Re: Scanning Port UDP 4668

From: David Thiel (lxat_private)
Date: Tue Aug 06 2002 - 11:30:37 PDT

Next message: Jeff Kell: "Strange pings from akamai?"

Previous message: H C: "Re: (AUSCERT#c42e2) Re: odd traffic on port 80 from win 98 system -Frethem.K"
In reply to: Ken Grossman: "RE: Scanning Port UDP 4668"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Aug 06, 2002 at 11:30:55AM -0400, Ken Grossman wrote:
> There's a P2P utility called EDonkey that uses UDP 466x and allows any
> edonkey user to publish an IP and port of a peer.  Apparently, someone
> mistyped an IP address; hence the scans.

There's also an application called Overnet, a successor to eDonkey,
that relies on active scanning rather than predefined server lists.
It uses a similar port range to eDonkey.  More info on www.overnet.com.

-david

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Jeff Kell: "Strange pings from akamai?"
Previous message: H C: "Re: (AUSCERT#c42e2) Re: odd traffic on port 80 from win 98 system -Frethem.K"
In reply to: Ken Grossman: "RE: Scanning Port UDP 4668"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Aug 06 2002 - 15:50:48 PDT