Hello Mihai,
n-are nici o treaba cu troianii ashtia pentru ca troianii sunt de
windows... 99% ca pe 31337 este un bnc :)
eu ash pune un tcpdump sa vad cine se conecteaza la el si cine il
foloseste etc...
Gushterul
Tuesday, April 24, 2001, 4:29:47 AM, you wrote:
MM> De la http://www.simovits.com/trojans/trojans.html citire:
MM> port 31337: Back Fire, Back Orifice 1.20 patches, Back Orifice (Lm), Back
MM> Orifice russian, Baron Night, Beeone, BO client, BO Facil, BO spy, BO2, cron
MM> / crontab, Freak88, Freak2k, icmp_pipe.c, Sockdmini
MM> -----Original Message-----
MM> From: George Serban [mailto:[EMAIL PROTECTED]]
MM> Sent: Tuesday, April 24, 2001 1:11 PM
MM> To: [EMAIL PROTECTED]
MM> Subject: [rlug] ROOTKIT bindshell
MM> rootkitul meu imi detecteaza:
MM> Checking `bindshell'... INFECTED (PORTS: 31337)
MM> Desi masina nu are nici o alta urma de ceva neinregula
MM> [root@ns chkrootkit-0.31]# netstat -all | grep 31337
MM> tcp 0 0 *:31337 *:*
MM> LISTEN
MM> udp 0 0 *:31337 *:*
MM> Ce spuneti despre asta ?? si ce pot sa fac?
MM> George
--
Best regards,
Gushterul mailto:[EMAIL PROTECTED]
---
Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to
unsubscribe from this list.
