What is most likely occurring here?

Simon is the network administrator for his company. Simon is also an IT security expert with over 10 security-related certifications. Simon has been askedby the company CIO to perform a comprehensive security audit of the entire network. After auditing the network at the home office without finding any issues,he travels to one of the company’s branch offices in New Orleans. The first task that Simon carries out is to set up traffic mirroring on the internal-facing port of that office’s firewall. On this port, he uses Wireshark to capture traffic. Alarmingly, he finds a huge number of UDP packets going both directions onports 2140 and 3150. What is most likely occurring here?

Simon is the network administrator for his company. Simon is also an IT security expert with over 10 security-related certifications. Simon has been askedby the company CIO to perform a comprehensive security audit of the entire network. After auditing the network at the home office without finding any issues,he travels to one of the company’s branch offices in New Orleans. The first task that Simon carries out is to set up traffic mirroring on the internal-facing port of that office’s firewall. On this port, he uses Wireshark to capture traffic. Alarmingly, he finds a huge number of UDP packets going both directions onports 2140 and 3150. What is most likely occurring here?

A.
A client inside the network has been infected with the Deep Throat Trojan.

B.
This type of traffic is indicative of the Netbus Trojan.

C.
Most likely, a computer inside the network is infected with the SQL Slammer worm.

D.
Seeing traffic on UDP ports 2140 and 3150 means that a computer is infected with the Bobax Trojan



Leave a Reply 1

Your email address will not be published. Required fields are marked *


seenagape

seenagape

Correct answer is A