Possibly a trojan: http://isc.incidents.org/port_details.html?port=7777 http://www.seifried.org/security/ports/7000/7777.html But it sounds like an IRC server is running. It is also possible that a trojan is running the IRC server (I have not researched the Tini Trojan), but it is hard to know without more information. Try a google on "port 7777". BP -----Original Message----- From: Nick Jacobsen [mailto:nickat_private] Sent: Wednesday, August 20, 2003 12:56 PM To: pen-testat_private Subject: Port 7777 oddities Hey there, hoping I could get some help... I am doing a blind penetration test for a local ISP, and on one of their *nix boxes, I came accross port 7777 open. When I connection to it (using netcat), I get the message "1 has joined."... but I can get nothing else out of it, no matter what I try. any idea on what this might be? Thanks, Nick Jacobsen Ethics Design nickat_private <mailto:nickat_private>
This archive was generated by hypermail 2b30 : Thu Aug 21 2003 - 09:41:26 PDT