常见的应用端口和木马端口对照表 �>1.X*gi?-
15=NETSTAT PORT ^-TE([��bW
21=Blade Runner, Doly Trojan, Fore, FTP trojan, Invisible FTP, Larva, ebEx, WinCrash l�#g�\X'bK
22=SSH PORT W��O�7��z
23=Tiny Telnet Server 8^kG�S-+^�
25=Shtrilitz Stealth, Terminator, WinPC, WinSpy, Kuang2 0.17A-0.30, Antigen, Email Password Sender, Haebu Coceda, Kuang2, ProMail trojan, Tapiras /}((l%U�E.
31=Agent 31, Hackers Paradise, Masters Paradise IY_iB*T3jt
]�P9l �jwR
41=DeepThroat ��y�;4O�Y�
53=DOMAIN PORT OsTc5K.U�~
58=DMSetup (j%~�u&+�-
63=WHOIS PORT �,c�X�D.y�
79=Firehotcker =%B�SKSG�.
80=Executor 110=ProMail trojan a]$1D�!Anc
90=DNS PORT j�rCfW�a}z
101=HOSTNAME PORT E�H-�sZA�v
110=POP3 PORT �`jDTzhO�~
121=JammerKillah 5^}\4.eX�o
137=NETBIOS Name Service PORT %p �Yn�nfr
138=NETBIOS Datagram Service PORT ��R��a�O-H
139=NETBIOS Session Service PORT ���MOQ6��:
194=IRC PORT Z�F�A`s
qT
*2�Zj��E!A
406=IMSP PORT ZAW^/b��o<
421=TCP Wrappers EZgq ?l~5O
456=Hackers Paradise cF��\;_0u
531=Rasmin �5�u�,�{6�
555=Ini-Killer, Phase Zero, Stealth Spy �C>]0YO
k2
666=Attack FTP, Satanz Backdoor ra�W>xOivR
911=Dark Shadow g!|=%(��G=
999=DeepThroat [NF'oRRD9s
1001=Silencer, WebEx loEP�r5�bL
1011=Doly Trojan 5A,K6f@:g
1012=Doly Trojan �bYcV$KJk
1024=NetSpy R]JT&p|w.1
1045=Rasmin -5)�H<dAQZ
1090=Xtreme %{7|1>���8
1095=Rat PoHg,n�]��
:�>rkG?NfL
1097=Rat �hM�_lsc��
1098=Rat 0$�(WlP��|
1099=Rat 'HO$C,��1]
1170=Psyber Stream Server kF�3k7,.8&
1170=Voice �d�.[�8c=$
1234=Ultors Trojan #?�RU;1)Cw
1243=BackDoor-G, SubSeven b\ ��X@gq
1245=VooDoo Doll ��~]nRV *^
1349=BO DLL @��tF�\p�
1492=FTP99CMP \|n-
O=}=2
1600=Shivka-Burka 8m�C�xn@yV
1807=SpySender , |0}�<%�
1080=SOCKS PORT �.14~���J6
#F:p�-�nOq
1981=Shockrave z�p�6C3RG(
1999=BackDoor 1.00-1.03 S\^�P�ha
q
2001=Trojan Cow 32(^T�e]:�
2023=Ripper t�;)�{D:]k
2115=Bugs &]Q@7Nl7:l
2140=Deep Throat .L�+�6 $8m
2140=The Invasor /hp�Y f�]t
2565=Striker x"� 7H�5<
2583=WinCrash |a8i�Z9/D6
2801=Phineas Phucker ;Y)w@bNt@
3024=WinCrash R%Hi+#/dr-
3129=Masters Paradise +[�Dx?X�M
3150=Deep Throat, The Invasor M+-*QyCFK
3700=Portal of Doom &C��:IX��\
4092=WinCrash r^�2p*nr�}
4567=File Nail "N;`1ce���
?�K1/ <PE+
4590=ICQTrojan O6@j� &*jS
5000=Bubbel, Back Door Setup, Sockets de Troie ,1hxw<�sNR
5001=Back Door Setup, Sockets de Troie f@6�Qv�kIa
5321=Firehotcker �J�f@H/luW
5400=Blade Runner n�#mA/H;wV
5401=Blade Runner �6S},�(�=
5402=Blade Runner ��Nxf�OF��
5550=JAPAN Trojan-xtcp �*=) cQeJ�
5555=ServeMe LhN|�1f:9:
5556=BO Facil �bUs0 �M0y
5557=BO Facil �%J#YM�'g�
5569=Robo-Hack G3C~x.(�f�
z�lyS}x�@p
5742=WinCrash �+u.1 �;qF
6400=The Thing {GvJZ!,RCg
6666=IRC SERVER PORT ��Sf�A\}@3
6667=IRC CHAT PORT �S�Q@y�;|(
6670=DeepThroat x;��w6�n�a
6711=SubSeven CJ��tcn_.F
6771=DeepThroat .b_)%j�d x
6776=BackDoor-G, SubSeven y@�1+I�~@�
6939=Indoctrination #�HYr0Tw6`
6969=GateCrasher 2{D{sa����
6969=Priority 85>��05�?
7000=Remote Grab .Gb�X]?d�N
7300=NetMonitor W=lyIb{?^0
7301=NetMonitor mD/�9J5�:
7306=NetMonitor @���efh{��
7307=NetMonitor "_P�;�2N6
8�<�5]�\X�
7308=NetMonitor rW<KKGsRWQ
7626=G_Client +\x�,HsUc"
7789=Back Door Setup, ICKiller [2>yYr s_=
9872=Portal of Doom U] �~$g}!)
9873=Portal of Doom �3�s5z
UT;
9874=Portal of Doom R�PwbT�Al}
9875=Portal of Doom C�,wL0Yj�[
9989=iNi-Killer 0;hqIJcE:\
10067=Portal of Doom >���f^r^P
10167=Portal of Doom ���wr��viR
10520=Acid Shivers Q_1:t�W�
&
10607=Coma m��&x�W6!x
11000=Senna Spy FO+Zue.RS
11223=Progenic trojan Q}`0W[a
�~
12223=Hack?9 KeyLogger @>u}e�B>Kn
12345=GabanBus, NetBus, Pie Bill Gates, X-bill ,NOsFO�-`<
12346=GabanBus, NetBus, X-bill ~I��o7]���
�j_/>A�=OD
12361=Whack-a-mole *l�YVY)��L
12362=Whack-a-mole �5c9�^-|-T
12631=WhackJob ^"��2��i �
13000=Senna Spy �~�U�u4�=
16969=Priority �e%@'5k\SK
20001=Millennium ~Uj=^leYO
20034=NetBus 2 Pro ;m0~L=��w
21544=GirlFriend :Hn6b$�Vy8
22222=Prosiak :uP,f<=)K�
23456=Evil FTP, Ugly FTP kh!FR u �h
26274=Delta Source [O$Wa:< 0x
29891=The Unexplained V�dPt�Pq�1
30029=AOL Trojan 30100=NetSphere 1.27a, NetSphere 1.31 ?OI�d�\'q
30101=NetSphere 1.31, NetSphere 1.27a �O $LfuL
30102=NetSphere 1.27a, NetSphere 1.31 rr�+|Zt
�Y
30103=NetSphere 1.31 l#m#c�6;�=
30303=Sockets de Troie vV6<^�W:9F
Sw:7pByj�I
31337=Baron Night, BO client, BO2, Bo Facil, BackFire, Back Orifice, DeepBO &[_g�6��OL
31338=NetSpy DK 31338=Back Orifice, DeepBO Jk&3�%^P{m
31339=NetSpy DK E8!e:l
=Q�
31666=BOWhack d.3E[A�Ja(
31785=Hack Attack eS�{!)j�_^
31787=Hack Attack �81]��(T�<
31789=Hack Attack !4�]T�XH0f
31791=Hack Attack O80<Z#%j`�
33333=Prosiak 6,o~\8�ia�
34324=BigGluck, TN |_�LU~�7./
40412=The Spy H0�:E(}@��
40421=Agent 40421, Masters Paradise gGvz(R:��y
40422=Masters Paradise c*(bO3�� b
40423=Masters Paradise �J\/cCW-rF
40426=Masters Paradise H�]�P.
x!I
47262=Delta Source J
cPtwa;q@
50505=Sockets de Troie *,3SGcYdJj
D~biKrg?�=
50766=Fore �3?�[d�E<�
53001=Remote Windows Shutdown u&1q� [0y
54321=School Bus .69-1.11 ~:0sk"t�$1
60000=Deep Throat �qJ;�jf�h!
61466=Telecommando ATJWO�1CtB
65000=Devil 3%l*N&gsg:
69123=ShitHeep ]@dZ�{H��|
?b*s��.
^�
注:现在的木马都具有改变监听端口的功能,所以以上的缺省端口仅供参考之用。
