R
Robert Rathbun
Installed todays patch for XP and suddenly I have
activity on these ports immediately after installing the
patch. Going to reboot to see if this continues but the
odd part is this is a non MS addy. Are you guys using
this address for Windows Update. I may be a bit paranoid
but better safe than sorry.
My system is ran fairly tight, I still have not analyzed
the actions on these ports but wanted to make you guys
aware of it.
TCP 192.168.1.2:1444 208.57.90.177:3128
ESTABLISHED
TCP 192.168.1.2:1445 208.57.90.177:3128
ESTABLISHED
OrgName: MPOWER COMMUNICATIONS CORP.
OrgID: MPWR
Address: 175 SULLY'S TRAIL
Address: SUITE 350
City: PITTSFORD
StateProv: NY
PostalCode: 14534
Country: US
NetRange: 208.57.0.0 - 208.57.255.255
CIDR: 208.57.0.0/16
NetName: MPOWER-001
NetHandle: NET-208-57-0-0-1
Parent: NET-208-0-0-0-0
NetType: Direct Allocation
NameServer: NS2.MPOWERCOM.NET
NameServer: NS1.MPOWERCOM.NET
Comment:
RegDate:
Updated: 2001-12-28
TechHandle: ZM147-ARIN
TechName: MPOWER COMMUNICATIONS CORP.
TechPhone: +1-847-642-4375
TechEmail: (e-mail address removed)
OrgAbuseHandle: MIAA-ARIN
OrgAbuseName: Mpower IP Abuse Administrator
OrgAbusePhone: +1-702-310-7018
OrgAbuseEmail: (e-mail address removed)
OrgTechHandle: MITA-ARIN
OrgTechName: Mpower IP Technical Administrator
OrgTechPhone: +1-702-310-4578
OrgTechEmail: (e-mail address removed)
# ARIN WHOIS database, last updated 2003-09-09 19:15
# Enter ? for additional hints on searching ARIN's WHOIS
database.
activity on these ports immediately after installing the
patch. Going to reboot to see if this continues but the
odd part is this is a non MS addy. Are you guys using
this address for Windows Update. I may be a bit paranoid
but better safe than sorry.
My system is ran fairly tight, I still have not analyzed
the actions on these ports but wanted to make you guys
aware of it.
TCP 192.168.1.2:1444 208.57.90.177:3128
ESTABLISHED
TCP 192.168.1.2:1445 208.57.90.177:3128
ESTABLISHED
OrgName: MPOWER COMMUNICATIONS CORP.
OrgID: MPWR
Address: 175 SULLY'S TRAIL
Address: SUITE 350
City: PITTSFORD
StateProv: NY
PostalCode: 14534
Country: US
NetRange: 208.57.0.0 - 208.57.255.255
CIDR: 208.57.0.0/16
NetName: MPOWER-001
NetHandle: NET-208-57-0-0-1
Parent: NET-208-0-0-0-0
NetType: Direct Allocation
NameServer: NS2.MPOWERCOM.NET
NameServer: NS1.MPOWERCOM.NET
Comment:
RegDate:
Updated: 2001-12-28
TechHandle: ZM147-ARIN
TechName: MPOWER COMMUNICATIONS CORP.
TechPhone: +1-847-642-4375
TechEmail: (e-mail address removed)
OrgAbuseHandle: MIAA-ARIN
OrgAbuseName: Mpower IP Abuse Administrator
OrgAbusePhone: +1-702-310-7018
OrgAbuseEmail: (e-mail address removed)
OrgTechHandle: MITA-ARIN
OrgTechName: Mpower IP Technical Administrator
OrgTechPhone: +1-702-310-4578
OrgTechEmail: (e-mail address removed)
# ARIN WHOIS database, last updated 2003-09-09 19:15
# Enter ? for additional hints on searching ARIN's WHOIS
database.