Solved

Known uses of TCP ports 3030 4357?

Posted on 2008-06-20
6
2,913 Views
Last Modified: 2011-10-19
We are seeing alot of traffic between 2 servers that really shoundt be comunicating and it is on tcp ports 3030 and 4357. does anyone know what theese ports are commonly used for?
0
Comment
Question by:mgartley
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 6

Accepted Solution

by:
JapyDooge earned 250 total points
ID: 21831563
Does these services names tell you something?
arepa-cas       3030/tcp   Arepa Cas
arepa-cas       3030/udp   Arepa Cas
qsnet-cond      4357/tcp   QSNet Conductor
qsnet-cond      4357/udp   QSNet Conductor

Open in new window

port-numbers.txt
0
 
LVL 9

Expert Comment

by:jasonr0025
ID: 21831580
arepa-cas uses tcp and udp port 3030 and all the info i can find on it says it is not a known virus port. QSNet Conductor uses 4357 tcp and udp.  I know this isn't much but all i could find.
HTH
Jason
0
 
LVL 21

Expert Comment

by:from_exp
ID: 21831660
i would suggest doing from cmd

netstat -aon
then check the pid in task manager to see the app using mentioned ports
0
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

 
LVL 18

Assisted Solution

by:Johnjces
Johnjces earned 250 total points
ID: 21833061
Here is a good link to the IANA port assignments, or those 'good' applications that have registered and reserved those ports...

http://www.iana.org/assignments/port-numbers

Of course, there is nothing to say that some new malware won't use any port it wants too as  long as it is not in use.

And here is very good listing of known virus ports and added info.

http://www.chebucto.ns.ca/~rakerman/trojan-port-table.html

John
0
 
LVL 16

Expert Comment

by:The--Captain
ID: 21836652
You could just block those ports and if no one lodges valid complains, then it was not an authorized use ;-)

Cheers,
-Jon
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 21842447
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question