abclinuxu.cz AbcLinuxu.cz itbiz.cz ITBiz.cz HDmag.cz HDmag.cz abcprace.cz AbcPráce.cz
AbcLinuxu hledá autory!
Inzerujte na AbcPráce.cz od 950 Kč
Rozšířené hledání
×
eParkomat, startup z ČR, postoupil mezi finalisty evropského akcelerátoru ChallengeUp!
Robot na pivo mu otevřel dveře k opravdovému byznysu
Internet věcí: Propojený svět? Už se to blíží...
včera 22:44 | Komunita

Joinup informuje, že Mnichov používá open source groupware Kolab. V srpnu byl dokončen dvouletý přechod na toto řešení. V provozu je asi 60 000 poštovních schránek. Nejenom Kolabu se věnoval Georg Greve ve své přednášce Open Source: the future for the European institutions (SlideShare) na konferenci DIGITEC 2016, jež proběhla v úterý 29. listopadu v Bruselu. Videozáznam přednášek z hlavního sálu je ke zhlédnutí na Livestreamu.

Ladislav Hagara | Komentářů: 1
včera 15:30 | Zajímavý projekt

Společnost Jolla oznámila v příspěvku Case study: Sailfish Watch na svém blogu, že naportovala Sailfish OS na chytré hodinky. Využila a inspirovala se otevřeným operačním systémem pro chytré hodinky AsteroidOS. Použita je knihovna libhybris. Ukázka ovládání hodinek na YouTube.

Ladislav Hagara | Komentářů: 5
včera 14:15 | Nová verze

Byla vydána verze 7.1.0 skriptovacího jazyka PHP používaného zejména k vývoji dynamických webových stránek. Jedná se o první stabilní verzi nejnovější větvě 7.1. Přehled novinek v dokumentaci. Podrobnosti v ChangeLogu. K dispozici je také příručka pro přechod z PHP 7.0.x na PHP 7.1.x.

Ladislav Hagara | Komentářů: 0
včera 12:55 | Nová verze

Google Chrome 55 byl prohlášen za stabilní. Nejnovější stabilní verze 55.0.2883.75 tohoto webového prohlížeče přináší řadu oprav a vylepšení (YouTube). Opraveno bylo také 36 bezpečnostních chyb. Mariusz Mlynski si například vydělal 22 500 dolarů za 3 nahlášené chyby (Universal XSS in Blink).

Ladislav Hagara | Komentářů: 4
včera 11:55 | Pozvánky

Máte rádi svobodný software a hardware nebo se o nich chcete něco dozvědět? Přijďte na 135. sraz spolku OpenAlt, který se bude konat ve čtvrtek 8. prosince od 18:00 v Radegastovně Perón (Stroupežnického 20, Praha 5). Sraz bude tentokrát tématický. Bude retro! K vidění budou přístroje jako Psion 5mx nebo Palm Z22. Ze svobodného hardwaru pak Openmoko nebo čtečka WikiReader. Přijďte se i vy pochlubit svými legendami, nebo alespoň na pivo. Moderní hardware má vstup samozřejmě také povolen.

xkucf03 | Komentářů: 0
včera 00:10 | Nová verze

Byla vydána verze 3.2 svobodného systému pro detekci a prevenci průniků a monitorování bezpečnosti počítačových sítí Suricata. Z novinek lze zmínit například podporu protokolů DNP3 a CIP/ENIP, vylepšenou podporu TLS a samozřejmě také aktualizovanou dokumentaci.

Ladislav Hagara | Komentářů: 0
1.12. 21:00 | Nová verze

Byla vydána beta verze Linux Mintu 18.1 s kódovým jménem Serena. Na blogu Linux Mintu jsou hned dvě oznámení. První o vydání Linux Mintu s prostředím MATE a druhé o vydání Linux Mintu s prostředím Cinnamon. Stejným způsobem jsou rozděleny také poznámky k vydání (MATE, Cinnamon) a přehled novinek s náhledy (MATE, Cinnamon). Linux Mint 18.1 bude podporován až do roku 2021.

Ladislav Hagara | Komentářů: 0
1.12. 16:42 | Nová verze

Byl vydán Devuan Jessie 1.0 Beta 2. Jedná se o druhou beta verzi forku Debianu bez systemd představeného v listopadu 2014 (zprávička). První beta verze byla vydána v dubnu letošního roku (zprávička). Jedna z posledních přednášek věnovaných Devuanu proběhla v listopadu na konferenci FSCONS 2016 (YouTube, pdf).

Ladislav Hagara | Komentářů: 0
1.12. 15:16 | Komunita

Na GOG.com začal zimní výprodej. Řada zlevněných her běží oficiálně také na Linuxu. Hru Neverwinter Nights Diamond lze dva dny získat zdarma. Hra dle stránek GOG.com na Linuxu neběží. Pomocí návodu ji lze ale rozběhnout také na Linuxu [Gaming On Linux].

Ladislav Hagara | Komentářů: 1
1.12. 13:14 | Bezpečnostní upozornění

Byla vydána verze 2.7.1 živé linuxové distribuce Tails (The Amnesic Incognito Live System), jež klade důraz na ochranu soukromí uživatelů a anonymitu. Řešeno je několik bezpečnostních problémů. Aktualizován byl především Tor Browser na verzi 6.0.7. Tor Browser je postaven na Firefoxu ESR (Extended Support Release) a právě ve Firefoxu byla nalezena a opravena vážná bezpečnostní chyba MFSA 2016-92 (CVE-2016-9079, Firefox SVG Animation

… více »
Ladislav Hagara | Komentářů: 0
Kolik máte dat ve svém domovském adresáři na svém primárním osobním počítači?
 (32%)
 (24%)
 (29%)
 (7%)
 (5%)
 (3%)
Celkem 759 hlasů
 Komentářů: 50, poslední 29.11. 15:50
Rozcestník
Reklama

Dotaz: Nekdo hacknul muj pocitac a preposila spam.

6.3.2009 17:23 vsivak
Nekdo hacknul muj pocitac a preposila spam.
Přečteno: 984×

Ahoj

Nekdo se naboural do meho domaciho pocitace a posila z nej spam pres postfix. Jak zjistim ktery program toto dela?

Nize je vypis netstat -l -p -e -v


tcp        0      0 *:6112                  *:*                     LISTEN      root       6221169    18224/rinetd
tcp        0      0 *:5060                  *:*                     LISTEN      root       6221170    18224/rinetd
tcp        0      0 localhost:10025         *:*                     LISTEN      root       6218201    17999/master
tcp        0      0 localhost:mysql         *:*                     LISTEN      mysql      9029       6024/mysqld
tcp        0      0 *:netbios-ssn           *:*                     LISTEN      root       11318      7208/smbd
tcp        0      0 *:pop3                  *:*                     LISTEN      root       9576       4299/pop3-login
tcp        0      0 *:imap                  *:*                     LISTEN      root       9575       6327/dovecot
tcp        0      0 *:http                  *:*                     LISTEN      root       6227475    18738/lighttpd
tcp        0      0 *:49252                 *:*                     LISTEN      lighttpd   3602750660 -
tcp        0      0 *:20025                 *:*                     LISTEN      root       6218211    17999/master
tcp        0      0 *:smtp                  *:*                     LISTEN      root       6218205    17999/master
tcp        0      0 *:26                    *:*                     LISTEN      root       6218208    17999/master
tcp        0      0 *:microsoft-ds          *:*                     LISTEN      root       11317      7208/smbd
tcp        0      0 *:hosts2-ns             *:*                     LISTEN      root       6228184    18816/apache2
tcp        0      0 *:ftp                   *:*                     LISTEN      root       10767      6986/proftpd: (acce
tcp        0      0 *:ssh                   *:*                     LISTEN      root       9143       6113/sshd
tcp        0      0 *:https                 *:*                     LISTEN      root       6228179    18816/apache2
udp        0      0 gwfm6-2-151.:netbios-ns *:*                                 root       1230362    7218/nmbd
udp        0      0 private:netbios-ns      *:*                                 root       11345      7218/nmbd
udp        0      0 *:netbios-ns            *:*                                 root       11342      7218/nmbd
udp        0      0 gwfm6-2-151:netbios-dgm *:*                                 root       1230363    7218/nmbd
udp        0      0 private:netbios-dgm     *:*                                 root       11346      7218/nmbd
udp        0      0 *:netbios-dgm           *:*                                 root       11343      7218/nmbd
udp        0      0 *:bootps                *:*                                 root       9413       6256/dhcpd
raw        0      0 *:icmp                  *:*                     7           root       9409       6256/dhcpd
Active UNIX domain sockets (only servers)
Proto RefCnt Flags       Type       State         I-Node PID/Program name    Path
unix  2      [ ACC ]     STREAM     LISTENING     6218217 17999/master        public/cleanup
unix  2      [ ACC ]     STREAM     LISTENING     6218248 17999/master        public/flush
unix  2      [ ACC ]     STREAM     LISTENING     9604   6327/dovecot        /var/run/dovecot//dict-server
unix  2      [ ACC ]     STREAM     LISTENING     6218264 17999/master        public/showq
unix  2      [ ACC ]     STREAM     LISTENING     9606   6327/dovecot        /var/run/dovecot//login/default
unix  2      [ ACC ]     STREAM     LISTENING     9611   6327/dovecot        /var/run/dovecot//auth-worker.6331
unix  2      [ ACC ]     STREAM     LISTENING     9616   6327/dovecot        /var/run/dovecot//auth-worker.6332
unix  2      [ ACC ]     STREAM     LISTENING     11090  7066/perl           /var/run/psad/auto_ipt.sock
unix  2      [ ACC ]     STREAM     LISTENING     10660  6986/proftpd: (acce /var/run/proftpd/proftpd.sock
unix  2      [ ACC ]     STREAM     LISTENING     10669  6986/proftpd: (acce /var/run/proftpd/proftpd.sock
unix  2      [ ACC ]     STREAM     LISTENING     6227477 18739/php-cgi       /var/run/lighttpd/lighttpd-fastcgi-php-18736.socket-0
unix  2      [ ACC ]     STREAM     LISTENING     6227980 18746/php-cgi       /var/run/lighttpd/lighttpd-fastcgi-php-18736.socket-1
unix  2      [ ACC ]     STREAM     LISTENING     6228003 18752/php-cgi       /var/run/lighttpd/lighttpd-fastcgi-php-18736.socket-2
unix  2      [ ACC ]     STREAM     LISTENING     6228009 18754/php-cgi       /var/run/lighttpd/lighttpd-fastcgi-php-18736.socket-3
unix  2      [ ACC ]     STREAM     LISTENING     6218196 17999/master        private/smtp-amavis
unix  2      [ ACC ]     STREAM     LISTENING     6218224 17999/master        private/tlsmgr
unix  2      [ ACC ]     STREAM     LISTENING     6218228 17999/master        private/rewrite
unix  2      [ ACC ]     STREAM     LISTENING     6218232 17999/master        private/bounce
unix  2      [ ACC ]     STREAM     LISTENING     6218236 17999/master        private/defer
unix  2      [ ACC ]     STREAM     LISTENING     6218240 17999/master        private/trace
unix  2      [ ACC ]     STREAM     LISTENING     6218244 17999/master        private/verify
unix  2      [ ACC ]     STREAM     LISTENING     6218252 17999/master        private/proxymap
unix  2      [ ACC ]     STREAM     LISTENING     6218256 17999/master        private/smtp
unix  2      [ ACC ]     STREAM     LISTENING     8676   5835/syslog-ng      /dev/log
unix  2      [ ACC ]     STREAM     LISTENING     6218260 17999/master        private/relay
unix  2      [ ACC ]     STREAM     LISTENING     6218268 17999/master        private/error
unix  2      [ ACC ]     STREAM     LISTENING     6218272 17999/master        private/retry
unix  2      [ ACC ]     STREAM     LISTENING     6218276 17999/master        private/discard
unix  2      [ ACC ]     STREAM     LISTENING     6218280 17999/master        private/local
unix  2      [ ACC ]     STREAM     LISTENING     6218284 17999/master        private/virtual
unix  2      [ ACC ]     STREAM     LISTENING     6218288 17999/master        private/lmtp
unix  2      [ ACC ]     STREAM     LISTENING     6218292 17999/master        private/anvil
unix  2      [ ACC ]     STREAM     LISTENING     6218296 17999/master        private/scache
unix  2      [ ACC ]     STREAM     LISTENING     9030   6024/mysqld         /var/run/mysqld/mysqld.sock
netstat: no support for `AF IPX' on this system.
netstat: no support for `AF AX25' on this system.
netstat: no support for `AF X25' on this system.
netstat: no support for `AF NETROM' on this system.

Program ktery nasloucha na portu 49252 neznam - co je to zac. Jak zjistim kde je ulozen.

Zde je vypis netstat -p -e -v

 

 

Active Internet connections (w/o servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       User       Inode      PID/Program name   
tcp        0      1 gwfm6-2-151.802.c:52597 searchportal.infor:smtp SYN_SENT    postfix    6240176    19486/smtp          
tcp        0      1 gwfm6-2-151.802.c:51326 mx00.perfora.net:smtp   SYN_SENT    postfix    6240112    19533/smtp          
tcp        0      1 gwfm6-2-151.802.c:43017 mail4.statcan.ca:smtp   SYN_SENT    postfix    6240101    19528/smtp          
tcp        0      1 gwfm6-2-151.802.c:49192 snoopy.usask.ca:smtp    SYN_SENT    postfix    6240181    19510/smtp          
tcp        0      1 gwfm6-2-151.802.c:50076 164.64.74.101:smtp      SYN_SENT    postfix    6240236    19475/smtp          
tcp        0      1 gwfm6-2-151.802.c:38915 mail5.internationa:smtp SYN_SENT    postfix    6239927    19489/smtp          
tcp        0      1 gwfm6-2-151.802.c:39247 mx2.lacapitale.com:smtp SYN_SENT    postfix    6240109    19529/smtp          
tcp        0      1 gwfm6-2-151.802.c:40383 www.hrdc-drhc.gc.c:smtp SYN_SENT    postfix    6240012    19477/smtp          
tcp        0      1 gwfm6-2-151.802.c:32894 216.188.26.237:smtp     SYN_SENT    postfix    6240225    19540/smtp          
tcp        0      0 gwfm6-2-151.802.c:48047 gwfm6-2-151.802.cz:http TIME_WAIT   root       0          -                   
tcp        0      0 gwfm6-2-151.802.cz:imap g9a.ronin.jyu.fi:50226  ESTABLISHED postmaster 6172578    14369/imap          
tcp        0      0 gwfm6-2-151.802.cz:imap g9a.ronin.jyu.fi:50221  ESTABLISHED postmaster 6172558    14367/imap          
tcp        0      0 gwfm6-2-151.802.c:41568 fk-in-f147.google.:http TIME_WAIT   root       0          -                   
tcp        0      1 gwfm6-2-151.802.c:49472 mail2.nscorp.com:smtp   SYN_SENT    postfix    6239914    19471/smtp          
tcp        0      1 gwfm6-2-151.802.c:44222 mail5.statcan.ca:smtp   SYN_SENT    postfix    6240102    19527/smtp          
tcp        0      1 gwfm6-2-151.802.c:45405 mx1.securelinks.ne:smtp SYN_SENT    postfix    6240226    19497/smtp          
tcp        0      1 gwfm6-2-151.802.c:52231 mail4.internationa:smtp SYN_SENT    postfix    6240008    19536/smtp          
tcp        0      0 gwfm6-2-151.802.cz:http 200.87.216.242:50031    TIME_WAIT   root       0          -                   
tcp        0      1 gwfm6-2-151.802.c:48710 mail1.backbonesyst:smtp SYN_SENT    postfix    6240198    19490/smtp          
tcp        0      1 gwfm6-2-151.802.c:40044 smtp1.tva.ca:smtp       SYN_SENT    postfix    6240073    19520/smtp          
tcp        0      1 gwfm6-2-151.802.c:39819 ip-64-15-144-82.st:smtp SYN_SENT    postfix    6240237    19543/smtp          
tcp        0      1 gwfm6-2-151.802.c:37913 g25-204.citenet.ne:smtp SYN_SENT    postfix    6240034    19476/smtp          
tcp        0      1 gwfm6-2-151.802.c:43082 calsl15.terago.ca:smtp  SYN_SENT    postfix    6240132    19479/smtp          
tcp        0      1 gwfm6-2-151.802.c:55618 mdnh-parking-adult:smtp SYN_SENT    postfix    6240110    19480/smtp          
tcp        0      1 gwfm6-2-151.802.c:38897 agrpazsmtp8.agr.gc:smtp SYN_SENT    postfix    6239977    19492/smtp          
tcp        0      1 gwfm6-2-151.802.c:58397 mail2.csdraveurs.q:smtp SYN_SENT    postfix    6240074    19521/smtp          
tcp        0    152 gwfm6-2-151.802.cz:http 229.Red-81-34-207.:3921 ESTABLISHED lighttpd   6240444    -                   
tcp        0      1 gwfm6-2-151.802.c:48783 mxer2.psc-cfp.gc.c:smtp SYN_SENT    postfix    6239967    19487/smtp          
tcp        0      1 gwfm6-2-151.802.c:58397 mail2.csdraveurs.q:smtp SYN_SENT    postfix    6240074    19521/smtp          
tcp        0      0 gwfm6-2-151.802.cz:http 229.Red-81-34-207.:3931 ESTABLISHED lighttpd   6240463    -                   
tcp        0    982 gwfm6-2-151.802.cz:http 229.Red-81-34-207.:3921 ESTABLISHED lighttpd   6240444    -                   
tcp        0      1 gwfm6-2-151.802.c:48783 mxer2.psc-cfp.gc.c:smtp SYN_SENT    postfix    6239967    19487/smtp          
tcp        0      1 gwfm6-2-151.802.c:43907 frankthemoverworld:smtp SYN_SENT    postfix    6240233    19485/smtp          
tcp        0      1 gwfm6-2-151.802.c:53037 mx-1.loosefoot.com:smtp SYN_SENT    postfix    6240199    19509/smtp          
tcp        0      1 gwfm6-2-151.802.c:36551 fleet.cs.ualberta.:smtp SYN_SENT    postfix    6240172    19504/smtp          
tcp        0      0 gwfm6-2-151.802.c:60899 213.195.200.43:http     TIME_WAIT   root       0          -                   
tcp        0      1 gwfm6-2-151.802.c:55138 mx01.ca.mci.com:smtp    SYN_SENT    postfix    6239913    19470/smtp          
tcp        0      1 gwfm6-2-151.802.c:45995 mx15.comingsoon.do:smtp SYN_SENT    postfix    6240140    19483/smtp          
tcp        0      1 gwfm6-2-151.802.c:53038 mx-1.loosefoot.com:smtp SYN_SENT    postfix    6240200    19516/smtp          
tcp        0      0 gwfm6-2-15:microsoft-ds private:60141           ESTABLISHED root       6072007    6793/smbd           
tcp        0      1 gwfm6-2-151.802.c:49229 mail.irb-cisr.gc.c:smtp SYN_SENT    postfix    6240111    19499/smtp          
tcp        0      1 gwfm6-2-151.802.c:38923 mail5.internationa:smtp SYN_SENT    postfix    6240032    19542/smtp          
tcp        0      1 gwfm6-2-151.802.c:35680 141.39.129.5:smtp       SYN_SENT    postfix    6240075    19494/smtp          
tcp        0      1 gwfm6-2-151.802.c:35260 gamma.hhsc.ca:smtp      SYN_SENT    postfix    6239988    19496/smtp          
tcp        0      0 gwfm6-2-151.802.cz:http 229.Red-81-34-207.:3937 ESTABLISHED lighttpd   6240469    -                   
tcp        0      1 gwfm6-2-151.802.c:35701 ip-209-172-48-87.s:smtp SYN_SENT    postfix    6240116    19546/smtp          
tcp        0      1 gwfm6-2-151.802.c:36277 mxin.vub.ac.be:smtp     SYN_SENT    postfix    6239917    19474/smtp          
tcp        0      1 gwfm6-2-151.802.c:56219 his-gate.rrz.uni-h:smtp SYN_SENT    postfix    6240013    19515/smtp          
tcp        0      1 gwfm6-2-151.802.c:58047 jersey.ifremer.fr:smtp  SYN_SENT    postfix    6239925    19512/smtp          
tcp        0      1 gwfm6-2-151.802.c:52227 mail4.internationa:smtp SYN_SENT    postfix    6239928    19495/smtp          
tcp        0  35040 gwfm6-2-151.802.cz:http 117.98.149.227:1579     ESTABLISHED lighttpd   6235512    18738/lighttpd      
tcp        0      0 gwfm6-2-151.802.cz:http 229.Red-81-34-207.:3930 FIN_WAIT2   root       0          -                   
tcp        0      1 gwfm6-2-151.802.c:39062 mx.conseildesarts.:smtp SYN_SENT    postfix    6240215    19548/smtp          
tcp        0      1 gwfm6-2-151.802.c:60119 mx01.perfora.net:smtp   SYN_SENT    postfix    6240136    19547/smtp          
tcp        0      0 localhost:45774         localhost:mysql         ESTABLISHED lighttpd   6229892    18755/php-cgi       
tcp        0      0 gwfm6-2-151.802.cz:http 229.Red-81-34-207.:3939 FIN_WAIT2   root       0          -                   
tcp        0      1 gwfm6-2-151.802.c:49128 www161.sedoparking:smtp SYN_SENT    postfix    6240137    19534/smtp          
tcp        0      1 gwfm6-2-151.802.c:35676 ip-209-172-48-87.s:smtp SYN_SENT    postfix    6239916    19472/smtp          
tcp        0      1 gwfm6-2-151.802.c:39063 mx.conseildesarts.:smtp SYN_SENT    postfix    6240216    19551/smtp          
tcp        0      1 gwfm6-2-151.802.c:39061 mx.conseildesarts.:smtp SYN_SENT    postfix    6240214    19553/smtp          
tcp        0      1 gwfm6-2-151.802.c:60093 mx01.perfora.net:smtp   SYN_SENT    postfix    6239919    19482/smtp          
tcp        0      0 localhost:mysql         localhost:45774         ESTABLISHED mysql      6229893    6024/mysqld         
tcp        0      1 gwfm6-2-151.802.c:35680 ip-209-172-48-87.s:smtp SYN_SENT    postfix    6239926    19488/smtp          
tcp        0      1 gwfm6-2-151.802.c:51320 mx00.perfora.net:smtp   SYN_SENT    postfix    6240097    19538/smtp          
tcp        0      0 gwfm6-2-151.802.cz:http 229.Red-81-34-207.:3925 ESTABLISHED lighttpd   6240456    -                   
tcp        0      1 gwfm6-2-151.802.c:38999 imta.westchester.p:smtp SYN_SENT    postfix    6240124    19554/smtp          
tcp        0      0 localhost:34805         localhost:http          TIME_WAIT   root       0          -                   
tcp        0      0 gwfm6-2-151.802.cz:ssh  g9a.ronin.jyu.fi:49507  ESTABLISHED root       6159906    12756/sshd: root@no 
tcp        0      0 gwfm6-2-151.802.cz:ssh  g9a.ronin.jyu.fi:49510  ESTABLISHED root       6160008    12772/sshd: root@no 
tcp        0      0 gwfm6-2-151.802.cz:ssh  g9a.ronin.jyu.fi:49486  ESTABLISHED root       6159494    12697/0             
Active UNIX domain sockets (w/o servers)
Proto RefCnt Flags       Type       State         I-Node PID/Program name    Path
unix  2      [ ]         DGRAM                    92     984/udevd           @/org/kernel/udev/udevd
unix  3      [ ]         STREAM     CONNECTED     6240095 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6240087 19608/bounce        
unix  3      [ ]         STREAM     CONNECTED     6240038 19543/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6240028 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6240027 19494/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6240018 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6240026 19534/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6240010 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6240017 19485/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6240002 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6240009 19497/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6239996 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6240001 19490/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6239993 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6239995 19510/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6239986 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6239992 19504/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6239983 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6239970 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239969 19607/bounce        
unix  3      [ ]         STREAM     CONNECTED     6239959 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239958 19606/bounce        
unix  3      [ ]         STREAM     CONNECTED     6239982 19515/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6239952 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6239979 19486/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6239949 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6239936 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239934 19605/bounce        
unix  3      [ ]         STREAM     CONNECTED     6239951 19479/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6239923 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6239889 6024/mysqld         /var/run/mysqld/mysqld.sock
unix  3      [ ]         STREAM     CONNECTED     6239888 19603/virtual       
unix  3      [ ]         STREAM     CONNECTED     6239881 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239880 19603/virtual       
unix  3      [ ]         STREAM     CONNECTED     6239873 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239872 19602/local         
unix  3      [ ]         STREAM     CONNECTED     6239867 6024/mysqld         /var/run/mysqld/mysqld.sock
unix  3      [ ]         STREAM     CONNECTED     6239866 19600/virtual       
unix  3      [ ]         STREAM     CONNECTED     6239859 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239858 19600/virtual       
unix  3      [ ]         STREAM     CONNECTED     6239849 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239848 19599/local         
unix  3      [ ]         STREAM     CONNECTED     6239833 6024/mysqld         /var/run/mysqld/mysqld.sock
unix  3      [ ]         STREAM     CONNECTED     6239832 19594/cleanup       
unix  3      [ ]         STREAM     CONNECTED     6239807 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239801 19594/cleanup       
unix  3      [ ]         STREAM     CONNECTED     6239556 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239555 19575/anvil         
unix  3      [ ]         STREAM     CONNECTED     6239562 19575/anvil         private/anvil
unix  3      [ ]         STREAM     CONNECTED     6239553 19573/smtpd         
unix  3      [ ]         STREAM     CONNECTED     6239539 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6239532 19573/smtpd         
unix  3      [ ]         STREAM     CONNECTED     6239948 19475/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6237327 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6239922 19480/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6237319 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6237298 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237297 19570/bounce        
unix  3      [ ]         STREAM     CONNECTED     6237203 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237201 19569/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237186 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237185 19568/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237171 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237170 19567/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237151 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237150 19566/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237138 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237137 19565/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237122 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237121 19564/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237111 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237110 19563/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237096 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237095 19562/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237080 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237079 19561/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237066 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237065 19560/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237052 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237051 19559/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237031 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237030 19558/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237017 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237016 19557/smtp          
unix  3      [ ]         STREAM     CONNECTED     6237006 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6237005 19556/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236995 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236994 19555/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236982 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236981 19554/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236971 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236970 19553/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236989 19554/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236967 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236960 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236959 19552/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236977 19553/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236956 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236949 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236948 19551/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236932 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236931 19550/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236955 19551/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236928 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236920 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236919 19549/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236907 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236906 19548/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236892 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236891 19547/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236915 19548/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236888 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236881 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236880 19546/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236902 19547/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236877 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236870 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236868 19545/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236887 19546/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236864 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236857 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236856 19544/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236841 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236840 19543/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236827 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236826 19542/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236813 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236812 19541/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236833 19542/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236806 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236799 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236798 19540/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236787 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236786 19539/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236805 19540/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236783 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236775 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236774 19538/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236764 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236763 19537/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236782 19538/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236756 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236748 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236747 19536/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236737 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236736 19535/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236755 19536/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236732 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236725 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236724 19534/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236714 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236713 19533/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236702 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236701 19532/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236720 19533/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236698 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236691 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236690 19531/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236678 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236676 19530/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236665 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236664 19529/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236651 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236650 19528/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236671 19529/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236645 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236637 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236636 19527/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236659 19528/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236630 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236623 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236622 19526/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236644 19527/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236616 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236609 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236608 19525/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236593 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236592 19524/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236580 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236579 19523/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236569 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236568 19522/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236550 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236549 19521/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236536 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236535 19520/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236563 19521/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236529 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236522 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236521 19519/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236542 19520/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236516 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236508 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236507 19518/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236493 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236491 19517/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236481 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236480 19516/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236469 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236468 19515/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236487 19516/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236464 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236457 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236456 19514/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236445 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236444 19513/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236434 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236433 19512/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236423 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236422 19511/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236440 19512/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236418 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236411 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236410 19510/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236400 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236399 19509/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236388 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236387 19508/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236406 19509/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236384 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236377 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236376 19507/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236366 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236365 19506/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236355 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236354 19505/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236343 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236342 19504/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236330 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236329 19503/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236319 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236318 19502/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236308 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236307 19501/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236294 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236293 19500/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236283 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236282 19499/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236272 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236271 19498/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236289 19499/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236268 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236261 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236260 19497/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236250 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236249 19496/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236239 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236238 19495/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236256 19496/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236235 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236228 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236227 19494/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236245 19495/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236224 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236217 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236216 19493/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236206 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236205 19492/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236195 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236194 19491/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236212 19492/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236191 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236184 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236183 19490/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236172 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236170 19489/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236179 19489/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236151 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236156 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236150 19488/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236164 19488/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236137 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236139 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236135 19487/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236148 19487/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236126 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236127 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236125 19486/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236117 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236115 19485/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236107 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236105 19484/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236097 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236096 19483/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236103 19483/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236085 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236087 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236084 19482/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236093 19482/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236075 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236076 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236074 19481/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236066 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236064 19480/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236056 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236055 19479/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236043 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236039 19478/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236030 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236028 19477/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236037 19477/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236019 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236020 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236018 19476/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236026 19476/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6236009 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6236010 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6236008 19475/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236000 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235998 19474/smtp          
unix  3      [ ]         STREAM     CONNECTED     6236006 19474/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6235989 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6235990 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235988 19473/smtp          
unix  3      [ ]         STREAM     CONNECTED     6235980 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235978 19472/smtp          
unix  3      [ ]         STREAM     CONNECTED     6235966 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235964 19471/smtp          
unix  3      [ ]         STREAM     CONNECTED     6235986 19472/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6235962 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6235955 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235954 19470/smtp          
unix  3      [ ]         STREAM     CONNECTED     6235975 19471/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6235952 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6235961 19470/smtp          private/smtp
unix  3      [ ]         STREAM     CONNECTED     6235951 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6235931 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235930 19466/qmgr          
unix  3      [ ]         STREAM     CONNECTED     6235922 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235921 19463/pickup        
unix  3      [ ]         STREAM     CONNECTED     6235917 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235916 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235913 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235912 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235909 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235908 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235905 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235904 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235901 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235900 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235897 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235896 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235893 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235892 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235889 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235888 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235885 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235884 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235881 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235880 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235877 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235876 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235873 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235872 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235869 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235868 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235865 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235864 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235861 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235860 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235857 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235856 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235853 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235852 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235849 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235848 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235845 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235844 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235841 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235840 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235838 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235837 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235834 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235833 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235831 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235830 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235828 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235827 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235825 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235824 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235821 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235820 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235817 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235816 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6235808 5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     6235807 19462/master        
unix  3      [ ]         STREAM     CONNECTED     6172589 6332/dovecot-auth   /var/run/dovecot//login/default
unix  3      [ ]         STREAM     CONNECTED     6172588 14370/imap-login    
unix  3      [ ]         STREAM     CONNECTED     6172585 14370/imap-login    
unix  3      [ ]         STREAM     CONNECTED     6172584 6327/dovecot        
unix  3      [ ]         STREAM     CONNECTED     6172577 6332/dovecot-auth   /var/run/dovecot//login/default
unix  3      [ ]         STREAM     CONNECTED     6172576 14368/imap-login    
unix  3      [ ]         STREAM     CONNECTED     6172573 14368/imap-login    
unix  3      [ ]         STREAM     CONNECTED     6172572 6327/dovecot        
unix  3      [ ]         STREAM     CONNECTED     6160053 12772/sshd: root@no 
unix  3      [ ]         STREAM     CONNECTED     6160052 12779/sftp-server   
unix  3      [ ]         STREAM     CONNECTED     6160051 12772/sshd: root@no 
unix  3      [ ]         STREAM     CONNECTED     6160050 12779/sftp-server   
unix  3      [ ]         STREAM     CONNECTED     6159951 12756/sshd: root@no 
unix  3      [ ]         STREAM     CONNECTED     6159950 12763/sftp-server   
unix  3      [ ]         STREAM     CONNECTED     6159949 12756/sshd: root@no 
unix  3      [ ]         STREAM     CONNECTED     6159948 12763/sftp-server   
unix  3      [ ]         STREAM     CONNECTED     6054627 6332/dovecot-auth   /var/run/dovecot//login/default
unix  3      [ ]         STREAM     CONNECTED     6054626 5514/pop3-login     
unix  3      [ ]         STREAM     CONNECTED     6054623 5514/pop3-login     
unix  3      [ ]         STREAM     CONNECTED     6054622 6327/dovecot        
unix  3      [ ]         STREAM     CONNECTED     6033354 6332/dovecot-auth   /var/run/dovecot//login/default
unix  3      [ ]         STREAM     CONNECTED     6033353 4299/pop3-login     
unix  3      [ ]         STREAM     CONNECTED     6033350 4299/pop3-login     
unix  3      [ ]         STREAM     CONNECTED     6033349 6327/dovecot        
unix  3      [ ]         STREAM     CONNECTED     21027  5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     21023  4598/dhcpcd         
unix  3      [ ]         STREAM     CONNECTED     11440  5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     11439  7278/cron           
unix  3      [ ]         STREAM     CONNECTED     11327  5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     11326  7218/nmbd           
unix  3      [ ]         STREAM     CONNECTED     11274  5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     11273  6793/smbd           
unix  3      [ ]         STREAM     CONNECTED     9614   6332/dovecot-auth   
unix  3      [ ]         STREAM     CONNECTED     9613   6327/dovecot        
unix  3      [ ]         STREAM     CONNECTED     9609   6331/dovecot-auth   
unix  3      [ ]         STREAM     CONNECTED     9608   6327/dovecot        
unix  3      [ ]         STREAM     CONNECTED     9404   5835/syslog-ng      /dev/log
unix  3      [ ]         STREAM     CONNECTED     9403   6256/dhcpd          

jeste prikladam ps -aux.

Warning: bad ps syntax, perhaps a bogus '-'? See http://procps.sf.net/faq.html
USER       PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root         1  0.0  0.1   1556   548 ?        Ss   Feb20   0:05 init [3]
root         2  0.0  0.0      0     0 ?        S<   Feb20   0:00 [kthreadd]
root         3  0.0  0.0      0     0 ?        S<   Feb20   0:00 [migration/0]
root         4  0.0  0.0      0     0 ?        S<   Feb20   0:00 [ksoftirqd/0]
root         5  0.0  0.0      0     0 ?        S<   Feb20   0:00 [watchdog/0]
root         6  0.0  0.0      0     0 ?        S<   Feb20   0:04 [events/0]
root         7  0.0  0.0      0     0 ?        S<   Feb20   0:00 [khelper]
root        59  0.0  0.0      0     0 ?        S<   Feb20   0:25 [kblockd/0]
root        62  0.0  0.0      0     0 ?        S<   Feb20   0:00 [kacpid]
root        63  0.0  0.0      0     0 ?        S<   Feb20   0:00 [kacpi_notify]
root       147  0.0  0.0      0     0 ?        S<   Feb20   0:00 [ata/0]
root       148  0.0  0.0      0     0 ?        S<   Feb20   0:00 [ata_aux]
root       150  0.0  0.0      0     0 ?        S<   Feb20   0:00 [kseriod]
root       185  0.0  0.0      0     0 ?        S    Feb20   0:19 [pdflush]
root       186  0.0  0.0      0     0 ?        S    Feb20   0:00 [pdflush]
root       187  0.0  0.0      0     0 ?        S<   Feb20   0:03 [kswapd0]
root       226  0.0  0.0      0     0 ?        S<   Feb20   0:00 [aio/0]
root       852  0.0  0.0      0     0 ?        S<   Feb20   0:00 [scsi_eh_0]
root       854  0.0  0.0      0     0 ?        S<   Feb20   0:00 [scsi_eh_1]
root       880  0.0  0.0      0     0 ?        S<   Feb20   0:00 [kpsmoused]
root       889  0.0  0.0      0     0 ?        S<   Feb20   0:00 [rpciod/0]
root       890  0.0  0.0      0     0 ?        S<   Feb20   1:44 [kjournald]
root       984  0.0  0.1   1788   584 ?        S  Feb20   0:03 /sbin/udevd --daemon
root      3052  0.0  0.0      0     0 ?        S   Feb20   0:13 [kjournald]
14        4299  0.0  0.1   3264  1000 ?        S    12:30   0:00 pop3-login
root      4598  0.0  0.1   1752   600 ?        Ss   Feb20   0:00 /sbin/dhcpcd eth0
14        5514  0.0  0.1   3264  1000 ?        S    12:57   0:00 pop3-login
root      5835  0.0  0.4   4052  2284 ?        Ss   Feb20   9:26 /usr/sbin/syslog-ng
mysql     6024  0.0  6.8 160208 35420 ?        Ssl  Feb20  13:38 /usr/sbin/mysqld --defaults-file=/etc/mysql/my.cnf --basedir=/usr --datadir=/var/l
root      6113  0.0  0.2   4052  1064 ?        Ss   Feb20   0:00 /usr/sbin/sshd
dhcp      6256  0.0  0.3   3460  1984 ?        Ss   Feb20   0:01 /usr/sbin/dhcpd -cf /etc/dhcp/dhcpd.conf -q -pf /var/run/dhcp/dhcpd.pid -user dhcp
root      6327  0.0  0.1   1900   628 ?        Ss   Feb20   0:12 /usr/sbin/dovecot
root      6331  0.0  0.2   5352  1512 ?        S    Feb20   0:06 dovecot-auth
root      6332  0.0  0.3   5352  1576 ?        S    Feb20   0:07 dovecot-auth
root      6793  0.0  0.6  11412  3304 ?        S    13:26   0:00 /usr/sbin/smbd -D
root      6986  0.0  0.3   6468  1696 ?        Ss   Feb20   0:05 proftpd: (accepting connections)
root      7066  0.0  3.3  18808 17180 ?        Ss   Feb20   6:05 /usr/bin/perl -w /usr/sbin/psad
root      7071  0.0  0.0   1532   192 ?        Ss   Feb20   0:19 /usr/sbin/kmsgsd
root      7074  0.0  0.0   1536   268 ?        Ss   Feb20   0:01 /usr/sbin/psadwatchd
root      7208  0.0  0.4  10232  2552 ?        Ss   Feb20   0:00 /usr/sbin/smbd -D
root      7214  0.0  0.1  10232   968 ?        S    Feb20   0:00 /usr/sbin/smbd -D
root      7218  0.0  0.2   5748  1448 ?        Ss   Feb20   0:08 /usr/sbin/nmbd -D
root      7278  0.0  0.1   1804   696 ?        Ss   Feb20   0:08 /usr/sbin/cron
root      7347  0.0  0.1   1592   636 tty1     Ss+  Feb20   0:00 /sbin/agetty 38400 tty1 linux
root      7348  0.0  0.1   1592   632 tty2     Ss+  Feb20   0:00 /sbin/agetty 38400 tty2 linux
root      7349  0.0  0.1   1592   632 tty3     Ss+  Feb20   0:00 /sbin/agetty 38400 tty3 linux
root      7350  0.0  0.1   1592   632 tty4     Ss+  Feb20   0:00 /sbin/agetty 38400 tty4 linux
root      7351  0.0  0.1   1592   636 tty5     Ss+  Feb20   0:00 /sbin/agetty 38400 tty5 linux
root      7352  0.0  0.1   1592   636 tty6     Ss+  Feb20   0:00 /sbin/agetty 38400 tty6 linux
root     12697  0.0  0.4   7032  2272 ?        Rs   15:47   0:00 sshd: root@pts/0
root     12704  0.0  0.3   2668  1596 pts/0    Rs   15:47   0:00 -bash
root     12756  0.0  0.4   7028  2268 ?        Ss   15:49   0:00 sshd: root@notty
root     12763  0.0  0.2   3724  1292 ?        Ss   15:49   0:00 /usr/lib/misc/sftp-server
root     12772  0.0  0.4   7028  2240 ?        Ss   15:49   0:00 sshd: root@notty
root     12779  0.0  0.2   3724  1284 ?        Ss   15:49   0:00 /usr/lib/misc/sftp-server
postfix  14367  0.0  0.4   3532  2248 ?        S    16:08   0:00 imap
14       14368  0.0  0.1   3272  1008 ?        S    16:08   0:00 imap-login
postfix  14369  0.1  0.4   3272  2184 ?        S    16:08   0:04 imap
14       14370  0.0  0.1   3272  1008 ?        S    16:08   0:00 imap-login
root     18224  0.0  0.1   1720   624 pts/0    S    16:43   0:00 /usr/sbin/rinetd
lighttpd 18738  0.0  0.4   6944  2304 ?        S    16:52   0:00 /usr/sbin/lighttpd -f /etc/lighttpd/lighttpd.conf
lighttpd 18739  0.0  1.5  31976  8228 ?        Ss   16:52   0:00 /usr/bin/php-cgi
lighttpd 18745  0.0  0.7  31976  3760 ?        S    16:52   0:00 /usr/bin/php-cgi
lighttpd 18746  0.0  1.5  31976  8232 ?        Ss   16:52   0:00 /usr/bin/php-cgi
lighttpd 18751  0.0  0.7  31976  3764 ?        S    16:52   0:00 /usr/bin/php-cgi
lighttpd 18752  0.0  1.5  31976  8228 ?        Ss   16:52   0:00 /usr/bin/php-cgi
lighttpd 18753  0.0  1.3  32384  6908 ?        S    16:52   0:00 /usr/bin/php-cgi
lighttpd 18754  0.0  1.5  31976  8228 ?        Ss   16:52   0:00 /usr/bin/php-cgi
lighttpd 18755  1.8  1.6  32660  8340 ?        S    16:52   0:20 /usr/bin/php-cgi
lighttpd 18756  0.0  0.1   2772   756 ?        S    16:52   0:00 /usr/bin/rrdtool -
root     18816  0.0  0.8  10756  4216 ?        Ss   16:52   0:00 /usr/sbin/apache2 -D DEFAULT_VHOST -D INFO -D LANGUAGE -D SSL -D SSL_DEFAULT_VHOST
apache   18818  0.0  0.5  10756  2720 ?        S    16:52   0:00 /usr/sbin/apache2 -D DEFAULT_VHOST -D INFO -D LANGUAGE -D SSL -D SSL_DEFAULT_VHOST
apache   18821  0.0  0.5  10756  2716 ?        S    16:52   0:00 /usr/sbin/apache2 -D DEFAULT_VHOST -D INFO -D LANGUAGE -D SSL -D SSL_DEFAULT_VHOST
apache   18822  0.0  0.5  10756  2716 ?        S    16:52   0:00 /usr/sbin/apache2 -D DEFAULT_VHOST -D INFO -D LANGUAGE -D SSL -D SSL_DEFAULT_VHOST
apache   18823  0.0  0.5  10756  2716 ?        S    16:52   0:00 /usr/sbin/apache2 -D DEFAULT_VHOST -D INFO -D LANGUAGE -D SSL -D SSL_DEFAULT_VHOST
apache   18824  0.0  0.5  10756  2716 ?        S    16:52   0:00 /usr/sbin/apache2 -D DEFAULT_VHOST -D INFO -D LANGUAGE -D SSL -D SSL_DEFAULT_VHOST
root     18998  0.0  0.0      0     0 ?        S<   Feb22   0:00 [kjournald]
root     19462  0.0  0.3   6524  1756 ?        Ss   17:07   0:00 /usr/lib/postfix/master
postfix  19463  0.0  0.3   6564  1756 ?        S    17:07   0:00 pickup -l -t fifo -u
postfix  19466  0.0  0.5   7120  2620 ?        S    17:07   0:00 qmgr -l -t fifo -u
postfix  19470  0.0  0.4   6696  2216 ?        S    17:07   0:00 smtp -t unix -u
postfix  19471  0.0  0.4   6696  2224 ?        S    17:07   0:00 smtp -t unix -u
postfix  19516  0.0  0.4   6696  2224 ?        S    17:07   0:00 smtp -t unix -u
postfix  19528  0.0  0.4   6696  2224 ?        S    17:07   0:00 smtp -t unix -u
postfix  19530  0.0  0.4   6696  2220 ?        S    17:07   0:00 smtp -t unix -u
postfix  19544  0.0  0.4   6696  2220 ?        S    17:07   0:00 smtp -t unix -u
postfix  19570  0.0  0.3   6596  1736 ?        S    17:07   0:00 bounce -z -n defer -t unix -u
postfix  19573  0.0  0.5   6920  2672 ?        S    17:07   0:00 smtpd -n 26 -t inet -u
postfix  19575  0.0  0.3   6560  1712 ?        S    17:07   0:00 anvil -l -t unix -u
postfix  19594  0.0  0.4   6800  2468 ?        S    17:08   0:00 cleanup -z -t unix -u
postfix  19599  0.0  0.4   6640  2116 ?        S    17:08   0:00 local -t unix
postfix  19600  0.0  0.4   6728  2392 ?        S    17:08   0:00 virtual -t unix
postfix  19602  0.0  0.4   6640  2116 ?        S    17:08   0:00 local -t unix
postfix  19603  0.0  0.4   6728  2392 ?        S    17:08   0:00 virtual -t unix
postfix  19605  0.0  0.3   6596  1736 ?        S    17:08   0:00 bounce -z -n defer -t unix -u
postfix  19607  0.0  0.3   6596  1732 ?        S    17:08   0:00 bounce -z -n defer -t unix -u
postfix  19615  0.0  0.5   6920  2664 ?        S    17:08   0:00 smtpd -n 26 -t inet -u
postfix  19620  0.0  0.3   6596  1728 ?        S    17:08   0:00 bounce -z -n defer -t unix -u
postfix  19680  0.0  0.4   6700  2444 ?        S    17:10   0:00 trivial-rewrite -n rewrite -t unix -u
postfix  19685  0.0  0.4   6800  2456 ?        S    17:10   0:00 cleanup -z -t unix -u
root     19701  0.0  0.1   2184   884 pts/0    R+   17:11   0:00 ps -aux

Odpovědi

6.3.2009 18:05 Sejki | skóre: 6 | Usti nad Orlici
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.

Tak v prve rade bych asi zakazal vsechny prichozi pozadavky, viz man iptables, navic ten postfix tak nutne potrebujes?

uin: 212210166
6.3.2009 22:23 Robotics
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.

Ty jo a jak si na to přišel že tě hackly? Ja si takhle jen tak pronic za nic nezkoumam netstat. Zpomalilo se ti pripojeni nebo neco? Jak si to poznal? 

6.3.2009 18:12 akomano | skóre: 16 | blog: Došiel čaj v kávomate | Malacky
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.
the.max avatar 6.3.2009 18:24 the.max | skóre: 45 | blog: Davidovo smetiště | Bílina
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.
Asi bych nejdriv povypinal veskere sluzby co tam mas spustene a ktere znas. tim se ti zmensi pocet procesu nekde nanecem naslouchajicich a bezicich. Pak muzes postupovat vylucovaci metodou. Pokud se stane ze po povypinani sluzeb prestane spam odchazet, budes mit napadeneho nejakeho demona. Taky by nebylo od veci smaznout frontu postfixu. Je mozne ze jdi neco jen spustil, to odeslalo hafo spamu (postfix je prijal) a ted je ma ve fronte a pokousi se je dorucit. Zkus frontu smaznout a uvidis jestlise bude dal plnit nebo ne.
KERNEL ULTRAS Fan Team || Sabaton - nejlepší učitel dějepisu
6.3.2009 19:06 vsivak
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.

To uz jsem zkusil.

Prvni co bylo ze jsem zavrel port 25 prichozi i odchozi, povypinal vsechny sluzby az na postfix a porad to posila. Kdyz necham postfix chvili bezet fronta se vyprazdni sama, kdyz ho pak vypnu a zapnu je zase plna. Teoreticky je mozne, ze je napadeny samotny postfix.

6.3.2009 21:56 NN
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.

dpkg --remove --purge postfix

apt-get install chkrootkit

ptrace

..

NN

 

 

Jendа avatar 6.3.2009 22:05 Jendа | skóre: 73 | blog: Výlevníček | JO70FB
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.
Jestli měla návštěva roota, tak bych ten systém radši rovnou přeinstaloval... (já vím, jsem paranoidní)
7.3.2009 14:49 Ash | skóre: 53
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.
Ne paranoidní, jen hloupé. Lepší je se nejdřív podívat, jestli opravdu měl nějakou návštěvu a případně jakou, a pak až přeinstalovat a opravit tu díru která vedla ke zneužití. V případě uspěchaného přeinstalování by zničil stopy a mohl by se těšit na další návštěvu, žejo.
7.3.2009 01:00 Ash | skóre: 53
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.
Program ktery nasloucha na portu 49252 neznam - co je to zac. Jak zjistim kde je ulozen.
tcp        0      0 *:49252                 *:*                     LISTEN      lighttpd   3602750660 -

lighttpd 18738  0.0  0.4   6944  2304 ?        S    16:52   0:00 /usr/sbin/lighttpd -f /etc/lighttpd/lighttpd.conf
že by /usr/sbin/? Ale jen hádám :P Nechtěl jste se zeptat na nějaký jiný port?
Jendа avatar 7.3.2009 11:02 Jendа | skóre: 73 | blog: Výlevníček | JO70FB
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.
Jestli to do toho postfixu cpe lighttpd, možná to ani nebylo proniknutí do počítače - neprovozujete nějaký děravý PHP skript s podporou mail()?
7.3.2009 14:47 Ash | skóre: 53
Rozbalit Rozbalit vše Re: Nekdo hacknul muj pocitac a preposila spam.
A při pohledu do toho jeho konfiguráku /etc/lighttpd/lighttpd.conf, kde bude jistě uveden DocumentRoot a následném pohledu do toho adresáře vidíte co?

Založit nové vláknoNahoru

Tiskni Sdílej: Linkuj Jaggni to Vybrali.sme.sk Google Del.icio.us Facebook

ISSN 1214-1267   www.czech-server.cz
© 1999-2015 Nitemedia s. r. o. Všechna práva vyhrazena.