Hi, we have recently installed Small Office Security.
I remote desktop into the server on a daily basis from my home office.
I have noticed that the Network Attack Blocker is showing the IP address of my LOCAL computer and listing it as an “Attacking computer IP” at random times (usually when I am logged in and active).
It is listing various Local TCP ports as being targeted e.g. 1433, 65180, 63975
Network Attack Blocker is Listing the IP of MY remote computer
in Kaspersky Small Office Security & Management Console
Posted
Hi, we have recently installed Small Office Security.
I remote desktop into the server on a daily basis from my home office.
I have noticed that the Network Attack Blocker is showing the IP address of my LOCAL computer and listing it as an “Attacking computer IP” at random times (usually when I am logged in and active).
It is listing various Local TCP ports as being targeted e.g. 1433, 65180, 63975
It shows “Network attack detected” - TCP - Blocked : Scan.Generic.PortScan.TCP - Blocked
I do not notice anything being blocked from my perspective as an RDP user.
My concern is that MY local machine is infected somehow and trying to do something nefarious?
IS this actually something to be concerned with? Or a false positive?