Port: 993
Service: IMAP
Description: SSL (Secure Sockets layer)
Ports: 1001, 1011
Service: [NULL]
Note: * Silencer and WebEx open 1001 port. * Doly * opens port 1011.
Port: 1024
Service: Reserved
Note: It is the beginning of a dynamic port, and many programs do not care which port to connect to the network, they ask the system to assign the next idle port to them. Based on this, the allocation starts from port 1024. This means that the first request to the system will be assigned to port 1024. You can restart the machine, open Telnet, and then open a window to run natstat -a You will see that Telnet is assigned to port 1024. There is also SQL session that also uses this port and 5000 port.
Ports: 1025, 1033
Service: 1025: network blackjack 1033: [NULL]
Note: * netspy opens these 2 ports.
Port: 1080
Service: SOCKS
Note: This protocol passes through the firewall in a channel manner, allowing people behind the firewall to access INTERNET through an IP address. In theory it should only allow internal communication to reach INTERNET outward. But due to the wrong configuration, it will allow attacks located outside the firewall to pass through the firewall. This error often occurs in WinGate, and you often see this when joining IRC chat rooms.
Port: 1170
Service: [NULL]
Note: * Streaming Audio *, Psyber Stream Server, and Voice open this port.
Ports: 1234, 1243, 6711, 6776
Service: [NULL]
Note: * SubSeven2.0, Ultors * opens ports 1234 and 6776. The * SubSeven1.0/1.9 opens ports 1243, 6711, and 6776.
Port: 1245
Service: [NULL]
Description: * Vodoo opens this port.
Port: 1433
Service: SQL
Description: Microsoft's SQL service opens the port.
Port: 1492
Service: stone-design-1
Note: * FTP99CMP opens this port.
Port: 1500
Service: RPC client fixed port session queries
Description: RPC client fixed port session query
Port: 1503
Service: NetMeeting T.120
Description: NetMeeting T.120
Port: 1524
Service: ingress
Note: Many attack scripts will install a backdoor SHELL on this port, especially scripts that target Sendmail and RPC service vulnerabilities in SUN systems. If you see the connection attempt on this port just after installing a firewall, it is likely that the above reasons are. You can try Telnet to this port on the user's computer to see if it will give you a SHELL. This problem also exists when connecting to 600/pcserver.
Port: 1600
Service: isSD
Note: * Shivka-Burka opens this port.
Port: 1720
Service: NetMeeting
Description: NetMeeting H.233 call Setup.
Port: 1731
Service: NetMeeting Audio Call Control
Description: NetMeeting audio call control.
Port: 1807
Service: [NULL]
Note: The * SpySender opens this port.
Port: 1981
Service: [NULL]
Note: The * ShockRave opens this port.
Port: 1999
Service: cisco identification port
Note: * BackDoor opens this port.
Port: 2000
Service: [NULL]
Note: * GirlFriend 1.3 and Millenium 1.0 open this port.
Port: 2001
Service: [NULL]
Note: * Millenium 1.0, * Cow opens this port.
Port: 2023
Service: xinuexpansion 4
Note: * Pass Ripper opens this port.
Port: 2049
Service: NFS
Note: NFS programs often run on this port. Usually, you need to access the Portmapper to query which port this service runs on.
Port: 2115
Service: [NULL]
Note: * Bugs opens this port.
Ports: 2140, 3150
Service: [NULL]
Note: The * Deep Throat 1.0/3.0 opens this port.
Port: 2500
Service: RPC client using a fixed port session replication
Description: RPC customers who apply fixed port session replication
Port: 2583
Service: [NULL]
Note: * Wincrash 2.0 opens this port.
Port: 2801
Service: [NULL]
Note: Phineas Phucker opens this port.
Previous page123456Next pageRead the full text