My router logs are showing a lot of messages similar to the following:
ICMP: Dest Unreachable Port Unreachable, LOCAL source XX.xx.xxx.xxx:2502 (UDP), original dest 64.108.188.246:1026
Where the Xs are my IP address. As I understand it, port 1026 is the Windows Messenger port and is the subject of a lot of pop-up spam. I run virus protection on all my computers and can't find any trojans or bots on my computers.
I am probably getting about 2-3 of these messages a minute logged on my router. Do I need to be worried about them? As I understand it, it is easy to spoof a local source address. I am assuming that someone has spoofed my address and I am just getting a bounce-back error message. Is this correct?
FYI, according to DShield, another IP address that I "own" is getting logged as sending out these requests. I don't even have that IP address hooked up to a computer, so again I am assuming a spoofed source address. Am I correct?
Thanks, Jay