RE: What does this mean?

From: Jason Haith (jhaith_at_genesissys.com)
Date: 04/26/04

  • Next message: Bob Beck: "RE: Spy-Ware Detection for Small Networks"
    To: "Adnan Ali" <call_ret@yahoo.com>, <security-basics@securityfocus.com>
    Date: Mon, 26 Apr 2004 12:32:44 -0500
    
    

    The ports you have open are Microsoft services, for a good explanation of
    what they are you can go to http://grc.com/PortDataHelp.htm . This will give
    you info on the ports, what they do, and how to close them. Hope this helps.

    Jason Haith
    Systems Administrator
    Genesis Systems
    5712 S. 77th St
    Omaha, NE 68127
    Email: jhaith@genesissys.com

    -----Original Message-----
    From: Adnan Ali [mailto:call_ret@yahoo.com]
    Sent: Monday, April 26, 2004 7:59 AM
    To: security-basics@securityfocus.com
    Subject: What does this mean?

    Hello all,

    I have a simple question and I hope to get an answer
    from the experts on this list.

    I have a PC running Windows 2000 Prof, and when I do
    a netstat -an, I get the following:

    Active Connections:
    Proto Local Addr Foreign Addr State
    ============================================

    TCP 0.0.0.0:135 0.0.0.0:0 LISTENING

    TCP 0.0.0.0:445 0.0.0.0:0 LISTENING

    TCP 0.0.0.0:1026 0.0.0.0:0 LISTENING

    TCP 0.0.0.0:1027 0.0.0.0:0 LISTENING

    UDP 0.0.0.0:135 *:*
    UDP 0.0.0.0:445 *:*
    UDP 0.0.0.0:1025 *:*
    UDP 0.0.0.0:38037 *:*
    UDP 172.20.4.76:500 *:*

    I get this output even when I am running no network
    application on the machine.

    Of course, this all seems quite suspicious.

    Can somebody please help me figure out what is going
    on? At least find the respective applications
    listening
    on various ports.??

    Thanks and best regards,

    __________________________________
    Do you Yahoo!?
    Yahoo! Photos: High-quality 4x6 digital prints for 25"
    http://photos.yahoo.com/ph/print_splash

    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the
    skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------


  • Next message: Bob Beck: "RE: Spy-Ware Detection for Small Networks"

    Relevant Pages

    • RE: Removing Local Admin Rights...
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • RE: securing password list
      ... recovery from a "fireproof" cabinet. ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • RE: New Trojan?
      ... > Ethical Hacking at the InfoSec Institute. ... Attend a course taught by an expert instructor with years of ... pen testing experience in our state of the art hacking lab. ... to facilitate one-on-one interaction with one of our expert instructors. ...
      (Security-Basics)
    • RE: HIPAA_Compliance
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • RE: Cisco CSA
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)