Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
Dauthus
Worker
Worker


Joined: Oct 07, 2003
Posts: 211

PostPosted: Mon May 09, 2005 5:00 pm Reply with quote

I don't know if anyone else has seen this, but this goofball tried to inject this file into my coppermine gallery. It didn't work and Sentinel caught it, but someone needs to shut this dude down.

Look here at the files in this directory, then open the inject.txt
Only registered users can see links on this board! Get registered or login!

Don't worry, I have already looked at the file and no alarms on the spyware or the AV. It is a script for hacking a site. It doesn't work, but it may on someone else.

Just a heads up. I also banned the IP Range:

202.52.192.0 thru 202.52.223.255

The actual IP used was 202.52.200.132
 
View user's profile Send private message Visit poster's website
CurtisH
Life Cycles Becoming CPU Cycles


Joined: Mar 15, 2004
Posts: 638
Location: West Branch, MI

PostPosted: Mon May 09, 2005 5:21 pm Reply with quote

Here is his Yahoo! profile (yahoo and geocities are combined).
Only registered users can see links on this board! Get registered or login!

I have reported him to both.

_________________
Those who dream by day are cognizant of many things which escape those who dream only by night. ~Poe 
View user's profile Send private message Visit poster's website Yahoo Messenger
CurtisH
PostPosted: Mon May 09, 2005 5:29 pm Reply with quote

Also reported to the FBI Internet crimes division.
 
montego
Site Admin


Joined: Aug 29, 2004
Posts: 9457
Location: Arizona

PostPosted: Mon May 09, 2005 6:31 pm Reply with quote

I was concerned when I was reviewing the blog at your site and I happened to run across Coppermine... definitely a "problem" module for getting hacked... glad you caught the numscal!

montego

_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
CurtisH
PostPosted: Mon May 09, 2005 6:35 pm Reply with quote

Dauthus wrote:
I don't know if anyone else has seen this, but this goofball tried to inject this file into my coppermine gallery. It didn't work and Sentinel caught it, but someone needs to shut this dude down.

Look here at the files in this directory, then open the inject.txt
Only registered users can see links on this board! Get registered or login!

Don't worry, I have already looked at the file and no alarms on the spyware or the AV. It is a script for hacking a site. It doesn't work, but it may on someone else.

Just a heads up. I also banned the IP Range:

202.52.192.0 thru 202.52.223.255

The actual IP used was 202.52.200.132


Did you look at the other scripts in there?? This guy has an arsenal...
 
Dauthus
PostPosted: Mon May 09, 2005 7:06 pm Reply with quote

Yea, I was looking at the eggdrop for servers. I had a server that got this script "loaded" onto it and I had a heck of a time trying to get rid of it.

As far as coppermine being a "problem" module, I honestly haven't had anyone able to hack any of the modules since Sentinel. But not for want of trying. I am using the 2.8 Chatserv patch, but since my site is so highly modified, I haven't had the heart (for lack of a better word) to go in and do a step by step update. I can't just drop the files in and overwrite them.

Oh yea. I forgot...as far as him having an arsenal....I think the first four letters of arsenal fits him to a tee.
 
montego
PostPosted: Mon May 09, 2005 10:50 pm Reply with quote

ROTFL and Smack

Go get 'em!!!
 
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©