常见的应用端口和木马端口对照表 ��})&0�e:6
15=NETSTAT PORT �-AcQ_��dS
21=Blade Runner, Doly Trojan, Fore, FTP trojan, Invisible FTP, Larva, ebEx, WinCrash .:�<c[EJ
b
22=SSH PORT #Oe=G��:+A
23=Tiny Telnet Server O\G%rp L$w
25=Shtrilitz Stealth, Terminator, WinPC, WinSpy, Kuang2 0.17A-0.30, Antigen, Email Password Sender, Haebu Coceda, Kuang2, ProMail trojan, Tapiras A.z~wu%(�
31=Agent 31, Hackers Paradise, Masters Paradise :�_^9�.`��
_V�Y����]�
41=DeepThroat ��Q[~O`L�z
53=DOMAIN PORT @?�g��H3Y_
58=DMSetup 'n�>�|j�w)
63=WHOIS PORT /md`tqI>i<
79=Firehotcker �7a@V2cr@
80=Executor 110=ProMail trojan urtcSq&H'�
90=DNS PORT J!�yc�9�Q
101=HOSTNAME PORT ?w<��x�_Lo
110=POP3 PORT b<:s{f"t,�
121=JammerKillah ^P{'l�^CVX
137=NETBIOS Name Service PORT �jp[��Q�A\
138=NETBIOS Datagram Service PORT ��+�S3'm�s
139=NETBIOS Session Service PORT X)n�OY*�
194=IRC PORT 8mCr6$|��%
6]� <?+#uQ
406=IMSP PORT ��ef5�3~x�
421=TCP Wrappers BE3~��f6 `
456=Hackers Paradise �n.7 $*9)#
531=Rasmin �B�]]�M?pS
555=Ini-Killer, Phase Zero, Stealth Spy (:�[><-h.
666=Attack FTP, Satanz Backdoor 4@�8i,��q>
911=Dark Shadow -u8�@ .�
999=DeepThroat AY! zXJ_$
1001=Silencer, WebEx �[r]USCq��
1011=Doly Trojan dC.uK^�FuJ
1012=Doly Trojan o'H��$��g%
1024=NetSpy tX)]ZuEi�$
1045=Rasmin �]�%mg(&p4
1090=Xtreme ��c4;��
`3
1095=Rat hs�/nM"V�
A:p�0p^�*�
1097=Rat m6�IZG�l7%
1098=Rat "%}�PV�O�!
1099=Rat M��5%�xp.B
1170=Psyber Stream Server O#k��?�c }
1170=Voice 1TbKn�mTx
1234=Ultors Trojan ;dB=/U>3U
1243=BackDoor-G, SubSeven ���6\E |�`
1245=VooDoo Doll y X�S/3_A{
1349=BO DLL �E��bq5�P$
1492=FTP99CMP g[e�I-J+F�
1600=Shivka-Burka �t���cR�K\
1807=SpySender 6�Qx�LHQA
1080=SOCKS PORT �M8�g=�t[\
��*,
{b]6v
1981=Shockrave �v�4qvq�GK
1999=BackDoor 1.00-1.03 1p{\jCi,�2
2001=Trojan Cow /}M@MbGM�M
2023=Ripper uF�<��F4m;
2115=Bugs _
-?)-L&g�
2140=Deep Throat x�y|�;WB��
2140=The Invasor O�^e
!<bBd
2565=Striker ^�Yn6k��F�
2583=WinCrash ,q:6�[�~n�
2801=Phineas Phucker "�@Te!.~A.
3024=WinCrash +J#H9�>To!
3129=Masters Paradise }>p)|Y�T"/
3150=Deep Throat, The Invasor ;JAe=wt^'I
3700=Portal of Doom )�W�c#?K�
4092=WinCrash ��^ S%4�R'
4567=File Nail DE. Pw+5<.
i5)��trSM|
4590=ICQTrojan �P}aJvFlmP
5000=Bubbel, Back Door Setup, Sockets de Troie -R:�1-0I�$
5001=Back Door Setup, Sockets de Troie y�`\/�eX��
5321=Firehotcker S"}FsS;k<?
5400=Blade Runner 2o/�AH \=2
5401=Blade Runner q ��Rt��gk
5402=Blade Runner s+��0$_&xR
5550=JAPAN Trojan-xtcp d/* [t!���
5555=ServeMe FiI��N�\��
5556=BO Facil �B8;ZOL�AU
5557=BO Facil 7dW9i�7�Aj
5569=Robo-Hack R?I(f(ib �
@gTp��iV�2
5742=WinCrash �L5e���aQu
6400=The Thing g3�Ff<�P P
6666=IRC SERVER PORT ��U��jw�^j
6667=IRC CHAT PORT SIbQs�8h]
6670=DeepThroat �o�'y�R^`�
6711=SubSeven YF���."D%?
6771=DeepThroat �.4?M�.Z4[
6776=BackDoor-G, SubSeven v���
7Pv&|
6939=Indoctrination g fO.Ky��6
6969=GateCrasher JU"!qXQ�r�
6969=Priority W]r�Xt,{�&
7000=Remote Grab Imv�kB~8N
7300=NetMonitor E�JL45R�>�
7301=NetMonitor qWr`cO~hc
7306=NetMonitor v[Hx�O?�x^
7307=NetMonitor �t�CA �|sN
s7&%��_!4�
7308=NetMonitor :*4yR��4�6
7626=G_Client 85nUR�[�)h
7789=Back Door Setup, ICKiller LsBDfp5�/�
9872=Portal of Doom {uw�'7 d�/
9873=Portal of Doom `�uGX/yQ#=
9874=Portal of Doom �)u[�2T�I1
9875=Portal of Doom {�Y\hr+��A
9989=iNi-Killer s$�`evX7D
10067=Portal of Doom X�'�i��ki4
10167=Portal of Doom ��%f��,
9
10520=Acid Shivers YBg\L$|��n
10607=Coma ?#]c{T�lpz
11000=Senna Spy Tk+\Biq
��
11223=Progenic trojan {V:?�����r
12223=Hack?9 KeyLogger l�t(�,/���
12345=GabanBus, NetBus, Pie Bill Gates, X-bill E%+V\ W�%�
12346=GabanBus, NetBus, X-bill #�JTi]U6`�
E<~�/ARe�o
12361=Whack-a-mole YS~�\�Gls%
12362=Whack-a-mole e2�Xx7*vS�
12631=WhackJob eW\_9�E)cY
13000=Senna Spy Sq�fa,3?L
16969=Priority )[zyvU. J3
20001=Millennium l�6�5'EO|�
20034=NetBus 2 Pro orTT�jV]_m
21544=GirlFriend i?�|K+�"=D
22222=Prosiak ~�ocd4,d�=
23456=Evil FTP, Ugly FTP hW�/*]7AM^
26274=Delta Source v�y�-{��BH
29891=The Unexplained ]kKf4SJZFU
30029=AOL Trojan 30100=NetSphere 1.27a, NetSphere 1.31 J-�u�,6��c
30101=NetSphere 1.31, NetSphere 1.27a �{4:��En�;
30102=NetSphere 1.27a, NetSphere 1.31 HqN|CwGgJ:
30103=NetSphere 1.31 �?�k"KZxpT
30303=Sockets de Troie �K�$(U�>D|
PQf Fpm�G�
31337=Baron Night, BO client, BO2, Bo Facil, BackFire, Back Orifice, DeepBO rhL<JT���S
31338=NetSpy DK 31338=Back Orifice, DeepBO � .# �M�5L
31339=NetSpy DK /G84T,���H
31666=BOWhack Y&gf�e8%5N
31785=Hack Attack $S�XF>n{�}
31787=Hack Attack �8�5s�{�;3
31789=Hack Attack A"9aEOX-?i
31791=Hack Attack w7%N=hL1 �
33333=Prosiak �� W#??fae
34324=BigGluck, TN l~f +h?�cF
40412=The Spy `knw1,�qL"
40421=Agent 40421, Masters Paradise ��fM�2[wh@
40422=Masters Paradise gXf_~zxS��
40423=Masters Paradise )bcMKZ ���
40426=Masters Paradise cHR��}`�U$
47262=Delta Source �f��WLs�k�
50505=Sockets de Troie �I>P<�/TE7
0@xu�xm/�i
50766=Fore V�=S`%1dLN
53001=Remote Windows Shutdown DR�=>la�}!
54321=School Bus .69-1.11 ]� c'�owj�
60000=Deep Throat T��!;<Fy"p
61466=Telecommando +)7N��WR\
65000=Devil ��+{#BQbx6
69123=ShitHeep W���]y$6�P
VK|!aqA{�b
注:现在的木马都具有改变监听端口的功能,所以以上的缺省端口仅供参考之用。
