Zines/owned and exposed/3.txt

13118 lines
633 KiB
Plaintext
Raw Permalink Normal View History

2016-12-14 20:51:25 +00:00
|\___/|
-=[ISSUE - NO 3]=- =) ^Y^ (=
-=[OF]=- \ ^ /
)=*=(
______________________________ __ ____________ _ / \
|.-----.--.--.--.-----.-----.--| | ___ ___ _| || | |
|| _ | | | | | -__| _ | | . | | . || /| | | |\
||_____|________|__|__|_____|_____| |__,|_|_|___|| \| | |_|/\
| | | ______ |__//_// ___/ __
| | | .-----.--.--.-----.| |.-----.--\_).--| ||
| | | | -__|_ _| _ || || ||__ --| -__| _ ||
| | | |_____|__.__| __|| || ||_____|_____|_____||
|_/ \__________________________|__|___| || |___________________|
|______|
Featuring... .---. /\ Brought to you by .---.
/ . \ / \ your Happy Ninjas / . \
|\_/| | | | |\_/| |
| | /| | b | | | /|
.-----------------------' | | a | .---------------------------' |
/ .-. | | c | / .-. |
| / \ Intro | | k | | / \ The Happy Ninja Faker |
| |\_. | St0re.cc | | | | |\_. | Swissfaking.net |
|\| | /| El-Basar.biz | | | |\| | /| Vpn24.org |
| `---' | | | o | | `---' | |
| |------------------' | n | | |----------------------'
\ | .---. | c | \ | .---.
\ / / . \ | e | \ / / . \
`---' |\_/| | | | `---' |\_/| |
| | /| | | | | /|
.-----------------------' | | a | .---------------------------' |
/ .-. | | g | / .-. |
| / \ Undercover.su | | a | | / \ Secure-Host.in |
| |\_. | k!LLu's Botnet | | i | | |\_. | Unique-Crew.net |
|\| | /| | | n | |\| | /| |
| `---' | | | | | `---' | |
| |------------------' | | | |----------------------'
\ | .---. | h | \ | .---.
\ / / . \ | e | \ / / . \
`---' |\_/| | | r | `---' |\_/| |
| | /| | e | | | /|
.-----------------------' | | | .---------------------------' |
/ .-. | | | / .-. |
| / \ Zion-Network.net | | t | | / \ Some leftovers |
| |\_. | Hackbase.cc | | o | | |\_. | Outro |
|\| | /| | | | |\| | /| |
| `---' | | | | | `---' | |
| |------------------' | r | | |----------------------'
\ | | m | \ |
\ / | | \ /
`---' | /\ | `---'
:\______|/ \|______/:
\__0day______0day__/
| /\ |
|| ||
|| ||
|| ||
|| ||
| \/ |
\____/
(____)
First of all, here is the verification of the sha1 hash we published
when hba-crew got owned: 49bd4433fff1b04530dcaff1f52fa971ff895871 =
sha1(HAPPY_NINJAS_ARE_STAYING_HAPPY_exp03)
,;~;,
/\_
( /
(() //)
| \\ ,,;;'\
__ _( )m=((((((((((((((========={ Intro }=========-------
/' ' '()/~' '.(, |
,;( )|| | ~ Tonight's the night. And it's going to happen,
,;' \ /-(.;, ) again and again. It has to happen.
) / ) /
// || We all want to welcome you to a brand new issue
)_\ )_\ of Owned and exp0sed! Before we get to the fun
part, we'd just like to clarify some things since there has been a lot
going on on the internet since our last issue.
Movements, as they put it, like Anonymous or the short-lived
phenomenon of Lulzsec have gotten an increasingly important topic to
media and the public. We want to line out our motivation in contrast
to theirs. Anonymous has tried to gain as much media attention as
possible by inflicting the most damage possible on big companies and
service providers. Similarily, Lulzsec have attacked various websites
and published an enormous amount of information.
However, while it's their goal to put up pressure on governments and
big organizations, it's ours to protect the public from the abysses of
the internet. Fraud is our main concern and we intent to contain it as
much as possible. While Anon and Lulzsec toss out their stuff within
weeks, we take our time to gain access, collect data and aggregate it
nicely for you, our readers. This is why there is a substantial
time span between our releases.
We of course also monitor the German and international fraud scene as
it recovers from our attacks; it's hard to stop something that is
driven by selfishness, greed and money. We also find it worrying that
Anonymous and especially Lulzsec act in what they call "Operation
Antisec". The original Antisec Movement was brought to life by actual
hackers and targeted full disclosure and the corporate security
industry. Publishing gigantic amounts of (corporate) data on the
internet does exactly the opposite: It provides the security industry
with the attention they need and hence new customers.
But let's now look at why we are here today. "Money is the root of all
evil" as the proverb has it; and it's why fraud communities do come
back after we have owned and exposed them; but as long as they carry
on, we do, too. Fraudsters ought to know that they're not safe because
we are going to hunt down every single site that is left. We
experience the fraud scene scattering wider and wider after every
issue we have published; new boards, and with them new admins, emerge
out of nowhere. That just shows well again how stubborn fraudsters are
as most of them still refuse to accept that they lost their right to
exist on the internet. It's particularly frustrating that they don't
seem to draw lessons from getting owned again and again.
That being said we can just strongly advise you to spend your time on
something worthwhile. It's not too late ...
,;~;,
_/\
\ )
(\\ ())
/';;,, // |
-------========={ St0re.cc }==========))))))))))))))=m( )_ __
| ,(.' '~/()' ' '\
Let's head to our first target. Fraud or scene ~ | ||( );,
shops in general have not been our main concern. ( ,;.)-\ / ';,
During our many break-ins in other fraud \ ( \ (
communities, we often were dazzled with glaring || \\
banners of underground markets where you could buy /_( /_(
"fresh" CCs, PayPal accounts or socks5 proxies to stay "secure" while
carding. So by now we got the hint that it might be worth finding out
out how often and by whom these shops were really used. It's quite
impressive how much money you can make by simply stealing PayPal
accounts with a RAT and not using it for fraud but for selling it to
scammers instead. That's why we clicked on the first banner we saw and
concluded that it would be a noble action to root. We actually got
pretty lucky since st0re.cc was not the only credit card store on that
server. We spotted some others like the infamous El-Basar.biz (it was
already shown in a German tv show), the rest is not worth to mention.
Anyway this is what you get if you decide to buy credit cards in a
webshop: You will get owned and exposed. Like always.
# uname -a
FreeBSD 6.4-RELEASE-p11 i386 i386 SMP-GENERIC
# id
uid=0(root) gid=0(wheel) groups=0(wheel),5(operator)
# cat /etc/passwd
# $FreeBSD: src/etc/master.passwd,v 1.40 2005/06/06 20:19:56 brooks Exp $
#
root:*:0:0:Charlie &:/root:/usr/local/bin/bash
toor:*:0:0:Bourne-again Superuser:/root:
daemon:*:1:1:Owner of many system processes:/root:/usr/sbin/nologin
operator:*:2:5:System &:/:/usr/sbin/nologin
bin:*:3:7:Binaries Commands and Source:/:/usr/sbin/nologin
tty:*:4:65533:Tty Sandbox:/:/usr/sbin/nologin
kmem:*:5:65533:KMem Sandbox:/:/usr/sbin/nologin
games:*:7:13:Games pseudo-user:/usr/games:/usr/sbin/nologin
news:*:8:8:News Subsystem:/:/usr/sbin/nologin
man:*:9:9:Mister Man Pages:/usr/share/man:/usr/sbin/nologin
sshd:*:22:22:Secure Shell Daemon:/var/empty:/usr/sbin/nologin
smmsp:*:25:25:Sendmail Submission User:/var/spool/clientmqueue:/usr/sbin/nologin
mailnull:*:26:26:Sendmail Default User:/var/spool/mqueue:/usr/sbin/nologin
bind:*:53:53:Bind Sandbox:/:/usr/sbin/nologin
proxy:*:62:62:Packet Filter pseudo-user:/nonexistent:/usr/sbin/nologin
_pflogd:*:64:64:pflogd privsep user:/var/empty:/usr/sbin/nologin
_dhcp:*:65:65:dhcp programs:/var/empty:/usr/sbin/nologin
uucp:*:66:66:UUCP pseudo-user:/var/spool/uucppublic:/usr/local/libexec/uucp/uucico
pop:*:68:6:Post Office Owner:/nonexistent:/usr/sbin/nologin
www:*:80:80:World Wide Web Owner:/nonexistent:/usr/sbin/nologin
nobody:*:65534:65534:Unprivileged user:/nonexistent:/usr/sbin/nologin
mysql:*:88:88:MySQL Daemon:/nonexistent:/sbin/nologin
postfix:*:125:125:Postfix Mail System:/var/spool/postfix:/usr/sbin/nologin
cyrus:*:60:60:the cyrus mail server:/nonexistent:/usr/sbin/nologin
nukeuploads:*:1001:1001:User &:/home/nukeuploads:/bin/sh
ayoga:*:1002:1002:User &:/home/ayoga:/sbin/nologin
alg:*:1004:1004:User &:/home/alg:/bin/sh
propiska:*:1005:1005:User &:/home/propiska:/sbin/nologin
msk:*:1007:1007:User &:/home/msk:/sbin/nologin
vestacomp:*:1006:1006:User &:/home/vestacomp:/sbin/nologin
crank2010:*:1016:1016:User &:/home/crank2010:/sbin/nologin
lordknight:*:1019:1019:User &:/home/lordknight:/bin/sh
madrage:*:1003:1003:User &:/home/madrage:/bin/sh
scenehack:*:1008:1008:User &:/home/scenehack:/sbin/nologin
thefuelru:*:1009:1009:User &:/home/thefuelru:/sbin/nologin
mr101:*:1021:1021:User &:/home/mr101:/bin/sh
szenevz:*:1011:1011:User &:/home/szenevz:/sbin/nologin
exchanger:*:1012:1012:User &:/home/exchanger:/bin/sh
filip:*:1023:1023:User &:/home/filip:/sbin/nologin
mmgen:*:1018:1018:User &:/home/mmgen:/sbin/nologin
ganymedes:*:1024:1024:User &:/home/ganymedes:/sbin/nologin
garf:*:1031:1031:User &:/home/garf:/sbin/nologin
onlineschauen:*:1013:1013:User &:/home/onlineschauen:/bin/sh
snetwork:*:1022:1022:User &:/home/snetwork:/sbin/nologin
useresu:*:1010:1010:User &:/home/useresu:/sbin/nologin
useresu1:*:1026:1026:User &:/home/useresu1:/sbin/nologin
margosha:*:1020:1020:User &:/home/margosha:/sbin/nologin
pavlrse:*:1027:1027:User &:/home/pavlrse:/sbin/nologin
muraaat:*:1000:1000:User &:/home/muraaat:/sbin/nologin
test4me:*:1014:1014:User &:/home/test4me:/bin/sh
# cat /etc/master.passwd
# $FreeBSD: src/etc/master.passwd,v 1.40 2005/06/06 20:19:56 brooks Exp $
#
root:*:0:0::0:0:Charlie &:/root:/usr/local/bin/bash
toor:*:0:0::0:0:Bourne-again Superuser:/root:
daemon:*:1:1::0:0:Owner of many system processes:/root:/usr/sbin/nologin
operator:*:2:5::0:0:System &:/:/usr/sbin/nologin
bin:*:3:7::0:0:Binaries Commands and Source:/:/usr/sbin/nologin
tty:*:4:65533::0:0:Tty Sandbox:/:/usr/sbin/nologin
kmem:*:5:65533::0:0:KMem Sandbox:/:/usr/sbin/nologin
games:*:7:13::0:0:Games pseudo-user:/usr/games:/usr/sbin/nologin
news:*:8:8::0:0:News Subsystem:/:/usr/sbin/nologin
man:*:9:9::0:0:Mister Man Pages:/usr/share/man:/usr/sbin/nologin
sshd:*:22:22::0:0:Secure Shell Daemon:/var/empty:/usr/sbin/nologin
smmsp:*:25:25::0:0:Sendmail Submission User:/var/spool/clientmqueue:/usr/sbin/nologin
mailnull:*:26:26::0:0:Sendmail Default User:/var/spool/mqueue:/usr/sbin/nologin
bind:*:53:53::0:0:Bind Sandbox:/:/usr/sbin/nologin
proxy:*:62:62::0:0:Packet Filter pseudo-user:/nonexistent:/usr/sbin/nologin
_pflogd:*:64:64::0:0:pflogd privsep user:/var/empty:/usr/sbin/nologin
_dhcp:*:65:65::0:0:dhcp programs:/var/empty:/usr/sbin/nologin
uucp:*:66:66::0:0:UUCP pseudo-user:/var/spool/uucppublic:/usr/local/libexec/uucp/uucico
pop:*:68:6::0:0:Post Office Owner:/nonexistent:/usr/sbin/nologin
www:*:80:80::0:0:World Wide Web Owner:/nonexistent:/usr/sbin/nologin
nobody:*:65534:65534::0:0:Unprivileged user:/nonexistent:/usr/sbin/nologin
mysql:*:88:88::0:0:MySQL Daemon:/nonexistent:/sbin/nologin
postfix:*:125:125::0:0:Postfix Mail System:/var/spool/postfix:/usr/sbin/nologin
cyrus:*:60:60::1172782800:0:the cyrus mail server:/nonexistent:/usr/sbin/nologin
nukeuploads:$1$hO28fqpU$OL/RovJhduUxEqR3kBawe.:1001:1001::0:0:User &:/home/nukeuploads:/bin/sh
ayoga:$1$CNCuqfrs$p7QpuHI6jagkVUyvGO5MI.:1002:1002::0:0:User &:/home/ayoga:/sbin/nologin
alg:$1$A07..akS$.TPW7o0ZCO25bB6AltS/Q.:1004:1004::0:0:User &:/home/alg:/bin/sh
propiska:$1$Hgb0peXw$2wtRLXytI9Mmwbsxi/RAI.:1005:1005::0:0:User &:/home/propiska:/sbin/nologin
msk:$1$yqxdalvS$IPYorMt8h.pMqc3V8mdED0:1007:1007::0:0:User &:/home/msk:/sbin/nologin
vestacomp:$1$bL6RZJ2K$f7CTWRj.ps2Q9XuImy4sI1:1006:1006::0:0:User &:/home/vestacomp:/sbin/nologin
crank2010:*:1016:1016::0:0:User &:/home/crank2010:/sbin/nologin
lordknight:*:1019:1019::0:0:User &:/home/lordknight:/binbreak-ins in other fraud/sh
madrage:*:1003:1003::0:0:User &:/home/madrage:/bin/sh
scenehack:*:1008:1008::0:0:User &:/home/scenehack:/sbin/nologin
thefuelru:*:1009:1009::0:0:User &:/home/thefuelru:/sbin/nologin
mr101:*:1021:1021::0:0:User &:/home/mr101:/bin/sh
szenevz:*:1011:1011::0:0:User &:/home/szenevz:/sbin/nologin
exchanger:*:1012:1012::0:0:User &:/home/exchanger:/bin/sh
filip:$1$asb5GyOE$OHPPapNFMf6zKA5FvrIpE/:1023:1023::0:0:User &:/home/filip:/sbin/nologin
mmgen:$1$bnXQT0ng$obWjcBQFTBTKk83ElXfDt0:1018:1018::0:0:User &:/home/mmgen:/sbin/nologin
ganymedes:$1$95EongK1$fFPWI1ePR8VKBIAQ/LwUu0:1024:1024::0:0:User &:/home/ganymedes:/sbin/nologin
garf:$1$xzEPVuNH$26jps1eOPu2hNObvlcgkH0:1031:1031::0:0:User &:/home/garf:/sbin/nologin
onlineschauen:$1$RihNUTco$hzbht5CwvI/h3X0cGe8T91:1013:1013::0:0:User &:/home/onlineschauen:/bin/sh
snetwork:$1$y0T7yJX4$ER.mYpG3P21qlz3qgQWtN.:1022:1022::0:0:User &:/home/snetwork:/sbin/nologin
useresu:$1$6J5xPk5F$sfpn5pAKTlf10hX3kSKkv.:1010:1010::0:0:User &:/home/useresu:/sbin/nologin
useresu1:$1$gPsMDoWO$.Ve9Z8tEQLZrlF7MrP6ZH1:1026:1026::0:0:User &:/home/useresu1:/sbin/nologin
margosha:*:1020:1020::0:0:User &:/home/margosha:/sbin/nologin
pavlrse:$1$AKfcvELm$oImAlQWKKDaEd.dimM6wY/:1027:1027::0:0:User &:/home/pavlrse:/sbin/nologin
muraaat:*:1000:1000::0:0:User &:/home/muraaat:/sbin/nologin
test4me:$1$nNH.D3yA$2KQeYLwqG3TcFHOc9toFL0:1014:1014::0:0:User &:/home/test4me:/bin/sh
# pwd
/root
# ls -la
total 715748
drwxr-xr-x 4 root wheel 512 Sep 9 04:43 .
drwx--x--x 18 root wheel 512 Apr 12 19:59 ..
-rw------- 1 root wheel 10017 Sep 26 02:59 .bash_history
-rw------- 1 root wheel 67 Sep 9 17:00 .cvspass
-rw------- 1 root wheel 50 Feb 9 2011 .lesshst
drwxr-xr-x 3 root wheel 512 Sep 26 02:57 .mc
-rw------- 1 root wheel 1344 May 20 03:24 .mysql_history
drwx------ 2 root wheel 512 Aug 14 19:22 .ssh
-rwxr-xr-x 1 root wheel 241 Jul 21 00:11 addban.sh
-rw-r--r-- 1 root wheel 601437 Apr 12 17:56 apache.log
-rwxr-xr-x 1 root wheel 89 Mar 6 2010 apache_watchdog.php
-rwxr-xr-x 1 root wheel 4184 Feb 2 2011 mydumpsplitter.sh
-rwxr-xr-x 1 alg www 365607550 Feb 1 2011 zzz.sql
# cat .bash_history
apachectl restart
exit
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
/usr/local/etc/rc.d/apache22 restart
top -S
tail -f /var/log/httpd/httpd_access.log
/usr/local/etc/rc.d/apache22 restart
/usr/local/etc/rc.d/apache22 restart
/usr/local/etc/rc.d/apache22 restart
cd /home/alg/
mc
mysql -u root -p`cat /etc/my.passwd `
cd db_split/
mysql -u root -p`cat /etc/my.passwd` --default-character-set=utf8 -f alg_forum < postindex.sql
ls -la
mcedit postindex.sql
mysql -u root -p`cat /etc/my.passwd` --default-character-set=utf8 -f alg_forum < adminlog.sql
mysql -u root -p`cat /etc/my.passwd` --default-character-set=utf8 -f alg_forum < attachment.sql
top
cd ..
wget
wget http://platon.sk/cvs/cvs.php/___checkout___/scripts/perl/mysql/mysqldump-convert.pl?rev=1.5&content-type=text/plain mysqldump-convert.pl
mc
ls
mcedit mysqldump-convert.pl\?rev\=1.5
mc
cat db_split/postindex.sql | ./mysqldump-convert.pl > postindex.sql
mcedti postindex.sql
mcedit postindex.sql
mcedit mysqldump-convert.pl
mysql -u root -p`cat /etc/my.passwd` --default-character-set=utf8 -f alg_forum < postindex.sql
exit
mc
/usr/local/etc/rc.d/apache22 restart
top
mc
date
exit
mc
cd /home/nukeuploads/nukeuploads.com/
chown nukeuploads:nukeuploads google4973efd9f5db5c16.html
mc
apachectl restart
uptime
top
tail -n 1000 /var/log/httpd/httpd_access.log
ps aux | grep nginx
mc
exit
apachectl stop
uptime
uptime
uptime
uptime
uptime
top
apachectl start
exit
tail -n 1000 /var/log/httpd/httpd_access.log
exit
top
apachectl restart
top
tail -n 1000 /var/log/httpd/httpd_access.log
tail -n 1000 /var/log/httpd/httpd_access.log
exit
apachectl restart
top
exit
tail -f /var/log/httpd/httpd_access.log
apachectl stop
killall -9 httpd
apachectl start
tail -f /var/log/httpd/httpd_access.log
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
mc -d
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
top
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
ps ax|grep -c http
top
top
uptime
uptime
uptime
uptime
uptime
uptime
top
cd /home/kirbysho/
mc
uptime
uptime
uptime
mcedit /usr/local/etc/apache22/vhosts/kirbysho.conf
apachectl restart
top
mc
mcedit /usr/local/etc/apache22/vhosts/kirbysho.conf
apachectl restart
uptime
uptime
uptime
uptime
uptime
uptime
top
tail -n 100 /var/log/httpd/httpd_access.log
uptime
uptime
uptime
uptime
top
exit
apachectl restart
exit
tail -f /var/log/httpd/httpd_access.log
killall -9 httpd
apachectl restart
top
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log |grep kirby-shop.ru
mc -d
date
date
date
date
date
date
date
date
killall -9 httpd
apachectl start
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log |grep kirby-shop.ru
tail -n 10000 /var/log/httpd/httpd_access.log | grep "russian-elite" > /root/apache.log
mc
killall -9 httpd
apachectl start
top
tail -f /var/log/httpd/httpd_access.log |grep kirby-shop.ru
killall -9 httpd
apachectl start
tail -f /var/log/httpd/httpd_access.log |grep kirby-shop.ru
cat /var/log/httpd/httpd_access.log | grep kirby-shop.ru > /var/log/httpd_kirby.log
cat /var/log/httpd/httpd_access.log
cat/var/log/httpd_kirby.log
cp /var/log/httpd_kirby.log
cp /var/log/httpd_kirby.log /home/kirbysho/
ls /home/kirbysho/
exit
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
top
top
ps ax
tail -f /var/log//httpd/httpd_access.log
tail -f /var/log//httpd/httpd_access.log
ps ax
top
ls -l
ping ya.ru
ping google.com
exit
mc
tail -f /var/log/httpd/httpd_access.log
mc
mc
mysql -unukeuploads_gla -p -h db.nukeuploads.com nukeuploads_gla
mysql -unukeuploads_gla -p -h
mysql -unukeuploads_gla -p -h
mysql -unukeuploads_gla -p -h 92.241.164.71 nukeuploads_gla
mc
nslookup
mc
nslookup
tail -n 1000 /var/log/httpd/httpd_access.log
exit
tail -n 1000 /var/log/httpd/httpd_access.log
top
exit
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
tail -n 1000 /var/log/httpd/httpd_access.log
exit
tail -n 100 /var/log/httpd/httpd_access.log
tail -n 100 /var/log/httpd/httpd_access.log | grep russian | wc -l
exit
tail -f /var/log/httpd/httpd_access.log
touch ~/addban.sh
chmod +x ~/addban.sh
mcedit ~/addban.sh
tail -n 100 /world/sec1005/var/log/httpd/httpd_access.log | grep 'swissfaking.net' | awk '{print }' | sort | uniq -c | sort -n | awk '{if ($1>3) print $2}'
/usr/local/etc/rc.d/apache22 restart
/usr/local/etc/rc.d/apache22 restart
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
/usr/local/etc/rc.d/nginx status
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
tail -f /var/log/httpd/httpd_access.log
tcpdump -nn host 187.160.244.66
tcpdump -nni bge0 host 187.160.244.66
tcpdump -nni bge0 host 187.160.244.66
sort /var/log/httpd/httpd_load.log | awk '{print $1}' | uniq -c
mc
mc -d
php -V
php -v
mysql -v
mysql -V
top
mc
ls -la
cd /home/margosha/
ls -la
pwd
mc
killall -9 mc
ls -la
cd forum.la2amadis.ru/
ls -la
cd ..
ls -la
chown -cRv margosha:www ./*
chown -cRv margosha:www ./*
chown -cR margosha:www ./*
chown -R margosha:www ./*
ls -la
cd forum.la2amadis.ru/
ls -la
cd ..
ls -la
cd la2amadis.ru/
ls -la
mc
ps ax
w
ps axu
ps axu
tail -f /var/log/httpd/httpd_access.log
exit
ps wauxf
cat /proc/22623/cmdline
kill -9 22623
ps wauxf
df -h
cd /home/toco123/
ls -la
cd 00/
ls -la
mc
killall -9 mc
ps wauxf
df -h
ls /tmp
ls -la
ls -la /tmp/
ps wauxf
df -h
w
cd /
ls -la
cat /etc/fsta
ps wauxf
kill -9 22623
cd /tmp/
ls -la
rm a.*
ls -la
tail -f /var/log/httpd/httpd_access.log
w
ps wauxf
ifconfig
cd /home/
ls -la
mc
cd /home/margosha/
tar czfv backup.tgz forum.la2amadis.ru la2amadis.ru
mc
chown margosha:www backup.tgz
mc
php -v
cd /usr/ports/mail/php-imap
cd /usr/ports/
cd ./mail
ls |grep imap
cd php5-imap
make install clean
cd /usr/local/etc/
ls
mc
mc
cd /usr/ports/mail/php52-imap
make install clean
cd /usr/ports/mail/php5-imap
make install clean
portdowngrade -s :pserver:anoncvs@anoncvs.tw.FreeBSD.org:/home/ncvs lang/php5
cd /usr/ports/mail/php52-imap
portdowngrade -s :pserver:anoncvs@anoncvs.tw.FreeBSD.org:/home/ncvs lang/php5
cd /usr/ports/ports-mgmt/portdowngrade
make install clean
make install clean
cd /usr/ports/mail/php5-imap
portdowngrade -s :pserver:anoncvs@anoncvs.tw.FreeBSD.org:/home/ncvs lang/php5
cd /usr/ports/mail/php5-imap
portdowngrade -s :pserver:anoncvs@anoncvs.tw.FreeBSD.org:/home/ncvs lang/php5
php -m
whereis portdowngrade
cd /usr/ports/ports-mgmt/portdowngrade
make install clean
cd /usr/ports/devel/popt
make install clean
cd /usr/ports/devel/libtool22
make install clean
cd -
make install clean
uname -a
php -v
cd /usr/ports/lang/php52-extensions/
make config
make
cd ../php5-extensions/
make config
make
php -v
portdowngrade -s :pserver:anoncvs@anoncvs.tw.FreeBSD.org:/home/ncvs lang/php5
touch /root/.cvspass
portdowngrade -s :pserver:anoncvs@anoncvs.tw.FreeBSD.org:/home/ncvs lang/php5
php -v
portdowngrade -s :pserver:anoncvs@anoncvs.fi.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.fi.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.tw.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.at.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs.at.FreeBSD.org:/home/ncvs lang/php5 -o anoncvs
portdowngrade -o anoncvs -s :pserver:anoncvs.at.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -o=anoncvs -s :pserver:anoncvs.at.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -o anoncvs -s :pserver:anoncvs.at.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.manov.su:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.manov.su:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.manov.su:/home/ncvs lang/php5
server_args = -f --allow-root=/test pserver
cat /etc/inetd.conf
cat /etc/inetd.conf | grep allow
portdowngrade -s :pserver:anoncvs@cvsup13.tw.freebsd.org:/home/ncvs lang/php5
portdowngrade -s :pserver:cvsup13.tw.freebsd.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs1.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@cvsup13.fr.freebsd.org:/home/ncvs lang/php5
mc
php -v | grep imap
php -m | grep imap
portdowngrade -s :pserver:anoncvs@anoncvs1.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs2.FreeBSD.org:/home/ncvs lang/php5
php -v
portdowngrade lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs1.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.at.FreeBSD.org:/home/ncv lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.at.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.de.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -r -s :pserver:anoncvs@anoncvs.de.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.de.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :login:anoncvs@anoncvs.jp.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.jp.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.jp.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s :pserver:anoncvs@anoncvs.jp.FreeBSD.org:/home/ncvs lang/php5
portdowngrade -s ":pserver:anoncvs@anoncvs.jp.FreeBSD.org:/home/ncvs" lang/php5
portdowngrade -s ":pserver:anoncvs@anoncvs.fr.FreeBSD.org:/home/ncvs" lang/php5
portdowngrade -o -s ":pserver:anoncvs@anoncvs.fr.FreeBSD.org:/home/ncvs" lang/php5
portdowngrade -o -s ":pserver:anoncvs@anoncvs.fr.FreeBSD.org:/home/ncvs" lang/php5
cd /usr/ports/mail/php5-imap/
make config
make
cd ..
cd ..
mc
cd distfiles/
fetch http://downloads.php.net/ilia/php-5.2.5.tar.bz2
cd ..
cd mail/php5-imap/
make
make install
php -m
php -m | grep imap
ls /var/db/pkg/| grep extre
ls /var/db/pkg/| grep exte
ls
mc
# cd /home/mmgen
total 44
drwxr-x--- 7 mmgen www 512 Jun 11 13:18 .
drwx--x--x 28 root wheel 1024 Sep 14 17:31 ..
drwxrwx--- 5 mmgen www 512 Jun 11 15:22 dodo.st0re.cc
drwxrwx--- 8 mmgen www 1024 Sep 30 16:19 st0re.cc
drwxrwx--- 3 mmgen www 512 Jan 26 2011 st0re.mmgen.st0re
drwxrwx--- 4 mmgen www 512 Dec 2 2010 st0re.morgen.w2c.ru
drwxrwx--- 2 mmgen www 10240 Oct 1 16:32 temp
# cd dodo.st0re.cc
# ls -la
total 96
drwxrwx--- 5 mmgen www 512 Jun 11 15:22 .
drwxr-x--- 7 mmgen www 512 Jun 11 13:18 ..
drwxr-xr-x 2 mmgen www 512 Jun 11 15:21 css
drwxr-xr-x 4 mmgen www 2048 Jun 11 15:23 images
-rw-r--r-- 1 mmgen www 38106 Jun 11 15:23 index.html
drwxr-xr-x 2 mmgen www 512 Jun 11 15:21 js
# cd ..
# cd st0re.mmgen.st0re
# ls -la
total 16
drwxrwx--- 3 mmgen www 512 Jan 26 2011 .
drwxr-x--- 7 mmgen www 512 Jun 11 13:18 ..
drwxr-xr-x 4 mmgen www 1536 Jan 26 2011 Neues Verzeichnis
-rw-r--r-- 1 mmgen www 1034 Dec 2 2010 index.html
# cd "Neues Verzeichnis"
# ls -la
total 237856
drwxr-xr-x 4 mmgen www 1536 Jan 26 2011 .
drwxrwx--- 3 mmgen www 512 Jan 26 2011 ..
-rw-r--r-- 1 mmgen www 12326 Jan 26 2011 2.pl
-rw-r--r-- 1 mmgen www 3790 Jan 26 2011 2.png
-rw-r--r-- 1 mmgen www 697711 Jan 26 2011 22.png
-rw-r--r-- 1 mmgen www 164 Jan 26 2011 280539654158.kwm
-rw-r--r-- 1 mmgen www 1608 Jan 26 2011 280539654158.pwm
-rw-r--r-- 1 mmgen www 40882 Jan 26 2011 4.jpg
-rw-r--r-- 1 mmgen www 40505 Jan 26 2011 Banner4.jpg
-rw-r--r-- 1 mmgen www 1280 Jan 26 2011 Command Prompt.lnk
-rw-r--r-- 1 mmgen www 231 Jan 26 2011 Data.txt
-rw-r--r-- 1 mmgen www 900 Jan 26 2011 Daten.rtf
-rw-r--r-- 1 mmgen www 661429 Jan 26 2011 Enterpage.png
-rw-r--r-- 1 mmgen www 126738 Jan 26 2011 Enterpage_for_gamekings_eu_by_Frizzl3.jpg
-rw-r--r-- 1 mmgen www 1616155 Jan 26 2011 FILE0009.rar
-rw-r--r-- 1 mmgen www 952 Jan 26 2011 Fake Webcam (No Preview Mode).lnk
-rw-r--r-- 1 mmgen www 942 Jan 26 2011 Fake Webcam.lnk
-rw-r--r-- 1 mmgen www 1950 Jan 26 2011 FileZilla Client.lnk
-rw-r--r-- 1 mmgen www 1192 Jan 26 2011 Foxit Reader.lnk
-rw-r--r-- 1 mmgen www 10374720 Jan 26 2011 MasterCard-Abrechnung.psd
-rw-r--r-- 1 mmgen www 1889 Jan 26 2011 Mozilla Firefox.lnk
-rw-r--r-- 1 mmgen www 22207 Jan 26 2011 Neues Textdokument.txt
-rw-r--r-- 1 mmgen www 137 Jan 26 2011 PSN2.txt
drwxr-xr-x 2 mmgen www 512 Jan 26 2011 Pack_Pixel_Arrows_01
drwxr-xr-x 2 mmgen www 512 Jan 26 2011 Packstation
-rw-r--r-- 1 mmgen www 38207488 Jan 26 2011 PhotoshopCS4Portable.rar
-rw-r--r-- 1 mmgen www 1139 Jan 26 2011 SQLRIP.lnk
-rw-r--r-- 1 mmgen www 1884 Jan 26 2011 SendBlaster.lnk
-rw-r--r-- 1 mmgen www 2505 Jan 26 2011 Skype.lnk
-rw-r--r-- 1 mmgen www 318050 Jan 26 2011 St0re.jpg
-rw-r--r-- 1 mmgen www 4574766 Jan 26 2011 St0re.psd
-rw-r--r-- 1 mmgen www 679964 Jan 26 2011 St0re2.jpg
-rw-r--r-- 1 mmgen www 24560317 Jan 26 2011 St0reinfo - Shopdesign2.psd
-rw-r--r-- 1 mmgen www 1124 Jan 26 2011 TeamViewer 6.lnk
-rw-r--r-- 1 mmgen www 917 Jan 26 2011 WebMoney Keeper Classic 3.9.3.1.lnk
-rw-r--r-- 1 mmgen www 40467 Jan 26 2011 Werbung.png
-rw-r--r-- 1 mmgen www 3821 Jan 26 2011 btn2.png
-rw-r--r-- 1 mmgen www 68286 Jan 26 2011 btn2.psd
-rw-r--r-- 1 mmgen www 748437 Jan 26 2011 exported data.txt
-rw-r--r-- 1 mmgen www 1179 Jan 26 2011 head.gif
-rw-r--r-- 1 mmgen www 1789314 Jan 26 2011 head.psd
-rw-r--r-- 1 mmgen www 2084608 Jan 26 2011 hinten.png
-rw-r--r-- 1 mmgen www 791 Jan 26 2011 new 2.txt
-rw-r--r-- 1 mmgen www 1133 Jan 26 2011 new 5.txt
-rw-r--r-- 1 mmgen www 528 Jan 26 2011 new 9.txt
-rw-r--r-- 1 mmgen www 3318 Jan 26 2011 passwords.txt
-rw-r--r-- 1 mmgen www 145044 Jan 26 2011 pp.rar
-rw-r--r-- 1 mmgen www 31694808 Jan 26 2011 setup.exe
-rw-r--r-- 1 mmgen www 353781 Jan 26 2011 store.rar
-rw-r--r-- 1 mmgen www 74196 Jan 26 2011 title.gif
-rw-r--r-- 1 mmgen www 76765 Jan 26 2011 title_unreg.gif
-rw-r--r-- 1 mmgen www 2286399 Jan 26 2011 vorne.png
-rw-r--r-- 1 mmgen www 1087 Jan 26 2011 wrub4sts.lnk
#
# cat passwords.txt
j_username=sny@vtxmail.ch
j_password=tino55
pin=tino55
j_username=office@vertec-systems.com
j_password=121066
pin=
j_username=DeineMutter@fickich.net
j_password=Diehuredie
pin=1234dudummestier
j_username=HeyduFotze@magdich.net
j_password=ArschPo
pin=verarschmichnicht
j_username=mybigmouth@web.de
j_password=andrea
pin=1950
j_username=
j_password=
pin=
j_username=Rainer.Keberle@online.de
j_password=finepix4700
pin=
j_username=1746378
j_password=
pin=q206mitte
j_username=1746378
j_password=
pin=q206mitte
j_username=2187452
j_password=
pin=q206mitte
j_username=rababa@whitehouse.gov
j_password=dollar
pin=4711
j_username=170734837
j_password=express12
pin=
j_username=office@otto-stoeckl.com
j_password=
pin=
j_username=170734837
j_password=express
pin=12
j_username=nicole.dargel@gmx.de
j_password=Diving66
pin=
j_username=claudia.schultz@shell.com
j_password=chris1
pin=4449
j_username=claudia.schultz@shell.com
j_password=chris1
pin=4449
j_username=claudia.schultz@shell.com
j_password=chris1
pin=
j_username=734093
j_password=19birgit
pin=7578
j_username=734093
j_password=19nadine
pin=7578
j_username=734093
j_password=birgit
pin=7578
j_username=sabina.mastrogiovanni@gmx.de
j_password=2dU8yU9qY4aC
pin=5942
j_username=sabina.mastrogiovanni@gmx.de
j_password=2dU8yU9qY4aC
pin=5942
j_username=Heldmann_C@web.de
j_password=
pin=6237
j_username=Heldmann_C@web.de
j_password=
pin=6237
j_username=benjamin.egermann@gmail.com
j_password=pcarmy
pin=6039
j_username=sabina.mastrogiovanni@gmx.de
j_password=2dU8yU9qY4aC
pin=5942
j_username=
j_password=
pin=
j_username=danisahne8283@aol.com
j_password=
pin=masenfan
j_username=danisahne8282@aol.com
j_password=masenfan
pin=5556
j_username=danisahne8283@aol.com
j_password=
pin=
j_username=danisahne8283@aol.com
j_password=masenfan
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=
j_password=
pin=
j_username=hannesvw@gmail.com
j_password=
pin=9016
j_username=Thomas.Wunder@hv-s.de
j_password=Mannheim
pin=
j_username=mail@obu-hamburg.de
j_password=obu2009
pin=
j_username=mail@obu-hamburg.de
j_password=2493
pin=
j_username=mail@obu-hamburg.de
j_password=OBU2009
pin=
j_username=31971258
j_password=
pin=2493
j_username=mario.hoefler@web.de
j_password=nutpen10
pin=
j_username=E.Giegler@web.de
j_password=Eschen
pin=5115
j_username=E.Giegler@web.de
j_password=Eschen
pin=5115
j_username=mail@obu-hamburg.de
j_password=obu2009
pin=2394
# cat Data.txt
MySQL
https://91.213.8.13/myadmin/
$host = localhost
$user = Palshop
$pass = u5AunWox
$data = morgen_Palshop
FTP:
91.213.8.26
morgen
2Rysb2Kv
5socks
http://admin.5socks.net/
Morgen
Kzmv7QkvIf
0458-8466-1325-4447 UVszBT <<<< 50?#
# cd ..
# cd ..
# cd st0re.morgen.w2c.ru
# ls -la
total 16
drwxrwx--- 4 mmgen www 512 Dec 2 2010 .
drwxr-x--- 7 mmgen www 512 Jun 11 13:18 ..
drwxr-xr-x 5 mmgen www 512 Dec 2 2010 admin
drwxr-xr-x 8 mmgen www 512 Dec 3 2010 content
# cd admin
# ls -la
total 56
drwxr-xr-x 5 mmgen www 512 Dec 2 2010 .
drwxrwx--- 4 mmgen www 512 Dec 2 2010 ..
-rw-r--r-- 1 mmgen www 8621 Dec 2 2010 DE.lng
-rw-r--r-- 1 mmgen www 1546 Dec 2 2010 admin.php
-rw-r--r-- 1 mmgen www 708 Dec 3 2010 config.php
drwxr-xr-x 3 mmgen www 512 Dec 2 2010 designe
-rw-r--r-- 1 mmgen www 1008 Dec 2 2010 functions.php
drwxr-xr-x 4 mmgen www 512 Dec 2 2010 img
-rw-r--r-- 1 mmgen www 876 Dec 3 2010 index.php
drwxr-xr-x 2 mmgen www 512 Dec 2 2010 pages
# cat config.php
<?php
/***************
/ PalShop /
/ By Paloxus /
/ v 1.5 /
***************/
session_start();
error_reporting(0);
$host = 'localhost'; //mysql host
$user = 'mmgen_shop'; //db user
$pass = '1y2x3c4v'; //db pass
$data = 'mmgen_shop'; //db name
$connect = mysql_connect($host, $user, $pass);
mysql_select_db($data, $connect);
$ajax = '0'; //use ajax [ 0 = no, 1 = yes ]
$guthaben = '€'; // [ $, ? = £, ? = ¥, ? = € ]
$designe = 'design'; // blue oder dark
$session_prefix = '1y2x3c4v'; // DRINGEND ?NDERN! Beispielsweise in eine Buchstaben-Zahlen Kombination
$language = 'DE'; //Sprache des CMS
//Produkt Bilder:
$prod_img = 1; // Produktbilder verwenden 1 = Ja, 2 = Nein
?>
# cd /home/mmgen/st0re.cc
# ls -la
total 1522696
drwxrwx--- 8 mmgen www 1024 Sep 30 16:19 .
drwxr-x--- 7 mmgen www 512 Jun 11 13:18 ..
-rw-r--r-- 1 mmgen www 16950051 Sep 13 01:08 1.mp3
-rw-r--r-- 1 mmgen www 941752 Sep 30 16:19 2.rar
-rw-r--r-- 1 mmgen www 144694 Jan 30 2011 3.jpeg
-rw-r--r-- 1 mmgen www 760708777 Sep 13 00:58 4.rar
-rw-r--r-- 1 mmgen www 30654 Feb 22 2011 Banner.jpg
-rw-r--r-- 1 mmgen www 40505 Feb 7 2011 Banner4.jpg
-rw-r--r-- 1 mmgen www 13347 Feb 3 2011 Jelly.jpg
-rw-r--r-- 1 mmgen www 53943 Feb 3 2011 Kamagra.png
drwxr-xr-x 3 mmgen www 512 Feb 21 2011 Neu
drwxr-xr-x 3 mmgen www 512 Jun 2 18:52 Ref
-rw-r--r-- 1 mmgen www 8967 Jul 17 16:04 Ukash.php
-rw-r--r-- 1 mmgen www 4756 Jan 27 2011 account.php
-rw-r--r-- 1 mmgen www 1532 Jan 27 2011 account_do.php
-rw-r--r-- 1 mmgen www 978 Jan 27 2011 add_basket.php
drwxr-xr-x 7 mmgen www 512 Mar 10 2011 admin
-rw-r--r-- 1 mmgen www 164100 Apr 10 16:10 banner.gif
-rw-r--r-- 1 mmgen www 2398 Jan 28 2011 basket.php
-rw-r--r-- 1 mmgen www 11921 Jul 21 23:44 cashin.php
-rw-r--r-- 1 mmgen www 2278 Apr 9 18:00 category.php
-rw-r--r-- 1 mmgen www 5223 Mar 10 2011 cc_modul.php
-rw-r--r-- 1 mmgen www 2265 Feb 8 2011 checkout.php
-rw-r--r-- 1 mmgen www 1471 Jan 27 2011 error.php
-rw-r--r-- 1 mmgen www 1007 Jan 27 2011 faq.php
-rw-r--r-- 1 mmgen www 1406 Apr 18 12:49 favicon.ico
-rw-r--r-- 1 mmgen www 17594 Jan 27 2011 head.png
drwxr-xr-x 2 mmgen www 512 Aug 21 22:23 ico
-rw-r--r-- 1 mmgen www 7623 Jun 2 19:58 index.php
drwxr-xr-x 2 mmgen www 512 Apr 8 17:22 libs
-rw-r--r-- 1 mmgen www 886 Jan 27 2011 login.php
-rw-r--r-- 1 mmgen www 1177 Jan 27 2011 login_do.php
-rw-r--r-- 1 mmgen www 164 Jan 27 2011 logout.php
-rw-r--r-- 1 mmgen www 1879 Jan 27 2011 product.php
-rw-r--r-- 1 mmgen www 1319 Jan 27 2011 register.php
-rw-r--r-- 1 mmgen www 1827 Jan 27 2011 register_do.php
drwxr-xr-x 3 mmgen www 512 May 17 03:21 style
-rw-r--r-- 1 mmgen www 8011 Apr 13 21:31 support.php
-rw-r--r-- 1 mmgen www 2417 Apr 13 21:31 support_do.php
# cd admin
# ls -la
total 268
drwxr-xr-x 7 mmgen www 512 Mar 10 2011 .
drwxrwx--- 8 mmgen www 1024 Sep 30 16:19 ..
-rw-r--r-- 1 mmgen www 106 May 17 13:31 .htaccess
-rw-r--r-- 1 mmgen www 40 Jun 2 18:50 .htpasswd
-rw-r--r-- 1 mmgen www 8372 Feb 8 2011 category.php
drwxr-xr-x 2 mmgen www 512 Feb 8 2011 css
-rw-r--r-- 1 mmgen www 4599 Jan 27 2011 faq.php
drwxr-xr-x 6 mmgen www 512 Feb 8 2011 images
-rw-r--r-- 1 mmgen www 14618 Mar 10 2011 index.php
-rw-r--r-- 1 mmgen www 8549 Feb 13 2011 items.php
drwxr-xr-x 7 mmgen www 512 Feb 8 2011 js
drwxr-xr-x 3 mmgen www 512 Jan 27 2011 libs
-rw-r--r-- 1 mmgen www 7359 Mar 10 2011 modul.php
-rw-r--r-- 1 mmgen www 9007 Feb 8 2011 news.php
-rw-r--r-- 1 mmgen www 1256 Jan 27 2011 option.php
-rw-r--r-- 1 mmgen www 11703 Feb 8 2011 product.php
drwxr-xr-x 3 mmgen www 512 Jan 27 2011 style
-rw-r--r-- 1 mmgen www 18 Jan 29 2011 test.php
-rw-r--r-- 1 mmgen www 10040 Apr 9 19:18 tickets.php
-rw-r--r-- 1 mmgen www 12164 Feb 8 2011 user.php
-rw-r--r-- 1 mmgen www 17532 Feb 8 2011 voucher.php
# cat .htaccess
AuthType Basic
AuthName "FUCK YOU"
AuthUserFile /home/mmgen/st0re.cc/admin/.htpasswd
Require valid-user
# cat .htpasswd
Admin:$1$5KnX9ENu$aKqzHTLd5HpMqKqgnglUx/
# cd ..
# cd libs
# ls -la
total 56
drwxr-xr-x 2 mmgen www 512 Apr 8 17:22 .
drwxrwx--- 8 mmgen www 1024 Sep 30 16:19 ..
-rw-r--r-- 1 mmgen www 2757 Jan 27 2011 class_bbcode.php
-rw-r--r-- 1 mmgen www 1561 Jan 28 2011 class_user.php
-rw-r--r-- 1 mmgen www 227 Jun 2 18:20 mysql_config.php
-rw-r--r-- 1 mmgen www 1312 Apr 11 00:18 psc_cashin.class.php
-rw-r--r-- 1 mmgen www 4383 Jul 19 21:35 ukash_cashin.class.php
-rw-r--r-- 1 mmgen www 7679 Apr 8 17:21 xxx_psc_cashin.class.php
# cat mysql_config.php
<?php
#####################
# LudenCMS v1 #
# mysql_config.php #
#####################
$mysql_host = "localhost";
$mysql_username = "mmgen_shop";
$mysql_password = "og.39//(kl";
$mysql_database = "mmgen_shop";
?>
So let's check out their SHOP DB
# mysql -u mmgen_shop -D mmgen_shop -p
Enter password:
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 89332
Server version: 5.0.51a-log FreeBSD port: mysql-server-5.0.51a
Type 'help;' or '\h' for help. Type '\c' to clear the buffer.
mysql> SHOW DATABASES;
+--------------------+
| Database |
+--------------------+
| information_schema |
| mmgen_shop |
| test |
+--------------------+
3 rows in set (0.00 sec)
mysql> SHOW TABLES;
+----------------------+
| Tables_in_mmgen_shop |
+----------------------+
| shop_basket |
| shop_ccmodul |
| shop_coupon |
| shop_faq |
| shop_items |
| shop_navigation |
| shop_news |
| shop_options |
| shop_orders |
| shop_products |
| shop_tickets |
| shop_user |
| shop_voucher |
+----------------------+
13 rows in set (0.00 sec)
mysql> # LOLOLO let's rm password info
mysql> UPDATE shop_voucher SET infos = "";
Query OK, 11 rows affected (0.00 sec)
Rows matched: 11 Changed: 11 Warnings: 0
mysql> SELECT * FROM shop_voucher;
+-------+--------+------+---------------------+-------+-------+------------+
| payid | userid | type | code | infos | value | date |
+-------+--------+------+---------------------+-------+-------+------------+
| 1872 | 10522 | 1 | 0905-1066-3280-8205 | | 10 | 2011-09-30 |
| 1873 | 10522 | 1 | 0747-8763-8777-7583 | | 10 | 2011-09-30 |
| 1874 | 10482 | 1 | 0170-8844-2643-6121 | | 10 | 2011-09-30 |
| 1875 | 10161 | 1 | 0662-3887-5897-6736 | | 21 | 2011-09-30 |
| 1877 | 8885 | 1 | 0795-2181-5472-4078 | | 10 | 2011-09-30 |
| 1878 | 10575 | 1 | 0508-5218-3536-7066 | | 10 | 2011-09-30 |
| 1869 | 10568 | 1 | 0725-8889-7048-6149 | | 10 | 2011-09-30 |
| 1870 | 10300 | 1 | 0677-5871-1938-8696 | | 10 | 2011-09-30 |
| 1871 | 10557 | 1 | 0570-2670-2925-4453 | | 100 | 2011-09-30 |
| 1402 | 5356 | 0 | | | 0 | 2011-07-21 |
| 1403 | 9652 | 0 | | | 0 | 2011-07-21 |
+-------+--------+------+---------------------+-------+-------+------------+
11 rows in set (0.00 sec)
mysql> # Now how about we check who actually buys shit
mysql> SELECT * FROM shop_user WHERE credits > 5;
+--------+---------------+----------------------------------+--------------+---------+--------+---+
| userid | username | password | icq | credits | status | x |
+--------+---------------+----------------------------------+--------------+---------+--------+---+
| 6 | J0hn.X3r | dbd570d9cfb7ee0473a7890e641a1f45 | 898437 | 20 | 0 | 0 |
| 189 | Arma | 93f5d2a618cde4160d3eb8f748221f91 | arma@hush.ai | 10 | 0 | 0 |
| 208 | iron.t | 9b630edecc947a5f9e5d4ca59462663f | iron.t@hotbo | 15 | 0 | 0 |
| 514 | ngized | 3dcbb61d6599e4cbe89510c28f324f66 | camora18@web | 10 | 0 | 0 |
| 571 | basha | 1618a9fe1c58f2bedd2fdccefaa6da21 | basha444@web | 9 | 0 | 0 |
| 625 | stefgexp | 55132608a2fb68816bcd3d1caeafc933 | c.k.007@web. | 40 | 0 | 0 |
| 794 | Tanoths | b5042eac66b4bdb8c6e42560f964ed3c | max@lilium-n | 23 | 0 | 0 |
| 804 | TB4ever | 4be5ce67d73fb9b6dda4d91d45387d16 | jjstyler@liv | 7 | 0 | 0 |
| 945 | Sven | 3dd19f98fd4adb12e6cee669341381aa | vb-sveiven@w | 10 | 0 | 0 |
| 973 | binglly | 1a7384005bd77b151e11d58ac79da095 | binglly@web. | 10 | 0 | 0 |
| 1120 | etrax | 4f0cb9262f0a0fdab6c9db4c122024c2 | etrax@secure | 10 | 0 | 0 |
| 1174 | JUMPhil | 40d914022aca12c372304e1cf2e89b88 | 836499 | 9 | 0 | 0 |
| 1195 | m0rpheus | 06aa90cb7e31b1de837cdfd4b837163c | m0rpheusz@o2 | 10 | 0 | 0 |
| 1207 | HansMeier | 44354626326b1cd44cce845e8393ac0d | hansmeierfor | 6 | 0 | 0 |
| 1353 | dr.mouse | b5ba41ed05b0b197546e2a4283af77ae | gucci23@hush | 7 | 0 | 0 |
| 1691 | play | 0c2192030b08d26b06b073eef083548a | b4252353@ugg | 17 | 0 | 0 |
| 1771 | fros | e0e93346794bf614a1f02254d9d8b21e | ritho.ritho@ | 10 | 0 | 0 |
| 1810 | melvyn10 | 41df744f22aa3d7f81983a77e2899829 | melvyn10@081 | 15 | 0 | 0 |
| 1941 | phyntox | 33d42d1eb34ec443704571b0ce34193e | phyntox@goog | 10 | 0 | 0 |
| 1967 | fatal | 592b36d730c592cce0eebe1731d143ec | fatal3x@live | 7 | 0 | 0 |
| 2010 | Dodo | d6d963cedb8dbc1ee57f271e942fbadd | bennibluemch | 7 | 0 | 0 |
| 2301 | Blizzardo | 15b29ffdce66e10527a65bc6d71ad94d | blizzardfert | 10 | 0 | 0 |
| 2415 | ecstasy | 887e1733037e9af10502b8bf923ad202 | Riehm93@onli | 6 | 0 | 0 |
| 2478 | basics | cf7303a964a1682deeb3db90fbe3aeab | admin@mail-s | 6 | 0 | 0 |
| 2630 | Stehlampe | db1527f7ecd3dd38f5de94e38cae2c53 | waswillstdud | 20 | 0 | 0 |
| 2641 | mettwurst | 245a93ee61572bdda20c145374192603 | mettwurst@sa | 8 | 0 | 0 |
| 2677 | Syntax | 068d03ef735f14d75cd78d0ad5e427a3 | psych0tik@li | 13 | 0 | |
| 2696 | seife123 | a2327b1893edf0719cc1f29b8d807957 | azzzze@yahoo | 10 | 0 | 0 |
| 2703 | fam0us | 8f036369a5cd26454949e594fb9e0a2d | ifam0us@hotm | 20 | 0 | 0 |
| 2731 | Borni81 | 8d8e4a0f1607ecb8790bce4d03331749 | bornito@live | 6 | 0 | 0 |
| 2763 | termi | 573bd983f1a92bb6cf8b535919e3a728 | Hans.olaf1@w | 6 | 0 | 0 |
| 2827 | O.M.A. | 6b8d556a2c4e1a17c57c4019d58377f7 | Mueller_Simo | 7 | 0 | 0 |