|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Port Zero
nony101
last.za.net
Date: Tue Jul 19 2005 - 03:59:10 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I had in incident yesterday (18 June 2005), where a client's Windows box listed almost every possible port as open, listening in the same way described above. Similiar netstat -an output as above. From my experience this isn't normal.
A few hours later the machine rapidly starting sending packets to random addresses on port 443.
What could this possibly be? Is it a virus/backdoor/something malicious?
Baba, is that your whole netstat output?
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]