Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Port 1025 Again

From: Mick <msluys () MBIT NL>
Date: Thu, 26 Oct 2000 01:19:40 +0200
I was checking a win200 machine. and noticed port 1025 open.
I put a filter on the port and the logs where filling.

Anyone got an idea? I know the port is called blackjack. And that's all i know


[26/Oct/2000 01:00:52] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:00:54] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:00:57] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:00:59] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:01:01] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 65.2.32.104:1542 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:01:31] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:01:33] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:01:35] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:01:37] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:01:39] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 24.163.65.110:2355 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:02:14] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:02:16] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:02:18] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:02:20] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:02:22] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 211.72.108.167:2774 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:04:33] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:04:35] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:04:37] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:04:39] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:04:41] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 128.138.34.145:4713 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:08:20] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 194.230.188.48:3881 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:08:54] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:08:56] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:08:58] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:09:00] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> 
xxx.xxx.xxx.xxx:1025 
[26/Oct/2000 01:09:02] Packet filter: ACL 2:0 Intel(R) PRO Adapter: deny packet in: UDP 151.203.194.109:4813 -> 
xxx.xxx.xxx.xxx:1025 


Thnx,

Mick
Previous By Date Next
Previous By Thread Next

Current thread: