Results 1 to 3 of 3

Thread: Port 445?

  1. #1
    George Orwell
    Guest

    Port 445?


    Since putting BeeThink on our servers, I have seen a lot of
    connect attempts to port 445. What are people trying to do
    on that port?

    Il mittente di questo messaggio|The sender address of this
    non corrisponde ad un utente |message is not related to a real
    reale ma all'indirizzo fittizio|person but to a fake address of an
    di un sistema anonimizzatore |anonymous system
    Per maggiori informazioni |For more info
    https://www.mixmaster.it


  2. #2
    Bit Twister
    Guest

    Re: Port 445?

    On Wed, 18 Aug 2010 08:35:02 +0200 (CEST), George Orwell wrote:
    >
    > Since putting BeeThink on our servers, I have seen a lot of
    > connect attempts to port 445. What are people trying to do
    > on that port?


    https://secure.dshield.org/port.html?port=445

  3. #3
    Rick
    Guest

    Re: Port 445?

    George Orwell wrote:
    > Since putting BeeThink on our servers, I have seen a lot of
    > connect attempts to port 445. What are people trying to do
    > on that port?
    >
    > Il mittente di questo messaggio|The sender address of this
    > non corrisponde ad un utente |message is not related to a real
    > reale ma all'indirizzo fittizio|person but to a fake address of an
    > di un sistema anonimizzatore |anonymous system
    > Per maggiori informazioni |For more info
    > https://www.mixmaster.it
    >


    http://www.grc.com/port_445.htm
    ::
    ....port 445 is "SMB over IP". (SMB is known as "Samba" and stands for "Server Message Blocks".) After all of the trouble the personal computer
    industry has had with Microsoft's original Windows NetBIOS ports 137 through 139, it is difficult to imagine or believe that Microsoft could have
    actually made things significantly worse with their replacement port 445 . . . but they did.

    Whereas the great vulnerability originally created by Windows file sharing was that hackers could perhaps gain remote access to the contents of hard
    disk directories or drives, the default exposure of the Internet server Microsoft silently installed into every Windows 2000 system (where port 445
    first appeared), allows malicious hackers to remotely log onto the computers of unsuspecting users ó across the Internet ó and more recently, though
    the use of some clever and readily available freeware tools (PsExec from SysInternals) to silently upload and run (in the remote user's computer) any
    programs of their choosing without the computer's owners ever being aware.

    As you might imagine, malicious hackers have been having a field day scanning for port 445, then easily and remotely commandeering Windows machines.
    Even several hackers I have spoken with are unnerved by the glaring insecurities created by port 445. One chilling consequence of port 445 has been
    the relatively silent appearance of NetBIOS worms. These worms slowly but methodically scan the Internet for instances of port 445, use tools like
    PsExec to transfer themselves into the new victim computer, then redouble their scanning efforts. Through this mechanism, massive, remotely controlled
    Denial of Service "Bot Armies", containing tens of thousands of NetBIOS worm compromised machines, have been assembled and now inhabit the Internet.

Similar Threads

  1. Very high Network buffer - Netalyzr
    By HanDy_man in forum Broadband Tweaks Help
    Replies: 11
    Last Post: 03-03-11, 11:49 PM
  2. (long post) New system and new tech advice and help.
    By osuprowler in forum Hardware & Overclocking
    Replies: 11
    Last Post: 10-07-08, 10:05 PM
  3. Problem in Port Forwarding for Windows Remote Desktop or VNC
    By Alterego in forum Networking Forum
    Replies: 4
    Last Post: 09-17-08, 09:22 AM
  4. Are they rationing rice in your area yet?
    By RoundEye in forum General Discussion Board
    Replies: 10
    Last Post: 04-24-08, 08:21 PM
  5. Katrina victim sues U.S. for $3 quadrillion
    By YARDofSTUF in forum General Discussion Board
    Replies: 44
    Last Post: 01-31-08, 01:33 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •