556 DPT=5000 WINDOW=1024 RES=0x00 SYN URGP=0 MARK=0x8000000'
The IP addresses appear to be from China. My broadband was off and on about every 30 minutes all weekend, about the same frequency as I get these alerts. How can I prevent this? I have changed my "root" default password and all other user profiles have been disabled. Any help is appreciated. I'm not that technical, but I can configure some basic stuff on my router.
Aucun commentaire:
Enregistrer un commentaire