psad false positives or something more sinister ?

[GoofKing]

I rarely check my logs (which I think I ought to start checking more now) and psad is reporting back door connection attempts in the top signatures log file as well as "SCAN UPnP communication attempt" 1135 1 udp and "ICMP Destination Unreachable Host Unreachable" 146 1 icmp which I think is just a scanning but the back doors include Deepthroat 3.1 Server Response , win-trin00 connection attempt and another deepthroat server response.

Am I going to have re-install Debian or do I need to investigate what the hell is going on ?

 

[Turnip]

Where's the problem?

 

[GoofKing]

Where's the problem?

Well my dad picked up some weird network traffic coming from Google, which Google seems to be scanning my machine. I think someone is attempting to break into my computer by exploiting it with back doors :/

 

[Turnip]

That doesn't seem to be credible, at least going by the evidence that you've posted. You should probably spend more time checking the meaning of the log entries before becoming concerned.

 

[GoofKing]

I just checked them again and this time I got suspicious traffic from Australia, whom of which looks like tried to upload a file to my computer all these backdoors for Windows :/ Is it okay if I PM you some of the log data Turnip (I sort of trust you being an Aspie and all, plus you might be a little more understanding about how stupid it is to give out information like that) ?

 

[GoofKing]

That doesn't seem to be credible, at least going by the evidence that you've posted. You should probably spend more time checking the meaning of the log entries before becoming concerned.

Well even if it is suspicious traffic or not, I don't think the attacker would be much of a threat if my psad can pick up his activity ... Might be just a script kiddie ?