Been Haxx0red.
From: Andrew Weaver (drew_at_orbityl.com)
Date: 06/11/03
- Next message: Rafa: "Re: MS Software Update Services 1.0 - IIS security"
- Previous message: Lanwench [MVP - Exchange]: "Re: Admin Account"
- Next in thread: Karl Levinson [x y] mvp: "Re: Been Haxx0red."
- Reply: Karl Levinson [x y] mvp: "Re: Been Haxx0red."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 11 Jun 2003 09:36:11 -0400
Howdy, I have a server, it appears that someone has gained access to it
and installed a FXP daemon on it, its running on port 444, when I use FPORT
to try to determine where the file is, it shows this:
608 secsrvc -> 444 TCP C:\WINNT\System32\secsrvc.exe
if i do a dir c:\winnt\system32\secsrvc.exe
file not found
if I look for PID 608 in the task manager it doesnt exist.
Yet this stupid FXP daemon remains.
Fport hasnt ever failed me before so im not sure what to do ;-)
-Drew
- Next message: Rafa: "Re: MS Software Update Services 1.0 - IIS security"
- Previous message: Lanwench [MVP - Exchange]: "Re: Admin Account"
- Next in thread: Karl Levinson [x y] mvp: "Re: Been Haxx0red."
- Reply: Karl Levinson [x y] mvp: "Re: Been Haxx0red."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
