Any ideas?
Yes, have you done a ping on that IP to see if it's running or not? Done a whois on it to get the admin info so you can send him these logs? If you are really bothered by this, send the logs to the admin after doing a whois.
Heh... I'm tired of telling (for example) some Chinese ISP to crack down on its users. I generally only complain to universities or (some) UK ISPs now, as I feel I'm can get somewhere with them. In all honesty I don't ofetn bother checking who's scanning me these days, unless they're being really blatant about it. I *don't* mind being scanned, it's "one of those thing". I *do* mind my firewall logs telling me it's letting packets through that it shouldn't - that was what my question was about, after all.... I can send my (comments removed) FW config if anyone want a look.... Ta, Tom.