SUN Trojan?

Hello,

I captured an outbound attempt made at 8:51am today in one of my many logs.

web1:1741 209.249.116.141.available:http SYN_SENT

I am using Java 2 Platform Standard Edition version 1.5.0 (build 1.5.0-b64)

I also noticed that when I do a reverse DNS lookup on the IP (209.249.116.141) it does not resolve to a name (ie www.sun.java.blahblahblah.com). Before I dig further my hopes are that someone at your organization knows what is going on?

Please be advised that there are others who have the same issue and posted there findings on this website;

http://help.lockergnome.com/index.php?showtopic=26686&st=15&#entry21732 5

[684 byte] By [rolandg] at [2007-11-25 18:29:11]

«« Need some insights about IE and Mozilla
»» How to set font visually?

# 1

Depending on where you do your whois, it appears that the 209.249.116.0 class C equivalent is registered to Sun through Above.Net. You can do some more research, but that's what I found fairly quickly.Alan

alan.zimmerman at 2007-7-3 18:36:17 >

Application & Integration Servers

Sun Java System Message Queue

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

SUN Trojan?

Application & Integration Servers New Topic

Application & Integration Servers Hot Topic

Application & Integration Servers

All Classified