Tcp Port 8080 - News
Не забудьте в настройках роутера пробросить порты 8080 (публичные файлы), 443 (AccessBook), 9091 (веб-интерфейс Transmission), а также Incoming TCP Port из настроек Transmission. Стандартными средствами прошивки WD MyBook Live можно настроить только
Reversing Malware: Analysis of facebookmessenger malware
I started the analysis of this sample in my XP analysis VM. I began once again by taking a snapshot of the VM and a baseline using Regshot. I then started up Process Hacker and Capture Bat. Process Hacker is similar to Process Explorer but includes a few more advanced features, such as the ability to suspend a process and the ability to look into the memory of the process to see DLL's in use, what file handles are open, and basic network information very similar to TCP View. I will not cover how to run capture bat or take a snapshot as we have covered these items before. Next I went to the network tab and noticed facebook messenger opening a connection to smtp.mail.ru. At first this would seem to be a standard SMTP communication except that it is connecting to TCP port 8080 which is a standard web proxy or web server port. Using this port is most likely done to allow the malware to bypass firewalls that would normally block non-standard ports. Process hacker also indicated that facebook messenger was sending a TCP SYN, meaning it is expecting a live connection and response. Since the sample could not connect to it's server, the process went into a wait state using a UDP port. Since I wanted to find out more, I moved on to my Regshot and Capture Bat Analysis. The Capture bat analysis didn't show much of interest, it seems that the activity of this specimen primarily takes place in memory. During this process I tried to terminate the process several times, with task manager which did not work. It's a good thing I have Process Hacker. Process Hacker has an arsenal of ways to terminate processes in Windows, chances are that if you run into process termination protection, that Process Hacker can bypass it.
HoneyD doesn't provide services of it's own, just a redirect to another service. As a result, I setup netcat using the command 'nc -l -p 8080' to have netcat listen to port 8080. At this point the conenction completed and the facebook messenger sent out a sting of text. The text appears to be obfuscated and encrypted (shown in the above screenshot). After the connection completed, facebook messener turned itself into a listener and began to listen on a UDP port. Even though I was unable to understand what was being sent, it is fairly easy to determine that this malware is sending system information to a command and control and then setting up to wait for commands to come back.Tcp Port 8080 - Bookshelf
CompTIA Security+ Review Guide, Includes CD, Exam SY0-301
TFTP TFTP (Trivial FTP) uses UDP port 69. Telnet Telnet uses TCP port 23. HTTP HTTP (Hypertext Transfer Protocol) uses TCP port 80 or TCP port 8080. ...MCSE/MCSA Training Guide (70-215), Windows 2000 Server
If you change the TCP port for your Web site (to 8080, for example), ... For example, if your site was www.mydata.com and you were using TCP port 8080, ...Network Maintenance and Troubleshooting Guide, Field Tested Solutions for Everyday Problems
Web servers respond to TCP 80, or some other selected TCP port that the ... For example, if TCP port 8080 were used instead of the default web page TCP port ...Securing and controlling Cisco routers
You could configure the internal Web server to listen for Web traffic on a TCP port other than port 80. For example, you could configure the internal Web ...TCP/IP network administration
Port defines the TCP port number used by the server. The standard port number is 80. On occasion, private web servers run on other port numbers. ...Useful Information Directory
Port 8080 Information - TCP Port 8080
Port 8080 details: Protocol: TCP. IAMA status: N/A. Range: N/A. Traffic: ... TCP,UDP - HTTP Alternate (see port 80) TCP - Brown Orifice, Reverse WWW Tunnel Backdoor, ...
Port 8080 (tcp/udp) : SpeedGuide.net
SG Ports Services and Protocols - Port 8080 tcp/udp information, official and unofficial assignments, known security risks, trojans and applications use.
List of TCP and UDP port numbers - Wikipedia, the free ...
Originally, these port numbers were used by the Transmission Control Protocol (TCP) and the User Datagram ... HTTP Alternate (http_alt_alt)—used as an alternative to port 8080 ...
Port 8080 (webcache) Protocol Information - The ICT ...
Port 8080 (webcache) Protocol Information. ... Note, Without looking at the data being sent to or from the service using TCP/UDP port 8080 it will not be possible to identify it. ...
Documents Associated to attacker
... a crafted request to an affected device on TCP port 80, TCP port 443, or TCP port 8080. ... on TCP port 80, 443, or 8080. An attacker must perform a three-way TCP handshake and ...