posted on Jun, 3 2005 @ 12:55 AM
How often do you check your firewall logs? It sounds like a script kiddie running a port scan to me. No big deal, it happens all the time. I have
absolutley nothing of value on this PC and it gets scanned several times a day.
I run a little utility that uploads my firewall log files to DShield.org
once an hour. DShield collects firewall
logs from all over the world and compiles them into a huge database to show what ports are the most attacked, what IP address has launched the most
attacks, etc. I highly recommend everyone running a firewall (even Zone Alarm) go to DShield, download their small app (it's only like 50k or so)
and then run it and help compile data about internet attacks.
Dshield shows a stat called Survival Time
. It is the length of time the average, unpatched Windows
computer will last on the internet before it is infected by a worm. Yesterday's Survival Time was 84 minutes, and that's fairly high.
The DShield database is used by the Internet Storm Center
from SANS to put out security alerts and monitor security
trends. They have a 'handler' on duty each day and I highly recommend reading the handler's diary entry every day if you have an internet