Re: strange TCP packets emited by server
From: Matt Scarborough (vexversa@verizon.net)
Date: 09/29/02
- Next message: Justin Casell: "Audit Logs."
- Previous message: R.N. Folsom: "Security Tab Extra Marks Mystery"
- In reply to: Raphaël: "strange TCP packets emited by server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Matt Scarborough <vexversa@verizon.net> Date: Sat, 28 Sep 2002 22:20:21 +0000
Do you use CA antivirus product, e.g., InoculateIT or eTrust?
Port 42510 is used to contact non-AV-Policy-compliant clients via RPC.
Matt Scarborough 2002-09-28
On Fri, 27 Sep 2002 09:26:27 +0200, Raphaël wrote
<#H6CKcfZCHA.392@tkmsftngp09>
> Hello ALL,
>
> I wonder what does mean those strange tcp packets which my Windows 2000
> Server System process is sending to all my domain's computers and the
> 0.0.0.192 adress.
> If think it is since I installed latest Windows 2000 PRE-SP4 Patches and
> reboot.
>
> extract from tcpview tool :
>
> System:8 TCP serveur1419 192.168.100.4:42510 SYN_SENT
> System:8 TCP serveur1421 192.168.100.5:42510 SYN_SENT
> System:8 TCP serveur1424 192.168.100.6:42510 SYN_SENT
> and many, many :
> System:8 TCP serveur 1450 0.0.0.192:42510 SYN_SENT
>
> This is anoying cause it's filling my firwall log on the 0.0.0.192 adress!
> Hope it is not harmfull.
>
> Thanx for any idea.
>
- Next message: Justin Casell: "Audit Logs."
- Previous message: R.N. Folsom: "Security Tab Extra Marks Mystery"
- In reply to: Raphaël: "strange TCP packets emited by server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
