At least, I think it's called protocol. All I can find is that it stands for Automatic Retrieval Delete Update System. My computer is connecting on Port 1115 and I'm trying to figure out what program is executing this? asked 11 May '11, 08:15  david edited 11 May '11, 08:40  cmaynard ♦♦ |
2 Answers:
I guess you're just getting confused by the transport layer name resolution feature that replaced the port 1115 with "ardus". In most cases that port is just an ephemeral port your PC used as a client port. You can disable the transport layer name resolution in the Wireshark preferences or the View Menu. If you want to know what program uses the port you could runing answered 11 May '11, 09:06  Jasper ♦♦ |
ARDUS appears to be an application/DLL that interfaces with Microsoft Access. It uses port 1115, 1116, and 1117, which are shared with trojans / worms. The traffic you're seeing might actually be these creatures at work. You should run a virus scanner. answered 11 May '11, 08:59  bstn |
I'm curious: I note that 3 years ago a question with almost exactly the same wording was asked on answers.yahoo.com.
Any connection ?
http://answers.yahoo.com/question/index?qid=20080402113115AAc1d7t
seems to be the exact same question... :-)
Yup. Either @david is the same person as @LadyInvisible, or he/she has the same problem and decided to copy-and-paste.