Does Sophos 9.2 UTM use anything from amzn.dmgr:XX...:port180951

Correction ...not port, there is no port180951

Does Sophos UTM use anything from

amzn.dmgr:E***************************x:9kc*********:180951

I find this when I do a scan of my network and I find an unused 10.10.25.7 that it uses on my network I can get ping back from it. I assume it is from Amazon Cloud...but is it Sophos based or is it malicious?

I also find 10.10.25.7 in my logs dropped source hosts dropped 179 packets in IDS pie chart area. Then in top attackers it is #1 with 122 packets at 55%

.

Parents

0 BarryG over 11 years ago

Hi, what is the MAC for the .7 ip?

Barry
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Bluedog over 11 years ago in reply to BarryG

00 BC 5D 93 B2 12 As I said, I also scanned my Mac HD using another Mac clone and used Intego, Dr Web, and Sophos to fully scan the iMac's HD externally, nothing found.

Found it!!! My wife's Kindle that is new and she setup, I completely forgot about that one, and makes sense how linked into Amazon's backend.

DUH!! read the logs dummy.

.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 Bluedog over 11 years ago in reply to BarryG

00 BC 5D 93 B2 12 As I said, I also scanned my Mac HD using another Mac clone and used Intego, Dr Web, and Sophos to fully scan the iMac's HD externally, nothing found.

Found it!!! My wife's Kindle that is new and she setup, I completely forgot about that one, and makes sense how linked into Amazon's backend.

DUH!! read the logs dummy.

.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data