端口是什么
1.端口和進(jìn)程有關(guān)系嗎? 它們兩個(gè)是毫無(wú)關(guān)系的!?? 至于進(jìn)程要不要用某個(gè)端口,這是應(yīng)用程序所要實(shí)現(xiàn)的功能所決定的
2.樓上的回答很對(duì),端口是為了進(jìn)行通信,虛擬出的一種概念
3.端口是虛擬的,端口本就是為了網(wǎng)絡(luò)通信協(xié)議而存在的
4.只是,現(xiàn)在很多的東西依賴(lài)于網(wǎng)絡(luò),因此,基于網(wǎng)絡(luò)服務(wù)的程序會(huì)需要打開(kāi)端口監(jiān)聽(tīng),這個(gè)時(shí)候,進(jìn)程打開(kāi)一個(gè)端口(相當(dāng)于一個(gè)頻段),外部網(wǎng)絡(luò)客戶(hù)端訪(fǎng)問(wèn)這個(gè)端口(頻段),兩者就可以建立起連接進(jìn)行通信。
5,如果理解進(jìn)程和端口為什么存在就不會(huì)問(wèn)這樣的問(wèn)題?每一種東西出現(xiàn)是解決某一種或某一類(lèi)問(wèn)題而出現(xiàn)的。在通訊過(guò)程中IP是固定只有那么多的,所以為了解決通訊地址的重復(fù)出現(xiàn)了端口的概念。就相當(dāng)于電話(huà)的分機(jī)號(hào)碼一樣。進(jìn)程是為了管理一個(gè)程序中的線(xiàn)程才引入的概念。兩個(gè)之間沒(méi)有必然的聯(lián)系
? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? 在網(wǎng)絡(luò)技術(shù)中,端口(Port)大致有兩種意思:一是物理意義上的端口,比如,ADSL Modem、集線(xiàn)器、交換機(jī)、路由器用 于連接其他網(wǎng)絡(luò)設(shè)備的接口,如RJ-45端口、SC端口等等。二是邏輯意義上的端口,一般是指TCP/IP協(xié)議中的端口,端口號(hào)的范圍從0到65535, 比如用于瀏覽網(wǎng)頁(yè)服務(wù)的80端口,用于FTP服務(wù)的21端口等等。我們這里將要介紹的就是邏輯意義上的端口。
端口號(hào)名詞解釋
網(wǎng)絡(luò)端口
那么TCP/IP協(xié)議中的端口指的是什么呢?如果把IP地址比作一間房子 ,端口就是出入這間房子的門(mén)。真正的房子只有幾個(gè)門(mén),但是一個(gè)IP地址的端口 可以有65536個(gè)之多!端口是通過(guò)端口號(hào)來(lái)標(biāo)記的,端口號(hào)只有整數(shù),范圍是從0 到65535。?
作用
端口有什么用呢?我們知道,一臺(tái)擁有IP地址的主機(jī)可以提供許多服務(wù),比如Web服務(wù)、FTP服務(wù)、SMTP服務(wù)等,這些服務(wù)完全可以通過(guò)1個(gè)IP地址 來(lái)實(shí)現(xiàn)。那么,主機(jī)是怎樣區(qū)分不同的網(wǎng)絡(luò)服務(wù)呢?顯然不能只靠IP地址,因?yàn)镮P 地址與網(wǎng)絡(luò)服務(wù)的關(guān)系是一對(duì)多的關(guān)系。實(shí)際上是通過(guò)“IP地址+端口號(hào)”來(lái)區(qū) 分不同的服務(wù)的。?
服務(wù)器一般都是通過(guò)知名端口號(hào)來(lái)識(shí)別的。例如,對(duì)于每個(gè)TCP/IP實(shí)現(xiàn)來(lái)說(shuō),FTP服務(wù)器的 TCP端口號(hào)都是21,每個(gè)Telnet服務(wù)器的TCP端口號(hào)都是23,每個(gè)TFTP(簡(jiǎn)單文件傳送協(xié)議)服務(wù)器的UDP端口號(hào)都是69。任何 TCP/IP實(shí)現(xiàn)所提供的服務(wù)都用知名的1~1023之間的端口號(hào)。這些知名端口號(hào)由Internet號(hào)分配機(jī)構(gòu) (InternetAssignedNumbersAuthority,IANA)來(lái)管理。?
到1992年為止,知名端口號(hào)介于1~255之間。256~1023之間的端口號(hào)通常都是由Unix系統(tǒng)占用,以提供一些特定的Unix服務(wù)—也就是說(shuō),提供一些只有Unix系統(tǒng)才有的、而其他操作系統(tǒng)可能不提供的服務(wù)。現(xiàn)在IANA管理1~1023之間所有的端口號(hào)。?
Internet擴(kuò)展服務(wù)與Unix特定服務(wù)之 間的一個(gè)差別就是Telnet和Rlogin。它們二者都允許通過(guò)計(jì)算機(jī)網(wǎng)絡(luò)登錄到其他主機(jī)上。Telnet是采用端口號(hào)為23的TCP/IP標(biāo)準(zhǔn)且?guī)缀?可以在所有操作系統(tǒng)上進(jìn)行實(shí)現(xiàn)。相反,Rlogin最開(kāi)始時(shí)只是為Unix系統(tǒng)設(shè)計(jì)的(盡管許多非Unix系統(tǒng)現(xiàn)在也提供該服務(wù)),因此在80年代初,它 的有名端口號(hào)為513。
?
客戶(hù)端通常對(duì)它所使用的端口號(hào)并不關(guān)心,只需保證該端口號(hào)在本機(jī)上是唯一的就可以了。客戶(hù)端口號(hào)又稱(chēng)作臨時(shí)端口號(hào)(即存在時(shí)間很短暫)。這是因?yàn)樗ǔV皇窃谟脩?hù)運(yùn)行該客戶(hù)程序時(shí)才存在,而服務(wù)器則只要主機(jī)開(kāi)著的,其服務(wù)就運(yùn)行。?
大多數(shù)TCP/IP實(shí)現(xiàn)給臨時(shí)端口分配1024~5000之間的端口號(hào)。大于5000的端口號(hào)是為其他服務(wù)器預(yù)留的(Internet上并不常用的服務(wù))。我們可以 在后面看見(jiàn)許多這樣的給臨時(shí)端口分?
配端口號(hào)的例子。?
Solaris2.2是一個(gè)很有名的例外。通常TCP和UDP的缺省臨時(shí)端口號(hào)從32768開(kāi)始。 TCP與UDP對(duì)于端口號(hào)的使用規(guī)定 TCP與UDP段結(jié)構(gòu)中端口地址都是16比特,可以有在0---65535范圍內(nèi)的端口號(hào)。對(duì)于這65536個(gè)端口號(hào)有以下的使用規(guī)定:?
(1)端口號(hào)小于256的定義為常用端口,服務(wù)器一般都是通過(guò)常用端口號(hào)來(lái)識(shí)別的。任何TCP/IP實(shí)現(xiàn)所提供的服務(wù)都用1---1023之間的端口號(hào),是由IANA來(lái)管理的;?
(2)客戶(hù)端只需保證該端口號(hào)在本機(jī)上是惟一的就可以了。客戶(hù)端口號(hào)因存在時(shí)間很短暫又稱(chēng)臨時(shí)端口號(hào);?
(3)大多數(shù)TCP/IP實(shí)現(xiàn)給臨時(shí)端口號(hào)分配1024---5000之間的端口號(hào)。大于5000的端口號(hào)是為其他服務(wù)器預(yù)留的。?
端口分類(lèi)
知名端口
邏輯意義上的端口有多種分類(lèi)標(biāo)準(zhǔn),下面將介紹常見(jiàn)的按端口號(hào)分布的分類(lèi):?
(1)?
(Well-Known Ports)?
知名端口即眾所周知的端口號(hào),范圍從0到1023,這些端口號(hào)一般固定分配給一些服務(wù)。比如21端口分配給FTP(文件傳輸協(xié)議)服務(wù),25端口分配給SMTP(簡(jiǎn)單郵件傳輸協(xié)議)服務(wù),80端口分配給HTTP服務(wù),135端口分配給RPC(遠(yuǎn)程過(guò)程調(diào)用)服務(wù)等等。?
網(wǎng)絡(luò)服務(wù)是可以使用其他端口號(hào)的,如果不是默認(rèn)的端口號(hào)則應(yīng)該在 地址欄上指定端口號(hào),方法是在地址后面加上冒號(hào)“:”(半角),再加上端口 號(hào)。比如使用“8080”作為WWW服務(wù)的端口,則需要在地址欄里輸入“[1]”。?
但是有些系統(tǒng)協(xié)議使用固定的端口號(hào),它是不能被改變的,比如139 端口專(zhuān)門(mén)用于NetBIOS與TCP/IP之間的通信,不能手動(dòng)改變。?
動(dòng)態(tài)端口
(2)?
(Dynamic Ports)?
動(dòng)態(tài)端口的范圍從1024到65535,這些端口號(hào)一般不固定分配給某個(gè)服務(wù),也就是說(shuō)許多服務(wù)都可以使用這些端口。只要運(yùn)行的程序向系統(tǒng)提出訪(fǎng)問(wèn)網(wǎng)絡(luò)的申請(qǐng),那么系統(tǒng)就可以從這些端口號(hào)中分配一個(gè)供該程序使用。比如1024端口就是分配給第一個(gè)向系統(tǒng)發(fā)出申請(qǐng)的程序。在關(guān)閉程序進(jìn)程后,就會(huì)釋放所占用的端口號(hào)。?
不過(guò),動(dòng)態(tài)端口也常常被病毒木馬程序所利用,如冰河默認(rèn)連接端口是7626、WAY 2.4是8011、Netspy 3.0是7306、YAI病毒是1024等 。?
保留端口號(hào)
(3)?
Unix系統(tǒng)有保留端口號(hào)的概念。只有具有超級(jí)用戶(hù)特權(quán)的進(jìn)程才允許給它自己分配一個(gè)保留端口號(hào)。?
這些端口號(hào)介于1~1023之間,一些應(yīng)用程序(如有名的Rlogin,26.2節(jié))將它作為客戶(hù)與服務(wù)器之間身份認(rèn)證的一部分。?
知名端口號(hào)?
//注: 由于一些應(yīng)用軟件占用了部分端口, ?因此此文件中的部分端口被注釋掉了(注釋字符為: //)?
TCP 1=TCP Port Service Multiplexer?
TCP 2=Death?
TCP 5=Remote Job Entry,yoyo?
TCP 7=Echo?
TCP 11=Skun?
TCP 12=Bomber?
TCP 16=Skun?
TCP 17=Skun?
TCP 18=消息傳輸協(xié)議,skun?
TCP 19=Skun?
TCP 20=FTP Data,Amanda?
TCP 21=文件傳輸,Back Construction,Blade Runner,Doly Trojan,Fore,FTP trojan,Invisible FTP,Larva, WebEx,WinCrash?
TCP 22=遠(yuǎn)程登錄協(xié)議?
TCP 23=遠(yuǎn)程登錄(Telnet),Tiny Telnet Server (= TTS)?
TCP 25=電子郵件(SMTP),Ajan,Antigen,Email Password Sender,Happy 99,Kuang2,ProMail trojan,Shtrilitz,Stealth,Tapiras,Terminator,WinPC,WinSpy,Haebu Coceda?
TCP 27=Assasin?
TCP 28=Amanda?
TCP 29=MSG ICP?
TCP 30=Agent 40421?
TCP 31=Agent 31,Hackers Paradise,Masters Paradise,Agent 40421?
TCP 37=Time,ADM worm?
TCP 39=SubSARI?
TCP 41=DeepThroat,Foreplay?
TCP 42=Host Name Server?
TCP 43=WHOIS?
TCP 44=Arctic?
TCP 48=DRAT?
TCP 49=主機(jī)登錄協(xié)議?
TCP 50=DRAT?
TCP 51=IMP Logical Address Maintenance,Fuck Lamers Backdoor?
TCP 52=MuSka52,Skun?
TCP 53=DNS,Bonk (DOS Exploit)?
TCP 54=MuSka52?
TCP 58=DMSetup?
TCP 59=DMSetup?
TCP 63=whois++?
TCP 64=Communications Integrator?
TCP 65=TACACS-Database Service?
TCP 66=Oracle SQL*NET,AL-Bareki?
TCP 67=Bootstrap Protocol Server?
TCP 68=Bootstrap Protocol Client?
TCP 69=W32.Evala.Worm,BackGate Kit,Nimda,Pasana,Storm,Storm worm,Theef,Worm.Cycle.a?
TCP 70=Gopher服務(wù),ADM worm?
TCP 79=用戶(hù)查詢(xún)(Finger),Firehotcker,ADM worm?
TCP 80=超文本服務(wù)器(Http),Executor,RingZero?
TCP 81=Chubo,Worm.Bbeagle.q?
TCP 82=Netsky-Z?
TCP 88=Kerberos krb5服務(wù)?
TCP 99=Hidden Port?
TCP 102=消息傳輸代理?
TCP 108=SNA網(wǎng)關(guān)訪(fǎng)問(wèn)服務(wù)器?
TCP 109=Pop2?
TCP 110=電子郵件(Pop3),ProMail?
TCP 113=Kazimas, Auther Idnet?
TCP 115=簡(jiǎn)單文件傳輸協(xié)議?
TCP 118=SQL Services, Infector 1.4.2?
TCP 119=新聞組傳輸協(xié)議(Newsgroup(Nntp)), Happy 99?
TCP 121=JammerKiller, Bo jammerkillah?
TCP 123=網(wǎng)絡(luò)時(shí)間協(xié)議(NTP),Net Controller?
TCP 129=Password Generator Protocol?
TCP 133=Infector 1.x?
TCP 135=微軟DCE RPC end-point mapper服務(wù)?
TCP 137=微軟Netbios Name服務(wù)(網(wǎng)上鄰居傳輸文件使用)?
TCP 138=微軟Netbios Name服務(wù)(網(wǎng)上鄰居傳輸文件使用)?
TCP 139=微軟Netbios Name服務(wù)(用于文件及打印機(jī)共享)?
TCP 142=NetTaxi?
TCP 143=IMAP?
TCP 146=FC Infector,Infector?
TCP 150=NetBIOS Session Service?
TCP 156=SQL服務(wù) 器?
TCP 161=Snmp?
TCP 162=Snmp-Trap?
TCP 170=A-Trojan?
TCP 177=X Display管理控制協(xié)議?
TCP 179=Border網(wǎng)關(guān)協(xié)議(BGP)?
TCP 190=網(wǎng)關(guān)訪(fǎng)問(wèn)控制協(xié)議(GACP)?
TCP 194=Irc?
TCP 197=目錄定位服務(wù)(DLS)?
TCP 256=Nirvana?
TCP 315=The Invasor?
TCP 371=ClearCase版本管理軟件?
TCP 389=Lightweight Directory Access Protocol (LDAP)?
TCP 396=Novell Netware over IP?
TCP 420=Breach?
TCP 421=TCP Wrappers?
TCP 443=安全服務(wù)?
TCP 444=Simple Network Paging Protocol(SNPP)?
TCP 445=Microsoft-DS?
TCP 455=Fatal Connections?
TCP 456=Hackers paradise,FuseSpark?
TCP 458=蘋(píng)果公司QuickTime?
TCP 513=Grlogin?
TCP 514=RPC Backdoor?
TCP 520=Rip?
TCP 531=Rasmin,Net666?
TCP 544=kerberos kshell?
TCP 546=DHCP Client?
TCP 547=DHCP Server?
TCP 548=Macintosh文件服務(wù)?
TCP 555=Ini-Killer,Phase Zero,Stealth Spy?
TCP 569=MSN?
TCP 605=SecretService?
TCP 606=Noknok8?
TCP 660=DeepThroat?
TCP 661=Noknok8?
TCP 666=Attack FTP,Satanz Backdoor,Back Construction,Dark Connection Inside 1.2?
TCP 667=Noknok7.2?
TCP 668=Noknok6?
TCP 669=DP trojan?
TCP 692=GayOL?
TCP 707=Welchia,nachi?
TCP 777=AIM Spy?
TCP 808=RemoteControl,WinHole?
TCP 815=Everyone Darling?
TCP 901=Backdoor.Devil?
TCP 911=Dark Shadow?
TCP 993=IMAP?
TCP 999=DeepThroat?
TCP 1000=Der Spaeher?
TCP 1001=Silencer,WebEx,Der Spaeher?
TCP 1003=BackDoor?
TCP 1010=Doly?
TCP 1011=Doly?
TCP 1012=Doly?
TCP 1015=Doly?
TCP 1016=Doly?
TCP 1020=Vampire?
TCP 1023=Worm.Sasser.e?
TCP 1024=NetSpy.698(YAI)?
TCP 1059=nimreg?
//TCP 1025=NetSpy.698,Unused Windows Services Block?
//TCP 1026=Unused Windows Services Block?
//TCP 1027=Unused Windows Services Block?
TCP 1028=應(yīng)用層網(wǎng)關(guān)服務(wù)?
//TCP 1029=Unused Windows Services Block?
//TCP 1030=Unused Windows Services Block?
//TCP 1033=Netspy?
//TCP 1035=Multidropper?
//TCP 1042=Bla?
//TCP 1045=Rasmin?
//TCP 1047=GateCrasher?
//TCP 1050=MiniCommand?
TCP 1058=nim?
TCP 1069=Backdoor.TheefServer.202?
TCP 1070=Voice,Psyber Stream Server,Streaming Audio Trojan?
TCP 1079=ASPROVATalk?
TCP 1080=Wingate,Worm.BugBear.B,Worm.Novarg.B?
//TCP 1090=Xtreme, VDOLive?
//TCP 1092=LoveGate?
//TCP 1095=Rat?
//TCP 1097=Rat?
//TCP 1098=Rat?
//TCP 1099=Rat?
TCP 1109=Pop with Kerberos?
TCP 1110=nfsd-keepalive?
TCP 1111=Backdoor.AIMVision?
TCP 1155=Network File Access?
//TCP 1170=Psyber Stream Server,Streaming Audio trojan,Voice?
//TCP 1200=NoBackO?
//TCP 1201=NoBackO?
//TCP 1207=Softwar?
//TCP 1212=Nirvana,Visul Killer?
//TCP 1234=Ultors?
//TCP 1243=BackDoor-G, SubSeven, SubSeven Apocalypse?
//TCP 1245=VooDoo Doll?
//TCP 1269=Mavericks Matrix?
TCP 1270=Microsoft Operations Manager?
//TCP 1313=Nirvana?
//TCP 1349=BioNet?
TCP 1352=Lotus Notes?
TCP 1433=Microsoft SQL Server?
TCP 1434=Microsoft SQL Monitor?
//TCP 1441=Remote Storm?
//TCP 1492=FTP99CMP(BackOriffice.FTP)?
TCP 1503=NetMeeting T.120?
TCP 1512=Microsoft Windows Internet Name Service?
//TCP 1509=Psyber Streaming Server?
TCP 1570=Orbix Daemon?
//TCP 1600=Shivka-Burka?
//TCP 1703=Exloiter 1.1?
TCP 1720=NetMeeting H.233 call Setup?
TCP 1731=NetMeeting音頻調(diào)用控制?
TCP 1745=ISA Server proxy autoconfig, Remote Winsock?
TCP 1801=Microsoft Message Queue?
//TCP 1807=SpySender?
TCP 1906=Backdoor/Verify.b?
TCP 1907=Backdoor/Verify.b?
//TCP 1966=Fake FTP 2000?
//TCP 1976=Custom port?
//TCP 1981=Shockrave?
TCP 1990=stun-p1 cisco STUN Priority 1 port?
TCP 1990=stun-p1 cisco STUN Priority 1 port?
TCP 1991=stun-p2 cisco STUN Priority 2 port?
TCP 1992=stun-p3 cisco STUN Priority 3 port,ipsendmsg IPsendmsg?
TCP 1993=snmp-tcp-port cisco SNMP TCP port?
TCP 1994=stun-port cisco serial tunnel port?
TCP 1995=perf-port cisco perf port?
TCP 1996=tr-rsrb-port cisco Remote SRB port?
TCP 1997=gdp-port cisco Gateway Discovery Protocol?
TCP 1998=x25-svc-port cisco X.25 service (XOT)?
//TCP 1999=BackDoor, TransScout?
//TCP 2000=Der Spaeher,INsane Network?
TCP 2002=W32.Beagle. AX @mm?
//TCP 2001=Transmisson scout?
//TCP 2002=Transmisson scout?
//TCP 2003=Transmisson scout?
//TCP 2004=Transmisson scout?
//TCP 2005=TTransmisson scout?
TCP 2011=cypress?
TCP 2015=raid-cs?
//TCP 2023=Ripper,Pass Ripper,Hack City Ripper Pro?
TCP 2049=NFS?
//TCP 2115=Bugs?
//TCP 2121=Nirvana?
//TCP 2140=Deep Throat, The Invasor?
//TCP 2155=Nirvana?
//TCP 2208=RuX?
TCP 2234=DirectPlay?
//TCP 2255=Illusion Mailer?
//TCP 2283=HVL Rat5?
//TCP 2300=PC Explorer?
//TCP 2311=Studio54?
TCP 2556=Worm.Bbeagle.q?
//TCP 2565=Striker?
//TCP 2583=WinCrash?
//TCP 2600=Digital RootBeer?
//TCP 2716=Prayer Trojan?
TCP 2745=Worm.BBeagle.k?
//TCP 2773=Backdoor,SubSeven?
//TCP 2774=SubSeven2.1&2.2?
//TCP 2801=Phineas Phucker?
TCP ?2967=SSC Agent?
//TCP 2989=Rat?
//TCP 3024=WinCrash trojan?
TCP 3074=Microsoft Xbox game port?
TCP 3127=Worm.Novarg?
TCP 3128=RingZero,Worm.Novarg.B?
//TCP 3129=Masters Paradise?
TCP 3132=Microsoft Business Rule Engine Update Service?
//TCP 3150=Deep Throat, The Invasor?
TCP 3198=Worm.Novarg?
//TCP 3210=SchoolBus?
TCP 3268=Microsoft Global Catalog?
TCP 3269=Microsoft Global Catalog with LDAP/SSL?
TCP 3332=Worm.Cycle.a?
TCP 3333=Prosiak?
TCP 3535=Microsoft Class Server?
TCP 3389=超級(jí)終端?
//TCP 3456=Terror?
//TCP 3459=Eclipse 2000?
//TCP 3700=Portal of Doom?
//TCP 3791=Eclypse?
//TCP 3801=Eclypse?
TCP 3847=Microsoft Firewall Control?
TCP 3996=Portal of Doom,RemoteAnything?
TCP 4000=騰訊QQ客戶(hù)端?
TCP 4060=Portal of Doom,RemoteAnything?
TCP 4092=WinCrash?
TCP 4242=VHM?
TCP 4267=SubSeven2.1&2.2?
TCP 4321=BoBo?
TCP 4350=Net Device?
TCP 4444=Prosiak,Swift remote?
TCP 4500=Microsoft IPsec NAT-T, W32.HLLW.Tufas?
TCP 4567=File Nail?
TCP 4661=Backdoor/Surila.f?
TCP 4590=ICQTrojan?
TCP 4899=Remote Administrator服務(wù)器?
TCP 4950=ICQTrojan?
TCP 5000=WindowsXP服務(wù)器,Blazer 5,Bubbel,Back Door Setup,Sockets de Troie?
TCP 5001=Back Door Setup, Sockets de Troie?
TCP 5002=cd00r,Shaft?
TCP 5011=One of the Last Trojans (OOTLT)?
TCP 5025=WM Remote KeyLogger?
TCP 5031=Firehotcker,Metropolitan,NetMetro?
TCP 5032=Metropolitan?
TCP 5190=ICQ Query?
TCP 5321=Firehotcker?
TCP 5333=Backage Trojan Box 3?
TCP 5343=WCrat?
TCP 5400=Blade Runner, BackConstruction1.2?
TCP 5401=Blade Runner,Back Construction?
TCP 5402=Blade Runner,Back Construction?
TCP 5471=WinCrash?
TCP 5512=Illusion Mailer?
TCP 5521=Illusion Mailer?
TCP 5550=Xtcp,INsane Network?
TCP 5554=Worm.Sasser?
TCP 5555=ServeMe?
TCP 5556=BO Facil?
TCP 5557=BO Facil?
TCP 5569=Robo-Hack?
TCP 5598=BackDoor 2.03?
TCP 5631=PCAnyWhere data?
TCP 5632=PCAnyWhere?
TCP 5637=PC Crasher?
TCP 5638=PC Crasher?
TCP 5678=Remote Replication Agent Connection?
TCP 5679=Direct Cable Connect Manager?
TCP 5698=BackDoor?
TCP 5714=Wincrash3?
TCP 5720=Microsoft Licensing?
TCP 5741=WinCrash3?
TCP 5742=WinCrash?
TCP 5760=Portmap Remote Root Linux Exploit?
TCP 5880=Y3K RAT?
TCP 5881=Y3K RAT?
TCP 5882=Y3K RAT?
TCP 5888=Y3K RAT?
TCP 5889=Y3K RAT?
TCP 5900=WinVnc?
TCP 6000=Backdoor.AB?
TCP 6006=Noknok8?
TCP 6073=Dire ctPlay8?
TCP 6129=Dameware Nt Utilities服務(wù)器?
TCP 6272=SecretService?
TCP 6267=廣外女生?
TCP 6400=Backdoor.AB,The Thing?
TCP 6500=Devil 1.03?
TCP 6661=Teman?
TCP 6666=TCPshell.c?
TCP 6667=NT Remote Control,Wise 播放器接收端口?
TCP 6668=Wise Video廣播端口?
TCP 6669=Vampyre?
TCP 6670=DeepThroat,iPhone?
TCP 6671=Deep Throat 3.0?
TCP 6711=SubSeven?
TCP 6712=SubSeven1.x?
TCP 6713=SubSeven?
TCP 6723=Mstream?
TCP 6767=NT Remote Control?
TCP 6771=DeepThroat?
TCP 6776=BackDoor-G,SubSeven,2000 Cracks?
TCP 6777=Worm.BBeagle?
TCP 6789=Doly Trojan?
TCP 6838=Mstream?
TCP 6883=DeltaSource?
TCP 6912=Shit Heep?
TCP 6939=Indoctrination?
TCP 6969=GateCrasher, Priority, IRC 3?
TCP 6970=RealAudio,GateCrasher?
TCP 7000=Remote Grab,NetMonitor,SubSeven1.x?
TCP 7001=Freak88, Weblogic默認(rèn)端口?
TCP 7201=NetMonitor?
TCP 7215=BackDoor-G, SubSeven?
TCP 7001=Freak88,Freak2k?
TCP 7300=NetMonitor?
TCP 7301=NetMonitor?
TCP 7306=NetMonitor,NetSpy 1.0?
TCP 7307=NetMonitor, ProcSpy?
TCP 7308=NetMonitor, X Spy?
TCP 7323=Sygate服務(wù)器端?
TCP 7424=Host Control?
TCP 7511=聰明基因?
TCP 7597=Qaz?
TCP 7609=Snid X2?
TCP 7626=冰河?
TCP 7777=The Thing?
TCP 7789=Back Door Setup, ICQKiller?
TCP 7983=Mstream?
TCP 8000=騰訊OICQ服務(wù)器端,XDMA?
TCP 8010=Wingate,Logfile?
TCP 8011=WAY2.4?
TCP 8080=WWW 代理(如:Tomcat的默認(rèn)端口),Ring Zero,Chubo,Worm.Novarg.B?
TCP 8102=網(wǎng)絡(luò)神偷?
TCP 8181=W32.Erkez.D@mm?
TCP 8520=W32.Socay.Worm?
TCP 8594=I-Worm/Bozori.a?
TCP 8787=BackOfrice 2000?
TCP 8888=Winvnc?
TCP 8897=Hack Office,Armageddon?
TCP 8989=Recon?
TCP 9000=Netministrator?
TCP 9080=WebSphere?
TCP 9325=Mstream?
TCP 9400=InCommand 1.0?
TCP 9401=InCommand 1.0?
TCP 9402=InCommand 1.0?
TCP 9535=Remote Man Server?
TCP 9872=Portal of Doom?
TCP 9873=Portal of Doom?
TCP 9874=Portal of Doom?
TCP 9875=Portal of Doom?
TCP 9876=Cyber Attacker?
TCP 9878=TransScout?
TCP 9989=Ini-Killer?
TCP 9898=Worm.Win32.Dabber.a?
TCP 9999=Prayer Trojan?
TCP 10067=Portal of Doom?
TCP 10080=Worm.Novarg.B?
TCP 10084=Syphillis?
TCP 10085=Syphillis?
TCP 10086=Syphillis?
TCP 10101=BrainSpy?
TCP 10167=Portal Of Doom?
TCP 10168=Worm.Supnot.78858.c,Worm.LovGate.T?
TCP 10520=Acid Shivers?
TCP 10607=Coma trojan?
TCP 10666=Ambush?
TCP 11000= Senna Spy?
TCP 11050=Host Control?
TCP 11051=Host Control?
TCP 11223=Progenic,Hack '99KeyLogger?
TCP 11320=IMIP Channels Port?
TCP 11831=TROJ_LATINUS.SVR?
TCP 12076=Gjamer, MSH.104b?
TCP 12223=Hack'99 KeyLogger?
TCP 12345=GabanBus, NetBus 1.6/1.7, Pie Bill Gates, X-bill?
TCP 12346=GabanBus, NetBus 1.6/1.7, X-bill?
TCP 12349=BioNet?
TCP 12361=Whack-a-mole?
TCP 12362=Whack-a-mole?
TCP 12363=Whack-a-mole?
TCP 12378=W32/Gibe@MM?
TCP 12456=NetBus?
TCP 12623=DUN Control?
TCP 12624=Buttman?
TCP 12631=WhackJob, WhackJob.NB1.7?
TCP 12701=Eclipse2000?
TCP 12754=Mstream?
TCP 13000=Senna Spy?
TCP 13010=Hacker Brazil?
TCP 13013=Psychward?
TCP 13223=Tribal Voice的聊天程序PowWow?
TCP 13700=Kuang2 The Virus?
TCP 14456=Solero?
TCP 14500=PC Invader?
TCP 14501=PC Invader?
TCP 14502=PC Invader?
TCP 14503=PC Invader?
TCP 15000=NetDaemon 1.0?
TCP 15092=Host Control?
TCP 15104=Mstream?
TCP 16484=Mosucker?
TCP 16660=Stacheldraht (DDoS)?
TCP 16772=ICQ Revenge?
TCP 16959=Priority?
TCP 16969=Priority?
TCP 17027=提供廣告服務(wù)的Conducent"adbot"共享軟件?
TCP 17166=Mosaic?
TCP 17300=Kuang2 The Virus?
TCP 17490=CrazyNet?
TCP 17500=CrazyNet?
TCP 17569=Infector 1.4.x + 1.6.x?
TCP 17777=Nephron?
TCP 18753=Shaft (DDoS)?
TCP 19191=藍(lán)色火焰?
TCP 19864=ICQ Revenge?
TCP 20000=Millennium II (GrilFriend)?
TCP 20001=Millennium II (GrilFriend)?
TCP 20002=AcidkoR?
TCP 20034=NetBus 2 Pro?
TCP 20168=Lovgate?
TCP 20203=Logged,Chupacabra?
TCP 20331=Bla?
TCP 20432=Shaft (DDoS)?
TCP 20808=Worm.LovGate.v.QQ?
TCP 21335=Tribal Flood Network,Trinoo?
TCP 21544=Schwindler 1.82,GirlFriend?
TCP 21554=Schwindler 1.82,GirlFriend,Exloiter 1.0.1.2?
TCP 22222=Prosiak,RuX Uploader 2.0?
TCP 22784=Backdoor.Intruzzo?
TCP 23432=Asylum 0.1.3?
TCP 23444=網(wǎng)絡(luò)公牛?
TCP 23456=Evil FTP, Ugly FTP, WhackJob?
TCP 23476=Donald Dick?
TCP 23477=Donald Dick?
TCP 23777=INet Spy?
TCP 26274=Delta?
TCP 26681=Spy Voice?
TCP 27374=Sub Seven 2.0+, Backdoor.Baste?
TCP 27444=Tribal Flood Network,Trinoo?
TCP 27665=Tribal Flood Network,Trinoo?
TCP 29431=Hack Attack?
TCP 29432=Hack Attack?
TCP 29104=Host Control?
TCP 29559=TROJ_LATINUS.SVR?
TCP 29891=The Unexplained?
TCP 30001=Terr0r32?
TCP 30003=Death,Lamers Death?
TCP 30029=AOL trojan?
TCP 30100=NetSphere 1.27a,NetSphere 1.31?
TCP ?30101=NetSphere 1.31,NetSphere 1.27a?
TCP 30102=NetSphere 1.27a,NetSphere 1.31?
TCP 30103=NetSphere 1.31?
TCP 30303=Sockets de Troie?
TCP 30722=W32.Esbot.A?
TCP 30947=Intruse?
TCP 30999=Kuang2?
TCP 31336=Bo Whack?
TCP 31337=Baron Night,BO client,BO2,Bo Facil,BackFire,Back Orifice,DeepBO,Freak2k,NetSpy?
TCP 31338=NetSpy,Back Orifice,DeepBO?
TCP 31339=NetSpy DK?
TCP 31554=Schwindler?
TCP 31666=BOWhack?
TCP 31778=Hack Attack?
TCP 31785=Hack Attack?
TCP 31787=Hack Attack?
TCP 31789=Hack Attack?
TCP 31791=Hack Attack?
TCP 31792=Hack Attack?
TCP 32100=PeanutBrittle?
TCP 32418=Acid Battery?
TCP 33333=Prosiak,Blakharaz 1.0?
TCP 33577=Son Of Psychward?
TCP 33777=Son Of Psychward?
TCP 33911=Spirit 2001a?
TCP 34324=BigGluck,TN,Tiny Telnet Server?
TCP 34555=Trin00 (Windows) (DDoS)?
TCP 35555=Trin00 (Windows) (DDoS)?
TCP 36794=Worm.Bugbear-A?
TCP 37651=YAT?
TCP 40412=The Spy?
TCP 40421=Agent 40421,Masters Paradise.96?
TCP 40422=Masters Paradise?
TCP 40423=Masters Paradise.97?
TCP 40425=Masters Paradise?
TCP 40426=Masters Paradise 3.x?
TCP 41666=Remote Boot?
TCP 43210=Schoolbus 1.6/2.0?
TCP 44444=Delta Source?
TCP 44445=Happypig?
TCP 45576=未知代理?
TCP 47252=Prosiak?
TCP 47262=Delta?
TCP 47624=Direct Play Server?
TCP 47878=BirdSpy2?
TCP 49301=Online Keylogger?
TCP 50505=Sockets de Troie?
TCP 50766=Fore, Schwindler?
TCP 51966=CafeIni?
TCP 53001=Remote Windows Shutdown?
TCP 53217=Acid Battery 2000?
TCP 54283=Back Door-G, Sub7?
TCP 54320=Back Orifice 2000,Sheep?
TCP 54321=School Bus .69-1.11,Sheep, BO2K?
TCP 57341=NetRaider?
TCP 58008=BackDoor.Tron?
TCP 58009=BackDoor.Tron?
TCP 58339=ButtFunnel?
TCP 59211=BackDoor.DuckToy?
TCP 60000=Deep Throat?
TCP 60068=Xzip 6000068?
TCP 60411=Connection?
TCP 60606=TROJ_BCKDOR.G2.A?
TCP 61466=Telecommando?
TCP 61603=Bunker-kill?
TCP 63485=Bunker-kill?
TCP 65000=Devil, DDoS?
TCP 65432=Th3tr41t0r, The Traitor?
TCP 65530=TROJ_WINMITE.10?
TCP 65535=RC,Adore Worm/Linux?
TCP 69123=ShitHeep?
TCP 88798=Armageddon,Hack Office?
UDP 1=Sockets des Troie?
UDP 9=Chargen?
UDP 19=Chargen?
UDP 69=Pasana?
UDP 80=Penrox?
UDP 371=ClearCase版本管理軟件?
UDP 445=公共Internet文件系統(tǒng)(CIFS)?
UDP 500=Internet密鑰交換?
UDP 1025=Maverick's Matrix 1.2 - 2.0?
UDP 1026=Remote Explorer 2000?
UDP 1027=HP服務(wù),UC 聊天軟件,Trojan.Huigezi.e?
UDP 1028=應(yīng)用層網(wǎng)關(guān)服務(wù),KiLo,SubSARI?
UDP 1029=SubSARI?
UDP 1031=Xot?
UDP 1032=Akosch4?
UDP 1104=RexxRave?
UDP 1111=Daodan?
UDP 1116=Lurker?
UDP 1122=Last 2000,Singularity?
UDP 1183=Cyn,SweetHeart?
UDP 1200=NoBackO?
UDP 1201=NoBackO?
UDP 1342=BLA trojan?
UDP 1344=Ptakks?
UDP 1349=BO dll?
UDP 1512=Microsoft Windows Internet Name Service?
UDP 1561=MuSka52?
UDP 1772=NetControle?
UDP 1801=Microsoft Message Queue?
UDP 1978=Slapper?
UDP 1985=Black Diver?
UDP 2000=A-trojan,Fear,Force,GOTHIC Intruder,Last 2000,Real 2000?
UDP 2001=Scalper?
UDP 2002=Slapper?
UDP 2015=raid-cs?
UDP 2018=rellpack?
UDP 2130=Mini BackLash?
UDP 2140=Deep Throat,Foreplay,The Invasor?
UDP 2222=SweetHeart,Way,Backdoor/Mifeng.t?
UDP 2234=DirectPlay?
UDP 2339=Voice Spy?
UDP 2702=Black Diver?
UDP 2989=RAT?
UDP 3074=Microsoft Xbox game port?
UDP 3132=Microsoft Business Rule Engine Update Service?
UDP 3150=Deep Throat?
UDP 3215=XHX?
UDP 3268=Microsoft Global Catalog?
UDP 3269=Microsoft Global Catalog with LDAP/SSL?
UDP 3333=Daodan?
UDP 3535=Microsoft Class Server?
UDP 3801=Eclypse?
UDP 3996=Remote Anything?
UDP 4128=RedShad?
UDP 4156=Slapper?
UDP 4350=Net Device?
UDP 4500=Microsoft IPsec NAT-T, sae-urn?
UDP 5419=DarkSky?
UDP 5503=Remote Shell Trojan?
UDP 5555=Daodan?
UDP 5678=Remote Replication Agent Connection?
UDP 5679=Direct Cable Connect Manager?
UDP 5720=Microsoft Licensing?
UDP 5882=Y3K RAT?
UDP 5888=Y3K RAT?
UDP 6073=DirectPlay8?
UDP 6112=Battle. net Game?
UDP 6666=KiLo?
UDP 6667=KiLo?
UDP 6766=KiLo?
UDP 6767=KiLo,UandMe?
UDP 6838=Mstream Agent-handler?
UDP 7028=未知木馬?
UDP 7424=Host Control?
UDP 7788=Singularity?
UDP 7983=MStream handler-agent?
UDP 8012=Ptakks?
UDP 8090=Aphex's Remote Packet Sniffer?
UDP 8127=9_119,Chonker?
UDP 8488=KiLo?
UDP 8489=KiLo?
UDP 8787=BackOrifice 2000?
UDP 8879=BackOrifice 2000?
UDP 9325=MStream Agent-handler?
UDP 10000=XHX?
UDP 10067=Portal of Doom?
UDP 10084=Syphillis?
UDP 10100=Slapper?
UDP 10167=Portal of Doom?
UDP 10498=Mstream?
UDP 10666=Ambush?
UDP 11225=Cyn?
UDP 12321=Protoss?
UDP 12345=BlueIce 2000?
UDP 12378=W32/Gibe@MM?
UDP 12623=ButtMan,DUN Control?
UDP 11320=IMIP Channels Port?
UDP 15210=UDP remote shell backdoor server?
? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? UDP 15486=KiLo?
UDP 16514=KiLo?
UDP 16515=KiLo?
UDP 18753=Shaft handler to Agent?
UDP 20433=Shaft?
UDP 21554=GirlFriend?
UDP 22784=Backdoor.Intruzzo?
UDP 23476=Donald Dick?
UDP 25123=MOTD?
UDP 26274=Delta Source?
UDP 26374=Sub-7 2.1?
UDP 26444=Trin00/TFN2K?
UDP 26573=Sub-7 2.1?
UDP 27184=Alvgus trojan 2000?
UDP 27444=Trinoo?
UDP 29589=KiLo?
UDP 29891=The Unexplained?
UDP 30103=NetSphere?
UDP 31320=Little Witch?
UDP 31335=Trin00 DoS Attack?
UDP 31337=Baron Night, BO client, BO2, Bo Facil, BackFire, Back Orifice, DeepBO?
UDP 31338=Back Orifice, NetSpy DK, DeepBO?
UDP 31339=Little Witch?
UDP 31340=Little Witch?
UDP 31416=Lithium?
UDP 31787=Hack aTack?
UDP 31789=Hack aTack?
UDP 31790=Hack aTack?
UDP 31791=Hack aTack?
UDP 33390=未知木馬?
UDP 34555=Trinoo?
UDP 35555=Trinoo?
UDP 43720=KiLo?
UDP 44014=Iani?
UDP 44767=School Bus?
UDP 46666=Taskman?
UDP 47262=Delta Source?
UDP 47624=Direct Play Server?
UDP 47785=KiLo?
UDP 49301=OnLine keyLogger?
UDP 49683=Fenster?
UDP 49698=KiLo?
UDP 52901=Omega?
UDP 54320=Back Orifice?
UDP 54321=Back Orifice 2000?
UDP 54341=NetRaider Trojan?
UDP 61746=KiLO?
UDP 61747=KiLO?
UDP 61748=KiLO?
UDP 65432=The Traitor?
怎樣查看端口
一臺(tái)服務(wù)器有大量的端口在使用,怎么來(lái)查看端口呢?有兩種方式: 一種是利用系統(tǒng)內(nèi)置的命令,一種是利用第三方端口掃描軟件。?
1.用“netstat ”查看端口狀態(tài)?
在Windows 2000/XP中,可以在命令提示符下使用“netstat ”查 看系統(tǒng)端口狀態(tài),可以列出系統(tǒng)正在開(kāi)放的端口號(hào)及其狀態(tài).?
2.用第三方端口掃描軟件?
第三方端口掃描軟件有許多,界面雖然千差萬(wàn)別, 但是功能卻是類(lèi)似 的。這里以“Fport” (可到?type_t=7或下載)為例講解。“Fport”在命令提示符下使用,運(yùn)行結(jié)果 與“netstat -an”相似,但是它不僅能夠列出正在使用的端口號(hào)及類(lèi)型,還可 以列出端口被哪個(gè)應(yīng)用程序使用。?
3.用“netstat -n”命令,以數(shù)字格式顯示地址和端口信息。?
端口號(hào)很多是奇數(shù)的原因 ??
如果仔細(xì)檢查這些標(biāo)準(zhǔn)的簡(jiǎn)單服務(wù)以及其他標(biāo)準(zhǔn)的TCP/IP服務(wù)(如Telnet、FTP、 SMTP等)的端口號(hào)時(shí),我們發(fā)現(xiàn)它們都是奇數(shù)。這是有歷史原因的,因?yàn)檫@些端口號(hào)都是從NCP端口號(hào)派生出來(lái)的(NCP,即網(wǎng)絡(luò)控制協(xié)議,是ARPANET的運(yùn)輸層協(xié)議,是TCP的前身)。NCP是半雙工的,不是全雙工的,因此每個(gè)應(yīng)用程序需要兩個(gè)連接,需預(yù) 留一對(duì)奇數(shù)和偶數(shù)端口號(hào)。當(dāng)TCP和UDP成為標(biāo)準(zhǔn)的運(yùn)輸層協(xié)議時(shí),每個(gè)應(yīng)用程序只需要一個(gè)端口號(hào),因此就使用了NCP中的奇數(shù)。
? ? ? ? ?
總結(jié)
- 上一篇: 树莓派4b和3b+功耗_ARM v8(树
- 下一篇: I:nico和niconiconi(dp