Devilzc0de Backdoor Scanner

1. <?php
2. /* #################################################################################
3. # [+] File Name : Devilzc0de Backdoor Scanner
4. # [+] Author : peri.carding
5. # [+] Thanks goes to :
6. # [+] Sockaddr_in, shreder.g1rl, stupiditty
7. ################################################################################## */
8. putenv("TZ=Europe/Britania");
9. ?>
10. <head>
11. <title>Devilzc0de Backdoor Scan</title>
12. <script language="JavaScript" type="text/JavaScript">
13. <!--
14. function MM_openBrWindow(theURL,winName,features) { //v2.0
15. window.open(theURL,winName,features)
16. }
17. //-->
18. </script>
19. <style type="text/css">
20. <!--
21. body {
22. font-family: Tahoma;
23. color: #CCCCCC;
24. background-color: #000000;
25. font-size: 11px;
26. font-weight: bold;
27. }
28. .single{
29. border: 1px solid #00ff00;
30. padding: 5px;
31. }
32. a:visited {
33. color: #33333;
34. font-size: 11px;
35. font-family: tahoma;
36. text-decoration: none;
37. }
38.  
39. a:hover {
40. color: #ccff00;
41. text-decoration: none;
42. }
43. .abunai {
44. color: red;
45. text-decoration: none;
46. }
47. .xxx {
48. color: blue;
49. text-decoration: none;
50. }
51. a {
52. color: #ccff99;
53. font-size: 11px;
54. font-family: tahoma;
55. text-decoration: none;
56. }
57. td {
58. border-style: solid;
59. border-width: 0 0 1px 0;
60. font-size:11px; font-family:Tahoma,Verdana,Arial; color:#ccff99;
61. }
62. .me {
63. font-size:11px; font-family:Tahoma,Verdana,Arial; color:#ccff99;
64. border: 0px;
65. padding: 5px;
66. }
67. .isi:disabled{
68. padding: 2px;
69. border:1px solid #333333;
70. font-family: Tahoma;
71. color: #333333;
72. background-color: #000000;
73. font-size: 10px;
74. font-weight: bold;
75. }
76. .isi{
77. padding: 2px;
78. border:1px solid #666666;
79. font-family: Tahoma;
80. color: #ccff99;
81. background-color: #666666;
82. font-size: 10px;
83. font-weight: bold;
84. }
85. -->
86. </style>
87. <style type="text/css">
88. #patch {position:absolute; height:1; width:1px; top:0; left:0;}
89. </style>
90. </head>
91. <body>
92. <center><br><font color="#339900" size="14" face="arial">Backdoor Scanner</font></center><br>
93. <?php
94. if(isset($_REQUEST['edit']) && $_REQUEST['edit']=='file'){
95. if(isset($_POST['yes'])){
96. $filename = $_GET['file'];
97. echo "<br><br><br><font color=red size=3><b><center>".$filename." deleted...</b></font><br><br><br><br><br><br><br>";
98. unlink($filename);
99. echo "<META HTTP-EQUIV=Refresh CONTENT=\"2; URL=javascript:window.close();\">";
100. }else{
101. if($_POST['update']) {
102. $filename = $_POST['file'];
103. if(is_writable($filename)) {
104. $handle = fopen($filename, "w+");
105. $isi=$_POST['content'];
106. fwrite($handle, stripslashes($isi));
107. fclose($handle);
108. $stat= "<center><strong>edited successfully<br>";
109. } else {
110. $stat= "<center><font color=red><strong>Error! File may not be writable.</font></center>";
111. }
112. }
113. if($_POST['close']) {
114. echo "<META HTTP-EQUIV=Refresh CONTENT=\"0; URL=javascript:window.close();\">";
115. }
116. $filename = $_GET['file'];
117. if (file_exists($filename)){
118. $vuln = $_GET['bug'];
119. $handle = fopen($filename, "r");
120. $contents = fread($handle, filesize($filename));
121. ?>
122. <center>
123. <table>
124. <tr><td align="left" class="me"><strong><?=$filename?>&nbsp;&nbsp;>> Contains :&nbsp;<?=$vuln?></strong></td></tr>
125. <tr><td class="me">
126. <form method="post" action="">
127. <input type="hidden" name="file" value="<?=$filename?>">
128. <textarea name="content" cols="80" rows="15"><?=htmlspecialchars($contents)?></textarea><br>
129. </td></tr>
130. <tr><td align="center" class="me">
131. <?php
132. if($_POST['delete']) {
133. echo "Are you sure to delete ".$filename." ?";
134. ?>
135. <tr><td align="center" class="me">
136. <input type="submit" name="yes" value=" Y E S ">
137. <input type="submit" name="no" value=" N O ">
138. </td></tr>
139. <?php
140. }else{
141. echo $stat;
142. ?>
143. </td></tr>
144. <tr><td align="right" class="me">
145. <input type="submit" name="close" value=" C l o s e ">
146. <input type="submit" name="delete" value=" D e l e t e ">
147. <input type="submit" name="update" value=" S a v e ">
148. </td></tr>
149. <?php
150. }
151. fclose($handle);
152. ?>
153. </table>
154. </form>
155. <?php
156. }else{
157. echo "<br><br><br><font color=red size=3><b><center>".$filename." not exist...</b></font><br><br><br><br><br><br><br>";
158. echo "<META HTTP-EQUIV=Refresh CONTENT=\"4; URL=javascript:window.close();\">";
159. }
160. ?>
161. </center>
162. <?php
163. }
164. }elseif(isset($_POST['Submit'])){
165. $ceks = array('base64_decode','system','passthru','popen','exec','shell_exec','eval','move_uploaded_file');
166. foreach($ceks as $ceker){
167. if($_POST[$ceker]<>""){
168. $six.=$_POST[$ceker].".";
169. }
170. }
171. $cek = explode('.', $six);
172. function ListFiles($dir) {
173. if($dh = opendir($dir)) {
174. $files = Array();
175. $inner_files = Array();
176. while($file = readdir($dh)) {
177. if($file != "." && $file != ".." && $file[0] != '.') {
178. if(is_dir($dir . "/" . $file)) {
179. $inner_files = ListFiles($dir . "/" . $file);
180. if(is_array($inner_files)) $files = array_merge($files, $inner_files);
181. }else{
182. array_push($files, $dir . "/" . $file);
183. }
184. }
185. }
186. closedir($dh);
187. return $files;
188. }
189. }
190. $target=$_SERVER['DOCUMENT_ROOT'];
191. ?>
192. <center>
193. <table border="0" width="90%" cellpadding="5">
194. <tr>
195. <td class="me" align="right" width="30"><b>No</b></td>
196. <td class="me" align="center" width="105"><b> T y p e </b></td>
197. <td class="me" align="center"><b> F i l e&nbsp;&nbsp;L o c a t i o n </b></td>
198. <td class="me" align="center" width="150"><b> L a s t&nbsp;&nbsp;E d i t </b></td>
199. <td class="me" align="right" width="80"><b>F i l e&nbsp;&nbsp;S i z e</b></td>
200. </tr><br>
201. <?php
202. foreach (ListFiles($target) as $key=>$file){
203. $nFile = substr($file, -4, 4);
204. if($nFile == ".php"){
205. if($file==$_SERVER['DOCUMENT_ROOT'].$_SERVER['PHP_SELF']){
206. }else{
207. $ops = @file_get_contents($file);
208. $op=strtolower($ops);
209. $arr = array('c99_buff_prepare' => 'c 9 9',
210. 'abcr57' => 'r 5 7');
211. $sis=0;
212. if($op)
213. $size=filesize($file);
214. $last_modified = filemtime($file);
215. $last=date("M-d-Y H:i", $last_modified);
216. foreach($arr as $key => $val) {
217. if(@preg_match("/$key/", $op)) {
218. $sis=1;
219. $i++;
220. ?>
221. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
222. <td align="right"><font color="red"><blink><?=$i?></blink></font></td>
223. <td align="center"><font color="red"><blink><?=$val?></blink></font></td>
224. <td align="left"><blink>
225. <a href="#" class="abunai" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$val?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
226. </blink></td>
227. <td align="center"><font color="red"><blink><?=$last?> GMT+9</blink></font></td>
228. <td align="right"><font color="red"><blink><?=$size?> byte</blink></font></td>
229. <script language="javascript">
230. var bgcolor = "transparent";
231. var change_color = "#444444"
232. function mover(aa) {
233. aa.style.backgroundColor = change_color;
234. }
235. function mout(aa) {
236. aa.style.backgroundColor = bgcolor;
237. }
238. </script>
239. </tr>
240. <?php
241. }
242. }
243. if($sis<>"1"){
244. if((@preg_match("/system\((.*?)\)/", $op))&&(@preg_match("/<pre>/", $op))&&(@preg_match("/empty\((.*?)\)/", $op))) {
245. $sis="2";
246. $i++;
247. $val="hidden shell";
248. ?>
249. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
250. <td align="right"><font color="blue"><?=$i?></font></td>
251. <td align="center"><font color="blue"><?=$val?></font></td>
252. <td align="left">
253. <a href="#" class="xxx" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$val?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
254. </td>
255. <td align="center"><font color="blue"><?=$last?> GMT+9</font></td>
256. <td align="right"><font color="blue"><?=$size?> byte</font></td>
257. <script language="javascript">
258. var bgcolor = "transparent";
259. var change_color = "#444444"
260. function mover(aa) {
261. aa.style.backgroundColor = change_color;
262. }
263. function mout(aa) {
264. aa.style.backgroundColor = bgcolor;
265. }
266. </script>
267. </tr>
268. <?php
269. }
270. }
271. if($sis=="0"){
272. foreach($cek as $bugs) {
273. if ($bugs<>""){
274. if(@preg_match("/$bugs\((.*?)\)/", $op)) {
275. $i++;
276. ?>
277. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
278. <td align="right"><?=$i?></td>
279. <td align="center"><?=$bugs?></td>
280. <td align="left">
281. <a href="#" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$bugs?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
282. </td>
283. <td align="center"><?=$last?> GMT+9</td>
284. <td align="right"><?=$size?> byte</td>
285. <script language="javascript">
286. var bgcolor = "transparent";
287. var change_color = "#444444"
288. function mover(aa) {
289. aa.style.backgroundColor = change_color;
290. }
291. function mout(aa) {
292. aa.style.backgroundColor = bgcolor;
293. }
294. </script>
295. </tr>
296. <?php
297. }
298. }
299. }
300. }
301. if($_POST['textV']<>""){
302. $text=$_POST['textV'];
303. if(@preg_match("/$text/", $op)) {
304. $i++;
305. ?>
306. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
307. <td align="right"><?=$i?></td>
308. <td align="center"><?=$text?></td>
309. <td align="left">
310. <a href="#" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$text?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
311. </td>
312. <td align="center"><?=$last?> GMT+9</td>
313. <td align="right"><?=$size?> byte</td>
314. <script language="javascript">
315. var bgcolor = "transparent";
316. var change_color = "#444444"
317. function mover(aa) {
318. aa.style.backgroundColor = change_color;
319. }
320. function mout(aa) {
321. aa.style.backgroundColor = bgcolor;
322. }
323. </script>
324. </tr>
325. <?php
326. }
327.  
328.  
329. }
330. }
331. }
332. }
333. if($i==0){
334. foreach($cek as $bugs) {
335. if ($bugs<>""){
336. $x++;
337. ?>
338. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
339. <td align="right"><?=$x?></td>
340. <td align="center"><?=$bugs?></td>
341. <td align="center"> not exist </td>
342. <td align="center"> no record </td>
343. <td align="right"> -&nbsp;&nbsp;&nbsp;&nbsp;byte </td>
344. </tr>
345. <?php
346. }
347. }
348. }
349. ?>
350. </table>
351. <?php
352. }else{
353. $find = array('default','base64_decode','system','passthru','popen','exec','shell_exec','eval','move_uploaded_file');
354. ?>
355. <form id="fCheck" name="fCheck" method="post" action="" autocomplete="off">
356. <center>
357. <table class="single" width="400" border="1" cellpadding="10">
358. <tr><td class="me"><center>
359. <b>S e l e c t &nbsp;&nbsp;s c a n&nbsp;&nbsp;t y p e :</b><br>
360. <table class="me" width="200">
361. <tr><td class="me">
362. <script language="javascript">
363. function cekKlik(){
364. if (!document.fCheck.cekV.checked)
365. document.fCheck.textV.disabled=true;
366. else
367. document.fCheck.textV.disabled=false;
368. if(document.fCheck.cekV.checked){
369. om = om + 1;
370. }else{
371. if(om > 0 ){
372. om = om - 1;
373. }else{
374. om = om;
375. }
376. }
377. if(om != 0){
378. document.fCheck.Submit.disabled=false;
379. }else{
380. document.fCheck.Submit.disabled=true;
381. }
382. }
383. </script>
384. <?php
385. //dari sini
386. foreach($find as $bug) {
387. ?>
388. <script language="javascript">
389. var om = 0;
390. function checkValue<?=$bug?>(){
391. if(document.fCheck.<?=$bug?>.checked){
392. om = om + 1;
393. }else{
394. if(om > 0 ){
395. om = om - 1;
396. }else{
397. om = om;
398. }
399. }
400. if(om != 0){
401. document.fCheck.Submit.disabled=false;
402. }else{
403. document.fCheck.Submit.disabled=true;
404. }
405. }
406. </script>
407. <input onclick="checkValue<?=$bug?>();" name="<?=$bug?>" type="checkbox" id="<?=$bug?>" value="<?=$bug?>" />&nbsp;<?=$bug?><br>
408. <?php
409. }
410. ?>
411. <input name="cekV" type="checkbox" onClick="cekKlik();" id="cekV" value="cekV">
412. <input class="isi" disabled="disabled" name="textV" value="other key word" onFocus="this.select()" type="text" id="textV">
413. <br><br>
414. <input type="hidden" name="asal" value="abcd">
415. <input disabled="disabled" type="submit" name="Submit" value=" S t a r t&nbsp;&nbsp;S c a n " />
416. </td></tr>
417. </table>
418. </td></tr></table>
419. </form>
420. <?
421. }
422. ?>
423. <br><br><hr width="300">
424. <center>
425. Backdoor Scanner BDS &copy peri.carding 2011
426. <br><br>
427. </body>