LITTLEBLACKDOG.COM Forum Index LITTLEBLACKDOG.COM

 
LWD LWD   FAQ FAQ   Memberlist Memberlist   Usergroups Usergroups   Active Topics Active Topics   Register Register  
  Profile Profile   Log in to check your private messages Log in to check your private messages   Log in Log in  
  Who is Online Who is Online   Image Gallery Image Gallery   Chat Chat   Search Search  
  LWDGear       LBDGear  

callbook process on port 2000
 View next topic
View previous topic
Post new topic     Reply to topic   LITTLEBLACKDOG.COM Forum Index » Networking
Author Message
creed
Veteran Dog
Veteran Dog


Joined: 08 Nov 2003
Age: 97
Posts: 6337
Location: Exiled
Post Posted: Tue Apr 18, 2006 11:01 am   Post subject: callbook process on port 2000 Reply with quote Back to top  
what is it, and hwo do I get rid of it? I have had absolutely no luck as to waht this is, or why it'running, let alone how to reomove it.

And since our FTP runs on this por t(for some reason), I need to get it running ASAP Sad

Help

_________________


The Seven faces of Creed



View user's profile Send private message MSN Messenger
Olive
Tail-Wagger
Tail-Wagger


Joined: 04 Mar 2001
Posts: 2214
Location: chicago
Post Posted: Tue Apr 18, 2006 11:29 am   Post subject: Reply with quote Back to top  
cisco VoIP software is callbook

known remote access and trojans run on 2000 also

Never used callbook, but one would assume it's tied into some Cisco management app or something, if not a standalone.

_________________
i'd never join an organization who'd have me as a member
Thawte Web of Trust Notary

--wonko "I really dont know what to say exept the purpose of a lake is not to kill someone."
--maple_shaft "I AM AN ATTENTION WHORE!!!!! "
View user's profile Send private message Visit poster's website Yahoo Messenger
creed
Veteran Dog
Veteran Dog


Joined: 08 Nov 2003
Age: 97
Posts: 6337
Location: Exiled
Post Posted: Tue Apr 18, 2006 11:33 am   Post subject: Reply with quote Back to top  
Olive wrote:
cisco VoIP software is callbook

known remote access and trojans run on 2000 also

Never used callbook, but one would assume it's tied into some Cisco management app or something, if not a standalone.


hmm...well since I know that we don't use any cisco products, sounds like I've got a virus on my hands. Thanks

_________________


The Seven faces of Creed



View user's profile Send private message MSN Messenger
Olive
Tail-Wagger
Tail-Wagger


Joined: 04 Mar 2001
Posts: 2214
Location: chicago
Post Posted: Tue Apr 18, 2006 11:34 am   Post subject: Reply with quote Back to top  
are you sure callbook is actually using this port? or did you just assume that because it's 2000, it's callbook?


http://www.sysinternals.com/Utilities/TcpView.html
http://www.sysinternals.com/Utilities/TdiMon.html

_________________
i'd never join an organization who'd have me as a member
Thawte Web of Trust Notary

--wonko "I really dont know what to say exept the purpose of a lake is not to kill someone."
--maple_shaft "I AM AN ATTENTION WHORE!!!!! "
View user's profile Send private message Visit poster's website Yahoo Messenger
Olive
Tail-Wagger
Tail-Wagger


Joined: 04 Mar 2001
Posts: 2214
Location: chicago
Post Posted: Tue Apr 18, 2006 11:45 am   Post subject: Reply with quote Back to top  
creed wrote:
hmm...well since I know that we don't use any cisco products, sounds like I've got a virus on my hands. Thanks


I'd run TCP view and see if you can determine which process is using that port. Some remote access product also use that port. It could be as simple as killing that app, or forcing it to another port, and not a trojan at all.

_________________
i'd never join an organization who'd have me as a member
Thawte Web of Trust Notary

--wonko "I really dont know what to say exept the purpose of a lake is not to kill someone."
--maple_shaft "I AM AN ATTENTION WHORE!!!!! "
View user's profile Send private message Visit poster's website Yahoo Messenger
creed
Veteran Dog
Veteran Dog


Joined: 08 Nov 2003
Age: 97
Posts: 6337
Location: Exiled
Post Posted: Tue Apr 18, 2006 8:26 pm   Post subject: Reply with quote Back to top  
Olive wrote:
are you sure callbook is actually using this port? or did you just assume that because it's 2000, it's callbook?


http://www.sysinternals.com/Utilities/TcpView.html
http://www.sysinternals.com/Utilities/TdiMon.html


well when I used nmap (which btw should come default with windows, it's a handy tool), it comes up as callbook as the prot or protocol being used.

SInce I've got no idea what the heck callbook is, figured it was either some software I've never heard of, or a proptocol that I'm unfamiliar with.

Found out it was a virus using our server for an ftp. How nice. ALl fixed now and working great Very Happy

_________________


The Seven faces of Creed



View user's profile Send private message MSN Messenger
deagler
Mutt
Mutt


Joined: 10 Apr 2002
Posts: 121
Location: USA
Post Posted: Wed Apr 19, 2006 1:58 pm   Post subject: Reply with quote Back to top  
That was me using your box to crunch

Twisted Evil

You got me. Just kidding Glad to hear you fixed it.

_________________
The Deagler

Great Hosting @ Great Prices
Get 25% OFF. Good on all Plans and Prices
Use code "25off" at sign up
Valet Hosting
View user's profile Send private message Send e-mail Visit poster's website
Display posts from previous:   
Post new topic     Reply to topic   LITTLEBLACKDOG.COM Forum Index » Networking
 
Jump to:  

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2002 phpBB Group
phpBB SEO
All times are GMT - 8 Hours

Help us keep advertisements off this site. Donate today!