Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Port 5632 (tcp/udp) Attack Activity - SANS Internet Storm Center Port 5632 (tcp/udp) Attack Activity


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Loading...
[get complete service list]
Port Information
Protocol Service Name
tcp pcanywherestat pcanywherestat
udp pcanywherestat pcanywherestat
Top IPs Scanning
TodayYesterday
122.228.019.079 (7)107.170.203.238 (66)
125.064.094.211 (6)107.170.239.167 (56)
120.052.152.015 (5)092.118.160.045 (14)
092.118.160.025 (4)092.118.160.025 (13)
071.006.167.142 (4)107.170.239.176 (11)
092.118.160.037 (4)092.118.160.009 (11)
120.052.152.017 (4)107.170.202.017 (11)
082.221.105.006 (3)185.173.035.005 (10)
092.118.160.053 (3)120.052.152.015 (9)
092.118.160.017 (3)107.170.193.063 (8)
User Comments
Submitted By Date
Comment
2009-10-04 18:45:22
   ... pcAnywhere is a commercial remote control program that can be used for *illicit purposes* over networks, *preying* on misconfigured pcAnywhere "servers"... at best, it is a *misconfiguration* to run pcAnywhere clients mounting gratuitous, *unsolicited*, probes for pcAnywhere clients across the Internet (Symantec claims that out-of-the-box pcAnywhere installs no longer perform these gratuitous network probes)... if you use pcAnywhere over the Internet you should darn well know, in advance, precisely what host(s) you are lawfully permitted to connect to any only probe for/connect with those discrete IP-s... there is *no* excuse for mounting gratuitous probes for pcAnywhere servers over the Internet... none...
Add a comment
CVE Links
CVE # Description