I receive alerts from my router of (possible) malicious activity (trying to sound professional here... just kidding). Anyways... I keep getting these messages from my router:
TCP- or UDP-based Port Scan DETECTED on Mon May 20 11:35:47 2013
targeting 173.25.150.217,58220, sent from 97.64.209.36,53
and:
SYN Flood DETECTED on Sun May 19 18:46:42 2013
targeting 67.202.66.202,80, sent from 192.168.0.10,51050
173.25.150.217 is my external address to my ISP. 97.64.x.x is my ISP's DNS server. 192.168.x.x is a device on my local network. 67.202.66.202 is unknown to me.. and isn't tied to me (or my ISP) at all. I tried looking it up and it came back as "Steadfast Networks DNS".
Any ideas what this is, why it's happening, or what the 67.202.x.x address is? Thanks guys
TCP- or UDP-based Port Scan DETECTED on Mon May 20 11:35:47 2013
targeting 173.25.150.217,58220, sent from 97.64.209.36,53
and:
SYN Flood DETECTED on Sun May 19 18:46:42 2013
targeting 67.202.66.202,80, sent from 192.168.0.10,51050
173.25.150.217 is my external address to my ISP. 97.64.x.x is my ISP's DNS server. 192.168.x.x is a device on my local network. 67.202.66.202 is unknown to me.. and isn't tied to me (or my ISP) at all. I tried looking it up and it came back as "Steadfast Networks DNS".
Any ideas what this is, why it's happening, or what the 67.202.x.x address is? Thanks guys