Forums
Forums

Quick Links
- Search Forums
- New Posts
Search titles only

Posted by Member:

Separate names with a comma.

Newer Than:

Search this thread only

Search this forum only

Display results as threads

More...

Useful Searches

Recent Posts
Resources
Resources

Quick Links
Feature Requests
Defects
Menu

This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How can we locate malicious port-scanner on server?

Discussion in 'General Discussion' started by jols, Sep 10, 2006.

jols Well-Known Member

Joined:

Mar 13, 2004

Messages:

1,111

Likes Received:

2

Trophy Points:

168

Just received this via email today:

"This IP address, xxx.xx.x.xx (our server IP went here), is constantly doing port scans and trying to get into my firewall. Please resolve this matter ASAP."

I assume this is due to some goofball uploading a malicious port-scanner, probably written in binary, probably in a hidden directory, etc.

Question - How can we look for this? Netstat? (I know very little about how to use Netstat.)

By the way, I just ran the latest version of rkhunter and everything looks good there.

Thanks for any response.

#1 jols, Sep 10, 2006

(You must log in or sign up to post here.)

Loading...

Similar Threads - locate malicious port

git pull Cannot allocate memory

Havri, Jun 7, 2017, in forum: General Discussion

Replies:

3

Views:

84

Havri

Jun 7, 2017
Can't locate HTTP/Tiny/UA/Response.pm

flashweb, May 13, 2017, in forum: General Discussion

Replies:

1

Views:

144

cPanelJasonT

May 16, 2017
Can't locate Mail/SpamAssassin/Plugin/ResourceLimits.pm

dld, Apr 3, 2017, in forum: E-mail Discussions

Replies:

1

Views:

196

cPanelMichael

Apr 3, 2017
Locate large email attachments

sagarR, Mar 17, 2017, in forum: E-mail Discussions

Replies:

1

Views:

216

cPanelMichael

Mar 17, 2017
Locate Compromised Site on Server

webstyler, Jan 14, 2017, in forum: Security

Replies:

3

Views:

276

cPanelMichael

Jan 16, 2017

Share This Page