Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Oh no! Snort tells me I visited a compromised website!

From: Teo En Ming <teo.en.ming () gmail com>
Date: Tue, 15 Apr 2014 04:49:09 +0800
Snort tells me I visited a compromised website on my Windows computer!
Norton Internet Security 2014 didn't warn me about the compromised website!

Here are the snort alerts:

04/15-03:19:25.460308  [**] [1:24884:2] MALWARE-OTHER Compromised website
response - leads to Exploit Kit [**] [Classification: Misc activity]
[Priority: 3] {TCP} 204.12.217.19:80 -> 192.168.1.2:24740
04/15-03:19:25.460308  [**] [1:24883:2] MALWARE-OTHER Compromised website
response - leads to Exploit Kit [**] [Classification: Misc activity]
[Priority: 3] {TCP} 204.12.217.19:80 -> 192.168.1.2:24740
04/15-03:19:25.565111  [**] [1:24899:3] MALWARE-OTHER Compromised Website
response - leads to Exploit Kit [**] [Classification: Misc activity]
[Priority: 3] {TCP} 204.12.217.19:80 -> 192.168.1.2:24740

What should I do?

Regards,

Teo En Ming

------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their
applications. Written by three acclaimed leaders in the field,
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/NeoTech
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: