Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Port 6346 (tcp/udp) Attack Activity - Internet Security | DShield Port 6346 (tcp/udp) Attack Activity


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Loading...
[get complete service list]
Port Information
Protocol Service Name
tcp gnutella-svc gnutella-svc
udp gnutella-svc gnutella-svc
tcp BearShare BearShare file sharing app
udp BearShare BearShare file sharing app
Top IPs Scanning
TodayYesterday
185.40.4.246 (3)94.102.56.252 (16)
125.64.94.212 (3)125.64.94.220 (15)
77.83.174.140 (3)124.156.198.92 (1)
78.215.79.116 (2)77.83.174.140 (1)
92.118.37.81 (2)185.143.221.187 (1)
92.118.37.99 (2)92.118.37.81 (1)
81.22.45.37 (1)68.183.12.123 (1)
185.254.122.35 (1)176.57.70.76 (1)
() ()
() ()
Port diary mentions
URL
Corrected: From the mailbag
User Comments
Submitted By Date
Comment
2004-09-15 16:50:40
A lot of white nose generated from file-sharing which sends a message to many other machines saying 'talk to me on this port', the firewall just gets in the way and hence reports to ISC. Only cause for concirn I can see is that if there really was a vunribility or a worm using this port, it may go undetected.
Darrin 2004-06-21 17:07:40
6346.TCP is Limewire, a file sharing program P2P,default port
kill gnutella!!!! 2003-05-15 16:24:07
i connected to the network once and now i get a connection about 10 times a minute because of it. these file sharing apps are really agressive. do not use them unless you want to be ping flooded to death.
Add a comment
CVE Links
CVE # Description