Question

Locked

Hacking and the UDP protocol

By star_toller ·
I hope someone can shed some light on this for me, I would really appreciate it. I'm using Norton for my firewall and each time I connect to the web within seconds I get an alert saying there is a remote system trying to connect. It doesn't give any othe info except for the IP and that it is using the UDP protocol. How am I to know whether this is a legitimate connection or someone trying to hack in on my system. I have tried disabling the UDP comms, but then Google quits working. Can someone help a bruther out here. I would much appreciate it.

This conversation is currently closed to new comments.

3 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Collapse -

Doesn't sound legitimate to me

by Tony Hopkinson In reply to Hacking and the UDP proto ...

Normally the alert is backed up by a log entry with more details in it. If you can find that and post it, someone will be able to advise.

PS don't post your ip on here or there's for that matter, it might be they've been hacked, or it could be some winders network service

The port(s) it's using is usually a good starting point.

Collapse -

Firewall Log from Norton

by star_toller In reply to Doesn't sound legitimate ...

Rule "UDP" permitted (10.54.2.1,snmptrap(162)).
Inbound UDP packet.
Local address,service is (10.54.2.255,snmptrap(162)).
Remote address,service is (10.54.2.1,64692).
Process name is "N/A".

This is what is coming up in the log under Norton. And there are a lot of these instances in the log.

Back to Malware Forum
3 total posts (Page 1 of 1)  

Related Discussions

Related Forums