Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Port 2222 (tcp/udp) Attack Activity - SANS Internet Storm Center Port 2222 (tcp/udp) Attack Activity


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Loading...
[get complete service list]
Port Information
Protocol Service Name
tcp AMD [trojan] Rootshell left by AMD exploit
tcp rockwell-csp2 Rockwell CSP2
udp rockwell-csp2 Rockwell CSP2
UDP [ICS] Ethernet/IP [ICS] Ethernet/IP
Top IPs Scanning
TodayYesterday
058.242.083.031 (549)058.242.083.031 (875)
151.021.170.057 (399)112.085.042.088 (743)
192.241.226.016 (60)159.089.182.194 (303)
206.189.152.215 (45)089.248.162.168 (167)
037.120.140.212 (39)037.120.140.212 (157)
091.206.015.133 (17)185.153.196.098 (118)
180.232.096.162 (16)202.057.130.034 (112)
180.250.162.009 (15)206.189.152.215 (66)
107.170.192.236 (14)054.039.025.192 (64)
178.128.079.169 (12)070.067.114.160 (64)
Port diary mentions
URL
2222tcp Probe Increase
User Comments
Submitted By Date
Comment
2004-09-09 06:58:57
Microsoft Office under Apple Macintosh OS-X broadcasts (255.255.255.255) UDP to port 2222, supposedly to check if anyone else is using the same version? s/n? of Office.
2004-07-01 16:26:45
Looks like Macs use this port for networking.
Add a comment
CVE Links
CVE # Description