全球主机交流论坛
标题:
今天登陆winscp一看 多了个wnps 这个东西/ 是黑客??
[打印本页]
作者:
cooldog
时间:
2009-12-19 09:34
标题:
今天登陆winscp一看 多了个wnps 这个东西/ 是黑客??
貌似百度一查。。
好像是什么 黑客工具???
作者:
wzwen
时间:
2009-12-19 09:40
不清楚。。。。
作者:
RyoKazami
时间:
2009-12-19 09:43
恩,一后门。
作者:
cnx
时间:
2009-12-19 09:43
看看生成时间.
要不删除了再说.
作者:
omegabomb
时间:
2009-12-19 09:52
对,看修改时间
作者:
cooldog
时间:
2009-12-19 10:50
root目录里是2007年
可我ssh里命令查了下 是 昨天凌晨弄的 ...
怎么办
作者:
RyoKazami
时间:
2009-12-19 10:58
删,估计其他目录也不简单。简单的话就重装吧…… 换密码
作者:
cnx
时间:
2009-12-19 11:03
找软件,杀毒.
作者:
cnx
时间:
2009-12-19 11:05
http://linux.vbird.org/linux_security/0420rkhunter.php
RootKit Hunter 後端偵測軟體之架設與執行
你可以看看这儿的,当然,你也可以用百度或是谷歌.
作者:
wzwen
时间:
2009-12-19 11:07
不会已经成了别人的肉鸡吧?
作者:
cnx
时间:
2009-12-19 11:18
Checking for rootkits...
Performing check of known rootkit files and directories
55808 Trojan - Variant A [ Not found ]
ADM Worm [ Not found ]
AjaKit Rootkit [ Not found ]
aPa Kit [ Not found ]
Apache Worm [ Not found ]
Ambient (ark) Rootkit [ Not found ]
Balaur Rootkit [ Not found ]
BeastKit Rootkit [ Not found ]
beX2 Rootkit [ Not found ]
BOBKit Rootkit [ Not found ]
CiNIK Worm (Slapper.B variant) [ Not found ]
Danny-Boy's Abuse Kit [ Not found ]
Devil RootKit [ Not found ]
Dica-Kit Rootkit [ Not found ]
Dreams Rootkit [ Not found ]
Duarawkz Rootkit [ Not found ]
Enye LKM [ Not found ]
Flea Linux Rootkit [ Not found ]
FreeBSD Rootkit [ Not found ]
Fuck`it Rootkit [ Not found ]
GasKit Rootkit [ Not found ]
Heroin LKM [ Not found ]
HjC Kit [ Not found ]
ignoKit Rootkit [ Not found ]
ImperalsS-FBRK Rootkit [ Not found ]
IntoXonia-NG Rootkit [ Not found ]
Irix Rootkit [ Not found ]
Kitko Rootkit [ Not found ]
Knark Rootkit [ Not found ]
Li0n Worm [ Not found ]
Lockit / LJK2 Rootkit [ Not found ]
Mood-NT Rootkit [ Not found ]
MRK Rootkit [ Not found ]
Ni0 Rootkit [ Not found ]
Ohhara Rootkit [ Not found ]
Optic Kit (Tux) Worm [ Not found ]
Oz Rootkit [ Not found ]
Phalanx Rootkit [ Not found ]
Phalanx Rootkit (strings) [ Not found ]
Phalanx2 Rootkit [ Not found ]
Phalanx2 Rootkit (extended tests) [ Not found ]
Portacelo Rootkit [ Not found ]
R3dstorm Toolkit [ Not found ]
RH-Sharpe's Rootkit [ Not found ]
RSHA's Rootkit [ Not found ]
Scalper Worm [ Not found ]
Sebek LKM [ Not found ]
Shutdown Rootkit [ Not found ]
SHV4 Rootkit [ Not found ]
SHV5 Rootkit [ Not found ]
Sin Rootkit [ Not found ]
Slapper Worm [ Not found ]
Sneakin Rootkit [ Not found ]
Suckit Rootkit [ Not found ]
SunOS Rootkit [ Not found ]
SunOS / NSDAP Rootkit [ Not found ]
Superkit Rootkit [ Not found ]
TBD (Telnet BackDoor) [ Not found ]
TeLeKiT Rootkit [ Not found ]
T0rn Rootkit [ Not found ]
Trojanit Kit [ Not found ]
Tuxtendo Rootkit [ Not found ]
URK Rootkit [ Not found ]
Vampire Rootkit [ Not found ]
VcKit Rootkit [ Not found ]
Volc Rootkit [ Not found ]
X-Org SunOS Rootkit [ Not found ]
zaRwT.KiT Rootkit [ Not found ]
复制代码
作者:
cnx
时间:
2009-12-19 11:19
Checking the network...
Performing check for backdoor ports
Checking for UDP port 2001 [ Not found ]
Checking for TCP port 2006 [ Not found ]
Checking for TCP port 2128 [ Not found ]
Checking for TCP port 14856 [ Not found ]
Checking for TCP port 47107 [ Not found ]
Checking for TCP port 60922 [ Not found ]
Performing checks on the network interfaces
Checking for promiscuous interfaces [ None found ]
复制代码
作者:
cnx
时间:
2009-12-19 11:20
Checking the local host...
Performing system boot checks
Checking for local host name [ Found ]
Checking for system startup files [ Found ]
Checking system startup files for malware [ None found ]
Performing group and account checks
Checking for passwd file [ Found ]
Checking for root equivalent (UID 0) accounts [ Warning ]
Checking for passwordless accounts [ None found ]
Checking for passwd file changes [ Warning ]
Checking for group file changes [ Warning ]
Checking root account shell history files [ OK ]
Performing system configuration file checks
Checking for SSH configuration file [ Found ]
Checking if SSH root access is allowed [ Warning ]
Checking if SSH protocol v1 is allowed [ Not allowed ]
Checking for running syslog daemon [ Found ]
Checking for syslog configuration file [ Found ]
Checking if syslog remote logging is allowed [ Not allowed ]
Performing filesystem checks
Checking /dev for suspicious file types [ None found ]
Checking for hidden files and directories [ Warning ]
复制代码
这儿有几个warning.
作者:
cnx
时间:
2009-12-19 11:21
Checking application versions...
Checking version of GnuPG [ OK ]
Checking version of Apache [ OK ]
Checking version of Bind DNS [ OK ]
Checking version of OpenSSL [ OK ]
Checking version of PHP [ OK ]
Checking version of Procmail MTA [ OK ]
Checking version of OpenSSH [ OK ]
复制代码
作者:
cnx
时间:
2009-12-19 11:22
System checks summary
=====================
File properties checks...
Required commands check failed
Files checked: 127
Suspect files: 6
Rootkit checks...
Rootkits checked : 115
Possible rootkits: 0
Applications checks...
Applications checked: 7
Suspect applications: 0
The system checks took: 4 minutes and 49 seconds
All results have been written to the logfile (/var/log/rkhunter.log)
One or more warnings have been found while checking the system.
Please check the log file (/var/log/rkhunter.log)
复制代码
最终结果.
作者:
cooldog
时间:
2009-12-19 11:22
如何检测呀???
作者:
cpuer
时间:
2009-12-19 12:48
标题:
回复 15# 的帖子
没啥问题
欢迎光临 全球主机交流论坛 (https://91ai.net/)
Powered by Discuz! X3.4