TCP Port 1025
Microsoft Remote Procedure Call (RPC) service.
Currently inbound scans are likely RPC and LSA exploit attempts against the
Windows, which by default
should be blocked by your firewall. Ensure that your systems have the
latest patches installed from Microsoft.
Outbound scans if occurring in volume should be considered an indication of a
possible worm infection on the source computer and should be investigated.
PortPeeker Capture of TCP Port 1025
RPC exploit attempt
PortPeeker Capture of TCP Port
1025 LSA exploit attempt
Page last updated on
April 30, 2004