作者 主題: 奇怪的samba log....是不是我的區網中有電腦有毒?  (閱讀 5460 次)

0 會員 與 1 訪客 正在閱讀本文。

明月舞清風

  • 憂鬱的高中生
  • ***
  • 文章數: 173
    • 檢視個人資料
各位高手你好。小弟對於samba還不是很清楚,所以我看到以下log後我嚇了一跳...

這是我看到的log...

引用

[2002/11/25 17:04:27, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.48) couldn't find service c
[2002/11/25 17:05:02, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.48) couldn't find service c
[2002/11/25 17:07:43, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.48) couldn't find service c
[2002/11/25 17:08:23, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.48) couldn't find service c
[2002/11/27 18:56:28, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.27) couldn't find service c
[2002/11/27 18:57:03, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.27) couldn't find service c
[2002/11/27 18:57:13, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.55) couldn't find service c
[2002/11/27 18:57:45, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.55) couldn't find service c
[2002/11/27 19:07:01, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.31) couldn't find service c
[2002/11/27 19:07:31, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.32) couldn't find service c
[2002/11/27 19:07:34, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.31) couldn't find service c
[2002/11/27 19:08:04, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.32) couldn't find service c
[2002/11/27 19:41:14, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.55) couldn't find service c
[2002/11/27 19:41:47, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.55) couldn't find service c
[2002/11/27 19:46:21, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.27) couldn't find service c
[2002/11/27 19:46:52, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.27) couldn't find service c
[2002/11/27 19:49:18, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.31) couldn't find service c
[2002/11/27 19:49:50, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.31) couldn't find service c
[2002/11/27 19:51:50, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.32) couldn't find service c
[2002/11/27 19:52:22, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.32) couldn't find service c
[2002/11/27 20:27:32, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.27) couldn't find service c
[2002/11/27 20:28:04, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.27) couldn't find service c
[2002/11/27 20:34:44, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.32) couldn't find service c
[2002/11/27 20:34:47, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.31) couldn't find service c
[2002/11/27 20:35:20, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.32) couldn't find service c
[2002/11/27 20:35:21, 0] smbd/service.c:make_connection(248)
  alevrius_ (192.168.0.31) couldn't find service c


是不是指192.168.0.31 27 32 55這幾台windows有中毒,正在試圖找我的c寫入?

明月舞清風

  • 憂鬱的高中生
  • ***
  • 文章數: 173
    • 檢視個人資料
Got you..真的是病毒!...:o

是W32.Opaserv.Worm...:evil:

病毒相關資料
http://www.sarc.com/avcenter/venc/data/w32.opaserv.worm.html

也請各位有samba的人趕快去翻翻/var/log/samba,如果裡面有_alevrius.log的檔案存在,就是有那台機器有中了W32.Opaserv.Worm。在該log中會有該中毒機器的IP可查...