Confused by some entries blocked by Suricata

Started by hushcoden, February 03, 2021, 09:48:11 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 03, 2021, 09:48:11 PM
A few days ago I decided to not renew my Kaspersky licence and to use Windows Defender, but since then I see some 'strange' entries in the Suricata log, that is my laptop trying to connect to 205.185.216.10 or 205.185.216.42 and those two IP addresses trying to connect to my laptop (attached an example).

Does anybody has noticed the same, by any chance? It seems being related to Windows Update, I really doubt my laptop is infected...

Tia.
February 16, 2021, 10:10:58 PM #1 Last Edit: February 16, 2021, 10:17:05 PM by lfirewall1243
(Unoffial Community) OPNsense Telegram Group: https://t.me/joinchat/0o9JuLUXRFpiNmJk

PM for paid support
February 16, 2021, 10:48:20 PM #2
Thanks... didn't know MS also using Highwinds servers...
Print
Go Up Pages1
User actions