Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

domain controler port scanning one computer on network

Posted on 2004-08-25
4
Medium Priority
?
215 Views
Last Modified: 2010-04-11
I have vpn conections through sonicwall tz170's from our head office to our branches.  Recently one of our sonicwalls started reporting that our 2003 domain controler was port  scanning one of the computers at a branch.  It is only one computer and is always the same every 15min to an hour.  here is a what the sonicwall warning says "08/25/2004 15:58:29.336 -       Possible port scan dropped -       Source:*.*.151.1, 53, WAN -       Destination:*.*.155.39, 1226, LAN -       TCP scanned port list, 1219, 1219, 1219, 1219, 1219 - "  the port does not stay the same it goes from 1100 or so to 4000 or so.  climbs and then starts over again.  This computer is not on the domain but is is a 2000 box that is actually just a dumb terminal that is used to connect to a terminal server.  The *.*.151.1 is one of our domain controlers.  It has been scaned for viruses and come up clean.  But I do not think it is a virus problem becasue it is centered around just one computer.  We have identical systems at other branches with sonicwalls there and do not have the same problem.  Any suggestions would be greatly apreciated.
0
Comment
Question by:walub
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 4

Expert Comment

by:ErikPhilips
ID: 11897897
Did you also check for trojans and IE crapola?  Try using spybot search and destroy

http://www.safer-networking.org/en/index.html
0
 

Author Comment

by:walub
ID: 12123185
I figured out what the problem. it was that the systems still had the extention .mydomain.com under computername; networkid.  thanks for the attempt though.
0
 

Accepted Solution

by:
modulo earned 0 total points
ID: 12602387
PAQed with points refunded (250)

modulo
Community Support Moderator
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question