OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Port 1025 Again
From: Mick (msluysMBIT.NL)
Date: Wed Oct 25 2000 - 18:19:40 CDT


I was checking a win200 machine. and noticed port 1025 open.
I put a filter on the port and the logs where filling.

Anyone got an idea? I know the port is called blackjack. And that's all i know

[26/Oct/2000 01:00:52] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:00:54] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:00:57] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:00:59] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:01:01] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:01:31] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:01:33] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:01:35] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:01:37] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:01:39] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:02:14] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:02:16] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:02:18] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:02:20] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:02:22] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:04:33] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:04:35] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:04:37] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:04:39] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:04:41] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:08:20] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 194.230.188.48:3881 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:08:54] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:08:56] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:08:58] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:09:00] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> xxx.xxx.xxx.xxx:1025
[26/Oct/2000 01:09:02] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> xxx.xxx.xxx.xxx:1025

Thnx,

Mick