[Anchoret]

"Port 31113 is a known vulnerability hole in Windows DNS servers and port 1026 is the vulnerability hack...Microsoft remote administrative privileges allow 'backdooring' into Microsoft operating systems via IP/TCP ports 1024 through 1030.

"DoD is the US Department of Defense, USAIC is the US Army Information Systems Command. The Australian Department of Defense, IBM, Intel, AT&T and Emirates Telecom are known NSA SIGINT proxies and contractors."

I also got similar pokes from Halliburton, NASA and the UKMoD. Identical probes are reported elsewhere on the Internet.

Here are the logs. Thoughts?

2007-11-08 01:28:22;AT&T Global Network
Services;32.131.37.13:31113;xxx.xxx.107.83:1026;UDP;Blocked

2007-11-08 02:18:11;Emirates Telecommunications
Corporation;195.229.200.93:31113;xxx.xxx.107.83:1026;UDP;Blocked

2007-11-08
03:17:51;USAISC;160.139.84.197:31113;xxx.xxx.107.83:1026;UDP;Blocked

2007-11-08 19:23:54;Intel
Corporation;192.198.162.254:31139;xxx.xxx.107.109:1026;UDP;Blocked

2007-11-08 19:47:21;IBM
Corporation;9.184.117.29:31139;xxx.xxx.107.109:1026;UDP;Blocked

2007-11-08 21:06:01;Australian Department of
Defence;146.221.50.105:31139;xxx.xxx.107.109:1026;UDP;Blocked

2007-11-08 21:12:35;USAISC Eastern
Area;144.105.17.244:31139;xxx.xxx.107.109:1026;UDP;Blocked

2007-11-08 21:29:10;DoD Network Information
Center;29.214.246.94:31138;xxx.xxx.107.108:1026;UDP;Blocked

[Anchoret]

Awfully quiet in here all of a sudden.

[lunarlander]

My guess is those various computers are compromised PCs or are part of a botnet. I dont think the Austrailian Dept of Defence will be interested in breaking into your computer.