AK-74 Security Team Web Shell

.:: :[ AK-74 Security Team Web-shell ]: ::.

Редактирование файла

<?php
if ( trim($_POST['email']) != '' ) {
	
	include("include/config.php");
	include("include/connect.php");
	include("include/function.php");
		
	//$facebook_link = str_replace('https://', '', trim($_POST['facebook_link']));
	//$facebook_link = str_replace('http://', '', $facebook_link);
	$facebook_link = '';
	$sql = "
		SELECT member_id, active_status, last_login, email
		FROM member
		WHERE email = '" . $_POST['email'] . "'
	";
	$query = sql_query($sql);
	$rec = sql_fetch_array($query);
	
	if ($rec['member_id'] != '') {
	
			if ($rec['active_status'] == 0) {
				
				echo 'error::аё—а№€аёІаё™аёўаё±аё‡а№„аёЎа№€а№„аё”а№‰аёўаё·аё™аёўаё±аё™аёЃаёІаёЈаёЄаёЎаё±аё„аёЈаёЄаёЎаёІаёЉаёґаёЃ аёЈаё°аёљаёља№„аё”а№‰аёЄа№€аё‡аёаёµа№ЂаёЎаёҐа№Њаёўаё·аё™аёўаё±аё™аёЃаёІаёЈаёЄаёЎаё±аё„аёЈаёЄаёЎаёІаёЉаёґаёЃа№„аё›а№ѓаё«а№‰аё—а№€аёІаё™а№ЃаёҐа№‰аё§ аёЃаёЈаёёаё“аёІаё„аёҐаёґа№ЉаёЃаё—аёµа№€аёҐаёґаё‡аё„а№Ња№ѓаё™аёаёµа№ЂаёЎаёҐа№Њаё”аё±аё‡аёЃаёҐа№€аёІаё§а№Ђаёћаё·а№€аёа№ѓаё«а№‰аёЃаёІаёЈаёЄаёЎаё±аё„аёЈаёЄаёЎаёІаёЉаёґаёЃа№ЂаёЄаёЈа№‡аё€аёЄаёЎаёљаё№аёЈаё“а№Њаё„а№€аё°\nаёЃаёЈаёёаё“аёІаё•аёЈаё§аё€аёЄаёаёља№ѓаё™ Junk Box а№ЃаёҐаё° Spam Box аё”а№‰аё§аёўаё„а№€аё°';
				
				exit();
			
			} // end if ($rec['active_status'] == 0) {
			
			/*if (isset($_COOKIE["$configCookieNameBan"])) {
				
				echo 'error::IP аё™аёµа№‰аё–аё№аёЃ Ban а№„аёЎа№€аёЄаёІаёЎаёІаёЈаё–а№ѓаёЉа№‰аё‡аёІаё™аёЈаё°аёљаёља№„аё”а№‰';
				exit();
			
			}*/
			
			if (!checkBandEmail($rec['member_id'])) { 
			
				setcookie($configCookieNameBan, 'Ban', time()+3600*60*24*30*3);
				echo 'error::Email аё‚аёаё‡аё„аёёаё“а№„аёЎа№€аёЄаёІаёЎаёІаёЈаё–а№ѓаёЉа№‰аё‡аёІаё™аёЃаё±аёља№Ђаё§а№‡аёља№„аё‹аё•а№Њаё™аёµа№‰а№„аё”а№‰\nа№Ђаё™аё·а№€аёаё‡аё€аёІаёЃ Email аё™аёµа№‰аё–аё№аёЃ Ban';
				exit();
				
			}  // end elseif (!checkBandEmail($rec['member_id'])) {
			
			/*if (!checkBandIP($_SERVER['REMOTE_ADDR'])) {
				
				echo 'error::IP аё™аёµа№‰аё–аё№аёЃ Ban а№„аёЎа№€аёЄаёІаёЎаёІаёЈаё–а№ѓаёЉа№‰аё‡аёІаё™аёЈаё°аёљаёља№„аё”а№‰';
				exit();
				
			}*/
		
			$_SESSION['s_member_id'] = $rec['member_id'];
			$condition_update = '';
			
			if ($facebook_link != '') {
				$condition_update .= ", facebook_link = '" . $facebook_link . "'";
			}
			
			$last_login = $rec['last_login'];
			$nowDate = date("Y-m-d");
			if ($last_login != $nowDate) {
				$condition_update .= ", last_login = '".$nowDate."', date_count = (date_count+1)";
			}
			
			if ($condition_update != '') {
				$sql = "UPDATE member SET " . mb_substr($condition_update, 2, mb_strlen($condition_update, 'utf8'), 'utf8') . " WHERE member_id = '".$_SESSION['s_member_id']."' ";
				sql_query($sql);
			}
			
			echo 'seccess';
			exit();
	
	} // end if ($rec['member_id'] != '') {
	
	$pos = strpos($_POST['email'], '@');
	$username = mb_substr($_POST['email'], 0, 9, 'utf8');
	$nowDate = @date("Y-m-d H:i:s");
	$sql = "
		INSERT INTO member (username, password, facebook_link, facebook_id, register_date, activate_date, email, enews_receive, active_status)
		VALUES ('" . $username . "', '" . base64_encode(gen_random2 (6 , 1)) . "', '" . $facebook_link . "', '" . $_POST['facebook_id'] . "', '" . $nowDate . "', '" . $nowDate . "', '" . $_POST['email'] . "', '1', '1')
	";
	$_SESSION['s_member_id'] = sql_query($sql, true);
	echo 'seccess';
	exit();
  
} else { // end if ( trim($_POST['email']) != '' ) {
  
  echo 'error';
  exit();
  
} // if ( trim($_POST['email']) != '' ) {

Rename: -