MIIT ticketing website www.12306.cm

Today, I read the news and found that 12306 of the false websites www.12306.cm are prepared to make it harmonious.

Go to www.12306.cm

It seems that all the connections are directed to 12306.cn. it turns out to be fraudulent traffic, so it is difficult to ignore it.

After reading it, it seems that there are just a few pages that are not used. google does not use any information after reading it.

Side station,

Find an enterprise station and a good-looking system. It is easy to win the background and pass the horse

WS is not supported, ASPX is not supported, and 3306 is enabled, so MYSQL is switched to Elevation of Privilege.

Based on the PHPinfo information, find the MYSQL path, D: \ mysql \ data \ mysql

I thought it was quite smooth .. The response shell cannot be executed.

Download USER. MYD cracking

As mentioned above, registry hijacking and download are supported. We have tried it here and downloaded it to the startup Item.

Remote Control Trojan, script, VBS,

After the tool is restarted, it cannot run, sethc is not started, and magnifier hijacking fails. Helpless...

If you get the target path, you can also download the Trojan horse to the target. The train of thought is switched to the main battle again, and various tools are scanned to obtain

 

Use the download function www.2cto.com

Downloaded successfully

The article was written later, because there was no scanning second at the beginning

The probe script has been disconnected for several days, and ZEND is used to rebound.

Mongoshell, found that there is no anti-virus, it is very tangled, upload EXP overflow, and so on, it cannot run, here not

Write them one by one. Do not spray