Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > hacker invade > Content
Hot Articles
The RPC crack invades
Manual injection ASP scr
The local area network i
Invades RedHat the Linux
The SNORT invasion exami
Simulates the intruder t
Invades the chinalinux s
Invades the Linux operat
Invades in the process t
Brief analysis Linux sys
System revelation passwo
The study contains the c
Invades the Turkish webs
Invades the Linux operat
SNORT invasion examinati
Recommend Articles
Manual injection ASP scr
Simulates the intruder t
Invades the chinalinux s
The local area network i
Invades the Linux operat
Invades in the process t
Invades once more using
Invades the WINDOWS serv
PHP pours into the invas
Brief analysis Linux sys
Invades the Turkish webs
Invades RedHat the Linux
Buffer overflow analysis
Invades the Linux system
The study contains the c
New Articles
Invades the swindler to
Shuts off the way which
Teaches you to use the m
The Php website's script
How does the hacker stea
unix webshell jurisdicti
Breaks the IE safe limit
cookies pours into the e
SQL pours into the princ
Invades DVBBS the php of
Cross Iframe Trick:the O
Invades under new techni
Examines the website usi
The KingCMS 5.0 backstag
The invasion seeps the h
Invades the swindler to stand the xuehk.com entire process (chart£©
  Add date: 10/08/2008   Publishing date: 10/08/2008   Hits: 1
Total 3 pages, Current page:1, Jump to page:
 
Recently on-line always saw some people said by a website is “http://www.xuehk.com” the hacker trained the organization to deceive the money, moreover swindled the amount number might many. Therefore, is holding the point of view which rids the people of an evil, prepares to train the organization to this so-called hacker to carry on a seepage. On-line searched some about this website material, knew, this website in little while ago already by human black, if the present must invade once more, the success probability is possibly smaller than, therefore was called several friends to do together.
      Opens “http://www.xuehk.com”, discovered that the website the page nearly is the static state, as shown in Figure 1.
 

     
After reorganizing the good mentality, I decided that obtains first from the master station. Poured into the tool with Arab League D and the bright boy to carry on one time have poured into the spot to sweep the surface, finally the idle work returned, but in this was I anticipates the matter. Then, I have changed the mentality, spent more than 10 minutes to collect uneven www.xuehk.com's all catalogs, the table of contents has been as follows:
http://www.xuehk.com/
http://www.xuehk.com/book/
http://www.xuehk.com/vip/
http://www.xuehk.com/pojie/
http://www.xuehk.com/js/
http://www.xuehk.com/xz/
http://www.xuehk.com/zs/
http://www.xuehk.com/shop/
http://www.xuehk.com/yewu/
http://www.xuehk.com/zs/photo/xiao/
http://www.xuehk.com/zs/photo/da/
http://www.xuehk.com/zs/photo/
I use the website hunter and the bright boy separately pour into tool's batch scanning function to carry on the backstage scanning to these tables of contents, then I also use I have strengthened NBSI sweeping one by one, the result still am the idle work return. Looked like obtains from the master station is possibly does not have nearly, thereupon started the marginal notes. Opens “http://www.114best.com/ip/” to carry on the marginal notes to xuehk to inquire, discovered that on the server has many websites, was very quick I to find one to have loophole's website, but if, because the server installed quite strongly has killed softly, therefore I have only attained a few words webshell, shown in Figure 2.



Loses after webshell for the friend, I used lake2 a few words wooden horse client side to examine the server information, webshell was at the website root directory was “F:\wwwroot \ **** \ wwwroot \”, **** was the website domain name segmentum anterius, therefore, I extrapolated that xuehk.com the website root directory was “F:\wwwroot\xuehk \ wwwroot \”, therefore I attempted immediately skip to this table of contents, but did not have the jurisdiction. By now I thought of asp.net the wooden horse jurisdiction possibly compared to the asp high spot, but after uploading good lake2 asp.net a few words wooden horse, actually discovered that the server does not support asp.net.
Then examined the end message, discovered the port was changed 60015. Examined the third party software's information, the serv-u way could not find finally, moreover the default password changed, on the server has not installed PcanyWhere and Radmin, MSSQL and Mysql has not installed, has looked again carefully, also has not discovered anything to be possible the use third party software, moreover server's jurisdiction establishes very much dies, including “starts -> the procedure” not to be able to open.

 
Other pages: : 1 * 2 * 3 * Next>>
Prev:Shuts off the way which from the registry all hackers invade

Comment:

Category: Home > hacker invade
Home