View Full Version : Help! Unknown CIFS protocol
Miranda Row
November 25th, 2010, 01:31 AM
Hi,
I just notice the massive CIFS protocol traffic. No clue what is it. Anybody knows about it?
223651
brian_mi
November 25th, 2010, 08:26 PM
From your screenshot I see the CIFS packets are sent out with little time interval. Maybe a virus on that machine?
Stem
November 27th, 2010, 02:37 AM
CIFS ( Common Internet File System )
http://www.protocolbase.net/protocols/protocol_CIFS.php
brian_mi
November 29th, 2010, 12:45 AM
I think it's nothing to do with CIFS, just a worm using 445 port?
hrj_email
December 17th, 2010, 02:41 PM
Hi,
you must consider CIF protocol involve alot of ports, for example if you use ACRONIS for backuping your clients , in capsa the port used for Acronis named CIF.
Another example is when your clients get commands and task from AntiVirus administration KITS for example Kaspersky Administration Kit , Capsa show it as CIF protocol.
So dont be afraid and check all of them.
vBulletin® Copyright ©2000-2012, Jelsoft Enterprises Ltd.
Copyright ©2002 - 2012, Wilders Security Forums