Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Port 6346 (tcp/udp) Attack Activity Port 6346 (tcp/udp) Attack Activity

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
[get complete service list]
Port Information
Protocol Service Name
tcp gnutella-svc gnutella-svc
udp gnutella-svc gnutella-svc
tcp BearShare BearShare file sharing app
udp BearShare BearShare file sharing app
Top IPs Scanning
TodayYesterday (4) (163) (3) (14) (1) (5)
Port diary mentions
Corrected: From the mailbag
User Comments
Submitted By Date
2004-09-15 16:50:40
A lot of white nose generated from file-sharing which sends a message to many other machines saying 'talk to me on this port', the firewall just gets in the way and hence reports to ISC. Only cause for concirn I can see is that if there really was a vunribility or a worm using this port, it may go undetected.
Darrin 2004-06-21 17:07:40
6346.TCP is Limewire, a file sharing program P2P,default port
kill gnutella!!!! 2003-05-15 16:24:07
i connected to the network once and now i get a connection about 10 times a minute because of it. these file sharing apps are really agressive. do not use them unless you want to be ping flooded to death.
Add a comment
CVE Links
CVE # Description