--------------E9873A4A256F90FAC6E3B46C Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Whoops, I abruptly cut off the last message before clueing you into this last tidbit. The fact that the person is trying to connect to 2140 does not necessarily mean that you have the Trojan on your computer. It might just be a harmless Trojan scan. The best way to figure this out is to either update your virus definitions and scan for it, or if you are on a Windows box, drop into your command line and type 'netstat -a' without the ' of course. This will show you a current list of all ports that are open on your computer. Look through that list to see if you find any of those open ports. Sorry for the confusion, or the paranoia that you might have suffered in knowing that you might have a trojan on your box. ~Jayson Broughton HQ-All Bases Covered Network & Security Admin -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.2 for non-commercial use <http://www.pgp.com> iQA/AwUBOI4kW6e75Wq9veF/EQL8ggCg96Iuay+1bYkqtHrRVV869+K78kcAoKBZ AUYEtdwnckw8ATNMnNPK6O5h =dZgZ -----END PGP SIGNATURE----- Ruben Vandille wrote: > Hi there, > > Since a week or something like that, someone/something tries to connect via > UDP to port 2140 of my computer... > I haven't found any information on possible attacks that use "remote port > 2140"... > > Does anybody know what is happening here? > > Thanx in advance, > > R. --------------E9873A4A256F90FAC6E3B46C Content-Type: text/html; charset=us-ascii Content-Transfer-Encoding: 7bit <!doctype html public "-//w3c//dtd html 4.0 transitional//en"> <html> <font color="#000000">-----BEGIN PGP SIGNED MESSAGE-----</font> <br><font color="#000000">Hash: SHA1</font><font color="#000000"></font> <p><font color="#000000">Whoops,</font> <br><font color="#000000">I abruptly cut off the last message before clueing you into this last</font> <br><font color="#000000">tidbit. The fact that</font> <br><font color="#000000">the person is trying to connect to 2140 does not necessarily mean</font> <br><font color="#000000">that you have the</font> <br><font color="#000000">Trojan on your computer. It might just be a harmless Trojan scan.</font> <br><font color="#000000">The best way to</font> <br><font color="#000000">figure this out is to either update your virus definitions and scan</font> <br><font color="#000000">for it, or if you are on a</font> <br><font color="#000000">Windows box, drop into your command line and type 'netstat -a'</font> <br><font color="#000000">without the ' of course.</font> <br><font color="#000000">This will show you a current list of all ports that are open on your</font> <br><font color="#000000">computer. Look</font> <br><font color="#000000">through that list to see if you find any of those open ports.</font> <br><font color="#000000">Sorry for the confusion, or the paranoia that you might have suffered</font> <br><font color="#000000">in knowing that you</font> <br><font color="#000000">might have a trojan on your box.</font><font color="#000000"></font> <p><font color="#000000">~Jayson Broughton</font> <br><font color="#000000">HQ-All Bases Covered</font> <br><font color="#000000">Network & Security Admin</font><font color="#000000"></font> <p><font color="#000000">-----BEGIN PGP SIGNATURE-----</font> <br><font color="#000000">Version: PGPfreeware 6.5.2 for non-commercial use <<A HREF="http://www.pgp.com">http://www.pgp.com>></font><font color="#000000"></font> <p><font color="#000000">iQA/AwUBOI4kW6e75Wq9veF/EQL8ggCg96Iuay+1bYkqtHrRVV869+K78kcAoKBZ</font> <br><font color="#000000">AUYEtdwnckw8ATNMnNPK6O5h</font> <br><font color="#000000">=dZgZ</font> <br><font color="#000000">-----END PGP SIGNATURE-----</font> <br><font color="#FFFFFF"></font> <p>Ruben Vandille wrote: <blockquote TYPE=CITE>Hi there, <p>Since a week or something like that, someone/something tries to connect via <br>UDP to port 2140 of my computer... <br>I haven't found any information on possible attacks that use "remote port <br>2140"... <p>Does anybody know what is happening here? <p>Thanx in advance, <p>R.</blockquote> </html> --------------E9873A4A256F90FAC6E3B46C--
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:59:17 PDT