Sunday, December 6, 2009

Detrimental Ports and Services

The following table represents those ports and services detrimental to systems as common Trojans:

port 21

port 23 port 25

port 31 port 41

port 59 port 79 port 80 port 99 port 110

port 113

port 119 port 121



port 421 port 456 port 531 port 555 port 666



port 911 port 999 port 1001 port 1010 port 1011 port 1012 port 1015 port 1024 port 1042 port 1045 port 1090

Back Construction, Blade Runner, Doly Trojan, Fore, FTP Trojan, Invisible FTP, Larva, WebEx, WinCrash

Tiny Telnet Server (= TTS)

Ajan, Antigen, Email Password Sender, Haebu Coceda (=Naebi), Happy 99, Kuang2, ProMail Trojan, Shtrilitz, Stealth, Tapiras, Terminator,

WinPC, WinSpy

Agent 31, Hackers Paradise, Masters Paradise

DeepThroat

DMSetup

Firehotker Executor, RingZero

Hidden Port

ProMail Trojan Kazimas

Happy 99

JammerKillah

(continues)

TCP Wrappers Hackers Paradise Rasmin

Ini-Killer, NeTAdmin, pHase Zero, Stealth Spy

Attack FTP, Back Construction, Cain & Abel, Satanz Backdoor, ServeU, Shadow Phyre

Dark Shadow

DeepThroat , WinSatan

Silencer, WebEx

Doly Trojan

Doly Trojan

Doly Trojan

Doly Trojan

NetSpy

Bla

Rasmin Xtreme



Psyber Stream Server, Streaming Audio Trojan, Voice

port 3791


Eclypse

port 3801 (UDP)


Eclypse

port 4092


WinCrash

port 4321


BoBo

port 4567


File Nail

port 4590


ICQTrojan

port 5000


Bubbel, Back Door Setup, Sockets de Troie

port 5001


Back Door Setup, Sockets de Troie

port 5011


One of the Last Trojans (OOTLT)

port 5031


NetMetro

port 5321


Firehotcker

port 5400


Blade Runner, Back Construction

port 5401


Blade Runner, Back Construction

port 5402


Blade Runner, Back Construction

port 5512


Illusion Mailer

port 5550


Xtcp

port 5555


ServeMe



port 5556


BO Facil




port 5557


BO Facil




port 5569


Robo-Hack




port 5742


WinCrash




port 6400


The Thing




port 6669


Vampyre




port 6670


DeepThroat




port 6771


DeepThroat




port 6776


BackDoor-G, SubSeven




port 6912


Shit Heep (not port 69123!)




port 6939


Indoctrination




port 6969


GateCrasher, Priority, IRC 3




port 6970


GateCrasher




port 7000


Remote Grab, Kazimas




port 7300


NetMonitor




port 7301


NetMonitor




port 7306


NetMonitor




port 7307


NetMonitor




port 7308


NetMonitor




port 7789


Back Door Setup, ICKiller

port 8080


RingZero

port 9400


InCommand

port 9872


Portal of Doom

port 9873


Portal of Doom

port 9874


Portal of Doom

port 9875


Portal of Doom

port 9876


Cyber Attacker

port 9878


TransScout

port 9989


Ini-Killer

port 10067 (UDP)


Portal of Doom

port 10101


BrainSpy

port 10167 (UDP)


Portal of Doom

port 10520


Acid Shivers

port 10607


Coma

port 11000


Senna Spy




port 11223


Progenic Trojan




port 12076


Gjamer




port 12223


Hack'99 KeyLogger




port 12345


GabanBus, NetBus, Pie Bill Gates, X-bill




port 12346


GabanBus, NetBus, X-bill




port 12361


Whack-a-mole




port 12362


Whack-a-mole




port 12631


WhackJob




port 13000


Senna Spy




port 16969


Priority




port 17300


Kuang2 The Virus




port 20000


Millennium




port 20001


Millennium




port 20034


NetBus 2 Pro




port 20203


Logged




port 21544


GirlFriend




port 22222


Prosiak




port 23456


Evil FTP, Ugly FTP, Whack Job




port 23476


Donald Dick




port 23477


Donald Dick

port 26274

(UDP)


Delta Source

port 29891 (UDP)


The Unexplained

port 30029


AOL Trojan

port 30100


NetSphere

port 30101


NetSphere

port 30102


NetSphere

port 30303


Sockets de Troie

port 30999


Kuang2

port 31336


Bo Whack

port 31337


Baron Night, BO Client, BO2, Bo Facil

port 31337

(UDP)


BackFire, Back Orifice, DeepBO

port 31338


NetSpy DK

port 31338 (UDP)


Back Orifice, DeepBO

port 31339


NetSpy DK

port 31666


BOWhack




port 31785


HackaTack

port 31787


HackaTack

port 31788


HackaTack

port 31789 (UDP)


HackaTack

port 31791 (UDP)


HackaTack

port 31792


HackaTack

port 33333


Prosiak

port 33911


Spirit 2001a

port 34324


BigGluck, TN

port 40412


The Spy

port 40421


Agent 40421, Masters Paradise

port 40422


Masters Paradise

port 40423


Masters Paradise

port 40426


Masters Paradise

port 47262 (UDP)


Delta Source

port 50505 port 50766 port 53001

port 54320 port 54321

port 54321 (UDP)

port 60000

port 61466

port 65000

Sockets de Troie Fore, Schwindler Remote Windows Shutdown Back Orifice 2000 School Bus

Back Orifice 2000



DeepThroat Telecommando

Devil

What's on the CD



Appendix E contains an outline for the components included on the CD in the back of this book. Most of the programs herein can be executed directly from the CD, without local setup and configuration. The directory listing, in Figure E.1 below, contains the root folder categories for the outline in this Appendix.

No comments:

Post a Comment