[plug] port scans

Adam Davin byteme-its at westnet.com.au
Mon Aug 8 16:17:03 WST 2005


G'day All,

On Mon, 8 Aug 2005 12:17:03 +0800
"Senectus ." <senectus at gmail.com> wrote:

> On 8/8/05, W.Kenworthy <billk at iinet.net.au> wrote:
> > I have noticed seemingly a lot more port scans recently, and a lot
> > of connection attempts to ports 1026 and 1027 which are listed as
> > trojan/backdoor possibilities.  The last time I had a similar look
> > at the logs a few months back these ports didn't register.  Has
> > anyone else noticed this?
> 
> yeah, I've seen this.. they seem to be UDP connections (mostly from
> Korea) It's a trojan or Virus.. nothing worth stressing about.. just
> everyday Internet weather.
> 
Since redoing my firewall I've seen lots of port 1026 / 1027 connect
attempts. Googling suggested that these ports were used by MSN for
particular services(?) or to allow annoying popups etc..

Regards, 

-- 

Adam Davin
Byteme IT Services
Mob: 0422 893 898
Email: byteme-its at westnet.com.au



More information about the plug mailing list