Network Attack Blocker is Listing the IP of MY remote computer

  • 22 August 2021
  • 1 reply

Hi, we have recently installed Small Office Security.

I remote desktop into the server on a daily basis from my home office.

I have noticed that the Network Attack Blocker is showing the IP address of my LOCAL computer and listing it as an “Attacking computer IP” at random times (usually when I am logged in and active).

It is listing various Local TCP ports as being targeted e.g. 1433, 65180, 63975 

It shows “Network attack detected” - TCP - Blocked : Scan.Generic.PortScan.TCP - Blocked

I do not notice anything being blocked from my perspective as an RDP user.

My concern is that MY local machine is infected somehow and trying to do something nefarious?

IS this actually something to be concerned with? Or a false positive?

This topic has been closed for comments

1 reply

Userlevel 6
Badge +1

Hello @CaptainElectric!

It is necessary to collect additional logs from your device to investigate the issue, so please, create a ticket to Technical support via https://ksos.kaspersky.com/

Thank you!