ET DNS Non-DNS or Non-Compliant DNS traffic on DNS port Opcode 8 through 15 set
ET DNS Non-DNS or Non-Compliant DNS traffic on DNS port Reserved Bit Set
|Destination||18.104.22.168 (Poland)||domain (53)|
- These rules are intended to detect non-compliant DNS. It does so.
- However, these rules are also triggered by SecureDNS traffic.
- This is Avast attempting to determine whether or not DNS hijacking is in place using SecureDNS.
- You can see it here: http://mxtoolbox.com/SuperTool.aspx?action=ptr%3a22.214.171.124&run=toolpage