ET DNS Non-DNS or Non-Compliant DNS traffic on DNS port Opcode 8 through 15 set
ET DNS Non-DNS or Non-Compliant DNS traffic on DNS port Reserved Bit Set
|Destination||220.127.116.11 (Poland)||domain (53)|
- These rules are intended to detect non-compliant DNS. It does so.
- However, these rules are also triggered by SecureDNS traffic.
- This is Avast attempting to determine whether or not DNS hijacking is in place using SecureDNS.
- You can see it here: http://mxtoolbox.com/SuperTool.aspx?action=ptr%3a18.104.22.168&run=toolpage