Discuz!官方免费开源建站系统

 找回密码
 立即注册

QQ登录

只需一步,快速开始

搜索

[不是BUG] 聚宝“小子傻傻的”

[复制链接]
HuaiBoY 发表于 2009-6-3 19:06:04 | 显示全部楼层 |阅读模式
本帖最后由 茄子 于 2009-6-5 10:47 编辑

举报恶意插件
https://discuz.dismall.com/thread-1316222-1-1.html


妈的我装了后整站的空间链接全部跳转到http://www.jjcute.com/
 楼主| HuaiBoY 发表于 2009-6-3 19:07:03 | 显示全部楼层
急,求解决方法,现在在全部覆盖官方原文件!

我的站:www.ihongren.com
请官方来人看下!!!
回复

使用道具 举报

 楼主| HuaiBoY 发表于 2009-6-3 19:11:54 | 显示全部楼层
解决了,用官方的UCH source文件夹里的文件全部覆盖下!
请官方及时清理该恶意插件,以免有更多的无辜受害者。

举报恶意插件
https://discuz.dismall.com/thread-1316222-1-1.html
回复

使用道具 举报

 楼主| HuaiBoY 发表于 2009-6-3 19:14:34 | 显示全部楼层
恶意代码安装文件中的内容【请官方工作人员帮忙看下,都有哪些破坏,和窃取了我的资料,我感觉数据库的信息被窃取了】

【下面是该恶意插件,执行文件的全部代码】

  1. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  2. <html xmlns="http://www.w3.org/1999/xhtml">
  3. <head>
  4. <meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
  5. <title>安装/升级文件</title>
  6. </head>
  7. <body>
  8. <?php
  9. /*
  10. [UCenter Home] (C) 2007-2008 Comsenz Inc.
  11. $Id: index_install.php 10953 2009-01-12 02:55:37Z liguode $
  12. */
  13. include_once('./common.php');

  14. if($_SGLOBAL['db']->query("CREATE TABLE IF NOT EXISTS `".tname('musicbox')."` (`songid` mediumint(8) unsigned NOT NULL auto_increment,`albumid` mediumint(8) unsigned NOT NULL default '0',`userid` mediumint(8) unsigned NOT NULL,`usersay` text character set utf8,`songname` varchar(255) character set utf8 NOT NULL,`label` varchar(255) character set utf8 default NULL,`singer` varchar(255) character set utf8 default NULL,`Categories` varchar(255) character set utf8 default NULL,`lang` int(4) unsigned NOT NULL,`songurl` varchar(255) character set utf8 NOT NULL,`lyric` text character set utf8,`commenduser` varchar(255) character set utf8 default NULL,`collectionuser` varchar(255) character set utf8 default NULL,`commendtotal` int(8) unsigned NOT NULL default '0',`playtotal` int(8) unsigned NOT NULL default '0',`upload` int(4) unsigned NOT NULL default '1',`down` int(4) unsigned default '0',`comment` varchar(255) character set utf8 default NULL,`dataline` int(10) unsigned NOT NULL,PRIMARY KEY  (`songid`))")){
  15.   echo "数据表<span style='color:#FF0000'>".tname('musicbox')."</span>安装成功!<br /><br />";
  16. }
  17. if($_SGLOBAL['db']->query("CREATE TABLE IF NOT EXISTS `".tname('musicbox_album')."` (`albumid` mediumint(8) unsigned NOT NULL auto_increment,`userid` mediumint(8) unsigned NOT NULL,`albumname` varchar(255) character set utf8 NOT NULL,`albumfengmian` varchar(255) character set utf8 NOT NULL,`dataline` int(10) unsigned NOT NULL,PRIMARY KEY  (`albumid`))")){
  18.   echo "数据表<span style='color:#FF0000'>".tname('musicbox_album')."</span>安装成功!<br /><br />";
  19. }
  20. if($_SGLOBAL['db']->query("CREATE TABLE IF NOT EXISTS `".tname('musicbox_mybox')."` (`id` mediumint(8) unsigned NOT NULL auto_increment,`boxuserid` mediumint(8) unsigned NOT NULL,`boxsongid` mediumint(8) unsigned NOT NULL,`boxorder` int(4) unsigned NOT NULL default '0',`page` int(4) unsigned NOT NULL default '0',PRIMARY KEY  (`id`))")){
  21.   echo "数据表<span style='color:#FF0000'>".tname('musicbox_mybox')."</span>安装成功!<br /><br />";
  22. }
  23. if($_SGLOBAL['db']->query("CREATE TABLE IF NOT EXISTS `".tname('musicbox_pingfen')."` (`id` mediumint(8) unsigned NOT NULL auto_increment,`songid` mediumint(8) unsigned NOT NULL,`puserid` mediumint(8) unsigned NOT NULL,`mark` int(4) unsigned NOT NULL,`dateline` int(10) unsigned NOT NULL,PRIMARY KEY  (`id`))")){
  24.   echo "数据表<span style='color:#FF0000'>".tname('musicbox_pingfen')."</span>安装成功!<br /><br />";
  25. }
  26. if($_SGLOBAL['db']->query("CREATE TABLE IF NOT EXISTS `".tname('musicbox_pinglun')."` (`id` mediumint(8) unsigned NOT NULL auto_increment,`songid` mediumint(8) unsigned NOT NULL,`puserid` mediumint(8) unsigned NOT NULL,`pltext` text character set utf8,`dateline` int(10) unsigned NOT NULL,PRIMARY KEY  (`id`))")){
  27.   echo "数据表<span style='color:#FF0000'>".tname('musicbox_pinglun')."</span>安装成功!<br /><br />";
  28. }
  29. if($_SGLOBAL['db']->query("CREATE TABLE IF NOT EXISTS `".tname('musicbox_disk')."` (`diskid` mediumint(8) unsigned NOT NULL auto_increment,`userid` mediumint(8) unsigned NOT NULL,`fileurl` varchar(255) character set utf8 NOT NULL,`filename` varchar(255) character set utf8 NOT NULL,`filedescription` varchar(255) character set utf8 default NULL,`dateline` int(10) unsigned NOT NULL,PRIMARY KEY  (`diskid`))")){
  30.   echo "数据表<span style='color:#FF0000'>".tname('musicbox_disk')."</span>安装成功!<br /><br />";
  31. }

  32. $configfile = S_ROOT.'./space.php';
  33. $configcontent = sreadfile($configfile);
  34. if(!strpos($configcontent,"'musicbox',")){
  35.   $configcontent = str_replace("'pm',","'musicbox','pm',",$configcontent);
  36.   $fp111 = fopen($configfile, 'w');
  37.   fwrite($fp111, trim($configcontent));
  38.   fclose($fp111);
  39.   
  40. }
  41. fclose($fp111);
  42. echo "文件<span style='color:#FF0000'>space.php</span>已修改成功<br />";

  43. $configfile = S_ROOT.'./do.php';
  44. $configcontent = sreadfile($configfile);
  45. if(!strpos($configcontent,"'ajaxm',")){
  46.   $configcontent = str_replace("'ajax',","'ajaxm','ajax',",$configcontent);
  47.   $fp111 = fopen($configfile, 'w');
  48.   fwrite($fp111, trim($configcontent));
  49.   fclose($fp111);
  50. }
  51. fclose($fp111);
  52. echo "文件<span style='color:#FF0000'>do.php</span>已修改成功<br />";

  53. $configfile = S_ROOT.'./template/default/header.htm';
  54. $configcontent = sreadfile($configfile);
  55. if(!strpos($configcontent,'<script type="text/javascript" src="js/SuggestFramework.js"></script>')){
  56.   $configcontent = str_replace('<script language="javascript" type="text/javascript" src="source/script_manage.js"></script>','<script language="javascript" type="text/javascript" src="source/script_manage.js"></script>'.chr(10).'<script type="text/javascript" src="js/SuggestFramework.js"></script>'.chr(10).'<script type="text/javascript">window.onload = initializeSuggestFramework;</script>',$configcontent);
  57.   $fp111 = fopen($configfile, 'w');
  58.   fwrite($fp111, trim($configcontent));
  59.   fclose($fp111);
  60. }
  61. fclose($fp111);
  62. echo "文件<span style='color:#FF0000'>header.htm</span>已修改成功<br />";


  63. $configfile = S_ROOT.'./template/default/space_index.htm';
  64. $configcontent = sreadfile($configfile);
  65. if(!strpos($configcontent,"cmp.swf?src=$spacemusicbg[songurl]")){
  66.   $configcontent = str_replace('<img src="<!--{avatar($space[uid],big)}-->" alt="{$_SN[$space[uid]]}" />','<img src="<!--{avatar($space[uid],big)}-->" alt="{$_SN[$space[uid]]}" />'.chr(10).'<!--{if !empty($spacemusicbg) && $_SGLOBAL[supe_uid]}-->'.chr(10).'<div>'.chr(10).'<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=9,0,124,0" width="100%" height="24" id="cmp">'.chr(10).'<param name="movie" value="cmp.swf?src=$spacemusicbg[songurl]&skin_src=mini/mini02.zip&auto_play=1&play_mode=1&context_menu=0&show_tip=0&plugins_disabled=1&c.swf" />'.chr(10).'<param name="quality" value="high" />'.chr(10).'<param name="allowFullScreen" value="true" />'.chr(10).'<param name="allowScriptAccess" value="always" />'.chr(10).'<param name="wmode" value="Transparent"/>'.chr(10).'<embed pluginspage="http://www.adobe.com/shockwave/download/download.cgi?P1_Prod_Version=ShockwaveFlash" type="application/x-shockwave-flash" width="100%" height="24" name="cmp" src="cmp.swf?src=$spacemusicbg[songurl]&skin_src=mini/mini02.zip&auto_play=1&play_mode=1&context_menu=0&show_tip=0&plugins_disabled=1&c.swf" quality="high"  allowfullscreen="true" allowscriptaccess="always" wmode="Transparent" ></embed>'.chr(10).'</object>'.chr(10).'</div>'.chr(10).'<<!--{if !empty($spacemusicbg[albumfengmian])}--><a href="space.php?uid=$spacemusicbg[userid]&do=musicbox&mview=malbum&albumid=$spacemusicbg[albumid]&userspace=$spacemusicbg[userid]" target="_blank">$spacemusicbg[albumname]</a><!--{else}--><a href="space.php?uid=$spacemusicbg[userid]&do=musicbox&mview=malbum&albumid=true&userspace=$spacemusicbg[userid]" target="_blank">默认专辑</a><!--{/if}-->>专辑<br /><!--{if !empty($spacemusicbg[albumfengmian])}--><a href="space.php?uid=$spacemusicbg[userid]&do=musicbox&mview=malbum&albumid=$spacemusicbg[albumid]&userspace=$spacemusicbg[userid]" target="_blank"><img src="$spacemusicbg[albumfengmian]" style="border:solid 1px #A19D9A;" /></a><!--{/if}-->'.chr(10).'<!--{/if}-->',$configcontent);
  67.   $fp111 = fopen($configfile, 'w');
  68.   fwrite($fp111, trim($configcontent));
  69.   fclose($fp111);
  70. }
  71. fclose($fp111);
  72. echo "文件<span style='color:#FF0000'>space_index.htm</span>已修改成功<br />";


  73. $configfile = S_ROOT.'./source/space_index.php';
  74. $configcontent = sreadfile($configfile);
  75. if(!strpos($configcontent,"source/function_music.php")){
  76.   $configcontent = str_replace("\$_SGLOBAL['space_theme'] = \$space['theme'];","include_once(S_ROOT.'./source/function_music.php');".chr(10)."\$spacemusicbg = array();".chr(10)."\$spacemusicbg = getmusicbg(\$space['uid']);".chr(10)."\$_SGLOBAL['space_theme'] = \$space['theme'];",$configcontent);
  77.   $fp111 = fopen($configfile, 'w');
  78.   fwrite($fp111, trim($configcontent));
  79.   fclose($fp111);
  80. }
  81. fclose($fp111);
  82. echo "文件<span style='color:#FF0000'>space_index.php</span>已修改成功<br />";


  83. $configfile = S_ROOT.'./config.php';
  84. $configcontent = sreadfile($configfile);
  85. //if(!strpos($configcontent,"music_upload")){
  86.   $configcontent = preg_replace("/(?:tplrefresh)([\w\W]*?)mysql/is","tplrefresh']  = 0;".chr(10).chr(10).chr(10)."\$_SC['music_upload'] = '1';".chr(10)."\$_SC['music_link'] = '1';".chr(10)."\$_SC['music_integralset'] = '1';".chr(10)."\$_SC['music_i_upload'] = '5';".chr(10)."\$_SC['music_i_upload_del'] = '-5';".chr(10)."\$_SC['music_i_addlink'] = '3';".chr(10)."\$_SC['music_i_addlink_del'] = '-3';".chr(10)."\$_SC['music_i_addzj'] = '2';".chr(10)."\$_SC['music_i_addzj_del'] = '-1';".chr(10)."\$_SC['music_i_pingfen'] = '1';".chr(10)."\$_SC['music_i_pinglun'] = '1';".chr(10)."\$_SC['music_i_pinglun_del'] = '-3';".chr(10)."\$_SC['music_i_share'] = '4';".chr(10)."\$_SC['music_play_auto'] = '0';".chr(10)."\$_SC['music_down_auto'] = '0';".chr(10)."\$_SC['music_palyer_style'] = '0';".chr(10)."\$_SC['music_i_disk'] = '1';".chr(10).chr(10).chr(10)."define('UC_CONNECT', 'mysql",$configcontent);
  87.   //$configcontent = str_replace("\$_SC['tplrefresh']  = 0;","\$_SC['tplrefresh']  = 0;".chr(10).chr(10)."\$_SC['music_upload'] = '1';".chr(10)."\$_SC['music_link'] = '1';".chr(10)."\$_SC['music_integralset'] = '1';".chr(10)."\$_SC['music_i_upload'] = '5';".chr(10)."\$_SC['music_i_upload_del'] = '-5';".chr(10)."\$_SC['music_i_addlink'] = '3';".chr(10)."\$_SC['music_i_addlink_del'] = '-3';".chr(10)."\$_SC['music_i_addzj'] = '2';".chr(10)."\$_SC['music_i_addzj_del'] = '-1';".chr(10)."\$_SC['music_i_pingfen'] = '1';".chr(10)."\$_SC['music_i_pinglun'] = '1';".chr(10)."\$_SC['music_i_pinglun_del'] = '-3';".chr(10)."\$_SC['music_i_share'] = '4';".chr(10)."\$_SC['music_play_auto'] = '0';".chr(10)."\$_SC['music_down_auto'] = '0';".chr(10)."\$_SC['music_palyer_style'] = '0';".chr(10)."\$_SC['music_i_disk'] = '1';",$configcontent);
  88.   $fp111 = fopen($configfile, 'w');
  89.   fwrite($fp111, trim($configcontent));
  90.   fclose($fp111);
  91. //}
  92. fclose($fp111);
  93. echo "文件<span style='color:#FF0000'>config.php</span>已配置成功<br />";


  94. function change_match_string($str){
  95.   $old=array("/","$");
  96.   $new=array("\/","\$");
  97.   $str=str_replace($old,$new,$str);
  98.   return $str;
  99. }
  100.          
  101. ?>
  102. </body>
  103. </html>
复制代码
回复

使用道具 举报

pc77maikongjian 发表于 2009-6-4 09:53:55 | 显示全部楼层
看看先,感谢楼主的反馈哦
回复

使用道具 举报

幸福摩天轮 发表于 2009-6-4 16:25:28 | 显示全部楼层
正在处理。谢谢lz反馈
回复

使用道具 举报

幸福摩天轮 发表于 2009-6-4 16:34:12 | 显示全部楼层
UCHOME 中刚开发一款音乐应用:
http://uchome.developer.manyou.c ... ;my_suffix=Lw%3D%3D
回复

使用道具 举报

幸福摩天轮 发表于 2009-6-4 16:35:24 | 显示全部楼层
UCHOME 中刚开发一款音乐应用:
http://uchome.developer.manyou.c ... ;my_suffix=Lw%3D%3D
回复

使用道具 举报

bysheng 发表于 2009-8-31 21:05:55 | 显示全部楼层
恩  支持 啊
回复

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

手机版|小黑屋|Discuz! 官方站 ( 皖ICP备16010102号 )star

GMT+8, 2024-11-16 12:26 , Processed in 0.036305 second(s), 3 queries , Gzip On, Redis On.

Powered by Discuz! X3.4

Copyright © 2001-2023, Tencent Cloud.

快速回复 返回顶部 返回列表