[plug] port scans
Adam Davin
byteme-its at westnet.com.au
Mon Aug 8 16:17:03 WST 2005
G'day All,
On Mon, 8 Aug 2005 12:17:03 +0800
"Senectus ." <senectus at gmail.com> wrote:
> On 8/8/05, W.Kenworthy <billk at iinet.net.au> wrote:
> > I have noticed seemingly a lot more port scans recently, and a lot
> > of connection attempts to ports 1026 and 1027 which are listed as
> > trojan/backdoor possibilities. The last time I had a similar look
> > at the logs a few months back these ports didn't register. Has
> > anyone else noticed this?
>
> yeah, I've seen this.. they seem to be UDP connections (mostly from
> Korea) It's a trojan or Virus.. nothing worth stressing about.. just
> everyday Internet weather.
>
Since redoing my firewall I've seen lots of port 1026 / 1027 connect
attempts. Googling suggested that these ports were used by MSN for
particular services(?) or to allow annoying popups etc..
Regards,
--
Adam Davin
Byteme IT Services
Mob: 0422 893 898
Email: byteme-its at westnet.com.au
More information about the plug
mailing list