HanDs
管理员

[7月漏洞公开] 263通信某服务器JAVA-RMI反序列化命令执行导致再入大内网(影响数百主机安全) 



@@

详细说明:

JAVA-RMI反序列化命令执行直接反弹shell

http://211.150.65.47:40001

1.png



shell地址:

mask 区域
1.http://**.**.**/ens/cssroot.jsp



2.png



确实是263的

3.png



还有好多其他服务mysql、redis等等,继续深入还能搞几台内网主机,算了

4.png



6.png

漏洞证明:

同样,有nmap,数百台内网主机

7.png



code 区域
nmap 192.168.167.1-255

Starting Nmap 5.51 ( http://nmap.org ) at 2016-05-31 12:32 CST
Nmap scan report for 192.168.167.2
Host is up (0.00029s latency).
All 1000 scanned ports on 192.168.167.2 are closed

Nmap scan report for 192.168.167.3
Host is up (0.00031s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
111/tcp open rpcbind
873/tcp open rsync

Nmap scan report for 192.168.167.4
Host is up (0.00027s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator
5666/tcp open nrpe

Nmap scan report for 192.168.167.5
Host is up (0.017s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator
5666/tcp open nrpe

Nmap scan report for 192.168.167.6
Host is up (0.00049s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql
8009/tcp open ajp13
49152/tcp open unknown

Nmap scan report for 192.168.167.7
Host is up (0.00042s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
2049/tcp open nfs
3306/tcp open mysql
8009/tcp open ajp13
49152/tcp open unknown

Nmap scan report for 192.168.167.8
Host is up (0.00031s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator

Nmap scan report for 192.168.167.9
Host is up (0.00043s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
443/tcp open https
1443/tcp open ies-lm
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.10
Host is up (0.0017s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.11
Host is up (0.00026s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.12
Host is up (0.00044s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.13
Host is up (0.00028s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator

Nmap scan report for 192.168.167.14
Host is up (0.00079s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator

Nmap scan report for 192.168.167.15
Host is up (0.00024s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8080/tcp open http-proxy
8180/tcp open unknown

Nmap scan report for 192.168.167.16
Host is up (0.00027s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator
5666/tcp open nrpe

Nmap scan report for 192.168.167.18
Host is up (0.00028s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind

Nmap scan report for 192.168.167.20
Host is up (0.00026s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.21
Host is up (0.00022s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.22
Host is up (0.00027s latency).
All 1000 scanned ports on 192.168.167.22 are closed

Nmap scan report for 192.168.167.23
Host is up (0.00028s latency).
All 1000 scanned ports on 192.168.167.23 are closed

Nmap scan report for 192.168.167.25
Host is up (0.00019s latency).
Not shown: 990 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
3389/tcp open ms-term-serv
5666/tcp open nrpe
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown

Nmap scan report for 192.168.167.26
Host is up (0.00024s latency).
Not shown: 990 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
3389/tcp open ms-term-serv
5666/tcp open nrpe
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown

Nmap scan report for 192.168.167.27
Host is up (0.00036s latency).
Not shown: 993 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
1080/tcp open socks
1081/tcp open pvuniwien
1083/tcp open ansoft-lm-1
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.28
Host is up (0.00036s latency).
Not shown: 992 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
1080/tcp open socks
1081/tcp open pvuniwien
1083/tcp open ansoft-lm-1
8009/tcp open ajp13
8088/tcp open radan-http
8089/tcp open unknown

Nmap scan report for 192.168.167.30
Host is up (0.00063s latency).
Not shown: 992 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
903/tcp open iss-console-mgr
5988/tcp closed wbem-http
5989/tcp open wbem-https

Nmap scan report for 192.168.167.31
Host is up (0.00025s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.32
Host is up (0.00027s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for qynotice1 (192.168.167.33)
Host is up (0.00031s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql
8009/tcp open ajp13
49152/tcp open unknown

Nmap scan report for qynotice2 (192.168.167.34)
Host is up (0.00036s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql
8009/tcp open ajp13
49152/tcp open unknown

Nmap scan report for 192.168.167.36
Host is up (0.00065s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql
5666/tcp open nrpe

Nmap scan report for 192.168.167.37
Host is up (0.00040s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.38
Host is up (0.00043s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.39
Host is up (0.00031s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.40
Host is up (0.033s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.41
Host is up (0.00052s latency).
Not shown: 992 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
903/tcp open iss-console-mgr
5988/tcp closed wbem-http
5989/tcp open wbem-https

Nmap scan report for 192.168.167.42
Host is up (0.00053s latency).
Not shown: 992 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
903/tcp open iss-console-mgr
5988/tcp closed wbem-http
5989/tcp open wbem-https

Nmap scan report for 192.168.167.43
Host is up (0.0020s latency).
Not shown: 992 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
903/tcp open iss-console-mgr
5988/tcp closed wbem-http
5989/tcp open wbem-https

Nmap scan report for 192.168.167.44
Host is up (0.00021s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.45
Host is up (0.00023s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.46
Host is up (0.00019s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for bj-qynotice3 (192.168.167.47)
Host is up (0.00041s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
8009/tcp open ajp13

Nmap scan report for 192.168.167.48
Host is up (0.00036s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8080/tcp open http-proxy
8180/tcp open unknown

Nmap scan report for 192.168.167.49
Host is up (0.00019s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp open svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.50
Host is up (0.00024s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp closed svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.51
Host is up (0.00037s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe
9001/tcp open tor-orport
9002/tcp open dynamid

Nmap scan report for 192.168.167.52
Host is up (0.00043s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe
9001/tcp open tor-orport
9002/tcp open dynamid

Nmap scan report for 192.168.167.53
Host is up (0.00077s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe
9001/tcp open tor-orport
9002/tcp open dynamid

Nmap scan report for 192.168.167.54
Host is up (0.00042s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe
9001/tcp open tor-orport
9002/tcp open dynamid

Nmap scan report for 192.168.167.55
Host is up (0.00036s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe
9001/tcp open tor-orport
9002/tcp open dynamid

Nmap scan report for 192.168.167.56
Host is up (0.00037s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe
9001/tcp open tor-orport
9002/tcp open dynamid

Nmap scan report for 192.168.167.57
Host is up (0.00035s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.58
Host is up (0.00037s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.59
Host is up (0.00034s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp closed svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.60
Host is up (0.0054s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https

Nmap scan report for 192.168.167.61
Host is up (0.00046s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.62
Host is up (0.0032s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.63
Host is up (0.00034s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.64
Host is up (0.00042s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.65
Host is up (0.00033s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.66
Host is up (0.00035s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
3306/tcp open mysql
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.67
Host is up (0.00017s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp closed svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.68
Host is up (0.00033s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
110/tcp open pop3
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.69
Host is up (0.00035s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
111/tcp open rpcbind
765/tcp open webster
2049/tcp open nfs

Nmap scan report for 192.168.167.70
Host is up (0.00030s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.71
Host is up (0.00035s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.72
Host is up (0.00030s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
80/tcp open http
1521/tcp open oracle
3306/tcp open mysql
8009/tcp open ajp13

Nmap scan report for 192.168.167.73
Host is up (0.00031s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator
5666/tcp open nrpe

Nmap scan report for 192.168.167.78
Host is up (0.00030s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.79
Host is up (0.00030s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.80
Host is up (0.00031s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https

Nmap scan report for 192.168.167.81
Host is up (0.00031s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
25/tcp open smtp

Nmap scan report for 192.168.167.82
Host is up (0.00027s latency).
All 1000 scanned ports on 192.168.167.82 are closed

Nmap scan report for 192.168.167.84
Host is up (0.00025s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.85
Host is up (0.00027s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
443/tcp open https
787/tcp open qsc
8009/tcp open ajp13
8010/tcp open xmpp
8080/tcp open http-proxy
8081/tcp open blackice-icecap

Nmap scan report for 192.168.167.86
Host is up (0.00027s latency).
Not shown: 993 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8010/tcp open xmpp
8080/tcp open http-proxy
8081/tcp open blackice-icecap

Nmap scan report for 192.168.167.87
Host is up (0.00027s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.88
Host is up (0.00028s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.89
Host is up (0.00037s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh

Nmap scan report for 192.168.167.90
Host is up (0.00041s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
8080/tcp open http-proxy

Nmap scan report for 192.168.167.91
Host is up (0.00033s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
8080/tcp open http-proxy

Nmap scan report for 192.168.167.92
Host is up (0.00027s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
80/tcp open http

Nmap scan report for 192.168.167.93
Host is up (0.00038s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https

Nmap scan report for 192.168.167.94
Host is up (0.00029s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.95
Host is up (0.00034s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https

Nmap scan report for 192.168.167.96
Host is up (0.00038s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https

Nmap scan report for 192.168.167.97
Host is up (0.00027s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.100
Host is up (0.00028s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.101
Host is up (0.00029s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.102
Host is up (0.00028s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.103
Host is up (0.00028s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
443/tcp open https
20000/tcp open dnp

Nmap scan report for 192.168.167.104
Host is up (0.00028s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.105
Host is up (0.00025s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.106
Host is up (0.00025s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
1080/tcp open socks
1081/tcp open pvuniwien
1083/tcp open ansoft-lm-1

Nmap scan report for 192.168.167.107
Host is up (0.00018s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
1080/tcp open socks
1081/tcp open pvuniwien
1083/tcp open ansoft-lm-1

Nmap scan report for 192.168.167.108
Host is up (0.00020s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
1080/tcp open socks
1081/tcp open pvuniwien
1083/tcp open ansoft-lm-1

Nmap scan report for 192.168.167.109
Host is up (0.00036s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
1080/tcp open socks
1081/tcp open pvuniwien
1083/tcp open ansoft-lm-1

Nmap scan report for 192.168.167.110
Host is up (0.00035s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.111
Host is up (0.00029s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.112
Host is up (0.00032s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.113
Host is up (0.00033s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.114
Host is up (0.00032s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.115
Host is up (0.00029s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.116
Host is up (0.00028s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.117
Host is up (0.00032s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.118
Host is up (0.00026s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.119
Host is up (0.00031s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.120
Host is up (0.00032s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.121
Host is up (0.00030s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
3306/tcp open mysql
5666/tcp open nrpe
8001/tcp open vcom-tunnel
8002/tcp open teradataordbms

Nmap scan report for 192.168.167.122
Host is up (0.00031s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
22/tcp open ssh
873/tcp open rsync
3306/tcp open mysql
5666/tcp open nrpe
8001/tcp open vcom-tunnel
8002/tcp open teradataordbms

Nmap scan report for 192.168.167.123
Host is up (0.00034s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator
5666/tcp open nrpe

Nmap scan report for 192.168.167.124
Host is up (0.00029s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator
5666/tcp open nrpe

Nmap scan report for 192.168.167.125
Host is up (0.00029s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
20000/tcp open dnp

Nmap scan report for 192.168.167.126
Host is up (0.00028s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
20000/tcp open dnp

Nmap scan report for 192.168.167.128
Host is up (0.00028s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.129
Host is up (0.00031s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.130
Host is up (0.00033s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.131
Host is up (0.00023s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.136
Host is up (0.00033s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
5555/tcp open freeciv
5666/tcp open nrpe

Nmap scan report for 192.168.167.139
Host is up (0.00030s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.140
Host is up (0.00032s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.143
Host is up (0.00031s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.144
Host is up (0.00032s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.146
Host is up (0.00034s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql
8080/tcp open http-proxy
8089/tcp open unknown

Nmap scan report for 192.168.167.147
Host is up (0.00032s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
873/tcp open rsync
3306/tcp open mysql
8080/tcp open http-proxy
8089/tcp open unknown

Nmap scan report for 192.168.167.148
Host is up (0.00028s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13

Nmap scan report for 192.168.167.149
Host is up (0.00032s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
514/tcp open shell
873/tcp open rsync

Nmap scan report for 192.168.167.150
Host is up (0.00033s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.151
Host is up (0.00036s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.153
Host is up (0.00027s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.155
Host is up (0.00042s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.157
Host is up (0.00026s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.158
Host is up (0.00030s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.162
Host is up (0.00033s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
1521/tcp open oracle

Nmap scan report for 192.168.167.164
Host is up (0.00031s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.165
Host is up (0.00024s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp closed svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.166
Host is up (0.00029s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp closed svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.167
Host is up (0.00051s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp closed svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.168
Host is up (0.00020s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
427/tcp closed svrloc
443/tcp open https
902/tcp open iss-realsecure
5988/tcp closed wbem-http
5989/tcp open wbem-https
8000/tcp open http-alt
8100/tcp open xprint-server
8300/tcp closed tmi

Nmap scan report for 192.168.167.169
Host is up (0.00029s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
80/tcp open http
3306/tcp open mysql

Nmap scan report for 192.168.167.170
Host is up (0.00034s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
80/tcp open http
873/tcp open rsync
3306/tcp open mysql

Nmap scan report for 192.168.167.171
Host is up (0.00034s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.172
Host is up (0.00033s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.174
Host is up (0.00030s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https

Nmap scan report for 192.168.167.176
Host is up (0.00033s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
8009/tcp open ajp13
8080/tcp open http-proxy
8180/tcp open unknown

Nmap scan report for 192.168.167.180
Host is up (0.00027s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
3306/tcp open mysql
5666/tcp open nrpe

Nmap scan report for 192.168.167.181
Host is up (0.00021s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
873/tcp open rsync
3306/tcp open mysql
5666/tcp open nrpe

Nmap scan report for 192.168.167.182
Host is up (0.00033s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.184
Host is up (0.00039s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
5666/tcp open nrpe

Nmap scan report for 192.168.167.185
Host is up (0.00041s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.186
Host is up (0.00043s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.187
Host is up (0.00047s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
3306/tcp open mysql
8009/tcp open ajp13
8080/tcp open http-proxy

Nmap scan report for 192.168.167.188
Host is up (0.00031s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
3306/tcp open mysql

Nmap scan report for 192.168.167.189
Host is up (0.00034s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
8080/tcp open http-proxy

Nmap scan report for 192.168.167.190
Host is up (0.00029s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.191
Host is up (0.00051s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http

Nmap scan report for 192.168.167.192
Host is up (0.00028s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.194
Host is up (0.00051s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http

Nmap scan report for 192.168.167.197
Host is up (0.00034s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
80/tcp open http
3306/tcp open mysql

Nmap scan report for 192.168.167.198
Host is up (0.00034s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8088/tcp open radan-http
20000/tcp open dnp

Nmap scan report for 192.168.167.199
Host is up (0.00034s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
8088/tcp open radan-http
20000/tcp open dnp

Nmap scan report for 192.168.167.200
Host is up (0.00030s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
20000/tcp open dnp

Nmap scan report for 192.168.167.202
Host is up (0.00028s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
3306/tcp open mysql
8009/tcp open ajp13
49152/tcp open unknown

Nmap scan report for 192.168.167.203
Host is up (0.00030s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
3306/tcp open mysql
8009/tcp open ajp13
49152/tcp open unknown

Nmap scan report for 192.168.167.205
Host is up (0.00092s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps

Nmap scan report for 192.168.167.210
Host is up (0.00040s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.211
Host is up (0.0018s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.212
Host is up (0.00048s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.213
Host is up (0.00086s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.214
Host is up (0.00037s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http

Nmap scan report for 192.168.167.215
Host is up (0.00033s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.216
Host is up (0.00029s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.217
Host is up (0.00028s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.218
Host is up (0.0072s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.219
Host is up (0.0019s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.220
Host is up (0.00040s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.221
Host is up (0.0013s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.222
Host is up (0.00042s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.223
Host is up (0.00032s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.224
Host is up (0.00029s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe
10025/tcp open unknown

Nmap scan report for 192.168.167.225
Host is up (0.00029s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.226
Host is up (0.00034s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh

Nmap scan report for 192.168.167.227
Host is up (0.00033s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe
10025/tcp open unknown

Nmap scan report for 192.168.167.228
Host is up (0.00030s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.229
Host is up (0.00028s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.230
Host is up (0.030s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.231
Host is up (0.039s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.232
Host is up (0.0040s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.233
Host is up (0.00036s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.234
Host is up (0.00059s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.235
Host is up (0.00031s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
2005/tcp open deslogin
2006/tcp open invokator
5666/tcp open nrpe

Nmap scan report for 192.168.167.236
Host is up (0.0050s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.237
Host is up (0.00032s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.238
Host is up (0.00075s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
465/tcp open smtps
5666/tcp open nrpe

Nmap scan report for 192.168.167.242
Host is up (0.00018s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49157/tcp open unknown

Nmap scan report for 192.168.167.244
Host is up (0.0010s latency).
Not shown: 994 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8010/tcp open xmpp
8080/tcp open http-proxy
8081/tcp open blackice-icecap

Nmap scan report for 192.168.167.245
Host is up (0.0014s latency).
Not shown: 993 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
8009/tcp open ajp13
8010/tcp open xmpp
8080/tcp open http-proxy
8081/tcp open blackice-icecap

Nmap scan report for 192.168.167.252
Host is up (0.018s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
23/tcp open telnet

Nmap scan report for 192.168.167.253
Host is up (0.015s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
23/tcp open telnet

Nmap scan report for 192.168.167.254
Host is up (0.052s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
23/tcp open telnet

Nmap done: 255 IP addresses (199 hosts up) scanned in 190.24 seconds



全部装有redis的服务,不玩了

修复方案:

发现即提交


学习中请遵守法律法规,本网站内容均来自于互联网,本网站不负担法律责任
263 通信某服务器 JAVA-RMI 反序列化命令执行导致再入大内网 ( 影响数百主机安全 )
#1楼
发帖时间:2016-7-15   |   查看数:0   |   回复数:0
游客组
快速回复