Portlar ve bu portları kullanan kötü amaçlı yazılımlar.

Daha önce bir blogta gördüğüm ve not aldığım kötü amaçlı yazılımların kullandığı portlarla ilgili bir listeyi sizlerle paylaşıyorum. Bu portları içeriye doğru açarken daha hassasiyet gösterirseniz iyi olur.  Faydalı olması dileğiyle…

8 ICMP Ping Attack

9 UDP Chargen

19 UDP Chargen

21 TCP FTP service

23 TCP TELNET Service

25 TCP Several trojans use this port.

31 TCP (Agent 31, Hacker`s Paradise)

41 TCP Deep Throat

53 TCP DNS service

58 TCP DM Setup

79 TCP Firehotcker

80 TCP Executor

110 TCP ProMail Trojan

121 TCP Jammer Killah

129 TCP Password Generator Protocol

135 TCP UDP Netbios Remote procedure call

137 TCP UDP Netbios name (DoS attacks)

138 TCP UDP Netbios datagram

139 TCP UDP Netbios session (DoS attacks)

456 TCP Hacker`s Paradise

531 TCP Rasmin

555 TCP Stealth Spy, Phaze

666 TCP Attack FTP

911 TCP Dark Shadow

999 TCP DeepThroat

9999 TCP The Prayer 1.0 – 2.0

1001 TCP (Silencer, WebEx)

1011 TCP Doly Trojan

1012 TCP Doly Trojan

1024 TCP NetSpy

1027 TCP ICQ

1029 TCP ICQ

1032 TCP ICQ

1033 TCP ICQ Trojan

1033 TCP Exploit Descent Manager Module

1042 TCP Rasmin

1045 TCP Rasmin

1080 TCP Socks/Wingate

1090 TCP Xtreme

1170 TCP Voice Streaming Audio

1234 TCP Ultors Trojan

1243 TCP (Sub Seven)

1245 TCP (VooDoo Doll)

1257 TCP (Sub Seven 2.1)

1492 TCP Ftp 99CMP Trojan

1509 TCP Psyber Streaming Server

1514 TCP Unknown Trojan

12361 TCP TCP Whack-a-mole

12362 TCP TCP Whack-a-mole

12631 TCP WhackJob

1349 UDP BackOrifice DLL Comm

1394 TCP Gofriller, BackDoor

1492 TCP FTP99CMP

1600 TCP Shivka-Burka

1807 TCP SpySender

1981 TCP (Shockrave)

1999 TCP (BackDoor)

2000 TCP Remote Explorer

2000 UDP Remote Explorer/CallBook

2001 TCP Trojan Cow

2086 TCP Netscape/Corba exploit

2023 TCP (Ripper)

2115 TCP Bugs

2140 TCP (Deep Throat)

2140 UDP (Deep Throat)

2283 TCP Unknown Trojan

2583 UDP Unknown Trojan

2565 TCP (Striker)

2583 TCP WinCrash

2716 TCP The Prayer 1.2 – 1.3

2721 TCP Phase Zero

2801 TCP Phineas Phucker

2989 UDP Rat

3024 TCP WinCrash

3129 TCP Master`s Paradise

3150 TCP Deep Throat

3150 UDP Deep Throat

3587 UDP Sh*tHead trojan

3587 TCP Sh*tHead trojan

3700 TCP Portal of Doom

4092 TCP WinCrash

4567 TCP File Nail

4590 TCP ICQ Trojan

4950 TCP Unknown trojan

5000 TCP (Sokets de Trois v1.)

5001 TCP Sokets de Trois v1.

5321 TCP Firehotcker

5400 TCP (Blade Runner)

5401 TCP Blade Runner

5402 TCP Blade Runner

5501 UDP

5550 TCP (X-Tcp Trojan)

5555 TCP ServeMe

5556 TCP BO Facil

5557 TCP BO Facil

5569 TCP Robo-Hack

5666 TCP (PC Crasher)

5742 TCP (WinCrash)

6400 TCP (The Thing)

6670 TCP (Deep Throat)

6711 TCP Sub Seven

6712 TCP Sub Seven

6713 TCP Sub Seven

6771 TCP Deep Throat

6776 TCP Sub Seven

6939 TCP Indoctrination

6969 TCP (Gate Crasher, Priority)

6970 TCP Gate Crasher

7000 TCP Remote Grab

7028 TCP Unknown trojan

7028 UDP Uknown Trojan

7300 TCP Net Monitor

7301 TCP Net Monitor

7302 TCP Net Monitor

7303 TCP Net Monitor

7304 TCP Net Monitor

7305 TCP Net Monitor

7306 TCP Net Monitor

7307 TCP Net Monitor

7308 TCP Net Monitor

7309 TCP Net Monitor

7323 TCP Sygate Backdoor

7323 UDP Sygate Backdoor

7789 TCP ICKiller

9872 TCP Portal of Doom

9873 TCP Portal of Doom

9874 TCP Portal of Doom

9875 TCP Portal of Doom

9989 TCP iNi-Killer

10067 TCP Portal of Doom

10067 UDP Portal of Doom

10167 TCP Portal of Doom

10167 UDP Portal of Doom

10520 TCP Acid Shivers

10607 TCP Coma

11000 TCP Senna Spy

11223 TCP Progenic Trojan

12076 TCP GJamer

12223 TCP Hack`99, KeyLogger

12345 TCP (Netbus, Ultor`s Trojan)

12346 TCP (Netbus)

12456 TCP NetBus

13000 TCP Senna Spy

13700 TCP Unknown Trojan

16660 TCP Stacheldraht

16969 TCP Priority

18753 TCP shaft Handler to agent(s)

20000 TCP Millennium

20001 TCP Millennium

20034 TCP (NetBus 2 Pro)

20432 TCP shaft Client to handler(s)

20433 UDP shaft Agent to handler(s)

21544 TCP Unknown Trojan

21554 TCP GirlFriend

22222 TCP Prosiak

20331 TCP Unknown Trojan

23456 TCP EvilFTP, UglyFTP

24680 TCP

24680 UDP

26274 TCP Delta Source

26274 UDP Delta Source

27665 TCP Trin00/TFN2K

27374 UDP (Sub-7 2.1)

27374 TCP Sub-7 2.1

27444 UDP Trin00/TFN2K

27573 UDP Sub-7 2.1

27573 TCP Sub-7 2.1

27665 TCP Trin00 DoS Attack

29891 TCP The Unexplained

30029 TCP AOL Trojan

30999 TCP Kuang2 Trojan

30100 TCP (NetSphere)

30101 TCP NetSphere

30102 TCP NetSphere

30303 TCP Sockets de Troie

31335 UDP Trin00 DoS Attack

31337 UDP (Backorifice/BO-2K)

31337 TCP (Netpatch)

31338 TCP NetSpy DK

31338 UDP Deep BO

31339 TCP NetSpy DK

31666 TCP BOWhack

31785 TCP (Hack`a`Tack)

31789 UDP (Hack`a`Tack)

31790 UDP (Hack`a`Tack)

31791 UDP Hack`a`Tack

33333 TCP Prosiak

33390 UDP Unknown trojan

34324 TCP (BigGluck, TN)

34555 UDP Trin00 Ping/Pong Response

40421 TCP (Master`s Paradise Trojan)

40412 TCP (The Spy)

40422 TCP Master`s Paradise

40423 TCP Master`s Paradise

40425 TCP Master`s Paradise

40426 TCP Master`s Paradise

47252 TCP Delta Source

47262 UDP Delta Source

50505 TCP Sokets de Trois v2.

50766 TCP Fore 1.0 Trojan

50776 TCP Fore

53001 TCP (Remote Windows Shutdown)

54320 TCP (Back Orifice 2000)

54320 UDP Back Orifice

54321 TCP School Bus, Back Orifice

54321 UDP Back Orifice 2000

57341 UDP Net Raider Trojan

57341 TCP Net Raider Trojan

60000 TCP Deep Throat

61603 TCP Bunker-Hill Trojan

61348 TCP Bunker-HillTrojan

61466 TCP (Telecommando)

63485 TCP Bunker-Hill Trojan

65000 TCP (Devil)

65000 TCP Stacheldraht

Kaynak : http://blog.serkankurt.com.tr

Yorum yapın

Bu site, istenmeyenleri azaltmak için Akismet kullanıyor. Yorum verilerinizin nasıl işlendiği hakkında daha fazla bilgi edinin.