Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
Upsurge in port 137 scans
Message
From
29/09/2002 17:25:36
Naomi Nosonovsky
Wisconsin, United States
 
 
To
29/09/2002 03:57:13
Al Doman (Online)
M3 Enterprises Inc.
North Vancouver, British Columbia, Canada
General information
Forum:
Visual FoxPro
Category:
Other
Title:
Re: Upsurge in port 137 scans
Miscellaneous
Thread ID:
00705645
Message ID:
00705708
Views:
9
>My firewall has logged a large upsurge in port 137 scans over the last couple of days. This evening, every 1 to 5 minutes, from a large and unique set of source IPs, with most source ports 1025 to 1030. Is anyone else seeing this?
>
>If it's not just me, it looks like a lot of hosts have been compromised and may be suborned into a massive search for other vulnerable systems. Port 137 is used by Windows NetBIOS/SMB file service so if you're purposely or inadvertently exposing this service to the Internet you might want to be extra vigilant.
>
>If you're not firewalled, if you're running Win9x, or if you're not sure of your status take a look at the ShieldsUp! test at http://grc.com .

http://www.sdesign.com/securitytest/win9xsecurity.html
http://cable-dsl.home.att.net/netbios.htm
If it's not broken, fix it until it is.


My Blog
Previous
Reply
Map
View

Click here to load this message in the networking platform