Threat Level: green Handler on Duty: Manuel Humberto Santander Pelaez

SANS ISC: Port 5168 (tcp/udp) Attack Activity Port 5168 (tcp/udp) Attack Activity


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Loading...
[get complete service list]
Port Information
Protocol Service Name
tcp scte30 SCTE30
Top IPs Scanning
TodayYesterday
185.176.27.2 (34)45.141.86.122 (6)
151.106.59.214 (23)185.254.68.171 (6)
45.141.86.122 (12)89.248.174.201 (3)
185.176.27.110 (4)185.176.27.110 (3)
81.22.45.76 (2)185.137.234.186 (1)
Port diary mentions
URL
Ramp up on Port 5168
User Comments
Submitted By Date
Comment
Alex Dupuy 2009-10-04 18:45:22
This port used by TrendMicro ServerProtect "Normal Server" to receive pushed signature updates. http://kb.trendmicro.com/solutions/search/main/search/solutionPrint.asp?solutionID=23491
Melvin Klassen 2009-10-04 18:45:22
Patch available on 2007-08-22, for Trend Micro ServerProtect. See: http://isc.sans.org/diary.html?storyid=3306 (another "spike" in sources doing TCP:5168 scanning occurred around 31-OCT-2007).
2007-05-09 14:37:57
This port is being exploited currently in reference to: http://www.zerodayinitiative.com/advisories/ZDI-07-025.html http://www.zerodayinitiative.com/advisories/ZDI-07-024.html
Add a comment
CVE Links
CVE # Description