I've got a standard broadband internet connection (NTL in the UK) connected directly to one PC using a USB.
However, a while ago I was getting repeated High Alert attacks from someone in North or South Korea (I saw their 'location' on the map in Hacker ID when the alert popped up). This has happened less frequently in the past week or so.
Now, I'm getting lots of High Alert attacks on Port 80 on my PC but have no idea why I get so many or what to do about it.
The Zone Labs SmartDefense Advisor says 'ZoneAlarm Security Suite prevented a remote computer from connecting to port 80 on your computer. This connection attempt was probably a port scan trying to find unprotected Web servers'.
The Hacker ID is normally a reserved address (no map available, but has TCP Port 3789).
In the past two days I've carried out a full scan with the Zone Alarm Virus Scan and the online Panda Active Scan which found nothing. My HijackThis log looks pretty normal too.
I'd appreciate any help in establishing why a port may be attacked over and over again by the same attacker. Thanks.
PS What is a TCP Port?
Operating System:Windows XP Home Edition
Product Name:ZoneAlarm Internet Security Suite